automation via ansible ffjeefjewfhewjkfhrfjrefhekjrhfernn
HussnBnMssd
17 views
33 slides
May 26, 2024
Slide 1 of 33
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
About This Presentation
information
Slide Content
October 12, 2017 John Malzahn – Host, Senior Manager, Cloud and Virtualization Solutions Marketing, Cisco Systems Carl Moberg – Technical Director, Cisco Systems Andrius Benokraitis – Principal Product Manager, Networking, Ansible by Red Hat Ian Hood – Chief Technologist, Global Telco, Red Hat Automating Your Network with Ansible and Cisco NSO Enable Continuous Integration and Deployment with Zero Downtime
Today’s Presenters John Malzahn Senior Manager, Cloud and Virtualization Solutions Marketing Andrius Benokraitis Principal Product Manager, Networking Carl Moberg Technology Director, Cloud and Virtualization Group Ian Hood Chief Technologist Global Telco Cisco Systems Ansible by Red Hat Cisco Systems Red Hat
Agenda 1 Red Hat Ansible Automation 2 Cisco NSO Lifecycle Orchestration 3 Better Together: Ansible and Cisco NSO 4 Demo 5 Wrap-up
Automation with Ansible
No matter where you are on your path to digital transformation, you can make an impact with automation .
How are you thinking about management? What is your automation strategy?
Everyone is talking about automation
DEV QA/SECURITY IT OPERATIONS BUSINESS ANSIBLE IS THE UNIVERSAL LANGUAGE
RED HAT ANSIBLE TOWER RED HAT ANSIBLE ENGINE Scale + operationalize your automation Support for your Ansible automation CONTROL KNOWLEDGE DELEGATION SIMPLE POWERFUL AGENTLESS FUELED BY AN INNOVATIVE OPEN SOURCE COMMUNITY
Cisco NSO The Industry Leading Network Automation & Orchestration Platform
Cisco NSO – The Network API Cisco NSO Metro and Access WAN Data Center CPE No hard-coded assumptions about: Network services Network architecture Network devices YANG-based data store driving the north- and southbound interfaces Southbound multi-protocol support including NETCONF, REST, CLI, SNMP Massively scalable architecture deployed in networks with 100k+ devices Northbound: REST, NETCONF, JSON-RPC, Java, Python, Erlang, CLI, Web UI Southbound: 70+ vendors across physical and virtual networks Automation Frameworks Network Engineers
Monolithic Versioning Network Device Stack OS Applications Application Config Config Management CLI/NETCONF/etc with supporting infrastructure including config master db for inflight changes I n-memory and/or artifacts on disk complicated updates through micro-orchestration Proprietary applications, lifecycle as integrated product Non-mainstream (platform HAL, kernel patches, etc), lifecycle as integrated product High , depends on location in network and service: Day0/1 on install Day N for services Low , as part of maintenance or security Change Rate Features Single entry point for configuration, operations
From Devices (ConfD) … Challenges: Many different APIs and interfaces to the north Heterogenous environment to the south One operation may lead to many activities Solution includes: APIs and interfaces driven by models Transaction-engine with flexible rollback ConfD CDB CLI SNMP NETCONF REST A Mess (OS, Apps) Subscription-based APIs Data Models Data Models
… to Networks (NSO) Challenges are very similar, but larger scale, more distributed So we added some more to the solution: Layered models for abstraction Mapping between layers Adapters for talking different protocols NSO CDB CLI SNMP NETCONF REST NED NED NED NED ServiceModels Device Models A Mess (the Network)
So Here We Are – Cisco NSO Multi-domain Networks Network Engineering Ops and Provisioning Service Developers NSO Package Manager Service Manager Device Manager ESC (VNFM) Device Abstraction NED NED NED VNF Lifecycle Manager VNF Service Monitoring CDB Model-driven end-to-end service lifecycle and customer experience in focus Seamless integration with existing and future OSS/BSS environment Loosely-coupled and modular architecture leveraging open APIs and standard protocols Orchestration across multi-domain and multi-layer for centralized policy and services across entire network
Automation Better Together with Ansible + NSO
Reference Architectures Spanning Applications and Networks Ansible NSO App App Ansible NSO App App Application Centric Connectivity Centric Playbooks Playbooks
Ansible Plus Cisco NSO – Better Together Ansible uses Playbooks to define named tasks that are executed by the ansible-playbook tool. The tasks use modules to perform activities. The NSO modules uses the version JSON-RPC API NSO uses YANG modules to describe the schema of the data that can be manipulated using JSON-RPC. Clients (in this case an Ansible module) perform operations on the data stored in CDB . Easily consumed by native Ansible a llows application-centric services to unlock the full value of the network Red Hat Ansible Tower provides playbook-driven IT and network automation Cisco NSO provides model-driven service orchestration in hybrid networks
Ansible + Cisco NSO - Roles and Responsibilities Ansible NSO CDB Playbook Playbook Playbook Devops teams Owns lifecycle of playbook Infrastructure teams: Owns lifecycle of network services YANG JSON-RPC NSO module Hybrid Network YANG becomes contract language between teams across infrastructure cycles: Requirements from apps device provided in YAML-format New services published by infra team as REST-interface update
NSO provides a full CRUD interface Create – easy Update – hard Delete – very hard Transactions – either stuff entirely happens or no stuff happens Model-based (YANG) so clients can fetch and validate payloads Applicable Cisco NSO Features Ansible NSO CDB Playbook Playbook Playbook YANG JSON-RPC NSO module Hybrid Network YANG
The nso_verify module fetches data from NSO, compares with data in the task and reports any violations The nso_action module performs RPCs on NSO (e.g. check-sync) and validates the output The nso_config module is used to create and delete instance data in NSO Three Ansible Modules for Cisco NSO
YAML data encoding for all Ansible features YAML encoding is straight translation from the JSON data structures natively provided by NSO, e.g: curl - H "Accept: application/yang-data+json" \ http ://localhost:8080/restconf/data/devices / | json2yaml Input data is runtime validated against applicable subset of NSO YANG modules Module Commonality
Single Ansible module leveraging NSO to support 70+ vendors across domains Integrated YANG-support for model-driven configuration validation Full rollback capabilities across vendors and device types Value of Ansible Tower + Cisco NSO Gain immediate control over the entire network from data center to CPE Significantly reduce the amount of time spent testing configuration changes Reduce fallouts requiring manual intervention to a minimum
Automating Your Infrastructure with Ansible Tower and Cisco NSO
AUTOMATION >> Ansible + Cisco NSO Use Cases NFV / SDN Network Automation Continuous Compliance IoT
Cisco NSO RHEL HOST Automating Mobile Services – vIMS / vEPC Use Cases Service Provider Cloud Customers Service Orchestration SDN / Network Automation RHOSP Deployment Automation Ceph Storage Automation VNF / Workload Placement Storage Network Compute NFVI Open APIs Orchestration/Automation vEPC vIMS vPCRF vSMS RHEL KVM RH OSP RH Storage OVS/DPDK Ansible Tower Mobile Devices Business Location / Venues CloudForms Cisco NSO Service Provider Cloud
Demo Time!
Three groups of three routers each, running in netsim (management only, no packets passed) Appropriate NEDs loaded to support the router types and protocols I’ll use the CLI and REST for manual steps, and Ansible will use the JSON-RPC interface Demo Setup – Cisco NSO NSO CDB Juniper IOS-XE IOS-XR XE (CLI) XR (CLI) NETCONF CLI JSON-RPC REST
JSON-RPC Three NSO modules interacting with device- and service level abstractions A set of example playbooks using the modules Demo Setup – Ansible Ansible Playbook Playbook Playbooks NSO Configuration Module NSO Verification Module NSO Action Module
Summary
The Industry’s Broadest Multivendor Support Cisco NEDS + Ansible Modules / Playbooks with Community Innovation
Agility Throughout Service Lifecycle Strict YANG model-driven solution Auto-rendered business logic results in 90% less code Effortlessly re-deployment of updated service and device models DevOps for differentiation Full automation of Applications and Networks Robust and Proven in tier-1 Deployments Industry’s Broadest Multivendor Support Relevant in today’s and tomorrow’s networks What You Gain Cisco Network Services Orchestrator + Ansible Tower
Visit: www.cisco.com/go/nso www.redhat.com/ansible And contact your Cisco and Red Hat account representatives For more information
Tags
Categories
TechnologyDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 17
- Slides 33
- Age 553 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
44 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
44 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
36 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
33 views
21
Know for Certain
DaveSinNM
19 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
23 views