Test your Network
Project description
Netests.io
dylan.hamel@protonmail.com - November 2019 - Copyright
Install
Create your environnement :
» python3 -m venv .
» source ./bin/activate
(netests) ------------------------------------------------------------
(master*) »
» pip install --upgrade pip
» pip --version
pip 19.2.3
Devices used
Cisco IOS-XE
ROM: IOS-XE ROMMON
BOOTLDR: System Bootstrap, Version 16.12.1r, RELEASE SOFTWARE (P)
Cisco Nexus NXOS
Nexus 9000v is a demo version of the Nexus Operating System
Software
BIOS: version
NXOS: version 7.0(3)I7(5a)
BIOS compile time:
NXOS image file is: bootflash:///nxos.7.0.3.I7.5a.bin
NXOS compile time: 10/12/2018 19:00:00 [10/13/2018 03:16:04]
Juniper VMX
> show version
Hostname: leaf04
Model: vmx
Junos: 18.3R1.9
#----------------------
> show version
Hostname: leaf04
Model: vmx
Junos: 19.4R1.10
Cumulus
Version 3.7.9
Version 4.0.0
Arista
Version 4.23.1F
Extreme Network VSP (VOSS)
Version 8.1.0.0
How to use ??
This tool contains two modes :
- Integrity & Sanity checks
- CLI
Integrity & Sanity checks
The idea of this project is to offer a test platform for the network to allow engineers to perform tests without having to write python code (or other languages :smile:).
In addition, this platform does not consider the OS, it is possible to run tests on Cisco, Cumulus, Juniper devices without changing the data structure.
Define inventory
- You have to create a Nornir or an Ansible inventory (Example based on an Ansible Inventory)
hosts file.
[leaf]
leaf01 # Cumulus Networks
leaf02 # Cisco Nexus 9k
leaf03 # Arista vEOS
leaf04 # Juniper Networks
leaf05 # Cisco IOS
[spine]
spine01 # Cumulus Networks
spine02 # Extreme Networks VSP
spine03 # Cisco IOS-XR
- Define device parameters in
host_vars/inventory_hostname.ymlfiles
hostname: 10.0.5.202
platform: linux # <<=== specify device OS (Cumulus Linux)
username: admin
password: Ci$co123
connexion: ssh # <<=== specify connexion method - check supported protocols
port: 22
hostname: 10.0.5.204
platform: junos # <<=== specify device OS (Juniper)
username: root
password: Jun1p3r
connexion: netconf # <<=== specify connexion method - check supported protocols
port: 830
hostname: 10.0.5.203
platform: eos # <<=== specify device OS (Arista)
username: admin
password: admin123
connexion: api # <<=== specify connexion method - check supported protocols
port: 443
Define tests
Tests are defined in the file netests.yml. In this file you can define which test will be executed.
config:
nornir_cfg: ./nornir/config_ansible.yml
inventory: ./inventory/ansible/hosts
protocols:
bgp:
test: false
cdp:
test: false
lldp:
test: true
facts:
test: false
ping:
test: false
In truth_vars/ you need to define the configuration that you want on your production devices.
Exemple :
There are three ways to define variables :
- For a specific host - define your configuration in
truth_vars/hosts/hostname/protocol.yml
LLDP configuration
- local_name: leaf03
local_port: Ethernet1
neighbor_mgmt_ip: 192.168.1.148
neighbor_name: cumulus
neighbor_os: Cumulus Linux version 4.0.0
neighbor_port: swp1
neighbor_type: ["Bridge", "Router"]
Will test that the neighbor on the port
Ethernet1is a device namedcumulusand the connexion is on the portswp1.
- For all hosts defined in a group - such as
spines- define intruth_vars/groups/group/protocol.yml
Group is spine-arista.
Facts configuration
domain: dh.local
version: 4.24.0F
Will test if all devices linked to this group has
dh.localas domain name,4.24.0Fas version.
- for all devices - define
truth_vars/all/{{ protocol }}.yml
domain: dh.local
Will test if all devices in your inventory have t domain
dh.local.
The script will connect on each devices, retrieveinformations and campre them with the data define in your truth_vars/ (source of truth).
If the informations are the same the tests is OK :smile:
Run the script
./netests.py -x -i inventory/ansible/hosts -a netests.yml
[netests - base_run.py](ping) is working = True
# -x / Define that you will use an Ansible inventory
# -i / Path to your Ansible inventory
# -a / Path to your netests configuration file (default is netests.yml)
Netests-CLI
You can get some informations regarding you network configuration directly from the CLI.
This tool will use your Ansible/Nornir/Netbox Inventory. For example :
[leaf]
leaf01
leaf02
leaf03
leaf04
leaf05
[spine]
spine01
spine02
spine03
Run the CLI tool
⚡ ./netests.py -x -i inventory/ansible/hosts -a netests.yml -t
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Welcome to Netests CLI
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Get HELP
> help
+------------------------------------------------------------+
| Netests Help |
+------------------------------------------------------------+
| [help] Display help |
| [select] Select devices on which on action will be exec |
| [unselect] Remove a device from the selected |
| [selected] Show devices currently selected |
| [get xx] Get XX protocols informations |
| [options] Set arguments that will retrieve for a Protocol|
| [more xx] Show XX Protocol class arguments selected |
| [show xx] Show XX Protocol class arguments |
| [print yy] Show YY devices informations |
| [compare yy xx] Compare device config with source of truth|
| [exit] Quit Netests CLI |
+------------------------------------------------------------+
Get help for a specific command
> help options
+------------------------------------------------------------+
| Netests - Options Commands |
+------------------------------------------------------------+
| This command is used to define which parameter will be |
| retrieve for a protocol. |
| It is possible to get a subset of protocols parameters. |
| Format : |
| > options {{ protocol }} {{ classArg1,classArg2 }} |
| (To get all protocols parameters use the 'show' command) |
| |
| Examples : |
| > options vrf vrf_name,rd,rt_imp,rt_exp |
+------------------------------------------------------------+
Print hosts defined in your inventory :
{ 'leaf01': { 'connexion': 'ssh',
'hostname': '172.16.194.51',
'platform': 'linux',
'port': 22},
'leaf02': { 'connexion': 'api',
'hostname': 'sbx-nxos-mgmt.cisco.com',
'platform': 'nxos',
'port': 443},
'leaf04': { 'connexion': 'netconf',
'hostname': '66.129.235.11',
'platform': 'junos',
'port': 40002},
'leaf05': { 'connexion': 'ssh',
'hostname': 'ios-xe-mgmt.cisco.com',
'platform': 'ios',
'port': 8181}}
Select devices
At the beginning if you use a command to get some network informations, nothing will happend. The reason is that no device is selected.
> get vrf
[[netests - get_vrf]] no device selected.
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
@End GET
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-
You have to select devices on which one you would get informations
Select all devices in the inventory
> select *
@Followings devices will be added to the list :
@['leaf01', 'leaf02', 'leaf03', 'leaf04', 'leaf05', 'spine01', 'spine02', 'spine03']
Select only a subset of devices
> select leaf01,spine03
@Followings devices will be added to the list :
@['leaf01', 'spine03']
Print selected devices
> selected
@Followings devices are selected :
@['leaf01', 'leaf02', 'leaf04', 'leaf05']
Execute GET
Run the command get and the protocols that you would like retrieve.
> select leaf01,spine03
@Followings devices will be added to the list :
@['leaf01', 'spine03']
> get vrf
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
>>>>> spine03
{ 'ListVRF': [ { 'VRF': { 'exp_targ': 'NOT_SET',
'imp_targ': 'NOT_SET',
'l3_vni': 'NOT_SET',
'rd': 'NOT_SET',
'rt_exp': 'NOT_SET',
'rt_imp': 'NOT_SET',
'vrf_id': 'NOT_SET',
'vrf_name': 'MGMT_VRF',
'vrf_type': 'NOT_SET'}},
{ 'VRF': { 'exp_targ': 'NOT_SET',
'imp_targ': 'NOT_SET',
'l3_vni': 'NOT_SET',
'rd': 'NOT_SET',
'rt_exp': '65000:1',
'rt_imp': '65000:1',
'vrf_id': 'NOT_SET',
'vrf_name': 'EXTERNAL_PEERING',
'vrf_type': 'NOT_SET'}}]}
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
>>>>> leaf01
{ 'ListVRF': [ { 'VRF': { 'exp_targ': 'NOT_SET',
'imp_targ': 'NOT_SET',
'l3_vni': 'NOT_SET',
'rd': 'NOT_SET',
'rt_exp': 'NOT_SET',
'rt_imp': 'NOT_SET',
'vrf_id': '1001',
'vrf_name': 'mgmt',
'vrf_type': 'NOT_SET'}}]}
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
@End GET
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Compare config with truth_vars/
> compare facts
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-
{ 'Facts': { 'base_mac': 'NOT_SET',
'build': 'fc2',
'domain': 'NOT_SET',
'hostname': 'csr1000v',
'interfaces_lst': [ 'GigabitEthernet1',
'GigabitEthernet2',
'GigabitEthernet3',
'Loopback3',
'Loopback1234',
'Loopback9009'],
'memory': '8113280',
'model': 'CSR1000V',
'serial': '9OOFTICVAFM',
'vendor': 'Cisco',
'version': '16.9.3'}}
[netests - compare_facts] Key infos_data is missingfor leaf05 or no Facts data has been found.
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-
@The following devices have the same configuration that defined in the source of truth :
@[leaf05].
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-
>
Screenshot
Video
https://www.youtube.com/watch?v=_WStUkQLWEU
Capabilities Supported by Protocols & Connexion modes
| VRF | FACTS | BGP | BGP_UP | LLDP | CDP | PING | OSPF | |
|---|---|---|---|---|---|---|---|---|
| NAPALM | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :no_entry: | :no_entry: | :no_entry: |
| Juniper SSH | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :no_entry: | :white_check_mark: | :white_check_mark: |
| Juniper Netconf | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :no_entry: | :white_check_mark: | :white_check_mark: |
| Juniper API | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :no_entry: | :white_check_mark: | :white_check_mark: |
| Cumulus SSH | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: |
| Cumulus Netconf | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: |
| Cumulus API | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :no_entry: | :white_check_mark: |
| Arista SSH | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :no_entry: | :white_check_mark: | :white_check_mark: |
| Arista API | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :no_entry: | :white_check_mark: | :white_check_mark: |
| Arista Netconf | :white_check_mark: | :warning: | :warning: | :warning: | :warning: | :no_entry: | :warning: | :warning: |
| Nexus SSH | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: |
| Nexus Netconf | :white_check_mark: | :warning: | :warning: | :warning: | :warning: | :warning: | :no_entry: | :warning: |
| Nexus API | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: |
| IOS SSH | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: |
| IOS API | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :warning: | :warning: | :no_entry: | |
| IOS Netconf | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :warning: | :warning: | :no_entry: | |
| Extreme VSP SSH | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :no_entry: | :white_check_mark: | :white_check_mark: |
| Extreme VSP API | :no_entry: | :white_check_mark: | :no_entry: | :no_entry: | :white_check_mark: | :no_entry: | :no_entry: | :no_entry: |
| Extreme VSP Netconf | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: |
| IOSXR SSH | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | |
| IOSXR Netconf | :white_check_mark: | :warning: | :white_check_mark: | :white_check_mark: | :warning: | :warning: | :white_check_mark: 6.2.1 | |
| IOSXR API | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: | :no_entry: |
:warning: = Not Implemented
:no_entry: = Not Supported
TextFSM templates
Some templates have be retreieved on :
https://github.com/networktocode/ntc-templates/tree/master/templates
Alternative to NAPALM ??
The answer is definitely NO !!
NAPALM has many many more functions about configuration management.
Netests only gets data from devices convert in object and compares to your source of truth.
Moreover, Nestests uses NAPALM.
To have more informations about all posibilities offered by NAPALM have look on the following links :
https://gitlab.com/DylanHamel/netests
https://github.com/napalm-automation
https://napalm.readthedocs.io/en/latest/
Contributor
Dylan Hamel - dylan.hamle@protonmail.com
Become a contributor !!!
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
netests-0.1.4.tar.gz
(93.4 kB
view details)
Built Distribution
netests-0.1.4-py3-none-any.whl
(205.1 kB
view details)
File details
Details for the file netests-0.1.4.tar.gz.
File metadata
- Download URL: netests-0.1.4.tar.gz
- Upload date:
- Size: 93.4 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: poetry/1.0.5 CPython/3.7.0 Darwin/19.4.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | d6b3a96a47d946d69c0f3849c1eca8580e817a289fe1fe7cb03ba370f3ee36d3 |
|
| MD5 | 2620633619806f2e12dbbcc1360bbbb7 |
|
| BLAKE2b-256 | fdbc6656bafc7d25ff4bf3af3965ad25cf3467549fe2f1d8693531da9a6a3e53 |
File details
Details for the file netests-0.1.4-py3-none-any.whl.
File metadata
- Download URL: netests-0.1.4-py3-none-any.whl
- Upload date:
- Size: 205.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: poetry/1.0.5 CPython/3.7.0 Darwin/19.4.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 3ed1da0da5bfc162153eca5be5f25f7f54f140f1a5438ebbcbb0d3932f3b9039 |
|
| MD5 | f977b09a373ebde03c136d48b5e4e470 |
|
| BLAKE2b-256 | 7a405b2a5bd74783227cdf208f95009fdc1aa1e0606165c28560c13bcbe26770 |
