Nexivity was engaged to modernise the network infrastructure supporting one of Sydney’s major motorway and tunnel systems, with the goal of merging two legacy networks, refreshing hardware at scale, and delivering a highly available, unified design — all within tightly restricted overnight maintenance windows.
By applying a modern, automation-driven approach, Nexivity transformed an exceptionally complex environment into a predictable, repeatable, and easily managed system capable of operating reliably at scale.
Operational Technology 24/7 environment with zero tolerance for unplanned downtime
Strict safety and regulatory compliance for tunnel operations
Constant scope changes from multiple stakeholders (business, engineering, and regulatory)
Devices spread across remote roadside cabinets with limited onsite access
Large, complex configuration sets prone to human error (VLANs, ACLs, Routing policies, IP addressing, etc.)
Strict maintenance constraints: changes could only be executed during rare, pre-scheduled overnight tunnel shutdowns.
Nexivity delivered an intent based Infrastructure as Code (IaC) framework, a structured, model-driven approach to automate the entire configuration lifecycle. By focusing on intent rather than syntax, IaC enables rapid, consistent, and scalable deployments while reducing manual errors and accelerating delivery cycles.
We built a structured network model capturing every design detail such as BGP ASNs, VLAN catalogue, IP schema, interface connectivity, routing policies and others. This became the foundation for a consistent, error-free deployment across all sites.
We used logic-driven templates to convert the structured intent model into clean, vendor-compliant configurations. This approach ensured precise syntax, eliminated manual inconsistencies, and enabled fast, repeatable generation for a large fleet of devices within seconds. As new requirements emerged, the system could regenerate all configs instantly, making the network highly responsive to change while maintaining uniformity at scale.
Automated sanity checks, duplicate detection, compliance rules, and functional tests ensured the generated configs met design intent before deployment.
Configurations were delivered in structured, location-based batches with automated pre-checks and post-verification to ensure successful rollout.
Any anomaly would trigger an instant rollback to the last known good state minimising risk and ensuring a stable migration process even under tight time windows.
As project demands changed, teams could modify the network model and instantly regenerate compliant configurations.
Automated generation and validation reduced configuration build time by 95%, shifting work from multi-day cycles to minutes and minimising operational disruption.
All device configurations followed a single source of truth, ensuring uniform behavior, eliminating configuration drift, and simplifying future maintenance.
Every change was traceable from stakeholder intent through to device configuration. Live diffs, validation logs, and immutable history improved auditability and stakeholder assurance.
Automated validation and deployment checks eliminated manual errors and delivered 0 unplanned outages, ensuring smooth operation even under tight maintenance windows.
Automation reduced execution time so significantly that deployments required only 25% of the planned maintenance period, lowering operational pressure and increasing scheduling flexibility.
Speak with a Network Automation Engineer today and get expert guidance for your automation journey
