Learning Byte 001 — Junos Pyez Foundations

configconfig
10 min read

Table of contents

Scope

• Establish NETCONF/SSH connectivity to Junos using PyEZ and verify access.
• Use dev.facts as the primary data source: dump full facts, then produce a five-field summary (Hostname, Model, Serial, Version, Uptime).
• Scale the exact same logic from one device → a list of devices (sequential) → concurrent collection with a small thread pool.
• Introduce a concise PyEZ mental model (NETCONF over SSH, dev.facts dict vs. dev.rpc XML) without deep XML parsing.

Network Topology

  • Devices: vEX-01…vEX-04 in EVE-NG

  • Management: ge-0/0/8 on 10.30.0.0/24, gateway 10.30.0.1

  • Access: SSH enabled, NETCONF enabled with “set system services netconf ssh”

  • Controller: Python 3.9+, PyEZ installed with “pip install jnpr.junos”

What PyEZ

  • What it is: A Python SDK that talks NETCONF over SSH to Junos and returns structured data (no CLI scraping).

  • Two paths used: dev.facts (cached dict of common facts) and dev.rpc.* (direct RPCs that return XML).

  • RPC mapping: XML tags map to Python methods (hyphen → underscore), e.g., <get-system-uptime-information>dev.rpc.get_system_uptime_information(); confirm via | display xml rpc.

  • Session model: Create a Device, open/close NETCONF (or use with Device(...)); reads are idempotent and safe to repeat.

  • Why PyEZ: Consistent across platforms, structured-by-design, easy to serialize/log, and friendly to concurrency for I/O-bound work.

Quick Notes

  • “with Device(...):” is a context manager; it opens NETCONF and always closes it on exit.

  • Dictionaries are key/value; .get() lets me provide safe defaults when a key isn’t present.

  • Exceptions happen a lot with networks (timeouts, auth). Keep try/except simple.

  • Serialization: json.dumps(obj, indent=2) turns Python data into readable text for logs and files.

STANDARD SECTION: PART 1 — dev.facts json dump

Purpose: open NETCONF, read dev.facts, print it. This is the very first check.

CODE - lb001_dev_facts_dump.py

# lb001_dev_facts_dump.py
from jnpr.junos import Device
import json

HOST = "10.30.0.241"       # edit for lab
USERNAME = "admin"
PASSWORD = "yourpassword"

with Device(host=HOST, user=USERNAME, passwd=PASSWORD) as dev:
    facts = dict(dev.facts)  # FactCache -> plain dict
    print(json.dumps(facts, indent=2, default=str))

Output:

{
  "current_re": [
    "re0",
    "master",
    "node",
    "fwdd",
    "member",
    "pfem"
  ],
  "domain": null,
  "fqdn": "vEX-01",
  "switch_style": "VLAN_L2NG",
  "HOME": "/root",
  "srx_cluster": null,
  "srx_cluster_id": null,
  "srx_cluster_redundancy_group": null,
  "RE_hw_mi": false,
  "serialnumber": "VM68BB99A1F4",
  "2RE": false,
  "master": "RE0",
  "RE0": {
    "mastership_state": "master",
    "status": "OK",
    "model": "RE-VMX",
    "last_reboot_reason": "Router rebooted after a normal shutdown.",
    "up_time": "1 hour, 45 minutes, 17 seconds"
  },

NOTES

• Transport & parsing: NETCONF (XML) runs inside SSH; PyEZ receives XML, parses it, and gives me Python objects.
• First stop: dev.facts is a regular Python dict (not XML). I can print it as JSON for readability.
• Session lifecycle: with Device(host, user, passwd) as dev: opens NETCONF and always closes it on exit.
• Safe printing: json.dumps(obj, indent=2, default=str) (avoids type errors and keeps output readable).
• Keep errors simple at first; if something fails I want the exception to show while I lab.
• Reads are idempotent: facts/RPC “get” calls don’t change the box; safe to run repeatedly.

ABOUT XML/RPCS

Junos exposes data as RPCs that return XML. PyEZ calls several of these behind the scenes and builds dev.facts. If/when I need to see the source, I’ll call the specific RPC (e.g., uptime or chassis inventory) and pretty-print the XML

STANDARD SECTION: PART 2 — EXTRACT A MINIMAL SUBSET

Task

Produce a five-field summary from dev.facts: Hostname, Model, Serial, Version, Uptime.

Inputs

  • One reachable Junos device (NETCONF over SSH enabled).

  • IP/credentials.

Procedure

  1. Open a NETCONF session with Device(...).

  2. Read dev.facts and convert to a plain dict.

  3. Build a tiny summary with simple fallbacks (serialnumber|serial, RE0.up_time|uptime).

  4. Print results in a clean, predictable format.

CODE - lb001_facts_subset.py

# lb001_facts_subset.py
# Purpose: connect to one Junos device with PyEZ and print five useful facts.
# Usage:
#   1) pip install jnpr.junos
#   2) Edit HOST, USERNAME, PASSWORD
#   3) python lb001_facts_subset.py

from jnpr.junos import Device

# --- edit for your lab ---
HOST = "10.30.0.241"
USERNAME = "admin"
PASSWORD = "yourpassword"

try:
    # Open NETCONF; session auto-closes when the block ends
    with Device(host=HOST, user=USERNAME, passwd=PASSWORD) as dev:
        f = dict(dev.facts)  # make it a plain dict for easy access

        # Build a tiny summary using simple fallbacks where platforms differ
        hostname = f.get("hostname", "N/A")
        model    = f.get("model", "N/A")
        serial   = f.get("serialnumber") or f.get("serial", "N/A")
        version  = f.get("version", "N/A")
        uptime   = (f.get("RE0", {}) or {}).get("up_time") or f.get("uptime", "N/A")

        print(f"\nDevice: {HOST}")
        print(f"  Hostname : {hostname}")
        print(f"  Model    : {model}")
        print(f"  Serial   : {serial}")
        print(f"  Version  : {version}")
        print(f"  Uptime   : {uptime}")

except Exception as e:
    # Keep errors straightforward in the first lesson
    print(f"[error] {HOST}: {e}")

Expected Output (shape)

Device: 10.30.0.241
  Hostname : vEX-01
  Model    : EX9214
  Serial   : VM68BB99A1F4
  Version  : 24.4R1.9
  Uptime   : 1 hour, 45 minutes, 17 seconds

Notes (source within dev.facts)

  • hostname → device host name

  • model → platform family

  • serialnumber | serial → chassis serial

  • version → Junos version string

  • RE0.up_time | uptime → human-readable uptime

Verification Checklist

  • Can SSH to the device with same creds.

  • NETCONF is enabled: set system services netconf sshcommit.

  • No XML parsing here -dev.facts is already a Python dict.

Troubleshooting (quick)

  • Connection/timeout → check reachability and NETCONF.

  • Auth errors → confirm user class/SSH access.

  • Missing uptime on some platforms → the fallback to uptime covers it.

STANDARD SECTION: PART 3 — Read dev.facts from multiple devices

Task
• Gather the same five-field summary (Hostname, Model, Serial, Version, Uptime) from four devices using a simple Python list and a straight loop (no concurrency yet).

Inputs
• Devices reachable at 10.30.0.241–.244 with NETCONF over SSH enabled.
• One username/password with read access.

Procedure

  1. Define a Python list of device IPs.

  2. Loop over the list; for each IP, open a NETCONF session with Device(...).

  3. Read dev.facts, build the five-field summary with basic fallbacks, print.

  4. Catch exceptions per device so one failure doesn’t stop the loop.

CODE - lb001_facts_multi.py

# lb001_facts_multi.py
# Purpose: read dev.facts from multiple devices (sequential loop) and print a short summary for each.

from jnpr.junos import Device

HOSTS = ["10.30.0.241", "10.30.0.242", "10.30.0.243", "10.30.0.244"]
USERNAME = "admin"
PASSWORD = "yourpassword"

def summarize(facts: dict) -> dict:
    """Return the five-field summary with simple, portable fallbacks."""
    return {
        "Hostname": facts.get("hostname", "N/A"),
        "Model":    facts.get("model", "N/A"),
        "Serial":   facts.get("serialnumber") or facts.get("serial", "N/A"),
        "Version":  facts.get("version", "N/A"),
        "Uptime":   facts.get("RE0", {}).get("up_time") or facts.get("uptime", "N/A"),
    }

for ip in HOSTS:
    try:
        with Device(host=ip, user=USERNAME, passwd=PASSWORD) as dev:
            f = dict(dev.facts)
            s = summarize(f)
            print(f"\nDevice: {ip}")
            for k, v in s.items():
                print(f"  {k}: {v}")
    except Exception as e:
        # Keep going even if one device fails
        print(f"[error] {ip}: {e}")

Expected Output (shape)

Device: 10.30.0.241
  Hostname : vEX-01
  Model    : EX9214
  Serial   : VM68BB99A1F4
  Version  : 24.4R1.9
  Uptime   : 1 hour, 45 minutes, 17 seconds

Device: 10.30.0.242
  Hostname : vEX-02
  Model    : EX9214
  Serial   : VM...
  Version  : 24.4R1.9
  Uptime   : 1 hour, 42 minutes, 03 seconds
...

Code Breakdown/Notes (new concepts introduced)

• Python list (HOSTS)
– An ordered collection. Iteration preserves order, so output blocks appear in the same order as the list.
– Easy to swap in different sets (lab vs. prod) without changing logic.

for loop over HOSTS
– Executes the same steps for each device: open session → read facts → print summary.
– Control flow is sequential; each iteration finishes before the next begins.

• Context manager inside the loop (with Device(...) as dev)
– Opens a NETCONF session for that device and guarantees it closes at the end of the iteration, even on errors.
– Prevents session leaks when iterating over many devices.

• Per-device try/except
– Errors are isolated to the failing IP; the loop continues to the next device.
– This is critical in network automation—partial success is still useful.

• Small, pure helper (summarize)
– A “pure function”: input facts dict → output summary dict, no side effects.
– Makes the loop readable and testable; you can unit-test summarize with a mocked facts dict.

• Portability fallbacks in summarize
serialnumber | serial, RE0.up_time | uptime cover common platform differences without extra conditionals.

• Performance model (sequential, I/O-bound)
– Total runtime ≈ sum of individual device times (T_total ≈ t1 + t2 + t3 + t4).
– Good baseline for correctness; we’ll improve wall-clock time with concurrency next while keeping the same output format.

STANDARD SECTION: PART 4 — Concurrent facts (ThreadPoolExecutor + as_completed)

Task
• Gather the same five-field summary (Hostname, Model, Serial, Version, Uptime) from multiple devices concurrently using Python threads. Keep output format identical to Part 3 so results are comparable.

Inputs
• Devices reachable at 10.30.0.241–.244 with NETCONF over SSH enabled.
• One username/password with read access.

Procedure

  1. Reuse the exact summarize_facts helper from Part 3 (same five fields, same fallbacks).

  2. Write a worker that connects to one device and returns three things:
    (ip, summary_dict_or_None, error_message_or_None).

  3. Create a ThreadPoolExecutor with a small, sensible max_workers (e.g., min(8, len(HOSTS))).

  4. Submit one worker per IP; keep the returned Future objects in a list.

  5. Iterate as_completed(futures) and print each device’s summary as soon as its Future finishes (fastest-first).

  6. If a worker returns an error string, print a one-line [error] <ip>: <reason> and continue.

CODE - lb001_facts_concurrent.py

# lb001_facts_concurrent.py
# Purpose: read dev.facts from multiple devices concurrently (threads) and print a short summary for each.

from concurrent.futures import ThreadPoolExecutor, as_completed
from jnpr.junos import Device

HOSTS = ["10.30.0.241", "10.30.0.242", "10.30.0.243", "10.30.0.244"]
USERNAME = "admin"
PASSWORD = "yourpassword"

def summarize(facts: dict) -> dict:
    """Return the five-field summary with simple, portable fallbacks."""
    return {
        "Hostname": facts.get("hostname", "N/A"),
        "Model":    facts.get("model", "N/A"),
        "Serial":   facts.get("serialnumber") or facts.get("serial", "N/A"),
        "Version":  facts.get("version", "N/A"),
        "Uptime":   facts.get("RE0", {}).get("up_time") or facts.get("uptime", "N/A"),
    }

def fetch_summary(ip: str) -> tuple[str, dict | None, str | None]:
    """
    Worker: connect to 'ip', read dev.facts, return (ip, summary, error).
    Catch exceptions here so the main thread stays clean.
    """
    try:
        with Device(host=ip, user=USERNAME, passwd=PASSWORD) as dev:
            f = dict(dev.facts)
            return ip, summarize(f), None
    except Exception as e:
        return ip, None, str(e)

max_workers = min(8, len(HOSTS))  # sensible cap for small labs

with ThreadPoolExecutor(max_workers=max_workers) as pool:
    futures = [pool.submit(fetch_summary, ip) for ip in HOSTS]

    # Print each result as soon as it's ready (fastest-first)
    for fut in as_completed(futures):
        ip, summary, err = fut.result()
        if err:
            print(f"[error] {ip}: {err}")
            continue

        print(f"\nDevice: {ip}")
        for k, v in summary.items():
            print(f"  {k}: {v}")

Expected Output (shape)
• Same per-device block as Part 3.
• Device blocks may appear out of list order (they print as soon as each device finishes). Example:

Device: 10.30.0.243
  Hostname : vEX-03
  Model    : EX9214
  Serial   : VM...
  Version  : 24.4R1.9
  Uptime   : 1 hour, 52 minutes, 11 seconds

Device: 10.30.0.241
  Hostname : vEX-01
  Model    : EX9214
  Serial   : VM...
  Version  : 24.4R1.9
  Uptime   : 1 hour, 55 minutes, 03 seconds
...

Code breakdown & CS notes (new concepts introduced)

• I/O-bound concurrency with threads
– NETCONF calls spend most of their time waiting on network I/O. Threads overlap that waiting, reducing wall-clock time.
– Python’s GIL is not a blocker here because we’re not CPU-bound.

• Thread pool (executor)
ThreadPoolExecutor creates a small pool of worker threads and schedules tasks for you.
– Keep max_workers reasonable to avoid oversubscribing device control planes (lab default: up to 8).

• Futures and as_completed
– Submitting a worker returns a Future, which represents a result that will arrive later.
as_completed(futures) yields each Future when it finishes (fastest-first), so output starts immediately instead of waiting for the slowest device.

• Worker signature and isolation
– Worker returns a tuple (ip, summary, error) so the caller can handle success/failure uniformly.
– Exceptions are caught inside the worker; one failing device doesn’t stop the run.

• Resource management per device
– The worker uses with Device(...): so each NETCONF session opens and closes cleanly inside its own thread.

• Naming for readability
– Use descriptive names: gather_facts_for_device, summarize_facts, completed_future.

• Output schema remains identical to Part 3
– Same five fields, same formatting. This makes concurrency a drop-in speed improvement without changing downstream expectations.

0
Subscribe to my newsletter

Read articles from config directly inside your inbox. Subscribe to the newsletter, and don't miss out.

PyezPythonNetwork AutomationJuniper

Written by

config
config