Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Python Network Programming Techniques
  • Table Of Contents Toc
  • Feedback & Rating feedback
Python Network Programming Techniques

Python Network Programming Techniques

By : Marcel Neidinger
4 (5)
Buy this Book
close
close
Python Network Programming Techniques

Python Network Programming Techniques

4 (5)
By: Marcel Neidinger
Buy this Book

Overview of this book

Network automation offers a powerful new way of changing your infrastructure network. Gone are the days of manually logging on to different devices to type the same configuration commands over and over again. With this book, you'll find out how you can automate your network infrastructure using Python. You'll get started on your network automation journey with a hands-on introduction to the network programming basics to complement your infrastructure knowledge. You'll learn how to tackle different aspects of network automation using Python programming and a variety of open source libraries. In the book, you'll learn everything from templating, testing, and deploying your configuration on a device-by-device basis to using high-level REST APIs to manage your cloud-based infrastructure. Finally, you'll see how to automate network security with Cisco’s Firepower APIs. By the end of this Python network programming book, you'll have not only gained a holistic overview of the different methods to automate the configuration and maintenance of network devices, but also learned how to automate simple to complex networking tasks and overcome common network programming challenges.
Table of Contents (14 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the example code files
Icon
Code in Action
Icon
Download the color images
Icon
Conventions used
Icon
Get in touch
Icon
Reviews
Icon
Share Your Thoughts
1
Chapter 1: A Primer on Python 3
Icon
Chapter 1: A Primer on Python 3
Icon
Technical requirements
Icon
Assigning variables in Python
Icon
Converting between data types in Python
Icon
Looping over lists in Python
Icon
Controlling the flow of a Python program using if statements
Icon
Executing code until a condition is met using while loops
Icon
Writing reusable code with functions
Icon
Storing and accessing key-value pairs using dictionaries
Icon
Importing modules from the standard library
Icon
Installing modules from the PyPI
Lock Free Chapter
2
Chapter 2: Connecting to Network Devices via SSH Using Paramiko
chevron up
Icon
Chapter 2: Connecting to Network Devices via SSH Using Paramiko
Icon
Technical requirements
Icon
Initiating an SSH session with Paramiko
Icon
Executing a command via SSH
Icon
Reading the output of an executed command
Icon
Executing the same command against multiple devices
Icon
Executing a sequence of commands
Icon
Using public/private keys for authentication
Icon
Loading local SSH configuration
3
Chapter 3: Building Configuration Templates Using Jinja2
Icon
Chapter 3: Building Configuration Templates Using Jinja2
Icon
Technical requirements
Icon
Loading Jinja2 templates in Python
Icon
Passing variables from Python to a template
Icon
Writing your rendered template to a file
Icon
Using for-loops in Jinja2 to configure an access list
Icon
Creating a port configuration template using if-clauses in Jinja2
Icon
Creating modular templates using Jinja2's import methods
Icon
Using Python functions from within your template with Jinja2 filters
Icon
Structuring your configuration template with blocks and template inheritance
4
Chapter 4: Configuring Network Devices Using Netmiko
Icon
Chapter 4: Configuring Network Devices Using Netmiko
Icon
Technical requirements
Icon
Connecting to a network device using netmiko
Icon
Sending commands using netmiko
Icon
Retrieving command outputs as structured Python data using netmiko and Genie
Icon
Gathering facts using netmiko
Icon
Connecting to multiple devices
Icon
Creating and applying a configuration template with Jinja2 and netmiko
Icon
Copying files to a device using netmiko
Icon
Escalating privileges with netmiko
Icon
Authenticating using public-private keys with netmiko
Icon
Handling commands that prompt for information using netmiko
5
Chapter 5: Model-Driven Programmability with NETCONF and ncclient
Icon
Chapter 5: Model-Driven Programmability with NETCONF and ncclient
Icon
Technical requirements
Icon
Revisiting the NETCONF and YANG modules
Icon
Connecting to a network device using ncclient
Icon
Using NETCONF and ncclient to retrieve the running configuration
Icon
Using NETCONF and ncclient to change the starting configuration
Icon
Retrieving an interface configuration using NETCONF and ncclient
Icon
Changing an interface configuration using NETCONF and ncclient
Icon
Reacting to event notifications using NETCONF and ncclient
6
Chapter 6: Automating Complex Multi-Vendor Networks with NAPALM
Icon
Chapter 6: Automating Complex Multi-Vendor Networks with NAPALM
Icon
Technical requirements
Icon
Connecting to devices from different vendors using NAPALM
Icon
Issuing commands to a device using NAPALM
Icon
Testing network reachability using ping and NAPALM
Icon
Backing up your device configuration using NAPALM
Icon
Gathering facts about your network device using NAPALM
Icon
Creating and applying a configuration template with jinja2 and NAPALM
Icon
Rolling back configuration changes using NAPALM
Icon
Validating deployments using NAPALM
7
Chapter 7: Automating Your Network Tests and Deployments with pyATS and Genie
Icon
Chapter 7: Automating Your Network Tests and Deployments with pyATS and Genie
Icon
Technical requirements
Icon
Revisiting the concept of testing
Icon
Creating a pyATS testbed file
Icon
Connecting to your device and issuing commands using pyATS
Icon
Retrieving your device's current state using pyATS
Icon
Using Genie Conf objects to create a portable configuration script
Icon
Comparing your device's current state to a previously learned state
8
Chapter 8: Configuring Devices Using RESTCONF and requests
Icon
Chapter 8: Configuring Devices Using RESTCONF and requests
Icon
Technical requirements
Icon
Revisiting HTTP's request-response model and RESTCONF principles
Icon
Making HTTP requests using the requests module in Python
Icon
Retrieving all interfaces of a device using RESTCONF and requests
Icon
Creating a VLAN using RESTCONF and requests
Icon
Updating a VLAN using RESTCONF and requests
Icon
Deleting a VLAN using RESTCONF and requests
9
Chapter 9: Consuming Controllers and High-Level Networking APIs with requests
Icon
Chapter 9: Consuming Controllers and High-Level Networking APIs with requests
Icon
Technical requirements
Icon
Authenticating web requests
Icon
Storing authentication metadata between requests using sessions
Icon
Retrieving a list of Meraki networks
Icon
Retrieving usage details and connected clients for a Meraki network
Icon
Rebooting a Meraki device
Icon
Retrieving channel usage for your Meraki access point
Icon
Updating the switchport configuration of a Meraki device
Icon
Deleting the QoS rules on a Meraki device
Icon
Using webhooks to programmatically react to an AP going down
10
Chapter 10: Incorporating your Python Scripts into an Existing Workflow by Writing Custom Ansible Modules
Icon
Chapter 10: Incorporating your Python Scripts into an Existing Workflow by Writing Custom Ansible Modules
Icon
Technical requirements
Icon
Setting up the module structure
Icon
Documenting your module
Icon
Passing information into your module
Icon
Using Ansible's built-in functionality to do web requests
Icon
Packaging and calling your modules from Ansible playbooks
11
Chapter 11: Automating AWS Cloud Networking Infrastructure Using the AWS Python SDK
Icon
Chapter 11: Automating AWS Cloud Networking Infrastructure Using the AWS Python SDK
Icon
Technical requirements
Icon
Setting up the library to interact with your AWS account
Icon
Collecting information about your cloud networking resources
Icon
Starting EC2 instances
Icon
Creating a VPC
Icon
Subnetting your VPC
Icon
Changing routes in your VPC
12
Chapter 12: Automating your Network Security Using Python and the Firepower APIs
Icon
Chapter 12: Automating your Network Security Using Python and the Firepower APIs
Icon
Technical requirements
Icon
Exploring the API Explorer
Icon
Authenticating against the FMC REST API
Icon
Retrieving access policies
Icon
Changing access policies
Icon
Retrieving access rules
Icon
Changing access rules
Icon
Deleting access rules
Icon
Why subscribe?
13
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share Your Thoughts

Using public/private keys for authentication

So far, we have always used a username/password combination to connect to our device. This is not the most secure way, however, and many security policies advocate using public-private key pairs instead of a static password.

In this recipe, you will see how to programmatically open an SSH connection using a password-protected private key.

Getting ready

Open your code editor and start by creating a file called key_file.py. Next, navigate your terminal to the same directory that you just created the key_file.py file in.

You'll also need a password-protected private key for the device/server you are trying to connect to and have the device/server configured to allow or require key-based logins.

How to do it...

Let's start by importing the required libraries, define our new connection details, and finally open up a connection using key-based authentication:

  1. Import the Paramiko library:
    from paramiko.client import SSHClient
  2. Specify the host and username. You can name these variables however you like. In the Python community, it has become a standard to uppercase these global variables. Instead of the device password, we will now need two new variables – the path to the private key file that we want to use to authenticate and the password for that private key file: 
    SSH_USER = "<Insert your ssh user here>"
SSH_HOST = "<Insert the IP/host of your device/server here>"
SSH_PORT = 22 # Change this if your SSH port is different
SSH_KEY = "<Insert the name of your private key here>"
SSH_KEY_PASSWORD = "<Insert the password here>"
  3. Create an SSHClient object, which we just imported from Paramiko: 
    client = SSHClient()
  4. While we have created our client object, we have not yet connected to the device. We will use the connect method of the client object to do so. Before actually connecting, we will still need to make sure that our client knows the host keys: 
    client.load_system_host_keys()
client.connect(SSH_HOST, port=SSH_PORT,
                         username=SSH_USER,
                         look_for_keys=True,
                         key_filename=SSH_KEY,
                         passphrase=SSH_KEY_PASSWORD)
  5. As seen before, we can now execute a command once the connection is established:
    stdin, stdout, stderr = client.exec_command('<your command>')
  6. Finally, we need to close the connection:
    client.close()
  7. To run this script, go to your terminal and execute it with this:
    python3 key_file.py

How it works...

In this example, we use Paramiko's ability to load RSA keys for authentication to avoid using a username/password combination for authentication.

We need to import the same packages we have used before. The difference lies in the parameters that we pass to the connect function. Instead of specifying a password, we specify the name of our ssh key. The library will then, as indicated by setting the look_for_keys flag to true, search common places such as ~/.ssh for keys and match them with the name provided. The passphrase argument is used to provide the passphrase used to decode the private key. If your private key does not have a passphrase, you can omit this argument.

Once the connection is established, we can use the client in the same way as we did before, when dealing with username-password authentication.

There's more...

In the preceding example, we relied on the key file being present in one of the known paths. Sometimes you might want to explicitly specify the path you are loading a key file from. You can do so by, instead of just specifying the filename in the key_filename attribute, specifying the entire path where Paramiko can find your private key.

For example, if your private key is in /home/user/my_keys/id_rsa, you could modify the preceding example like so:

SSH_KEY = "/home/user/my_keys/id_rsa"

If you want to connect to different devices and have multiple keys, one for each device, you can also pass a list of key names or paths to ssh keys to the key_filename attribute: 

SSH_KEY = [
           "/home/user/my_keys/device_1",
           "/home/user/my_keys/device_2",
           "/home/user/my_keys/device_3"
]

Paramiko will then try out all the keys in the provided list for each device you are connecting to.

Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Python Network Programming Techniques
End of Section 2
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon