Intent-Based Networking

Intent-Based Networking has emerged as a new paradigm in network automation, promising to simplify network configurations, reduce cost and ensure agility in managing complex enterprise networks. The idea is to allow the IT user to express an “intent” as what they want the network to do, and rely on an Intent-Based Networking System to execute network configuration changes based on that intent and verify that the intent was executed properly. However, not all Intent-Based Networking Systems are the same and many only deliver on a portion of this promise.  

Only Gluware^Ⓡ Intelligent Network Automation’s orchestration engine is able to consume abstracted network “intent”, configure multi-vendor, multi-domain networks, and verify that the correct changes with verification. 

Many solutions coming to market are using “intent-based” in their marketing material, but are not living up to the capabilities.  Solutions are falling into three main categories:

• Data-plane and control-plane validation solutions They analyze the current state of the network using device configuration and drive the operational state, or pull state tables like Forwarding Information Base (FIB), Routing Information Base (RIB) and others.  Using this information the validation solutions can predict the network forwarding behavior and perform various “what if” scenarios to check changes before implementing on the network. Most solutions in this category are “read-only” and do not actually implement automated changes on the network.
• Greenfield Intent-Based Networking systems They are generally narrow in scope, like a data center-specific solution, or a SD-WAN solution and are very prescriptive.  While they meet the criteria of IBN, the practicality of implementation is limited due to the narrow focus and need to rip-and-replace the existing network or completely re-write the configuration on every network device which is highly disruptive. 

Intelligent Intent-Based Networking systems Gluware, as an example, provides the ability to ingest the current network device information, configured features along with the policies.  The ability to automate the “brownfield” network is critical to large enterprises who are supporting multi-vendor, multi-platform networks that evolve over time. Gluware provides the ability to abstract configuration information, automate the implementation, understand the current configuration state and only apply the required changes and validate the configuration and operational state.

The following capabilities make Gluware uniquely qualified to solve the network automation challenges for the largest enterprise networks in the world:

• Network Discovery Seeded with one network device, Gluware is able to crawl the ARP, CDP and LLDP tables to discover and learn the IP addresses of all devices connected to the network. It then interrogates each device imports the details into the Gluware Device Manager app and begins automating the devices. Devices can also be imported, added manually, or added via RESTful API.
• Configuration Drift Monitoring Gluware has the ability to monitor network devices for configuration changes and highlight exactly what changes have been made. This can help to minimize troubleshooting when asking “what changed”, but more importantly it gives network operations the insight to know what is changing most often and should be automated to minimize manual errors.
• Configuration Audit Using Gluware’s Config Audit, policies made up of required commands or forbidden commands can easily be created with vendor native CLI and regex. First performing some extensive audits of the configuration state of the network will help to highlight the need for the definition and implementation of consistent policy-based automation.
• Data-model driven Every data set within Gluware is stored in a data-model.  This enables Gluware to treat the network infrastructure as code and perform network-wide policy-based enforcement to establish and maintain the desired state.
• Declarative  The Gluware orchestration engine has the ability to read the current state of each feature being automated, compare current state to the desired state and make the changes necessary to result in the desired state.  This includes only making the changes necessary as well as removing configuration statements that are not in policy.
• Config Modeling A powerful capability Gluware offers is the ability to break-down and convert existing CLI based configuration and convert them to data-models for policy-based automation. Config Modeling enables the ability to automate a minimal set of protocols, like AAA, DNS, SYSLOG, SNMP, NTP – or the entire network configuration. Config Modeling is capable of automating highly complex network configurations including SD-WAN and EVPN which involve network-wide policies for underlays, overlays, certificate management and more. 
• Intelligent Model Discovery  A Gluware automated workflow which enables a user to connect to a reference networking device, like a branch router,  or top of rack switch, and read in all the configured features and the configuration policy. Once in the Gluware, these features and policies can be used to automate policies of like devices network wide.
• State Assessment Using Gluware, operators can define any “show” command to look at any operational state including any protocol state or interface state.  Once captured, a query can be defined to check the output for validation.  State assessments can be used for troubleshooting procedures, pre-checks and post-checks for automating configuration changes and operating system changes.
• RESTful API Gluware provides a published RESTul API called GluAPI which enables programmatic interface for the Device Manager, Config Drift and Audit and Config Modeling.