Cisco ACI Supports several methods of automation or infrastructure as code. For this example, I will be using Terraform to give examples of setting up different fabric policies using the Cisco ACI lab. Setup To get this setup, I have several things to do Lab Once the lab has been setup and VPN connected to […]
Cisco ACI – Automation Read More »
This lab takes the initial config from the post, Creating FortiGate Config with Terraform, and adds in the IPS config to the firewall rule that permits all traffic between INSIDE and DMZ. The IPS policy is the default from FortiNet that blocks critical attacks. The attack that I will demonstrate is the ever popular vsftpd
Enabling FortiGate IPS with Terraform – Metasploit Test Read More »
For this lab I have created a small topology with a FortiGate which will be configured with Terraform. There are two networks INSIDE 192.168.10.0/24 and DMZ 192.168.20.0/24. The other interface is for OUTSIDE this is connected into my home lab network and has an IP of 10.10.30.215. Terraform is used to configure the FortiGate firewall,
Creating FortiGate Config with Terraform Read More »
Terraform can be downloaded from here, Select the OS (Windows, in this case) and CPU type ADM64 is most likely. Once downloaded, extract the executable and move it somewhere. I have moved it to C:\Terraform Then add it to the path environment variable under: system >>> settings >>> Advanced system settings >>> environment variables Once
Terraform Installation – Windows Read More »
I have been over the automatic creation of the VXLAN topology in the previous post. However, this stopped at the creation of the topology only. If in the future I wanted to add a new spine or leaf switch, this could be done, but the other switches wouldn’t be aware as they would also need
Arista VXLAN 3 – Automating Adding New Spine and Leaf Switches Read More »
This is going to follow on from the previous post to get a basic three switch topology up and running with VXLAN. This time however, instead of doing more VXLAN I will concentrate on a way to automate the adding of spine and leaf switches to the fabric.The purpose of this automation piece is to
Arista VXLAN 2 – Automating Spine and Leaf Configuration Read More »
This post is a follow-up to the post I created that gives a basic multi threaded example. There isn’t any context and when I came back to the code I found it difficult to translate into one of my functions. In this example, I will take a function of my F5 Flask Dashboard that has
Python Migrating Single Threaded Function to a Multi Threaded function Read More »
AEM is the event handler for Arista. It can be used to automate tasks giving the user the ability to customise alerts and actions. There are three parts to ARM; Event Manager, Event Monitor and Linux Tools. Send XMPP Message on Interface ChangeDownload script and execute if startup-config presentUsing variables in AEMRunning Script Before EOS
This is something new that I decidced to try out. Using an AI chatbot to generate a base configuration for Linux, Cisco, Arista etc. I do not know all of the Cisco commands for every feature, nor do I have the ability to memorise all the Python functions or Linix configuration. I use Google to
Using ChatGPT to Generate Config Read More »
Now that the XMPP server and switches have been configured, commands can now be issued from an XMPP client either on the switch or a client running in Linux, Windows, etc.This post will demonstrate the issuing of commands from the IM client Gajim and the Arista switches themselves using XMPP. By default, when configuring the
Arista XMPP Sending Commands Read More »