Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1296
Views
0
Helpful
3
Replies

Connect a Netconf device to NSO behind a Cisco CLI router

Go to solution
PatrickPec78
Level 1
Level 1

‎03-20-2020 08:41 AM - edited ‎03-20-2020 08:45 AM

Hello guys,

I'm pretty new to NSO, and I want to know if it is possible to configure a netconf router with NSO but this router is behind a router which is directly connected to NSO. Or does NSO require a direct connection ?

 

Example :

              ---------            -----------

NSO --> |CLI router| ---> |Netconf router|

              ---------           -----------
192.168.1.10    192.168.1.1/24                     192.168.10.10/24

 

The Netconf router is an IR1101.

If it is possible, can you explain to me briefly how to do it, because I didn't find anything on google about this ?

Thanks by advance.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
rogaglia
Cisco Employee
Cisco Employee

‎03-23-2020 12:58 AM

Hi,

 

I believe that what you want is to use the router in the middle as a "SSH proxy" to access the final destination. The idea of proxy is available for CLI NEDs but I do not believe for generic NETCONF devices (although it could be a good features to request).

 

One alternative is to use SSH tunnels and setup your NETCONF session via this tunnel. One example of SSH guide: https://www.ssh.com/ssh/tunneling/example

 

Roque

View solution in original post

0 Helpful
3 Replies 3

Go to solution
rogaglia
Cisco Employee
Cisco Employee

‎03-23-2020 12:58 AM

Hi,

 

I believe that what you want is to use the router in the middle as a "SSH proxy" to access the final destination. The idea of proxy is available for CLI NEDs but I do not believe for generic NETCONF devices (although it could be a good features to request).

 

One alternative is to use SSH tunnels and setup your NETCONF session via this tunnel. One example of SSH guide: https://www.ssh.com/ssh/tunneling/example

 

Roque

0 Helpful

Go to solution
PatrickPec78
Level 1
Level 1
In response to rogaglia

‎03-23-2020 02:54 AM

Hi Roque,

 

Thank you for your answer, I will try this !
A final question : is it possible to configure both devices at the same time (the CLI router and the Netconf router) following the architecture I gave ?

 

0 Helpful

Go to solution
rogaglia
Cisco Employee
Cisco Employee
In response to PatrickPec78

‎03-23-2020 07:07 AM

Hi,

Yes, it is possible but using two device names (same IP different NED-IDs).

admin@ncs# show devices list
NAME ADDRESS DESCRIPTION NED ID ADMIN STATE
---------------------------------------------------------------------------
xr-cli 10.58.244.21 - cisco-iosxr-cli-7.19 unlocked
xr-netconf 10.58.244.21 - cisco-ncs55a1-01-nc-1.0 unlocked
admin@ncs#

This also means that your devices will generally be out-of-sync, but you should know how to manage that (partial-sync-from, no-overwrite or everything in the toolbox).
0 Helpful
Polls
AI-powered tools for network troubleshooting are likely to be part of everyone’s workflow sooner or later. What is the single biggest challenge or concern you see with adopting these tools in your organization?
Show Choices
Hide Choices
Customers Also Viewed These Support Documents