Campus and Data Center Automation : Generate , Deploy, Validate

1. Campus and Data Center Automation: • Generate, Deploy, Validate Tiffany Chiapuzio-Wong Technical Marketing Engineer at Aruba Networks

2. Who am I? • 1. How did you get started with Ansible? 2. How long have you been using it? 3. What's your favorite thing to do when you Ansible?

3. Who is Aruba Networks?

4. HPE’s Intelligent Edge Business Unit Intelligent Edge Networking for the Mobile, Cloud, and IoT Era “Customer First, Customer Last” Dedicated Sales and Support Innovation Pioneers Leader in Wired and Wireless Networking

5. Modern Design Philosophy: • Aruba’s Heritage and Vision ` BORN IN THEMOBILE-CLOUD AND IOT ERA OPEN, MULTI-VENDOR SOFTWARE-DEFINED,API-FIRST SECURITYDRIVEN

6. MOBILE FIRST ARCHITECTURESoftware-Defined View

7. Network Automation

8. History of Network Automation NETCONF • Relies on stateless model • Use http/https protocol • Easier to automate and machine readable outputs • Widely used for long time • Not all vendors offer full support or do custom MIBs • Gradual death of SNMP • CLI built for humans • Automation need heavy programming knowledge • Automation is extremely error prone and tedious • Agent based • Connection-oriented protocol uses SSH • Data encoded in XML • One of the config fails, the complete change is not applied

9. Fears of Network Automation I don’t need automation; we’ve been configuring devices for years through CLI and it’s been fine… Why should I learn something new? Thereare so many different languages and frameworks.How do I pick just one? I can’t jeopardize the state of my network by running a bad script on 100 devices!

10. Future of Network Automation Simple Multi-Vendor Agentless Powerful • Human readable automation • No special coding skills needed • Tasks executed in order • Get productive quickly • App deployment • Configuration management • Workflow orchestration • Network automation Open Source and multi-vendor • Agentless architecture • Uses OpenSSH & APIs • No agents to exploit or update • Get started immediately • More efficient & more secure

11. Future of Network Automation

12. Aruba’s Ansible Journey A partnership proving with simplicity and power we can bridge the gap between programmer and network engineer. June 2018 Sep 2019 Started Ansible modules development for AOS-Switch Published AOS-CX Collection on Ansible Galaxy Published 30 Ansible modules for AOS-Switch Published Ansible modules for AOS-CX Published 11 modules and AOS-CX Role on Ansible Galaxy

13. AOSCX Collection • Ansible Collections were introduced to the Ansible Engine in Ansible version 2.8 • Collections provide a way for us to bundle all artifacts (roles, modules, tasks, etc) and distribute them in a easy and efficient way! • 11 Modules that support: • ACLs • L2 Interfaces • L3 Interfaces • Static Routes • VLANs • VRFs

14. Network Automation using Ansible: Use cases Campus Networking Data Center • Day 1 : • Dynamic Config generation • Provision of edge switches • Day 2-100: • Partial config update • Config Audit • Backup config • Day 1 : • Dynamic Config generation • Provision Spine nodes • Provision Leaf nodes • Day 2-100: • Config Audit • Check config diff and apply golden config

15. Scenario 1: Campus Deployment VSX Config query Config IP LAG LAG IP PC Client Ansible Server + TFTP DHCP Server Wired Camera

16. Demo Time!

17. Scenario 2: Data Center Fabric bring up TFTP Server config config config config Topology: AOS-CX 8325 Spine1 AOS-CX 8325 Spine2 AOS-CX 8320 Leaf1 AOS-CX 8320 Leaf2

18. Demo Time!

19. Aruba’s Support • Aruba Bots Automate Ansible Series on YouTube • GitHubs: • aruba/aoscx-ansible-role • aruba/aoscx-ansible-collection • aruba/aruba-ansible-modules • aruba/aruba-switch-ansible • Airheads Developer Community • Follow me on Twitter @twongster