Aperçu du cours
Overview:
This lab builds upon an existing network infrastructure, focusing on integrating AWX (Ansible Tower’s open-source upstream project) and Ansible for mass network configuration and updates. The lab incorporates DevSecOps practices to establish a secure, automated pipeline for testing network patches before deployment.
Objective:
To enhance the network management capabilities through automation, centralized control, and security-focused operations by leveraging AWX and Ansible. This lab aims to introduce a DevSecOps culture, ensuring that security measures are integrated into every phase of the network management process.
Background:
Continuing from the previous network infrastructure setup, this lab introduces advanced automation and security practices to streamline network management tasks and secure configuration processes across various network devices and sites.
Prerequisites: Participants should have a solid understanding and practical experience with the following concepts and technologies:
- Network Fundamentals:
- Familiarity with TCP/IP, routing protocols (OSPF, BGP, EIGRP), and network topologies.
- Experience with network configurations on Cisco, MikroTik, and pfSense devices.
- Linux/Unix Administration:
- Comfortable with Linux command line operations, basic scripting, and system administration.
- Version Control Systems:
- Basic knowledge of using Git for version control.
- Containerization Technologies:
- Understanding of Docker and basic container management.
- Automation and Scripting:
- Prior experience with Ansible for automation.
- Basic understanding of YAML and playbook creation.
- Security Concepts:
- Knowledge of network security principles, IPSec configurations, and best practices.
- General DevOps Practices:
- Awareness of continuous integration and continuous deployment (CI/CD) workflows.
Lab Environment Setup:
- Hardware Requirements:
- A computer or server capable of running virtual machines or containers with at least 16GB of RAM and a quad-core processor.
- Software Requirements:
- Virtualization software (e.g., VMware Workstation, VirtualBox) for running virtual machines.
- Docker installed for container deployment.
- Ansible and AWX (either local installation or access to a cloud environment where AWX is deployable).
- Network Setup:
- Simulated network environment as per the existing infrastructure from the previous lab. This includes virtual machines or physical devices configured as network nodes (Cisco, MikroTik, pfSense).
- Access to a simulated or isolated segment of a network to safely test and deploy configurations.
- Access Requirements:
- Administrative or root access on devices and virtual machines to install necessary software and perform configurations.
- Access to an internet connection for downloading software packages and updates.
- Tools and Software:
- Git client installed for cloning repositories and version control management.
- Code editors such as Visual Studio Code or Atom equipped with necessary plugins for YAML and Ansible syntax highlighting.
- Access to a centralized Git repository for storing and managing Ansible playbooks and AWX configuration files.
- Safety and Security:
- Ensure all test devices and systems are backed up and that changes can be rolled back.
- Implement network segmentation and firewall rules to protect the lab environment from external threats.
By preparing the lab environment according to these guidelines and ensuring all prerequisites are met, participants will be ready to undertake advanced tasks in network management, automation, and security with a strong foundation in DevSecOps principles. This setup promotes a practical and secure learning experience aligned with industry standards.
Formateur
