Shulou(Shulou.com)06/01 Report--

Recently, I have been studying the ginger juice teacher's Ansible tutorial and specially went to see Ender's Game.

Writing this article can be regarded as a record of study and experiment. I'm afraid I'll forget all about it in case I need it for the next job. #

The first is the installation of the Ansible control host, there is a hole here. When we execute playbook, there will be Error: xxxxx,Msg:xxxxx, which will prompt you for install ncclient. Because netconf is a module of Py3, Ansible uses Py2.7 by default.

Attach a link to the solution: https://acozine.github.io/html/reference_appendices/python_3_support.html

Let's take a look at juniper.junos:

Juniper.junos Ansible Modules

Contents:

Juniper_junos_jsnapy

Juniper_junos_srx_cluster

Juniper_junos_ping

Juniper_junos_command

Juniper_junos_system

Juniper_junos_facts

Juniper_junos_config

Juniper_junos_software

Juniper_junos_pmtud

Juniper_junos_table

Juniper_junos_rpc

You may even find modules with HA. Facts is used to collect junos system information, and config is used to help us with configuration today.

When you go to the config module, you can see the brief introduction, options and examples of the module. Can perform many functions including: loading or rolling back, checking, diffing, retrieving, and committing the configuration, let's first use the simplest commit. Please install eznc before using it.

Officially start the configuration:

Write host and var to the hosts file:

[ex3300]

192.168.11.169

[ex3300:vars]

Ansible_connection=network_cli

# ansible_connection=netconf

Ansible_network_os=junos

Ansible_user=netops

Ansible_password=juniper123

Prepare the configuration file:

More junos_config_vars/vsrx_vars_ex3300.yaml

-

Vsrx_config_ex3300:

-set routing-options static route 2.2.2.2 Universe 32 discard

Srx320 19.1R3 Vsrx15.1R and Ex3300 12.3R9 version tests were used in the experiment. It doesn't matter if the names of the files here are confused.

Device initialization:

MGT interface ssh/netconf and ssh users of the device:

Set system root-authentication encrypted-password "$1 $d2G1wOPF$Lth.0XBee52ROKcFwayxr/"

Set system login user netops uid 203

Set system login user netops class super-user

Set system login user netops authentication encrypted-password "$1 $HFIwO3Kj$OQ9IDKraR5rYSns2mRXJh/"

Set system services ftp

Set system services ssh root-login allow

Set system services netconf ssh port 830

Set interfaces me0 unit 0 family inet address 192.168.11.169/24

Write a screenplay:

The configuration variable is imported into the variable file, and the vars_files parameter is used to locate.

Vars_files:

-junos_config_vars/vsrx_vars_ex3300.yaml

Edit the options of juniper_junos_config:

Juniper_junos_config:

Config_mode: 'exclusive' # defaults to exclusive

Load: 'set' # set or merge mode

Lines: "{{vsrx_config_ex3300}}" # contains a list of configured strings

Commit: yes # is not check or anything. Direct commit.

Run. Ansible-playbook junos_config_ex3300.yaml

PLAY [configure SRX] *

TASK [configure infomation:] *

Ok: [192.168.11.169] = > {

"vsrx_config_ex3300": [# debug outputs the var variable, which is the configuration file.

"set routing-options static route 3.3.3.3 set routing-options static route 32 discard"

]

}

TASK [load configure into vSRX] *

There will be a lot of warnings here, but the results will be ignored for the time being (in fact, I didn't understand it when I went to the official website).

Changed: [192.168.11.169]

TASK [print configure results] *

Ok: [192.168.11.169] = > {# changed = = true thus debug msg

"msg": "vSRX configure completed thanks"

}

PLAY RECAP *

192.168.11.169: ok=3 changed=1 unreachable=0 failed=0 skipped=0 rescued=0 ignored=0

Sort out the train of thought: device initialization; Ansible host and var; configuration variables (variable file way); Playbook (there are too many things you can do this time to use the location of the file with positioning variables, output the configuration before configuration, import the configuration to the corresponding host using the module, and output prompts after successful changed configuration).

In the example of the official website, there is one that comes directly from this:

Lines:

-'set system services netconf ssh'

Finally, go back to the device to see the configuration of compare | rollback 1:

+ route 3.3.3.3 route 32 discard

Done, simply use Ansible to configure Juniper devices!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.