You are not competing with Hashicorp? If not, you're grand, can still use terraform as usual.I think I saw this some time ago but got scared off by all the drama surrounding terraform licensing and just haven’t looked into it anymore.
The license change was for third-party that offers cloud provisioning utility using terraform, and charging customers to provision resources with it, using proprietary means. It was a fiasco that should never have had happened but it is what it is and a shame too.
Did look at that when I first acquisitioned a MT device, am still wet behind the ears so-to-speak and still learning my way around it, and definitely watching this space.
Terraform and Ansible were some of the first things I looked into after getting a Mikrotik device. Coming from a software dev background I could never understand how net eng as an industry got by with click ops and shelling in to boxes and bailing out. It’s still kinda silly IMO and I have no idea how big networks stay stable or have sane operators.
Using IAC with terraform to provision switches et al looks to be a the right way to go, especially, if deploying mulitple same devices in different locations, with the variations in the configuration.
There may be reasons that the hot-mess is still around, usually, by the infrastructure team, to not use terraform et al for provisioning routers/switches, network engineers are not software developers so may struggle with the concepts of using nuances of terraform code blocks and source control. Maybe its lack of
I also feel like the Network engineering background folks that I talk to really think that NETCONF and GNMIC and YANG and that whole ecosystem is becoming the standard. Perhaps that’s not a conflict with terraform since they kinda operate at different levels—terraform is more operating on state, and the other Network automation standards are more protocol level—but in any case terraform never seems to get much attention around here.
There is the mikrotik devices controller thread, but I’m not sure if that’s the same thing, to me that seems more like a pro-sumer API client for the REST api that solves different problems. I wish an Infrastructure-as-code layer was a component of that upcoming system but we’ll have to see.
My only conclusion is that network automation across the industry is still an absolute hot mess, and the only folks that are really great at it are the hyper-scalers whose solutions just don’t look at anything like what someone who’s running a MikroTik network is going to want. Someone more experienced plz chime in :p
- getting approvals/agreements from powers that be, for running apply/runbooks on devices while keeping blast radius to minimum
- establishment of coding style guidelines with best practices in approach
- change control process
- last but most important - costs to train/educate etc
Statistics: Posted by t0mm13b — Mon Mar 18, 2024 6:47 pm