Management of F5 via Ansible complete process adding a host defining the variables and testing it-Part1

-




Well for the first time I had interaction with Ansible back in 2017 at that time I did't knew how to spell it properly, Thanks to Google it gives me result by guessing it. In between I didn't use ansible at all till now. This time I need to use ansible for the automation of operations task on F5 and other network devices. I have started by installing the ansible on my virtual machine and enable SSH communication in between them. Further below mentioned are the steps for deploying ansible and then doing other setting for the first playbook to be run on F5.

Installation of Ansible

For different Linux flavors we do have different commands you can search it over the internet as per your requirements

yum -y install ansible    

ansible --version

ansible 2.9.25

config file = /etc/ansible/ansible.cfg

 configured module search path = [u'/root/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules']

  ansible python module location = /usr/lib/python2.7/site-packages/ansible

  executable location = /bin/ansible

  python version = 2.7.5

 Now as ansible is install and we can see the version of it, we can move forward before going to next step make sure your working directory for ansible is /etc/ansible there will be default hosts file in this directory.

you can check it by doing ls in directory /etc/ansible

I will create another inventory file (hosts file) and will use it to define the F5 host which need to be managed via ansible.

nano inventory
You will be prompt with a black screen, and you need to define the host group and IP into it.

[F5]
192.168.1.100

We have added a F5 node in our ansible inventory file we can verify it.

ansible-inventory -i inventory --list

{

    "F5": {

        "hosts": [

            "192.168.1.100"

        ]

    },

    "_meta": {

        "hostvars": {}

    },

    "all": {

        "children": [

            "F5",

            "ungrouped"

        ]

    }

}

We can define the variables here for SSH access to the host and also, we can generate ssh-keys and copy it to the host for passwordless SSH connectivity for ansible command execution but this time i have use another file in which i have define my variables and ansible will use it for connectivity for the host in group of F5.

I have created a directory with name group_vars and have variable for each group within the inventory file.
  
mkdir group_vars

nano F5.yml

ansible_user= "username"
ansible_password: "Password"
ansible_port: 22

So till now we have setup the connectivity between ansible host and F5, please make sure to allow SSH source IP at F5 end for the machine form where you will run the ansible playbooks.

Now all done for the connectivity let try to see we have a connectivity between host and ansible machine via ansible.

ansible -i inventory 192.168.1.100 -m ping
192.168.1.100 | SUCCESS => {
    "ansible_facts": {
        "discovered_interpreter_python": "/usr/bin/python"
    },
    "changed": false,
    "ping": "pong"
}

I will continue working on playbook writing for the tasks and will share my experience in coming posts before that i guess have to learn YAML for writing playbooks.

Raja Shajeel Ahmad
Enterprise DC Engineer
Happy Learning
The limit is the sky.


Comments

Post a Comment

Popular posts from this blog

Flow with respect to Networks in AWS

-
Image
Flow with respect to Networks in AWS which need to be clear to expose any application on AWS and having some of services in on-premises. I will compare AWS services with on-prem technology, so it become ease to understand.                                                           Building Block of AWS Networking VPC: Consider it as a switch place in multiple Data center and all switches are connected with each other we can further have small subnets on it which can be part of all switches or only one depend upon the planning and requirements. Route Tables : Each subnet we create in VPC can have each route table or all subnets have one, Route table is used to control the routing of subnets and how traffic will be routed for any workload on the subnets. Route table can be attached to few other services of AWS as per requirements. NAT Gateway: I...
Read more

Important concepts in ACI Physical/Access polices Concepts

-
Image
I know Cisco ACI has been around for a long time. The first time I got into it was in 2021. It was not that hard to relate the legacy concepts with ACI but doing a job via CLI and doing it via GUI have a lot of differences. In this particular blog, I will discuss the key concepts without explaining the ACI core components like leaf switches, spine switches, and APIC. Cisco ACI is a policy-driven solution in which everything has an object assigned to it, and you need to connect all those dots to make your network work. In a legacy network, we have devices like bare metal servers, L2 switches, L3 switches, routers, and firewalls. We connect the networks using different protocols to make our network work, but sometimes there are physical requirements that need to be fulfilled to get the required topology. In Cisco ACI, we have all these kinds of devices, and they are connected to our fabric. However, in ACI, we have a term called "domains," which include four different types: Ph...
Read more

1 sec and Team work Story

-
Image
 I n the world of IT, a single second can be the difference between success and failure. Recently, I experienced this firsthand when a 1-second delay caused a critical application flow to shut down. Through intense troubleshooting, collaboration, and respect for diverse opinions, we identified and resolved the issue. This experience taught me the importance of: - Active listening among all stakeholders - Exploring all options and possibilities - Embracing the value of diverse perspectives - The power of collaboration and teamwork - The crucial role of TCP dumps in troubleshooting In IT, every problem requires a unique solution, and collaboration is key to finding it. Delay we Observe at Client end server end had no delay though Raja Shajeel Ahmad Enterprise DC Engineer Happy Learning The limit is the sky. #TeamWork#TCPDump#HappyLearning
Read more