DMVPN: Simple Site-to-site VPN with multi-point GRE and IPSEC.

In the past with Fortinet, Checkpoint, Cisco ASA, etc I would build IPSEC Site-to-Site tunnels individually. Most of my clients were fewer than 50 locations, so though manageable it could become tiresome without a bit of scripting. With DMVPN a lot of that repetitive setup is streamlined. Here I will show a simple example of how to setup a DMVPN phase 3 distributed tunnel system for branch offices. I will design a simple network in EVE-NG, deploy a DMVPN with three branches (scales to ~1000), secure the tunnels with IPSEC IKEv2, and utilize iBGP route reflector for dynamic routing.

Kevin Hicks

Linux: Using cloud-init to deploy a bank of linux servers.

Sometimes I want to work on an automation model using a bank of quickly deployed linux virtual machines in my local lab. Here I have scripted in bash a fast method to download the latest cloud-image, inject a cloud-init, install some bare minimum packages, and boot. I am also injecting my ssh key, and a username/password for console login.

Kevin Hicks

Python: Use Netmiko to backup Cisco networking devices.

Design a network in EVE-NG, iterate through an inventory, pass credentials, and backup devices.

Kevin Hicks

Netmiko is a library used for connecting to networked devices over the SSH protocol. It is scriptable through Python, and is what I will demonstrate here. It can be used to send a command to a network device, and can deploy ACLs and generalized templates to an entire enterprise.