Presentation is loading. Please wait.

Presentation is loading. Please wait.

Automate all the thingS!

Published byFelicia Whitehead Modified over 6 years ago

Similar presentations

Presentation on theme: "Automate all the thingS!"— Presentation transcript:

1 Automate all the thingS!
David Wilde

2 Disclaimer Description of this talk, as seen on Automate all the things! AARNet is on a journey. In the beginning, network engineering was done by old-school artisans. Configurations were lovingly hand-crafted. Routers and switches petted and cared for. Loving attention was paid to each device under monitoring. This was fine…. until it wasn’t fine any more. We’re in 2018 now. It turns out that our CloudStor synch&share service got to the point where the number of users shot up from 500 to 50,000 over the course of a couple of years, and we ended up manually configuring hundreds of containers; that was really spreading the love too thin. Our systems have become cattle, not pets. AARNet network engineers are reluctantly handing in their CLI licences and learning to navigate Ansible + python + Git + Jenkins. Operator error is reduced, time to deployment is minimised, troubleshooting tools are improved, integration with applications is achieved. It all sounds wonderful. But - it’s still a journey. What have we achieved to date? What has turned out to be harder than expected? All shall be revealed… © AARNet Pty Ltd |

3 I LIED: NOT ALL SHALL BE REVEALED
Disclaimer Description of this talk, as seen on Automate all the things! AARNet is on a journey. BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH BLAH All shall be revealed… I LIED: NOT ALL SHALL BE REVEALED © AARNet Pty Ltd |

4 Why automate?

5 'cos your boss told you to?
© AARNet Pty Ltd |

6 Really why?

7 Why automate? Number of services in 2014 © AARNet Pty Ltd |

8 Why automate? Number of services in 2016 © AARNet Pty Ltd |

9 Why automate? Number of services in 2017 © AARNet Pty Ltd |

10 So, why?

11 Because we’re LAZY Why: really Don’t want to do anything twice
Don’t want to deal with the manual effort coming from operational inconsistencies Don’t want to fix problems due to human error (And because it’s fun) © AARNet Pty Ltd |

12 How

13 (Although not always technically hard.)
How Warning - unfortunate truth follows: Automation is hard. (Although not always technically hard.) Cultural change: no longer touching the router Skills change: network engineer >> coder Organisational change: agile, scrum, devops, SRE © AARNet Pty Ltd |

14 Automation – Initial (non-destructive) steps
Document your procedures and business processes Verify these processes. Verify again. Audit the network against your source of truth. Start small. Be willing to change Grey Box Monitoring & Analysis Is your source of truth valid? Or is the network the source of truth? Alarm in case of mismatch! Start thinking like a coder. Run regression checks. Check pre- and post- maintenance windows Do you monitor DOM statistics on an interface today? Do you know what type of Optic is in a port so you know if the DOM stats are within spec or not? Do you know if your firewall rules for protecting your RE are what you expect? Do you know if they are applied on the Lo0 interface? Do you know if your CoS/QoS policy is applied correctly? Do you know if your interface IPv4/IPv6 have correct forward and reverse entries in DNS? Do you know when your box has produced a core-dump? Do you check daily or do you only look when there is a fault that you saw? © AARNet Pty Ltd |

15 “Network services audit tool”
Smart Small “Network services audit tool” Note – a network engineer would have produced a wall of ascii, fed by the command line… © AARNet Pty Ltd |

16 Grey Box Monitoring & Analysis
Next Level 31337 Grey Box Monitoring & Analysis © AARNet Pty Ltd |

17 Grey Box Monitoring & Analysis
1. Build a Virtual model Grey Box Monitoring & Analysis © AARNet Pty Ltd |

18 Grey Box Monitoring & Analysis
2. Build a physical lab Grey Box Monitoring & Analysis © AARNet Pty Ltd |

19 Grey Box Monitoring & Analysis
3. Build UNIT TESTS Grey Box Monitoring & Analysis © AARNet Pty Ltd |

20 4. The holy grail: CI-CD © AARNet Pty Ltd |

21 Grey Box Monitoring & Analysis
Useful links Virtual testbed EVE-NG ( VRNetLab ( VIRL ( Wistar ( GNS3 ( CI/CD Jenkins ( Travis ( TeamCity ( Automation Ansible ( SaltStack ( Puppet ( Chef ( Juniper PyEZ ( VMX ( Grey Box Monitoring & Analysis © AARNet Pty Ltd |

22 Grey Box Monitoring & Analysis
Join the conversation Slack channel for NRENs: Grey Box Monitoring & Analysis © AARNet Pty Ltd |

23 Thank you David Wilde

Download ppt "Automate all the thingS!"

Similar presentations

IT Technical Support South Nottingham College. Aims Knowledge of the Registry Discuss the tools available to support a technician Gain an understanding.

IT Technical Support South Nottingham College. Aims Knowledge of the Registry Discuss the tools available to support a technician Gain an understanding.
Developing a Comprehensive POCT Competency Assessment Program

Developing a Comprehensive POCT Competency Assessment Program
Illinois Institute of Technology

Illinois Institute of Technology
Product Quality, Testing, Reviews and Standards

Product Quality, Testing, Reviews and Standards
Behaviour Driven Development with Cucumber for Java.

Behaviour Driven Development with Cucumber for Java.
1. Topics to be discussed Introduction Objectives Testing Life Cycle Verification Vs Validation Testing Methodology Testing Levels 2.

1. Topics to be discussed Introduction Objectives Testing Life Cycle Verification Vs Validation Testing Methodology Testing Levels 2.
A Tale of Two Apps WHY DEVELOPMENT PRACTICES MATTER Zendcon 2013 1 Oct 8 2013.

A Tale of Two Apps WHY DEVELOPMENT PRACTICES MATTER Zendcon Oct
CTSP TRAINING Router 101 And Networking Basics. You Don’t Need Internet Access to Run or Connect your devices to an Ethernet switch or Router Enable DHCP.

CTSP TRAINING Router 101 And Networking Basics. You Don’t Need Internet Access to Run or Connect your devices to an Ethernet switch or Router Enable DHCP.
Problem Determination Your mind is your most important tool!

Problem Determination Your mind is your most important tool!
workshop eugene, oregon What is network management? System & Service monitoring  Reachability, availability Resource measurement/monitoring.

workshop eugene, oregon What is network management? System & Service monitoring  Reachability, availability Resource measurement/monitoring.
12 Steps to Cloud Security A guide to securing your Cloud Deployment Vishnu Vettrivel Principal Engineering Lead,

12 Steps to Cloud Security A guide to securing your Cloud Deployment Vishnu Vettrivel Principal Engineering Lead,
NetNumen T31 Common Operations. Objectives Master Basic Configurations of T31 Master Common Operations of T31.

NetNumen T31 Common Operations. Objectives Master Basic Configurations of T31 Master Common Operations of T31.
1 Root-Cause VoIP Troubleshooting Optimizing the Process Tim Titus CTO, PathSolutions.

1 Root-Cause VoIP Troubleshooting Optimizing the Process Tim Titus CTO, PathSolutions.
Infrastructure as code. “Enable the reconstruction of the business from nothing but a source code repository, an application data backup, and bare metal.

Infrastructure as code. “Enable the reconstruction of the business from nothing but a source code repository, an application data backup, and bare metal.
1 © 2006 Cisco Systems, Inc. All rights reserved. Cisco Channel Confidential Cisco Security Conversion Tool (SCT) Check Point ™ to Cisco Conversion Tool.

1 © 2006 Cisco Systems, Inc. All rights reserved. Cisco Channel Confidential Cisco Security Conversion Tool (SCT) Check Point ™ to Cisco Conversion Tool.
ERICSON BRANDON M. BASCUG Alternate - REGIONAL NETWORK ADMINISTRATOR HOW TO TROUBLESHOOT TCP/IP CONNECTIVITY.

ERICSON BRANDON M. BASCUG Alternate - REGIONAL NETWORK ADMINISTRATOR HOW TO TROUBLESHOOT TCP/IP CONNECTIVITY.
Software Test Plan Why do you need a test plan? –Provides a road map –Provides a feasibility check of: Resources/Cost Schedule Goal What is a test plan?

Software Test Plan Why do you need a test plan? –Provides a road map –Provides a feasibility check of: Resources/Cost Schedule Goal What is a test plan?
The Next Level Of Agile: DevOps and CD אוקטובר 2015.

The Next Level Of Agile: DevOps and CD אוקטובר 2015.
University of Toronto at Scarborough © Kersti Wain-Bantin CSCC40 testing and installation 1 for testing you need: test data and test cases test plans and.

University of Toronto at Scarborough © Kersti Wain-Bantin CSCC40 testing and installation 1 for testing you need: test data and test cases test plans and.
Ch. 31 Q and A IS 333 Spring 2016 Victor Norman. SNMP, MIBs, and ASN.1 SNMP defines the protocol used to send requests and get responses. MIBs are like.

Ch. 31 Q and A IS 333 Spring 2016 Victor Norman. SNMP, MIBs, and ASN.1 SNMP defines the protocol used to send requests and get responses. MIBs are like.

Similar presentations

Ads by Google