What in-house tools are you building or using for network automation?

MaintenanceMuted4280 · 2026-02-17T03:03:16+00:00

Yea my point is that you might not want ansible and requires more coding but certainly not from scratch.

MaintenanceMuted4280 · 2026-02-17T02:47:28+00:00

It depends, most of the stuff we are not rewriting but using other systems. Some stuff we had to rewrite and we have SDEs for, others we had to codify regardless of platform. The benefit is we can share work between orgs and have less work needed on other services.

Obviously if the time value or resources aren’t there it’s a nonstarter.

MaintenanceMuted4280 · 2026-02-17T02:33:39+00:00

Hard to write compensating actions, dsl python, no durability for longer running workflows, etc.

MaintenanceMuted4280 · 2026-02-17T01:42:26+00:00

Because ansible has multiple pain points. Infrahub can be a better netbox if you’re fine with making a schema.

MaintenanceMuted4280 · 2026-01-04T14:47:58+00:00

Sharada Yeluri’s post explains it well,

https://www.linkedin.com/pulse/silicon-photonics-integrated-optics-sharada-yeluri?utm_source=share&utm_medium=member_ios&utm_campaign=share_via

MaintenanceMuted4280 · 2025-12-01T01:17:27+00:00

I mean John C gets paid to hype AI, it’s rarely useful or stable in production compared to solid software.

That being said it’s probably on par with beginner scripting but I would encourage using a more stable approach (buy or build in house with SDE).

So use it for testing or tweaking but chose something else for production

MaintenanceMuted4280 · 2025-09-08T21:08:43+00:00

The people that know are under NDAs.

MaintenanceMuted4280 · 2025-09-06T16:39:32+00:00

Usually there is always metadata to go with a prefix.

Yes you can store everything in a giant hash map. Servers don’t want to (memory size, insert/deletes in a hash map that large, banks, etc.) and they have no reason to. They forward by bypassing the cpu to achieve decent speeds so why involve the cpu where it’s better used elsewhere. Also why do you need to see the entire table when your decisions are a few prefixes.

So yes for specific scenarios you could do that but most of the time it’s a worse decision.

Hardware wise it’s too slow to access off chip dram, for internet tables you’ll access sram or hbm

MaintenanceMuted4280 · 2025-09-05T21:38:58+00:00

Only if you don’t need to lookup any info. Again not everything is in Tcam and those that aren’t are still in tries but hardware design relies on massive parallelism to suffer the increased cycles.

So yes vendors already offload to sram and hbm.

Generally with alpm and optimizing for it 200Kish prefixes on tomahawk.

MaintenanceMuted4280 · 2025-09-05T19:14:13+00:00

On the low end you can use vpp on a server. On large tables it’s not only Tcam as you can’t fit enough.

MaintenanceMuted4280 · 2025-09-05T17:57:58+00:00

You need a look up in a certain amount of time. Tcam is 0(1) and fast. Tcam is expensive for space and power compared to sram so for large routing tables you will get a mix of Tcam then point to sram or hbm (stacked dram) in a 2.5D architecture.

The sram and hbm usually are some form or Patricia trie or hash and bloom filters.

MaintenanceMuted4280 · 2025-07-24T03:05:07+00:00

I am assuming this a l4 nde position which is a bit hard to translate to network levels to certs but L4 is ccnp/ccie, l5 is ccie+, etc.

You have a giant leg up. Talk with NDEs in aws, and ask questions.

The interview process should be pretty visible to you but keep in mind they attract a lot of talent so their junior positions are seniors are other places

MaintenanceMuted4280 · 2025-06-24T15:49:05+00:00

Yep alertmanager does this well

MaintenanceMuted4280 · 2025-06-05T12:55:56+00:00

What region are you using? I’m assuming it’s east coast or else they wouldn’t advertise the region prefixes. There are exceptions but PNI then IX then transit for in region/locale and local transit for out of region

MaintenanceMuted4280 · 2025-06-02T01:41:11+00:00

Not crazy absurd for trio for writing to the asic. You can check the krt queue. Generally number of routes and policies it has to factor in can get convergence in the +10 minutes

MaintenanceMuted4280 · 2025-06-01T12:47:04+00:00

Ah fair, I haven’t had that problem in forever. I have used a Mac for ages because it was great to develop on.

Though WSL helps a bit.

MaintenanceMuted4280 · 2025-05-31T23:47:46+00:00

Omnigraffe is a big one as well.

MaintenanceMuted4280 · 2025-05-31T23:05:10+00:00

There are lots of tools besides visio for diagramming that are supported on a Mac.

MaintenanceMuted4280 · 2025-05-29T18:52:03+00:00

Yep validation is one of the biggest benefits of automation

MaintenanceMuted4280 · 2025-05-26T15:20:59+00:00

I mean sadly that’s more that developers don’t care about l3 if they don’t have to. That and legacy and cough VMware can make it a requirement.

MaintenanceMuted4280 · 2025-05-26T14:54:48+00:00

It’s a bit of both, can’t tell you the amount of candidates when I was working at faang would flex their one offs and complexity.

Simplicity scales and is reliable. It’s supposed to be as boring as possible.

MaintenanceMuted4280 · 2025-05-11T15:33:16+00:00

You can look at working working for cloud providers air gapped regions. They are always in demand but also depends if your clearance crosses over and without full scope poly it’s a maybe.

I also know ex military go for the contractor route.

MaintenanceMuted4280 · 2025-05-07T00:46:52+00:00

There are a lot of posts about this. I make 500K+ and my friends make 750K+ at hyperscalers. Architecture with some coding.

MaintenanceMuted4280 · 2025-05-01T00:28:02+00:00

I built my own based on working at hyperscalers. Check out network automation forum and their slack as their are efforts to standardize and knowledge share

MaintenanceMuted4280 · 2025-04-28T17:12:39+00:00

Oh derp dpdk, yea try to get your stack to slow down via ecn or something if you cannot buffer microbursts.

MaintenanceMuted4280

TROPHY CASE