Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
1679
Views
15
Helpful
2
Comments

ACI Terraform GitLab CI/CD Pipeline

Geevarghese Cheria
Cisco Employee
Cisco Employee

on ‎01-10-2023 11:22 PM

Introduction

This blog will walk through how to build a Continuous Integration/Continuous Delivery (CI/CD) pipeline for network automation using on-prem GitLab and Terraform to provision Application Centric Infrastructure (ACI) in development and production environments.

CI/CD overview

CI/CD Pipelines have evolved over many years depending on what components have been used in the pipeline by developers.

Continuous Integration has been a practice of integrating code that different developers were producing into one central location. Code is developed in separate branches by multiple developers and has multiple features. When code is merged into a branch at the central location you need to perform testing that validates the changes. If you find any bugs you need to flush out those potential bugs and ensure that there is no integration issues and quality is maintained.

Continuous Delivery is the stage where you run the code. You need to check that the changes have met integration requirements. All tasks are automated, and releases can be created and delivered at any time.  Taking delivery, a step further you can consider Continuous Deployment were many different deployment strategies available.

Infrastructure Automation

GeevargheseCheria_0-1673420049780.png

 

You can save the configuration files as text files and push them to a central location like Network as Code. Then you can have a continuous delivery approach to network changes along with continuous health and improvement approach to watching the network. Configuration changes can be done through automation tools like Ansible and Terraform. You can have historical insight into changes made to the network and validate changes prior to configuring the network. If an issue is introduced into the network, those changes can be rolled back to a known good state. You can also implement integration with change and ticketing systems for true Continuous Deployment.

 

GeevargheseCheria_1-1673420049786.png

GitLab

GitLab is a Complete DevOps platform where you can do project management. GitLab hosts Git repositories along with Built-in CI/CD components.

GeevargheseCheria_2-1673420049794.png

A project on GitLab includes Code, issues, and you can integrate with wikis, etc. Everything in GitLab is organized into projects. Projects can be created from scratch or you can use template, or import an existing project. You may configure visibility levels for your project as private, internal or public.

GeevargheseCheria_3-1673420049812.png

Regarding the files in the repository, you can view, edit or create on your project repo.

GeevargheseCheria_4-1673420049835.png

You have the Commits. You may View and manage commits within your project. Each commit will be creating a version and you can move from one commit to another easily.

GeevargheseCheria_5-1673420049861.png

There are also Branches, such as  test branch and main branch. Branches are a version of a project’s working tree. You can create merge requests and perform inline code reviews.

GeevargheseCheria_6-1673420049878.png

If any issue happens you can track the issues. It’s used for collaborating on ideas and planning the work. You can also enable sharing and discussion of ideas/proposals along with tracking the status of work and tasks.

GeevargheseCheria_7-1673420049903.png

When you want deploy the code in the test branch on production branch you can call for Merge Requests were you request to merge one branch into another.

GeevargheseCheria_8-1673420049929.png

There are several Pipelines that are running at the same time. Pipelines are the fundamental building blocks for CI/CD. These Pipelines get triggered automatically. On Git Push GitLab will deploy the changes made on files that are monitored by triggering the Pipeline.

GeevargheseCheria_9-1673420049956.png

Pipelines are composed of Jobs which is basically what to do  and Stages which mentions when to run the  job. A typical pipeline would contain four stages:

  • Build (compile)
  • Test (unit-tests)
  • Staging (deploy-to-stage, integration-tests)
  • Production (deploy-to-prod)

Whenever you have a change in the configuration file, and you push it to GitLab. At that time a pipeline is triggered, and a Runner will clone the repo and then execute the instructions inside .gitlab-ci.yml. Runners are used to run the jobs and send results back to GitLab. It’s on the gitlab-ci.yml file is where you design the stages of the pipeline and in each stage what is to be done.

An example of gitlab-ci.yml is as shown below.

GeevargheseCheria_10-1673420049971.png

Runners can implement a variety of executors like SSH, Shell, Parallels, VirtualBox, Docker, Kubernetes etc. In short you can run Jobs in different scenarios.

Pipelines are normally run when conditions are met for example when a branch is pushed to a repository.  But you can Schedule the Pipelines to run at a specific interval like once in every day or every Friday Or at any schedule as needed.

In GitLab using the export keyword you can setup the environment variables which will be useful for customizing your jobs.

GeevargheseCheria_11-1673420049989.png

ACI Terraform GitLab CI/CD Pipeline

GeevargheseCheria_12-1673420049999.png

This pipeline is for configuration management on an APIC instance. APIC is an ACI controller. When the network engineer submits for a change for example you want to create new Tenant within ACI fabric. Gitlab will push the changes and first get deployed on a test environment that is the development environment. If everything went fine, you will be able to validate the result on APIC. Now you want to deploy the same on the Production environment.   

GeevargheseCheria_13-1673420050009.png

Demo

For building the Test environment the Tools (products) Used are the following:

  • ACI v2h
  • ACI Simulator
  • Terraform v0.14.2
  • GitLab Cloud / On-premise: Latest Release

Lets first create a new project with the name ACI-Terraform-GitLab-Pipeline

 

GeevargheseCheria_14-1673420050032.png

Navigate to settings and select CICD

GeevargheseCheria_15-1673420050066.png

Click on Add Variable button on the window opened as below.

GeevargheseCheria_16-1673420050234.png

Add 2 variables namely DEV for development  and PROD  for production by entering the values on the pop window as shown below.

GeevargheseCheria_17-1673420050252.png

Now you may  see the details of the added variables as shown below

GeevargheseCheria_18-1673420050266.png

Next navigate to the master folder where you have already pushed the terraform scripts which runs the show.

GeevargheseCheria_19-1673420050297.png

Once you click on the pipeline button on GitLab it will open a window as shown below.

GeevargheseCheria_20-1673420050323.png

By clicking on init button you can find the status of the job running as shown below.

GeevargheseCheria_21-1673420050354.png

In the following pictures shown below you will be navigating through various stages

1)Prepare

GeevargheseCheria_22-1673420050419.png

2)Validate

GeevargheseCheria_23-1673420050484.png

3)Build

GeevargheseCheria_24-1673420050538.png

4)Deploy

GeevargheseCheria_25-1673420050599.png

Now you may verify on ACI that the changes got applied or not…

GeevargheseCheria_26-1673420050634.png

By clicking on the Tenant you can find the details as shown below.

GeevargheseCheria_27-1673420050670.png

As you have verified  that the changes got applied on the development environment all you need is to deploy the same on the Production environment . For that you are going to create a new branch on GitLab and name it as Production.

GeevargheseCheria_28-1673420050698.png

 

GeevargheseCheria_29-1673420050715.png

All the files will be cloned from the master into the production branch.

GeevargheseCheria_30-1673420050737.png

As seen before you will be repeating the same jobs ..

GeevargheseCheria_31-1673420050760.png

1)Prepare

GeevargheseCheria_32-1673420050816.png

2)Validate

GeevargheseCheria_33-1673420050882.png

3)Build

GeevargheseCheria_34-1673420050946.png

4)Deploy

GeevargheseCheria_35-1673420050978.png

 

GeevargheseCheria_36-1673420051046.png

Once done you may Verify on the ACI environment that the new Tenant with the details as mentioned in terraform script got created or not…

GeevargheseCheria_37-1673420051069.png

 

GeevargheseCheria_38-1673420051106.png

To check the status of the Jobs from the GitLab environment you may verify by navigating to Jobs-Terraform.

GeevargheseCheria_39-1673420051133.png

You can find the status as Passed.

GeevargheseCheria_40-1673420051152.png

Credit

Cisco live presentation - Using CI/CD pipelines for network automation – DEVNET-3069

Reference

 

Labels:
Comments
bigevilbeard
VIP
VIP
‎01-11-2023 03:41 AM

Great blog @Geevarghese Cheria 

apfeil
Level 1
Level 1
‎01-20-2023 06:49 PM

Very nice! This is very helpful!

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:


New to DevOps? These resources can help:

DevOps Resources
LCA WEBSITE.png 
LCA CALENDAR.png 
LCA JOURNEY.png 
Ask the Experts.png 
Customers Also Viewed These Support Documents