Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Managing network devices like servers

Mircea Ulinic
October 04, 2017
Technology
0
73

Managing network devices like servers

Lightning talk, NANOG 71, San Jose, CA

Beginning with the release Nitrogen (2017.7), Salt provides support to manage network gear that allows execution of custom software. Examples of such platforms include white box devices, e.g., Arista, Cumulus, etc., or others that moved the operating system in the container, e.g., Cisco IOS-XR, Cisco NX-OS, etc. Installing the Salt Minion directly on the device comes with a series of advantages, inherited directly from the server automation - one of the most important being scalability: there are well known deployments of tens of thousands of devices managed like that. For Arista EOS, there's even a dedicated SWIX extension that provides all the necessary packages in order to install the Salt Minion on the switch: https://docs.saltstack.com/en/latest/topics/installation/eos.html

Mircea Ulinic

October 04, 2017
Tweet

More Decks by Mircea Ulinic

See All by Mircea Ulinic
SaltConf20: Managing Networks and Applications Using Salt, Without Minions
mirceaulinic
0
260
NANOG 76: Extending Salt's capabilities for event-driven network automation and orchestration
mirceaulinic
0
120
Event-driven network configuration management using Salt
mirceaulinic
1
230
Event-driven network automation and orchestration
mirceaulinic
0
100
Saltconf 2017 - Orchestration with network devices: challenges and solutions
mirceaulinic
1
470
NetDevOps: DevOps in Networking: Challenges and Solutions
mirceaulinic
1
320
Network Automation Panel: Past, present and future
mirceaulinic
0
180
Event-driven network automation and orchestration
mirceaulinic
2
150
Network Automation at Scale: Up and Running in 60 Minutes
mirceaulinic
0
110

Other Decks in Technology

See All in Technology
Building a RAG-powered AI chat app with Python and VS Code
pamelafox
0
160
生産性向上チームの紹介
cybozuinsideout
PRO
1
930
障害対応をちょっとずつよくしていくための 演習の作りかた
heleeen
1
1.7k
Max out Local LLM in Challenging Environments
sashimimochi
1
120
IaCからAWSに入門した初心者が CloudFormationを通して考えた「AWS操作」の使い分け
maimyyym
1
110
モーダル間の変換後の一致性とジャンル表を用いた解釈可能性の考察 ~Text-to-MusicとText-To-ImageかつImage-to-Musicを例に~
otanet
0
310
家族アルバム みてねにおけるGrafana活用術 / Grafana Meetup Japan Vol.1 LT
isaoshimizu
1
1k
リテール金融(キャッシュレス・ネット銀行・ネット証券)の競争環境と経済圏
8maki
0
1.6k
データベース03: 関係データモデル
trycycle
0
100
よく聞くけど使ったことないソフトウェアNo.1 KafkaとSnowflake
foursue
4
510
LLM開発・活用の舞台裏@2024.04.25
yushin_n
3
1.3k
Cracking the KubeCon CfP
inductor
2
270

Featured

See All Featured
Code Reviewing Like a Champion
maltzj
515
39k
Large-scale JavaScript Application Architecture
addyosmani
504
110k
From Idea to $5000 a Month in 5 Months
shpigford
378
45k
Documentation Writing (for coders)
carmenintech
60
4k
The Power of CSS Pseudo Elements
geoffreycrofte
62
5k
Building an army of robots
kneath
300
41k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
18
6.9k
Why You Should Never Use an ORM
jnunemaker
PRO
51
8.7k
Building Effective Engineering Teams - LeadDev
addyosmani
31
1.9k
Reflections from 52 weeks, 52 projects
jeffersonlam
345
19k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
117
18k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
245
20k

Transcript

  1. Managing network devices like servers Mircea Ulinic Cloudflare, London San

    Jose, CA October 2017 1

  2. 2 Mircea Ulinic • Network engineer at Cloudflare • Member

    and maintainer at NAPALM Automation • Integrated NAPALM in Salt • OpenConfig representative • https://mirceaulinic.net/ Twitter: @mirceaulinic GitHub: mirceaulinic

  3. 3 How are servers managed? • (Typically) many more servers

    than network devices • SRE teams are generally large • Automation methodologies for many years • Variety of tools, including: ◦ Salt ◦ Ansible ◦ Chef ◦ Puppet • Many features already implemented • Plenty of success stories

  4. 4 Network platforms that can be managed like servers •

    White box devices ◦ Arista EOS ◦ Cumulus ◦ etc. • Containerised solutions ◦ Cisco IOS-XR (64 bit only) ◦ Cisco NX-OS ◦ etc.

  5. 5 Network platforms that can’t be managed like servers •

    Junos • Cisco IOS-XR, 32 bit • Cisco IOS-XE, IOS • Many many others... 5

  6. • Very scalable ◦ e.g., LinkedIn 70,000 servers • Concurrency

    • Event-driven • Easily configurable & customizable • Native caching and drivers for useful tools 6 Automation framework example: Salt

  7. 7 Salt Architectures (1): typical hub and spoke Master server

    Minion server Minion server Minion server ... https://docs.saltstack.com/en/latest/topics/topology/index.html

  8. 8 Salt Architectures (2): multi master Master server Minion server

    Minion server Minion server ... Master server Master server

  9. 9 Salt Architectures (3): masterless minions Minion server Minion server

    Minion server ...

  10. 10 Arista EOS Salt minion: Installation (1) edge01.bjm01#copy https://salt-eos.netops.life/salt-eos-latest.swix flash:

    edge01.bjm01#copy https://salt-eos.netops.life/startup.sh flash: Copy the SWIX extension to the flash edge01.bjm01#copy flash:salt-eos-latest.swix extension: edge01.bjm01#extension salt-eos-latest.swix force Install the SWIX extension

  11. 11 Arista EOS Salt minion: Installation (2) edge01.bjm01#show extensions |

    include salt-eos salt-eos-2017-7-1.swix 1.0.11/1.fc25 A, F 27 Verify the installation edge01.bjm01(config)#management api http-commands protocol unix-socket no shutdown Enable the local unix socket

  12. 12 Arista EOS Salt minion: Installation (3) edge01.bjm01#bash #sudo /mnt/flash/startup.sh

    Execute the Salt Minion startup script Complete installation notes at: https://docs.saltstack.com/en/latest/topics/installation/eos.html

  13. 13 Arista EOS Salt minion: Installation (3) edge01.bjm01#bash #sudo /mnt/flash/startup.sh

    Execute the Salt Minion startup script Complete installation notes at: https://docs.saltstack.com/en/latest/topics/installation/eos.html

  14. 14 Cumulus Linux Salt minion: Installation wget -O bootstrap-salt.sh https://bootstrap.saltstack.com

    1. Download the Salt bootstrap script sudo sh bootstrap-salt.sh 3. Install the Salt minion 2. Check the script!!!

  15. 15 Salt CLI execution: server $ sudo salt 'some-server' disk.usage

    some-server: ---------- /: ---------- 1K-blocks: 65869280 available: 60808360 capacity: 8% filesystem: rootfs used: 5060920 /dev: ---------- 1K-blocks: 65902000

  16. 16 Salt CLI execution: Arista EOS minion* $ sudo salt

    'edge01.bjm01' disk.usage edge01.bjm01: ---------- /: ---------- 1K-blocks: 4870812 available: 4812376 capacity: 2% filesystem: none used: 58436 /dev: ---------- 1K-blocks: 8192 * This is real output collected from a device carrying Internet traffic

  17. Need help/advice? Join https://networktocode.herokuapp.com/ rooms: #saltstack #napalm By email: •

    Mircea Ulinic: [email protected] • Frankie Hui: [email protected] 17

  18. Questions 18 By email: • Mircea Ulinic: [email protected] • Frankie

    Hui: [email protected] ?

  19. How can you contribute? • NAPALM Automation: https://github.com/napalm-automation • SaltStack

    https://github.com/saltstack/salt 19

  20. References Arista Software download Authentication system Beacons Engines Event System

    Grains Jinja load_template documentation Master config file, default Master config file, example Master configuration options Master systemd file Mine NAPALM NAPALM BGP execution module functions NAPALM Grains NAPALM Installation NAPALM network execution module functions NAPALM NTP execution module functions 20 NAPALM Proxy NAPALM route execution module functions NAPALM SNMP execution module functions NAPALM users execution module functions Nested outputter NETAPI Modules Netconfig state Node Groups NTP state Orchestration Output modules Pillar Pillar modules Proxy config file, default Proxy config file, example Proxy Minion Proxy systemd file Reactor REST CherryPy