diff --git a/Makefile b/Makefile index c739c14d..e7be6a6c 100644 --- a/Makefile +++ b/Makefile @@ -2,8 +2,8 @@ CONTAINER ?= avdteam/base:3.8-edge VSCODE_CONTAINER ?= avdteam/vscode:latest VSCODE_PORT ?= 8080 HOME_DIR = $(shell pwd) -AVD_COLLECTION_VERSION ?= 3.1.0 -CVP_COLLECTION_VERSION ?= 3.2.0 +AVD_COLLECTION_VERSION ?= 3.5.0 +CVP_COLLECTION_VERSION ?= 3.3.1 help: ## Display help message @grep -E '^[0-9a-zA-Z_-]+\.*[0-9a-zA-Z_-]+:.*?## .*$$' $(MAKEFILE_LIST) | sort | awk 'BEGIN {FS = ":.*?## "}; {printf "\033[36m%-30s\033[0m %s\n", $$1, $$2}' diff --git a/inventory/documentation/devices/DC1-L2LEAF1A.md b/inventory/documentation/devices/DC1-L2LEAF1A.md index 2b2e1c75..77ac17f7 100644 --- a/inventory/documentation/devices/DC1-L2LEAF1A.md +++ b/inventory/documentation/devices/DC1-L2LEAF1A.md @@ -1,6 +1,5 @@ # DC1-L2LEAF1A # Table of Contents - - [Management](#management) - [Management Interfaces](#management-interfaces) @@ -37,7 +36,6 @@ - [VRF Instances Device Configuration](#vrf-instances-device-configuration) - [Quality Of Service](#quality-of-service) - # Management ## Management Interfaces @@ -113,9 +111,9 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ### Management API HTTP Summary -| HTTP | HTTPS | -| ---------- | ---------- | -| default | true | +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | - | ### Management API VRF Access @@ -123,7 +121,6 @@ ntp server vrf MGMT 1.fr.pool.ntp.org | -------- | -------- | -------- | | MGMT | - | - | - ### Management API HTTP Configuration ```eos @@ -165,14 +162,14 @@ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAW | CV Compression | CloudVision Servers | VRF | Authentication | Smash Excludes | Ingest Exclude | Bypass AAA | | -------------- | ------------------- | --- | -------------- | -------------- | -------------- | ---------- | -| gzip | 10.255.0.1:9910 | MGMT | - | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | +| gzip | 10.255.0.1:9910 | MGMT | key, | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | ### TerminAttr Daemon Device Configuration ```eos ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ``` @@ -188,9 +185,6 @@ STP mode: **mstp** | -------- | -------- | | 0 | 16384 | -### Global Spanning-Tree Settings - - ## Spanning Tree Device Configuration ```eos @@ -287,9 +281,9 @@ interface Ethernet2 interface Ethernet5 description server01_Eth0 no shutdown - switchport switchport access vlan 110 switchport mode access + switchport ``` ## Port-Channel Interfaces @@ -330,7 +324,8 @@ service routing protocols model multi-agent | VRF | Routing Enabled | | --- | --------------- | -| default | true|| MGMT | false | +| default | true | +| MGMT | false | ### IP Routing Device Configuration @@ -345,8 +340,8 @@ no ip routing vrf MGMT | VRF | Routing Enabled | | --- | --------------- | -| default | false || MGMT | false | - +| default | false | +| MGMT | false | ## Static Routes @@ -354,7 +349,7 @@ no ip routing vrf MGMT | VRF | Destination Prefix | Next Hop IP | Exit interface | Administrative Distance | Tag | Route Name | Metric | | --- | ------------------ | ----------------------- | ------------------- | ----------------------------- | ----------------- | ----------------------------- | -------------- | -| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | +| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | ### Static Routes Device Configuration @@ -369,8 +364,9 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 ### IP IGMP Snooping Summary -IGMP snooping is globally enabled. - +| IGMP Snooping | Fast Leave | Interface Restart Query | Proxy | Restart Query Interval | Robustness Variable | +| ------------- | ---------- | ----------------------- | ----- | ---------------------- | ------------------- | +| Enabled | - | - | - | - | - | ### IP IGMP Snooping Device Configuration diff --git a/inventory/documentation/devices/DC1-L2LEAF2A.md b/inventory/documentation/devices/DC1-L2LEAF2A.md index 7b451764..5e90ee40 100644 --- a/inventory/documentation/devices/DC1-L2LEAF2A.md +++ b/inventory/documentation/devices/DC1-L2LEAF2A.md @@ -1,6 +1,5 @@ # DC1-L2LEAF2A # Table of Contents - - [Management](#management) - [Management Interfaces](#management-interfaces) @@ -37,7 +36,6 @@ - [VRF Instances Device Configuration](#vrf-instances-device-configuration) - [Quality Of Service](#quality-of-service) - # Management ## Management Interfaces @@ -113,9 +111,9 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ### Management API HTTP Summary -| HTTP | HTTPS | -| ---------- | ---------- | -| default | true | +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | - | ### Management API VRF Access @@ -123,7 +121,6 @@ ntp server vrf MGMT 1.fr.pool.ntp.org | -------- | -------- | -------- | | MGMT | - | - | - ### Management API HTTP Configuration ```eos @@ -165,14 +162,14 @@ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAW | CV Compression | CloudVision Servers | VRF | Authentication | Smash Excludes | Ingest Exclude | Bypass AAA | | -------------- | ------------------- | --- | -------------- | -------------- | -------------- | ---------- | -| gzip | 10.255.0.1:9910 | MGMT | - | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | +| gzip | 10.255.0.1:9910 | MGMT | key, | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | ### TerminAttr Daemon Device Configuration ```eos ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ``` @@ -188,9 +185,6 @@ STP mode: **mstp** | -------- | -------- | | 0 | 16384 | -### Global Spanning-Tree Settings - - ## Spanning Tree Device Configuration ```eos @@ -287,9 +281,9 @@ interface Ethernet2 interface Ethernet5 description server02_Eth0 no shutdown - switchport switchport access vlan 110 switchport mode access + switchport ``` ## Port-Channel Interfaces @@ -330,7 +324,8 @@ service routing protocols model multi-agent | VRF | Routing Enabled | | --- | --------------- | -| default | true|| MGMT | false | +| default | true | +| MGMT | false | ### IP Routing Device Configuration @@ -345,8 +340,8 @@ no ip routing vrf MGMT | VRF | Routing Enabled | | --- | --------------- | -| default | false || MGMT | false | - +| default | false | +| MGMT | false | ## Static Routes @@ -354,7 +349,7 @@ no ip routing vrf MGMT | VRF | Destination Prefix | Next Hop IP | Exit interface | Administrative Distance | Tag | Route Name | Metric | | --- | ------------------ | ----------------------- | ------------------- | ----------------------------- | ----------------- | ----------------------------- | -------------- | -| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | +| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | ### Static Routes Device Configuration @@ -369,8 +364,9 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 ### IP IGMP Snooping Summary -IGMP snooping is globally enabled. - +| IGMP Snooping | Fast Leave | Interface Restart Query | Proxy | Restart Query Interval | Robustness Variable | +| ------------- | ---------- | ----------------------- | ----- | ---------------------- | ------------------- | +| Enabled | - | - | - | - | - | ### IP IGMP Snooping Device Configuration diff --git a/inventory/documentation/devices/DC1-LEAF1A.md b/inventory/documentation/devices/DC1-LEAF1A.md index 31882b21..8baf711c 100644 --- a/inventory/documentation/devices/DC1-LEAF1A.md +++ b/inventory/documentation/devices/DC1-LEAF1A.md @@ -1,6 +1,5 @@ # DC1-LEAF1A # Table of Contents - - [Management](#management) - [Management Interfaces](#management-interfaces) @@ -52,7 +51,6 @@ - [Virtual Source NAT Configuration](#virtual-source-nat-configuration) - [Quality Of Service](#quality-of-service) - # Management ## Management Interfaces @@ -128,9 +126,9 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ### Management API HTTP Summary -| HTTP | HTTPS | -| ---------- | ---------- | -| default | true | +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | - | ### Management API VRF Access @@ -138,7 +136,6 @@ ntp server vrf MGMT 1.fr.pool.ntp.org | -------- | -------- | -------- | | MGMT | - | - | - ### Management API HTTP Configuration ```eos @@ -180,14 +177,14 @@ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAW | CV Compression | CloudVision Servers | VRF | Authentication | Smash Excludes | Ingest Exclude | Bypass AAA | | -------------- | ------------------- | --- | -------------- | -------------- | -------------- | ---------- | -| gzip | 10.255.0.1:9910 | MGMT | - | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | +| gzip | 10.255.0.1:9910 | MGMT | key, | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | ### TerminAttr Daemon Device Configuration ```eos ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ``` @@ -228,7 +225,7 @@ STP mode: **mstp** ### Global Spanning-Tree Settings -Spanning Tree disabled for VLANs: **4093-4094** +- Spanning Tree disabled for VLANs: **4093-4094** ## Spanning Tree Device Configuration @@ -531,33 +528,33 @@ interface Loopback100 | Interface | Description | VRF | MTU | Shutdown | | --------- | ----------- | --- | ---- | -------- | -| Vlan110 | Tenant_A_OP_Zone_1 | Tenant_A_OP_Zone | - | false | -| Vlan111 | Tenant_A_OP_Zone_2 | Tenant_A_OP_Zone | - | false | -| Vlan112 | Tenant_A_OP_Zone_3 | Tenant_A_OP_Zone | - | false | -| Vlan120 | Tenant_A_WEB_Zone_1 | Tenant_A_WEB_Zone | - | false | -| Vlan121 | Tenant_A_WEBZone_2 | Tenant_A_WEB_Zone | - | false | -| Vlan130 | Tenant_A_APP_Zone_1 | Tenant_A_APP_Zone | - | false | -| Vlan131 | Tenant_A_APP_Zone_2 | Tenant_A_APP_Zone | - | false | -| Vlan140 | Tenant_A_DB_BZone_1 | Tenant_A_DB_Zone | - | false | -| Vlan141 | Tenant_A_DB_Zone_2 | Tenant_A_DB_Zone | - | false | -| Vlan150 | Tenant_A_WAN_Zone_1 | Tenant_A_WAN_Zone | - | false | -| Vlan210 | Tenant_B_OP_Zone_1 | Tenant_B_OP_Zone | - | false | -| Vlan211 | Tenant_B_OP_Zone_2 | Tenant_B_OP_Zone | - | false | -| Vlan250 | Tenant_B_WAN_Zone_1 | Tenant_B_WAN_Zone | - | false | -| Vlan310 | Tenant_C_OP_Zone_1 | Tenant_C_OP_Zone | - | false | -| Vlan311 | Tenant_C_OP_Zone_2 | Tenant_C_OP_Zone | - | false | -| Vlan350 | Tenant_C_WAN_Zone_1 | Tenant_C_WAN_Zone | - | false | -| Vlan3009 | MLAG_PEER_L3_iBGP: vrf Tenant_A_OP_Zone | Tenant_A_OP_Zone | 1500 | false | -| Vlan3010 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WEB_Zone | Tenant_A_WEB_Zone | 1500 | false | -| Vlan3011 | MLAG_PEER_L3_iBGP: vrf Tenant_A_APP_Zone | Tenant_A_APP_Zone | 1500 | false | -| Vlan3012 | MLAG_PEER_L3_iBGP: vrf Tenant_A_DB_Zone | Tenant_A_DB_Zone | 1500 | false | -| Vlan3013 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WAN_Zone | Tenant_A_WAN_Zone | 1500 | false | -| Vlan3019 | MLAG_PEER_L3_iBGP: vrf Tenant_B_OP_Zone | Tenant_B_OP_Zone | 1500 | false | -| Vlan3020 | MLAG_PEER_L3_iBGP: vrf Tenant_B_WAN_Zone | Tenant_B_WAN_Zone | 1500 | false | -| Vlan3029 | MLAG_PEER_L3_iBGP: vrf Tenant_C_OP_Zone | Tenant_C_OP_Zone | 1500 | false | -| Vlan3030 | MLAG_PEER_L3_iBGP: vrf Tenant_C_WAN_Zone | Tenant_C_WAN_Zone | 1500 | false | -| Vlan4093 | MLAG_PEER_L3_PEERING | default | 1500 | false | -| Vlan4094 | MLAG_PEER | default | 1500 | false | +| Vlan110 | Tenant_A_OP_Zone_1 | Tenant_A_OP_Zone | - | false | +| Vlan111 | Tenant_A_OP_Zone_2 | Tenant_A_OP_Zone | - | false | +| Vlan112 | Tenant_A_OP_Zone_3 | Tenant_A_OP_Zone | - | false | +| Vlan120 | Tenant_A_WEB_Zone_1 | Tenant_A_WEB_Zone | - | false | +| Vlan121 | Tenant_A_WEBZone_2 | Tenant_A_WEB_Zone | - | false | +| Vlan130 | Tenant_A_APP_Zone_1 | Tenant_A_APP_Zone | - | false | +| Vlan131 | Tenant_A_APP_Zone_2 | Tenant_A_APP_Zone | - | false | +| Vlan140 | Tenant_A_DB_BZone_1 | Tenant_A_DB_Zone | - | false | +| Vlan141 | Tenant_A_DB_Zone_2 | Tenant_A_DB_Zone | - | false | +| Vlan150 | Tenant_A_WAN_Zone_1 | Tenant_A_WAN_Zone | - | false | +| Vlan210 | Tenant_B_OP_Zone_1 | Tenant_B_OP_Zone | - | false | +| Vlan211 | Tenant_B_OP_Zone_2 | Tenant_B_OP_Zone | - | false | +| Vlan250 | Tenant_B_WAN_Zone_1 | Tenant_B_WAN_Zone | - | false | +| Vlan310 | Tenant_C_OP_Zone_1 | Tenant_C_OP_Zone | - | false | +| Vlan311 | Tenant_C_OP_Zone_2 | Tenant_C_OP_Zone | - | false | +| Vlan350 | Tenant_C_WAN_Zone_1 | Tenant_C_WAN_Zone | - | false | +| Vlan3009 | MLAG_PEER_L3_iBGP: vrf Tenant_A_OP_Zone | Tenant_A_OP_Zone | 1500 | false | +| Vlan3010 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WEB_Zone | Tenant_A_WEB_Zone | 1500 | false | +| Vlan3011 | MLAG_PEER_L3_iBGP: vrf Tenant_A_APP_Zone | Tenant_A_APP_Zone | 1500 | false | +| Vlan3012 | MLAG_PEER_L3_iBGP: vrf Tenant_A_DB_Zone | Tenant_A_DB_Zone | 1500 | false | +| Vlan3013 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WAN_Zone | Tenant_A_WAN_Zone | 1500 | false | +| Vlan3019 | MLAG_PEER_L3_iBGP: vrf Tenant_B_OP_Zone | Tenant_B_OP_Zone | 1500 | false | +| Vlan3020 | MLAG_PEER_L3_iBGP: vrf Tenant_B_WAN_Zone | Tenant_B_WAN_Zone | 1500 | false | +| Vlan3029 | MLAG_PEER_L3_iBGP: vrf Tenant_C_OP_Zone | Tenant_C_OP_Zone | 1500 | false | +| Vlan3030 | MLAG_PEER_L3_iBGP: vrf Tenant_C_WAN_Zone | Tenant_C_WAN_Zone | 1500 | false | +| Vlan4093 | MLAG_PEER_L3_PEERING | default | 1500 | false | +| Vlan4094 | MLAG_PEER | default | 1500 | false | #### IPv4 @@ -591,7 +588,6 @@ interface Loopback100 | Vlan4093 | default | 10.255.251.0/31 | - | - | - | - | - | | Vlan4094 | default | 10.255.252.0/31 | - | - | - | - | - | - ### VLAN Interfaces Device Configuration ```eos @@ -767,48 +763,48 @@ interface Vlan4094 ### VXLAN Interface Summary -#### Source Interface: Loopback1 - -#### UDP port: 4789 - -#### EVPN MLAG Shared Router MAC : mlag-system-id - -#### VLAN to VNI and Flood List Mappings - -| VLAN | VNI | Flood List | -| ---- | --- | ---------- | -| 110 | 10110 | - | -| 111 | 50111 | - | -| 112 | 50112 | - | -| 120 | 10120 | - | -| 121 | 10121 | - | -| 130 | 10130 | - | -| 131 | 10131 | - | -| 140 | 10140 | - | -| 141 | 10141 | - | -| 150 | 10150 | - | -| 160 | 55160 | - | -| 161 | 10161 | - | -| 210 | 20210 | - | -| 211 | 20211 | - | -| 250 | 20250 | - | -| 310 | 30310 | - | -| 311 | 30311 | - | -| 350 | 30350 | - | - -#### VRF to VNI Mappings - -| VLAN | VNI | -| ---- | --- | -| Tenant_A_APP_Zone | 12 | -| Tenant_A_DB_Zone | 13 | -| Tenant_A_OP_Zone | 10 | -| Tenant_A_WAN_Zone | 14 | -| Tenant_A_WEB_Zone | 11 | -| Tenant_B_OP_Zone | 20 | -| Tenant_B_WAN_Zone | 21 | -| Tenant_C_OP_Zone | 30 | -| Tenant_C_WAN_Zone | 31 | +| Setting | Value | +| ------- | ----- | +| Source Interface | Loopback1 | +| UDP port | 4789 | +| EVPN MLAG Shared Router MAC | mlag-system-id | + +#### VLAN to VNI, Flood List and Multicast Group Mappings + +| VLAN | VNI | Flood List | Multicast Group | +| ---- | --- | ---------- | --------------- | +| 110 | 10110 | - | - | +| 111 | 50111 | - | - | +| 112 | 50112 | - | - | +| 120 | 10120 | - | - | +| 121 | 10121 | - | - | +| 130 | 10130 | - | - | +| 131 | 10131 | - | - | +| 140 | 10140 | - | - | +| 141 | 10141 | - | - | +| 150 | 10150 | - | - | +| 160 | 55160 | - | - | +| 161 | 10161 | - | - | +| 210 | 20210 | - | - | +| 211 | 20211 | - | - | +| 250 | 20250 | - | - | +| 310 | 30310 | - | - | +| 311 | 30311 | - | - | +| 350 | 30350 | - | - | + +#### VRF to VNI and Multicast Group Mappings + +| VRF | VNI | Multicast Group | +| ---- | --- | --------------- | +| Tenant_A_APP_Zone | 12 | - | +| Tenant_A_DB_Zone | 13 | - | +| Tenant_A_OP_Zone | 10 | - | +| Tenant_A_WAN_Zone | 14 | - | +| Tenant_A_WEB_Zone | 11 | - | +| Tenant_B_OP_Zone | 20 | - | +| Tenant_B_WAN_Zone | 21 | - | +| Tenant_C_OP_Zone | 30 | - | +| Tenant_C_WAN_Zone | 31 | - | ### VXLAN Interface Device Configuration @@ -877,7 +873,8 @@ ip virtual-router mac-address 00:1c:73:00:dc:01 | VRF | Routing Enabled | | --- | --------------- | -| default | true|| MGMT | false | +| default | true | +| MGMT | false | | Tenant_A_APP_Zone | true | | Tenant_A_DB_Zone | true | | Tenant_A_OP_Zone | true | @@ -910,7 +907,8 @@ ip routing vrf Tenant_C_WAN_Zone | VRF | Routing Enabled | | --- | --------------- | -| default | false || MGMT | false | +| default | false | +| MGMT | false | | Tenant_A_APP_Zone | false | | Tenant_A_DB_Zone | false | | Tenant_A_OP_Zone | false | @@ -921,14 +919,13 @@ ip routing vrf Tenant_C_WAN_Zone | Tenant_C_OP_Zone | false | | Tenant_C_WAN_Zone | false | - ## Static Routes ### Static Routes Summary | VRF | Destination Prefix | Next Hop IP | Exit interface | Administrative Distance | Tag | Route Name | Metric | | --- | ------------------ | ----------------------- | ------------------- | ----------------------------- | ----------------- | ----------------------------- | -------------- | -| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | +| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | ### Static Routes Device Configuration @@ -961,7 +958,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | -------- | ----- | | Address Family | evpn | | Source | Loopback0 | -| Bfd | true | +| BFD | True | | Ebgp multihop | 3 | | Send community | all | | Maximum routes | 0 (no limit) | @@ -986,28 +983,32 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 ### BGP Neighbors -| Neighbor | Remote AS | VRF | -| -------- | --------- | --- | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | default | -| 172.31.255.0 | 65001 | default | -| 172.31.255.2 | 65001 | default | -| 192.168.255.1 | 65001 | default | -| 192.168.255.2 | 65001 | default | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_APP_Zone | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_DB_Zone | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_OP_Zone | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WAN_Zone | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WEB_Zone | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_OP_Zone | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_WAN_Zone | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_OP_Zone | -| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_WAN_Zone | +| Neighbor | Remote AS | VRF | Shutdown | Send-community | Maximum-routes | Allowas-in | BFD | RIB Pre-Policy Retain | +| -------- | --------- | --- | -------- | -------------- | -------------- | ---------- | --- | --------------------- | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | default | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 172.31.255.0 | 65001 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.2 | 65001 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 192.168.255.1 | 65001 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.2 | 65001 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_APP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_DB_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WEB_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.1 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | ### Router BGP EVPN Address Family -#### Router BGP EVPN MAC-VRFs +#### EVPN Peer Groups + +| Peer Group | Activate | +| ---------- | -------- | +| EVPN-OVERLAY-PEERS | True | -##### VLAN aware bundles +### Router BGP VLAN Aware Bundles | VLAN Aware Bundle | Route-Distinguisher | Both Route-Target | Import Route Target | Export Route-Target | Redistribute | VLANs | | ----------------- | ------------------- | ----------------- | ------------------- | ------------------- | ------------ | ----- | @@ -1023,7 +1024,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | Tenant_C_OP_Zone | 192.168.255.3:30 | 30:30 | - | - | learned | 310-311 | | Tenant_C_WAN_Zone | 192.168.255.3:31 | 31:31 | - | - | learned | 350 | -#### Router BGP EVPN VRFs +### Router BGP VRFs | VRF | Route-Distinguisher | Redistribute | | --- | ------------------- | ------------ | @@ -1062,6 +1063,7 @@ router bgp 65101 neighbor MLAG-IPv4-UNDERLAY-PEER peer group neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65101 neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self + neighbor MLAG-IPv4-UNDERLAY-PEER description DC1-LEAF1B neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ== neighbor MLAG-IPv4-UNDERLAY-PEER send-community neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000 @@ -1239,7 +1241,7 @@ router bgp 65101 | -------- | ---------- | ---------- | | 1200 | 1200 | 3 | -### Router BFD Multihop Device Configuration +### Router BFD Device Configuration ```eos ! @@ -1253,8 +1255,9 @@ router bfd ### IP IGMP Snooping Summary -IGMP snooping is globally enabled. - +| IGMP Snooping | Fast Leave | Interface Restart Query | Proxy | Restart Query Interval | Robustness Variable | +| ------------- | ---------- | ----------------------- | ----- | ---------------------- | ------------------- | +| Enabled | - | - | - | - | - | ### IP IGMP Snooping Device Configuration diff --git a/inventory/documentation/devices/DC1-LEAF1B.md b/inventory/documentation/devices/DC1-LEAF1B.md index 6289317d..495185a5 100644 --- a/inventory/documentation/devices/DC1-LEAF1B.md +++ b/inventory/documentation/devices/DC1-LEAF1B.md @@ -1,6 +1,5 @@ # DC1-LEAF1B # Table of Contents - - [Management](#management) - [Management Interfaces](#management-interfaces) @@ -52,7 +51,6 @@ - [Virtual Source NAT Configuration](#virtual-source-nat-configuration) - [Quality Of Service](#quality-of-service) - # Management ## Management Interfaces @@ -128,9 +126,9 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ### Management API HTTP Summary -| HTTP | HTTPS | -| ---------- | ---------- | -| default | true | +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | - | ### Management API VRF Access @@ -138,7 +136,6 @@ ntp server vrf MGMT 1.fr.pool.ntp.org | -------- | -------- | -------- | | MGMT | - | - | - ### Management API HTTP Configuration ```eos @@ -180,14 +177,14 @@ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAW | CV Compression | CloudVision Servers | VRF | Authentication | Smash Excludes | Ingest Exclude | Bypass AAA | | -------------- | ------------------- | --- | -------------- | -------------- | -------------- | ---------- | -| gzip | 10.255.0.1:9910 | MGMT | - | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | +| gzip | 10.255.0.1:9910 | MGMT | key, | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | ### TerminAttr Daemon Device Configuration ```eos ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ``` @@ -228,7 +225,7 @@ STP mode: **mstp** ### Global Spanning-Tree Settings -Spanning Tree disabled for VLANs: **4093-4094** +- Spanning Tree disabled for VLANs: **4093-4094** ## Spanning Tree Device Configuration @@ -531,33 +528,33 @@ interface Loopback100 | Interface | Description | VRF | MTU | Shutdown | | --------- | ----------- | --- | ---- | -------- | -| Vlan110 | Tenant_A_OP_Zone_1 | Tenant_A_OP_Zone | - | false | -| Vlan111 | Tenant_A_OP_Zone_2 | Tenant_A_OP_Zone | - | false | -| Vlan112 | Tenant_A_OP_Zone_3 | Tenant_A_OP_Zone | - | false | -| Vlan120 | Tenant_A_WEB_Zone_1 | Tenant_A_WEB_Zone | - | false | -| Vlan121 | Tenant_A_WEBZone_2 | Tenant_A_WEB_Zone | - | false | -| Vlan130 | Tenant_A_APP_Zone_1 | Tenant_A_APP_Zone | - | false | -| Vlan131 | Tenant_A_APP_Zone_2 | Tenant_A_APP_Zone | - | false | -| Vlan140 | Tenant_A_DB_BZone_1 | Tenant_A_DB_Zone | - | false | -| Vlan141 | Tenant_A_DB_Zone_2 | Tenant_A_DB_Zone | - | false | -| Vlan150 | Tenant_A_WAN_Zone_1 | Tenant_A_WAN_Zone | - | false | -| Vlan210 | Tenant_B_OP_Zone_1 | Tenant_B_OP_Zone | - | false | -| Vlan211 | Tenant_B_OP_Zone_2 | Tenant_B_OP_Zone | - | false | -| Vlan250 | Tenant_B_WAN_Zone_1 | Tenant_B_WAN_Zone | - | false | -| Vlan310 | Tenant_C_OP_Zone_1 | Tenant_C_OP_Zone | - | false | -| Vlan311 | Tenant_C_OP_Zone_2 | Tenant_C_OP_Zone | - | false | -| Vlan350 | Tenant_C_WAN_Zone_1 | Tenant_C_WAN_Zone | - | false | -| Vlan3009 | MLAG_PEER_L3_iBGP: vrf Tenant_A_OP_Zone | Tenant_A_OP_Zone | 1500 | false | -| Vlan3010 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WEB_Zone | Tenant_A_WEB_Zone | 1500 | false | -| Vlan3011 | MLAG_PEER_L3_iBGP: vrf Tenant_A_APP_Zone | Tenant_A_APP_Zone | 1500 | false | -| Vlan3012 | MLAG_PEER_L3_iBGP: vrf Tenant_A_DB_Zone | Tenant_A_DB_Zone | 1500 | false | -| Vlan3013 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WAN_Zone | Tenant_A_WAN_Zone | 1500 | false | -| Vlan3019 | MLAG_PEER_L3_iBGP: vrf Tenant_B_OP_Zone | Tenant_B_OP_Zone | 1500 | false | -| Vlan3020 | MLAG_PEER_L3_iBGP: vrf Tenant_B_WAN_Zone | Tenant_B_WAN_Zone | 1500 | false | -| Vlan3029 | MLAG_PEER_L3_iBGP: vrf Tenant_C_OP_Zone | Tenant_C_OP_Zone | 1500 | false | -| Vlan3030 | MLAG_PEER_L3_iBGP: vrf Tenant_C_WAN_Zone | Tenant_C_WAN_Zone | 1500 | false | -| Vlan4093 | MLAG_PEER_L3_PEERING | default | 1500 | false | -| Vlan4094 | MLAG_PEER | default | 1500 | false | +| Vlan110 | Tenant_A_OP_Zone_1 | Tenant_A_OP_Zone | - | false | +| Vlan111 | Tenant_A_OP_Zone_2 | Tenant_A_OP_Zone | - | false | +| Vlan112 | Tenant_A_OP_Zone_3 | Tenant_A_OP_Zone | - | false | +| Vlan120 | Tenant_A_WEB_Zone_1 | Tenant_A_WEB_Zone | - | false | +| Vlan121 | Tenant_A_WEBZone_2 | Tenant_A_WEB_Zone | - | false | +| Vlan130 | Tenant_A_APP_Zone_1 | Tenant_A_APP_Zone | - | false | +| Vlan131 | Tenant_A_APP_Zone_2 | Tenant_A_APP_Zone | - | false | +| Vlan140 | Tenant_A_DB_BZone_1 | Tenant_A_DB_Zone | - | false | +| Vlan141 | Tenant_A_DB_Zone_2 | Tenant_A_DB_Zone | - | false | +| Vlan150 | Tenant_A_WAN_Zone_1 | Tenant_A_WAN_Zone | - | false | +| Vlan210 | Tenant_B_OP_Zone_1 | Tenant_B_OP_Zone | - | false | +| Vlan211 | Tenant_B_OP_Zone_2 | Tenant_B_OP_Zone | - | false | +| Vlan250 | Tenant_B_WAN_Zone_1 | Tenant_B_WAN_Zone | - | false | +| Vlan310 | Tenant_C_OP_Zone_1 | Tenant_C_OP_Zone | - | false | +| Vlan311 | Tenant_C_OP_Zone_2 | Tenant_C_OP_Zone | - | false | +| Vlan350 | Tenant_C_WAN_Zone_1 | Tenant_C_WAN_Zone | - | false | +| Vlan3009 | MLAG_PEER_L3_iBGP: vrf Tenant_A_OP_Zone | Tenant_A_OP_Zone | 1500 | false | +| Vlan3010 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WEB_Zone | Tenant_A_WEB_Zone | 1500 | false | +| Vlan3011 | MLAG_PEER_L3_iBGP: vrf Tenant_A_APP_Zone | Tenant_A_APP_Zone | 1500 | false | +| Vlan3012 | MLAG_PEER_L3_iBGP: vrf Tenant_A_DB_Zone | Tenant_A_DB_Zone | 1500 | false | +| Vlan3013 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WAN_Zone | Tenant_A_WAN_Zone | 1500 | false | +| Vlan3019 | MLAG_PEER_L3_iBGP: vrf Tenant_B_OP_Zone | Tenant_B_OP_Zone | 1500 | false | +| Vlan3020 | MLAG_PEER_L3_iBGP: vrf Tenant_B_WAN_Zone | Tenant_B_WAN_Zone | 1500 | false | +| Vlan3029 | MLAG_PEER_L3_iBGP: vrf Tenant_C_OP_Zone | Tenant_C_OP_Zone | 1500 | false | +| Vlan3030 | MLAG_PEER_L3_iBGP: vrf Tenant_C_WAN_Zone | Tenant_C_WAN_Zone | 1500 | false | +| Vlan4093 | MLAG_PEER_L3_PEERING | default | 1500 | false | +| Vlan4094 | MLAG_PEER | default | 1500 | false | #### IPv4 @@ -591,7 +588,6 @@ interface Loopback100 | Vlan4093 | default | 10.255.251.1/31 | - | - | - | - | - | | Vlan4094 | default | 10.255.252.1/31 | - | - | - | - | - | - ### VLAN Interfaces Device Configuration ```eos @@ -767,48 +763,48 @@ interface Vlan4094 ### VXLAN Interface Summary -#### Source Interface: Loopback1 - -#### UDP port: 4789 - -#### EVPN MLAG Shared Router MAC : mlag-system-id - -#### VLAN to VNI and Flood List Mappings - -| VLAN | VNI | Flood List | -| ---- | --- | ---------- | -| 110 | 10110 | - | -| 111 | 50111 | - | -| 112 | 50112 | - | -| 120 | 10120 | - | -| 121 | 10121 | - | -| 130 | 10130 | - | -| 131 | 10131 | - | -| 140 | 10140 | - | -| 141 | 10141 | - | -| 150 | 10150 | - | -| 160 | 55160 | - | -| 161 | 10161 | - | -| 210 | 20210 | - | -| 211 | 20211 | - | -| 250 | 20250 | - | -| 310 | 30310 | - | -| 311 | 30311 | - | -| 350 | 30350 | - | - -#### VRF to VNI Mappings - -| VLAN | VNI | -| ---- | --- | -| Tenant_A_APP_Zone | 12 | -| Tenant_A_DB_Zone | 13 | -| Tenant_A_OP_Zone | 10 | -| Tenant_A_WAN_Zone | 14 | -| Tenant_A_WEB_Zone | 11 | -| Tenant_B_OP_Zone | 20 | -| Tenant_B_WAN_Zone | 21 | -| Tenant_C_OP_Zone | 30 | -| Tenant_C_WAN_Zone | 31 | +| Setting | Value | +| ------- | ----- | +| Source Interface | Loopback1 | +| UDP port | 4789 | +| EVPN MLAG Shared Router MAC | mlag-system-id | + +#### VLAN to VNI, Flood List and Multicast Group Mappings + +| VLAN | VNI | Flood List | Multicast Group | +| ---- | --- | ---------- | --------------- | +| 110 | 10110 | - | - | +| 111 | 50111 | - | - | +| 112 | 50112 | - | - | +| 120 | 10120 | - | - | +| 121 | 10121 | - | - | +| 130 | 10130 | - | - | +| 131 | 10131 | - | - | +| 140 | 10140 | - | - | +| 141 | 10141 | - | - | +| 150 | 10150 | - | - | +| 160 | 55160 | - | - | +| 161 | 10161 | - | - | +| 210 | 20210 | - | - | +| 211 | 20211 | - | - | +| 250 | 20250 | - | - | +| 310 | 30310 | - | - | +| 311 | 30311 | - | - | +| 350 | 30350 | - | - | + +#### VRF to VNI and Multicast Group Mappings + +| VRF | VNI | Multicast Group | +| ---- | --- | --------------- | +| Tenant_A_APP_Zone | 12 | - | +| Tenant_A_DB_Zone | 13 | - | +| Tenant_A_OP_Zone | 10 | - | +| Tenant_A_WAN_Zone | 14 | - | +| Tenant_A_WEB_Zone | 11 | - | +| Tenant_B_OP_Zone | 20 | - | +| Tenant_B_WAN_Zone | 21 | - | +| Tenant_C_OP_Zone | 30 | - | +| Tenant_C_WAN_Zone | 31 | - | ### VXLAN Interface Device Configuration @@ -877,7 +873,8 @@ ip virtual-router mac-address 00:1c:73:00:dc:01 | VRF | Routing Enabled | | --- | --------------- | -| default | true|| MGMT | false | +| default | true | +| MGMT | false | | Tenant_A_APP_Zone | true | | Tenant_A_DB_Zone | true | | Tenant_A_OP_Zone | true | @@ -910,7 +907,8 @@ ip routing vrf Tenant_C_WAN_Zone | VRF | Routing Enabled | | --- | --------------- | -| default | false || MGMT | false | +| default | false | +| MGMT | false | | Tenant_A_APP_Zone | false | | Tenant_A_DB_Zone | false | | Tenant_A_OP_Zone | false | @@ -921,14 +919,13 @@ ip routing vrf Tenant_C_WAN_Zone | Tenant_C_OP_Zone | false | | Tenant_C_WAN_Zone | false | - ## Static Routes ### Static Routes Summary | VRF | Destination Prefix | Next Hop IP | Exit interface | Administrative Distance | Tag | Route Name | Metric | | --- | ------------------ | ----------------------- | ------------------- | ----------------------------- | ----------------- | ----------------------------- | -------------- | -| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | +| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | ### Static Routes Device Configuration @@ -961,7 +958,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | -------- | ----- | | Address Family | evpn | | Source | Loopback0 | -| Bfd | true | +| BFD | True | | Ebgp multihop | 3 | | Send community | all | | Maximum routes | 0 (no limit) | @@ -986,28 +983,32 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 ### BGP Neighbors -| Neighbor | Remote AS | VRF | -| -------- | --------- | --- | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | default | -| 172.31.255.4 | 65001 | default | -| 172.31.255.6 | 65001 | default | -| 192.168.255.1 | 65001 | default | -| 192.168.255.2 | 65001 | default | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_APP_Zone | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_DB_Zone | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_OP_Zone | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WAN_Zone | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WEB_Zone | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_OP_Zone | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_WAN_Zone | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_OP_Zone | -| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_WAN_Zone | +| Neighbor | Remote AS | VRF | Shutdown | Send-community | Maximum-routes | Allowas-in | BFD | RIB Pre-Policy Retain | +| -------- | --------- | --- | -------- | -------------- | -------------- | ---------- | --- | --------------------- | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | default | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 172.31.255.4 | 65001 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.6 | 65001 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 192.168.255.1 | 65001 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.2 | 65001 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_APP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_DB_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WEB_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.0 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | ### Router BGP EVPN Address Family -#### Router BGP EVPN MAC-VRFs +#### EVPN Peer Groups + +| Peer Group | Activate | +| ---------- | -------- | +| EVPN-OVERLAY-PEERS | True | -##### VLAN aware bundles +### Router BGP VLAN Aware Bundles | VLAN Aware Bundle | Route-Distinguisher | Both Route-Target | Import Route Target | Export Route-Target | Redistribute | VLANs | | ----------------- | ------------------- | ----------------- | ------------------- | ------------------- | ------------ | ----- | @@ -1023,7 +1024,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | Tenant_C_OP_Zone | 192.168.255.4:30 | 30:30 | - | - | learned | 310-311 | | Tenant_C_WAN_Zone | 192.168.255.4:31 | 31:31 | - | - | learned | 350 | -#### Router BGP EVPN VRFs +### Router BGP VRFs | VRF | Route-Distinguisher | Redistribute | | --- | ------------------- | ------------ | @@ -1062,6 +1063,7 @@ router bgp 65101 neighbor MLAG-IPv4-UNDERLAY-PEER peer group neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65101 neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self + neighbor MLAG-IPv4-UNDERLAY-PEER description DC1-LEAF1A neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ== neighbor MLAG-IPv4-UNDERLAY-PEER send-community neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000 @@ -1239,7 +1241,7 @@ router bgp 65101 | -------- | ---------- | ---------- | | 1200 | 1200 | 3 | -### Router BFD Multihop Device Configuration +### Router BFD Device Configuration ```eos ! @@ -1253,8 +1255,9 @@ router bfd ### IP IGMP Snooping Summary -IGMP snooping is globally enabled. - +| IGMP Snooping | Fast Leave | Interface Restart Query | Proxy | Restart Query Interval | Robustness Variable | +| ------------- | ---------- | ----------------------- | ----- | ---------------------- | ------------------- | +| Enabled | - | - | - | - | - | ### IP IGMP Snooping Device Configuration diff --git a/inventory/documentation/devices/DC1-LEAF2A.md b/inventory/documentation/devices/DC1-LEAF2A.md index 72595283..c599b199 100644 --- a/inventory/documentation/devices/DC1-LEAF2A.md +++ b/inventory/documentation/devices/DC1-LEAF2A.md @@ -1,6 +1,5 @@ # DC1-LEAF2A # Table of Contents - - [Management](#management) - [Management Interfaces](#management-interfaces) @@ -52,7 +51,6 @@ - [Virtual Source NAT Configuration](#virtual-source-nat-configuration) - [Quality Of Service](#quality-of-service) - # Management ## Management Interfaces @@ -128,9 +126,9 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ### Management API HTTP Summary -| HTTP | HTTPS | -| ---------- | ---------- | -| default | true | +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | - | ### Management API VRF Access @@ -138,7 +136,6 @@ ntp server vrf MGMT 1.fr.pool.ntp.org | -------- | -------- | -------- | | MGMT | - | - | - ### Management API HTTP Configuration ```eos @@ -180,14 +177,14 @@ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAW | CV Compression | CloudVision Servers | VRF | Authentication | Smash Excludes | Ingest Exclude | Bypass AAA | | -------------- | ------------------- | --- | -------------- | -------------- | -------------- | ---------- | -| gzip | 10.255.0.1:9910 | MGMT | - | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | +| gzip | 10.255.0.1:9910 | MGMT | key, | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | ### TerminAttr Daemon Device Configuration ```eos ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ``` @@ -228,7 +225,7 @@ STP mode: **mstp** ### Global Spanning-Tree Settings -Spanning Tree disabled for VLANs: **4093-4094** +- Spanning Tree disabled for VLANs: **4093-4094** ## Spanning Tree Device Configuration @@ -531,33 +528,33 @@ interface Loopback100 | Interface | Description | VRF | MTU | Shutdown | | --------- | ----------- | --- | ---- | -------- | -| Vlan110 | Tenant_A_OP_Zone_1 | Tenant_A_OP_Zone | - | false | -| Vlan111 | Tenant_A_OP_Zone_2 | Tenant_A_OP_Zone | - | false | -| Vlan112 | Tenant_A_OP_Zone_3 | Tenant_A_OP_Zone | - | false | -| Vlan120 | Tenant_A_WEB_Zone_1 | Tenant_A_WEB_Zone | - | false | -| Vlan121 | Tenant_A_WEBZone_2 | Tenant_A_WEB_Zone | - | false | -| Vlan130 | Tenant_A_APP_Zone_1 | Tenant_A_APP_Zone | - | false | -| Vlan131 | Tenant_A_APP_Zone_2 | Tenant_A_APP_Zone | - | false | -| Vlan140 | Tenant_A_DB_BZone_1 | Tenant_A_DB_Zone | - | false | -| Vlan141 | Tenant_A_DB_Zone_2 | Tenant_A_DB_Zone | - | false | -| Vlan150 | Tenant_A_WAN_Zone_1 | Tenant_A_WAN_Zone | - | false | -| Vlan210 | Tenant_B_OP_Zone_1 | Tenant_B_OP_Zone | - | false | -| Vlan211 | Tenant_B_OP_Zone_2 | Tenant_B_OP_Zone | - | false | -| Vlan250 | Tenant_B_WAN_Zone_1 | Tenant_B_WAN_Zone | - | false | -| Vlan310 | Tenant_C_OP_Zone_1 | Tenant_C_OP_Zone | - | false | -| Vlan311 | Tenant_C_OP_Zone_2 | Tenant_C_OP_Zone | - | false | -| Vlan350 | Tenant_C_WAN_Zone_1 | Tenant_C_WAN_Zone | - | false | -| Vlan3009 | MLAG_PEER_L3_iBGP: vrf Tenant_A_OP_Zone | Tenant_A_OP_Zone | 1500 | false | -| Vlan3010 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WEB_Zone | Tenant_A_WEB_Zone | 1500 | false | -| Vlan3011 | MLAG_PEER_L3_iBGP: vrf Tenant_A_APP_Zone | Tenant_A_APP_Zone | 1500 | false | -| Vlan3012 | MLAG_PEER_L3_iBGP: vrf Tenant_A_DB_Zone | Tenant_A_DB_Zone | 1500 | false | -| Vlan3013 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WAN_Zone | Tenant_A_WAN_Zone | 1500 | false | -| Vlan3019 | MLAG_PEER_L3_iBGP: vrf Tenant_B_OP_Zone | Tenant_B_OP_Zone | 1500 | false | -| Vlan3020 | MLAG_PEER_L3_iBGP: vrf Tenant_B_WAN_Zone | Tenant_B_WAN_Zone | 1500 | false | -| Vlan3029 | MLAG_PEER_L3_iBGP: vrf Tenant_C_OP_Zone | Tenant_C_OP_Zone | 1500 | false | -| Vlan3030 | MLAG_PEER_L3_iBGP: vrf Tenant_C_WAN_Zone | Tenant_C_WAN_Zone | 1500 | false | -| Vlan4093 | MLAG_PEER_L3_PEERING | default | 1500 | false | -| Vlan4094 | MLAG_PEER | default | 1500 | false | +| Vlan110 | Tenant_A_OP_Zone_1 | Tenant_A_OP_Zone | - | false | +| Vlan111 | Tenant_A_OP_Zone_2 | Tenant_A_OP_Zone | - | false | +| Vlan112 | Tenant_A_OP_Zone_3 | Tenant_A_OP_Zone | - | false | +| Vlan120 | Tenant_A_WEB_Zone_1 | Tenant_A_WEB_Zone | - | false | +| Vlan121 | Tenant_A_WEBZone_2 | Tenant_A_WEB_Zone | - | false | +| Vlan130 | Tenant_A_APP_Zone_1 | Tenant_A_APP_Zone | - | false | +| Vlan131 | Tenant_A_APP_Zone_2 | Tenant_A_APP_Zone | - | false | +| Vlan140 | Tenant_A_DB_BZone_1 | Tenant_A_DB_Zone | - | false | +| Vlan141 | Tenant_A_DB_Zone_2 | Tenant_A_DB_Zone | - | false | +| Vlan150 | Tenant_A_WAN_Zone_1 | Tenant_A_WAN_Zone | - | false | +| Vlan210 | Tenant_B_OP_Zone_1 | Tenant_B_OP_Zone | - | false | +| Vlan211 | Tenant_B_OP_Zone_2 | Tenant_B_OP_Zone | - | false | +| Vlan250 | Tenant_B_WAN_Zone_1 | Tenant_B_WAN_Zone | - | false | +| Vlan310 | Tenant_C_OP_Zone_1 | Tenant_C_OP_Zone | - | false | +| Vlan311 | Tenant_C_OP_Zone_2 | Tenant_C_OP_Zone | - | false | +| Vlan350 | Tenant_C_WAN_Zone_1 | Tenant_C_WAN_Zone | - | false | +| Vlan3009 | MLAG_PEER_L3_iBGP: vrf Tenant_A_OP_Zone | Tenant_A_OP_Zone | 1500 | false | +| Vlan3010 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WEB_Zone | Tenant_A_WEB_Zone | 1500 | false | +| Vlan3011 | MLAG_PEER_L3_iBGP: vrf Tenant_A_APP_Zone | Tenant_A_APP_Zone | 1500 | false | +| Vlan3012 | MLAG_PEER_L3_iBGP: vrf Tenant_A_DB_Zone | Tenant_A_DB_Zone | 1500 | false | +| Vlan3013 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WAN_Zone | Tenant_A_WAN_Zone | 1500 | false | +| Vlan3019 | MLAG_PEER_L3_iBGP: vrf Tenant_B_OP_Zone | Tenant_B_OP_Zone | 1500 | false | +| Vlan3020 | MLAG_PEER_L3_iBGP: vrf Tenant_B_WAN_Zone | Tenant_B_WAN_Zone | 1500 | false | +| Vlan3029 | MLAG_PEER_L3_iBGP: vrf Tenant_C_OP_Zone | Tenant_C_OP_Zone | 1500 | false | +| Vlan3030 | MLAG_PEER_L3_iBGP: vrf Tenant_C_WAN_Zone | Tenant_C_WAN_Zone | 1500 | false | +| Vlan4093 | MLAG_PEER_L3_PEERING | default | 1500 | false | +| Vlan4094 | MLAG_PEER | default | 1500 | false | #### IPv4 @@ -591,7 +588,6 @@ interface Loopback100 | Vlan4093 | default | 10.255.251.4/31 | - | - | - | - | - | | Vlan4094 | default | 10.255.252.4/31 | - | - | - | - | - | - ### VLAN Interfaces Device Configuration ```eos @@ -767,48 +763,48 @@ interface Vlan4094 ### VXLAN Interface Summary -#### Source Interface: Loopback1 - -#### UDP port: 4789 - -#### EVPN MLAG Shared Router MAC : mlag-system-id - -#### VLAN to VNI and Flood List Mappings - -| VLAN | VNI | Flood List | -| ---- | --- | ---------- | -| 110 | 10110 | - | -| 111 | 50111 | - | -| 112 | 50112 | - | -| 120 | 10120 | - | -| 121 | 10121 | - | -| 130 | 10130 | - | -| 131 | 10131 | - | -| 140 | 10140 | - | -| 141 | 10141 | - | -| 150 | 10150 | - | -| 160 | 55160 | - | -| 161 | 10161 | - | -| 210 | 20210 | - | -| 211 | 20211 | - | -| 250 | 20250 | - | -| 310 | 30310 | - | -| 311 | 30311 | - | -| 350 | 30350 | - | - -#### VRF to VNI Mappings - -| VLAN | VNI | -| ---- | --- | -| Tenant_A_APP_Zone | 12 | -| Tenant_A_DB_Zone | 13 | -| Tenant_A_OP_Zone | 10 | -| Tenant_A_WAN_Zone | 14 | -| Tenant_A_WEB_Zone | 11 | -| Tenant_B_OP_Zone | 20 | -| Tenant_B_WAN_Zone | 21 | -| Tenant_C_OP_Zone | 30 | -| Tenant_C_WAN_Zone | 31 | +| Setting | Value | +| ------- | ----- | +| Source Interface | Loopback1 | +| UDP port | 4789 | +| EVPN MLAG Shared Router MAC | mlag-system-id | + +#### VLAN to VNI, Flood List and Multicast Group Mappings + +| VLAN | VNI | Flood List | Multicast Group | +| ---- | --- | ---------- | --------------- | +| 110 | 10110 | - | - | +| 111 | 50111 | - | - | +| 112 | 50112 | - | - | +| 120 | 10120 | - | - | +| 121 | 10121 | - | - | +| 130 | 10130 | - | - | +| 131 | 10131 | - | - | +| 140 | 10140 | - | - | +| 141 | 10141 | - | - | +| 150 | 10150 | - | - | +| 160 | 55160 | - | - | +| 161 | 10161 | - | - | +| 210 | 20210 | - | - | +| 211 | 20211 | - | - | +| 250 | 20250 | - | - | +| 310 | 30310 | - | - | +| 311 | 30311 | - | - | +| 350 | 30350 | - | - | + +#### VRF to VNI and Multicast Group Mappings + +| VRF | VNI | Multicast Group | +| ---- | --- | --------------- | +| Tenant_A_APP_Zone | 12 | - | +| Tenant_A_DB_Zone | 13 | - | +| Tenant_A_OP_Zone | 10 | - | +| Tenant_A_WAN_Zone | 14 | - | +| Tenant_A_WEB_Zone | 11 | - | +| Tenant_B_OP_Zone | 20 | - | +| Tenant_B_WAN_Zone | 21 | - | +| Tenant_C_OP_Zone | 30 | - | +| Tenant_C_WAN_Zone | 31 | - | ### VXLAN Interface Device Configuration @@ -877,7 +873,8 @@ ip virtual-router mac-address 00:1c:73:00:dc:01 | VRF | Routing Enabled | | --- | --------------- | -| default | true|| MGMT | false | +| default | true | +| MGMT | false | | Tenant_A_APP_Zone | true | | Tenant_A_DB_Zone | true | | Tenant_A_OP_Zone | true | @@ -910,7 +907,8 @@ ip routing vrf Tenant_C_WAN_Zone | VRF | Routing Enabled | | --- | --------------- | -| default | false || MGMT | false | +| default | false | +| MGMT | false | | Tenant_A_APP_Zone | false | | Tenant_A_DB_Zone | false | | Tenant_A_OP_Zone | false | @@ -921,14 +919,13 @@ ip routing vrf Tenant_C_WAN_Zone | Tenant_C_OP_Zone | false | | Tenant_C_WAN_Zone | false | - ## Static Routes ### Static Routes Summary | VRF | Destination Prefix | Next Hop IP | Exit interface | Administrative Distance | Tag | Route Name | Metric | | --- | ------------------ | ----------------------- | ------------------- | ----------------------------- | ----------------- | ----------------------------- | -------------- | -| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | +| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | ### Static Routes Device Configuration @@ -961,7 +958,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | -------- | ----- | | Address Family | evpn | | Source | Loopback0 | -| Bfd | true | +| BFD | True | | Ebgp multihop | 3 | | Send community | all | | Maximum routes | 0 (no limit) | @@ -986,28 +983,32 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 ### BGP Neighbors -| Neighbor | Remote AS | VRF | -| -------- | --------- | --- | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | default | -| 172.31.255.8 | 65001 | default | -| 172.31.255.10 | 65001 | default | -| 192.168.255.1 | 65001 | default | -| 192.168.255.2 | 65001 | default | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_APP_Zone | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_DB_Zone | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_OP_Zone | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WAN_Zone | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WEB_Zone | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_OP_Zone | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_WAN_Zone | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_OP_Zone | -| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_WAN_Zone | +| Neighbor | Remote AS | VRF | Shutdown | Send-community | Maximum-routes | Allowas-in | BFD | RIB Pre-Policy Retain | +| -------- | --------- | --- | -------- | -------------- | -------------- | ---------- | --- | --------------------- | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | default | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 172.31.255.8 | 65001 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.10 | 65001 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 192.168.255.1 | 65001 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.2 | 65001 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_APP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_DB_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WEB_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.5 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | ### Router BGP EVPN Address Family -#### Router BGP EVPN MAC-VRFs +#### EVPN Peer Groups + +| Peer Group | Activate | +| ---------- | -------- | +| EVPN-OVERLAY-PEERS | True | -##### VLAN aware bundles +### Router BGP VLAN Aware Bundles | VLAN Aware Bundle | Route-Distinguisher | Both Route-Target | Import Route Target | Export Route-Target | Redistribute | VLANs | | ----------------- | ------------------- | ----------------- | ------------------- | ------------------- | ------------ | ----- | @@ -1023,7 +1024,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | Tenant_C_OP_Zone | 192.168.255.5:30 | 30:30 | - | - | learned | 310-311 | | Tenant_C_WAN_Zone | 192.168.255.5:31 | 31:31 | - | - | learned | 350 | -#### Router BGP EVPN VRFs +### Router BGP VRFs | VRF | Route-Distinguisher | Redistribute | | --- | ------------------- | ------------ | @@ -1062,6 +1063,7 @@ router bgp 65102 neighbor MLAG-IPv4-UNDERLAY-PEER peer group neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65102 neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self + neighbor MLAG-IPv4-UNDERLAY-PEER description DC1-LEAF2B neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ== neighbor MLAG-IPv4-UNDERLAY-PEER send-community neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000 @@ -1239,7 +1241,7 @@ router bgp 65102 | -------- | ---------- | ---------- | | 1200 | 1200 | 3 | -### Router BFD Multihop Device Configuration +### Router BFD Device Configuration ```eos ! @@ -1253,8 +1255,9 @@ router bfd ### IP IGMP Snooping Summary -IGMP snooping is globally enabled. - +| IGMP Snooping | Fast Leave | Interface Restart Query | Proxy | Restart Query Interval | Robustness Variable | +| ------------- | ---------- | ----------------------- | ----- | ---------------------- | ------------------- | +| Enabled | - | - | - | - | - | ### IP IGMP Snooping Device Configuration diff --git a/inventory/documentation/devices/DC1-LEAF2B.md b/inventory/documentation/devices/DC1-LEAF2B.md index de1857f0..5d1f7a0b 100644 --- a/inventory/documentation/devices/DC1-LEAF2B.md +++ b/inventory/documentation/devices/DC1-LEAF2B.md @@ -1,6 +1,5 @@ # DC1-LEAF2B # Table of Contents - - [Management](#management) - [Management Interfaces](#management-interfaces) @@ -52,7 +51,6 @@ - [Virtual Source NAT Configuration](#virtual-source-nat-configuration) - [Quality Of Service](#quality-of-service) - # Management ## Management Interfaces @@ -128,9 +126,9 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ### Management API HTTP Summary -| HTTP | HTTPS | -| ---------- | ---------- | -| default | true | +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | - | ### Management API VRF Access @@ -138,7 +136,6 @@ ntp server vrf MGMT 1.fr.pool.ntp.org | -------- | -------- | -------- | | MGMT | - | - | - ### Management API HTTP Configuration ```eos @@ -180,14 +177,14 @@ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAW | CV Compression | CloudVision Servers | VRF | Authentication | Smash Excludes | Ingest Exclude | Bypass AAA | | -------------- | ------------------- | --- | -------------- | -------------- | -------------- | ---------- | -| gzip | 10.255.0.1:9910 | MGMT | - | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | +| gzip | 10.255.0.1:9910 | MGMT | key, | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | ### TerminAttr Daemon Device Configuration ```eos ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ``` @@ -228,7 +225,7 @@ STP mode: **mstp** ### Global Spanning-Tree Settings -Spanning Tree disabled for VLANs: **4093-4094** +- Spanning Tree disabled for VLANs: **4093-4094** ## Spanning Tree Device Configuration @@ -531,33 +528,33 @@ interface Loopback100 | Interface | Description | VRF | MTU | Shutdown | | --------- | ----------- | --- | ---- | -------- | -| Vlan110 | Tenant_A_OP_Zone_1 | Tenant_A_OP_Zone | - | false | -| Vlan111 | Tenant_A_OP_Zone_2 | Tenant_A_OP_Zone | - | false | -| Vlan112 | Tenant_A_OP_Zone_3 | Tenant_A_OP_Zone | - | false | -| Vlan120 | Tenant_A_WEB_Zone_1 | Tenant_A_WEB_Zone | - | false | -| Vlan121 | Tenant_A_WEBZone_2 | Tenant_A_WEB_Zone | - | false | -| Vlan130 | Tenant_A_APP_Zone_1 | Tenant_A_APP_Zone | - | false | -| Vlan131 | Tenant_A_APP_Zone_2 | Tenant_A_APP_Zone | - | false | -| Vlan140 | Tenant_A_DB_BZone_1 | Tenant_A_DB_Zone | - | false | -| Vlan141 | Tenant_A_DB_Zone_2 | Tenant_A_DB_Zone | - | false | -| Vlan150 | Tenant_A_WAN_Zone_1 | Tenant_A_WAN_Zone | - | false | -| Vlan210 | Tenant_B_OP_Zone_1 | Tenant_B_OP_Zone | - | false | -| Vlan211 | Tenant_B_OP_Zone_2 | Tenant_B_OP_Zone | - | false | -| Vlan250 | Tenant_B_WAN_Zone_1 | Tenant_B_WAN_Zone | - | false | -| Vlan310 | Tenant_C_OP_Zone_1 | Tenant_C_OP_Zone | - | false | -| Vlan311 | Tenant_C_OP_Zone_2 | Tenant_C_OP_Zone | - | false | -| Vlan350 | Tenant_C_WAN_Zone_1 | Tenant_C_WAN_Zone | - | false | -| Vlan3009 | MLAG_PEER_L3_iBGP: vrf Tenant_A_OP_Zone | Tenant_A_OP_Zone | 1500 | false | -| Vlan3010 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WEB_Zone | Tenant_A_WEB_Zone | 1500 | false | -| Vlan3011 | MLAG_PEER_L3_iBGP: vrf Tenant_A_APP_Zone | Tenant_A_APP_Zone | 1500 | false | -| Vlan3012 | MLAG_PEER_L3_iBGP: vrf Tenant_A_DB_Zone | Tenant_A_DB_Zone | 1500 | false | -| Vlan3013 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WAN_Zone | Tenant_A_WAN_Zone | 1500 | false | -| Vlan3019 | MLAG_PEER_L3_iBGP: vrf Tenant_B_OP_Zone | Tenant_B_OP_Zone | 1500 | false | -| Vlan3020 | MLAG_PEER_L3_iBGP: vrf Tenant_B_WAN_Zone | Tenant_B_WAN_Zone | 1500 | false | -| Vlan3029 | MLAG_PEER_L3_iBGP: vrf Tenant_C_OP_Zone | Tenant_C_OP_Zone | 1500 | false | -| Vlan3030 | MLAG_PEER_L3_iBGP: vrf Tenant_C_WAN_Zone | Tenant_C_WAN_Zone | 1500 | false | -| Vlan4093 | MLAG_PEER_L3_PEERING | default | 1500 | false | -| Vlan4094 | MLAG_PEER | default | 1500 | false | +| Vlan110 | Tenant_A_OP_Zone_1 | Tenant_A_OP_Zone | - | false | +| Vlan111 | Tenant_A_OP_Zone_2 | Tenant_A_OP_Zone | - | false | +| Vlan112 | Tenant_A_OP_Zone_3 | Tenant_A_OP_Zone | - | false | +| Vlan120 | Tenant_A_WEB_Zone_1 | Tenant_A_WEB_Zone | - | false | +| Vlan121 | Tenant_A_WEBZone_2 | Tenant_A_WEB_Zone | - | false | +| Vlan130 | Tenant_A_APP_Zone_1 | Tenant_A_APP_Zone | - | false | +| Vlan131 | Tenant_A_APP_Zone_2 | Tenant_A_APP_Zone | - | false | +| Vlan140 | Tenant_A_DB_BZone_1 | Tenant_A_DB_Zone | - | false | +| Vlan141 | Tenant_A_DB_Zone_2 | Tenant_A_DB_Zone | - | false | +| Vlan150 | Tenant_A_WAN_Zone_1 | Tenant_A_WAN_Zone | - | false | +| Vlan210 | Tenant_B_OP_Zone_1 | Tenant_B_OP_Zone | - | false | +| Vlan211 | Tenant_B_OP_Zone_2 | Tenant_B_OP_Zone | - | false | +| Vlan250 | Tenant_B_WAN_Zone_1 | Tenant_B_WAN_Zone | - | false | +| Vlan310 | Tenant_C_OP_Zone_1 | Tenant_C_OP_Zone | - | false | +| Vlan311 | Tenant_C_OP_Zone_2 | Tenant_C_OP_Zone | - | false | +| Vlan350 | Tenant_C_WAN_Zone_1 | Tenant_C_WAN_Zone | - | false | +| Vlan3009 | MLAG_PEER_L3_iBGP: vrf Tenant_A_OP_Zone | Tenant_A_OP_Zone | 1500 | false | +| Vlan3010 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WEB_Zone | Tenant_A_WEB_Zone | 1500 | false | +| Vlan3011 | MLAG_PEER_L3_iBGP: vrf Tenant_A_APP_Zone | Tenant_A_APP_Zone | 1500 | false | +| Vlan3012 | MLAG_PEER_L3_iBGP: vrf Tenant_A_DB_Zone | Tenant_A_DB_Zone | 1500 | false | +| Vlan3013 | MLAG_PEER_L3_iBGP: vrf Tenant_A_WAN_Zone | Tenant_A_WAN_Zone | 1500 | false | +| Vlan3019 | MLAG_PEER_L3_iBGP: vrf Tenant_B_OP_Zone | Tenant_B_OP_Zone | 1500 | false | +| Vlan3020 | MLAG_PEER_L3_iBGP: vrf Tenant_B_WAN_Zone | Tenant_B_WAN_Zone | 1500 | false | +| Vlan3029 | MLAG_PEER_L3_iBGP: vrf Tenant_C_OP_Zone | Tenant_C_OP_Zone | 1500 | false | +| Vlan3030 | MLAG_PEER_L3_iBGP: vrf Tenant_C_WAN_Zone | Tenant_C_WAN_Zone | 1500 | false | +| Vlan4093 | MLAG_PEER_L3_PEERING | default | 1500 | false | +| Vlan4094 | MLAG_PEER | default | 1500 | false | #### IPv4 @@ -591,7 +588,6 @@ interface Loopback100 | Vlan4093 | default | 10.255.251.5/31 | - | - | - | - | - | | Vlan4094 | default | 10.255.252.5/31 | - | - | - | - | - | - ### VLAN Interfaces Device Configuration ```eos @@ -767,48 +763,48 @@ interface Vlan4094 ### VXLAN Interface Summary -#### Source Interface: Loopback1 - -#### UDP port: 4789 - -#### EVPN MLAG Shared Router MAC : mlag-system-id - -#### VLAN to VNI and Flood List Mappings - -| VLAN | VNI | Flood List | -| ---- | --- | ---------- | -| 110 | 10110 | - | -| 111 | 50111 | - | -| 112 | 50112 | - | -| 120 | 10120 | - | -| 121 | 10121 | - | -| 130 | 10130 | - | -| 131 | 10131 | - | -| 140 | 10140 | - | -| 141 | 10141 | - | -| 150 | 10150 | - | -| 160 | 55160 | - | -| 161 | 10161 | - | -| 210 | 20210 | - | -| 211 | 20211 | - | -| 250 | 20250 | - | -| 310 | 30310 | - | -| 311 | 30311 | - | -| 350 | 30350 | - | - -#### VRF to VNI Mappings - -| VLAN | VNI | -| ---- | --- | -| Tenant_A_APP_Zone | 12 | -| Tenant_A_DB_Zone | 13 | -| Tenant_A_OP_Zone | 10 | -| Tenant_A_WAN_Zone | 14 | -| Tenant_A_WEB_Zone | 11 | -| Tenant_B_OP_Zone | 20 | -| Tenant_B_WAN_Zone | 21 | -| Tenant_C_OP_Zone | 30 | -| Tenant_C_WAN_Zone | 31 | +| Setting | Value | +| ------- | ----- | +| Source Interface | Loopback1 | +| UDP port | 4789 | +| EVPN MLAG Shared Router MAC | mlag-system-id | + +#### VLAN to VNI, Flood List and Multicast Group Mappings + +| VLAN | VNI | Flood List | Multicast Group | +| ---- | --- | ---------- | --------------- | +| 110 | 10110 | - | - | +| 111 | 50111 | - | - | +| 112 | 50112 | - | - | +| 120 | 10120 | - | - | +| 121 | 10121 | - | - | +| 130 | 10130 | - | - | +| 131 | 10131 | - | - | +| 140 | 10140 | - | - | +| 141 | 10141 | - | - | +| 150 | 10150 | - | - | +| 160 | 55160 | - | - | +| 161 | 10161 | - | - | +| 210 | 20210 | - | - | +| 211 | 20211 | - | - | +| 250 | 20250 | - | - | +| 310 | 30310 | - | - | +| 311 | 30311 | - | - | +| 350 | 30350 | - | - | + +#### VRF to VNI and Multicast Group Mappings + +| VRF | VNI | Multicast Group | +| ---- | --- | --------------- | +| Tenant_A_APP_Zone | 12 | - | +| Tenant_A_DB_Zone | 13 | - | +| Tenant_A_OP_Zone | 10 | - | +| Tenant_A_WAN_Zone | 14 | - | +| Tenant_A_WEB_Zone | 11 | - | +| Tenant_B_OP_Zone | 20 | - | +| Tenant_B_WAN_Zone | 21 | - | +| Tenant_C_OP_Zone | 30 | - | +| Tenant_C_WAN_Zone | 31 | - | ### VXLAN Interface Device Configuration @@ -877,7 +873,8 @@ ip virtual-router mac-address 00:1c:73:00:dc:01 | VRF | Routing Enabled | | --- | --------------- | -| default | true|| MGMT | false | +| default | true | +| MGMT | false | | Tenant_A_APP_Zone | true | | Tenant_A_DB_Zone | true | | Tenant_A_OP_Zone | true | @@ -910,7 +907,8 @@ ip routing vrf Tenant_C_WAN_Zone | VRF | Routing Enabled | | --- | --------------- | -| default | false || MGMT | false | +| default | false | +| MGMT | false | | Tenant_A_APP_Zone | false | | Tenant_A_DB_Zone | false | | Tenant_A_OP_Zone | false | @@ -921,14 +919,13 @@ ip routing vrf Tenant_C_WAN_Zone | Tenant_C_OP_Zone | false | | Tenant_C_WAN_Zone | false | - ## Static Routes ### Static Routes Summary | VRF | Destination Prefix | Next Hop IP | Exit interface | Administrative Distance | Tag | Route Name | Metric | | --- | ------------------ | ----------------------- | ------------------- | ----------------------------- | ----------------- | ----------------------------- | -------------- | -| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | +| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | ### Static Routes Device Configuration @@ -961,7 +958,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | -------- | ----- | | Address Family | evpn | | Source | Loopback0 | -| Bfd | true | +| BFD | True | | Ebgp multihop | 3 | | Send community | all | | Maximum routes | 0 (no limit) | @@ -986,28 +983,32 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 ### BGP Neighbors -| Neighbor | Remote AS | VRF | -| -------- | --------- | --- | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | default | -| 172.31.255.12 | 65001 | default | -| 172.31.255.14 | 65001 | default | -| 192.168.255.1 | 65001 | default | -| 192.168.255.2 | 65001 | default | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_APP_Zone | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_DB_Zone | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_OP_Zone | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WAN_Zone | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WEB_Zone | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_OP_Zone | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_WAN_Zone | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_OP_Zone | -| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_WAN_Zone | +| Neighbor | Remote AS | VRF | Shutdown | Send-community | Maximum-routes | Allowas-in | BFD | RIB Pre-Policy Retain | +| -------- | --------- | --- | -------- | -------------- | -------------- | ---------- | --- | --------------------- | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | default | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 172.31.255.12 | 65001 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.14 | 65001 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 192.168.255.1 | 65001 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.2 | 65001 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_APP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_DB_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_A_WEB_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_B_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_OP_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | +| 10.255.251.4 | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Tenant_C_WAN_Zone | - | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | Inherited from peer group MLAG-IPv4-UNDERLAY-PEER | - | - | - | ### Router BGP EVPN Address Family -#### Router BGP EVPN MAC-VRFs +#### EVPN Peer Groups + +| Peer Group | Activate | +| ---------- | -------- | +| EVPN-OVERLAY-PEERS | True | -##### VLAN aware bundles +### Router BGP VLAN Aware Bundles | VLAN Aware Bundle | Route-Distinguisher | Both Route-Target | Import Route Target | Export Route-Target | Redistribute | VLANs | | ----------------- | ------------------- | ----------------- | ------------------- | ------------------- | ------------ | ----- | @@ -1023,7 +1024,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | Tenant_C_OP_Zone | 192.168.255.6:30 | 30:30 | - | - | learned | 310-311 | | Tenant_C_WAN_Zone | 192.168.255.6:31 | 31:31 | - | - | learned | 350 | -#### Router BGP EVPN VRFs +### Router BGP VRFs | VRF | Route-Distinguisher | Redistribute | | --- | ------------------- | ------------ | @@ -1062,6 +1063,7 @@ router bgp 65102 neighbor MLAG-IPv4-UNDERLAY-PEER peer group neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65102 neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self + neighbor MLAG-IPv4-UNDERLAY-PEER description DC1-LEAF2A neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ== neighbor MLAG-IPv4-UNDERLAY-PEER send-community neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000 @@ -1239,7 +1241,7 @@ router bgp 65102 | -------- | ---------- | ---------- | | 1200 | 1200 | 3 | -### Router BFD Multihop Device Configuration +### Router BFD Device Configuration ```eos ! @@ -1253,8 +1255,9 @@ router bfd ### IP IGMP Snooping Summary -IGMP snooping is globally enabled. - +| IGMP Snooping | Fast Leave | Interface Restart Query | Proxy | Restart Query Interval | Robustness Variable | +| ------------- | ---------- | ----------------------- | ----- | ---------------------- | ------------------- | +| Enabled | - | - | - | - | - | ### IP IGMP Snooping Device Configuration diff --git a/inventory/documentation/devices/DC1-SPINE1.md b/inventory/documentation/devices/DC1-SPINE1.md index b7257df1..ef05e870 100644 --- a/inventory/documentation/devices/DC1-SPINE1.md +++ b/inventory/documentation/devices/DC1-SPINE1.md @@ -1,6 +1,5 @@ # DC1-SPINE1 # Table of Contents - - [Management](#management) - [Management Interfaces](#management-interfaces) @@ -38,7 +37,6 @@ - [VRF Instances Device Configuration](#vrf-instances-device-configuration) - [Quality Of Service](#quality-of-service) - # Management ## Management Interfaces @@ -114,9 +112,9 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ### Management API HTTP Summary -| HTTP | HTTPS | -| ---------- | ---------- | -| default | true | +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | - | ### Management API VRF Access @@ -124,7 +122,6 @@ ntp server vrf MGMT 1.fr.pool.ntp.org | -------- | -------- | -------- | | MGMT | - | - | - ### Management API HTTP Configuration ```eos @@ -166,14 +163,14 @@ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAW | CV Compression | CloudVision Servers | VRF | Authentication | Smash Excludes | Ingest Exclude | Bypass AAA | | -------------- | ------------------- | --- | -------------- | -------------- | -------------- | ---------- | -| gzip | 10.255.0.1:9910 | MGMT | - | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | +| gzip | 10.255.0.1:9910 | MGMT | key, | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | ### TerminAttr Daemon Device Configuration ```eos ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ``` @@ -183,9 +180,6 @@ daemon TerminAttr STP mode: **none** -### Global Spanning-Tree Settings - - ## Spanning Tree Device Configuration ```eos @@ -306,7 +300,8 @@ service routing protocols model multi-agent | VRF | Routing Enabled | | --- | --------------- | -| default | true|| MGMT | false | +| default | true | +| MGMT | false | ### IP Routing Device Configuration @@ -321,8 +316,8 @@ no ip routing vrf MGMT | VRF | Routing Enabled | | --- | --------------- | -| default | false || MGMT | false | - +| default | false | +| MGMT | false | ## Static Routes @@ -330,7 +325,7 @@ no ip routing vrf MGMT | VRF | Destination Prefix | Next Hop IP | Exit interface | Administrative Distance | Tag | Route Name | Metric | | --- | ------------------ | ----------------------- | ------------------- | ----------------------------- | ----------------- | ----------------------------- | -------------- | -| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | +| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | ### Static Routes Device Configuration @@ -364,7 +359,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | Address Family | evpn | | Next-hop unchanged | True | | Source | Loopback0 | -| Bfd | true | +| BFD | True | | Ebgp multihop | 3 | | Send community | all | | Maximum routes | 0 (no limit) | @@ -379,22 +374,24 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 ### BGP Neighbors -| Neighbor | Remote AS | VRF | -| -------- | --------- | --- | -| 172.31.255.1 | 65101 | default | -| 172.31.255.5 | 65101 | default | -| 172.31.255.9 | 65102 | default | -| 172.31.255.13 | 65102 | default | -| 192.168.255.3 | 65101 | default | -| 192.168.255.4 | 65101 | default | -| 192.168.255.5 | 65102 | default | -| 192.168.255.6 | 65102 | default | +| Neighbor | Remote AS | VRF | Shutdown | Send-community | Maximum-routes | Allowas-in | BFD | RIB Pre-Policy Retain | +| -------- | --------- | --- | -------- | -------------- | -------------- | ---------- | --- | --------------------- | +| 172.31.255.1 | 65101 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.5 | 65101 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.9 | 65102 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.13 | 65102 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 192.168.255.3 | 65101 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.4 | 65101 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.5 | 65102 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.6 | 65102 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | ### Router BGP EVPN Address Family -#### Router BGP EVPN MAC-VRFs +#### EVPN Peer Groups -#### Router BGP EVPN VRFs +| Peer Group | Activate | +| ---------- | -------- | +| EVPN-OVERLAY-PEERS | True | ### Router BGP Device Configuration @@ -463,7 +460,7 @@ router bgp 65001 | -------- | ---------- | ---------- | | 1200 | 1200 | 3 | -### Router BFD Multihop Device Configuration +### Router BFD Device Configuration ```eos ! diff --git a/inventory/documentation/devices/DC1-SPINE2.md b/inventory/documentation/devices/DC1-SPINE2.md index 448f8b80..bd036a67 100644 --- a/inventory/documentation/devices/DC1-SPINE2.md +++ b/inventory/documentation/devices/DC1-SPINE2.md @@ -1,6 +1,5 @@ # DC1-SPINE2 # Table of Contents - - [Management](#management) - [Management Interfaces](#management-interfaces) @@ -38,7 +37,6 @@ - [VRF Instances Device Configuration](#vrf-instances-device-configuration) - [Quality Of Service](#quality-of-service) - # Management ## Management Interfaces @@ -114,9 +112,9 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ### Management API HTTP Summary -| HTTP | HTTPS | -| ---------- | ---------- | -| default | true | +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | - | ### Management API VRF Access @@ -124,7 +122,6 @@ ntp server vrf MGMT 1.fr.pool.ntp.org | -------- | -------- | -------- | | MGMT | - | - | - ### Management API HTTP Configuration ```eos @@ -166,14 +163,14 @@ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAW | CV Compression | CloudVision Servers | VRF | Authentication | Smash Excludes | Ingest Exclude | Bypass AAA | | -------------- | ------------------- | --- | -------------- | -------------- | -------------- | ---------- | -| gzip | 10.255.0.1:9910 | MGMT | - | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | +| gzip | 10.255.0.1:9910 | MGMT | key, | ale,flexCounter,hardware,kni,pulse,strata | /Sysdb/cell/1/agent,/Sysdb/cell/2/agent | False | ### TerminAttr Daemon Device Configuration ```eos ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ``` @@ -183,9 +180,6 @@ daemon TerminAttr STP mode: **none** -### Global Spanning-Tree Settings - - ## Spanning Tree Device Configuration ```eos @@ -306,7 +300,8 @@ service routing protocols model multi-agent | VRF | Routing Enabled | | --- | --------------- | -| default | true|| MGMT | false | +| default | true | +| MGMT | false | ### IP Routing Device Configuration @@ -321,8 +316,8 @@ no ip routing vrf MGMT | VRF | Routing Enabled | | --- | --------------- | -| default | false || MGMT | false | - +| default | false | +| MGMT | false | ## Static Routes @@ -330,7 +325,7 @@ no ip routing vrf MGMT | VRF | Destination Prefix | Next Hop IP | Exit interface | Administrative Distance | Tag | Route Name | Metric | | --- | ------------------ | ----------------------- | ------------------- | ----------------------------- | ----------------- | ----------------------------- | -------------- | -| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | +| MGMT | 0.0.0.0/0 | 10.255.0.1 | - | 1 | - | - | - | ### Static Routes Device Configuration @@ -364,7 +359,7 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 | Address Family | evpn | | Next-hop unchanged | True | | Source | Loopback0 | -| Bfd | true | +| BFD | True | | Ebgp multihop | 3 | | Send community | all | | Maximum routes | 0 (no limit) | @@ -379,22 +374,24 @@ ip route vrf MGMT 0.0.0.0/0 10.255.0.1 ### BGP Neighbors -| Neighbor | Remote AS | VRF | -| -------- | --------- | --- | -| 172.31.255.3 | 65101 | default | -| 172.31.255.7 | 65101 | default | -| 172.31.255.11 | 65102 | default | -| 172.31.255.15 | 65102 | default | -| 192.168.255.3 | 65101 | default | -| 192.168.255.4 | 65101 | default | -| 192.168.255.5 | 65102 | default | -| 192.168.255.6 | 65102 | default | +| Neighbor | Remote AS | VRF | Shutdown | Send-community | Maximum-routes | Allowas-in | BFD | RIB Pre-Policy Retain | +| -------- | --------- | --- | -------- | -------------- | -------------- | ---------- | --- | --------------------- | +| 172.31.255.3 | 65101 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.7 | 65101 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.11 | 65102 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 172.31.255.15 | 65102 | default | - | Inherited from peer group IPv4-UNDERLAY-PEERS | Inherited from peer group IPv4-UNDERLAY-PEERS | - | - | - | +| 192.168.255.3 | 65101 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.4 | 65101 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.5 | 65102 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | +| 192.168.255.6 | 65102 | default | - | Inherited from peer group EVPN-OVERLAY-PEERS | Inherited from peer group EVPN-OVERLAY-PEERS | - | Inherited from peer group EVPN-OVERLAY-PEERS | - | ### Router BGP EVPN Address Family -#### Router BGP EVPN MAC-VRFs +#### EVPN Peer Groups -#### Router BGP EVPN VRFs +| Peer Group | Activate | +| ---------- | -------- | +| EVPN-OVERLAY-PEERS | True | ### Router BGP Device Configuration @@ -463,7 +460,7 @@ router bgp 65001 | -------- | ---------- | ---------- | | 1200 | 1200 | 3 | -### Router BFD Multihop Device Configuration +### Router BFD Device Configuration ```eos ! diff --git a/inventory/documentation/fabric/DC1_FABRIC-documentation.md b/inventory/documentation/fabric/DC1_FABRIC-documentation.md index 8f431d93..4bbf6618 100644 --- a/inventory/documentation/fabric/DC1_FABRIC-documentation.md +++ b/inventory/documentation/fabric/DC1_FABRIC-documentation.md @@ -1,7 +1,6 @@ # DC1_FABRIC # Table of Contents - - [Fabric Switches and Management IP](#fabric-switches-and-management-ip) - [Fabric Switches with inband Management IP](#fabric-switches-with-inband-management-ip) @@ -14,7 +13,6 @@ - [VTEP Loopback VXLAN Tunnel Source Interfaces (VTEPs Only)](#vtep-loopback-vxlan-tunnel-source-interfaces-vteps-only) - [VTEP Loopback Node allocation](#vtep-loopback-node-allocation) - # Fabric Switches and Management IP | POD | Type | Node | Management IP | Platform | Provisioned in CloudVision | diff --git a/inventory/documentation/fabric/DC1_FABRIC-p2p-links.csv b/inventory/documentation/fabric/DC1_FABRIC-p2p-links.csv index fad6fbcf..8968f0c4 100644 --- a/inventory/documentation/fabric/DC1_FABRIC-p2p-links.csv +++ b/inventory/documentation/fabric/DC1_FABRIC-p2p-links.csv @@ -1,4 +1,4 @@ -Type, Node,Node Interface,Leaf IP Address,Peer Type,Peer Node,Peer Interface,Peer IP Address +Type,Node,Node Interface,Leaf IP Address,Peer Type,Peer Node,Peer Interface,Peer IP Address l3leaf,DC1-LEAF1A,Ethernet1,172.31.255.1/31,spine,DC1-SPINE1,Ethernet1,172.31.255.0/31 l3leaf,DC1-LEAF1A,Ethernet2,172.31.255.3/31,spine,DC1-SPINE2,Ethernet1,172.31.255.2/31 l3leaf,DC1-LEAF1B,Ethernet1,172.31.255.5/31,spine,DC1-SPINE1,Ethernet2,172.31.255.4/31 diff --git a/inventory/documentation/fabric/DC1_FABRIC-topology.csv b/inventory/documentation/fabric/DC1_FABRIC-topology.csv index 16244c49..b9c35c5b 100644 --- a/inventory/documentation/fabric/DC1_FABRIC-topology.csv +++ b/inventory/documentation/fabric/DC1_FABRIC-topology.csv @@ -1,35 +1,35 @@ -Node Type,Node,Node Interface,Peer Type,Peer,Peer Interface -l2leaf,DC1-L2LEAF1A,Ethernet1,l3leaf,DC1-LEAF1A,Ethernet5 -l2leaf,DC1-L2LEAF1A,Ethernet2,l3leaf,DC1-LEAF1B,Ethernet5 -l2leaf,DC1-L2LEAF1A,Ethernet5,server,server01,Eth0 -l2leaf,DC1-L2LEAF2A,Ethernet1,l3leaf,DC1-LEAF2A,Ethernet5 -l2leaf,DC1-L2LEAF2A,Ethernet2,l3leaf,DC1-LEAF2B,Ethernet5 -l2leaf,DC1-L2LEAF2A,Ethernet5,server,server02,Eth0 -l3leaf,DC1-LEAF1A,Ethernet1,spine,DC1-SPINE1,Ethernet1 -l3leaf,DC1-LEAF1A,Ethernet2,spine,DC1-SPINE2,Ethernet1 -l3leaf,DC1-LEAF1A,Ethernet3,mlag_peer,DC1-LEAF1B,Ethernet3 -l3leaf,DC1-LEAF1A,Ethernet4,mlag_peer,DC1-LEAF1B,Ethernet4 -l3leaf,DC1-LEAF1A,Ethernet5,l2leaf,DC1-L2LEAF1A,Ethernet1 -l3leaf,DC1-LEAF1B,Ethernet1,spine,DC1-SPINE1,Ethernet2 -l3leaf,DC1-LEAF1B,Ethernet2,spine,DC1-SPINE2,Ethernet2 -l3leaf,DC1-LEAF1B,Ethernet3,mlag_peer,DC1-LEAF1A,Ethernet3 -l3leaf,DC1-LEAF1B,Ethernet4,mlag_peer,DC1-LEAF1A,Ethernet4 -l3leaf,DC1-LEAF1B,Ethernet5,l2leaf,DC1-L2LEAF1A,Ethernet2 -l3leaf,DC1-LEAF2A,Ethernet1,spine,DC1-SPINE1,Ethernet3 -l3leaf,DC1-LEAF2A,Ethernet2,spine,DC1-SPINE2,Ethernet3 -l3leaf,DC1-LEAF2A,Ethernet3,mlag_peer,DC1-LEAF2B,Ethernet3 -l3leaf,DC1-LEAF2A,Ethernet4,mlag_peer,DC1-LEAF2B,Ethernet4 -l3leaf,DC1-LEAF2A,Ethernet5,l2leaf,DC1-L2LEAF2A,Ethernet1 -l3leaf,DC1-LEAF2B,Ethernet1,spine,DC1-SPINE1,Ethernet4 -l3leaf,DC1-LEAF2B,Ethernet2,spine,DC1-SPINE2,Ethernet4 -l3leaf,DC1-LEAF2B,Ethernet3,mlag_peer,DC1-LEAF2A,Ethernet3 -l3leaf,DC1-LEAF2B,Ethernet4,mlag_peer,DC1-LEAF2A,Ethernet4 -l3leaf,DC1-LEAF2B,Ethernet5,l2leaf,DC1-L2LEAF2A,Ethernet2 -spine,DC1-SPINE1,Ethernet1,l3leaf,DC1-LEAF1A,Ethernet1 -spine,DC1-SPINE1,Ethernet2,l3leaf,DC1-LEAF1B,Ethernet1 -spine,DC1-SPINE1,Ethernet3,l3leaf,DC1-LEAF2A,Ethernet1 -spine,DC1-SPINE1,Ethernet4,l3leaf,DC1-LEAF2B,Ethernet1 -spine,DC1-SPINE2,Ethernet1,l3leaf,DC1-LEAF1A,Ethernet2 -spine,DC1-SPINE2,Ethernet2,l3leaf,DC1-LEAF1B,Ethernet2 -spine,DC1-SPINE2,Ethernet3,l3leaf,DC1-LEAF2A,Ethernet2 -spine,DC1-SPINE2,Ethernet4,l3leaf,DC1-LEAF2B,Ethernet2 +Node Type,Node,Node Interface,Peer Type,Peer Node,Peer Interface,Node Interface Enabled +l2leaf,DC1-L2LEAF1A,Ethernet1,l3leaf,DC1-LEAF1A,Ethernet5,True +l2leaf,DC1-L2LEAF1A,Ethernet2,l3leaf,DC1-LEAF1B,Ethernet5,True +l2leaf,DC1-L2LEAF1A,Ethernet5,server,server01,Eth0,True +l2leaf,DC1-L2LEAF2A,Ethernet1,l3leaf,DC1-LEAF2A,Ethernet5,True +l2leaf,DC1-L2LEAF2A,Ethernet2,l3leaf,DC1-LEAF2B,Ethernet5,True +l2leaf,DC1-L2LEAF2A,Ethernet5,server,server02,Eth0,True +l3leaf,DC1-LEAF1A,Ethernet1,spine,DC1-SPINE1,Ethernet1,True +l3leaf,DC1-LEAF1A,Ethernet2,spine,DC1-SPINE2,Ethernet1,True +l3leaf,DC1-LEAF1A,Ethernet3,mlag_peer,DC1-LEAF1B,Ethernet3,True +l3leaf,DC1-LEAF1A,Ethernet4,mlag_peer,DC1-LEAF1B,Ethernet4,True +l3leaf,DC1-LEAF1A,Ethernet5,l2leaf,DC1-L2LEAF1A,Ethernet1,True +l3leaf,DC1-LEAF1B,Ethernet1,spine,DC1-SPINE1,Ethernet2,True +l3leaf,DC1-LEAF1B,Ethernet2,spine,DC1-SPINE2,Ethernet2,True +l3leaf,DC1-LEAF1B,Ethernet3,mlag_peer,DC1-LEAF1A,Ethernet3,True +l3leaf,DC1-LEAF1B,Ethernet4,mlag_peer,DC1-LEAF1A,Ethernet4,True +l3leaf,DC1-LEAF1B,Ethernet5,l2leaf,DC1-L2LEAF1A,Ethernet2,True +l3leaf,DC1-LEAF2A,Ethernet1,spine,DC1-SPINE1,Ethernet3,True +l3leaf,DC1-LEAF2A,Ethernet2,spine,DC1-SPINE2,Ethernet3,True +l3leaf,DC1-LEAF2A,Ethernet3,mlag_peer,DC1-LEAF2B,Ethernet3,True +l3leaf,DC1-LEAF2A,Ethernet4,mlag_peer,DC1-LEAF2B,Ethernet4,True +l3leaf,DC1-LEAF2A,Ethernet5,l2leaf,DC1-L2LEAF2A,Ethernet1,True +l3leaf,DC1-LEAF2B,Ethernet1,spine,DC1-SPINE1,Ethernet4,True +l3leaf,DC1-LEAF2B,Ethernet2,spine,DC1-SPINE2,Ethernet4,True +l3leaf,DC1-LEAF2B,Ethernet3,mlag_peer,DC1-LEAF2A,Ethernet3,True +l3leaf,DC1-LEAF2B,Ethernet4,mlag_peer,DC1-LEAF2A,Ethernet4,True +l3leaf,DC1-LEAF2B,Ethernet5,l2leaf,DC1-L2LEAF2A,Ethernet2,True +spine,DC1-SPINE1,Ethernet1,l3leaf,DC1-LEAF1A,Ethernet1,True +spine,DC1-SPINE1,Ethernet2,l3leaf,DC1-LEAF1B,Ethernet1,True +spine,DC1-SPINE1,Ethernet3,l3leaf,DC1-LEAF2A,Ethernet1,True +spine,DC1-SPINE1,Ethernet4,l3leaf,DC1-LEAF2B,Ethernet1,True +spine,DC1-SPINE2,Ethernet1,l3leaf,DC1-LEAF1A,Ethernet2,True +spine,DC1-SPINE2,Ethernet2,l3leaf,DC1-LEAF1B,Ethernet2,True +spine,DC1-SPINE2,Ethernet3,l3leaf,DC1-LEAF2A,Ethernet2,True +spine,DC1-SPINE2,Ethernet4,l3leaf,DC1-LEAF2B,Ethernet2,True diff --git a/inventory/intended/configs/DC1-L2LEAF1A.cfg b/inventory/intended/configs/DC1-L2LEAF1A.cfg index 465a3146..197aca23 100644 --- a/inventory/intended/configs/DC1-L2LEAF1A.cfg +++ b/inventory/intended/configs/DC1-L2LEAF1A.cfg @@ -1,7 +1,7 @@ !RANCID-CONTENT-TYPE: arista ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ! vlan internal order ascending range 1006 1199 @@ -21,8 +21,8 @@ ntp server vrf MGMT 1.fr.pool.ntp.org spanning-tree mode mstp spanning-tree mst 0 priority 16384 ! -no aaa root no enable password +no aaa root ! username admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ @@ -71,9 +71,9 @@ interface Ethernet2 interface Ethernet5 description server01_Eth0 no shutdown - switchport switchport access vlan 110 switchport mode access + switchport ! interface Management1 description oob_management diff --git a/inventory/intended/configs/DC1-L2LEAF2A.cfg b/inventory/intended/configs/DC1-L2LEAF2A.cfg index 52a85eb8..1549cf11 100644 --- a/inventory/intended/configs/DC1-L2LEAF2A.cfg +++ b/inventory/intended/configs/DC1-L2LEAF2A.cfg @@ -1,7 +1,7 @@ !RANCID-CONTENT-TYPE: arista ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ! vlan internal order ascending range 1006 1199 @@ -21,8 +21,8 @@ ntp server vrf MGMT 1.fr.pool.ntp.org spanning-tree mode mstp spanning-tree mst 0 priority 16384 ! -no aaa root no enable password +no aaa root ! username admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ @@ -71,9 +71,9 @@ interface Ethernet2 interface Ethernet5 description server02_Eth0 no shutdown - switchport switchport access vlan 110 switchport mode access + switchport ! interface Management1 description oob_management diff --git a/inventory/intended/configs/DC1-LEAF1A.cfg b/inventory/intended/configs/DC1-LEAF1A.cfg index 9b265171..4b0b63c6 100644 --- a/inventory/intended/configs/DC1-LEAF1A.cfg +++ b/inventory/intended/configs/DC1-LEAF1A.cfg @@ -1,7 +1,7 @@ !RANCID-CONTENT-TYPE: arista ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ! vlan internal order ascending range 1006 1199 @@ -22,8 +22,8 @@ spanning-tree mode mstp no spanning-tree vlan-id 4093-4094 spanning-tree mst 0 priority 16384 ! -no aaa root no enable password +no aaa root ! username admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ @@ -475,6 +475,7 @@ router bgp 65101 neighbor MLAG-IPv4-UNDERLAY-PEER peer group neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65101 neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self + neighbor MLAG-IPv4-UNDERLAY-PEER description DC1-LEAF1B neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ== neighbor MLAG-IPv4-UNDERLAY-PEER send-community neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000 diff --git a/inventory/intended/configs/DC1-LEAF1B.cfg b/inventory/intended/configs/DC1-LEAF1B.cfg index ced0b9a8..2959284d 100644 --- a/inventory/intended/configs/DC1-LEAF1B.cfg +++ b/inventory/intended/configs/DC1-LEAF1B.cfg @@ -1,7 +1,7 @@ !RANCID-CONTENT-TYPE: arista ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ! vlan internal order ascending range 1006 1199 @@ -22,8 +22,8 @@ spanning-tree mode mstp no spanning-tree vlan-id 4093-4094 spanning-tree mst 0 priority 16384 ! -no aaa root no enable password +no aaa root ! username admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ @@ -475,6 +475,7 @@ router bgp 65101 neighbor MLAG-IPv4-UNDERLAY-PEER peer group neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65101 neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self + neighbor MLAG-IPv4-UNDERLAY-PEER description DC1-LEAF1A neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ== neighbor MLAG-IPv4-UNDERLAY-PEER send-community neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000 diff --git a/inventory/intended/configs/DC1-LEAF2A.cfg b/inventory/intended/configs/DC1-LEAF2A.cfg index ada0dd79..c22c9fe1 100644 --- a/inventory/intended/configs/DC1-LEAF2A.cfg +++ b/inventory/intended/configs/DC1-LEAF2A.cfg @@ -1,7 +1,7 @@ !RANCID-CONTENT-TYPE: arista ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ! vlan internal order ascending range 1006 1199 @@ -22,8 +22,8 @@ spanning-tree mode mstp no spanning-tree vlan-id 4093-4094 spanning-tree mst 0 priority 16384 ! -no aaa root no enable password +no aaa root ! username admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ @@ -475,6 +475,7 @@ router bgp 65102 neighbor MLAG-IPv4-UNDERLAY-PEER peer group neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65102 neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self + neighbor MLAG-IPv4-UNDERLAY-PEER description DC1-LEAF2B neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ== neighbor MLAG-IPv4-UNDERLAY-PEER send-community neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000 diff --git a/inventory/intended/configs/DC1-LEAF2B.cfg b/inventory/intended/configs/DC1-LEAF2B.cfg index 178d1df4..08f1567e 100644 --- a/inventory/intended/configs/DC1-LEAF2B.cfg +++ b/inventory/intended/configs/DC1-LEAF2B.cfg @@ -1,7 +1,7 @@ !RANCID-CONTENT-TYPE: arista ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ! vlan internal order ascending range 1006 1199 @@ -22,8 +22,8 @@ spanning-tree mode mstp no spanning-tree vlan-id 4093-4094 spanning-tree mst 0 priority 16384 ! -no aaa root no enable password +no aaa root ! username admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ @@ -475,6 +475,7 @@ router bgp 65102 neighbor MLAG-IPv4-UNDERLAY-PEER peer group neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65102 neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self + neighbor MLAG-IPv4-UNDERLAY-PEER description DC1-LEAF2A neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ== neighbor MLAG-IPv4-UNDERLAY-PEER send-community neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000 diff --git a/inventory/intended/configs/DC1-SPINE1.cfg b/inventory/intended/configs/DC1-SPINE1.cfg index f76715fe..aa12906f 100644 --- a/inventory/intended/configs/DC1-SPINE1.cfg +++ b/inventory/intended/configs/DC1-SPINE1.cfg @@ -1,7 +1,7 @@ !RANCID-CONTENT-TYPE: arista ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ! vlan internal order ascending range 1006 1199 @@ -20,8 +20,8 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ! spanning-tree mode none ! -no aaa root no enable password +no aaa root ! username admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ diff --git a/inventory/intended/configs/DC1-SPINE2.cfg b/inventory/intended/configs/DC1-SPINE2.cfg index d8a47a98..ecd14a47 100644 --- a/inventory/intended/configs/DC1-SPINE2.cfg +++ b/inventory/intended/configs/DC1-SPINE2.cfg @@ -1,7 +1,7 @@ !RANCID-CONTENT-TYPE: arista ! daemon TerminAttr - exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs + exec /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs no shutdown ! vlan internal order ascending range 1006 1199 @@ -20,8 +20,8 @@ ntp server vrf MGMT 1.fr.pool.ntp.org ! spanning-tree mode none ! -no aaa root no enable password +no aaa root ! username admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ diff --git a/inventory/intended/structured_configs/DC1-L2LEAF1A-debug-vars.yml b/inventory/intended/structured_configs/DC1-L2LEAF1A-debug-vars.yml deleted file mode 100644 index 9752ea51..00000000 --- a/inventory/intended/structured_configs/DC1-L2LEAF1A-debug-vars.yml +++ /dev/null @@ -1,736 +0,0 @@ -ansible_connection: httpapi -ansible_network_os: eos -ansible_user: ansible -ansible_ssh_pass: ansible -ansible_become: true -ansible_become_method: enable -ansible_httpapi_use_ssl: true -ansible_httpapi_validate_certs: false -type: l2leaf -local_users: - admin: - privilege: 15 - role: network-admin - sha512_password: $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 - cvpadmin: - privilege: 15 - role: network-admin - sha512_password: $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj. - ansible: - privilege: 15 - role: network-admin - sha512_password: $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ -cvp_instance_ip: 10.255.0.1 -cvp_ingestauth_key: '' -mgmt_interface: Management1 -mgmt_interface_vrf: MGMT -mgmt_gateway: 10.255.0.1 -name_servers: -- 192.168.2.1 -- 8.8.8.8 -custom_structured_configuration_ntp: - local_interface: - name: Management1 - vrf: MGMT - servers: - - name: 0.fr.pool.ntp.org - preferred: true - vrf: MGMT - - name: 1.fr.pool.ntp.org - vrf: MGMT -fabric_name: DC1_FABRIC -vxlan_vlan_aware_bundles: true -bgp_peer_groups: - IPv4_UNDERLAY_PEERS: - password: AQQvKeimxJu+uGQ/yYvv9w== - EVPN_OVERLAY_PEERS: - password: q+VNViP5i4rVjW1cxFv2wA== - MLAG_IPv4_UNDERLAY_PEER: - password: vnEaG8gMeQf3d3cN6PktXQ== -spine: - defaults: - platform: vEOS-LAB - bgp_as: 65001 - loopback_ipv4_pool: 192.168.255.0/24 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - nodes: - DC1-SPINE1: - id: 1 - mgmt_ip: 10.255.0.11/24 - DC1-SPINE2: - id: 2 - mgmt_ip: 10.255.0.12/24 -l3leaf: - defaults: - platform: vEOS-LAB - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_ipv4_pool: 172.31.255.0/24 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - node_groups: - DC1_LEAF1: - bgp_as: 65101 - nodes: - DC1-LEAF1A: - id: 1 - mgmt_ip: 10.255.0.13/24 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - DC1-LEAF1B: - id: 2 - mgmt_ip: 10.255.0.14/24 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - DC1_LEAF2: - bgp_as: 65102 - nodes: - DC1-LEAF2A: - id: 3 - mgmt_ip: 10.255.0.15/24 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - DC1-LEAF2B: - id: 4 - mgmt_ip: 10.255.0.16/24 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 -l2leaf: - defaults: - platform: vEOS-LAB - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - mlag: false - node_groups: - DC1_L2LEAF1: - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF1A: - id: 5 - mgmt_ip: 10.255.0.17/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - DC1_L2LEAF2: - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF2A: - id: 7 - mgmt_ip: 10.255.0.18/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 -p2p_uplinks_mtu: 1500 -bfd_multihop: - interval: 1200 - min_rx: 1200 - multiplier: 3 -port_profiles: - TENANT_A_B: - mode: trunk - vlans: 110-111,210-211 - TENANT_A: - mode: access - vlans: '110' - TENANT_B: - mode: trunk - vlans: 210-211 -servers: - server01: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF1A - profile: TENANT_A - server02: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF2A - profile: TENANT_A -tenants: - Tenant_A: - mac_vrf_vni_base: 10000 - vrfs: - Tenant_A_OP_Zone: - vrf_vni: 10 - vtep_diagnostic: - loopback: 100 - loopback_ip_range: 10.255.1.0/24 - svis: - 110: - name: Tenant_A_OP_Zone_1 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.10.1/24 - 111: - vni_override: 50111 - name: Tenant_A_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.11.1/24 - 112: - vni_override: 50112 - name: Tenant_A_OP_Zone_3 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.12.254/24 - Tenant_A_WEB_Zone: - vrf_vni: 11 - svis: - 120: - name: Tenant_A_WEB_Zone_1 - tags: - - web - - erp1 - enabled: true - ip_subnet: 10.1.20.0/24 - 121: - name: Tenant_A_WEBZone_2 - tags: - - web - enabled: true - ip_address_virtual: 10.1.21.1/24 - Tenant_A_APP_Zone: - vrf_vni: 12 - svis: - 130: - name: Tenant_A_APP_Zone_1 - tags: - - app - - erp1 - enabled: true - ip_subnet: 10.1.30.0/24 - 131: - name: Tenant_A_APP_Zone_2 - tags: - - app - enabled: true - ip_address_virtual: 10.1.31.254/24 - Tenant_A_DB_Zone: - vrf_vni: 13 - svis: - 140: - name: Tenant_A_DB_BZone_1 - tags: - - db - - erp1 - enabled: true - ip_address_virtual: 10.1.40.1/24 - 141: - name: Tenant_A_DB_Zone_2 - tags: - - db - enabled: true - ip_address_virtual: 10.1.41.1/24 - Tenant_A_WAN_Zone: - vrf_vni: 14 - svis: - 150: - name: Tenant_A_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.1.40.1/24 - l2vlans: - 160: - vni_override: 55160 - name: Tenant_A_VMOTION - tags: - - vmotion - 161: - name: Tenant_A_NFS - tags: - - nfs - Tenant_B: - mac_vrf_vni_base: 20000 - vrfs: - Tenant_B_OP_Zone: - vrf_vni: 20 - svis: - 210: - name: Tenant_B_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.2.10.0/24 - 211: - name: Tenant_B_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.2.11.1/24 - Tenant_B_WAN_Zone: - vrf_vni: 21 - svis: - 250: - name: Tenant_B_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.2.50.1/24 - Tenant_C: - mac_vrf_vni_base: 30000 - vrfs: - Tenant_C_OP_Zone: - vrf_vni: 30 - svis: - 310: - name: Tenant_C_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.3.10.0/24 - 311: - name: Tenant_C_OP_Zone_2 - tags: - - opzone - enabled: true - ip_subnet: 10.3.11.1/24 - Tenant_C_WAN_Zone: - vrf_vni: 31 - svis: - 350: - name: Tenant_C_WAN_Zone_1 - tags: - - wan - enabled: true - ip_subnet: 10.3.50.1/24 -inventory_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -inventory_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory -ansible_host: 10.255.0.17 -inventory_hostname: DC1-L2LEAF1A -inventory_hostname_short: DC1-L2LEAF1A -group_names: -- DC1 -- DC1_FABRIC -- DC1_L2LEAF1 -- DC1_L2LEAFS -- DC1_SERVERS -- DC1_TENANTS_NETWORKS -ansible_facts: - switch: - type: l2leaf - node_type_key: l2leaf - connected_endpoints: true - default_evpn_role: none - mlag_support: true - network_services_l2: true - network_services_l3: false - underlay_router: false - uplink_type: port-channel - vtep: false - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_L2LEAF1 - id: 5 - mgmt_ip: 10.255.0.17/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - Tenant_A - filter_tags: - - opzone - - web - - app - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: [] - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - topology: - links: - Ethernet1: - peer: DC1-LEAF1A - peer_interface: Ethernet5 - peer_type: l3leaf - type: underlay_l2 - channel_description: DC1_LEAF1 - channel_group_id: 1 - peer_channel_group_id: 5 - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - Ethernet2: - peer: DC1-LEAF1B - peer_interface: Ethernet5 - peer_type: l3leaf - type: underlay_l2 - channel_description: DC1_LEAF1 - channel_group_id: 1 - peer_channel_group_id: 5 - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - peers: - - DC1-LEAF1A - - DC1-LEAF1B - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 -switch: - type: l2leaf - node_type_key: l2leaf - connected_endpoints: true - default_evpn_role: none - mlag_support: true - network_services_l2: true - network_services_l3: false - underlay_router: false - uplink_type: port-channel - vtep: false - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_L2LEAF1 - id: 5 - mgmt_ip: 10.255.0.17/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - Tenant_A - filter_tags: - - opzone - - web - - app - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: [] - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 -topology: - links: - Ethernet1: - peer: DC1-LEAF1A - peer_interface: Ethernet5 - peer_type: l3leaf - type: underlay_l2 - channel_description: DC1_LEAF1 - channel_group_id: 1 - peer_channel_group_id: 5 - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - Ethernet2: - peer: DC1-LEAF1B - peer_interface: Ethernet5 - peer_type: l3leaf - type: underlay_l2 - channel_description: DC1_LEAF1 - channel_group_id: 1 - peer_channel_group_id: 5 - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - peers: - - DC1-LEAF1A - - DC1-LEAF1B - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 -playbook_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/playbooks -ansible_playbook_python: /Users/tgrimonet/.pyenv/versions/3.9.7/envs/arista-avd-demo/bin/python3.9 -ansible_config_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/ansible.cfg -groups: - all: - - cv_ztp - - cv_server - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - ungrouped: [] - CVP: - - cv_ztp - - cv_server - DC1: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-L2LEAF1A - - DC1-L2LEAF2A - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_FABRIC: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SPINES: - - DC1-SPINE1 - - DC1-SPINE2 - DC1_L3LEAFS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_LEAF1: - - DC1-LEAF1A - - DC1-LEAF1B - DC1_LEAF2: - - DC1-LEAF2A - - DC1-LEAF2B - DC1_L2LEAFS: - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_L2LEAF1: - - DC1-L2LEAF1A - DC1_L2LEAF2: - - DC1-L2LEAF2A - DC1_TENANTS_NETWORKS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SERVERS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A -omit: __omit_place_holder__977da4f00604c643da39a9f2175c10b09f0b2380 -ansible_version: - string: 2.10.14 - full: 2.10.14 - major: 2 - minor: 10 - revision: 14 -ansible_check_mode: false -ansible_diff_mode: false -ansible_forks: 5 -ansible_inventory_sources: -- /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -ansible_skip_tags: [] -ansible_run_tags: -- build -ansible_verbosity: 0 diff --git a/inventory/intended/structured_configs/DC1-L2LEAF1A.yml b/inventory/intended/structured_configs/DC1-L2LEAF1A.yml index a4079755..e0b64ab4 100644 --- a/inventory/intended/structured_configs/DC1-L2LEAF1A.yml +++ b/inventory/intended/structured_configs/DC1-L2LEAF1A.yml @@ -9,6 +9,7 @@ daemon_terminattr: - 10.255.0.1:9910 cvauth: method: key + key: '' cvvrf: MGMT smashexcludes: ale,flexCounter,hardware,kni,pulse,strata ingestexclude: /Sysdb/cell/1/agent,/Sysdb/cell/2/agent diff --git a/inventory/intended/structured_configs/DC1-L2LEAF2A-debug-vars.yml b/inventory/intended/structured_configs/DC1-L2LEAF2A-debug-vars.yml deleted file mode 100644 index c9c4dc98..00000000 --- a/inventory/intended/structured_configs/DC1-L2LEAF2A-debug-vars.yml +++ /dev/null @@ -1,736 +0,0 @@ -ansible_connection: httpapi -ansible_network_os: eos -ansible_user: ansible -ansible_ssh_pass: ansible -ansible_become: true -ansible_become_method: enable -ansible_httpapi_use_ssl: true -ansible_httpapi_validate_certs: false -type: l2leaf -local_users: - admin: - privilege: 15 - role: network-admin - sha512_password: $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 - cvpadmin: - privilege: 15 - role: network-admin - sha512_password: $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj. - ansible: - privilege: 15 - role: network-admin - sha512_password: $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ -cvp_instance_ip: 10.255.0.1 -cvp_ingestauth_key: '' -mgmt_interface: Management1 -mgmt_interface_vrf: MGMT -mgmt_gateway: 10.255.0.1 -name_servers: -- 192.168.2.1 -- 8.8.8.8 -custom_structured_configuration_ntp: - local_interface: - name: Management1 - vrf: MGMT - servers: - - name: 0.fr.pool.ntp.org - preferred: true - vrf: MGMT - - name: 1.fr.pool.ntp.org - vrf: MGMT -fabric_name: DC1_FABRIC -vxlan_vlan_aware_bundles: true -bgp_peer_groups: - IPv4_UNDERLAY_PEERS: - password: AQQvKeimxJu+uGQ/yYvv9w== - EVPN_OVERLAY_PEERS: - password: q+VNViP5i4rVjW1cxFv2wA== - MLAG_IPv4_UNDERLAY_PEER: - password: vnEaG8gMeQf3d3cN6PktXQ== -spine: - defaults: - platform: vEOS-LAB - bgp_as: 65001 - loopback_ipv4_pool: 192.168.255.0/24 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - nodes: - DC1-SPINE1: - id: 1 - mgmt_ip: 10.255.0.11/24 - DC1-SPINE2: - id: 2 - mgmt_ip: 10.255.0.12/24 -l3leaf: - defaults: - platform: vEOS-LAB - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_ipv4_pool: 172.31.255.0/24 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - node_groups: - DC1_LEAF1: - bgp_as: 65101 - nodes: - DC1-LEAF1A: - id: 1 - mgmt_ip: 10.255.0.13/24 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - DC1-LEAF1B: - id: 2 - mgmt_ip: 10.255.0.14/24 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - DC1_LEAF2: - bgp_as: 65102 - nodes: - DC1-LEAF2A: - id: 3 - mgmt_ip: 10.255.0.15/24 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - DC1-LEAF2B: - id: 4 - mgmt_ip: 10.255.0.16/24 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 -l2leaf: - defaults: - platform: vEOS-LAB - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - mlag: false - node_groups: - DC1_L2LEAF1: - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF1A: - id: 5 - mgmt_ip: 10.255.0.17/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - DC1_L2LEAF2: - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF2A: - id: 7 - mgmt_ip: 10.255.0.18/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 -p2p_uplinks_mtu: 1500 -bfd_multihop: - interval: 1200 - min_rx: 1200 - multiplier: 3 -port_profiles: - TENANT_A_B: - mode: trunk - vlans: 110-111,210-211 - TENANT_A: - mode: access - vlans: '110' - TENANT_B: - mode: trunk - vlans: 210-211 -servers: - server01: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF1A - profile: TENANT_A - server02: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF2A - profile: TENANT_A -tenants: - Tenant_A: - mac_vrf_vni_base: 10000 - vrfs: - Tenant_A_OP_Zone: - vrf_vni: 10 - vtep_diagnostic: - loopback: 100 - loopback_ip_range: 10.255.1.0/24 - svis: - 110: - name: Tenant_A_OP_Zone_1 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.10.1/24 - 111: - vni_override: 50111 - name: Tenant_A_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.11.1/24 - 112: - vni_override: 50112 - name: Tenant_A_OP_Zone_3 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.12.254/24 - Tenant_A_WEB_Zone: - vrf_vni: 11 - svis: - 120: - name: Tenant_A_WEB_Zone_1 - tags: - - web - - erp1 - enabled: true - ip_subnet: 10.1.20.0/24 - 121: - name: Tenant_A_WEBZone_2 - tags: - - web - enabled: true - ip_address_virtual: 10.1.21.1/24 - Tenant_A_APP_Zone: - vrf_vni: 12 - svis: - 130: - name: Tenant_A_APP_Zone_1 - tags: - - app - - erp1 - enabled: true - ip_subnet: 10.1.30.0/24 - 131: - name: Tenant_A_APP_Zone_2 - tags: - - app - enabled: true - ip_address_virtual: 10.1.31.254/24 - Tenant_A_DB_Zone: - vrf_vni: 13 - svis: - 140: - name: Tenant_A_DB_BZone_1 - tags: - - db - - erp1 - enabled: true - ip_address_virtual: 10.1.40.1/24 - 141: - name: Tenant_A_DB_Zone_2 - tags: - - db - enabled: true - ip_address_virtual: 10.1.41.1/24 - Tenant_A_WAN_Zone: - vrf_vni: 14 - svis: - 150: - name: Tenant_A_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.1.40.1/24 - l2vlans: - 160: - vni_override: 55160 - name: Tenant_A_VMOTION - tags: - - vmotion - 161: - name: Tenant_A_NFS - tags: - - nfs - Tenant_B: - mac_vrf_vni_base: 20000 - vrfs: - Tenant_B_OP_Zone: - vrf_vni: 20 - svis: - 210: - name: Tenant_B_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.2.10.0/24 - 211: - name: Tenant_B_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.2.11.1/24 - Tenant_B_WAN_Zone: - vrf_vni: 21 - svis: - 250: - name: Tenant_B_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.2.50.1/24 - Tenant_C: - mac_vrf_vni_base: 30000 - vrfs: - Tenant_C_OP_Zone: - vrf_vni: 30 - svis: - 310: - name: Tenant_C_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.3.10.0/24 - 311: - name: Tenant_C_OP_Zone_2 - tags: - - opzone - enabled: true - ip_subnet: 10.3.11.1/24 - Tenant_C_WAN_Zone: - vrf_vni: 31 - svis: - 350: - name: Tenant_C_WAN_Zone_1 - tags: - - wan - enabled: true - ip_subnet: 10.3.50.1/24 -inventory_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -inventory_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory -ansible_host: 10.255.0.18 -inventory_hostname: DC1-L2LEAF2A -inventory_hostname_short: DC1-L2LEAF2A -group_names: -- DC1 -- DC1_FABRIC -- DC1_L2LEAF2 -- DC1_L2LEAFS -- DC1_SERVERS -- DC1_TENANTS_NETWORKS -ansible_facts: - switch: - type: l2leaf - node_type_key: l2leaf - connected_endpoints: true - default_evpn_role: none - mlag_support: true - network_services_l2: true - network_services_l3: false - underlay_router: false - uplink_type: port-channel - vtep: false - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_L2LEAF2 - id: 7 - mgmt_ip: 10.255.0.18/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - Tenant_A - filter_tags: - - opzone - - web - - app - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: [] - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - topology: - links: - Ethernet1: - peer: DC1-LEAF2A - peer_interface: Ethernet5 - peer_type: l3leaf - type: underlay_l2 - channel_description: DC1_LEAF2 - channel_group_id: 1 - peer_channel_group_id: 5 - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - Ethernet2: - peer: DC1-LEAF2B - peer_interface: Ethernet5 - peer_type: l3leaf - type: underlay_l2 - channel_description: DC1_LEAF2 - channel_group_id: 1 - peer_channel_group_id: 5 - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - peers: - - DC1-LEAF2A - - DC1-LEAF2B - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 -switch: - type: l2leaf - node_type_key: l2leaf - connected_endpoints: true - default_evpn_role: none - mlag_support: true - network_services_l2: true - network_services_l3: false - underlay_router: false - uplink_type: port-channel - vtep: false - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_L2LEAF2 - id: 7 - mgmt_ip: 10.255.0.18/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - Tenant_A - filter_tags: - - opzone - - web - - app - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: [] - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 -topology: - links: - Ethernet1: - peer: DC1-LEAF2A - peer_interface: Ethernet5 - peer_type: l3leaf - type: underlay_l2 - channel_description: DC1_LEAF2 - channel_group_id: 1 - peer_channel_group_id: 5 - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - Ethernet2: - peer: DC1-LEAF2B - peer_interface: Ethernet5 - peer_type: l3leaf - type: underlay_l2 - channel_description: DC1_LEAF2 - channel_group_id: 1 - peer_channel_group_id: 5 - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 - peers: - - DC1-LEAF2A - - DC1-LEAF2B - vlans: - - 130 - - 131 - - 110 - - 111 - - 112 - - 120 - - 121 -playbook_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/playbooks -ansible_playbook_python: /Users/tgrimonet/.pyenv/versions/3.9.7/envs/arista-avd-demo/bin/python3.9 -ansible_config_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/ansible.cfg -groups: - all: - - cv_ztp - - cv_server - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - ungrouped: [] - CVP: - - cv_ztp - - cv_server - DC1: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-L2LEAF1A - - DC1-L2LEAF2A - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_FABRIC: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SPINES: - - DC1-SPINE1 - - DC1-SPINE2 - DC1_L3LEAFS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_LEAF1: - - DC1-LEAF1A - - DC1-LEAF1B - DC1_LEAF2: - - DC1-LEAF2A - - DC1-LEAF2B - DC1_L2LEAFS: - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_L2LEAF1: - - DC1-L2LEAF1A - DC1_L2LEAF2: - - DC1-L2LEAF2A - DC1_TENANTS_NETWORKS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SERVERS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A -omit: __omit_place_holder__977da4f00604c643da39a9f2175c10b09f0b2380 -ansible_version: - string: 2.10.14 - full: 2.10.14 - major: 2 - minor: 10 - revision: 14 -ansible_check_mode: false -ansible_diff_mode: false -ansible_forks: 5 -ansible_inventory_sources: -- /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -ansible_skip_tags: [] -ansible_run_tags: -- build -ansible_verbosity: 0 diff --git a/inventory/intended/structured_configs/DC1-L2LEAF2A.yml b/inventory/intended/structured_configs/DC1-L2LEAF2A.yml index 4140ad92..b0c3224c 100644 --- a/inventory/intended/structured_configs/DC1-L2LEAF2A.yml +++ b/inventory/intended/structured_configs/DC1-L2LEAF2A.yml @@ -9,6 +9,7 @@ daemon_terminattr: - 10.255.0.1:9910 cvauth: method: key + key: '' cvvrf: MGMT smashexcludes: ale,flexCounter,hardware,kni,pulse,strata ingestexclude: /Sysdb/cell/1/agent,/Sysdb/cell/2/agent diff --git a/inventory/intended/structured_configs/DC1-LEAF1A-debug-vars.yml b/inventory/intended/structured_configs/DC1-LEAF1A-debug-vars.yml deleted file mode 100644 index e7330892..00000000 --- a/inventory/intended/structured_configs/DC1-LEAF1A-debug-vars.yml +++ /dev/null @@ -1,872 +0,0 @@ -ansible_connection: httpapi -ansible_network_os: eos -ansible_user: ansible -ansible_ssh_pass: ansible -ansible_become: true -ansible_become_method: enable -ansible_httpapi_use_ssl: true -ansible_httpapi_validate_certs: false -type: l3leaf -local_users: - admin: - privilege: 15 - role: network-admin - sha512_password: $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 - cvpadmin: - privilege: 15 - role: network-admin - sha512_password: $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj. - ansible: - privilege: 15 - role: network-admin - sha512_password: $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ -cvp_instance_ip: 10.255.0.1 -cvp_ingestauth_key: '' -mgmt_interface: Management1 -mgmt_interface_vrf: MGMT -mgmt_gateway: 10.255.0.1 -name_servers: -- 192.168.2.1 -- 8.8.8.8 -custom_structured_configuration_ntp: - local_interface: - name: Management1 - vrf: MGMT - servers: - - name: 0.fr.pool.ntp.org - preferred: true - vrf: MGMT - - name: 1.fr.pool.ntp.org - vrf: MGMT -fabric_name: DC1_FABRIC -vxlan_vlan_aware_bundles: true -bgp_peer_groups: - IPv4_UNDERLAY_PEERS: - password: AQQvKeimxJu+uGQ/yYvv9w== - EVPN_OVERLAY_PEERS: - password: q+VNViP5i4rVjW1cxFv2wA== - MLAG_IPv4_UNDERLAY_PEER: - password: vnEaG8gMeQf3d3cN6PktXQ== -spine: - defaults: - platform: vEOS-LAB - bgp_as: 65001 - loopback_ipv4_pool: 192.168.255.0/24 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - nodes: - DC1-SPINE1: - id: 1 - mgmt_ip: 10.255.0.11/24 - DC1-SPINE2: - id: 2 - mgmt_ip: 10.255.0.12/24 -l3leaf: - defaults: - platform: vEOS-LAB - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_ipv4_pool: 172.31.255.0/24 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - node_groups: - DC1_LEAF1: - bgp_as: 65101 - nodes: - DC1-LEAF1A: - id: 1 - mgmt_ip: 10.255.0.13/24 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - DC1-LEAF1B: - id: 2 - mgmt_ip: 10.255.0.14/24 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - DC1_LEAF2: - bgp_as: 65102 - nodes: - DC1-LEAF2A: - id: 3 - mgmt_ip: 10.255.0.15/24 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - DC1-LEAF2B: - id: 4 - mgmt_ip: 10.255.0.16/24 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 -l2leaf: - defaults: - platform: vEOS-LAB - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - mlag: false - node_groups: - DC1_L2LEAF1: - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF1A: - id: 5 - mgmt_ip: 10.255.0.17/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - DC1_L2LEAF2: - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF2A: - id: 7 - mgmt_ip: 10.255.0.18/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 -p2p_uplinks_mtu: 1500 -bfd_multihop: - interval: 1200 - min_rx: 1200 - multiplier: 3 -port_profiles: - TENANT_A_B: - mode: trunk - vlans: 110-111,210-211 - TENANT_A: - mode: access - vlans: '110' - TENANT_B: - mode: trunk - vlans: 210-211 -servers: - server01: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF1A - profile: TENANT_A - server02: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF2A - profile: TENANT_A -tenants: - Tenant_A: - mac_vrf_vni_base: 10000 - vrfs: - Tenant_A_OP_Zone: - vrf_vni: 10 - vtep_diagnostic: - loopback: 100 - loopback_ip_range: 10.255.1.0/24 - svis: - 110: - name: Tenant_A_OP_Zone_1 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.10.1/24 - 111: - vni_override: 50111 - name: Tenant_A_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.11.1/24 - 112: - vni_override: 50112 - name: Tenant_A_OP_Zone_3 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.12.254/24 - Tenant_A_WEB_Zone: - vrf_vni: 11 - svis: - 120: - name: Tenant_A_WEB_Zone_1 - tags: - - web - - erp1 - enabled: true - ip_subnet: 10.1.20.0/24 - 121: - name: Tenant_A_WEBZone_2 - tags: - - web - enabled: true - ip_address_virtual: 10.1.21.1/24 - Tenant_A_APP_Zone: - vrf_vni: 12 - svis: - 130: - name: Tenant_A_APP_Zone_1 - tags: - - app - - erp1 - enabled: true - ip_subnet: 10.1.30.0/24 - 131: - name: Tenant_A_APP_Zone_2 - tags: - - app - enabled: true - ip_address_virtual: 10.1.31.254/24 - Tenant_A_DB_Zone: - vrf_vni: 13 - svis: - 140: - name: Tenant_A_DB_BZone_1 - tags: - - db - - erp1 - enabled: true - ip_address_virtual: 10.1.40.1/24 - 141: - name: Tenant_A_DB_Zone_2 - tags: - - db - enabled: true - ip_address_virtual: 10.1.41.1/24 - Tenant_A_WAN_Zone: - vrf_vni: 14 - svis: - 150: - name: Tenant_A_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.1.40.1/24 - l2vlans: - 160: - vni_override: 55160 - name: Tenant_A_VMOTION - tags: - - vmotion - 161: - name: Tenant_A_NFS - tags: - - nfs - Tenant_B: - mac_vrf_vni_base: 20000 - vrfs: - Tenant_B_OP_Zone: - vrf_vni: 20 - svis: - 210: - name: Tenant_B_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.2.10.0/24 - 211: - name: Tenant_B_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.2.11.1/24 - Tenant_B_WAN_Zone: - vrf_vni: 21 - svis: - 250: - name: Tenant_B_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.2.50.1/24 - Tenant_C: - mac_vrf_vni_base: 30000 - vrfs: - Tenant_C_OP_Zone: - vrf_vni: 30 - svis: - 310: - name: Tenant_C_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.3.10.0/24 - 311: - name: Tenant_C_OP_Zone_2 - tags: - - opzone - enabled: true - ip_subnet: 10.3.11.1/24 - Tenant_C_WAN_Zone: - vrf_vni: 31 - svis: - 350: - name: Tenant_C_WAN_Zone_1 - tags: - - wan - enabled: true - ip_subnet: 10.3.50.1/24 -inventory_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -inventory_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory -ansible_host: 10.255.0.13 -inventory_hostname: DC1-LEAF1A -inventory_hostname_short: DC1-LEAF1A -group_names: -- DC1 -- DC1_FABRIC -- DC1_L3LEAFS -- DC1_LEAF1 -- DC1_SERVERS -- DC1_TENANTS_NETWORKS -ansible_facts: - switch: - type: l3leaf - node_type_key: l3leaf - connected_endpoints: true - default_evpn_role: client - mlag_support: true - network_services_l2: true - network_services_l3: true - underlay_router: true - uplink_type: p2p - vtep: true - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_LEAF1 - id: 1 - mgmt_ip: 10.255.0.13/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - all - filter_tags: - - all - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - virtual_router_mac_address: 00:1c:73:00:dc:01 - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - uplink_ipv4_pool: 172.31.255.0/24 - router_id: 192.168.255.3 - bgp_as: '65101' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: client - evpn_route_servers: - - DC1-SPINE1 - - DC1-SPINE2 - mlag: true - mlag_group: DC1_LEAF1 - mlag_ibgp_origin_incomplete: true - mlag_peer_vlan: 4094 - mlag_dual_primary_detection: false - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_l3: true - mlag_peer_l3_vlan: 4093 - mlag_role: primary - mlag_peer: DC1-LEAF1B - mlag_peer_mgmt_ip: 10.255.0.14 - mlag_ip: 10.255.252.0 - mlag_peer_ip: 10.255.252.1 - mlag_l3_ip: 10.255.251.0 - mlag_peer_l3_ip: 10.255.251.1 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - vtep_loopback: Loopback1 - vtep_ip: 192.168.254.3 - evpn_services_l2_only: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_DB_Zone: - svis: - - 140 - - 141 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WAN_Zone: - svis: - - 150 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: - - 160 - - 161 - Tenant_B: - vrfs: - Tenant_B_OP_Zone: - svis: - - 210 - - 211 - Tenant_B_WAN_Zone: - svis: - - 250 - l2vlans: [] - Tenant_C: - vrfs: - Tenant_C_OP_Zone: - svis: - - 310 - - 311 - Tenant_C_WAN_Zone: - svis: - - 350 - l2vlans: [] - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 - topology: - links: - Ethernet1: - peer: DC1-SPINE1 - peer_interface: Ethernet1 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.1 - peer_ip_address: 172.31.255.0 - Ethernet2: - peer: DC1-SPINE2 - peer_interface: Ethernet1 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.3 - peer_ip_address: 172.31.255.2 - peers: - - DC1-SPINE1 - - DC1-SPINE2 - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -switch: - type: l3leaf - node_type_key: l3leaf - connected_endpoints: true - default_evpn_role: client - mlag_support: true - network_services_l2: true - network_services_l3: true - underlay_router: true - uplink_type: p2p - vtep: true - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_LEAF1 - id: 1 - mgmt_ip: 10.255.0.13/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - all - filter_tags: - - all - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - virtual_router_mac_address: 00:1c:73:00:dc:01 - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - uplink_ipv4_pool: 172.31.255.0/24 - router_id: 192.168.255.3 - bgp_as: '65101' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: client - evpn_route_servers: - - DC1-SPINE1 - - DC1-SPINE2 - mlag: true - mlag_group: DC1_LEAF1 - mlag_ibgp_origin_incomplete: true - mlag_peer_vlan: 4094 - mlag_dual_primary_detection: false - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_l3: true - mlag_peer_l3_vlan: 4093 - mlag_role: primary - mlag_peer: DC1-LEAF1B - mlag_peer_mgmt_ip: 10.255.0.14 - mlag_ip: 10.255.252.0 - mlag_peer_ip: 10.255.252.1 - mlag_l3_ip: 10.255.251.0 - mlag_peer_l3_ip: 10.255.251.1 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - vtep_loopback: Loopback1 - vtep_ip: 192.168.254.3 - evpn_services_l2_only: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_DB_Zone: - svis: - - 140 - - 141 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WAN_Zone: - svis: - - 150 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: - - 160 - - 161 - Tenant_B: - vrfs: - Tenant_B_OP_Zone: - svis: - - 210 - - 211 - Tenant_B_WAN_Zone: - svis: - - 250 - l2vlans: [] - Tenant_C: - vrfs: - Tenant_C_OP_Zone: - svis: - - 310 - - 311 - Tenant_C_WAN_Zone: - svis: - - 350 - l2vlans: [] - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -topology: - links: - Ethernet1: - peer: DC1-SPINE1 - peer_interface: Ethernet1 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.1 - peer_ip_address: 172.31.255.0 - Ethernet2: - peer: DC1-SPINE2 - peer_interface: Ethernet1 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.3 - peer_ip_address: 172.31.255.2 - peers: - - DC1-SPINE1 - - DC1-SPINE2 - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -playbook_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/playbooks -ansible_playbook_python: /Users/tgrimonet/.pyenv/versions/3.9.7/envs/arista-avd-demo/bin/python3.9 -ansible_config_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/ansible.cfg -groups: - all: - - cv_ztp - - cv_server - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - ungrouped: [] - CVP: - - cv_ztp - - cv_server - DC1: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-L2LEAF1A - - DC1-L2LEAF2A - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_FABRIC: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SPINES: - - DC1-SPINE1 - - DC1-SPINE2 - DC1_L3LEAFS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_LEAF1: - - DC1-LEAF1A - - DC1-LEAF1B - DC1_LEAF2: - - DC1-LEAF2A - - DC1-LEAF2B - DC1_L2LEAFS: - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_L2LEAF1: - - DC1-L2LEAF1A - DC1_L2LEAF2: - - DC1-L2LEAF2A - DC1_TENANTS_NETWORKS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SERVERS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A -omit: __omit_place_holder__977da4f00604c643da39a9f2175c10b09f0b2380 -ansible_version: - string: 2.10.14 - full: 2.10.14 - major: 2 - minor: 10 - revision: 14 -ansible_check_mode: false -ansible_diff_mode: false -ansible_forks: 5 -ansible_inventory_sources: -- /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -ansible_skip_tags: [] -ansible_run_tags: -- build -ansible_verbosity: 0 diff --git a/inventory/intended/structured_configs/DC1-LEAF1A.yml b/inventory/intended/structured_configs/DC1-LEAF1A.yml index f75c5c94..a424f1ec 100644 --- a/inventory/intended/structured_configs/DC1-LEAF1A.yml +++ b/inventory/intended/structured_configs/DC1-LEAF1A.yml @@ -12,6 +12,7 @@ router_bgp: type: ipv4 remote_as: '65101' next_hop_self: true + description: DC1-LEAF1B password: vnEaG8gMeQf3d3cN6PktXQ== maximum_routes: 12000 send_community: all @@ -302,6 +303,7 @@ daemon_terminattr: - 10.255.0.1:9910 cvauth: method: key + key: '' cvvrf: MGMT smashexcludes: ale,flexCounter,hardware,kni,pulse,strata ingestexclude: /Sysdb/cell/1/agent,/Sysdb/cell/2/agent @@ -777,8 +779,7 @@ route_maps: type: permit set: - origin incomplete - description: Make routes learned over MLAG Peer-link less preferred on spines - to ensure optimal routing + description: Make routes learned over MLAG Peer-link less preferred on spines to ensure optimal routing RM-CONN-2-BGP: sequence_numbers: 10: @@ -813,6 +814,7 @@ router_bfd: multiplier: 3 ip_igmp_snooping: globally_enabled: true +ip_virtual_router_mac_address: 00:1c:73:00:dc:01 vxlan_interface: Vxlan1: description: DC1-LEAF1A_VTEP @@ -879,7 +881,6 @@ vxlan_interface: virtual_source_nat_vrfs: Tenant_A_OP_Zone: ip_address: 10.255.1.3 -ip_virtual_router_mac_address: 00:1c:73:00:dc:01 ntp: local_interface: name: Management1 diff --git a/inventory/intended/structured_configs/DC1-LEAF1B-debug-vars.yml b/inventory/intended/structured_configs/DC1-LEAF1B-debug-vars.yml deleted file mode 100644 index e93e5dba..00000000 --- a/inventory/intended/structured_configs/DC1-LEAF1B-debug-vars.yml +++ /dev/null @@ -1,872 +0,0 @@ -ansible_connection: httpapi -ansible_network_os: eos -ansible_user: ansible -ansible_ssh_pass: ansible -ansible_become: true -ansible_become_method: enable -ansible_httpapi_use_ssl: true -ansible_httpapi_validate_certs: false -type: l3leaf -local_users: - admin: - privilege: 15 - role: network-admin - sha512_password: $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 - cvpadmin: - privilege: 15 - role: network-admin - sha512_password: $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj. - ansible: - privilege: 15 - role: network-admin - sha512_password: $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ -cvp_instance_ip: 10.255.0.1 -cvp_ingestauth_key: '' -mgmt_interface: Management1 -mgmt_interface_vrf: MGMT -mgmt_gateway: 10.255.0.1 -name_servers: -- 192.168.2.1 -- 8.8.8.8 -custom_structured_configuration_ntp: - local_interface: - name: Management1 - vrf: MGMT - servers: - - name: 0.fr.pool.ntp.org - preferred: true - vrf: MGMT - - name: 1.fr.pool.ntp.org - vrf: MGMT -fabric_name: DC1_FABRIC -vxlan_vlan_aware_bundles: true -bgp_peer_groups: - IPv4_UNDERLAY_PEERS: - password: AQQvKeimxJu+uGQ/yYvv9w== - EVPN_OVERLAY_PEERS: - password: q+VNViP5i4rVjW1cxFv2wA== - MLAG_IPv4_UNDERLAY_PEER: - password: vnEaG8gMeQf3d3cN6PktXQ== -spine: - defaults: - platform: vEOS-LAB - bgp_as: 65001 - loopback_ipv4_pool: 192.168.255.0/24 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - nodes: - DC1-SPINE1: - id: 1 - mgmt_ip: 10.255.0.11/24 - DC1-SPINE2: - id: 2 - mgmt_ip: 10.255.0.12/24 -l3leaf: - defaults: - platform: vEOS-LAB - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_ipv4_pool: 172.31.255.0/24 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - node_groups: - DC1_LEAF1: - bgp_as: 65101 - nodes: - DC1-LEAF1A: - id: 1 - mgmt_ip: 10.255.0.13/24 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - DC1-LEAF1B: - id: 2 - mgmt_ip: 10.255.0.14/24 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - DC1_LEAF2: - bgp_as: 65102 - nodes: - DC1-LEAF2A: - id: 3 - mgmt_ip: 10.255.0.15/24 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - DC1-LEAF2B: - id: 4 - mgmt_ip: 10.255.0.16/24 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 -l2leaf: - defaults: - platform: vEOS-LAB - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - mlag: false - node_groups: - DC1_L2LEAF1: - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF1A: - id: 5 - mgmt_ip: 10.255.0.17/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - DC1_L2LEAF2: - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF2A: - id: 7 - mgmt_ip: 10.255.0.18/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 -p2p_uplinks_mtu: 1500 -bfd_multihop: - interval: 1200 - min_rx: 1200 - multiplier: 3 -port_profiles: - TENANT_A_B: - mode: trunk - vlans: 110-111,210-211 - TENANT_A: - mode: access - vlans: '110' - TENANT_B: - mode: trunk - vlans: 210-211 -servers: - server01: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF1A - profile: TENANT_A - server02: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF2A - profile: TENANT_A -tenants: - Tenant_A: - mac_vrf_vni_base: 10000 - vrfs: - Tenant_A_OP_Zone: - vrf_vni: 10 - vtep_diagnostic: - loopback: 100 - loopback_ip_range: 10.255.1.0/24 - svis: - 110: - name: Tenant_A_OP_Zone_1 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.10.1/24 - 111: - vni_override: 50111 - name: Tenant_A_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.11.1/24 - 112: - vni_override: 50112 - name: Tenant_A_OP_Zone_3 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.12.254/24 - Tenant_A_WEB_Zone: - vrf_vni: 11 - svis: - 120: - name: Tenant_A_WEB_Zone_1 - tags: - - web - - erp1 - enabled: true - ip_subnet: 10.1.20.0/24 - 121: - name: Tenant_A_WEBZone_2 - tags: - - web - enabled: true - ip_address_virtual: 10.1.21.1/24 - Tenant_A_APP_Zone: - vrf_vni: 12 - svis: - 130: - name: Tenant_A_APP_Zone_1 - tags: - - app - - erp1 - enabled: true - ip_subnet: 10.1.30.0/24 - 131: - name: Tenant_A_APP_Zone_2 - tags: - - app - enabled: true - ip_address_virtual: 10.1.31.254/24 - Tenant_A_DB_Zone: - vrf_vni: 13 - svis: - 140: - name: Tenant_A_DB_BZone_1 - tags: - - db - - erp1 - enabled: true - ip_address_virtual: 10.1.40.1/24 - 141: - name: Tenant_A_DB_Zone_2 - tags: - - db - enabled: true - ip_address_virtual: 10.1.41.1/24 - Tenant_A_WAN_Zone: - vrf_vni: 14 - svis: - 150: - name: Tenant_A_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.1.40.1/24 - l2vlans: - 160: - vni_override: 55160 - name: Tenant_A_VMOTION - tags: - - vmotion - 161: - name: Tenant_A_NFS - tags: - - nfs - Tenant_B: - mac_vrf_vni_base: 20000 - vrfs: - Tenant_B_OP_Zone: - vrf_vni: 20 - svis: - 210: - name: Tenant_B_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.2.10.0/24 - 211: - name: Tenant_B_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.2.11.1/24 - Tenant_B_WAN_Zone: - vrf_vni: 21 - svis: - 250: - name: Tenant_B_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.2.50.1/24 - Tenant_C: - mac_vrf_vni_base: 30000 - vrfs: - Tenant_C_OP_Zone: - vrf_vni: 30 - svis: - 310: - name: Tenant_C_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.3.10.0/24 - 311: - name: Tenant_C_OP_Zone_2 - tags: - - opzone - enabled: true - ip_subnet: 10.3.11.1/24 - Tenant_C_WAN_Zone: - vrf_vni: 31 - svis: - 350: - name: Tenant_C_WAN_Zone_1 - tags: - - wan - enabled: true - ip_subnet: 10.3.50.1/24 -inventory_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -inventory_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory -ansible_host: 10.255.0.14 -inventory_hostname: DC1-LEAF1B -inventory_hostname_short: DC1-LEAF1B -group_names: -- DC1 -- DC1_FABRIC -- DC1_L3LEAFS -- DC1_LEAF1 -- DC1_SERVERS -- DC1_TENANTS_NETWORKS -ansible_facts: - switch: - type: l3leaf - node_type_key: l3leaf - connected_endpoints: true - default_evpn_role: client - mlag_support: true - network_services_l2: true - network_services_l3: true - underlay_router: true - uplink_type: p2p - vtep: true - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_LEAF1 - id: 2 - mgmt_ip: 10.255.0.14/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - all - filter_tags: - - all - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - virtual_router_mac_address: 00:1c:73:00:dc:01 - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - uplink_ipv4_pool: 172.31.255.0/24 - router_id: 192.168.255.4 - bgp_as: '65101' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: client - evpn_route_servers: - - DC1-SPINE1 - - DC1-SPINE2 - mlag: true - mlag_group: DC1_LEAF1 - mlag_ibgp_origin_incomplete: true - mlag_peer_vlan: 4094 - mlag_dual_primary_detection: false - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_l3: true - mlag_peer_l3_vlan: 4093 - mlag_role: secondary - mlag_peer: DC1-LEAF1A - mlag_peer_mgmt_ip: 10.255.0.13 - mlag_ip: 10.255.252.1 - mlag_peer_ip: 10.255.252.0 - mlag_l3_ip: 10.255.251.1 - mlag_peer_l3_ip: 10.255.251.0 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - vtep_loopback: Loopback1 - vtep_ip: 192.168.254.3 - evpn_services_l2_only: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_DB_Zone: - svis: - - 140 - - 141 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WAN_Zone: - svis: - - 150 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: - - 160 - - 161 - Tenant_B: - vrfs: - Tenant_B_OP_Zone: - svis: - - 210 - - 211 - Tenant_B_WAN_Zone: - svis: - - 250 - l2vlans: [] - Tenant_C: - vrfs: - Tenant_C_OP_Zone: - svis: - - 310 - - 311 - Tenant_C_WAN_Zone: - svis: - - 350 - l2vlans: [] - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 - topology: - links: - Ethernet1: - peer: DC1-SPINE1 - peer_interface: Ethernet2 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.5 - peer_ip_address: 172.31.255.4 - Ethernet2: - peer: DC1-SPINE2 - peer_interface: Ethernet2 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.7 - peer_ip_address: 172.31.255.6 - peers: - - DC1-SPINE1 - - DC1-SPINE2 - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -switch: - type: l3leaf - node_type_key: l3leaf - connected_endpoints: true - default_evpn_role: client - mlag_support: true - network_services_l2: true - network_services_l3: true - underlay_router: true - uplink_type: p2p - vtep: true - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_LEAF1 - id: 2 - mgmt_ip: 10.255.0.14/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - all - filter_tags: - - all - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - virtual_router_mac_address: 00:1c:73:00:dc:01 - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - uplink_ipv4_pool: 172.31.255.0/24 - router_id: 192.168.255.4 - bgp_as: '65101' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: client - evpn_route_servers: - - DC1-SPINE1 - - DC1-SPINE2 - mlag: true - mlag_group: DC1_LEAF1 - mlag_ibgp_origin_incomplete: true - mlag_peer_vlan: 4094 - mlag_dual_primary_detection: false - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_l3: true - mlag_peer_l3_vlan: 4093 - mlag_role: secondary - mlag_peer: DC1-LEAF1A - mlag_peer_mgmt_ip: 10.255.0.13 - mlag_ip: 10.255.252.1 - mlag_peer_ip: 10.255.252.0 - mlag_l3_ip: 10.255.251.1 - mlag_peer_l3_ip: 10.255.251.0 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - vtep_loopback: Loopback1 - vtep_ip: 192.168.254.3 - evpn_services_l2_only: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_DB_Zone: - svis: - - 140 - - 141 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WAN_Zone: - svis: - - 150 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: - - 160 - - 161 - Tenant_B: - vrfs: - Tenant_B_OP_Zone: - svis: - - 210 - - 211 - Tenant_B_WAN_Zone: - svis: - - 250 - l2vlans: [] - Tenant_C: - vrfs: - Tenant_C_OP_Zone: - svis: - - 310 - - 311 - Tenant_C_WAN_Zone: - svis: - - 350 - l2vlans: [] - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -topology: - links: - Ethernet1: - peer: DC1-SPINE1 - peer_interface: Ethernet2 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.5 - peer_ip_address: 172.31.255.4 - Ethernet2: - peer: DC1-SPINE2 - peer_interface: Ethernet2 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.7 - peer_ip_address: 172.31.255.6 - peers: - - DC1-SPINE1 - - DC1-SPINE2 - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -playbook_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/playbooks -ansible_playbook_python: /Users/tgrimonet/.pyenv/versions/3.9.7/envs/arista-avd-demo/bin/python3.9 -ansible_config_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/ansible.cfg -groups: - all: - - cv_ztp - - cv_server - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - ungrouped: [] - CVP: - - cv_ztp - - cv_server - DC1: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-L2LEAF1A - - DC1-L2LEAF2A - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_FABRIC: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SPINES: - - DC1-SPINE1 - - DC1-SPINE2 - DC1_L3LEAFS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_LEAF1: - - DC1-LEAF1A - - DC1-LEAF1B - DC1_LEAF2: - - DC1-LEAF2A - - DC1-LEAF2B - DC1_L2LEAFS: - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_L2LEAF1: - - DC1-L2LEAF1A - DC1_L2LEAF2: - - DC1-L2LEAF2A - DC1_TENANTS_NETWORKS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SERVERS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A -omit: __omit_place_holder__977da4f00604c643da39a9f2175c10b09f0b2380 -ansible_version: - string: 2.10.14 - full: 2.10.14 - major: 2 - minor: 10 - revision: 14 -ansible_check_mode: false -ansible_diff_mode: false -ansible_forks: 5 -ansible_inventory_sources: -- /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -ansible_skip_tags: [] -ansible_run_tags: -- build -ansible_verbosity: 0 diff --git a/inventory/intended/structured_configs/DC1-LEAF1B.yml b/inventory/intended/structured_configs/DC1-LEAF1B.yml index e8bfc2f6..1ff7a74b 100644 --- a/inventory/intended/structured_configs/DC1-LEAF1B.yml +++ b/inventory/intended/structured_configs/DC1-LEAF1B.yml @@ -12,6 +12,7 @@ router_bgp: type: ipv4 remote_as: '65101' next_hop_self: true + description: DC1-LEAF1A password: vnEaG8gMeQf3d3cN6PktXQ== maximum_routes: 12000 send_community: all @@ -302,6 +303,7 @@ daemon_terminattr: - 10.255.0.1:9910 cvauth: method: key + key: '' cvvrf: MGMT smashexcludes: ale,flexCounter,hardware,kni,pulse,strata ingestexclude: /Sysdb/cell/1/agent,/Sysdb/cell/2/agent @@ -777,8 +779,7 @@ route_maps: type: permit set: - origin incomplete - description: Make routes learned over MLAG Peer-link less preferred on spines - to ensure optimal routing + description: Make routes learned over MLAG Peer-link less preferred on spines to ensure optimal routing RM-CONN-2-BGP: sequence_numbers: 10: @@ -813,6 +814,7 @@ router_bfd: multiplier: 3 ip_igmp_snooping: globally_enabled: true +ip_virtual_router_mac_address: 00:1c:73:00:dc:01 vxlan_interface: Vxlan1: description: DC1-LEAF1B_VTEP @@ -879,7 +881,6 @@ vxlan_interface: virtual_source_nat_vrfs: Tenant_A_OP_Zone: ip_address: 10.255.1.4 -ip_virtual_router_mac_address: 00:1c:73:00:dc:01 ntp: local_interface: name: Management1 diff --git a/inventory/intended/structured_configs/DC1-LEAF2A-debug-vars.yml b/inventory/intended/structured_configs/DC1-LEAF2A-debug-vars.yml deleted file mode 100644 index f265a25d..00000000 --- a/inventory/intended/structured_configs/DC1-LEAF2A-debug-vars.yml +++ /dev/null @@ -1,872 +0,0 @@ -ansible_connection: httpapi -ansible_network_os: eos -ansible_user: ansible -ansible_ssh_pass: ansible -ansible_become: true -ansible_become_method: enable -ansible_httpapi_use_ssl: true -ansible_httpapi_validate_certs: false -type: l3leaf -local_users: - admin: - privilege: 15 - role: network-admin - sha512_password: $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 - cvpadmin: - privilege: 15 - role: network-admin - sha512_password: $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj. - ansible: - privilege: 15 - role: network-admin - sha512_password: $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ -cvp_instance_ip: 10.255.0.1 -cvp_ingestauth_key: '' -mgmt_interface: Management1 -mgmt_interface_vrf: MGMT -mgmt_gateway: 10.255.0.1 -name_servers: -- 192.168.2.1 -- 8.8.8.8 -custom_structured_configuration_ntp: - local_interface: - name: Management1 - vrf: MGMT - servers: - - name: 0.fr.pool.ntp.org - preferred: true - vrf: MGMT - - name: 1.fr.pool.ntp.org - vrf: MGMT -fabric_name: DC1_FABRIC -vxlan_vlan_aware_bundles: true -bgp_peer_groups: - IPv4_UNDERLAY_PEERS: - password: AQQvKeimxJu+uGQ/yYvv9w== - EVPN_OVERLAY_PEERS: - password: q+VNViP5i4rVjW1cxFv2wA== - MLAG_IPv4_UNDERLAY_PEER: - password: vnEaG8gMeQf3d3cN6PktXQ== -spine: - defaults: - platform: vEOS-LAB - bgp_as: 65001 - loopback_ipv4_pool: 192.168.255.0/24 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - nodes: - DC1-SPINE1: - id: 1 - mgmt_ip: 10.255.0.11/24 - DC1-SPINE2: - id: 2 - mgmt_ip: 10.255.0.12/24 -l3leaf: - defaults: - platform: vEOS-LAB - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_ipv4_pool: 172.31.255.0/24 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - node_groups: - DC1_LEAF1: - bgp_as: 65101 - nodes: - DC1-LEAF1A: - id: 1 - mgmt_ip: 10.255.0.13/24 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - DC1-LEAF1B: - id: 2 - mgmt_ip: 10.255.0.14/24 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - DC1_LEAF2: - bgp_as: 65102 - nodes: - DC1-LEAF2A: - id: 3 - mgmt_ip: 10.255.0.15/24 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - DC1-LEAF2B: - id: 4 - mgmt_ip: 10.255.0.16/24 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 -l2leaf: - defaults: - platform: vEOS-LAB - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - mlag: false - node_groups: - DC1_L2LEAF1: - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF1A: - id: 5 - mgmt_ip: 10.255.0.17/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - DC1_L2LEAF2: - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF2A: - id: 7 - mgmt_ip: 10.255.0.18/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 -p2p_uplinks_mtu: 1500 -bfd_multihop: - interval: 1200 - min_rx: 1200 - multiplier: 3 -port_profiles: - TENANT_A_B: - mode: trunk - vlans: 110-111,210-211 - TENANT_A: - mode: access - vlans: '110' - TENANT_B: - mode: trunk - vlans: 210-211 -servers: - server01: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF1A - profile: TENANT_A - server02: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF2A - profile: TENANT_A -tenants: - Tenant_A: - mac_vrf_vni_base: 10000 - vrfs: - Tenant_A_OP_Zone: - vrf_vni: 10 - vtep_diagnostic: - loopback: 100 - loopback_ip_range: 10.255.1.0/24 - svis: - 110: - name: Tenant_A_OP_Zone_1 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.10.1/24 - 111: - vni_override: 50111 - name: Tenant_A_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.11.1/24 - 112: - vni_override: 50112 - name: Tenant_A_OP_Zone_3 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.12.254/24 - Tenant_A_WEB_Zone: - vrf_vni: 11 - svis: - 120: - name: Tenant_A_WEB_Zone_1 - tags: - - web - - erp1 - enabled: true - ip_subnet: 10.1.20.0/24 - 121: - name: Tenant_A_WEBZone_2 - tags: - - web - enabled: true - ip_address_virtual: 10.1.21.1/24 - Tenant_A_APP_Zone: - vrf_vni: 12 - svis: - 130: - name: Tenant_A_APP_Zone_1 - tags: - - app - - erp1 - enabled: true - ip_subnet: 10.1.30.0/24 - 131: - name: Tenant_A_APP_Zone_2 - tags: - - app - enabled: true - ip_address_virtual: 10.1.31.254/24 - Tenant_A_DB_Zone: - vrf_vni: 13 - svis: - 140: - name: Tenant_A_DB_BZone_1 - tags: - - db - - erp1 - enabled: true - ip_address_virtual: 10.1.40.1/24 - 141: - name: Tenant_A_DB_Zone_2 - tags: - - db - enabled: true - ip_address_virtual: 10.1.41.1/24 - Tenant_A_WAN_Zone: - vrf_vni: 14 - svis: - 150: - name: Tenant_A_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.1.40.1/24 - l2vlans: - 160: - vni_override: 55160 - name: Tenant_A_VMOTION - tags: - - vmotion - 161: - name: Tenant_A_NFS - tags: - - nfs - Tenant_B: - mac_vrf_vni_base: 20000 - vrfs: - Tenant_B_OP_Zone: - vrf_vni: 20 - svis: - 210: - name: Tenant_B_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.2.10.0/24 - 211: - name: Tenant_B_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.2.11.1/24 - Tenant_B_WAN_Zone: - vrf_vni: 21 - svis: - 250: - name: Tenant_B_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.2.50.1/24 - Tenant_C: - mac_vrf_vni_base: 30000 - vrfs: - Tenant_C_OP_Zone: - vrf_vni: 30 - svis: - 310: - name: Tenant_C_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.3.10.0/24 - 311: - name: Tenant_C_OP_Zone_2 - tags: - - opzone - enabled: true - ip_subnet: 10.3.11.1/24 - Tenant_C_WAN_Zone: - vrf_vni: 31 - svis: - 350: - name: Tenant_C_WAN_Zone_1 - tags: - - wan - enabled: true - ip_subnet: 10.3.50.1/24 -inventory_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -inventory_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory -ansible_host: 10.255.0.15 -inventory_hostname: DC1-LEAF2A -inventory_hostname_short: DC1-LEAF2A -group_names: -- DC1 -- DC1_FABRIC -- DC1_L3LEAFS -- DC1_LEAF2 -- DC1_SERVERS -- DC1_TENANTS_NETWORKS -ansible_facts: - switch: - type: l3leaf - node_type_key: l3leaf - connected_endpoints: true - default_evpn_role: client - mlag_support: true - network_services_l2: true - network_services_l3: true - underlay_router: true - uplink_type: p2p - vtep: true - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_LEAF2 - id: 3 - mgmt_ip: 10.255.0.15/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - all - filter_tags: - - all - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - virtual_router_mac_address: 00:1c:73:00:dc:01 - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - uplink_ipv4_pool: 172.31.255.0/24 - router_id: 192.168.255.5 - bgp_as: '65102' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: client - evpn_route_servers: - - DC1-SPINE1 - - DC1-SPINE2 - mlag: true - mlag_group: DC1_LEAF2 - mlag_ibgp_origin_incomplete: true - mlag_peer_vlan: 4094 - mlag_dual_primary_detection: false - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_l3: true - mlag_peer_l3_vlan: 4093 - mlag_role: primary - mlag_peer: DC1-LEAF2B - mlag_peer_mgmt_ip: 10.255.0.16 - mlag_ip: 10.255.252.4 - mlag_peer_ip: 10.255.252.5 - mlag_l3_ip: 10.255.251.4 - mlag_peer_l3_ip: 10.255.251.5 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - vtep_loopback: Loopback1 - vtep_ip: 192.168.254.5 - evpn_services_l2_only: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_DB_Zone: - svis: - - 140 - - 141 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WAN_Zone: - svis: - - 150 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: - - 160 - - 161 - Tenant_B: - vrfs: - Tenant_B_OP_Zone: - svis: - - 210 - - 211 - Tenant_B_WAN_Zone: - svis: - - 250 - l2vlans: [] - Tenant_C: - vrfs: - Tenant_C_OP_Zone: - svis: - - 310 - - 311 - Tenant_C_WAN_Zone: - svis: - - 350 - l2vlans: [] - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 - topology: - links: - Ethernet1: - peer: DC1-SPINE1 - peer_interface: Ethernet3 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.9 - peer_ip_address: 172.31.255.8 - Ethernet2: - peer: DC1-SPINE2 - peer_interface: Ethernet3 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.11 - peer_ip_address: 172.31.255.10 - peers: - - DC1-SPINE1 - - DC1-SPINE2 - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -switch: - type: l3leaf - node_type_key: l3leaf - connected_endpoints: true - default_evpn_role: client - mlag_support: true - network_services_l2: true - network_services_l3: true - underlay_router: true - uplink_type: p2p - vtep: true - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_LEAF2 - id: 3 - mgmt_ip: 10.255.0.15/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - all - filter_tags: - - all - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - virtual_router_mac_address: 00:1c:73:00:dc:01 - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - uplink_ipv4_pool: 172.31.255.0/24 - router_id: 192.168.255.5 - bgp_as: '65102' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: client - evpn_route_servers: - - DC1-SPINE1 - - DC1-SPINE2 - mlag: true - mlag_group: DC1_LEAF2 - mlag_ibgp_origin_incomplete: true - mlag_peer_vlan: 4094 - mlag_dual_primary_detection: false - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_l3: true - mlag_peer_l3_vlan: 4093 - mlag_role: primary - mlag_peer: DC1-LEAF2B - mlag_peer_mgmt_ip: 10.255.0.16 - mlag_ip: 10.255.252.4 - mlag_peer_ip: 10.255.252.5 - mlag_l3_ip: 10.255.251.4 - mlag_peer_l3_ip: 10.255.251.5 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - vtep_loopback: Loopback1 - vtep_ip: 192.168.254.5 - evpn_services_l2_only: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_DB_Zone: - svis: - - 140 - - 141 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WAN_Zone: - svis: - - 150 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: - - 160 - - 161 - Tenant_B: - vrfs: - Tenant_B_OP_Zone: - svis: - - 210 - - 211 - Tenant_B_WAN_Zone: - svis: - - 250 - l2vlans: [] - Tenant_C: - vrfs: - Tenant_C_OP_Zone: - svis: - - 310 - - 311 - Tenant_C_WAN_Zone: - svis: - - 350 - l2vlans: [] - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -topology: - links: - Ethernet1: - peer: DC1-SPINE1 - peer_interface: Ethernet3 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.9 - peer_ip_address: 172.31.255.8 - Ethernet2: - peer: DC1-SPINE2 - peer_interface: Ethernet3 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.11 - peer_ip_address: 172.31.255.10 - peers: - - DC1-SPINE1 - - DC1-SPINE2 - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -playbook_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/playbooks -ansible_playbook_python: /Users/tgrimonet/.pyenv/versions/3.9.7/envs/arista-avd-demo/bin/python3.9 -ansible_config_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/ansible.cfg -groups: - all: - - cv_ztp - - cv_server - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - ungrouped: [] - CVP: - - cv_ztp - - cv_server - DC1: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-L2LEAF1A - - DC1-L2LEAF2A - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_FABRIC: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SPINES: - - DC1-SPINE1 - - DC1-SPINE2 - DC1_L3LEAFS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_LEAF1: - - DC1-LEAF1A - - DC1-LEAF1B - DC1_LEAF2: - - DC1-LEAF2A - - DC1-LEAF2B - DC1_L2LEAFS: - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_L2LEAF1: - - DC1-L2LEAF1A - DC1_L2LEAF2: - - DC1-L2LEAF2A - DC1_TENANTS_NETWORKS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SERVERS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A -omit: __omit_place_holder__977da4f00604c643da39a9f2175c10b09f0b2380 -ansible_version: - string: 2.10.14 - full: 2.10.14 - major: 2 - minor: 10 - revision: 14 -ansible_check_mode: false -ansible_diff_mode: false -ansible_forks: 5 -ansible_inventory_sources: -- /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -ansible_skip_tags: [] -ansible_run_tags: -- build -ansible_verbosity: 0 diff --git a/inventory/intended/structured_configs/DC1-LEAF2A.yml b/inventory/intended/structured_configs/DC1-LEAF2A.yml index ea0e2ceb..4e586147 100644 --- a/inventory/intended/structured_configs/DC1-LEAF2A.yml +++ b/inventory/intended/structured_configs/DC1-LEAF2A.yml @@ -12,6 +12,7 @@ router_bgp: type: ipv4 remote_as: '65102' next_hop_self: true + description: DC1-LEAF2B password: vnEaG8gMeQf3d3cN6PktXQ== maximum_routes: 12000 send_community: all @@ -302,6 +303,7 @@ daemon_terminattr: - 10.255.0.1:9910 cvauth: method: key + key: '' cvvrf: MGMT smashexcludes: ale,flexCounter,hardware,kni,pulse,strata ingestexclude: /Sysdb/cell/1/agent,/Sysdb/cell/2/agent @@ -777,8 +779,7 @@ route_maps: type: permit set: - origin incomplete - description: Make routes learned over MLAG Peer-link less preferred on spines - to ensure optimal routing + description: Make routes learned over MLAG Peer-link less preferred on spines to ensure optimal routing RM-CONN-2-BGP: sequence_numbers: 10: @@ -813,6 +814,7 @@ router_bfd: multiplier: 3 ip_igmp_snooping: globally_enabled: true +ip_virtual_router_mac_address: 00:1c:73:00:dc:01 vxlan_interface: Vxlan1: description: DC1-LEAF2A_VTEP @@ -879,7 +881,6 @@ vxlan_interface: virtual_source_nat_vrfs: Tenant_A_OP_Zone: ip_address: 10.255.1.5 -ip_virtual_router_mac_address: 00:1c:73:00:dc:01 ntp: local_interface: name: Management1 diff --git a/inventory/intended/structured_configs/DC1-LEAF2B-debug-vars.yml b/inventory/intended/structured_configs/DC1-LEAF2B-debug-vars.yml deleted file mode 100644 index ad26eebe..00000000 --- a/inventory/intended/structured_configs/DC1-LEAF2B-debug-vars.yml +++ /dev/null @@ -1,872 +0,0 @@ -ansible_connection: httpapi -ansible_network_os: eos -ansible_user: ansible -ansible_ssh_pass: ansible -ansible_become: true -ansible_become_method: enable -ansible_httpapi_use_ssl: true -ansible_httpapi_validate_certs: false -type: l3leaf -local_users: - admin: - privilege: 15 - role: network-admin - sha512_password: $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 - cvpadmin: - privilege: 15 - role: network-admin - sha512_password: $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj. - ansible: - privilege: 15 - role: network-admin - sha512_password: $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ -cvp_instance_ip: 10.255.0.1 -cvp_ingestauth_key: '' -mgmt_interface: Management1 -mgmt_interface_vrf: MGMT -mgmt_gateway: 10.255.0.1 -name_servers: -- 192.168.2.1 -- 8.8.8.8 -custom_structured_configuration_ntp: - local_interface: - name: Management1 - vrf: MGMT - servers: - - name: 0.fr.pool.ntp.org - preferred: true - vrf: MGMT - - name: 1.fr.pool.ntp.org - vrf: MGMT -fabric_name: DC1_FABRIC -vxlan_vlan_aware_bundles: true -bgp_peer_groups: - IPv4_UNDERLAY_PEERS: - password: AQQvKeimxJu+uGQ/yYvv9w== - EVPN_OVERLAY_PEERS: - password: q+VNViP5i4rVjW1cxFv2wA== - MLAG_IPv4_UNDERLAY_PEER: - password: vnEaG8gMeQf3d3cN6PktXQ== -spine: - defaults: - platform: vEOS-LAB - bgp_as: 65001 - loopback_ipv4_pool: 192.168.255.0/24 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - nodes: - DC1-SPINE1: - id: 1 - mgmt_ip: 10.255.0.11/24 - DC1-SPINE2: - id: 2 - mgmt_ip: 10.255.0.12/24 -l3leaf: - defaults: - platform: vEOS-LAB - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_ipv4_pool: 172.31.255.0/24 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - node_groups: - DC1_LEAF1: - bgp_as: 65101 - nodes: - DC1-LEAF1A: - id: 1 - mgmt_ip: 10.255.0.13/24 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - DC1-LEAF1B: - id: 2 - mgmt_ip: 10.255.0.14/24 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - DC1_LEAF2: - bgp_as: 65102 - nodes: - DC1-LEAF2A: - id: 3 - mgmt_ip: 10.255.0.15/24 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - DC1-LEAF2B: - id: 4 - mgmt_ip: 10.255.0.16/24 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 -l2leaf: - defaults: - platform: vEOS-LAB - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - mlag: false - node_groups: - DC1_L2LEAF1: - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF1A: - id: 5 - mgmt_ip: 10.255.0.17/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - DC1_L2LEAF2: - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF2A: - id: 7 - mgmt_ip: 10.255.0.18/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 -p2p_uplinks_mtu: 1500 -bfd_multihop: - interval: 1200 - min_rx: 1200 - multiplier: 3 -port_profiles: - TENANT_A_B: - mode: trunk - vlans: 110-111,210-211 - TENANT_A: - mode: access - vlans: '110' - TENANT_B: - mode: trunk - vlans: 210-211 -servers: - server01: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF1A - profile: TENANT_A - server02: - rack: RackA - adapters: - - type: nic - server_ports: - - Eth0 - switch_ports: - - Ethernet5 - switches: - - DC1-L2LEAF2A - profile: TENANT_A -tenants: - Tenant_A: - mac_vrf_vni_base: 10000 - vrfs: - Tenant_A_OP_Zone: - vrf_vni: 10 - vtep_diagnostic: - loopback: 100 - loopback_ip_range: 10.255.1.0/24 - svis: - 110: - name: Tenant_A_OP_Zone_1 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.10.1/24 - 111: - vni_override: 50111 - name: Tenant_A_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.11.1/24 - 112: - vni_override: 50112 - name: Tenant_A_OP_Zone_3 - tags: - - opzone - enabled: true - ip_address_virtual: 10.1.12.254/24 - Tenant_A_WEB_Zone: - vrf_vni: 11 - svis: - 120: - name: Tenant_A_WEB_Zone_1 - tags: - - web - - erp1 - enabled: true - ip_subnet: 10.1.20.0/24 - 121: - name: Tenant_A_WEBZone_2 - tags: - - web - enabled: true - ip_address_virtual: 10.1.21.1/24 - Tenant_A_APP_Zone: - vrf_vni: 12 - svis: - 130: - name: Tenant_A_APP_Zone_1 - tags: - - app - - erp1 - enabled: true - ip_subnet: 10.1.30.0/24 - 131: - name: Tenant_A_APP_Zone_2 - tags: - - app - enabled: true - ip_address_virtual: 10.1.31.254/24 - Tenant_A_DB_Zone: - vrf_vni: 13 - svis: - 140: - name: Tenant_A_DB_BZone_1 - tags: - - db - - erp1 - enabled: true - ip_address_virtual: 10.1.40.1/24 - 141: - name: Tenant_A_DB_Zone_2 - tags: - - db - enabled: true - ip_address_virtual: 10.1.41.1/24 - Tenant_A_WAN_Zone: - vrf_vni: 14 - svis: - 150: - name: Tenant_A_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.1.40.1/24 - l2vlans: - 160: - vni_override: 55160 - name: Tenant_A_VMOTION - tags: - - vmotion - 161: - name: Tenant_A_NFS - tags: - - nfs - Tenant_B: - mac_vrf_vni_base: 20000 - vrfs: - Tenant_B_OP_Zone: - vrf_vni: 20 - svis: - 210: - name: Tenant_B_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.2.10.0/24 - 211: - name: Tenant_B_OP_Zone_2 - tags: - - opzone - enabled: true - ip_address_virtual: 10.2.11.1/24 - Tenant_B_WAN_Zone: - vrf_vni: 21 - svis: - 250: - name: Tenant_B_WAN_Zone_1 - tags: - - wan - enabled: true - ip_address_virtual: 10.2.50.1/24 - Tenant_C: - mac_vrf_vni_base: 30000 - vrfs: - Tenant_C_OP_Zone: - vrf_vni: 30 - svis: - 310: - name: Tenant_C_OP_Zone_1 - tags: - - opzone - enabled: true - ip_subnet: 10.3.10.0/24 - 311: - name: Tenant_C_OP_Zone_2 - tags: - - opzone - enabled: true - ip_subnet: 10.3.11.1/24 - Tenant_C_WAN_Zone: - vrf_vni: 31 - svis: - 350: - name: Tenant_C_WAN_Zone_1 - tags: - - wan - enabled: true - ip_subnet: 10.3.50.1/24 -inventory_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -inventory_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory -ansible_host: 10.255.0.16 -inventory_hostname: DC1-LEAF2B -inventory_hostname_short: DC1-LEAF2B -group_names: -- DC1 -- DC1_FABRIC -- DC1_L3LEAFS -- DC1_LEAF2 -- DC1_SERVERS -- DC1_TENANTS_NETWORKS -ansible_facts: - switch: - type: l3leaf - node_type_key: l3leaf - connected_endpoints: true - default_evpn_role: client - mlag_support: true - network_services_l2: true - network_services_l3: true - underlay_router: true - uplink_type: p2p - vtep: true - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_LEAF2 - id: 4 - mgmt_ip: 10.255.0.16/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - all - filter_tags: - - all - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - virtual_router_mac_address: 00:1c:73:00:dc:01 - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - uplink_ipv4_pool: 172.31.255.0/24 - router_id: 192.168.255.6 - bgp_as: '65102' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: client - evpn_route_servers: - - DC1-SPINE1 - - DC1-SPINE2 - mlag: true - mlag_group: DC1_LEAF2 - mlag_ibgp_origin_incomplete: true - mlag_peer_vlan: 4094 - mlag_dual_primary_detection: false - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_l3: true - mlag_peer_l3_vlan: 4093 - mlag_role: secondary - mlag_peer: DC1-LEAF2A - mlag_peer_mgmt_ip: 10.255.0.15 - mlag_ip: 10.255.252.5 - mlag_peer_ip: 10.255.252.4 - mlag_l3_ip: 10.255.251.5 - mlag_peer_l3_ip: 10.255.251.4 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - vtep_loopback: Loopback1 - vtep_ip: 192.168.254.5 - evpn_services_l2_only: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_DB_Zone: - svis: - - 140 - - 141 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WAN_Zone: - svis: - - 150 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: - - 160 - - 161 - Tenant_B: - vrfs: - Tenant_B_OP_Zone: - svis: - - 210 - - 211 - Tenant_B_WAN_Zone: - svis: - - 250 - l2vlans: [] - Tenant_C: - vrfs: - Tenant_C_OP_Zone: - svis: - - 310 - - 311 - Tenant_C_WAN_Zone: - svis: - - 350 - l2vlans: [] - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 - topology: - links: - Ethernet1: - peer: DC1-SPINE1 - peer_interface: Ethernet4 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.13 - peer_ip_address: 172.31.255.12 - Ethernet2: - peer: DC1-SPINE2 - peer_interface: Ethernet4 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.15 - peer_ip_address: 172.31.255.14 - peers: - - DC1-SPINE1 - - DC1-SPINE2 - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -switch: - type: l3leaf - node_type_key: l3leaf - connected_endpoints: true - default_evpn_role: client - mlag_support: true - network_services_l2: true - network_services_l3: true - underlay_router: true - uplink_type: p2p - vtep: true - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - group: DC1_LEAF2 - id: 4 - mgmt_ip: 10.255.0.16/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - filter_tenants: - - all - filter_tags: - - all - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - igmp_snooping_enabled: true - virtual_router_mac_address: 00:1c:73:00:dc:01 - max_uplink_switches: 2 - max_parallel_uplinks: 1 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - uplink_ipv4_pool: 172.31.255.0/24 - router_id: 192.168.255.6 - bgp_as: '65102' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: client - evpn_route_servers: - - DC1-SPINE1 - - DC1-SPINE2 - mlag: true - mlag_group: DC1_LEAF2 - mlag_ibgp_origin_incomplete: true - mlag_peer_vlan: 4094 - mlag_dual_primary_detection: false - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_l3: true - mlag_peer_l3_vlan: 4093 - mlag_role: secondary - mlag_peer: DC1-LEAF2A - mlag_peer_mgmt_ip: 10.255.0.15 - mlag_ip: 10.255.252.5 - mlag_peer_ip: 10.255.252.4 - mlag_l3_ip: 10.255.251.5 - mlag_peer_l3_ip: 10.255.251.4 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - vtep_loopback: Loopback1 - vtep_ip: 192.168.254.5 - evpn_services_l2_only: false - tenants: - Tenant_A: - vrfs: - Tenant_A_APP_Zone: - svis: - - 130 - - 131 - Tenant_A_DB_Zone: - svis: - - 140 - - 141 - Tenant_A_OP_Zone: - svis: - - 110 - - 111 - - 112 - Tenant_A_WAN_Zone: - svis: - - 150 - Tenant_A_WEB_Zone: - svis: - - 120 - - 121 - l2vlans: - - 160 - - 161 - Tenant_B: - vrfs: - Tenant_B_OP_Zone: - svis: - - 210 - - 211 - Tenant_B_WAN_Zone: - svis: - - 250 - l2vlans: [] - Tenant_C: - vrfs: - Tenant_C_OP_Zone: - svis: - - 310 - - 311 - Tenant_C_WAN_Zone: - svis: - - 350 - l2vlans: [] - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -topology: - links: - Ethernet1: - peer: DC1-SPINE1 - peer_interface: Ethernet4 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.13 - peer_ip_address: 172.31.255.12 - Ethernet2: - peer: DC1-SPINE2 - peer_interface: Ethernet4 - peer_type: spine - peer_bgp_as: '65001' - type: underlay_p2p - ip_address: 172.31.255.15 - peer_ip_address: 172.31.255.14 - peers: - - DC1-SPINE1 - - DC1-SPINE2 - vlans: - - 130 - - 131 - - 140 - - 141 - - 110 - - 111 - - 112 - - 150 - - 120 - - 121 - - 160 - - 161 - - 210 - - 211 - - 250 - - 310 - - 311 - - 350 -playbook_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/playbooks -ansible_playbook_python: /Users/tgrimonet/.pyenv/versions/3.9.7/envs/arista-avd-demo/bin/python3.9 -ansible_config_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/ansible.cfg -groups: - all: - - cv_ztp - - cv_server - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - ungrouped: [] - CVP: - - cv_ztp - - cv_server - DC1: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-L2LEAF1A - - DC1-L2LEAF2A - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_FABRIC: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SPINES: - - DC1-SPINE1 - - DC1-SPINE2 - DC1_L3LEAFS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_LEAF1: - - DC1-LEAF1A - - DC1-LEAF1B - DC1_LEAF2: - - DC1-LEAF2A - - DC1-LEAF2B - DC1_L2LEAFS: - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_L2LEAF1: - - DC1-L2LEAF1A - DC1_L2LEAF2: - - DC1-L2LEAF2A - DC1_TENANTS_NETWORKS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SERVERS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A -omit: __omit_place_holder__977da4f00604c643da39a9f2175c10b09f0b2380 -ansible_version: - string: 2.10.14 - full: 2.10.14 - major: 2 - minor: 10 - revision: 14 -ansible_check_mode: false -ansible_diff_mode: false -ansible_forks: 5 -ansible_inventory_sources: -- /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -ansible_skip_tags: [] -ansible_run_tags: -- build -ansible_verbosity: 0 diff --git a/inventory/intended/structured_configs/DC1-LEAF2B.yml b/inventory/intended/structured_configs/DC1-LEAF2B.yml index b9644c7e..aa8a7642 100644 --- a/inventory/intended/structured_configs/DC1-LEAF2B.yml +++ b/inventory/intended/structured_configs/DC1-LEAF2B.yml @@ -12,6 +12,7 @@ router_bgp: type: ipv4 remote_as: '65102' next_hop_self: true + description: DC1-LEAF2A password: vnEaG8gMeQf3d3cN6PktXQ== maximum_routes: 12000 send_community: all @@ -302,6 +303,7 @@ daemon_terminattr: - 10.255.0.1:9910 cvauth: method: key + key: '' cvvrf: MGMT smashexcludes: ale,flexCounter,hardware,kni,pulse,strata ingestexclude: /Sysdb/cell/1/agent,/Sysdb/cell/2/agent @@ -777,8 +779,7 @@ route_maps: type: permit set: - origin incomplete - description: Make routes learned over MLAG Peer-link less preferred on spines - to ensure optimal routing + description: Make routes learned over MLAG Peer-link less preferred on spines to ensure optimal routing RM-CONN-2-BGP: sequence_numbers: 10: @@ -813,6 +814,7 @@ router_bfd: multiplier: 3 ip_igmp_snooping: globally_enabled: true +ip_virtual_router_mac_address: 00:1c:73:00:dc:01 vxlan_interface: Vxlan1: description: DC1-LEAF2B_VTEP @@ -879,7 +881,6 @@ vxlan_interface: virtual_source_nat_vrfs: Tenant_A_OP_Zone: ip_address: 10.255.1.6 -ip_virtual_router_mac_address: 00:1c:73:00:dc:01 ntp: local_interface: name: Management1 diff --git a/inventory/intended/structured_configs/DC1-SPINE1-debug-vars.yml b/inventory/intended/structured_configs/DC1-SPINE1-debug-vars.yml deleted file mode 100644 index 3730b254..00000000 --- a/inventory/intended/structured_configs/DC1-SPINE1-debug-vars.yml +++ /dev/null @@ -1,399 +0,0 @@ -ansible_connection: httpapi -ansible_network_os: eos -ansible_user: ansible -ansible_ssh_pass: ansible -ansible_become: true -ansible_become_method: enable -ansible_httpapi_use_ssl: true -ansible_httpapi_validate_certs: false -type: spine -local_users: - admin: - privilege: 15 - role: network-admin - sha512_password: $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 - cvpadmin: - privilege: 15 - role: network-admin - sha512_password: $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj. - ansible: - privilege: 15 - role: network-admin - sha512_password: $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ -cvp_instance_ip: 10.255.0.1 -cvp_ingestauth_key: '' -mgmt_interface: Management1 -mgmt_interface_vrf: MGMT -mgmt_gateway: 10.255.0.1 -name_servers: -- 192.168.2.1 -- 8.8.8.8 -custom_structured_configuration_ntp: - local_interface: - name: Management1 - vrf: MGMT - servers: - - name: 0.fr.pool.ntp.org - preferred: true - vrf: MGMT - - name: 1.fr.pool.ntp.org - vrf: MGMT -fabric_name: DC1_FABRIC -vxlan_vlan_aware_bundles: true -bgp_peer_groups: - IPv4_UNDERLAY_PEERS: - password: AQQvKeimxJu+uGQ/yYvv9w== - EVPN_OVERLAY_PEERS: - password: q+VNViP5i4rVjW1cxFv2wA== - MLAG_IPv4_UNDERLAY_PEER: - password: vnEaG8gMeQf3d3cN6PktXQ== -spine: - defaults: - platform: vEOS-LAB - bgp_as: 65001 - loopback_ipv4_pool: 192.168.255.0/24 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - nodes: - DC1-SPINE1: - id: 1 - mgmt_ip: 10.255.0.11/24 - DC1-SPINE2: - id: 2 - mgmt_ip: 10.255.0.12/24 -l3leaf: - defaults: - platform: vEOS-LAB - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_ipv4_pool: 172.31.255.0/24 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - node_groups: - DC1_LEAF1: - bgp_as: 65101 - nodes: - DC1-LEAF1A: - id: 1 - mgmt_ip: 10.255.0.13/24 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - DC1-LEAF1B: - id: 2 - mgmt_ip: 10.255.0.14/24 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - DC1_LEAF2: - bgp_as: 65102 - nodes: - DC1-LEAF2A: - id: 3 - mgmt_ip: 10.255.0.15/24 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - DC1-LEAF2B: - id: 4 - mgmt_ip: 10.255.0.16/24 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 -l2leaf: - defaults: - platform: vEOS-LAB - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - mlag: false - node_groups: - DC1_L2LEAF1: - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF1A: - id: 5 - mgmt_ip: 10.255.0.17/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - DC1_L2LEAF2: - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF2A: - id: 7 - mgmt_ip: 10.255.0.18/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 -p2p_uplinks_mtu: 1500 -bfd_multihop: - interval: 1200 - min_rx: 1200 - multiplier: 3 -inventory_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -inventory_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory -ansible_host: 10.255.0.11 -inventory_hostname: DC1-SPINE1 -inventory_hostname_short: DC1-SPINE1 -group_names: -- DC1 -- DC1_FABRIC -- DC1_SPINES -ansible_facts: - switch: - type: spine - node_type_key: spine - connected_endpoints: false - default_evpn_role: server - mlag_support: false - network_services_l2: false - network_services_l3: false - underlay_router: true - uplink_type: p2p - vtep: false - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - id: 1 - mgmt_ip: 10.255.0.11/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - spanning_tree_mode: none - max_uplink_switches: 0 - max_parallel_uplinks: 1 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 0 - router_id: 192.168.255.1 - bgp_as: '65001' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: server - mlag: false - topology: - peers: [] - vlans: [] -switch: - type: spine - node_type_key: spine - connected_endpoints: false - default_evpn_role: server - mlag_support: false - network_services_l2: false - network_services_l3: false - underlay_router: true - uplink_type: p2p - vtep: false - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - id: 1 - mgmt_ip: 10.255.0.11/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - spanning_tree_mode: none - max_uplink_switches: 0 - max_parallel_uplinks: 1 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 0 - router_id: 192.168.255.1 - bgp_as: '65001' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: server - mlag: false -topology: - peers: [] - vlans: [] -playbook_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/playbooks -ansible_playbook_python: /Users/tgrimonet/.pyenv/versions/3.9.7/envs/arista-avd-demo/bin/python3.9 -ansible_config_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/ansible.cfg -groups: - all: - - cv_ztp - - cv_server - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - ungrouped: [] - CVP: - - cv_ztp - - cv_server - DC1: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-L2LEAF1A - - DC1-L2LEAF2A - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_FABRIC: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SPINES: - - DC1-SPINE1 - - DC1-SPINE2 - DC1_L3LEAFS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_LEAF1: - - DC1-LEAF1A - - DC1-LEAF1B - DC1_LEAF2: - - DC1-LEAF2A - - DC1-LEAF2B - DC1_L2LEAFS: - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_L2LEAF1: - - DC1-L2LEAF1A - DC1_L2LEAF2: - - DC1-L2LEAF2A - DC1_TENANTS_NETWORKS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SERVERS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A -omit: __omit_place_holder__977da4f00604c643da39a9f2175c10b09f0b2380 -ansible_version: - string: 2.10.14 - full: 2.10.14 - major: 2 - minor: 10 - revision: 14 -ansible_check_mode: false -ansible_diff_mode: false -ansible_forks: 5 -ansible_inventory_sources: -- /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -ansible_skip_tags: [] -ansible_run_tags: -- build -ansible_verbosity: 0 diff --git a/inventory/intended/structured_configs/DC1-SPINE1.yml b/inventory/intended/structured_configs/DC1-SPINE1.yml index 9a98fa01..2689e692 100644 --- a/inventory/intended/structured_configs/DC1-SPINE1.yml +++ b/inventory/intended/structured_configs/DC1-SPINE1.yml @@ -79,6 +79,7 @@ daemon_terminattr: - 10.255.0.1:9910 cvauth: method: key + key: '' cvvrf: MGMT smashexcludes: ale,flexCounter,hardware,kni,pulse,strata ingestexclude: /Sysdb/cell/1/agent,/Sysdb/cell/2/agent diff --git a/inventory/intended/structured_configs/DC1-SPINE2-debug-vars.yml b/inventory/intended/structured_configs/DC1-SPINE2-debug-vars.yml deleted file mode 100644 index ea9a96c1..00000000 --- a/inventory/intended/structured_configs/DC1-SPINE2-debug-vars.yml +++ /dev/null @@ -1,399 +0,0 @@ -ansible_connection: httpapi -ansible_network_os: eos -ansible_user: ansible -ansible_ssh_pass: ansible -ansible_become: true -ansible_become_method: enable -ansible_httpapi_use_ssl: true -ansible_httpapi_validate_certs: false -type: spine -local_users: - admin: - privilege: 15 - role: network-admin - sha512_password: $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1 - cvpadmin: - privilege: 15 - role: network-admin - sha512_password: $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj. - ansible: - privilege: 15 - role: network-admin - sha512_password: $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/ -cvp_instance_ip: 10.255.0.1 -cvp_ingestauth_key: '' -mgmt_interface: Management1 -mgmt_interface_vrf: MGMT -mgmt_gateway: 10.255.0.1 -name_servers: -- 192.168.2.1 -- 8.8.8.8 -custom_structured_configuration_ntp: - local_interface: - name: Management1 - vrf: MGMT - servers: - - name: 0.fr.pool.ntp.org - preferred: true - vrf: MGMT - - name: 1.fr.pool.ntp.org - vrf: MGMT -fabric_name: DC1_FABRIC -vxlan_vlan_aware_bundles: true -bgp_peer_groups: - IPv4_UNDERLAY_PEERS: - password: AQQvKeimxJu+uGQ/yYvv9w== - EVPN_OVERLAY_PEERS: - password: q+VNViP5i4rVjW1cxFv2wA== - MLAG_IPv4_UNDERLAY_PEER: - password: vnEaG8gMeQf3d3cN6PktXQ== -spine: - defaults: - platform: vEOS-LAB - bgp_as: 65001 - loopback_ipv4_pool: 192.168.255.0/24 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - nodes: - DC1-SPINE1: - id: 1 - mgmt_ip: 10.255.0.11/24 - DC1-SPINE2: - id: 2 - mgmt_ip: 10.255.0.12/24 -l3leaf: - defaults: - platform: vEOS-LAB - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 2 - vtep_loopback_ipv4_pool: 192.168.254.0/24 - uplink_interfaces: - - Ethernet1 - - Ethernet2 - uplink_switches: - - DC1-SPINE1 - - DC1-SPINE2 - uplink_ipv4_pool: 172.31.255.0/24 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - node_groups: - DC1_LEAF1: - bgp_as: 65101 - nodes: - DC1-LEAF1A: - id: 1 - mgmt_ip: 10.255.0.13/24 - uplink_switch_interfaces: - - Ethernet1 - - Ethernet1 - DC1-LEAF1B: - id: 2 - mgmt_ip: 10.255.0.14/24 - uplink_switch_interfaces: - - Ethernet2 - - Ethernet2 - DC1_LEAF2: - bgp_as: 65102 - nodes: - DC1-LEAF2A: - id: 3 - mgmt_ip: 10.255.0.15/24 - uplink_switch_interfaces: - - Ethernet3 - - Ethernet3 - DC1-LEAF2B: - id: 4 - mgmt_ip: 10.255.0.16/24 - uplink_switch_interfaces: - - Ethernet4 - - Ethernet4 -l2leaf: - defaults: - platform: vEOS-LAB - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - uplink_interfaces: - - Ethernet1 - - Ethernet2 - mlag_interfaces: - - Ethernet3 - - Ethernet4 - mlag_peer_ipv4_pool: 10.255.252.0/24 - mlag_peer_l3_ipv4_pool: 10.255.251.0/24 - virtual_router_mac_address: 00:1c:73:00:dc:01 - spanning_tree_mode: mstp - spanning_tree_priority: 16384 - mlag: false - node_groups: - DC1_L2LEAF1: - uplink_switches: - - DC1-LEAF1A - - DC1-LEAF1B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF1A: - id: 5 - mgmt_ip: 10.255.0.17/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 - DC1_L2LEAF2: - uplink_switches: - - DC1-LEAF2A - - DC1-LEAF2B - filter: - tenants: - - Tenant_A - tags: - - opzone - - web - - app - nodes: - DC1-L2LEAF2A: - id: 7 - mgmt_ip: 10.255.0.18/24 - uplink_switch_interfaces: - - Ethernet5 - - Ethernet5 -p2p_uplinks_mtu: 1500 -bfd_multihop: - interval: 1200 - min_rx: 1200 - multiplier: 3 -inventory_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -inventory_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory -ansible_host: 10.255.0.12 -inventory_hostname: DC1-SPINE2 -inventory_hostname_short: DC1-SPINE2 -group_names: -- DC1 -- DC1_FABRIC -- DC1_SPINES -ansible_facts: - switch: - type: spine - node_type_key: spine - connected_endpoints: false - default_evpn_role: server - mlag_support: false - network_services_l2: false - network_services_l3: false - underlay_router: true - uplink_type: p2p - vtep: false - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - id: 2 - mgmt_ip: 10.255.0.12/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - spanning_tree_mode: none - max_uplink_switches: 0 - max_parallel_uplinks: 1 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 0 - router_id: 192.168.255.2 - bgp_as: '65001' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: server - mlag: false - topology: - peers: [] - vlans: [] -switch: - type: spine - node_type_key: spine - connected_endpoints: false - default_evpn_role: server - mlag_support: false - network_services_l2: false - network_services_l3: false - underlay_router: true - uplink_type: p2p - vtep: false - ip_addressing: - router_id: designs/l3ls-evpn/ip-addressing/router-id.j2 - mlag_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-ip-primary.j2 - mlag_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-ip-secondary.j2 - mlag_l3_ip_primary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-primary.j2 - mlag_l3_ip_secondary: designs/l3ls-evpn/ip-addressing/mlag-l3-ip-secondary.j2 - p2p_uplinks_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-ip.j2 - p2p_uplinks_peer_ip: designs/l3ls-evpn/ip-addressing/p2p-uplinks-peer-ip.j2 - vtep_ip_mlag: designs/l3ls-evpn/ip-addressing/vtep-ip-mlag.j2 - vtep_ip: designs/l3ls-evpn/ip-addressing/vtep-ip.j2 - interface_descriptions: - underlay_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/ethernet-interfaces.j2 - underlay_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/underlay/port-channel-interfaces.j2 - connected_endpoints_ethernet_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/ethernet-interfaces.j2 - connected_endpoints_port_channel_interfaces: designs/l3ls-evpn/interface-descriptions/connected-endpoints/port-channel-interfaces.j2 - overlay_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/overlay-loopback.j2 - vtep_loopback_interface: designs/l3ls-evpn/interface-descriptions/loopback-interfaces/vtep-loopback.j2 - underlay_routing_protocol: ebgp - overlay_routing_protocol: ebgp - id: 2 - mgmt_ip: 10.255.0.12/24 - platform: vEOS-LAB - platform_settings: - platforms: - - default - reload_delay: - mlag: 300 - non_mlag: 330 - feature_support: - queue_monitor_length_notify: false - spanning_tree_mode: none - max_uplink_switches: 0 - max_parallel_uplinks: 1 - loopback_ipv4_pool: 192.168.255.0/24 - loopback_ipv4_offset: 0 - router_id: 192.168.255.2 - bgp_as: '65001' - bgp_defaults: - - no bgp default ipv4-unicast - - distance bgp 20 200 200 - - graceful-restart restart-time 300 - - graceful-restart - evpn_role: server - mlag: false -topology: - peers: [] - vlans: [] -playbook_dir: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/playbooks -ansible_playbook_python: /Users/tgrimonet/.pyenv/versions/3.9.7/envs/arista-avd-demo/bin/python3.9 -ansible_config_file: /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/ansible.cfg -groups: - all: - - cv_ztp - - cv_server - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - ungrouped: [] - CVP: - - cv_ztp - - cv_server - DC1: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-L2LEAF1A - - DC1-L2LEAF2A - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_FABRIC: - - DC1-SPINE1 - - DC1-SPINE2 - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SPINES: - - DC1-SPINE1 - - DC1-SPINE2 - DC1_L3LEAFS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - DC1_LEAF1: - - DC1-LEAF1A - - DC1-LEAF1B - DC1_LEAF2: - - DC1-LEAF2A - - DC1-LEAF2B - DC1_L2LEAFS: - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_L2LEAF1: - - DC1-L2LEAF1A - DC1_L2LEAF2: - - DC1-L2LEAF2A - DC1_TENANTS_NETWORKS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A - DC1_SERVERS: - - DC1-LEAF1A - - DC1-LEAF1B - - DC1-LEAF2A - - DC1-LEAF2B - - DC1-L2LEAF1A - - DC1-L2LEAF2A -omit: __omit_place_holder__977da4f00604c643da39a9f2175c10b09f0b2380 -ansible_version: - string: 2.10.14 - full: 2.10.14 - major: 2 - minor: 10 - revision: 14 -ansible_check_mode: false -ansible_diff_mode: false -ansible_forks: 5 -ansible_inventory_sources: -- /Users/tgrimonet/Projects/arista-community/ansible-avd-cloudvision-demo/inventory/inventory.yml -ansible_skip_tags: [] -ansible_run_tags: -- build -ansible_verbosity: 0 diff --git a/inventory/intended/structured_configs/DC1-SPINE2.yml b/inventory/intended/structured_configs/DC1-SPINE2.yml index a922d8ac..b0884c81 100644 --- a/inventory/intended/structured_configs/DC1-SPINE2.yml +++ b/inventory/intended/structured_configs/DC1-SPINE2.yml @@ -79,6 +79,7 @@ daemon_terminattr: - 10.255.0.1:9910 cvauth: method: key + key: '' cvvrf: MGMT smashexcludes: ale,flexCounter,hardware,kni,pulse,strata ingestexclude: /Sysdb/cell/1/agent,/Sysdb/cell/2/agent diff --git a/inventory/intended/structured_configs/cvp/cv_server.yml b/inventory/intended/structured_configs/cvp/cv_server.yml index ef3e2de4..86cc4ebd 100644 --- a/inventory/intended/structured_configs/cvp/cv_server.yml +++ b/inventory/intended/structured_configs/cvp/cv_server.yml @@ -1,67 +1,51 @@ --- CVP_DEVICES: - DC1-L2LEAF1A: - name: DC1-L2LEAF1A + - fqdn: DC1-L2LEAF1A parentContainerName: DC1_L2LEAF1 configlets: - DC1-AVD_DC1-L2LEAF1A - imageBundle: [] - DC1-L2LEAF2A: - name: DC1-L2LEAF2A + - fqdn: DC1-L2LEAF2A parentContainerName: DC1_L2LEAF2 configlets: - DC1-AVD_DC1-L2LEAF2A - imageBundle: [] - DC1-LEAF1A: - name: DC1-LEAF1A + - fqdn: DC1-LEAF1A parentContainerName: DC1_LEAF1 configlets: - DC1-AVD_DC1-LEAF1A - imageBundle: [] - DC1-LEAF1B: - name: DC1-LEAF1B + - fqdn: DC1-LEAF1B parentContainerName: DC1_LEAF1 configlets: - DC1-AVD_DC1-LEAF1B - imageBundle: [] - DC1-LEAF2A: - name: DC1-LEAF2A + - fqdn: DC1-LEAF2A parentContainerName: DC1_LEAF2 configlets: - DC1-AVD_DC1-LEAF2A - imageBundle: [] - DC1-LEAF2B: - name: DC1-LEAF2B + - fqdn: DC1-LEAF2B parentContainerName: DC1_LEAF2 configlets: - DC1-AVD_DC1-LEAF2B - imageBundle: [] - DC1-SPINE1: - name: DC1-SPINE1 + - fqdn: DC1-SPINE1 parentContainerName: DC1_SPINES configlets: - DC1-AVD_DC1-SPINE1 - imageBundle: [] - DC1-SPINE2: - name: DC1-SPINE2 + - fqdn: DC1-SPINE2 parentContainerName: DC1_SPINES configlets: - DC1-AVD_DC1-SPINE2 - imageBundle: [] CVP_CONTAINERS: DC1_FABRIC: - parent_container: Tenant + parentContainerName: Tenant DC1_L2LEAF1: - parent_container: DC1_L2LEAFS + parentContainerName: DC1_L2LEAFS DC1_L2LEAF2: - parent_container: DC1_L2LEAFS + parentContainerName: DC1_L2LEAFS DC1_L2LEAFS: - parent_container: DC1_FABRIC + parentContainerName: DC1_FABRIC DC1_L3LEAFS: - parent_container: DC1_FABRIC + parentContainerName: DC1_FABRIC DC1_LEAF1: - parent_container: DC1_L3LEAFS + parentContainerName: DC1_L3LEAFS DC1_LEAF2: - parent_container: DC1_L3LEAFS + parentContainerName: DC1_L3LEAFS DC1_SPINES: - parent_container: DC1_FABRIC + parentContainerName: DC1_FABRIC diff --git a/inventory/intended/structured_configs/cvp/cv_server_configlets.yml b/inventory/intended/structured_configs/cvp/cv_server_configlets.yml index 1be3d944..874f56ad 100644 --- a/inventory/intended/structured_configs/cvp/cv_server_configlets.yml +++ b/inventory/intended/structured_configs/cvp/cv_server_configlets.yml @@ -1,13 +1,13 @@ CVP_CONFIGLETS: DC1-AVD_DC1-L2LEAF1A: "!RANCID-CONTENT-TYPE: arista\n!\ndaemon TerminAttr\n exec\ - \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ + \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ \ -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs\n no shutdown\n\ !\nvlan internal order ascending range 1006 1199\n!\ntransceiver qsfp default-mode\ \ 4x10G\n!\nservice routing protocols model multi-agent\n!\nhostname DC1-L2LEAF1A\n\ ip name-server vrf MGMT 8.8.8.8\nip name-server vrf MGMT 192.168.2.1\n!\nntp local-interface\ \ vrf MGMT Management1\nntp server vrf MGMT 0.fr.pool.ntp.org prefer\nntp server\ \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode mstp\nspanning-tree mst 0\ - \ priority 16384\n!\nno aaa root\nno enable password\n!\nusername admin privilege\ + \ priority 16384\n!\nno enable password\nno aaa root\n!\nusername admin privilege\ \ 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/\n\ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj.\n\ @@ -20,21 +20,21 @@ CVP_CONFIGLETS: \ Ethernet1\n description DC1-LEAF1A_Ethernet5\n no shutdown\n channel-group\ \ 1 mode active\n!\ninterface Ethernet2\n description DC1-LEAF1B_Ethernet5\n\ \ no shutdown\n channel-group 1 mode active\n!\ninterface Ethernet5\n description\ - \ server01_Eth0\n no shutdown\n switchport\n switchport access vlan 110\n\ - \ switchport mode access\n!\ninterface Management1\n description oob_management\n\ + \ server01_Eth0\n no shutdown\n switchport access vlan 110\n switchport\ + \ mode access\n switchport\n!\ninterface Management1\n description oob_management\n\ \ no shutdown\n vrf MGMT\n ip address 10.255.0.17/24\n!\nip routing\nno\ \ ip routing vrf MGMT\n!\nip route vrf MGMT 0.0.0.0/0 10.255.0.1\n!\nmanagement\ \ api http-commands\n protocol https\n no shutdown\n !\n vrf MGMT\n \ \ no shutdown\n!\nend\n" DC1-AVD_DC1-L2LEAF2A: "!RANCID-CONTENT-TYPE: arista\n!\ndaemon TerminAttr\n exec\ - \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ + \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ \ -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs\n no shutdown\n\ !\nvlan internal order ascending range 1006 1199\n!\ntransceiver qsfp default-mode\ \ 4x10G\n!\nservice routing protocols model multi-agent\n!\nhostname DC1-L2LEAF2A\n\ ip name-server vrf MGMT 8.8.8.8\nip name-server vrf MGMT 192.168.2.1\n!\nntp local-interface\ \ vrf MGMT Management1\nntp server vrf MGMT 0.fr.pool.ntp.org prefer\nntp server\ \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode mstp\nspanning-tree mst 0\ - \ priority 16384\n!\nno aaa root\nno enable password\n!\nusername admin privilege\ + \ priority 16384\n!\nno enable password\nno aaa root\n!\nusername admin privilege\ \ 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/\n\ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj.\n\ @@ -47,22 +47,22 @@ CVP_CONFIGLETS: \ Ethernet1\n description DC1-LEAF2A_Ethernet5\n no shutdown\n channel-group\ \ 1 mode active\n!\ninterface Ethernet2\n description DC1-LEAF2B_Ethernet5\n\ \ no shutdown\n channel-group 1 mode active\n!\ninterface Ethernet5\n description\ - \ server02_Eth0\n no shutdown\n switchport\n switchport access vlan 110\n\ - \ switchport mode access\n!\ninterface Management1\n description oob_management\n\ + \ server02_Eth0\n no shutdown\n switchport access vlan 110\n switchport\ + \ mode access\n switchport\n!\ninterface Management1\n description oob_management\n\ \ no shutdown\n vrf MGMT\n ip address 10.255.0.18/24\n!\nip routing\nno\ \ ip routing vrf MGMT\n!\nip route vrf MGMT 0.0.0.0/0 10.255.0.1\n!\nmanagement\ \ api http-commands\n protocol https\n no shutdown\n !\n vrf MGMT\n \ \ no shutdown\n!\nend\n" DC1-AVD_DC1-LEAF1A: "!RANCID-CONTENT-TYPE: arista\n!\ndaemon TerminAttr\n exec\ - \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ + \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ \ -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs\n no shutdown\n\ !\nvlan internal order ascending range 1006 1199\n!\ntransceiver qsfp default-mode\ \ 4x10G\n!\nservice routing protocols model multi-agent\n!\nhostname DC1-LEAF1A\n\ ip name-server vrf MGMT 8.8.8.8\nip name-server vrf MGMT 192.168.2.1\n!\nntp local-interface\ \ vrf MGMT Management1\nntp server vrf MGMT 0.fr.pool.ntp.org prefer\nntp server\ \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode mstp\nno spanning-tree vlan-id\ - \ 4093-4094\nspanning-tree mst 0 priority 16384\n!\nno aaa root\nno enable password\n\ - !\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ + \ 4093-4094\nspanning-tree mst 0 priority 16384\n!\nno enable password\nno aaa\ + \ root\n!\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/\n\ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj.\n\ !\nvlan 110\n name Tenant_A_OP_Zone_1\n!\nvlan 111\n name Tenant_A_OP_Zone_2\n\ @@ -190,19 +190,20 @@ CVP_CONFIGLETS: \ password 7 AQQvKeimxJu+uGQ/yYvv9w==\n neighbor IPv4-UNDERLAY-PEERS send-community\n\ \ neighbor IPv4-UNDERLAY-PEERS maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER\ \ peer group\n neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65101\n neighbor\ - \ MLAG-IPv4-UNDERLAY-PEER next-hop-self\n neighbor MLAG-IPv4-UNDERLAY-PEER password\ - \ 7 vnEaG8gMeQf3d3cN6PktXQ==\n neighbor MLAG-IPv4-UNDERLAY-PEER send-community\n\ - \ neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER\ - \ route-map RM-MLAG-PEER-IN in\n neighbor 10.255.251.1 peer group MLAG-IPv4-UNDERLAY-PEER\n\ - \ neighbor 10.255.251.1 description DC1-LEAF1B\n neighbor 172.31.255.0 peer\ - \ group IPv4-UNDERLAY-PEERS\n neighbor 172.31.255.0 remote-as 65001\n neighbor\ - \ 172.31.255.0 description DC1-SPINE1_Ethernet1\n neighbor 172.31.255.2 peer\ - \ group IPv4-UNDERLAY-PEERS\n neighbor 172.31.255.2 remote-as 65001\n neighbor\ - \ 172.31.255.2 description DC1-SPINE2_Ethernet1\n neighbor 192.168.255.1 peer\ - \ group EVPN-OVERLAY-PEERS\n neighbor 192.168.255.1 remote-as 65001\n neighbor\ - \ 192.168.255.1 description DC1-SPINE1\n neighbor 192.168.255.2 peer group EVPN-OVERLAY-PEERS\n\ - \ neighbor 192.168.255.2 remote-as 65001\n neighbor 192.168.255.2 description\ - \ DC1-SPINE2\n redistribute connected route-map RM-CONN-2-BGP\n !\n vlan-aware-bundle\ + \ MLAG-IPv4-UNDERLAY-PEER next-hop-self\n neighbor MLAG-IPv4-UNDERLAY-PEER description\ + \ DC1-LEAF1B\n neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ==\n\ + \ neighbor MLAG-IPv4-UNDERLAY-PEER send-community\n neighbor MLAG-IPv4-UNDERLAY-PEER\ + \ maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER route-map RM-MLAG-PEER-IN\ + \ in\n neighbor 10.255.251.1 peer group MLAG-IPv4-UNDERLAY-PEER\n neighbor\ + \ 10.255.251.1 description DC1-LEAF1B\n neighbor 172.31.255.0 peer group IPv4-UNDERLAY-PEERS\n\ + \ neighbor 172.31.255.0 remote-as 65001\n neighbor 172.31.255.0 description\ + \ DC1-SPINE1_Ethernet1\n neighbor 172.31.255.2 peer group IPv4-UNDERLAY-PEERS\n\ + \ neighbor 172.31.255.2 remote-as 65001\n neighbor 172.31.255.2 description\ + \ DC1-SPINE2_Ethernet1\n neighbor 192.168.255.1 peer group EVPN-OVERLAY-PEERS\n\ + \ neighbor 192.168.255.1 remote-as 65001\n neighbor 192.168.255.1 description\ + \ DC1-SPINE1\n neighbor 192.168.255.2 peer group EVPN-OVERLAY-PEERS\n neighbor\ + \ 192.168.255.2 remote-as 65001\n neighbor 192.168.255.2 description DC1-SPINE2\n\ + \ redistribute connected route-map RM-CONN-2-BGP\n !\n vlan-aware-bundle\ \ Tenant_A_APP_Zone\n rd 192.168.255.3:12\n route-target both 12:12\n\ \ redistribute learned\n vlan 130-131\n !\n vlan-aware-bundle Tenant_A_DB_Zone\n\ \ rd 192.168.255.3:13\n route-target both 13:13\n redistribute\ @@ -256,15 +257,15 @@ CVP_CONFIGLETS: \ redistribute connected\n!\nmanagement api http-commands\n protocol https\n\ \ no shutdown\n !\n vrf MGMT\n no shutdown\n!\nend\n" DC1-AVD_DC1-LEAF1B: "!RANCID-CONTENT-TYPE: arista\n!\ndaemon TerminAttr\n exec\ - \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ + \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ \ -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs\n no shutdown\n\ !\nvlan internal order ascending range 1006 1199\n!\ntransceiver qsfp default-mode\ \ 4x10G\n!\nservice routing protocols model multi-agent\n!\nhostname DC1-LEAF1B\n\ ip name-server vrf MGMT 8.8.8.8\nip name-server vrf MGMT 192.168.2.1\n!\nntp local-interface\ \ vrf MGMT Management1\nntp server vrf MGMT 0.fr.pool.ntp.org prefer\nntp server\ \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode mstp\nno spanning-tree vlan-id\ - \ 4093-4094\nspanning-tree mst 0 priority 16384\n!\nno aaa root\nno enable password\n\ - !\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ + \ 4093-4094\nspanning-tree mst 0 priority 16384\n!\nno enable password\nno aaa\ + \ root\n!\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/\n\ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj.\n\ !\nvlan 110\n name Tenant_A_OP_Zone_1\n!\nvlan 111\n name Tenant_A_OP_Zone_2\n\ @@ -392,19 +393,20 @@ CVP_CONFIGLETS: \ password 7 AQQvKeimxJu+uGQ/yYvv9w==\n neighbor IPv4-UNDERLAY-PEERS send-community\n\ \ neighbor IPv4-UNDERLAY-PEERS maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER\ \ peer group\n neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65101\n neighbor\ - \ MLAG-IPv4-UNDERLAY-PEER next-hop-self\n neighbor MLAG-IPv4-UNDERLAY-PEER password\ - \ 7 vnEaG8gMeQf3d3cN6PktXQ==\n neighbor MLAG-IPv4-UNDERLAY-PEER send-community\n\ - \ neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER\ - \ route-map RM-MLAG-PEER-IN in\n neighbor 10.255.251.0 peer group MLAG-IPv4-UNDERLAY-PEER\n\ - \ neighbor 10.255.251.0 description DC1-LEAF1A\n neighbor 172.31.255.4 peer\ - \ group IPv4-UNDERLAY-PEERS\n neighbor 172.31.255.4 remote-as 65001\n neighbor\ - \ 172.31.255.4 description DC1-SPINE1_Ethernet2\n neighbor 172.31.255.6 peer\ - \ group IPv4-UNDERLAY-PEERS\n neighbor 172.31.255.6 remote-as 65001\n neighbor\ - \ 172.31.255.6 description DC1-SPINE2_Ethernet2\n neighbor 192.168.255.1 peer\ - \ group EVPN-OVERLAY-PEERS\n neighbor 192.168.255.1 remote-as 65001\n neighbor\ - \ 192.168.255.1 description DC1-SPINE1\n neighbor 192.168.255.2 peer group EVPN-OVERLAY-PEERS\n\ - \ neighbor 192.168.255.2 remote-as 65001\n neighbor 192.168.255.2 description\ - \ DC1-SPINE2\n redistribute connected route-map RM-CONN-2-BGP\n !\n vlan-aware-bundle\ + \ MLAG-IPv4-UNDERLAY-PEER next-hop-self\n neighbor MLAG-IPv4-UNDERLAY-PEER description\ + \ DC1-LEAF1A\n neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ==\n\ + \ neighbor MLAG-IPv4-UNDERLAY-PEER send-community\n neighbor MLAG-IPv4-UNDERLAY-PEER\ + \ maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER route-map RM-MLAG-PEER-IN\ + \ in\n neighbor 10.255.251.0 peer group MLAG-IPv4-UNDERLAY-PEER\n neighbor\ + \ 10.255.251.0 description DC1-LEAF1A\n neighbor 172.31.255.4 peer group IPv4-UNDERLAY-PEERS\n\ + \ neighbor 172.31.255.4 remote-as 65001\n neighbor 172.31.255.4 description\ + \ DC1-SPINE1_Ethernet2\n neighbor 172.31.255.6 peer group IPv4-UNDERLAY-PEERS\n\ + \ neighbor 172.31.255.6 remote-as 65001\n neighbor 172.31.255.6 description\ + \ DC1-SPINE2_Ethernet2\n neighbor 192.168.255.1 peer group EVPN-OVERLAY-PEERS\n\ + \ neighbor 192.168.255.1 remote-as 65001\n neighbor 192.168.255.1 description\ + \ DC1-SPINE1\n neighbor 192.168.255.2 peer group EVPN-OVERLAY-PEERS\n neighbor\ + \ 192.168.255.2 remote-as 65001\n neighbor 192.168.255.2 description DC1-SPINE2\n\ + \ redistribute connected route-map RM-CONN-2-BGP\n !\n vlan-aware-bundle\ \ Tenant_A_APP_Zone\n rd 192.168.255.4:12\n route-target both 12:12\n\ \ redistribute learned\n vlan 130-131\n !\n vlan-aware-bundle Tenant_A_DB_Zone\n\ \ rd 192.168.255.4:13\n route-target both 13:13\n redistribute\ @@ -458,15 +460,15 @@ CVP_CONFIGLETS: \ redistribute connected\n!\nmanagement api http-commands\n protocol https\n\ \ no shutdown\n !\n vrf MGMT\n no shutdown\n!\nend\n" DC1-AVD_DC1-LEAF2A: "!RANCID-CONTENT-TYPE: arista\n!\ndaemon TerminAttr\n exec\ - \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ + \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ \ -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs\n no shutdown\n\ !\nvlan internal order ascending range 1006 1199\n!\ntransceiver qsfp default-mode\ \ 4x10G\n!\nservice routing protocols model multi-agent\n!\nhostname DC1-LEAF2A\n\ ip name-server vrf MGMT 8.8.8.8\nip name-server vrf MGMT 192.168.2.1\n!\nntp local-interface\ \ vrf MGMT Management1\nntp server vrf MGMT 0.fr.pool.ntp.org prefer\nntp server\ \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode mstp\nno spanning-tree vlan-id\ - \ 4093-4094\nspanning-tree mst 0 priority 16384\n!\nno aaa root\nno enable password\n\ - !\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ + \ 4093-4094\nspanning-tree mst 0 priority 16384\n!\nno enable password\nno aaa\ + \ root\n!\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/\n\ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj.\n\ !\nvlan 110\n name Tenant_A_OP_Zone_1\n!\nvlan 111\n name Tenant_A_OP_Zone_2\n\ @@ -594,19 +596,20 @@ CVP_CONFIGLETS: \ password 7 AQQvKeimxJu+uGQ/yYvv9w==\n neighbor IPv4-UNDERLAY-PEERS send-community\n\ \ neighbor IPv4-UNDERLAY-PEERS maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER\ \ peer group\n neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65102\n neighbor\ - \ MLAG-IPv4-UNDERLAY-PEER next-hop-self\n neighbor MLAG-IPv4-UNDERLAY-PEER password\ - \ 7 vnEaG8gMeQf3d3cN6PktXQ==\n neighbor MLAG-IPv4-UNDERLAY-PEER send-community\n\ - \ neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER\ - \ route-map RM-MLAG-PEER-IN in\n neighbor 10.255.251.5 peer group MLAG-IPv4-UNDERLAY-PEER\n\ - \ neighbor 10.255.251.5 description DC1-LEAF2B\n neighbor 172.31.255.8 peer\ - \ group IPv4-UNDERLAY-PEERS\n neighbor 172.31.255.8 remote-as 65001\n neighbor\ - \ 172.31.255.8 description DC1-SPINE1_Ethernet3\n neighbor 172.31.255.10 peer\ - \ group IPv4-UNDERLAY-PEERS\n neighbor 172.31.255.10 remote-as 65001\n neighbor\ - \ 172.31.255.10 description DC1-SPINE2_Ethernet3\n neighbor 192.168.255.1 peer\ - \ group EVPN-OVERLAY-PEERS\n neighbor 192.168.255.1 remote-as 65001\n neighbor\ - \ 192.168.255.1 description DC1-SPINE1\n neighbor 192.168.255.2 peer group EVPN-OVERLAY-PEERS\n\ - \ neighbor 192.168.255.2 remote-as 65001\n neighbor 192.168.255.2 description\ - \ DC1-SPINE2\n redistribute connected route-map RM-CONN-2-BGP\n !\n vlan-aware-bundle\ + \ MLAG-IPv4-UNDERLAY-PEER next-hop-self\n neighbor MLAG-IPv4-UNDERLAY-PEER description\ + \ DC1-LEAF2B\n neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ==\n\ + \ neighbor MLAG-IPv4-UNDERLAY-PEER send-community\n neighbor MLAG-IPv4-UNDERLAY-PEER\ + \ maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER route-map RM-MLAG-PEER-IN\ + \ in\n neighbor 10.255.251.5 peer group MLAG-IPv4-UNDERLAY-PEER\n neighbor\ + \ 10.255.251.5 description DC1-LEAF2B\n neighbor 172.31.255.8 peer group IPv4-UNDERLAY-PEERS\n\ + \ neighbor 172.31.255.8 remote-as 65001\n neighbor 172.31.255.8 description\ + \ DC1-SPINE1_Ethernet3\n neighbor 172.31.255.10 peer group IPv4-UNDERLAY-PEERS\n\ + \ neighbor 172.31.255.10 remote-as 65001\n neighbor 172.31.255.10 description\ + \ DC1-SPINE2_Ethernet3\n neighbor 192.168.255.1 peer group EVPN-OVERLAY-PEERS\n\ + \ neighbor 192.168.255.1 remote-as 65001\n neighbor 192.168.255.1 description\ + \ DC1-SPINE1\n neighbor 192.168.255.2 peer group EVPN-OVERLAY-PEERS\n neighbor\ + \ 192.168.255.2 remote-as 65001\n neighbor 192.168.255.2 description DC1-SPINE2\n\ + \ redistribute connected route-map RM-CONN-2-BGP\n !\n vlan-aware-bundle\ \ Tenant_A_APP_Zone\n rd 192.168.255.5:12\n route-target both 12:12\n\ \ redistribute learned\n vlan 130-131\n !\n vlan-aware-bundle Tenant_A_DB_Zone\n\ \ rd 192.168.255.5:13\n route-target both 13:13\n redistribute\ @@ -660,15 +663,15 @@ CVP_CONFIGLETS: \ redistribute connected\n!\nmanagement api http-commands\n protocol https\n\ \ no shutdown\n !\n vrf MGMT\n no shutdown\n!\nend\n" DC1-AVD_DC1-LEAF2B: "!RANCID-CONTENT-TYPE: arista\n!\ndaemon TerminAttr\n exec\ - \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ + \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ \ -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs\n no shutdown\n\ !\nvlan internal order ascending range 1006 1199\n!\ntransceiver qsfp default-mode\ \ 4x10G\n!\nservice routing protocols model multi-agent\n!\nhostname DC1-LEAF2B\n\ ip name-server vrf MGMT 8.8.8.8\nip name-server vrf MGMT 192.168.2.1\n!\nntp local-interface\ \ vrf MGMT Management1\nntp server vrf MGMT 0.fr.pool.ntp.org prefer\nntp server\ \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode mstp\nno spanning-tree vlan-id\ - \ 4093-4094\nspanning-tree mst 0 priority 16384\n!\nno aaa root\nno enable password\n\ - !\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ + \ 4093-4094\nspanning-tree mst 0 priority 16384\n!\nno enable password\nno aaa\ + \ root\n!\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/\n\ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj.\n\ !\nvlan 110\n name Tenant_A_OP_Zone_1\n!\nvlan 111\n name Tenant_A_OP_Zone_2\n\ @@ -796,19 +799,20 @@ CVP_CONFIGLETS: \ password 7 AQQvKeimxJu+uGQ/yYvv9w==\n neighbor IPv4-UNDERLAY-PEERS send-community\n\ \ neighbor IPv4-UNDERLAY-PEERS maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER\ \ peer group\n neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65102\n neighbor\ - \ MLAG-IPv4-UNDERLAY-PEER next-hop-self\n neighbor MLAG-IPv4-UNDERLAY-PEER password\ - \ 7 vnEaG8gMeQf3d3cN6PktXQ==\n neighbor MLAG-IPv4-UNDERLAY-PEER send-community\n\ - \ neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER\ - \ route-map RM-MLAG-PEER-IN in\n neighbor 10.255.251.4 peer group MLAG-IPv4-UNDERLAY-PEER\n\ - \ neighbor 10.255.251.4 description DC1-LEAF2A\n neighbor 172.31.255.12 peer\ - \ group IPv4-UNDERLAY-PEERS\n neighbor 172.31.255.12 remote-as 65001\n neighbor\ - \ 172.31.255.12 description DC1-SPINE1_Ethernet4\n neighbor 172.31.255.14 peer\ - \ group IPv4-UNDERLAY-PEERS\n neighbor 172.31.255.14 remote-as 65001\n neighbor\ - \ 172.31.255.14 description DC1-SPINE2_Ethernet4\n neighbor 192.168.255.1 peer\ - \ group EVPN-OVERLAY-PEERS\n neighbor 192.168.255.1 remote-as 65001\n neighbor\ - \ 192.168.255.1 description DC1-SPINE1\n neighbor 192.168.255.2 peer group EVPN-OVERLAY-PEERS\n\ - \ neighbor 192.168.255.2 remote-as 65001\n neighbor 192.168.255.2 description\ - \ DC1-SPINE2\n redistribute connected route-map RM-CONN-2-BGP\n !\n vlan-aware-bundle\ + \ MLAG-IPv4-UNDERLAY-PEER next-hop-self\n neighbor MLAG-IPv4-UNDERLAY-PEER description\ + \ DC1-LEAF2A\n neighbor MLAG-IPv4-UNDERLAY-PEER password 7 vnEaG8gMeQf3d3cN6PktXQ==\n\ + \ neighbor MLAG-IPv4-UNDERLAY-PEER send-community\n neighbor MLAG-IPv4-UNDERLAY-PEER\ + \ maximum-routes 12000\n neighbor MLAG-IPv4-UNDERLAY-PEER route-map RM-MLAG-PEER-IN\ + \ in\n neighbor 10.255.251.4 peer group MLAG-IPv4-UNDERLAY-PEER\n neighbor\ + \ 10.255.251.4 description DC1-LEAF2A\n neighbor 172.31.255.12 peer group IPv4-UNDERLAY-PEERS\n\ + \ neighbor 172.31.255.12 remote-as 65001\n neighbor 172.31.255.12 description\ + \ DC1-SPINE1_Ethernet4\n neighbor 172.31.255.14 peer group IPv4-UNDERLAY-PEERS\n\ + \ neighbor 172.31.255.14 remote-as 65001\n neighbor 172.31.255.14 description\ + \ DC1-SPINE2_Ethernet4\n neighbor 192.168.255.1 peer group EVPN-OVERLAY-PEERS\n\ + \ neighbor 192.168.255.1 remote-as 65001\n neighbor 192.168.255.1 description\ + \ DC1-SPINE1\n neighbor 192.168.255.2 peer group EVPN-OVERLAY-PEERS\n neighbor\ + \ 192.168.255.2 remote-as 65001\n neighbor 192.168.255.2 description DC1-SPINE2\n\ + \ redistribute connected route-map RM-CONN-2-BGP\n !\n vlan-aware-bundle\ \ Tenant_A_APP_Zone\n rd 192.168.255.6:12\n route-target both 12:12\n\ \ redistribute learned\n vlan 130-131\n !\n vlan-aware-bundle Tenant_A_DB_Zone\n\ \ rd 192.168.255.6:13\n route-target both 13:13\n redistribute\ @@ -862,14 +866,14 @@ CVP_CONFIGLETS: \ redistribute connected\n!\nmanagement api http-commands\n protocol https\n\ \ no shutdown\n !\n vrf MGMT\n no shutdown\n!\nend\n" DC1-AVD_DC1-SPINE1: "!RANCID-CONTENT-TYPE: arista\n!\ndaemon TerminAttr\n exec\ - \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ + \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ \ -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs\n no shutdown\n\ !\nvlan internal order ascending range 1006 1199\n!\ntransceiver qsfp default-mode\ \ 4x10G\n!\nservice routing protocols model multi-agent\n!\nhostname DC1-SPINE1\n\ ip name-server vrf MGMT 8.8.8.8\nip name-server vrf MGMT 192.168.2.1\n!\nntp local-interface\ \ vrf MGMT Management1\nntp server vrf MGMT 0.fr.pool.ntp.org prefer\nntp server\ - \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode none\n!\nno aaa root\nno enable\ - \ password\n!\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ + \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode none\n!\nno enable password\n\ + no aaa root\n!\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/\n\ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj.\n\ !\nvrf instance MGMT\n!\ninterface Ethernet1\n description P2P_LINK_TO_DC1-LEAF1A_Ethernet1\n\ @@ -918,14 +922,14 @@ CVP_CONFIGLETS: \ activate\n!\nmanagement api http-commands\n protocol https\n no shutdown\n\ \ !\n vrf MGMT\n no shutdown\n!\nend\n" DC1-AVD_DC1-SPINE2: "!RANCID-CONTENT-TYPE: arista\n!\ndaemon TerminAttr\n exec\ - \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ + \ /usr/bin/TerminAttr -cvaddr=10.255.0.1:9910 -cvauth=key, -cvvrf=MGMT -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata\ \ -ingestexclude=/Sysdb/cell/1/agent,/Sysdb/cell/2/agent -taillogs\n no shutdown\n\ !\nvlan internal order ascending range 1006 1199\n!\ntransceiver qsfp default-mode\ \ 4x10G\n!\nservice routing protocols model multi-agent\n!\nhostname DC1-SPINE2\n\ ip name-server vrf MGMT 8.8.8.8\nip name-server vrf MGMT 192.168.2.1\n!\nntp local-interface\ \ vrf MGMT Management1\nntp server vrf MGMT 0.fr.pool.ntp.org prefer\nntp server\ - \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode none\n!\nno aaa root\nno enable\ - \ password\n!\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ + \ vrf MGMT 1.fr.pool.ntp.org\n!\nspanning-tree mode none\n!\nno enable password\n\ + no aaa root\n!\nusername admin privilege 15 role network-admin secret sha512 $6$Df86J4/SFMDE3/1K$Hef4KstdoxNDaami37cBquTWOTplC.miMPjXVgQxMe92.e5wxlnXOLlebgPj8Fz1KO0za/RCO7ZIs4Q6Eiq1g1\n\ username ansible privilege 15 role network-admin secret sha512 $6$Dzu11L7yp9j3nCM9$FSptxMPyIL555OMO.ldnjDXgwZmrfMYwHSr0uznE5Qoqvd9a6UdjiFcJUhGLtvXVZR1r.A/iF5aAt50hf/EK4/\n\ username cvpadmin privilege 15 role network-admin secret sha512 $6$rZKcbIZ7iWGAWTUM$TCgDn1KcavS0s.OV8lacMTUkxTByfzcGlFlYUWroxYuU7M/9bIodhRO7nXGzMweUxvbk8mJmQl8Bh44cRktUj.\n\ !\nvrf instance MGMT\n!\ninterface Ethernet1\n description P2P_LINK_TO_DC1-LEAF1A_Ethernet2\n\ diff --git a/playbooks/dc1-fabric-deploy-cvp.yml b/playbooks/dc1-fabric-deploy-cvp.yml index 005ca01f..c675c381 100644 --- a/playbooks/dc1-fabric-deploy-cvp.yml +++ b/playbooks/dc1-fabric-deploy-cvp.yml @@ -13,14 +13,12 @@ name: arista.avd.build_output_folders - name: generate intended variables - tags: [build, generate] import_role: name: arista.avd.eos_designs - name: generate device intended config and documentation - tags: [build, generate] import_role: - name: eos_cli_config_gen + name: arista.avd.eos_cli_config_gen - name: Configuration deployment with CVP hosts: cv_server