Puppet Manage Cisco ASA

[jim]

Hello all,

Does anyone currently manage Cisco ASA's  out there via Puppet, if so how ?

Due to the size of our network it would be great if Puppet could manage Object-groups and ACL's etc to try and standardize across our ASA hosts.

e.g.

On one ASA an Object-group would be called

monitoring_server

on another ASA

mon_srv

another ASA

monsrv

It makes understanding the rules alot harder, when there is no uniform object-groups, this is manly to due different network engineers over the years and out network evolving

regards

Jim

[jim]

I am aware of https://puppetlabs.com/blog/puppet-network-device-management/

but this doesn't manager ACL's or object-groups yet, and my programming skills aren't that great

Or has anyone used cisco one platform kit (onepk) via puppet ????

regards

Jim

[James Turnbull]

jim wrote:
> I am aware of https://puppetlabs.com/blog/puppet-network-device-management/
>
> but this doesn't manager ACL's or object-groups yet, and my programming
> skills aren't that great
>
> Or has anyone used cisco one platform kit (onepk) via puppet ????
>

Cisco is working on integration and we hope to have some news on this soon.

Regards

James Turnbull

--
James Turnbull
1-503-734-8571
To schedule a meeting with me: http://doodle.com/jamtur01

[David Schmitt]

On 28.02.2013 16:13, James Turnbull wrote:
> jim wrote:
>> I am aware of https://puppetlabs.com/blog/puppet-network-device-management/
>>
>> but this doesn't manager ACL's or object-groups yet, and my programming
>> skills aren't that great
>>
>> Or has anyone used cisco one platform kit (onepk) via puppet ????
>>
>
> Cisco is working on integration and we hope to have some news on this soon.

Hi James,


I've just started working with a client to expand the network-device
stuff to support more properties and more devices. Should I defer that
work? Any other hints?


Best Regards, David

[aussielunix]

G`Day All !

On Friday, 1 March 2013 02:13:27 UTC+11, James Turnbull wrote:

Cisco is working on integration and we hope to have some news on this soon.

What is the current state of Cisco device management with Puppet ?

I have found  https://github.com/uniak/puppet-networkdevice but not sure it fits in with anything Puppetlabs or Cisco are working on.

Cheers

Mick

@aussielunix

[John Warburton]

On 26 August 2013 15:12, aussielunix <li...@lunix.com.au> wrote:

On Friday, 1 March 2013 02:13:27 UTC+11, James Turnbull wrote:

Cisco is working on integration and we hope to have some news on this soon.

What is the current state of Cisco device management with Puppet ?

Cisco gave a presentation at PuppetConf 2013 and the slides are just up at http://www.slideshare.net/getyourbuildon/cisco-automation-with-puppet-and-onepk

IMHO it was disappointing Cisco is going with running a puppet agent on their systems as we have to wait for them to support new (and older) hardware as well as supported puppet providers on their schedule. From what I can gather, Juniper on the other hand focuses on managing the device API. Since OnePK also supports API management, I can see the community pushing ahead there rather than waiting on Cisco. We shall see

John