CN-WAN Reader

CN-WAN Reader watches a service registry for changes and sends events to an external handler for processing.

The CN-WAN Reader is part of the Cloud Native SD-WAN (CN-WAN) project. Please check the CN-WAN documentation for the general project overview and architecture. You can contact the CN-WAN team at cnwan@cisco.com.

Table of contents

• Overview
• Supported Service Registries
• Installation
  • Go Get
  • Clone the Project
  • Run as a Docker Container
• Usage
  • CN-WAN Adaptor
  • Metadata Key
  • Service Directory
  • Binary Example
  • Docker Usage
    • Mount Service Account
    • Docker Example
• OpenAPI Specification
• Contributing
• License

Overview

The CN-WAN Reader makes use of the service discovery pattern by connecting to a service registry and observing changes in published services/endpoints. Detected changes are then processed and sent as events to an adaptor, which can be created following the OpenAPI specification included in this repository.

Please follow this readme to know more about OpenAPI, Adaptors and Supported Service Registries.

Supported Service Registries

Currently, the CN-WAN Reader can discover services/endpoints published to Google Cloud's Service directory.

In order to connect correctly, a service account is needed. To learn more about Google Cloud Service Accounts, you can also consult this guide. Finally, you can read Service Directory's documentation to know more about how it works.

Installation

The following sections detail some of the methods available to install and run the project. After you chose the method you prefer the most, follow Usage to learn how to use the program flags regardless of the method you chose.

Go Get

This is the easiest and fastest way to get and run the program and is recommended for users that just want to use the program without building or modifying it. It requires Golang to be present on the machine.

Execute

Copygo get -u github.com/CloudNativeSDWAN/cnwan-reader

to download the project to your computer.

Optionally, but very recommended, you can add it to your $PATH, so that you won't have to specify its full/relative path every time. To do so, if you are a Unix/Linux/Mac user and supposing your golang folder is $HOME/go/ (the default one usually) run:

CopyPATH=$PATH:$HOME/go/bin

and for Windows user and supposing your golang folder is in %USERPROFILE%\go:

Copyset PATH=%PATH%;%USERPROFILE%\go\bin\

Or, still for Windows, you can follow this guide using your golang folder - usually %USERPROFILE%\go\bin\ if you never changed it.

Now you can run the program as

Copycnwan-reader [...]

without having to mention its full/relative path every time.
Follow Usage to learn how to use the program.

Clone the project

As the previous section, this requires Golang to be installed on the machine in order to run the program and is most suitable for users that want to modify it or contribute to it. Run

Copygit clone github.com/CloudNativeSDWAN/cnwan-reader
cd cnwan-reader

Now you need to build the program in order to use it. Although you may use go commands to do so, we recommend using the included Makefile as this will automate a lot of commands. To use the Makefile you need to have Make installed, which comes already pre-installed if are a Unix/Linux/Mac user. If you are a Windows user, you can download the binaries from this page.

Execute

Copymake build

Now you can run the program

Copy# From the root folder
./cnwan-reader [...]

# From a different folder
path/to/cnwan-reader [...]

Follow Usage to learn how to use the program.

Run as a Docker Container

If you wish, you can build and run the docker container out of the project. To do so, please first follow the Clone the Project section and make sure you have Docker installed:

• Unix/Linux users with Snap:

  bash

  Copysudo snap install docker
  

• MacOs users: Docker Desktop for Mac

• Windows users: Docker Desktop for Windows

Now navigate to the root folder of the project and run:

Copymake docker-build IMG=<repository/image-name:tag-name>

To avoid specifying the IMG parameter every time, you can modify the top of the Makefile to look like this:

Copy# Image URL to use all building/pushing image targets
IMG ?= <repository/image-name:tag-name>

Now you can build the image just as

Copymake docker-build

Now you can run the program as

Copydocker run <repository/image-name:tag-name> [...]

Follow the Docker Usage section to learn how to use it.

As a final note, if you also wish to push the container to a container registry, make sure you are correctly logged in to it. Most of the times, this guide should do it, but we encourage you to read your container registry's official documentation to learn how to do that. Your image name should respect the container registry format: i.e. if you are using DockerHub the name of your image should be something like your-username/image-name:tag-name. For other registries the full repository URL should be included, i.e. registry.com/your-username/image-name:tag-name.

Finally, to push it to a container registry, and supposing you have modified the Makefile as described above:

Copymake docker-push

Usage

The following sections describe how to use the program flags regardless of the installation method you chose.

Binary Example contains an example for users running the program as a binary, i.e. when installed through go get or cloned. The last section, Docker Usage is only for users running the program as a Docker container.

CN-WAN Adaptor

Adaptors are external handlers that will receive the events sent by the CN-WAN Reader and process them.

By default, CN-WAN Reader sends data to localhost:80/cnwan/events, so it expects adaptors to provide a server listening on localhost:80/cnwan. In case you have a different endpoint or already have a server listening on another host:port or just prefer to use another prefix path - or none at all, you can override this behavior with the -adaptor-api argument:

For example:

Copy--adaptor-api localhost:5588/my/path

Events will be now sent to localhost:5588/my/path/events.
As an example of no prefix path, --adaptor-api localhost:8080 will instruct the CN-WAN Reader to send events on localhost:8080/events instead of localhost:8080/cnwan/events. If a port is not provided, 80 will be used as default.

Please follow OpenAPI Specification to learn more about adaptors and Example for a complete usage example that includes a CN-WAN Adaptor endpoint as well.

Metadata Key

The CN-WAN Reader only reads services that have the provided metadata key.

For example, the following flag

Copy--metadata-key prefix/key

will make the program only look for services that contain prefix/key in their metadata key and ignore all the others.

Service Directory

To connect to Google Cloud Service Directory, you can use the servicedirectory command. A region, project and service account path must be provided as flags, like so:

Copyservicedirectory --project my-project --region us-central1 --service-account ...

# With a shorter alias
sd --project my-project --region us-central1 --service-account ...

Providing the service account JSON file is different depending on the way you run the project: if you are running the binary version you can simply read Binary Example for a full example usage. If you are running it as a Docker container, follow Mount Service Account to learn how to do that.

Binary Example

In the following example, the CN-WAN Reader watches changes in Google Cloud Service Directory with the following requirements:

• The allowed services have at least the key-name key in their metadata
• The project is called my-project
• The region is us-west2
• Service account is placed inside path/to/creds folder
• The name of the service account file is serv-acc.json
• The endpoint of the adaptor is http://example.com:5588/my/path
• Interval between two watches is 10 seconds

Copycnwan-reader sd \
--service-account path/to/creds/serv-acc.json \
--project my-project \
--region us-west2 \
--adaptor-api example.com:5588/my/path \
--metadata-key key-name \
--interval 10

Docker usage

All the previous sections apply for Docker as well.
As specified in Run as a Docker Container, the program is executed as

Copydocker run <repository/image-name:tag-name>

Please read along to learn usage specific to Docker.

Mount Service Account

Providing the service account is exactly the same as specified in Service Directory, but in order to use the --service-account flag you need to first mount the file in the container with -v before any other flag.

With -v you first specify where the file is stored in your computer. Then, after a :, you specify where you wish to mount that file in the container, which is going to be the argument that --service-account will take.

For example: supposing the path to the service account on your computer is ~/Desktop/cnwan-credentials/serv-acc.json and you want to mount it in the container as /credentials/serv-acc.json, the flag looks like this:

Copy-v ~/Desktop/cnwan-credentials/serv-acc.json:/credentials/serv-acc.json \

Now you can use all other flags as specified in Usage and, specifically, you can use --service-account as --service-account /credentials/serv-acc.json.

Read the next section for a full Docker example.

Docker Example

Copydocker run \
-v ~/Desktop/cnwan-credentials/serv-acc.json:/credentials/serv-acc.json \
my-image \
servicedirectory \
--project my-project \
--region us-west2 \
--adaptor-api example.com:5588 \
--metadata-key key-name \
--interval 10 \
--service-account ./credentials/serv-acc.json

OpenAPI Specification

The CN-WAN Reader acts as a client, sending detected changes in form of events to an external handler - an Adaptor - for processing. Therefore, any program interested in receiving and processing these events must generate the server code starting from the OpenAPI specification, or you can just implement the appropriate endpoint in your already existing server.

The specification, along with documentation on what you need to implement and what data is sent by the CN-WAN Reader, is included in this repository at this link.

To learn more about OpenAPI please take a look at this repository.
To generate your code, you can use the OpenAPI Generator.

Contributing

Thank you for interest in contributing to this project.
Before starting, please make sure you know and agree to our Code of conduct.

1. Fork it
2. Download your fork
   git clone https://github.com/your_username/cnwan-reader && cd cnwan-reader
3. Create your feature branch
   git checkout -b my-new-feature
4. Make changes and add them
   git add .
5. Commit your changes
   git commit -m 'Add some feature'
6. Push to the branch
   git push origin my-new-feature
7. Create new pull request to this repository

License

CN-WAN Reader is released under the Apache 2.0 license. See LICENSE