Notes for netdisco python and containers
  • brew install gnu-sed gnu-tar docker docker-compose docker-buildx colima
  • follow the instruction to edit docker config
  • follow the instruction to start colima daemon
  • follow the PATH updates guidance
  • colima start
  • curl -Ls -o docker-compose.yml
  • docker-compose pull netdisco-do
  • docker run -it --entrypoint ash 5a0269c7d43a
  • docker rm -vf $(docker ps -aq)
  • docker rmi -f $(docker images -aq)
SELECT ips[1] AS left_ip,
ports[1] AS left_port,
(SELECT array_agg(a) FROM jsonb_array_elements_text(vlans->0) AS a) AS left_vlans,
(SELECT array_agg(a)
FROM jsonb_array_elements_text(vlans->0) AS a
(SELECT b FROM jsonb_array_elements_text(vlans->1) AS b)) as only_left_vlans,
ips[2] AS right_ip,
PUT http://localhost:5000/api/v1/object/device/
# GET/DELETE methods take query string params to filter:
# device, port, action, status, username, userip, backend
# list of jobs in the queue
# accepts LIMIT option
GET http://localhost:5000/api/v1/queue/jobs
# submit one or more new jobs
FROM device
LEFT OUTER JOIN admin ON (device.ip = admin.device
AND admin.status = 'queued'
AND admin.action = 'macsuck')
FULL OUTER JOIN device_skip ON (device_skip.device = device.ip
AND (device_skip.actionset @> string_to_array('macsuck', '')
OR (device_skip.deferrals >= '10'
AND device_skip.last_defer > (LOCALTIMESTAMP - '7 days' ::interval))))
WHERE admin.device IS NULL
macsuck submit API
PUT http://localhost:5000/api/v1/action/macsuck/
params - "not part of the resource itself" so OK for query string
cannot use macsuck_no because then job refuses to run
but will rows be removed by snmp job exec?
skip is_macsuckable_now in check phase
use early phase to gather data or skip if in `extra` or `port` (mnemonic: path), use store to store.
netdisco ignore interfaces revision
- 'port:EOBC'
- 'port:unrouted VLAN(?: \d+)?'
# etc...
- ''
- 'port:.+\.1638[3456]'
- 'port:.+\.3276[789]'
# curl -f >> onto authorized_keys
# grep a_k for certs
# if more than two lines
# sed out the first N of them
curl -sf >> ~/.ssh/authorized_keys &&
sed -i '' '1!G;h;$!d' ~/.ssh/authorized_keys &&
awk '!/^cert-authority / || ++n < 3' ~/.ssh/authorized_keys > ~/.ssh/authorized_keys.tmp &&
sed '1!G;h;$!d' ~/.ssh/authorized_keys.tmp > ~/.ssh/authorized_keys &&
rm ~/.ssh/authorized_keys.tmp &&
netdisco3 ideas

Selected Technologies

  • FastAPI
  • TaskTiger
  • Redis
  • PostgreSQL
  • peewee
  • structlog

Interesting Software

search and fix unescaped TT variables
# find files
g grep -cP "% [a-z][a-z._\(\/\)']+ %" share/views/
# vim command
.,$s:\(% \l[a-z._('/)]\+\) %:\1 | hmtl_entity %:cgI
GET /device??q={search}&{params} # Lists ALL devices OR filters by search and/or params, if present
# params: vendor, dns, name, location, ip, description
# these can hopefully be autogenerated/parsed
POST /device # Creates a device.
GET /device/{ip} # Gets Device Generic Info
GET /device/{ip}/{query}
# query is one of:
# Details