This toolkit has been created to enable those who are relatively new with Nornir or NAPALM with the benefits of these two great open source projects.
At a high level, the intent is to lower the barrier to entry into exploring these projects and provide new users with a real-life example of automating discovery tasks when first interacting with a new network.
I have open sourced this project in an attempt to contribute back to the wider community and hopefully kickstart others in sparking their interest in network automation.
By using this toolkit, you will be able to answer and provide information on questions like:
- What model(s) of Cisco/Juniper/Arista devices do we have?
- What OS version(s) do we have for the same model across the inventory?
- Has someone configured IPv6 on any devices?
- What local usernames are configured on all platforms?
- What devices have the longest uptime?
- What are all our serial numbers which we need for maintenance renewals?
The following pre-requisites are required to use this toolkit:
- Python 3.6 or higher
- Git
- A network inventory of your devices including hostname, IP address, OS type, username and password
In addition to these pre-requisites, the following items are recommended:
- Basic understanding of Python
- Basic understanding of YAML
- Basic understanding of JSON
To install the toolkit and the associated modules, please perform the following from within your virtual environment:
- Clone the repository to the machine on which you will run the application from:
git clone https://github.com/writememe/day-one-net-toolkit.git
cd day-one-net-toolkit
-
Populate your Nornir inventory files:
See the Inventory Setup below for more detailed instructions
- Create the virtual environment to run the application in:
virtualenv --python=`which python3` venv
source venv/bin/activate- Install the requirements:
pip install -r requirements.txt- Set two environmental variables, which are used by the application as the default credentials to login to devices:
export NORNIR_DEFAULT_USERNAME=<someusername>
export NORNIR_DEFAULT_PASSWORD=<somepassword>- Validate these environmental variables by entering the following command:
env | grep NORNIRYou should see the two environment variables set.
You need to populate some YAML files with your particular network inventory. Below is the procedure to populate your minimum variables in order to get yourself up and running. This toolkit takes advantages of Nornir's inheritance model so we are as efficient as possible.
Throughout the setup, we are going to use the example device inventory below:
| Hostname | IP Address | FQDN | Platform |
|---|---|---|---|
| lab-iosv-01 | 10.0.0.12 | lab-iosv-01.lab.dfjt.local | ios |
| lab-arista-01 | 10.0.0.11 | lab-arista-01.lab.dfjt.local | eos |
| lab-nxos-01 | 10.0.0.14 | lab-nxos-01.lab.dfjt.local | nxos |
The first step is to populate the hosts.yaml file with the pertinent information about your hosts.
Below is an example of the hosts.yaml structure for one entry:
<fqdn>
hostname: <fqdn> or <ip address>
groups:
- <platform>An extension of this using our example inventory is below, using a mixture of FQDN or IP addresses for the hosts.yaml file:
lab-iosv-01.lab.dfjt.local
hostname: 10.0.0.12
groups:
- ios
lab-arista-01.lab.dfjt.local
hostname: 10.0.0.11
groups:
- eos
lab-nxos-01.lab.dfjt.local
hostname: lab-nxos-01.lab.dfjt.local
groups:
- nxosNOTE: We are only putting in the absolute minimum data to get the toolkit up and running. You will notice that other Nornir inventories can look markedly different to this and have been enriched with more metadata. This will not be explored in this toolkit.
The second step is to populate the groups.yaml file with information regarding each group setup in Step 1. Below is an example of what we use in our groups.yaml file:
<group_name>:
platform: <platform>
An extension of this using our example inventory is below, using the groups which were setup in Step 1:
ios:
platform: ios
eos:
platform: eos
nxos:
platform: nxos
junos:
platform: junos
iosxr:
platform: iosxr
NOTE: You will notice some additional groups in here named junos and iosxr in here as well.
These were intentionally added to show how you would consistently implement this on other platforms.
You are now setup and ready to use the toolkit!
To run the scripts, please run the following from the command line.
For day-one-toolkit.py please run the following:
python day-one-toolkit.pyFor collection-toolkit.py please run the following:
python collection-toolkit.pyThis script uses the Nornir inventory used in the setup and performs two operations:
- Collect the running and startup/candidate configurations for each hosts and store them using the following directory convention:
.
|
├── configs
├── lab-arista-01.lab.dfjt.local
│ ├── running.txt
│ └── startup.txt
├── lab-iosv-01.lab.dfjt.local
│ ├── running.txt
│ └── startup.txt
└── lab-nxos-01.lab.dfjt.local
├── running.txt
└── startup.txt
NOTE: The directory structure is dynamically allocated and the appropriate configs are retrieved based on platform.
- Based on the supported list of NAPALM getters, attempt to retrieve all the getters which are supported on each platform and store them using the following directory convention:
facts
├── lab-arista-01.lab.dfjt.local
├── arp_table.json
├── bgp_neighbors.json
├── bgp_neighbors_detail.json
├── environment.json
├── facts.json
├── interfaces.json
├── interfaces_counters.json
└── interfaces_ip.json
There is a log file which is dynamically created in the logs/ directory which maintains the success and failure of each task on each host
and provides a summary of what failed and succeeded. This file follows the naming convention:
DISCOVERY-LOG-YYYY-MM-DD-HH-MM-SS.txt
A collection run on July the 10th, 2019 at 19:19:54 would have the log file name of:
DISCOVERY-LOG-2019-07-10-19-19-54.txt
From here, you could SCP these files to a central location, or commit them to a central repository for version control and tracking.
This script uses the Nornir inventory used in the setup collects key information about all devices using NAPALM getters and saves them to an Excel workbook. The information collected is:
- Facts
- Interfaces
- Interfaces IP
- LLDP neighbor
- Users
Some of the information has been omitted from the spreadsheet as this is meant to provide a key summary of the environment.
Once the script has run, it will create an Excel workbook using the following convention:
Collection-<customer_name>-YYYY-MM-DD-HH-MM-SS.xlsx
In the toolkit, you can change the customer name variable in the code under the create_workbook function towards the end of the code:
# Assign customer name to Excel file
customer_name = "Customer"
There is a log file which is dynamically created in the logs/ directory which maintains the success and failure of each task on each host
and provides a summary of what failed and succeeded. This file follows the naming convention:
COLLECTION-LOG-YYYY-MM-DD-HH-MM-SS.txt
A collection run on July the 10th, 2019 at 19:19:54 would have the log file name of:
COLLECTION-LOG-2019-07-10-19-19-54.txt
I chose Excel for a few reasons:
-
Virtually everyone knows how to use Excel so this report can be passed around to non-programmer teams like Procurement, Service Desk or Change Management.
-
It's easy to format and query, or apply additional fields to as needed.
-
This provides information in a format which is easy to understand for management.
-
It demonstrates the advantages of using Nornir as we can access many mature Python modules such as Openpyxl, as Nornir is pure Python.
In addition to what is documented in this repo, I've written some more long form descriptions of Nornir and solutions presented here over at my blog:
If you are interested in contributing or adding new features, please go to this page on how to contribute.