December 2, 2022

Network configuration tools: introduction


Network automation is changing the face of the industry, and advanced network configuration tools are driving the paradigm shift. From intent-based networking, or IBN, to automating change management, new tools are needed as networks become increasingly distributed and complex. Manual configuration is slowly giving way to new management strategies.

Policies for network configuration tools

The question for many networking teams is: when is it best to start using automation and how should it be implemented? For many teams, the best place to start is to create configurations. Engineers don’t need to use a command-line interface (CLI), and they can start thinking about device configurations from the perspective of the variables that distinguish different configurations.

A configuration management strategy will also depend on the type of automation system to be used. Configurations are not necessarily common building blocks to operations such as authentication, authorization, and accounting, or simple network management protocol. This can leave too many gaps.

Experienced automation engineers identify configuration variables, creating larger models in Jinja2 and Ansible, with fewer different variables. For example, using automation in a Cisco switch configuration, the virtual LAN ID, VLAN name, and IP address can be combined to create a virtual interface and VLAN definition. This approach, according to Terry Slattery, Principal Architect at NetCraftsmen, is much more powerful than dealing with the problem from a building block perspective.

Eventually, training new engineers to manually configure components may become less necessary beyond a simple baseline. But this will vary greatly from person to person. For some, manual configuration can be a good starting point to generate automation.

The advent of IBN, meanwhile, is redefining the scope of automation. IBN abstracts the CLI in favor of a graphical user interface that engineers can use to determine what they want to happen on the network, based on business needs.

Vendors including Cisco, Apstra, Veriflow, and Forward Networks, among others, are developing network configuration tools that align with IBN. The goal is to reduce the number of hours needed to set up networks.

Change management automation

Individual configuration of network devices has long since become impossible for most network teams. For most organizations, the next step was to create scripts with a series of CLI commands. However, creating and maintaining all of these scripts is time-consuming and error-prone.

This is especially true with network function virtualization, mobile phones, virtual switches, and bare metal switches that have dramatically increased the size of modern networks. According to industry expert David Jacobs, change management tools have emerged to automate scripting and eliminate the need for network managers to remember a particular command syntax for each type of network device.

Change management automation systems archive network configurations from previous updates. If a new update goes wrong, the network can be quickly reconfigured as it was before. Even the most recent device configuration can be quickly restored if a device stops working and needs to be replaced. These products scan the network, detect and report manual configuration changes. Scans also record an inventory of devices on the network.

Virtual Network Functions (VNFs) and virtual switches present new challenges for change management and automation tools. Unlike hardware, virtual machines can be created and then deleted when no longer needed; static network configuration tools no longer work. Tools like Ansible, Chef, and Puppet give IT teams the ability to automate and manage resident functions of virtual machines, including virtual switches and VNFs.

The role of SDN

Software-defined networking introduces a holistic approach to automated management, with network and server management treated as a combined effort. SDN controllers manage network resources, defining paths for packet flows between source and definition. Unlike traditional networks, the Open Shortest Path First and Spanning Tree protocols no longer determine the route that packets follow.

In SDN systems, applications communicate unique bandwidth requirements and the controller configures the network to support the requirements. Static configuration of devices – either manually or via scripts – is no longer possible.

In this scenario, engineers responsible for managing change need to develop coding skills and work more closely with application developers to understand the resource requirements needed for each application.

Source link