This document provides an overview and introduction to Ansible and how it can be used for server and network device automation. It describes Ansible's key features such as being agentless, using YAML playbooks to define automation tasks, and supporting both Linux/Unix and network devices. The document demonstrates examples of using Ansible to automate tasks on Linux servers and Cisco network devices. It also provides resources for learning more about Ansible including recommended books, websites, and links to documentation and tutorials.
How to use Ansible to automate your applications in AWS. What is Ansible and why is it different? How to control cloud deployments securely and how to control AWS resources using dynamic inventory and tags.
A lot has happened this year in the world of hosting Plone sites. This 2014 Plone Conference session aims to provide a forum for sharing information and debating approaches. We will begin with brief presentations from our panelists, followed by questions and discussion.
- Steve McMahon: Ansible
- Cris Ewing: AWS OpsWorks
- Sven Strack: Nix, Docker, OpenVZ
- Nejc Zupan: Heroku
- Nate Aune: OpenShift, Dotcloud, and other PaaS providers
The AWS SDK for Go is now live and ready for developers to build productive applications with using the Go programming language. This session will show you how to get started using the AWS SDK for Go. We’ll introduce the best practices for how to use the SDK, and how it integrates with your Go application. We will explore an example application which uses async programming with Amazon S3 and Amazon SQS to distribute tasks across multiple concurrent goroutines, and use Amazon Elastic Beanstalk to deploy and scale the application.
How to use Ansible to automate your applications in AWS. What is Ansible and why is it different? How to control cloud deployments securely and how to control AWS resources using dynamic inventory and tags.
A lot has happened this year in the world of hosting Plone sites. This 2014 Plone Conference session aims to provide a forum for sharing information and debating approaches. We will begin with brief presentations from our panelists, followed by questions and discussion.
- Steve McMahon: Ansible
- Cris Ewing: AWS OpsWorks
- Sven Strack: Nix, Docker, OpenVZ
- Nejc Zupan: Heroku
- Nate Aune: OpenShift, Dotcloud, and other PaaS providers
The AWS SDK for Go is now live and ready for developers to build productive applications with using the Go programming language. This session will show you how to get started using the AWS SDK for Go. We’ll introduce the best practices for how to use the SDK, and how it integrates with your Go application. We will explore an example application which uses async programming with Amazon S3 and Amazon SQS to distribute tasks across multiple concurrent goroutines, and use Amazon Elastic Beanstalk to deploy and scale the application.
A talk from the Plone European Symposium in Sorrento and the Plone Conference in Budapest that explains the advantages of running Plone on Amazon EC2, and some of the things to look out for.
Scaling Django Apps using AWS Elastic BeanstalkLushen Wu
• What is AWS Elastic Beanstalk (EB)?
• What are the advantages of using EB over managing EC2 instances / Load-balancing / Auto-scaling myself?
• What are some common issues I might run into when deploying my Django app to EB?
Server Check.in case study - Drupal and Node.jsJeff Geerling
Server Check.in is a simple, inexpensive website and server monitor. See how Server Check.in was built, and how it uses Drupal and Node.js together to build an easy-to-use and powerful web application. See more at https://servercheck.in/
Reuven Lerner's first talk from Open Ruby Day, at Hi-Tech College in Herzliya, Israel, on June 27th 2010. An overview of what makes Rails a powerful framework for Web development -- what attracted Reuven to it, what are the components that most speak to him, and why others should consider Rails for their Web applications.
Ansible 2.0 - How to use Ansible to automate your applications in AWS.Idan Tohami
- How to use Ansible to automate your applications in AWS.
- What is Ansible and why is it different?
- How to control cloud deployments securely
- How to control AWS resources using dynamic inventory and tags.
Ansible 2.0 - How to use Ansible to automate your applications in AWS.Idan Tohami
- How to use Ansible to automate your applications in AWS.
- What is Ansible and why is it different?
- How to control cloud deployments securely
- How to control AWS resources using dynamic inventory and tags.
A talk from the Plone European Symposium in Sorrento and the Plone Conference in Budapest that explains the advantages of running Plone on Amazon EC2, and some of the things to look out for.
Scaling Django Apps using AWS Elastic BeanstalkLushen Wu
• What is AWS Elastic Beanstalk (EB)?
• What are the advantages of using EB over managing EC2 instances / Load-balancing / Auto-scaling myself?
• What are some common issues I might run into when deploying my Django app to EB?
Server Check.in case study - Drupal and Node.jsJeff Geerling
Server Check.in is a simple, inexpensive website and server monitor. See how Server Check.in was built, and how it uses Drupal and Node.js together to build an easy-to-use and powerful web application. See more at https://servercheck.in/
Reuven Lerner's first talk from Open Ruby Day, at Hi-Tech College in Herzliya, Israel, on June 27th 2010. An overview of what makes Rails a powerful framework for Web development -- what attracted Reuven to it, what are the components that most speak to him, and why others should consider Rails for their Web applications.
Ansible 2.0 - How to use Ansible to automate your applications in AWS.Idan Tohami
- How to use Ansible to automate your applications in AWS.
- What is Ansible and why is it different?
- How to control cloud deployments securely
- How to control AWS resources using dynamic inventory and tags.
Ansible 2.0 - How to use Ansible to automate your applications in AWS.Idan Tohami
- How to use Ansible to automate your applications in AWS.
- What is Ansible and why is it different?
- How to control cloud deployments securely
- How to control AWS resources using dynamic inventory and tags.
How to use Ansible to go faster when creating AWS resources, building servers, and deploying apps. This talk focuses on how AWS developers and admins can use simple Ansible scripts to rapidly create AWS resources including VPCs, security groups and instances, then configure new development and production servers, and deploy their apps. No more "snowflake servers"!
Ansible 101 - Presentation at Ansible STL MeetupJeff Geerling
Jeff Geerling, author of Ansible for DevOps, demonstrates basic Ansible usage on the Dramble, a cluster of six Raspberry Pi 2 computers.
This presentation was delivered on July 8, 2015, at the Ansible St. Louis meetup, at Riot Games in Clayton, MO.
Presentation of my TechTalk at eSapce (Every Thursday one of the departments make a session about something recently begun to use or a new technology, this was my session from SysOps team.) This is an introduction to Ansible, and how to get started with it ... and since then we moved to Ansible :-)
Ansible is a great tool for many purposes like: configuration management, contentious deployment, and multi-tier orchestration ... and more!
- http://tech.aabouzaid.com/
- http://espace.com.eg/
- http://ansible.com/
Slides from Ansible Oxford meetup on 29th July 2015: Cows and Containers. How does Ansible play with Docker? How can we use Ansible to build, ship and run Docker containers?
(Click 2nd slide for video) Deploy PHP apps faster in 2017. This talk focuses on how PHP developers can use simple Ansible scripts to rapidly configure new dev and production servers from scratch, and deploy their apps. No more "snowflake servers"!
This is a general introduction to DevOps essentials and Ansible, with a few extras for PHP developers, including some best practice tips and overview of two major Ansible-based PHP projects, Drupal-VM and Trellis (modern WordPress setup).
Understanding Elastic Block Store Availability and PerformanceAmazon Web Services
Depending on your application needs, Elastic Block Store’s volumes can be configured for optimal performance and higher availability. In this session, we will present the different design characteristics of EBS Standard and Provisioned IOPS volumes, provide technical insights on how to think about EBS performance and availability, and share best practices to achieve higher availability and performance.
Containerization Is More than the New VirtualizationC4Media
Video and slides synchronized, mp3 and slide download available at URL http://bit.ly/1E5GzZX.
Jérôme Petazzoni borrows from his experience at Docker Inc. to explain live applications running in Docker, including reading logs, remote access, and troubleshooting tips. Filmed at qconsf.com.
Jérôme Petazzoni is a senior engineer at dotCloud, where he rotates between Ops, Support and Evangelist duties and the nickname of “master Yoda”, has earned.
With more businesses moving to cloud-based solutions everyday, we must re-think the strategies used to deploy Perl applications and related libraries, given the volatile aspects of the cloud and its constraints.
In this talk I go over the challenges posed by virtualised environments, and consider several solutions to them. The use cases are all related to Amazon's EC2, but will easily be adapted for GoGrid, Mosso, and others.
Similar to UNM Tech Day 2018 - Ansible: Server and Network Device Automation (20)
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
Sudheer Mechineni, Head of Application Frameworks, Standard Chartered Bank
Discover how Standard Chartered Bank harnessed the power of Neo4j to transform complex data access challenges into a dynamic, scalable graph database solution. This keynote will cover their journey from initial adoption to deploying a fully automated, enterprise-grade causal cluster, highlighting key strategies for modelling organisational changes and ensuring robust disaster recovery. Learn how these innovations have not only enhanced Standard Chartered Bank’s data infrastructure but also positioned them as pioneers in the banking sector’s adoption of graph technology.
Maruthi Prithivirajan, Head of ASEAN & IN Solution Architecture, Neo4j
Get an inside look at the latest Neo4j innovations that enable relationship-driven intelligence at scale. Learn more about the newest cloud integrations and product enhancements that make Neo4j an essential choice for developers building apps with interconnected data and generative AI.
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIVladimir Iglovikov, Ph.D.
Presented by Vladimir Iglovikov:
- https://www.linkedin.com/in/iglovikov/
- https://x.com/viglovikov
- https://www.instagram.com/ternaus/
This presentation delves into the journey of Albumentations.ai, a highly successful open-source library for data augmentation.
Created out of a necessity for superior performance in Kaggle competitions, Albumentations has grown to become a widely used tool among data scientists and machine learning practitioners.
This case study covers various aspects, including:
People: The contributors and community that have supported Albumentations.
Metrics: The success indicators such as downloads, daily active users, GitHub stars, and financial contributions.
Challenges: The hurdles in monetizing open-source projects and measuring user engagement.
Development Practices: Best practices for creating, maintaining, and scaling open-source libraries, including code hygiene, CI/CD, and fast iteration.
Community Building: Strategies for making adoption easy, iterating quickly, and fostering a vibrant, engaged community.
Marketing: Both online and offline marketing tactics, focusing on real, impactful interactions and collaborations.
Mental Health: Maintaining balance and not feeling pressured by user demands.
Key insights include the importance of automation, making the adoption process seamless, and leveraging offline interactions for marketing. The presentation also emphasizes the need for continuous small improvements and building a friendly, inclusive community that contributes to the project's growth.
Vladimir Iglovikov brings his extensive experience as a Kaggle Grandmaster, ex-Staff ML Engineer at Lyft, sharing valuable lessons and practical advice for anyone looking to enhance the adoption of their open-source projects.
Explore more about Albumentations and join the community at:
GitHub: https://github.com/albumentations-team/albumentations
Website: https://albumentations.ai/
LinkedIn: https://www.linkedin.com/company/100504475
Twitter: https://x.com/albumentations
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024Neo4j
Neha Bajwa, Vice President of Product Marketing, Neo4j
Join us as we explore breakthrough innovations enabled by interconnected data and AI. Discover firsthand how organizations use relationships in data to uncover contextual insights and solve our most pressing challenges – from optimizing supply chains, detecting fraud, and improving customer experiences to accelerating drug discoveries.
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
Pushing the limits of ePRTC: 100ns holdover for 100 daysAdtran
At WSTS 2024, Alon Stern explored the topic of parametric holdover and explained how recent research findings can be implemented in real-world PNT networks to achieve 100 nanoseconds of accuracy for up to 100 days.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
zkStudyClub - Reef: Fast Succinct Non-Interactive Zero-Knowledge Regex ProofsAlex Pruden
This paper presents Reef, a system for generating publicly verifiable succinct non-interactive zero-knowledge proofs that a committed document matches or does not match a regular expression. We describe applications such as proving the strength of passwords, the provenance of email despite redactions, the validity of oblivious DNS queries, and the existence of mutations in DNA. Reef supports the Perl Compatible Regular Expression syntax, including wildcards, alternation, ranges, capture groups, Kleene star, negations, and lookarounds. Reef introduces a new type of automata, Skipping Alternating Finite Automata (SAFA), that skips irrelevant parts of a document when producing proofs without undermining soundness, and instantiates SAFA with a lookup argument. Our experimental evaluation confirms that Reef can generate proofs for documents with 32M characters; the proofs are small and cheap to verify (under a second).
Paper: https://eprint.iacr.org/2023/1886
2. www.anm.com
Who we are
Klaus Mueller
Senior Solutions Architect, ANM
• Route/Switch CCIE #5450
• 30+ years experience in IT
• 20 years experience working with
State/Local, Healthcare, Education,
and Commercial in New Mexico
• Specialize in campus and data
center networks
Ian Logan
Senior Solutions Architect, ANM
• 20 years at NMSU
– Data center architecture
– Private networks for energy
management systems
– Unix & Linux systems administration
• Specialize in data center
virtualization and automation
3. www.anm.comwww.anm.com
ANM is headquartered in
Albuquerque, NM and
operates in Colorado,
Texas and New Mexico. In
addition to Albuquerque,
ANM has offices in
Denver (CO),
Colorado Springs (CO)
and El Paso (TX).
4. www.anm.com
Evolution of Network Configuration
First Cisco Router
1986
Latest Cisco Router
2018
CLI via console
and Telnet
CLI via console
and SSH
8. www.anm.com
To be fair…
Data Center Network Fabrics
Cisco ACI VMware NSX
Software Defined Networks
Network Function Virtualization (NFV)
Network Programmability
APIs and Standards
NetDevOps
“Infrastructure as Code”
9. www.anm.com
More on “Software Defined”
Software Defined Networks
Many approaches:
• Controller-based, centralized data plane (e.g.
OpenFlow)
• Central policy engine (e.g. Cisco ACI)
Focus has been on data center – ACI, Vmware NSX
Evolving to WAN (SD-WAN – e.g. Viptela, Riverbed),
and Access (SD-Access – e.g. Cisco Digital Network
Architecture, aka DNA)
Very promising, still early in adoption in most orgs.
10. www.anm.com
“The Holy Grail”
Be like Facebook
Automatically
deploy a fully
populated rack
of servers and
network gear
with minimal
intervention.
Or somewhere in between…
• Standardized configs
• Automated deployment
• Push changes quickly
• Automate repetitive tasks
12. www.anm.com
• Python
– Scripting
• Linux (or Mac OS X)
– Using open-source tools
• Templating
– Jinja
• Programmability
– REST APIs
– YAML, JSON, XML
– NETCONF
• Data Models
– YANG
Network Engineers need new skills
13. www.anm.com
“DevOps Tools”
can help bridge the gap
• Automation
– Configuration
deployment and
management
• Open Source
• Community Driven
• Many learning
resources
• Chef and Puppet
– Agent-based
• Ansible and Salt
– Agent-less
14. www.anm.com
• Agent-less
• Works well for both
network and servers
• Idempotent
configuration
management
• Modular framework
• Supported by Red Hat
• Works with templates
and variables
• Communicates over
SSH
• Simple templating
language (Playbooks =
YAML)
Ansible – “The Easier Button”
16. www.anm.com
Ansible – Deep dive
How would you describe Ansible in one
sentence?
• A tool for expressing the desired state of a
system at a high level.
18. www.anm.com
Ansible – Deep dive
• Requirements for installing Ansible
– Python 2.6/2.7 or 3.5 and newer
– A Unix like system to act as the control machine
19. www.anm.com
Ansible – Deep dive
Playbook
Ansible
Engine
Managed
Node
SSH
• Inventory Host File
• API
• Modules
• Password Vault
• Unix/Linux/Windows
• Cisco IOS/NXOS/ACI
• vSphere
• And many more…
• A YAML doc
• Living MOP
20. www.anm.com
Ansible – Deep dive
• Choices on installing Ansible
– Vendor packages or Python pip
– Packages might be a little stale but ease of
maintenance is probably worth it.
24. www.anm.com
Ansible – Deep dive
Ansible’s inventory system:
• A simple text file.
• Dynamic inventory from AWS, OpenStack, etc.
• You can use both simultaneously.
25. www.anm.com
Ansible – Deep dive
Ansible host file:
• INI style formatting
• Group names are in []
• Hosts can belong to
multiple groups
• Groups can be nested
26. www.anm.com
Ansible – Deep dive
Linux demo environment:
– Precreated a user named “ansible” on each
machine
– SSH authorized_keys configuration
– Added sudo configuration for the ansible user
– These steps are all optional, but they make the
demo easier.
28. www.anm.com
Ansible – Deep dive
Ansible facts & variables:
• Facts are variables that describe the system
being managed
• Facts can be automatically gathered
• You reference a variable with “{{ variable }}”
29. www.anm.com
Ansible – Deep dive
Ansible facts & variables:
• You can get all of the facts for a device with a
one liner
– ansible ios-devices -c network_cli -m ios_facts
– ansible linux -m setup
30. www.anm.com
Ansible – Deep dive
• Gathering facts
takes a while
• On a Linux host it
there are over 100
facts
• Output from many one liners will be in JSON
31. www.anm.com
Ansible – Deep dive
Ansible playbooks:
• Playbooks are our tool for automating
complex tasks.
• Playbooks also allow us to express
orchestration across multiple managed nodes.
• They’re written as YAML documents.
32. www.anm.com
Ansible – Deep dive
YAML:
• Indentation matters!!
– Indent to group related items
• # begins a comment
• - - - begins a YAML document
• - to denote list elements
33. www.anm.com
Ansible – Deep dive
A sample playbook:
• Hosts: the target nodes
• Become* do we need
elevated privileges?
• Tasks: list of things to do
– We call these plays
• Yum is an ansible module
– Name: httpd – a RPM name
– State: present or absent
35. www.anm.com
Ansible – Deep dive
Playbooks can be executable scripts:
• Add a “#!/usr/bin/ansible-playbook” as the
first line
• Make the file executable
43. www.anm.com
Ansible – Deep dive
Make sure you write the entire command!
– Ios_config module makes comparisons between
the playbook and the running config.
– If its not an exact match, the command is
executed at every run.
44. www.anm.com
Ansible – Deep dive
We’re not using SSH keys to login to the router,
where’s the password?
• We can store the password in a variable.
• Variables can be stored in encrypted files
called vaults.
45. www.anm.com
Ansible – Deep dive
How do we organize per host or group
variables?
• We can put them in the playbook itself.
• We can create host/group variables in the
host_vars/group_vars directory.
– One file for each host/group.
46. www.anm.com
Ansible – Deep dive
Host variables for an IOS device
• Ansible_connection: network_cli removes the
need for python on the node
• Ansible_network_os: ios, vyos, junos, etc.
• Ansible_ssh_pass: the login password
48. www.anm.com
DevOps: “The 3 Ways”
via Gene Kim, et al
see “The Phoenix Project”
and “The DevOps Handbook”
49. www.anm.com
E.g. Use Cases
• Regular, repetitive tasks
• Large-scale infrequent tasks
– pushing config changes to large
number of devices
• In-frequent tasks that require
consistency
– e.g. device deployment
• Building Flow: Theory of
Constraints
– manual tasks that take a long
time that can be automated
• Pushing configs to multiple
device
• Templatizing config changes
• Automating config changes
• Automating deployments
• Reporting and compliance
53. www.anm.com
Links
• Ansible.com
– Documentation and Quick Start videos:
docs.ansible.com
• Developer.cisco.com
– ”Introduction to Ansible”
https://learninglabs.cisco.com/lab/ansible-02_ansible-intro/step/1
– “NetDevOps” videos – Ansible for Cisco configuration management
https://developer.cisco.com/video/net-prog-basics/05-netdevops
– “Getting Hands on with Ansible” Learning Lab
https://learninglabs.cisco.com/lab/ansible-03_ansible-hands-on/step/1
54. www.anm.com
Contact Us
• See us at ANM table in the Vendor Fair
– Demo capability
• Email us:
– Klaus.Mueller@anm.com
– Ian.Logan@anm.com
• https://www.slideshare.net/klausternm
• www.anm.com