autovpn dg clab

aristanetworks · Sep 4, 2024 · 8efcd24 · 8efcd24
1 parent 0197d7d
commit 8efcd24
Show file tree

Hide file tree

Showing 16 changed files with 357 additions and 83 deletions.
diff --git a/tech-library/wan/autovpn/zbackend-infra/clab/clab-wan-autovpn-dg.yml b/tech-library/wan/autovpn/zbackend-infra/clab/clab-wan-autovpn-dg.yml
@@ -121,6 +121,15 @@ topology:
       exec:
         - bash /usr/local/bin/hostnetconfig.sh -i4 10.20.20.101/24 -i6 2001:db8:20:20::101/64 -g 10.20.20.1
 
+    HostA3:
+      kind: linux
+      image: mitchv85/devhost
+      mgmt-ipv4: 172.100.100.203
+      ports:
+        - '22203:22'
+      exec:
+        - bash /usr/local/bin/hostnetconfig.sh -i4 10.30.30.101/24 -i6 2001:db8:30:30::101/64 -g 10.30.30.1
+
   ###########################
   ##### DC2
   ###########################
@@ -198,20 +207,29 @@ topology:
     HostB1:
       kind: linux
       image: mitchv85/devhost
-      mgmt-ipv4: 172.100.100.203
+      mgmt-ipv4: 172.100.100.204
       ports:
-        - '22203:22'
+        - '22204:22'
       exec:
         - bash /usr/local/bin/hostnetconfig.sh -i4 10.10.10.102/24 -i6 2001:db8:10:10::102/64 -g 10.10.10.1
 
     HostB2:
       kind: linux
       image: mitchv85/devhost
-      mgmt-ipv4: 172.100.100.204
+      mgmt-ipv4: 172.100.100.205
       ports:
-        - '22204:22'
+        - '22205:22'
       exec:
-        - bash /usr/local/bin/hostnetconfig.sh -i4 10.30.30.101/24 -i6 2001:db8:30:30::101/64 -g 10.30.30.1
+        - bash /usr/local/bin/hostnetconfig.sh -i4 10.40.40.101/24 -i6 2001:db8:40:40::101/64 -g 10.40.40.1
+
+    HostB3:
+      kind: linux
+      image: mitchv85/devhost
+      mgmt-ipv4: 172.100.100.206
+      ports:
+        - '22206:22'
+      exec:
+        - bash /usr/local/bin/hostnetconfig.sh -i4 10.50.50.101/24 -i6 2001:db8:50:50::101/64 -g 10.50.50.1
 
   ###########################
   ##### SITE1
@@ -263,20 +281,20 @@ topology:
     HostC1:
       kind: linux
       image: mitchv85/devhost
-      mgmt-ipv4: 172.100.100.205
+      mgmt-ipv4: 172.100.100.207
       ports:
-        - '22205:22'
+        - '22207:22'
       exec:
-        - bash /usr/local/bin/hostnetconfig.sh -i4 10.40.40.101/24 -i6 2001:db8:40:40::102/64 -g 10.40.40.1
+        - bash /usr/local/bin/hostnetconfig.sh -i4 10.60.60.101/24 -i6 2001:db8:60:60::102/64 -g 10.60.60.1
 
     HostC2:
       kind: linux
       image: mitchv85/devhost
-      mgmt-ipv4: 172.100.100.206
+      mgmt-ipv4: 172.100.100.208
       ports:
-        - '22206:22'
+        - '22208:22'
       exec:
-        - bash /usr/local/bin/hostnetconfig.sh -i4 10.50.50.101/24 -i6 2001:db8:50:50::101/64 -g 10.50.50.1
+        - bash /usr/local/bin/hostnetconfig.sh -i4 10.70.70.101/24 -i6 2001:db8:70:70::101/64 -g 10.70.70.1
 
   ###########################
   ##### SITE2
@@ -311,20 +329,20 @@ topology:
     HostD1:
       kind: linux
       image: mitchv85/devhost
-      mgmt-ipv4: 172.100.100.207
+      mgmt-ipv4: 172.100.100.209
       ports:
-        - '22207:22'
+        - '22209:22'
       exec:
-        - bash /usr/local/bin/hostnetconfig.sh -i4 10.60.60.101/24 -i6 2001:db8:60:60::102/64 -g 10.60.60.1
+        - bash /usr/local/bin/hostnetconfig.sh -i4 10.80.80.101/24 -i6 2001:db8:80:80::102/64 -g 10.80.80.1
 
     HostD2:
       kind: linux
       image: mitchv85/devhost
-      mgmt-ipv4: 172.100.100.208
+      mgmt-ipv4: 172.100.100.210
       ports:
-        - '22208:22'
+        - '22210:22'
       exec:
-        - bash /usr/local/bin/hostnetconfig.sh -i4 10.70.70.101/24 -i6 2001:db8:70:70::101/64 -g 10.70.70.1
+        - bash /usr/local/bin/hostnetconfig.sh -i4 10.90.90.101/24 -i6 2001:db8:90:90::101/64 -g 10.90.90.1
 
   ###########################
   ##### INTERNET
@@ -363,6 +381,7 @@ topology:
     - endpoints: ["DC1-SPINE:et5", "DC1-BORDER2:et1"]
     - endpoints: ["DC1-LEAF:et2", "HostA1:eth1"]
     - endpoints: ["DC1-LEAF:et3", "HostA2:eth1"]
+    - endpoints: ["DC1-LEAF:et4", "HostA3:eth1"]
   #####################
   ### DC1 2
   #####################
@@ -373,6 +392,7 @@ topology:
     - endpoints: ["DC2-SPINE:et5", "DC2-BORDER2:et1"]
     - endpoints: ["DC2-LEAF:et2", "HostB1:eth1"]
     - endpoints: ["DC2-LEAF:et3", "HostB2:eth1"]
+    - endpoints: ["DC2-LEAF:et4", "HostB3:eth1"]
   #####################
   ### Site1
   #####################

diff --git a/tech-library/wan/autovpn/zbackend-infra/clab/configs/DC1-BORDER1.cfg b/tech-library/wan/autovpn/zbackend-infra/clab/configs/DC1-BORDER1.cfg
@@ -43,10 +43,15 @@ vlan 10
 vlan 20
    name Green
 !
+vlan 30
+   name Pink
+!
 vrf instance MGMT
 !
 vrf instance PROD
 !
+vrf instance DEV
+!
 aaa authorization exec default local
 !
 interface Ethernet1
@@ -80,11 +85,17 @@ interface Vlan20
    vrf PROD
    ip address virtual 10.20.20.1/24
 !
+interface Vlan30
+   mtu 9014
+   vrf DEV
+   ip address virtual 10.30.30.1/24
+!
 interface Vxlan1
    vxlan source-interface Loopback1
    vxlan udp-port 4789
-   vxlan vlan 10,20 vni 10010,10020
+   vxlan vlan 10,20,30 vni 10010,10020,10030
    vxlan vrf PROD vni 51
+   vxlan vrf DEV vni 52
 !
 mac address-table aging-time 1800
 !
@@ -93,6 +104,7 @@ ip virtual-router mac-address 00:1c:73:00:00:01
 ip routing
 no ip routing vrf MGMT
 ip routing vrf PROD
+ip routing vrf DEV
 !
 ip prefix-list PL-LOOPBACKS
    seq 10 permit 10.0.0.0/16 eq 32
@@ -141,6 +153,11 @@ router bgp 65102
       route-target both 10020:10020
       redistribute learned
    !
+   vlan 30
+      rd 10.0.1.4:10030
+      route-target both 10030:10030
+      redistribute learned
+   !
    address-family evpn
       neighbor LOCAL-EVPN-PEERS activate
       route import match-failure action discard
@@ -152,7 +169,13 @@ router bgp 65102
       rd 10.0.1.4:51
       route-target import evpn 51:51
       route-target export evpn 51:51
+   !
+   vrf DEV
+      rd 10.0.1.4:52
+      route-target import evpn 52:52
+      route-target export evpn 52:52
 !
+
 router multicast
    ipv4
       software-forwarding kernel
@@ -164,4 +187,4 @@ management ssh
    vrf MGMT
       no shutdown
 !
-end
+end
diff --git a/tech-library/wan/autovpn/zbackend-infra/clab/configs/DC1-BORDER2.cfg b/tech-library/wan/autovpn/zbackend-infra/clab/configs/DC1-BORDER2.cfg
@@ -43,10 +43,15 @@ vlan 10
 vlan 20
    name Green
 !
+vlan 30
+   name Pink
+!
 vrf instance MGMT
 !
 vrf instance PROD
 !
+vrf instance DEV
+!
 aaa authorization exec default local
 !
 interface Ethernet1
@@ -80,11 +85,17 @@ interface Vlan20
    vrf PROD
    ip address virtual 10.20.20.1/24
 !
+interface Vlan30
+   mtu 9014
+   vrf DEV
+   ip address virtual 10.30.30.1/24
+!
 interface Vxlan1
    vxlan source-interface Loopback1
    vxlan udp-port 4789
-   vxlan vlan 10,20 vni 10010,10020
+   vxlan vlan 10,20,30 vni 10010,10020,10030
    vxlan vrf PROD vni 51
+   vxlan vrf DEV vni 52
 !
 mac address-table aging-time 1800
 !
@@ -93,6 +104,7 @@ ip virtual-router mac-address 00:1c:73:00:00:01
 ip routing
 no ip routing vrf MGMT
 ip routing vrf PROD
+ip routing vrf DEV
 !
 ip prefix-list PL-LOOPBACKS
    seq 10 permit 10.0.0.0/16 eq 32
@@ -152,6 +164,11 @@ router bgp 65103
       rd 10.0.1.5:51
       route-target import evpn 51:51
       route-target export evpn 51:51
+   !
+   vrf DEV
+      rd 10.0.1.5:52
+      route-target import evpn 52:52
+      route-target export evpn 52:52
 !
 router multicast
    ipv4
@@ -164,4 +181,4 @@ management ssh
    vrf MGMT
       no shutdown
 !
-end
+end
diff --git a/tech-library/wan/autovpn/zbackend-infra/clab/configs/DC1-LEAF.cfg b/tech-library/wan/autovpn/zbackend-infra/clab/configs/DC1-LEAF.cfg
@@ -43,10 +43,15 @@ vlan 10
 vlan 20
    name Green
 !
+vlan 30
+   name Pink
+!
 vrf instance MGMT
 !
 vrf instance PROD
 !
+vrf instance DEV
+!
 aaa authorization exec default local
 !
 interface Ethernet1
@@ -66,6 +71,12 @@ interface Ethernet3
    switchport
    spanning-tree portfast
 !
+interface Ethernet4
+   description HostA3
+   switchport access vlan 30
+   switchport
+   spanning-tree portfast
+!
 interface Loopback0
    description Globally Unique Address
    ip address 10.0.1.1/32
@@ -88,11 +99,17 @@ interface Vlan20
    vrf PROD
    ip address virtual 10.20.20.1/24
 !
+interface Vlan30
+   mtu 9014
+   vrf DEV
+   ip address virtual 10.30.30.1/24
+!
 interface Vxlan1
    vxlan source-interface Loopback1
    vxlan udp-port 4789
-   vxlan vlan 10,20 vni 10010,10020
+   vxlan vlan 10,20,30 vni 10010,10020,10030
    vxlan vrf PROD vni 51
+   vxlan vrf DEV vni 52
 !
 mac address-table aging-time 1800
 !
@@ -101,6 +118,7 @@ ip virtual-router mac-address 00:1c:73:00:00:01
 ip routing
 no ip routing vrf MGMT
 ip routing vrf PROD
+ip routing vrf DEV
 !
 ip prefix-list PL-LOOPBACKS
    seq 10 permit 10.0.0.0/16 eq 32
@@ -149,6 +167,11 @@ router bgp 65101
       route-target both 10020:10020
       redistribute learned
    !
+   vlan 30
+      rd 10.0.1.1:10023
+      route-target both 10030:10030
+      redistribute learned
+   !
    address-family evpn
       neighbor LOCAL-EVPN-PEERS activate
       route import match-failure action discard
@@ -161,6 +184,12 @@ router bgp 65101
       route-target import evpn 51:51
       route-target export evpn 51:51
       redistribute connected
+   !
+   vrf DEV
+      rd 10.0.1.1:52
+      route-target import evpn 52:52
+      route-target export evpn 52:52
+      redistribute connected
 !
 router multicast
    ipv4
@@ -173,4 +202,4 @@ management ssh
    vrf MGMT
       no shutdown
 !
-end
+end