automation workshop was to discuss of - internet2 · 2018-10-16 · (infoblox/bluecat ipam,...
TRANSCRIPT
![Page 1: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/1.jpg)
1
![Page 2: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/2.jpg)
The the purpose of the Network Automation Workshop was to discuss of the best practices for US universities and regional networks to automate network operations using orchestration software (e.g. Ansible, Salt) and single source of authority data sets (e.g. NetBox, Git).
2
![Page 3: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/3.jpg)
● Duke● ESNet● Indiana University / GlobalNOC● Internet2● University of Michigan● University of Minnesota● Notre Dame● Penn State● University of Wisconsin
3
![Page 4: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/4.jpg)
● Self Service tools● Centralized Data● Source of Truth/Authority● Consistency● Reduction of Errors● Incident Management● Disaster Recovery● Topology● Automated Testing● Location (In)Dependence
4
![Page 5: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/5.jpg)
● High Availability● Orchestration
○ Automated config deployments○ Versioning of config changes○ Scheduled Roll out with Roll back capability
● Enterprise APIs○ Integration with existing tools
(Infoblox/Bluecat IPAM, Ticketing, CMDB)○ A clear source of authority for each data type
and a central hub where software can make queries
5
![Page 6: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/6.jpg)
● UI Components○ Delegated self-service web tool with
standard AAA and RBAC○ Web API for local IT with more extensive
needs● High Quality Software Engineering
(testing/review/docs)● Vendor Agnostic● Open Source Software
6
![Page 7: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/7.jpg)
Service Layer (API)
UI LayerWeb UI CLI Automation
Tools
Scheduler
Configuration Storage
Version Control
Deployment Automation
Device 1 Device 2 Device 3 Device 4 Device 5 Device 6 Device 7
7
![Page 8: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/8.jpg)
● Use central source of configuration authority for all devices
● Automation tools should read configuration data from the source of authority and implements changes programmatically
● Use open-source tools where possible ● Use open standards
○ Investigate YANG / OpenConfig○ OAuth 2.0 for inter-service authentication
8
![Page 9: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/9.jpg)
University of Michigan and University of Wisconsin are discussion a collaboration to create a tool to delegate limited management of network device configuration to departmental IT staff.
● The goal is to architect this tool to be very modular and to integrate with a variety of supporting components.○ User management: Shibboleth, LDAP, Grouper, etc.○ Automation tools: Salt, Ansible, etc.○ Data sources: Infoblox, NetBox, etc.
Looking to expand this group!
9
![Page 10: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/10.jpg)
Special thanks to
Mark Tinberg (University of Wisconsin) and Travis Sobeck (University of Minnesota)
for their work to create the workshop summary documents.
https://goo.gl/pGNGhX
10
![Page 11: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/11.jpg)
11
![Page 12: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/12.jpg)
12
![Page 13: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/13.jpg)
13
![Page 14: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/14.jpg)
14
![Page 15: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/15.jpg)
15
![Page 16: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/16.jpg)
16
Amazon Web Services (AWS)
- Canvas- Slate- DUO- DocuSign- Coursera- Slack- BitBucket- ArcGIS
Google Compute Platform (GCP)
- Gitlab- Unizin Data Platform- Explorance (Blue)- GSuite
Microsoft Azure
- Github (soon?)- Office 365- Microsoft Intune
![Page 17: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/17.jpg)
The purpose of the workshop was to discuss of the best methods for US universities to connect to major cloud providers (e.g. Amazon AWS, Microsoft Azure, and Google Cloud) and come up with recommendations and design patterns that may be useful to the research and education community as a whole.
17
![Page 18: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/18.jpg)
Identify use cases for cloud computing
Identify corresponding (to the use cases) network design patterns
Use those (design patterns) to come up with reference network architectures the Research & Education community can deploy
If possible, include a request to Internet2 and/or regional networks to support certain design patterns
18
![Page 19: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/19.jpg)
- University of Michigan - Alok Vimawala- Indiana University - Steve Wallace- Boston University - Gerard Shockley- University of Minnesota - Travis Sobeck- Northwestern University - John Walsh- Duke University - William Brockelsby & Jessica Repka- Internet2 - Matthew Zekauskas
19
![Page 20: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/20.jpg)
Burst capacity - extend compute and storage workloads to the cloud
Specialized workloads - workloads that cloud well better suited for
Classes of users / workloads - Research, Enterprise, IoT, Distributed
Extending campus network(s) into public cloud
Security paradigm parity between campus and cloud (hard to do)
20
![Page 21: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/21.jpg)
- Use your cloud addressing plan - Make one if you don’t have it already- Different options campus to cloud
- Direct connect - Site to site VPN - Commodity / IP connectivity
- Different network designs within cloud providers - Spoke/hub - transit VPC - VPC proxying - VPC peering
21
![Page 22: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/22.jpg)
Understand current state of connectivity to cloud providers
Have a cloud connectivity strategy
Settlement free Peering - will give us a bit more influence how they send their traffic to us
Automating site-to-site VPNs between cloud providers and campuses
Determine and deploy campus infrastructure baseline: services needed for cloud to work
Establish a good relationship and communications with the vendor
22
![Page 23: Automation Workshop was to discuss of - Internet2 · 2018-10-16 · (Infoblox/Bluecat IPAM, Ticketing ... Web API for local IT with more extensive needs High Quality Software Engineering](https://reader033.vdocuments.net/reader033/viewer/2022042409/5f26aff4f04a9e45ef5aa888/html5/thumbnails/23.jpg)
23
Note to Self: Don’t present this slide if Dave Farmer is in audience.