Ukukhishwa okuzayo kwe-Red Hat Ansible Engine 2.9 kuletha ukuthuthukiswa okuthakazelisayo, okunye okuxoxwa ngakho kulesi sihloko. Njengenjwayelo, besithuthukisa i-Ansible Network ngokuvulelekile, ngosekelo lomphakathi. Hlanganyela nathi - sibheke kanye nokufunda ngohlelo lwentuthuko ekhasini le-wiki le .
Njengoba sisanda kumemezela, manje ihlanganisa i-Ansible Tower, Ansible Engine nakho konke okuqukethwe kwe-Ansible Network. Namuhla, izinkundla zokuxhumana ezidumile zisetshenziswa ngamamojula Ansible. Ngokwesibonelo:
- U-Arista EOS
- Cisco iOS
- I-Cisco iOS XR
- I-Cisco NX-OS
- Ijuniper Junos
- I-VyOS
Ukuze uthole uhlu oluphelele lwamapulatifomu asekelwa ngokugcwele yi-Red Hat ngokubhaliselwe kwe-Ansible Automation, .
Yini esiyifundile
Kule minyaka emine edlule, sifunde okuningi mayelana nokuthuthukisa inkundla yenethiwekhi ezishintshayo. Nathi safunda lokho kanjani ama-artifact enkundla asetshenziswa ezincwadini zokudlala ze-Ansible kanye nezindima ngabasebenzisi bokugcina. Futhi nakhu esikutholile:
- Izinhlangano zingamadivayisi azishintshayo kusuka hhayi nje koyedwa, kodwa kubathengisi abaningi.
- I-Automation ayiyona nje into yobuchwepheshe, kodwa futhi iyisiko.
- Ukuzenzakalela amanethiwekhi esikalini kunzima kakhulu kunalokho okubonakala ngenxa yezimiso zokwakheka eziyisisekelo zokuklama okuzenzakalelayo.
Lapho sixoxa ngezinhlelo zethu zokukhula zesikhathi eside esikhathini esingangonyaka odlule, amakhasimende ethu ezinkampani acela lokhu okulandelayo:
- Ukuqoqwa kweqiniso kudinga ukwenziwa kufane kangcono futhi kuhambisane nokugeleza komsebenzi okuzenzakalelayo kuwo wonke amadivayisi.
- Ukubuyekeza ukulungiselelwa kudivayisi nakho kudinga ukulinganisa nokulingana ukuze amamojula Aphathekayo aphathe ingxenye yesibili yomjikelezo ngemva kokuqoqa amaqiniso.
- Sidinga izindlela eziqinile nezisekelwe zokuguqula ukucushwa kwedivayisi kube idatha ehlelekile. Ngalesi sisekelo, umthombo weqiniso ungasuswa kusuka kudivayisi yenethiwekhi.
Ukuthuthuka kweqiniso
Ukuqoqa amaqiniso kumadivayisi enethiwekhi kusetshenziswa i-Ansible ngokuvamile kwenzeka ngokungahleliwe. Izinkundla ezisekelwe kuwebhu zinamazinga ahlukahlukene wamakhono okuqoqa iqiniso, kodwa zinokusebenza okuncane noma azikho nhlobo zokuhlaziya nokumisa ukumelwa kwedatha ngamapheya enani elingukhiye. Funda Ken Celenza mayelana nokuthi kungaba nzima futhi kubuhlungu kangakanani ukuhlaziya nokwenza idatha eyiqiniso ifane.
Kungenzeka ukuthi usibonile sisebenza endimeni ye-Ansible Network Engine. Ngokwemvelo, ukulandwa okungu-24K kamuva, indima ye-Network Engine isiphenduke enye yezindima ezithandwa kakhulu ku-Ansible Galaxy yezimo zenethiwekhi ezizenzakalelayo. Ngaphambi kokuthi sihambise okuningi kwalokhu ku-Ansible 2.8 ukuze silungiselele lokho okungadingeka kokuthi I-Ansible 2.9, le ndima ephathekayo inikeze isethi yokuqala yamathuluzi ukusiza ukuhlaziya imiyalo, ukuphatha imiyalo, nokuqoqa idatha yamadivayisi enethiwekhi.
Uma wazi ukuthi uyisebenzisa kanjani i-Network Engine, lena indlela esebenza kahle kakhulu yokuqoqa, ukuhlaziya, nokwenza idatha yeqiniso ifane ukuze isetshenziswe kokuthi Ansible. Ububi bale ndima ukuthi udinga ukwakha iqoqo lonke labahlaluli kungxenyekazi ngayinye nakuwo wonke umsebenzi wenethiwekhi. Ukuze uqonde ukuthi kunzima kangakanani ukudala, ukuthumela, nokugcina abahlahleli, bheka kubafana baseCisco.
Kafushane, ukuthola amaqiniso kumadivayisi nokuwenza abe ngamapheya enani elingukhiye kubalulekile ekuzishintsheni esikalini, kodwa ukufeza lokhu kunzima uma unabathengisi abaningi nezinkundla zenethiwekhi.
Imojula ngayinye yeqiniso lenethiwekhi ku-Ansible 2.9 manje ingahlaziya ukucushwa kwedivayisi yenethiwekhi futhi ibuyisele idatha ehlelekile - ngaphandle kwamalabhulali engeziwe, izindima ezithintekayo noma abahlaluli bangokwezifiso.
Kusukela ku-Ansible 2.9, isikhathi ngasinye lapho kukhishwa imojuli yenethiwekhi ebuyekeziwe, imojuli yeqiniso iyathuthukiswa ukuze inikeze idatha mayelana nalesi sigaba sokucushwa. Okusho ukuthi, ukuthuthukiswa kwamaqiniso namamojula manje kwenzeka ngesivinini esifanayo, futhi azohlala enesakhiwo sedatha evamile.
Ukucushwa kwezisetshenziswa kudivayisi yenethiwekhi kungabuyiswa futhi kuguqulelwe kudatha ehlelekile ngezindlela ezimbili. Kuzo zombili izindlela, ungakwazi ukuqoqa futhi uguqule uhlu oluthile lwezinsiza usebenzisa igama elingukhiye elisha gather_network_resources. Amagama ezinsiza ahambisana namagama emojuli, okuyinto elula kakhulu.
Ngenkathi siqoqa amaqiniso:
Ukusebenzisa igama elingukhiye gather_facts ungakwazi ukubuyisa ukucushwa kwedivayisi kwamanje ekuqaleni kwebhuku lokudlala, bese ulisebenzisa kuyo yonke incwadi yokudlala. Cacisa izinsiza ezingazodwana ezizolandwa kusukela kudivayisi.
- hosts: arista
module_defaults:
eos_facts:
gather_subset: min
gather_network_resources:
- interfaces
gather_facts: TrueKungenzeka ukuthi uqaphele okuthile okusha kulezi zibonelo, okungukuthi - gather_facts: true isiyatholakala ekuqoqweni kweqiniso lomdabu kumadivayisi enethiwekhi.
Ukusebenzisa imojula yamaqiniso enethiwekhi ngokuqondile:
- name: collect interface configuration facts
eos_facts:
gather_subset: min
gather_network_resources:
- interfacesI-playbook ibuyisela amaqiniso alandelayo mayelana nesixhumi esibonakalayo:
ansible_facts:
ansible_network_resources:
interfaces:
- enabled: true
name: Ethernet1
mtu: '1476'
- enabled: true
name: Loopback0
- enabled: true
name: Loopback1
- enabled: true
mtu: '1476'
name: Tunnel0
- enabled: true
name: Ethernet1
- enabled: true
name: Tunnel1
- enabled: true
name: Ethernet1Qaphela ukuthi i-Ansible ikubuyisela kanjani ukucushwa komdabu kusuka kudivayisi ye-Arista iphinde iyiguqule ibe idatha ehlelekile ukuze isetshenziswe njengamapheya ajwayelekile enani lokhiye wemisebenzi engezansi nokusebenza.
Amaqiniso esixhumi esibonakalayo anganezelwa kokuguquguqukayo okugciniwe okunengqondo futhi asetshenziswe ngokushesha noma kamuva njengokufakwa kumojula yensiza eos_interfaces ngaphandle kokucubungula okwengeziwe noma ukuguqulwa.
Amamojula Wensiza
Ngakho-ke, sikhiphe amaqiniso, senza idatha ibe yejwayelekile, sawafaka kumdwebo wesakhiwo sedatha yangaphakathi ojwayelekile futhi sathola umthombo weqiniso osulungile. Hooray! Lokhu kuhle, kunjalo, kodwa sisadinga ukuthi ngandlela thize siguqule amapheya enani likakhiye abuyele ekucushweni okuthile okulindelwe inkundla ethile yedivayisi. Manje sidinga amamojula aqondene nenkundla ukuze sihlangabezane nalezi zidingo ezintsha zokuqoqa iqiniso kanye nokwenza kube jwayelekile.
Iyini imojula yensiza? Ungacabanga ngezigaba zokucushwa kwedivayisi njengezisetshenziswa ezinikezwe yileyo divayisi. Amamojula wensiza yenethiwekhi anqunyelwe ngenhloso kusisetshenziswa esisodwa futhi anganqwabelaniswa njengamabhulokhi wokwakha ukuze kulungiselelwe amasevisi enethiwekhi ayinkimbinkimbi. Ngenxa yalokho, izidingo kanye nokucaciswa kwemojula yensiza kwenziwa kube lula ngokwemvelo, njengoba imojula yensiza iyakwazi ukufunda. ΠΈ lungisa isevisi ethile yenethiwekhi kudivayisi yenethiwekhi.
Ukuze uchaze ukuthi imojula yensiza yenzani, ake sibheke isibonelo sencwadi yokudlala ebonisa ukusebenza kwe-idempodent kusetshenziswa amaqiniso ensiza yenethiwekhi entsha nemojula. eos_l3_interface.
- name: example of facts being pushed right back to device.
hosts: arista
gather_facts: false
tasks:
- name: grab arista eos facts
eos_facts:
gather_subset: min
gather_network_resources: l3_interfaces
- name: ensure that the IP address information is accurate
eos_l3_interfaces:
config: "{{ ansible_network_resources['l3_interfaces'] }}"
register: result
- name: ensure config did not change
assert:
that: not result.changedNjengoba ubona, idatha eqoqwe kusuka kudivayisi idluliselwa ngqo kumojula yensiza ehambisanayo ngaphandle kokuguqulwa. Lapho yethulwa, i-playbook ibuyisa amanani kusuka kudivayisi futhi iwaqhathanise nalawo alindelekile. Kulesi sibonelo, amanani abuyisiwe anjengokulindelekile (okungukuthi, ihlola ukuchezuka kokucushwa) futhi ibika ukuthi ukulungiselelwa kushintshile yini.
Indlela ekahle yokuthola ukukhukhuleka kokucushwa ukugcina amaqiniso kokuguquguqukayo okugcinwe ku-Ansible futhi ukusebenzise ngezikhathi ezithile nemojula yensiza kumodi yokuhlola. Lena indlela elula yokubona ukuthi ingabe othile uguqule amanani mathupha. Ezimweni eziningi, izinhlangano zivumela izinguquko nokumisa mathupha, nakuba imisebenzi eminingi yenziwa nge-Ansible Automation.
Ahluke kanjani amamojula wensiza entsha kunawangaphambilini?
Kunjiniyela wokuzenzakalela kwenethiwekhi, kunomehluko omkhulu ongu-3 phakathi kwamamojula wensiza ku-Ansible 2.9 nezinguqulo zangaphambilini.
1) Ngensiza yenethiwekhi enikeziwe (engaphinde icatshangelwe njengesigaba sokumisa), amamojula namaqiniso azovela kuwo wonke amasistimu wokusebenza wenethiwekhi asekelwayo kanyekanye. Sicabanga ukuthi uma i-Ansible isekela ukulungiselelwa kwensiza kungxenyekazi eyodwa yenethiwekhi, kufanele siyisekele yonke indawo. Lokhu kwenza ukusetshenziswa kwamamojula wensiza kube lula ngoba unjiniyela wokuzenzakalela kwenethiwekhi manje usengakwazi ukumisa insiza (efana ne-LLDP) kuwo wonke amasistimu wokusebenza wenethiwekhi anamamojula omdabu nasekelwayo.
2) Amamojula wensiza manje afaka inani lesimo.
merged: ukucushwa kuhlanganiswe nokucushwa okunikeziwe (okuzenzakalelayo);replaced: Ukulungiselelwa kwensiza kuzothathelwa indawo ukulungiselelwa okunikeziwe;overridden: Ukulungiselelwa kwensiza kuzothathelwa indawo ukulungiselelwa okunikeziwe; izisetshenziswa ezingadingekile zizosuswa;deleted: Ukulungiselelwa kwensiza kuzosuswa/kubuyiselwe kokumisiwe.
3) Amamojula wensiza manje ahlanganisa amanani okubuyisela azinzile. Uma imojuli yensiza yenethiwekhi yenze (noma ihlongoza) izinguquko ezidingekayo kudivayisi yenethiwekhi, ibuyisela amapheya afanayo enani lokhiye ebhukwini lokudlala.
before: ukucushwa kudivayisi ngendlela yedatha ehlelekile ngaphambi komsebenzi;after: uma idivayisi ishintshile (noma ingase ishintshe uma imodi yokuhlola isetshenziswa), ukulungiselelwa okuwumphumela kuzobuyiswa njengedatha ehleliwe;commands: Noma yimiphi imiyalo yokumisa isebenza kudivayisi ukuze iyilethe esimweni osifunayo.
Kusho ukuthini konke lokhu? Kungani ibalulekile?
Lokhu okuthunyelwe kuhlanganisa imiqondo eminingi eyinkimbinkimbi, kodwa sithemba ukuthi ekugcineni uzoba nokuqonda kangcono lokho amaklayenti ebhizinisi akucelayo empeleni ukuqoqwa, ukujwayela kwedatha, nokucushwa kwe-loop yesikhulumi esizenzakalelayo. Kodwa kungani bezidinga lezi ntuthuko? Izinhlangano eziningi manje ziphishekela uguquko lwedijithali ukuze zenze izindawo zazo ze-IT zishesha futhi zikwazi ukuncintisana. Okungcono noma okubi kakhulu, onjiniyela abaningi benethiwekhi baba abathuthukisi benethiwekhi noma ngenxa yokuzicabangela bona noma ngenxa yokuphatha.
Izinhlangano ziyaqaphela ukuthi ukwenza ngokuzenzakalelayo izifanekiso zenethiwekhi ngayinye akuxazululi inkinga yama-silo futhi kukhulisa ukusebenza kahle ngokwezinga elithile. I-Red Hat Ansible Automation Platform inikeza amamodeli edatha yensiza aqinile futhi avamile ukuze ulawule ngokuhlelekile idatha eyisisekelo kudivayisi yenethiwekhi. Okusho ukuthi, abasebenzisi kancane kancane bashiya izindlela zokucushwa ngabanye ukuze bakhethe izindlela zesimanjemanje ngokugcizelela ubuchwepheshe (isibonelo, amakheli e-IP, ama-VLAN, i-LLDP, njll.), esikhundleni sokusebenzisa umthengisi othile.
Ingabe lokhu kusho ukuthi izinsuku zamamojula wemiyalo ethembekile futhi efakazelwe kanye nokucushwa zibaliwe? Akukho lutho. Amamojula wensiza yenethiwekhi alindelekile ngeke asebenze kuzo zonke izimo noma kuwo wonke umthengisi, ngakho umyalo namamojula wokumisa asazodingeka onjiniyela benethiwekhi ngokusetshenziswa okuthile. Injongo yamamojula wensiza iwukwenza lula izifanekiso ze-Jinja ezinkulu nokwenza ukulungiselelwa kwedivayisi okungahleliwe kube ngendlela ehlelekile ye-JSON. Ngamamojula wensiza, kuzoba lula kumanethiwekhi akhona ukuthi aguqule ukucushwa kwawo kube amapheya enani elingukhiye ahlelekile amele umthombo weqiniso ofundeka kalula. Ngokusebenzisa amapheya enani elingukhiye ahlelekile, ungasuka ekusebenziseni ukulungiselelwa kudivayisi ngayinye uye ekusebenzeni ngedatha ehlelekile ezimele futhi ulethe amanethiwekhi phambili endleleni yengqalasizinda njengekhodi.
Imaphi amamojula wensiza azofika nge-Ansible Engine 2.9?
Ngaphambi kokuthi sikutshele ngokuningiliziwe ukuthi kuzokwenzekani ku-Ansible 2.9, masikhumbule ukuthi siwuhlukanise kanjani wonke umsebenzi.
Sihlonze izigaba eziyisi-7 futhi sanikeza izinsiza ezithile zenethiwekhi kusigaba ngasinye:
Qaphela: Izinsiza ezibhalwe ngokugqamile zahlelwa futhi zasetshenziswa kokuthi Ansible 2.9.
Ngokusekelwe empendulweni evela kumakhasimende ebhizinisi kanye nomphakathi, bekunengqondo ukuqala sibhekane nalawo mamojula ahlobene nemithetho ye-topology yenethiwekhi, i-virtualization, kanye nezindawo zokusebenzelana.
Amamojula wensiza alandelayo athuthukiswe ithimba le-Ansible Network futhi ahambisana nezinkundla ezisekelwa i-Red Hat:
Amamojula alandelayo athuthukiswa ngumphakathi we-Ansible:
exos_lldp_global- kusuka ku-Extreme Networks.nxos_bfd_interfaces- kusuka kuCisconxos_telemetry- kusuka kuCisco
Njengoba ubona, umqondo wamamojula wensiza ungena kuqhinga lethu le-platform-centric. Okusho ukuthi, sifaka amakhono adingekayo kanye nemisebenzi ku-Ansible ngokwayo ukusekela ukumisa ekuthuthukisweni kwamamojula enethiwekhi, kanye nokwenza lula umsebenzi wabasebenzisi ezingeni le-Ansible roles kanye nezincwadi zokudlala. Ukuze kunwetshwe ukuthuthukiswa kwamamojula wensiza, ithimba le-Ansible likhiphe ithuluzi Lokwakha Imojuli.
Izinhlelo ze-Ansible 2.10 nangaphezulu
Uma i-Ansible 2.9 isikhishiwe, sizobe sisebenzela isethi elandelayo yamamojula wensiza ye-Ansible 2.10, engasetshenziswa ukuze kuqhutshekwe nokulungisa i-topology yenethiwekhi nenqubomgomo, isb. . Uhlelo lokuthuthukisa lusengalungiswa, ngakho-ke uma unamazwana, sicela ulubike kubo .
Izinsiza kanye nokuqalisa
Source: www.habr.com