• Tag : CVP

 
 

Events

This TOI captures new categories of events that have been added in CVP release 20202.1.0. Network Constraint Events Network Constraints refers to a group of new events that are aimed at validating network design rules.  For example: All leaf-spine links must be 10Gbps A leaf must have at least two spine switches on the layer above it All racks should have redundant TORs MTU settings These events implement the various checks and the specific network/topology is derived based on tags. List of events include: Insufficient Downlink Device Redundancy Insufficient Peer Device Redundancy Insufficient Peer Interface Redundancy Insufficient Uplink Device Redundancy Insufficient...
Continue reading →

Flow Analytics (Beta)

Flow Analytics (Beta) NOTE: This is a beta feature in the 2019.1.0 and 2020.1.0 release and is not enabled by default. In order to enable the Flow Analytics and  feature, it is recommended that the minimum VM resources are configured at the recommended minimum for production deployments : CPUs: 28 cores RAM: Recommended 52 GB Disk: 1 TB This feature is GA in the 2020.2.0 and later releases and is enabled by default.                                       Viewing Traffic Flows         CloudVision’s traffic flows introduced in...
Continue reading →

MAC/IP Address Search (Beta)

MAC/IP Address Search (Beta Feature) NOTE: This is a beta feature and is not enabled by default. In order to enable the search feature on multi-node production deployments with a large number of managed devices, it is recommended that the VM resources be configured at the recommended minimum as listed below: CPUs: 28 cores RAM: Recommended 52 GB Disk: 1 TB Search feature lets users search for a MAC or IP address and get back information about the address from MAC table or ARP Table. Enabling Search The feature is disabled by default. In order to enable it, operations need to...
Continue reading →

Topology View Enhancements

TOI – Topology View Enhancements This TOI covers the following enhancements to Topology View in the 2020.1.0 release: Visualization for VXLAN tunnels in Topology with the ability to filter based on VNIs Cloud Topology manual layouts VXLAN Overlays and Filters In 2020.1.0, the overlays menu has included a VXLAN option. When selected, this colors each link by associated VNI. Links with multiple associated VNIs are given a distinct color and the list of VNIs can be viewed by hovering over the links to display a tooltip. VXLANs can be filtered by entering the VNIs to be displayed in the “VXLAN...
Continue reading →

CloudVision 2020.1.0 Release TOIs

Key highlights for the CloudVision Portal release 2020.1.0 are: An updated UI with improved fonts, vibrant colors and consistent navigation Topology View Enhancements – Support for VxLAN tunnel discovery, Cloud Manual topology Layouts Events – Network Constraint Events, CloudTracer events Search (Beta) – Addition of IP address search Enhanced Search in Flow Analytics (Beta) vMotion support for multi-node cluster CVP release 2020.1.0 supports host-to-host vMotion for a multi-node cluster. It is recommended to use vMotion to migrate one node at a time in a multi-node deployment. It should be only performed if all components are up and running. It is...
Continue reading →

can you reconcile from the switch?

I was wondering if there any way to execute the reconcile process but backwards; from the switch. I know how to do it from CVP but the plan is to execute remote changes over CLI and then execute the reconcile process to keep consistency between CVP and the switch configuration.   Thanks,

Modifying the Timeout Value for Image Upgrades Done Using CVP (CloudVision Portal)

Description Traditionally, network image upgrades have been done manually on a device-by-device basis.  With Arista’s CloudVision Portal this arduous task has been greatly simplified.  Multiple groups of devices can be upgraded with a few simple clicks by modifying the applied image bundle in the Network Provisioning page. The tedious task of manually uploading device images is handled entirely by CVP.  For a majority of use cases, the default settings of CVP will not need any sort of modification.  However, if device upgrades will be done over slower WAN links it is recommended that the image upload timeout value within CVP...
Continue reading →

Sending Telemetry Data from TerminAttr to Multiple CVP instances

Sending Telemetry Data from TerminAttr to Multiple CVP instances Overview This article will explore the ability of the CloudVision Telemetry agent to send data to more than one CloudVision Portal (CVP) instance or CloudVision and a third party application.     The configuration used in this lab was also used as part of the “Synchronising CloudVision Portal Configlets with Ansible” POC lab to enable both CloudVision instances to receive Telemetry data from all the switches. The article for “Synchronising CloudVision Portal Configlets with Ansible” can be found here : https://eos.arista.com/synchronising-cloudvision-portal-configlets-with-ansible/   Introduction The Proof of Concept Lab created to demonstrate...
Continue reading →

[SDN] Arista CVP and Phyton

Hello guys! I’m learning and studying ARISTA programming, could you suggest some book or article to study? Regards, Rodrigo Almeida.

CVP VM Maximum Resource Allocation on DCA-CV-100

Introduction This document describes a procedure and tooling to reallocate the RAM and CPUs in the DCA-CV-100 in order to maximize the performance of the CVP virtual machine. By scavenging resources from the CVX VM and allocating them to the CVP VM the CVP application can achieve higher scale. Prerequisites The scripts and procedures in this document are first available in CVA Version 2.1.3. In CVA 2.1.3 this procedure only runs on the DCA-CV-100. Procedure Allocating Maximum Resources to the CVP VM Find the script reallocateVM.py in the folder /cva/scripts. Run the script as  ./reallocateVM.py --maxCvp This will stop the...
Continue reading →

Enabling CloudVision Wi-Fi container on CVP

The CloudVision Wi-Fi (CVW) service is available as a container on the Arista CloudVision platform from its 2019.1.0/Grant release. Once you activate the CVW service, you can configure, monitor, troubleshoot, and upgrade Arista Wi-Fi access points using the cognitive CVW UI.  This chapter gives an overview of the CVW containerization on CV and explains how to set up the service. An appendix lists the CLI commands you can run on the CVW service. Overview of CVW on CV The figure below shows a conceptual overview of the Arista CVW solution.  As shown in the figure, CVW is containerized within the...
Continue reading →

Expedited CVP Upgrades

Introduction This document presents several procedures to reduce the time taken to upgrade CVP between major releases. This can reduce the CVP outage window from 10s of hours to under an hour. The trade off with these procedures is that some or all telemetry data will be discarded. Upgrading from 2018.1.x to 2018.2.x See the 2018.2.x release notes for details on the upgrade process, there are other upgrade requirements and restrictions beyond what’s discussed here. When upgrading from 2018.1.x to 2018.2.x there are two migrations that take place. The first migration is to move the provisioning data from hbase to...
Continue reading →

CVP with Terminattr certificates

Introduction This document describes the TerminAttr certificate authentication feature introduced in the CVP 2019.1.0 release.   TerminAttr Authentication with CVP Every switch managed by CVP uses TerminAttr to stream updates to CVP and every one of these TerminAttr connections needs to be authenticated. Authentication is provided via shared key or certificates. Certificate-based authentication provides additional security by (1) eliminating the shared key from the switch’s configuration and (2) by uniquely authenticating each connection between the switch and CVP. Enabling Certificate Authentication In 2019.1.x CVP is configured, by default, to authenticate using shared keys. The TerminAttr certificate authentication can be turned ON...
Continue reading →

ChangeControl API

Overview The ChangeControl APIs offer a way to programmatically interact with the ChangeControl service on CVP. Description Data Model From the data model perspective a ChangeControl is a collection of stages that could be executed in sequence (series) or simultaneously (parallel). An action is the executable unit of work (for instance Task is an action).  Each stage can either have an action or a list of stage_rows. The list of stage_rows are executed in series. A stage_row has a list of stages that are executed in parallel.  In summary action:      Executable unit of work. stage:      ...
Continue reading →

Change Control Script Actions

Introduction Script action is a very effective feature to enable customers to add their own custom actions to Change controls. Examples of customized script action could be  To check or configure third party devices including other switches, storage devices etc Adding specific checks on Arista devices which isn’t already available as a prebuilt action  Interacting with third party messaging systems or git repositories Script and config file CVP supports running only python scripts as a script action. Each script runs in its own container. Uploaded python scripts cannot make any changes to the CVP’s underlying filesystem.  We additionally also need...
Continue reading →

BGP Maintenance Mode and MLAG ISSU Change control actions

Introduction This document describes the BGP Maintenance Mode (MM) and MLAG ISSU Actions for Change Control to support hitless image updates for EOS switches managed by CVP. References The following documents provide some background on EOS’s BGP MM and MLAG ISSU functionality: EOS Users Manual: MLAG EOS Users Manual: MLAG Maintenance EOS Users Manual: BGP Maintenance Mode BGP Maintenance Mode Hitless upgrade with BGP MM is typically achieved by wrapping an Image Upgrade Action with Enter and Exit BGP MM Actions. The basic sequence is shown below where first the device enters MM, executes the task and then exits MM....
Continue reading →

REST API Client

Hello, Im using a REST API Client called Postman to send APIs to CVP. I’m receiving a “401” Response due to failed authentication. I was able to make the API call using the FQDN/web/api/ but I noticed it works only when a user is logged in to the CVP console. If no user is logged in then the API call fails with the failed authentication error. Also, I noticed when I used Postman or any other REST client the CVP console user was logged out automatically. Im doing something simple (a new label). I added the content-type and the authentication...
Continue reading →

Download CVP

Hey everyone, Do we need a special account privilege to download CVP for testing? I have a customer account, but the software download page doesn\’t have any links to CVp download and there is a message indicating that I might not have necessary privileges for downloads. Note: cEOS and vEOS are available for download Any hint? Thanks a lot!

CVP AAA TACACS+ authorization with Cisco ISE

CVP AAA TACACS+ authorization with Cisco ISE Introduction We saw last time how to correctly integrate Aruba ClearPass CPPM with CVP so TACACS+ users can authenticate with the correct network role. The purpose of this document is to show the same for Cisco ISE (successor of ACS) TACACS+. Our goal is to make Cisco ISE send us the cvp-roles=network-admin attribute in the Authorization reply packet.   NOTE If you are running CVP versions 2018.2.0 and 2018.2.1 you might hit BUG 345723 due to which in tacacs-provider authorization we are not checking for TAC_PLUS_AUTHOR_STATUS_PASS_ADD flag. We can provide a binary patch...
Continue reading →

CVP to K8s: full-scale production network simulation

Intro Network simulation environments have always been limited to a single compute node, which made the labbing of a full-scale production network an exercise in compromise and trade-offs. At the same time compute resources are cheap and abundant and modern application designs are making use of them by adopting meshed scale-out architectures, treating multiple hosts as a single pool of resources. In this post, we’ll see how (with just a few clicks*) we can build a replica of a real production network, orchestrated by Kubernetes based on information extracted from Arista’s CloudVision Portal (CVP). * Assuming all the prerequisites are met

Follow

Get every new post on this blog delivered to your Inbox.

Join other followers: