Blackholing a list of IPs sourced from S3 bucket
Request from customer was to automatize a current manual process that mainly consist in:
- Download a .txt file from an AWS S3 bucket.
- Using the list of IPs in the file create a route in a cisco IOS device
Create a NSO service (python+template)
Using Boto3 library (AWS provided) for python, the service created with this package:
- download a .txt file with a list of IPs form an amazon S3 bucket
- create an IP route pointing to a null interface in an IOS device for each IP in the list.
NOTE:
- This is complete package for NSO. Copy entire directory under ..../packages directory.
- This is a simple package (PoC grade) to demonstrate NSO ability to solve the request. Some extra work is needed for production
- Please refer to "prerequisites.pdf" for the initial setup for using the script.
- The S3 bucket provided in the example is not for public access, you need to provide your own one.
- Credentials for login to access the S3 bucket are implemented using "aws configure" application for Linux.
- IOS device and its NED must be working also in advance
NOTE: Cisco NSO should be installed and working. For Trial installation instructions and licences: https://developer.cisco.com/docs/nso/#!getting-nso/getting-nso or you can use NSO sandbox: https://devnetsandbox.cisco.com/RM/Diagram/Index/43964e62-a13c-4929-bde7-a2f68ad6b27c?diagramType=Topology
