KEMBAR78
NETCONF Call Home-V2 | PDF | Network Layer Protocols | Computing
Scribd
Upload
35 views11 pages

NETCONF Call Home-V2

Uploaded by

jagigil402
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
35 views11 pages

NETCONF Call Home-V2

Uploaded by

jagigil402
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 11

NETCONF Call Home

Fredrik Jansson
Speaker title
Subtitle goes here
Typical NSO Setup • Router-1 – 10.0.10.2
• Router-2 – 10.0.10.4
• Router-3 – lab-2-gw.cisco.com
NSO • Router-4
• ...

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
• Device behind NAT
• No outside access
• Unknown address
Not always that • Don’t know when/where
easy... the device is plugged in
• IP Address Changing
• Mobile Devices

• DHCP

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
• RFC 8071
• RESTCONF Call Home
Meet NETCONF
• SSH & TLS
Call Home!
• “Only TCP Changing

Direction”

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
Difference
NETCONF NETCONF Call Home

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
• NSO & ConfD
• NETCONF Call Home

What About Cisco? • ConfD 6.7.1

• NSO 5.1

• IOS XE Backlog

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
How does NSO know what device it is?

• router-1
ssh AAB
NSO • router-2
ssh CCA
SSH • ...

CALL_HOME_DEVICE_CONNECTED
CALL_HOME_UNKNOWN_DEVICE

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
This Must Be Super Complicated? - Not Really!

NSO NSO ConfD


<netconf-call-home> devices device router-1 m = maapi.Maapi()

<enabled>true</enabled> local-user admin m.netconf_ssh_call_home("10.0.10.2”, 4334)


<transport> ssh host-key ssh-rsa

<tcp> key-data "AAA.."

<ip>0.0.0.0</ip> !

<port>4334</port> authgroup default

</tcp> device-type netconf ned-id netconf


</transport> state admin-state call-home

</netconf-call-home> !

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
{

'type': CALL_HOME_UNKNOWN_DEVICE,
'ip4': '10.117.108.147’,
'port': 50271,

NSO Events 'ssh_host_key’: AAB..,

CALL_HOME_UNKNOWN_DEVICE 'ssh_key_alg’: 1,
...

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
{

'type': CALL_HOME_DEVICE_CONNECTED,
'device': 'router-1’,
'ip4': '10.117.108.147’,

NSO Events 'port’: 17205,

CALL_HOME_DEVICE_CONNECTED 'ssh_host_key’: CCB..,


'ssh_key_alg’: 1,

...
}

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
Demo

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public

You might also like