2. Abstract
Ansible Tower by RedHat provides a visual dashboard (GUI) with role-based
access control and inventory management of the open source Ansible
orchestration and automation software. Tower provides an API which can be
used to launch job templates, while passing extra variables into the template in
the body of the REST POST.
The Phantom app for Ansible Tower is a force multiplier for Phantom, providing
a means to consume Ansible modules and playbooks without writing the
module functionality as an app in Phantom.
FOR YOUR REFERENCE
10. Router Configuration
after playbook has executed
[phantom@localhost ansible_tower]$ ssh admin@isr-2911-d.sandbox.wwtatc.local
Password:
UNAUTHORIZED ACCESS TO THIS NETWORK DEVICE IS PROHIBITED.
You must have explicit permission to access or configure this
device. All activities performed on this device are logged and
violations of this policy may result in disciplinary action.
WAN Edge (Outside) router
ISR-2911-D>en
Password:
ISR-2911-D#show run | inc RTBH
ip route 192.0.2.1 255.255.255.255 Null0 tag 66 name BGP_RTBH
ip route 198.200.139.176 255.255.255.255 Null0 tag 66 name BGP_RTBH
13. Key Take-aways
Launching job templates from Phantom provides access to existing
Ansible modules and playbooks.
Phantom F5 app used Python module written for Ansible.
Ideally, Remotely triggered black hole (RTBH) should be native
Phantom app
Challenge, BGP speaking routers encompass wide range of vendors
and operating systems.