Adding inventory plugin for netbox #180

dbarrosop · 2018-07-12T12:10:50Z

No description provided.

Added inventory plugin for NetBox

dbarrosop · 2018-07-12T12:13:09Z

@bdlamprecht this is what I wanted to do with "requests-mock". Right now we just need to mock the response of netbox by putting the contents we expect in a file:

https://github.com/nornir-automation/nornir/pull/180/files#diff-62b8d7e6b6ab84dc213beb67c0081642

And then another json blob with the expected inventory:

https://github.com/nornir-automation/nornir/pull/180/files#diff-1a9b65979e19e3ccdaf998204841d7cd

I apologize for making you implement initially the containerized test, I thought it was going to be easier :(

dbarrosop · 2018-07-12T12:13:59Z

tests/plugins/inventory/netbox/2.3.5/expected.json

+    },
+    "2-Distribution": {
+      "name": "2-Distribution",
+      "nornir_host": {


@bdlamprecht This doesn't seem correct, I guess you wanted to put here just the address, not the object itself, is that correct?

I don't quite follow your question here.

Ah, yes, I see what you're referring to.

This line...

nornir/nornir/plugins/inventory/netbox.py

Line 40 in 8b56f97

temp["nornir_host"] = d["primary_ip"]

Should actually look like this:

temp["nornir_host"] = d["primary_ip"]["address"]

I saw that before, but must have missed it when committing the changes. 😊

Cool, will update :)

dbarrosop · 2018-07-12T12:17:39Z

nornir/plugins/inventory/netbox.py

+                # Copy temporary dict to outer dict
+                devices[d["name"]] = temp
+
+        except KeyError:


What is the reason this could happen?

This is for when the nb_token is incorrect, it basically returns a dict such as {results:"Invalid token"}. Did know how else to do this.

Do you get a status_code error? Something like a 403? Because then Response.raise_for_status might be a better alternative. Can you check and tell me which status code it returns?

dbarrosop · 2018-07-12T12:17:47Z

nornir/plugins/inventory/netbox.py

+                    # Attempt to add 'platform' based of value in 'slug'
+                    try:
+                        temp["nornir_nos"] = d["platform"]["slug"]
+                    except TypeError:


What is the reason this could happen?

Similar to the above try / except clause above for nornir_host, this one is for when a platform hasn't been assigned and use_slugs is True. Without a platform, there is no attribute for slug.

When use_slugs is False and no platform is defined, it automatically returns a None value.

Ok, so this should be temp["nornir_nos"] = d.get("platform", {}).get("slug") instead of the try...except... block.

dbarrosop · 2018-07-12T12:17:55Z

nornir/plugins/inventory/netbox.py

+                # Add value for IP address
+                try:
+                    temp["nornir_host"] = d["primary_ip"]
+                except TypeError:


What is the reason this could happen?

A device can have many interfaces, each with many ip_addresses.
One interface / ip_address combination needs to be selected as the primary_ip for each device.

This is try/except clause is for when that hasn't happened, then it will return an object with a None value for nornir_host.

Ok, will replace with temp["nornir_host"] = d.get("primary_ip", None)

coveralls · 2018-07-12T12:18:13Z

Pull Request Test Coverage Report for Build 835

29 of 35 (82.86%) changed or added relevant lines in 1 file are covered.
9 unchanged lines in 3 files lost coverage.
Overall coverage decreased (-0.3%) to 92.022%

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
nornir/plugins/inventory/netbox.py	29	35	82.86%

Files with Coverage Reduction	New Missed Lines	%
nornir/plugins/tasks/commands/remote_command.py	1	94.44%
nornir/plugins/tasks/connections/paramiko_connection.py	1	92.31%
nornir/core/inventory.py	7	94.7%

Totals
Change from base Build 757:	-0.3%
Covered Lines:	1015
Relevant Lines:	1103

💛 - Coveralls

dbarrosop · 2018-07-12T12:18:37Z

@bdlamprecht I added a few comments inline for the PR.

bdlamprecht · 2018-07-12T16:36:32Z

I thought it would be helpful to provide the output from the import for all of the required objects in the proper order (i.e. sites, device_roles, manufacturers, device_types, platforms, devices, interfaces, ip_addresses, and finally, setting the primary_ip for each device).

It may or may not be what you wanted, but better safe than sorry. 😄

JSON output from creating sites:

{'region': None, 'contact_name': '', 'created': '2018-07-13', 'id': 1, 'last_updated': '2018-07-13T00:01:38.769801Z', 'name': 'Santa Clara, CA', 'status': 1, 'asn': None, 'slug': 'santa-clara-ca', 'facility': '', 'shipping_address': '', 'contact_phone': '', 'comments': '', 'contact_email': '', 'physical_address': '', 'time_zone': None, 'tenant': None, 'description': ''}
{'region': None, 'contact_name': '', 'created': '2018-07-13', 'id': 2, 'last_updated': '2018-07-13T00:01:38.793181Z', 'name': 'San Jose, CA', 'status': 1, 'asn': None, 'slug': 'san-jose-ca', 'facility': '', 'shipping_address': '', 'contact_phone': '', 'comments': '', 'contact_email': '', 'physical_address': '', 'time_zone': None, 'tenant': None, 'description': ''}
{'region': None, 'contact_name': '', 'created': '2018-07-13', 'id': 3, 'last_updated': '2018-07-13T00:01:38.815386Z', 'name': 'Sunnyvale, CA', 'status': 1, 'asn': None, 'slug': 'sunnyvale-ca', 'facility': '', 'shipping_address': '', 'contact_phone': '', 'comments': '', 'contact_email': '', 'physical_address: '', 'time_zone': None, 'tenant': None, 'description': ''}

JSON output from creating device_roles:

{'color': '2196f3', 'name': 'Router', 'slug': 'rt', 'vm_role': False, 'id': 1}
{'color': '4caf50', 'name': 'Switch', 'slug': 'sw', 'vm_role': False, 'id': 2}

JSON output from creating manufacturers:

{'name': 'Arista', 'slug': 'arista', 'id': 1}
{'name': 'Cisco', 'slug': 'cisco', 'id': 2}
{'name': 'Juniper', 'slug': 'juniper', 'id': 3}

JSON output from creating device_types (most likely don't need this many, but anyways):

{'is_full_depth': False, 'is_network_device': True, 'id': 1, 'comments': '', 'is_console_server': False, 'slug': '2960x-24ps', 'u_height': 1, 'manufacturer': 2, 'model': '2960X-24PS', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'WS-C2960X-24PS'}
{'is_full_depth': False, 'is_network_device': True, 'id': 2, 'comments': '', 'is_console_server': False, 'slug': '3650-48tq-l', 'u_height': 1, 'manufacturer': 2, 'model': '3650-48TQ-L', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'WS-C3650-48TQ-L'}
{'is_full_depth': False, 'is_network_device': True, 'id': 3, 'comments': '', 'is_console_server': False, 'slug': '3850-12xs', 'u_height': 1, 'manufacturer': 2, 'model': '3850-12XS', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'WS-C3850-12XS'}
{'is_full_depth': False, 'is_network_device': True, 'id': 4, 'comments': '', 'is_console_server': False, 'slug': '6880-x-le', 'u_height': 4, 'manufacturer': 2, 'model': '6880-X-LE', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'C6880-X-LE'}
{'is_full_depth': False, 'is_network_device': True, 'id': 5, 'comments': '', 'is_console_server': False, 'slug': 'isr4431', 'u_height': 1, 'manufacturer': 2, 'model': 'ISR4431', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'ISR4431/K9'}
{'is_full_depth': False, 'is_network_device': True, 'id': 6, 'comments': '', 'is_console_server': False, 'slug': 'ex2200-24t', 'u_height': 1, 'manufacturer': 3, 'model': 'EX2200-24T', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'EX2200-24T'}
{'is_full_depth': False, 'is_network_device': True, 'id': 7, 'comments': '', 'is_console_server': False, 'slug': 'ex4200-24f', 'u_height': 1, 'manufacturer': 3, 'model': 'EX4200-24F', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'EX4200-24F'}
{'is_full_depth': False, 'is_network_device': True, 'id': 8, 'comments': '', 'is_console_server': False, 'slug': 'ex4300-48p', 'u_height': 1, 'manufacturer': 3, 'model': 'EX4300-48P', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'EX4300-48P'}
{'is_full_depth': False, 'is_network_device': True, 'id': 9, 'comments': '', 'is_console_server': False, 'slug': 'ex4550-32f', 'u_height': 1, 'manufacturer': 3, 'model': 'EX4550-32F', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'EX4550-32F'}
{'is_full_depth': False, 'is_network_device': True, 'id': 10, 'comments': '', 'is_console_server': False, 'slug': 'mx240', 'u_height': 2, 'manufacturer': 3, 'model': 'MX240', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'MX240'}
{'is_full_depth': False, 'is_network_device': True, 'id': 11, 'comments': '', 'is_console_server': False, 'slug': 'mx480', 'u_height': 4, 'manufacturer': 3, 'model': 'MX480', 'interface_ordering': 1, 'subdevice_role': None, 'is_pdu': False, 'part_number': 'MX480'}

JSON output from creating platforms (included some which don't have a napalm_driver):

{'rpc_client': '', 'manufacturer': None, 'napalm_driver': 'eos', 'id': 1, 'name': 'Arista EOS', 'slug': 'eos'}
{'rpc_client': '', 'manufacturer': None, 'napalm_driver': 'ios', 'id': 2, 'name': 'Cisco IOS', 'slug': 'ios'}
{'rpc_client': '', 'manufacturer': None, 'napalm_driver': 'nxos_ssh', 'id': 3, 'name': 'Cisco NX-OS', 'slug': 'nxos'}
{'rpc_client': '', 'manufacturer': None, 'napalm_driver': 'iosxr', 'id': 4, 'name': 'Cisco IOS-XR', 'slug': 'iosxr'}
{'rpc_client': '', 'manufacturer': None, 'napalm_driver': 'junos', 'id': 5, 'name': 'Juniper Junos', 'slug': 'junos'}
{'rpc_client': '', 'manufacturer': None, 'napalm_driver': '', 'id': 6, 'name': 'RedHat Linux', 'slug': 'rhel'}
{'rpc_client': '', 'manufacturer': None, 'napalm_driver': '', 'id': 7, 'name': 'CentOS Linux', 'slug': 'centos'}
{'rpc_client': '', 'manufacturer': None, 'napalm_driver': '', 'id': 8, 'name': 'Ubuntu Linux', 'slug': 'ubuntu'}
{'rpc_client': '', 'manufacturer': None, 'napalm_driver': '', 'id': 9, 'name': 'Fedora Linux', 'slug': 'fedora'}

JSON output from creating devices:

{'device_role': 1, 'virtual_chassis': None, 'id': 1, 'primary_ip6': None, 'status': 1, 'cluster': None, 'device_type': 11, 'vc_priority': None, 'rack': None, 'platform': None, 'position': None, 'face': None, 'tenant': None, 'serial': '', 'vc_position': None, 'name': '1-Core', 'primary_ip4': None, 'created': '2018-07-13', 'asset_tag': None, 'comments': '', 'last_updated': '2018-07-13T00:01:40.065452Z', 'site': 3}
{'device_role': 1, 'virtual_chassis': None, 'id': 2, 'primary_ip6': None, 'status': 1, 'cluster': None, 'device_type': 9, 'vc_priority': None, 'rack': None, 'platform': None, 'position': None, 'face': None, 'tenant': None, 'serial': '', 'vc_position': None, 'name': '2-Distribution', 'primary_ip4': None, 'created': '2018-07-13', 'asset_tag': None, 'comments': '', 'last_updated': '2018-07-13T00:01:40.108345Z', 'site': 3}
{'device_role': 2, 'virtual_chassis': None, 'id': 3, 'primary_ip6': None, 'status': 1, 'cluster': None, 'device_type': 2, 'vc_priority': None, 'rack': None, 'platform': None, 'position': None, 'face': None, 'tenant': None, 'serial': '', 'vc_position': None, 'name': '3-Access', 'primary_ip4': None, 'created': '2018-07-13', 'asset_tag': None, 'comments': '', 'last_updated': '2018-07-13T00:01:40.149306Z', 'site': 2}

JSON output from creating interfaces:

{'tagged_vlans': [], 'mgmt_only': False, 'device': 1, 'mtu': None, 'name': 'lo0.0', 'id': 1, 'untagged_vlan': None, 'mac_address': None, 'mode': None, 'lag': None, 'form_factor': 1200, 'description': '', 'enabled': True}
{'tagged_vlans': [], 'mgmt_only': False, 'device': 2, 'mtu': None, 'name': 'lo0.0', 'id': 2, 'untagged_vlan': None, 'mac_address': None, 'mode': None, 'lag': None, 'form_factor': 1200, 'description': '', 'enabled': True}
{'tagged_vlans': [], 'mgmt_only': False, 'device': 3, 'mtu': None, 'name': 'Loopback0', 'id': 3, 'untagged_vlan': None, 'mac_address': None, 'mode': None, 'lag': None, 'form_factor': 1200, 'description': '', 'enabled': True}

JSON output from creating ip_addresses:

{'nat_inside': None, 'role': None, 'last_updated': '2018-07-13T00:01:40.261970Z', 'interface': 1, 'id': 1, 'tenant': None, 'address': '10.0.1.1/32', 'vrf': None, 'status': 1, 'description': '', 'created': '2018-07-13'}
{'nat_inside': None, 'role': None, 'last_updated': '2018-07-13T00:01:40.283004Z', 'interface': 2, 'id': 2, 'tenant': None, 'address': '172.16.2.1/32', 'vrf': None, 'status': 1, 'description': '', 'created': '2018-07-13'}
{'nat_inside': None, 'role': None, 'last_updated': '2018-07-13T00:01:40.301024Z', 'interface': 3, 'id': 3, 'tenant': None, 'address': '192.168.3.1/32', 'vrf': None, 'status': 1, 'description': '', 'created': '2018-07-13'}

Non-JSON output from setting primary_ip of existing devices:

True
True
True

dbarrosop · 2018-07-18T12:55:59Z

nornir/plugins/inventory/netbox.py

+                # Assign temporary dict to outer dict
+                devices[d["name"]] = temp
+
+        except KeyError:


@bdlamprecht when this happens, what status code does nsot return? I am wondering if we can just do raise_for_status.

I pretty sure you meant NetBox instead of nsot here (:smile:) :

what status code does nsot return?

I don't think it returns a status code.
When I add the following code after passing an invalid nb_token:

except KeyError: # DEBUG print(nb_devices)

I get the following dict back:

{'detail': 'Invalid token'}

Hope that answers your question.

It should return either a 401 or 403, otherwise, that's clearly a bug on Netbox and not very nice from an API perspective.

I think it's better if we test though. Would you mind changing:

nb_devices = requests.get( "{}/api/dcim/devices/?limit=0".format(nb_url), headers=headers ).json()

with:

r = requests.get("{}/api/dcim/devices/?limit=0".format(nb_url), headers=headers) r.raise_for_status() nb_devices = r.json()

And test it with both a wrong and a correct token?

With that change, it does appear to return a 403 with an invalid token:

HTTPError: 403 Client Error: Forbidden for url: http://localhost:8080/api/dcim/devices/?limit=0

Is that all you needed me to check on?

Thanks! That's what I was hoping for. I will commit a couple of more changes and I think we will be ready to go here.

Awesome! 💯
I'm happy to test it out once you get it all cleaned up the way that you'd like.
Cheers

bdlamprecht · 2018-07-26T15:44:12Z

@dbarrosop Hoping to get this inventory plugin merged soon so I can continue my testing to eventually migrate away from Ansible sooner rather than later.

NetBox is great and I'd like to still use it as my source-of-truth for 10,000+ devices (and at least another 20,000 will be added by this time next year).

Keep me updated, and again, thanks for nornir and your willingness to help so far!

dbarrosop · 2018-07-27T09:26:57Z

@bdlamprecht this one should be ready, please test it works as expected.

bdlamprecht · 2018-07-27T15:55:18Z

Yeah, it appears to work fine, both with and without invalid tokens (works and raises a 403 exception respectively).

I attempted to look into how you're using requests-mock to test it, but still don't understand how that works.
Perhaps if I spent more time review it I would, but don't know that I need to know.

Thanks again!

bdlamprecht · 2018-07-27T16:28:07Z

One last thought, as I mentioned, the NetBox instance that I'm testing this against has only 624 devices in it and it takes several seconds (~5) to create an NBInventory with that relatively small number of hosts.
Once you start pushing 10,000+, I imagine it could potentially significantly more time.

I'm wondering if it would be possible to code up a method to only query against certain site, certain role, or certain model (all of which are possible by altering the URL from this:

"{}/api/dcim/devices/?limit=0".format(nb_url)"

to this (respective to the order mentioned above):

"{}/api/dcim/devices/?site=foo&limit=0".format(nb_url)"
"{}/api/dcim/devices/?role=bar&limit=0".format(nb_url)"
"{}/api/dcim/devices/?model=baz&limit=0".format(nb_url)"

Or do you think the current implementation is good and it is up to the user to then filter on what devices they are specifically concerned with?

dmfigol · 2018-07-27T23:23:48Z

sorry for barging in,
I think it could be done, but not necessarily should be done at this point - premature optimization is not always good. I am pretty sure if someone comes with 10k inventory, slow inventory will not be the only problem.
That said, would be it be possible for you to run proposed queries and measure the running time and number of devices?

dbarrosop · 2018-07-28T07:16:56Z

That’s easy to implement, however, I’d like you to check first why it takes 5s for only 624 devices. Can you run time curl netbox_url_that_retrieves_all_hosts and time your_code_that_only_creates_nornir_inventory?

bdlamprecht · 2018-07-28T11:40:17Z

@dbarrosop Yeah, that is a good idea about measuring the time.

Honestly, I may have exaggerated ( 😄 ) the amount of time by saying ~5 seconds, but in all actuality is most likely ~2 seconds.

I'll do that on Monday when I'm working again and let you know.

Cheers!

dbarrosop · 2018-07-30T17:55:11Z

Should we merge this one? We can send a different PR later on to filter hosts by site or any other attribute later on if needed.

dmfigol · 2018-07-30T17:58:45Z

LGTM!

bdlamprecht · 2018-07-30T18:06:29Z

Yeah, I say merge it and then it can be enhanced later.

bdlamprecht and others added 3 commits July 12, 2018 13:43

Attempt at creating a custom inventory using NetBox as a backend (#162)

389ce15

Added inventory plugin for NetBox

Merge branch 'develop' of github.com:nornir-automation/nornir into net

f6e0a65

fix tests for netbox

8b56f97

dbarrosop commented Jul 12, 2018

View reviewed changes

dbarrosop added 2 commits July 17, 2018 12:23

address comments

3c5dc91

fix comment

e51794a

dbarrosop commented Jul 18, 2018

View reviewed changes

use raise_on_status instead of try...except.. block

6be7938

make black happy

22900f4

dbarrosop merged commit eba2a71 into develop Jul 30, 2018

dbarrosop deleted the net branch October 27, 2018 11:36

Adding inventory plugin for netbox #180

Adding inventory plugin for netbox #180

Uh oh!

Conversation

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Pull Request Test Coverage Report for Build 835

💛 - Coveralls

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!