my cheat sheet on IOS-XE API

• enable DevOps workflows access to the full feature set of the device.
• changes are "modelled" and validated in a simulated environment prior to deployment to production.
• these tools can also mange compute and app resources.
• not closed loop feedback though, hence you need to validate changes extensively using simulation tools prior to deployment.
• validation testing and configuration pushes are orchestrated through continuous integration tool chains, CI/CD.

DIY tools usually directly controls each network element through some scrits. Good for a few devices, but does not scale. Direct integration works for monitoring dvides and ensuring changes did not create undesired states.

• RESTCONF (json)
• NETCONF (xml)

Initially only supported CLI commands over NETCONF, but now implemented a full YANG model, so now NETCONF on IOS-XE is robust and native XML objects can be sent and received.

IOS-XE supports two:

1. running
2. candidate

Also supports locking these two data stores, and config roll-back

RESTCONF just like any other REST API, except that RESTCONF demands you use specific headers, and that URL and data is driven by YANG models.

• application/vnd.yang.data+json for JSON
• application/vnd.yang.data+json for JSON
• application/vnd.yang.data+xml for XML
• application/vnd.yang.data+xml for XML

Constructing a URL for RESTCONF is the same as you would for REST APIs. You need to understand the:

• methods
• entry points
• resources
• queries

The Google developed gRPC Network Management Interface (gNMI) lets you

• install
• manipulate
• delete

configuration data on a device, as well as:

• view operational data

The content viewed using gNMI can be modeled using YANG, and uses JSON encoding for the data.

Has a python interpreter included in the IOS-XE Guest Shell. Scripts can perform:

• provisioning automation (PoAP, PnP, PXE python scripts)
• automating EEM
• application development
• IOT

• ssh / netconf is used to connect to the device
• will need to authenticated access to the device

Scripts can perform:

• Config mgt automation (anything you can do with "config t" can be automated using off-box python scripts with NETCONF)
• telemetry and operation data retrieval (new feature is model-driven telemetry, where data is streamed from the device continuously, in a push model. You get near-real-time access to operational statistics.
• controller based automation, via DNAC and Cisco Network PnP. (saves you the trouble of doing box by box automation, and lets the controller do the minutiae)
• IOT off-box automation handles IoT device connectivity mgt and deployment automation, and monitoring.

Running on the IOS-XE device is a built-in Linux container, LXC, with python2 installed. Extra python libraries can be added, such as requests, ncclient, xml.etree.ElementTree. Supports Day0 device onboarding. Is isolated from IOS-XE processes, so they are protected and safe, from a h/w processor and memory perspective. However the storage is shared between them both, i.e. flash: usbflash0: etc. Use the IOS-XE commands: show file systems and dir /all or just dir to see what file systems are on the router.