INTENT-BASED NETWORK LOAD BALANCER AND ANSIBLE Andrius Benokraitis, - - PowerPoint PPT Presentation

intent based network load balancer and ansible
SMART_READER_LITE
LIVE PREVIEW

INTENT-BASED NETWORK LOAD BALANCER AND ANSIBLE Andrius Benokraitis, - - PowerPoint PPT Presentation

Jul 01, 2023 172 likes •359 views

INTENT-BASED NETWORK LOAD BALANCER AND ANSIBLE Andrius Benokraitis, Product Management, Red Hat Jeevan Sharma, Solution Architecture, A10 Fadi Hafez, Systems Engineering, A10 Michael Durrant, Software Engineering, A10 Cynthia

slide-1
SLIDE 1

Reliable Security Always™

1

INTENT-BASED NETWORK LOAD BALANCER AND ANSIBLE

Andrius Benokraitis, Product Management, Red Hat
 Jeevan Sharma, Solution Architecture, A10
 Fadi Hafez, Systems Engineering, A10
 Michael Durrant, Software Engineering, A10 
 Cynthia Hsieh, Strategic Cloud Alliance, A10

slide-2
SLIDE 2

2

  • Ansible for Network Automation and Security (Red Hat)
  • A10 Introduction
  • A10 Intelligent Automation Solutions and Integration
  • Real-World Ansible Use Cases for Telecom Operators Telco and Global Enterprise
  • Demo
  • Q&A

Webinar Agenda

slide-3
SLIDE 3

3

slide-4
SLIDE 4

4

slide-5
SLIDE 5

5

slide-6
SLIDE 6

6

ACOS PLATFORM
 APPLICATION DELIVERY VIRTUAL & PHYSICAL
 ADC, CGN SSL VISIBILITY, DDoS & FIREWALLS MULTI CLOUD &
 SERVICES INTELLIGENT AUTOMATION & CONNECTED INTELLIGENCE

+ + + +

900


EMPLOYEES


80


COUNTRIES 


6200


CUSTOMERS


200


PATENTS

Protecting the Biggest Brands

slide-7
SLIDE 7

7

SECURITY

DDoS
 PROTECTION

(TPS)

SSL
 INSPECTION

(SSLi)

CONVERGED
 FIREWALL

(CFW)

LOAD
 BALANCING

(ADC)

IPv4
 PRESERVATION

(CGN)

APPLICATION DELIVERY

A10 HARMONY CONTROLLER

Central Management & Analytics MACHINE LEARNING DATA ANALYTICS

aGALAXY

DDoS Mgmt. THREAT INTELLIGENCE

Intelligent Automation Solutions

slide-8
SLIDE 8

8

Open API Enabled Security & App
 Networking Functions A10 HARMONY CONTROLLER REST API

Seamless Integration in DevOps & SecOps

slide-9
SLIDE 9

9

VIRTUAL APPLIANCE

C L O U D D A T A C E N T E R

BARE METAL CONTAINER

Multi-Cloud Deployments

& A z u r e s t a c k

slide-10
SLIDE 10

10

0%


Human Error
 Target


90%


Faster DDoS Attack
 Detection Time

100%


Visibility To 
 Data Breaches

Automation Matters

slide-11
SLIDE 11

11

Automation Orchestration

Users A10 Module

Ansible Playbook

  • Deploy Software
  • Configure Systems
  • Automate IT tasks
  • Continuous deployments
  • Service provisioning
  • Network provisioning

Ansible Use Case for IT Software Automation

slide-12
SLIDE 12

12

Ansible Use Case for ADC

  • Network Automation & Provisioning
  • Reduce manual work
  • Reduce human input errors
  • Previously used CLI scripts, but not scalable
  • Requirements
  • Open APIs
  • Ansible playbooks & modules
  • SLB (server, service group, virtual server,

health monitor)

  • Manage config state and change

management

Private Cloud / DC A10 ADC Internet Thunder vThunder

slide-13
SLIDE 13

13

Ansible Use Case from a Communications & Media Customer Must-Haves 


  • Must be able to configure hardware appliances (A10 Thunder

ADC) and virtual instances (vThunder ADC )

  • Must support ACOS 2.x and ACOS 4.x
  • Must be repeatable and idempotent
  • Must be able to ADD, CHANGE and REMOVE ACOS elements
  • Must support IPv4 and IPv6
  • Must support ACOS Partitions
slide-14
SLIDE 14

14

Ansible Use Case from a Communications & Media Customer Must-Haves Continued


Management

  • SNMP
  • TACACS
  • Syslog 


Network

  • Interfaces
  • Routings
  • NAT Pools

ADC Load Balancing

  • Server, Service-Group, VIP
  • Health Monitors
  • Templates: TCP

, HTTP , UDP etc

  • SSL Certificate Upload/

Download

  • aFleX Script 


Upload/Download

slide-15
SLIDE 15

15

Ansible Use Case from Global Manufacturing Giant


Customer Must-Haves 


Management

  • SNMP
  • TACACS
  • Syslog 


ADC Load Balancing

  • Server, Service-Group, VIP
  • Health Monitors
  • Templates: TCP

, HTTP , UDP etc.

  • SSL Certificate Upload/

Download

  • aFleX Script 


Upload/Download

  • Must be able to configure hardware appliances (A10 Thunder

ADC) and virtual instances (vThunder ADC )

  • Must support ACOS 2.x and ACOS 4.x
  • Must be repeatable and idempotent
  • Must be able to ADD, CHANGE and REMOVE SLB elements
  • Must be able to enable / disable SLB objects
  • Perform system maintenance jobs (upgrades/downgrades)
  • Upload / Download SSL certificates and keys
  • Upload / Download files (aFlex Rules, Templates etc.)
slide-16
SLIDE 16

16

Demo on ADC Functions

  • Basic TCP LB graph with health monitors – most common

architecture

  • Configuration of network interfaces and routing
  • Configuration of management/SNMP/TACACS function
  • L7 Filtering / SSL Termination
slide-17
SLIDE 17

17

A10 DDoS with Ansible 


#ansiblefest

slide-18
SLIDE 18

18

https://github.com/a10networks/a10-ansible https://www.ansible.com/integrations/networks/a10 For more info, email ansible@a10networks.com

Q&A