Tag: SDN

🧠 What is a REST API?

REST API stands for Representational State Transfer Application Programming Interface.
It’s a standard way for two systems to communicate over the web (HTTP/HTTPS) — often between a client (like Python script or Ansible) and a server (like a network device or SDN controller).

In simple terms:
👉 A REST API allows you to interact with a system (get data, configure, update, or delete something) using HTTP requests — just like how your browser communicates with websites.

⚙️ Why REST APIs Matter in Networking

In modern networks:

Devices (Cisco, Juniper, Fortinet, etc.) and controllers (like OpenDaylight, Cisco DNA Center, VMware NSX) expose REST APIs.
Engineers can automate tasks (like getting interface status, pushing configurations, or monitoring health) using API calls instead of manual CLI.

Example:
Instead of logging into 50 routers to check interface status,
you can run one Python script that uses REST APIs to fetch all interface data.

🧩 Key Concepts of REST API

Concept	Description
Client	The system or application making the API request (e.g., Python script, Postman, Ansible)
Server	The system that provides the API (e.g., router, firewall, controller)
Resource	The object you’re working with (e.g., interface, VLAN, route, policy)
URI (Uniform Resource Identifier)	The address to access a resource (e.g., `/api/v1/interfaces`)
HTTP Methods	Define what action to perform on a resource

🔠 Common HTTP Methods

Method	Purpose	Example
GET	Retrieve information	Get interface status
POST	Create new data/configuration	Add a new VLAN
PUT	Update/replace data	Change an interface IP
PATCH	Modify part of a resource	Update interface description
DELETE	Remove data/configuration	Delete a VLAN

🧾 Typical REST API Request Structure

A REST API request looks like this:

Method: GET
URL: https://192.168.1.1/api/v1/interfaces
Headers:
    Content-Type: application/json
    Authorization: Bearer <token>

Response (from device or server):

{
  "interfaces": [
    {"name": "GigabitEthernet0/0", "status": "up"},
    {"name": "GigabitEthernet0/1", "status": "down"}
  ]
}

💡 Key Characteristics of REST APIs

Stateless: Each request is independent; the server doesn’t remember previous ones.
Uses HTTP verbs: GET, POST, PUT, DELETE, etc.
Uses URIs to identify resources.
Supports multiple data formats: Commonly JSON, sometimes XML.
Client-Server separation: Clear boundary between what requests and what responds.
Cacheable: Responses can be cached for performance.

🧰 Common Tools to Work with REST APIs

Tool	Use
Postman	GUI-based tool to test and visualize API calls
cURL	Command-line tool for sending HTTP requests
Python (Requests library)	Programmatically interact with APIs
Ansible / Terraform	Use APIs for automation/infrastructure as code

🐍 Example: Python Script Using REST API

import requests
import json

url = "https://192.168.1.1/api/v1/interfaces"
headers = {
    "Content-Type": "application/json",
    "Authorization": "Bearer your_token_here"
}

response = requests.get(url, headers=headers, verify=False)
data = response.json()

for interface in data["interfaces"]:
    print(interface["name"], "-", interface["status"])

✅ This script retrieves interface status from a network device that supports REST APIs.

🌐 Example REST API Endpoints (Networking)

Vendor	API Example	Description
Cisco DNA Center	`/dna/intent/api/v1/network-device`	Get all devices
Fortinet FortiGate	`/api/v2/monitor/system/interface/`	Get interface list
Juniper Junos	`/rpc/get-interface-information`	Get interface info
OpenDaylight	`/restconf/operational/network-topology:network-topology`	Get network topology
Arista eAPI	`/command-api`	Send CLI commands via JSON-RPC

✅ Benefits of Using REST APIs

Automation: Eliminate manual configuration
Integration: Connect network, cloud, and monitoring systems
Speed: Fast configuration and data collection
Consistency: Apply uniform settings across devices
Scalability: Manage hundreds of devices easily

🧭 Summary

Concept	Description
Full Form	Representational State Transfer API
Purpose	Communication between client and server using HTTP
Data Format	JSON / XML
Common Methods	GET, POST, PUT, DELETE
Use in Networking	Automate configuration, monitoring, and integration
Tools	Postman, Python Requests, Ansible

October 8, 2025

🧠 What is Device Programmability?

Device Programmability means the ability to configure, control, and manage network devices (like routers, switches, firewalls) using software or code, rather than logging in manually and typing CLI commands.

In short —
👉 It’s how network automation happens.

Instead of an engineer configuring 100 devices manually, scripts or automation tools push configurations automatically using APIs or programmable interfaces.

⚙️ Traditional Networking vs Programmable Networking

Feature	Traditional Networking	Device Programmability
Configuration Method	Manual CLI (per device)	Automated using scripts/APIs
Speed	Slow and error-prone	Fast and consistent
Scalability	Difficult for large networks	Easily scales to hundreds/thousands of devices
Control	Device-specific	Centralized and programmable
Adaptability	Static	Dynamic (policy-driven and responsive)

🧩 How Device Programmability Works

Modern network devices support APIs or data models that allow software (like SDN controllers or automation tools) to communicate directly with them.

Typical workflow:

Automation script/tool (e.g., Python, Ansible) sends configuration commands.
The device API/agent interprets and applies the change.
The device returns a response/status (success/failure, interface info, etc.).
Software can verify, rollback, or update further based on feedback.

🧱 Key Building Blocks of Device Programmability

1. APIs (Application Programming Interfaces)

Enable communication between applications and devices.
Most common: REST APIs, NETCONF, gRPC/gNMI, SNMP (legacy).

2. Data Models

Define how device configuration/state is structured.
Common models: YANG, JSON, XML.

3. Transport Protocols

Define how data is exchanged between systems.
Examples: HTTP/HTTPS, SSH, TLS, gRPC.

4. Automation Tools

Tools/libraries to implement programmability:
- Ansible (declarative, YAML-based)
- Python scripts (with Paramiko, NAPALM, Netmiko)
- Terraform (for infrastructure as code)
- Cisco NSO / Juniper PyEZ / FortiManager APIs

🔌 Common Device Programmability Interfaces

Protocol	Type	Description
NETCONF	XML-based	Standard IETF protocol for configuration management using YANG models
RESTCONF	HTTP-based	Lightweight interface using REST and YANG
gRPC/gNMI	Binary protocol	High-performance API for telemetry and configuration
SNMP	Legacy	Used for monitoring, not ideal for configuration
CLI over SSH	Script-based	Basic automation using Python (Netmiko, Paramiko)

🧰 Example: Using Python for Device Programmability

Here’s a simple Python example using Netmiko to configure a Cisco router:

from netmiko import ConnectHandler

device = {
    "device_type": "cisco_ios",
    "host": "192.168.1.1",
    "username": "admin",
    "password": "cisco123",
}

conn = ConnectHandler(**device)
config_commands = [
    "interface GigabitEthernet0/1",
    "description Connected_to_Firewall",
    "ip address 10.1.1.1 255.255.255.0",
    "no shutdown"
]
conn.send_config_set(config_commands)
conn.save_config()
conn.disconnect()

✅ This script logs into a router, configures an interface, and saves the configuration — automatically.

🌐 Benefits of Device Programmability

Automation – Save time and reduce manual errors
Scalability – Manage thousands of devices centrally
Agility – Respond quickly to network changes or failures
Consistency – Enforce uniform policies and configs
Integration – Connect network with cloud, security, and monitoring systems

🧩 Real-World Use Cases

Network configuration automation
Zero-touch provisioning (ZTP)
Telemetry and monitoring
Policy-based routing and QoS
Dynamic firewall or ACL updates
SDN integration and orchestration

🏗️ Vendors Supporting Device Programmability

Cisco – NX-OS, IOS-XE, IOS-XR (NETCONF/RESTCONF/gNMI APIs)
Juniper – Junos with PyEZ, NETCONF, REST API
Arista – eAPI (JSON-RPC), gNMI
Fortinet – REST API, Ansible collections
VMware NSX, Palo Alto, Huawei, and others – all provide API-based programmability.

🧭 Summary

Concept	Description
Definition	Ability to configure/manage devices via APIs or scripts
Goal	Automate and simplify network operations
Protocols	NETCONF, RESTCONF, gNMI, SNMP
Languages/Tools	Python, Ansible, Terraform
Benefits	Automation, consistency, scalability, agility

October 8, 2025

🧠 What is Software-Defined Networking (SDN)?

Software-Defined Networking (SDN) is a modern approach to network design and management that separates the control plane from the data plane.
This means the intelligence (decision-making) of the network is centralized in a software-based controller, while the hardware devices (switches/routers) just forward packets based on those instructions.

⚙️ Traditional Networking vs SDN

Feature	Traditional Networking	Software-Defined Networking
Control Plane	Distributed across all devices (each switch/router runs its own control logic)	Centralized in an SDN controller
Data Plane	Located on each device	Still on devices but managed by controller
Configuration	Manual (CLI per device)	Automated (via controller and APIs)
Scalability	Harder to scale	Easily scalable and programmable
Flexibility	Static and hardware-dependent	Dynamic and software-driven

🧩 Key Components of SDN

Application Plane
- Contains SDN applications (like network monitoring, security policies, load balancing).
- Communicates with the controller through northbound APIs (often REST APIs).
Control Plane
- The SDN Controller (e.g., OpenDaylight, ONOS, Cisco APIC, VMware NSX Manager).
- Makes centralized decisions on routing, access control, and network policies.
Data Plane
- Network devices (switches, routers) that forward packets based on rules received from the controller.
- Communicates with the controller through southbound APIs (e.g., OpenFlow, NETCONF).

🔄 How SDN Works (Simplified Flow)

The controller maintains a complete view of the network.
Applications request specific network behaviors (e.g., “prioritize VoIP traffic”).
The controller translates these policies into forwarding rules.
Switches/routers in the data plane execute those rules.

🌐 Benefits of SDN

Centralized Management: Single point of control for the entire network.
Automation: Reduces manual configuration and human error.
Programmability: Network behavior can be modified via software or APIs.
Agility: Quickly adapt to new business or security needs.
Cost Efficiency: Can use commodity hardware instead of proprietary devices.

🧱 Common SDN Protocols and Technologies

OpenFlow: The first and most popular southbound API for communication between controller and switches.
NETCONF/YANG: Used for configuration and monitoring.
VXLAN: Commonly used for SDN-based network virtualization.
REST APIs: For communication between applications and the controller.

🏢 Popular SDN Implementations

Cisco ACI (Application Centric Infrastructure)
VMware NSX
OpenDaylight
ONOS (Open Network Operating System)
Juniper Contrail

📈 Use Cases

Data Center Automation
Network Virtualization (SDN + NFV)
Dynamic Traffic Engineering
Cloud Networking
Security & Policy Enforcement

October 8, 2025