Author: russellc

  • NetBox Tutorial – From scratch to correlated service…

    There’s a lot of NetBox tutorials out there, but I’ve often struggled to find one that shows from scratch -> service. NetBox is often seen as a ‘just’ an infrastructure tool, but really the power of things like custom fields and tags allow for much more. In this tutorial we’ll go from an empty NetBox…

  • L3VPN in NetBox – Could it be improved ?

    L3VPN in NetBox – Could it be improved ?

    First off, happy 2024 … may this coming year be one of happiness and health. In this blog we talk about L3VPN in NetBox and specifically whether (via a plugin) we could improve the visibility aspects. What is L3VPN Fundamentally L3VPN is a way of virtualising a layer3 network. A separate routing table per instance…

  • Junipers Terraform Automation Framework (JTAF)

    Junipers Terraform Automation Framework (JTAF)

    We’re at a point in our POCs whereas we’re looking at how we deploy configs automagically. In the Juniper world, we have ansible, pyez and the new kid on the block: JTAF. All code/data referenced in this can be found in the github repo: https://github.com/cruse1977/blog-juniper-jtaf-example What is JTAF JTAF is a way of deploying Juniper…

  • Juniper ZTP on QFX

    Juniper ZTP on QFX

    We’ve been playing recently with automating a lot of the Juniper devices we’ve got to deploy, the latest fun being the Juniper equivalent with PXE: ZTP. The idea being, we want to update, and throw a base level config but do this as programatically as possible. Update – 2021-10-08 Note – on QFX you cannot…

  • vQFX on ESXi (finally)

    vQFX on ESXi (finally)

    This took far too long to get working, but finally have it so – here’s how I did it. Images used (from Juniper): (PFE): cosim-18.4R1.8_20180212.vmdk (RE): jinstall-vqfx-10-f-18.4R1.8.vmdk Copy these to your ESXi server (upload to the datastore) . mine is ESXi 6.5, but most would work… enable SSH then SSH to your box. Tweak Disk…

  • ASA 9.x Anyconnect IPv6 VPN

    Preface I have some odd reasons for deploying ipv6. A chinese door entry system, Xbox Live events however the latest isn’t as odd – a CloudFlare depolyment. Why would you need ipv6 for deploying cloudflare you may ask, well, with ipv6 being preferred in most modern OS’s and CloudFlare being ipv6 enabled – yes it…

  • Custom Fields on Netbox Interfaces

    *** DO NOT DO THIS *** – this is hack, from before the time netbox had enabled this functionality in the core which is now is (thanks Jeremy!) – left here for legacy purposes. I’ve been playing with Netbox lately as a SSOT (Single Source of Truth) for some automation tasks I’m looking at. The…

  • Thoughts – revising our DNS Control Panel

    Give or take 10 years ago, I wrote a DNS control panel for Bind. We ended up rolling this out a little internally and ultimately it saved us a shedload of time – it’s still just about there 10 years later. Now that I’m part of something bigger, redesigning this is not something I’d ever…

  • Semi-Automating our labs – Connecting JunOS to Ansible

    It occurred to me that there is essentially quite a lot of repetition within our labs, and as such if we rebuild we’re creating the same tasks over and over again. Step forward: automation, or specifically ansible. To do this, we’re not looking to ‘fully’ automate at this point. I’m still picking up ansible hence…

  • Cisco-like IPSLA on JunOS

    One of the more common CPE type things we use is IPSLA, often used when you want to prefer a certain circuit but there are many use cases. On JunOS, this uses two processes for this, Real Time Performance Monitoring, and IP Monitoring, to provide an ICMP probe, and an action based on probe results.…