{"id":5033,"date":"2019-12-11T15:20:08","date_gmt":"2019-12-11T23:20:08","guid":{"rendered":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?p=5033"},"modified":"2023-06-27T08:26:46","modified_gmt":"2023-06-27T15:26:46","slug":"how-microsoft-is-modernizing-its-internal-network-using-automation","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/insidetrack\/blog\/how-microsoft-is-modernizing-its-internal-network-using-automation\/","title":{"rendered":"How Microsoft is modernizing its internal network using automation"},"content":{"rendered":"

\"MicrosoftAfter Microsoft moved its workload of 60,000 on-premises servers to Microsoft Azure, employees could set up systems and virtual machines (VMs) with a push of a few buttons.<\/p>\n

Although network hardware servers have changed over time, the way that network engineers work isn\u2019t nearly as modern.<\/p>\n

\u201cWith computers, we have modernized our processes to follow DevOps processes,\u201d says Bart Dworak, a software engineering manager on the Network Automation Delivery Team in Microsoft Digital. \u201cFor the most part, those processes did not exist with networking.\u201d<\/p>\n

Two years ago, Dworak says, network engineers still created and ran command-line-based scripts and created configuration change reports.<\/p>\n

\u201cWe would sign into network devices and submit changes using the command line,\u201d Dworak says. \u201cIn other, more modern systems, the cloud provides desired-state configurations. We should be able to do the same thing with networks.\u201d<\/p>\n

It became clear that Microsoft needed modern technology for configuring and managing the network, especially as the number of managed network devices increased on Microsoft\u2019s corporate network. This increase occurred because of higher network utilization by users, applications, and devices as well as more complex configurations.<\/p>\n

\u201cWhen I started at Microsoft in 2015, our network supported 13,000 managed devices,\u201d Dworak says. \u201cNow, we surpassed 17,000. We\u2019re adding more devices because our users want more bandwidth as they move to the cloud so they can do more things on the network.\u201d<\/p>\n

[Learn how Microsoft is using Azure ExpressRoute hybrid technology to secure the company<\/a>.]<\/em><\/p>\n

Dworak and the Network Automation Delivery Team saw an opportunity to fill a gap in the company\u2019s legacy network-management toolkit. They decided to apply the concept of infrastructure as code to the domain of networking.<\/p>\n

\u201cNetwork as code provides a means to automate network device configuration and transform our culture,\u201d says Steve Kern, a Microsoft Digital senior program manager and leader of the Network Automation Delivery Team.<\/p>\n

The members of the Network Automation Delivery Team knew that implementing the concept of network as code would take time, but they had a clear vision.<\/p>\n

\u201cIf you\u2019ve worked in a networking organization, change can seem like your enemy,\u201d Kern says. \u201cWe wanted to make sure changes were controlled and we had a routine, peer-reviewed rhythm of business that accounted for the changes that were pushed out to devices.\u201d<\/p>\n

The team has applied the concept of network as code to automate processes like changing the credentials on more than 17,000 devices at Microsoft, which now occurs in days rather than weeks. The team is also looking into regular telemetry data streaming, which would inform asset and configuration management.<\/p>\n

\u201cWe want network devices to stream data to us, rather than us collecting data from them,\u201d Dworak says. \u201cThat way, we can gain a better understanding of our network with a higher granularity than what is available today.\u201d<\/p>\n

The Network Automation Delivery Team has been working on the automation process since 2017. To do this, the team members built a Git repository and started with simple automation to gain momentum. Then, they identified other opportunities to apply the concept of GitOps\u2014a set of practices for deployment, management, and monitoring\u2014to deliver network services to Microsoft employees.<\/p>\n

Implementing network as code has led to an estimated savings of 15 years of labor and vendor spending on deployments and network devices changes. As network technology shifts, so does the role of network engineers.<\/p>\n

\u201cWe\u2019re freeing up network engineers so they can build better, faster, and more reliable networks,\u201d Kern says. \u201cOur aspiration is that network engineers will become network developers who write the code. Many of them are doing that already.\u201d<\/p>\n

Additionally, the team is automating how it troubleshoots and responds to outages. If the company\u2019s network event system detects that a wireless access point (AP) is down, it will automatically conduct diagnostics and attempt to address the AP network outage.<\/p>\n

\u201cThe building AP is restored to service in less time than it would take to wake up a network engineer in the middle of the night, sign in, and troubleshoot and remediate the problem,\u201d Kern says.<\/p>\n

Network as code also applies a DevOps mentality to network domain by applying software development and business operations practices to iterate quickly.<\/p>\n

\u201cWe wanted to bring DevOps principles from the industry and ensure that development and operations teams were one and the same,\u201d Kern says. \u201cIf you build something, you own it.\u201d<\/p>\n

In the future, the network team hopes to create interfaces for each piece of network gear and have application developers interact with the API during the build process. This would enable the team to run consistent deployments and configurations by restoring a network device entirely from a source-code repository.<\/p>\n

Dworak believes that network as code will enable transformation to occur across the company.<\/p>\n

\u201cDigital transformation is like remodeling a house. You can remodel your kitchen, living room, and other parts of your house, but first you have to have a solid foundation,\u201d he says. \u201cYour network is part of the foundation\u2014transforming networking will allow others to transform faster.\u201d<\/p>\n

\"Related<\/p>\n