SDN in Action: Practice NETCONF/RESTCONF and YANG with OpenDaylight and IOS XRv（sdn网络）

SDN in Action: Practice NETCONF/RESTCONF and YANG with OpenDaylight and IOS XRv（sdn网络）

SDN in Action: Practice NETCONF/RESTCONF and YANG with OpenDaylight and IOS XRv

薛国锋       xueguofeng2011@gmail.com

NETCONF provides mechanisms to install, manipulate and delete the configuration of network devices. It uses XML-based data encoding for the configuration data as well as the protocol messages with YANG modeling. NETCONF uses a simple RPC-based mechanism to facilitate communication between a client (SDN controller or Network Manager) and a server (router or switch); after reading the YANG models, the client can understand and communicate with the server accordingly. The underlying transport of NETCONF is connection-oriented and adopts SSH or TLS.

RESTCONF is a protocol that provides RESTful APIs over HTTP to access configure and operational data defined in YANG models and stored in data stores by the NETCONF southbound plugin and other modules of controller, and offers the simplified and friendly way for outside applications to communicate with the controller and network.

Recently we have seen more adoptions of NETCONF/RESTCONF and YANG in SDN solutions, such as SDN-WAN, SD-WAN and SDN-DCN, which deserves a hands-on practice to master how they actually work. Below is the physical and logical design:

1 Set up the IOS XRv

Download IOS XRv – “iosxrv-k9-demo-5.3.3.ova”from the below web link:

Open it with VMWare Workstation, add the serial port using the named pipe – “\\.\pipe\r1” and runthe IOS XRv:

Install and run “NamedPipe TCP Proxy”, and map “\\.\pipe\r1” to “127.0.0.1:6001”:

Install “SecureCRT”, telnet 127.0.0.1:6001 and finish the follow configuration by CLI in the IOS XRv:

interface MgmtEth0/0/CPU0/0

ipv4 address 192.168.100.191 255.255.255.0

!

ssh server v2

ssh server netconf port 830

netconf-yang agent

ssh

Activate crypto keys for SSH by entering the following command in the IOS XRv:

crypto key generate dsa

Make sure the NETCONF server feature in the IOS XRv is working properly by entering the below command in an Ubuntu host and check the result:

ssh    -oHostKeyAlgorithms=+ssh-dss    -p 830   cisco@192.168.100.191   -s netconf

Try the following commands in IOS XRv and check the result:

show netconf-yang clients

show netconf-yang statistics

2 Run OpenDaylight and install the necessary features

opendaylight-user@root>feature:installodl-aaa-authn

opendaylight-user@root>feature:installodl-restconf-all

opendaylight-user@root>feature:installodl-dlux-core

opendaylight-user@root>feature:installodl-dluxapps-yangman

opendaylight-user@root>feature:installodl-dluxapps-topology

opendaylight-user@root>feature:installodl-l2switch-all

opendaylight-user@root>feature:installwebconsole

opendaylight-user@root>feature:installodl-mdsal-apidocs

opendaylight-user@root>feature:installodl-netconf-connector-all

OpenDaylight supports the NETCONF protocol as a northbound server for config-subsystem as well as a southbound plugin connecting remote NETCONF devices. After installing “odl-netconf-connector-all”,a single instance of netconf-connector called “controller-config” is created by OpenDaylight and connected to the NETCONF northbound server in a loopback fashion. The NETCONF northbound server for config-subsystem allows users to spawn/reconfigure/destroy modules or applications in OpenDaylight; the netconf-connector mounts the NETCONF northbound server in order to enable RESTCONF protocol for config-subsystem as well, which is more user-friendly than using NETCONF over SSH directly. More details can befound by the below web link:

After the NETCONF northbound server is mounted, all the YANG models it supports are downloaded by OpenDaylight using the get-schema operation and put into “/cache/schema”:

With the controller-config netconf-connector, we can directly communicate with the NETCONF northbound server using RESTCONF instead SSH.

Read the entire content of configure datastore from the NETCONF northbound server:

Read the entire content of operational datastore from the NETCONF northboundserver:

Read the configure datastore of the controller-config netconf-connector:

Read the operational datastore of the controller-config netconf-connector:

3 Mount IOS XRv in OpenDaylight

Now we can configure the new netconf-connector and mount IOS XRv directly through MD-SAL with the usage ofthe network-topology model.

Send the following request (PUT) to OpenDaylight  with Simple REST Client:

application/xml

iosxrv_R1

192.168.100.191

830

cisco

cisco

false

0

After the IOS XRv is mounted,all the following YANG models are retrieved from it and put into “/cache/schema”:

With the new netconf-connector– iosxrv_R1, we can invoke RPC(POST, yang-ext:mount/:) and receive notifications from the IOS XRv, and accordingly get/set/modify its configuration and obtain operational details.

Read the entire content of configure datastore from the IOS XRv:

Read the entire content of operational datastore from the the IOSXRv:

Read the configure datastore of the iosxrv_R1 netconf-connector:

Read the operational datastore of the iosxrv_R1 netconf-connector:

4 Making API Calls on OpenDaylight to configure the IOS XRv

First let’s use Simple REST Client and send the following request (POST) to OpenDaylight and create the logical interface –loopback1:

we write a Python APP and send the request (POST) to OpenDaylight:

/////////////////////////////////////// command.xml

root = ElementTree.fromstring(r.text)

print(root.tag)

for child in root:

print(child.tag)

for node in root[2]:

print(node[1].text)

print("\n")

# Sending the request to add the logical interface of loopback2 in the IOS XRv:

with open('command.xml') asfile_object:

contents = file_object.read()

r = requests.post( url ='= header, data = contents, auth =('admin','admin'))

print(str(r.status_code))

print(r.url)

print("\n")

# getting the entire content of configure data storefrom the IOS XRv:

r = requests.get( url = '                                                                headers = header,auth=('admin','admin'))

print(str(r.status_code))

print(r.url)

print("\n")

root = ElementTree.fromstring(r.text)

print(root.tag)

for child in root:

print(child.tag)

for node in root[2]:

print(node[1].text)

Check the running status of IOS XRv by CLI:

Main takeaways

This test is very simple, the SDN controller only provides the gateway function between RESTCONF/HTTP and NETCONF/SSH – a fancy form of NMS. The commercial SDN solutions can offer more intelligence, such multi-layer or area orchestration, multi-vendor deployment, traffic engineering and service automation, etc.

From this test, we also have a better understanding regarding to the architecture of OpenDaylight and the functionalities of key components: MD-SAL provides infrastructure services - DataStore, RPC / Service routing, notification subscription and publish services, and unifies both northbound and southbound APIs and the data structures for all the modules in OpenDaylight to cooperate with each other by native Java API calls,for which YANG modeling plays a critical role; while RESTCONF extends such capabilities to outside applications, allowing them to interact efficiently with the modules inside OpenDaylight.

版权声明：本文内容由网络用户投稿，版权归原作者所有，本站不拥有其著作权，亦不承担相应法律责任。如果您发现本站中有涉嫌抄袭或描述失实的内容，请联系我们jiasou666@gmail.com 处理，核实后本网站将在24小时内删除侵权内容。