Skip to content

Latest commit

 

History

History
293 lines (210 loc) · 8.49 KB

README.md

File metadata and controls

293 lines (210 loc) · 8.49 KB

Code Climate

NetConf

Description:

Device management using the NetConf protocol as specified in RFC4741 and RFC6241.

Features:

  • Extensible protocol transport framework for SSH and non-SSH
  • NETCONF Standard RPCs
    • get-config, edit-config
    • lock, unlock
    • validate, discard-changes
  • Flexible RPC mechanism
    • Netconf::RPC::Builder to metaprogram RPCs
    • Vendor extension framework for custom RPCs
  • XML processing using Nokogiri

Synopsis:

require 'net/netconf'

# create the options hash for the new NETCONF session.  If you are
# using ssh-agent, then omit the :password

login = { target: 'vsrx', username: 'root', password: 'Amnesia' }

# provide a block and the session will open, execute, and close

Netconf::SSH.new(login){ |dev|

  # perform the RPC command:
  # <rpc>
  #    <get-chassis-inventory/>
  # </rpc>

  inv = dev.rpc.get_chassis_inventory

  # The response is in Nokogiri XML format for easy processing ...

  puts 'Chassis: ' + inv.xpath('chassis/description').text
  puts 'Chassis Serial-Number: ' + inv.xpath('chassis/serial-number').text
}

Alternative explicity open, execute RPCs, and close

require 'net/netconf'

dev = Netconf::SSH.new(login)
dev.open

inv = dev.rpc.get_chassis_inventory

puts 'Chassis: ' + inv.xpath('chassis/description').text
puts 'Chassis Serial-Number: ' + inv.xpath('chassis/serial-number').text

dev.close

Using NetConf:

Remote Procedure Calls (RPCs):

Each Netconf session provides a readable instance variable - rpc. This is used to execute Remote Procedure Calls (RPCs). The @rpc will include the NETCONF standard RPCs, any vendor specific extension, as well as the ability to metaprogram new onces via method_missing.

Here are some examples to illustrate the metaprogamming:

Without any parameters, the RPC is created by swapping underscores (_) to hyphens (-):

 require 'net/netconf'

 dev.rpc.get_chassis_inventory

 # <rpc>
 #    <get-chassis-inventory/>
 # </rpc>

You can optionally provide RPC parameters as a hash:

 dev.rpc.get_interface_information(interface_name: 'ge-0/0/0', terse: true)

 # <rpc>
 #    <get-interface-information>
 #       <interface-name>ge-0/0/0</interface-name>
 #       <terse/>
 #   </get-interface-information>
 # </rpc>

You can additionally supply attributes that get assigned to the toplevel element. In this case You must enclose the parameters hash to disambiquate it from the attributes hash, or declare a variable for the parameters hash.

 dev.rpc.get_interface_information({ interface_name: 'ge-0/0/0', terse: true },
                                   { format: 'text'})

 # <rpc>
 #    <get-interface-information format='text'>
 #       <interface-name>ge-0/0/0</interface-name>
 #       <terse/>
 #   </get-interface-information>
 # </rpc>

If you want to provide attributes, but no parameters, then:

 dev.rpc.get_chassis_inventory(nil, format: 'text')

 # <rpc>
 #    <get-chassis-inventory format='text'/>
 # </rpc>

Retrieving Configuration:

To retrieve configuration from a device, use the get-config RPC. Here is an example, but you can find others in the examples directory:

 require 'net/netconf'


 login = { target: 'vsrx', username: 'root', password: 'Amnesia' }

 puts "Connecting to device: #{login[:target]}"

 Netconf::SSH.new(login){ |dev|
   puts 'Connected.'

   # ----------------------------------------------------------------------
   # retrieve the full config.  Default source is 'running'
   # Alternatively you can pass the source name as a string parameter
   # to #get_config

   puts 'Retrieving full config, please wait ... '
   cfgall = dev.rpc.get_config
   puts "Showing 'system' hierarchy ..."
   puts cfgall.xpath('configuration/system')     # JUNOS toplevel config element is <configuration>

   # ----------------------------------------------------------------------
   # specifying a filter as a block to get_config

   cfgsvc1 = dev.rpc.get_config do |x|
     x.configuration { x.system { x.services } }
   end

   puts 'Retrieved services as BLOCK:'
   cfgsvc1.xpath('//services/*').each { |s| puts s.name }

   # ----------------------------------------------------------------------
   # specifying a filter as a parameter to get_config

   filter = Nokogiri::XML::Builder.new do |x|
     x.configuration { x.system { x.services } }
   end

   cfgsvc2 = dev.rpc.get_config(filter)
   puts 'Retrieved services as PARAM:'
   cfgsvc2.xpath('//services/*').each { |s| puts s.name }

   cfgsvc3 = dev.rpc.get_config(filter)
   puts 'Retrieved services as PARAM, re-used filter'
   cfgsvc3.xpath('//services/*').each { |s| puts s.name }
 }

Note: There is a JUNOS RPC, get-configuration, that provides Juniper specific extensions as well.

Changing Configuration:

To retrieve configuration from a device, use the edit-config RPC. Here is an example, but you can find others in the examples directory:

  require 'net/netconf'

  login = { target: 'vsrx', username: 'root', password: 'Amnesia' }

  new_host_name = 'vsrx-abc'

  puts "Connecting to device: #{login[:target]}"

  Netconf::SSH.new(login){ |dev|
    puts 'Connected!'

    target = 'candidate'

    # JUNOS toplevel element is 'configuration'

    location = Nokogiri::XML::Builder.new do |x|
      x.configuration {
        x.system {
          x.location {
            x.building 'Main Campus, A'
            x.floor 5
            x.rack 27
          }
        }
      }
    end

    begin
      rsp = dev.rpc.lock target

      # --------------------------------------------------------------------
      # configuration as BLOCK

      rsp = dev.rpc.edit_config do |x|
        x.configuration {
          x.system {
            x.send(:'host-name', new_host_name )
          }
        }
      end

      # --------------------------------------------------------------------
      # configuration as PARAM

      rsp = dev.rpc.edit_config(location)

      rsp = dev.rpc.validate target
      rpc = dev.rpc.commit
      rpc = dev.rpc.unlock target

    rescue Netconf::LockError => e
      puts 'Lock error'
    rescue Netconf::EditError => e
      puts 'Edit error'
    rescue Netconf::ValidateError => e
      puts 'Validate error'
    rescue Netconf::CommitError => e
      puts 'Commit error'
    rescue Netconf::RpcError => e
      puts 'General RPC error'
    else
      puts 'Configuration Committed.'
    end
  }

Note: There is a JUNOS RPC, load-configuration, that provides Juniper specific extensions as well.

Original License:

(BSD 2)

Copyright (c) 2013, Juniper Networks

All rights reserved.

Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

(1) Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.

(2) Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

The views and conclusions contained in the software and documentation are those of the authors and should not be interpreted as representing official policies, either expressed or implied, of Juniper Networks.

Original Authors:

  • Jeremy Schulman, Juniper Networks
  • Ankit Jain, Juniper Networks