Creating Device configuration snippets [CREATED] hr1: initial,routing [CREATED] hr2: initial,routing [CREATED] hb1: initial,routing [CREATED] hb2: initial,routing [CREATED] dut: initial,vlan,ospf,bgp,vrf,vxlan,evpn [CREATED] s2: initial,vlan,ospf,bgp,vrf,vxlan,evpn Config Deploying device configurations [INFO] Executing initial configuration for node hr1 (namespace clab- ml-17-hr1) [INFO] Executing initial configuration for node hr2 (namespace clab- ml-17-hr2) [INFO] Executing initial configuration for node hb1 (namespace clab- ml-17-hb1) [INFO] Executing initial configuration for node hb2 (namespace clab- ml-17-hb2) [INFO] Executing initial configuration for node s2 [INFO] Executing routing configuration for node hr1 (namespace clab- ml-17-hr1) [INFO] Executing routing configuration for node hr2 (namespace clab- ml-17-hr2) [INFO] Executing routing configuration for node hb1 (namespace clab- ml-17-hb1) [INFO] Executing routing configuration for node hb2 (namespace clab- ml-17-hb2) [INFO] Executing vlan configuration for node s2 [INFO] Executing ospf configuration for node s2 [INFO] Executing bgp configuration for node s2 [INFO] Executing vrf configuration for node s2 [INFO] Executing vxlan configuration for node s2 [INFO] Executing evpn configuration for node s2 [INFO] Starting Ansible playbook to deploy the rest of the configurations [WARNING]: Found variable using reserved name: hosts PLAY [Deploy initial device configuration] ************************************* TASK [Set variables that cannot be set with VARS] ****************************** ok: [dut] TASK [Deploy initial configuration] ******************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for dut TASK [Figure out whether to deploy the module initial on current device] ******* ok: [dut] TASK [Find configuration template for initial] ********************************* ok: [dut] TASK [fail] ******************************************************************** skipping: [dut] TASK [Find configuration deployment deploy_script for initial] ***************** ok: [dut] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "initial configuration for dut\n=========================================\n\nupdates:\n\n- path: /interface[name=system0]/subinterface[index=0]\n value:\n description: \"No description\"\n admin-state: enable\n ipv4:\n admin-state: enable\n address:\n - ip-prefix: \"10.0.0.5/32\"\n\n- path: /interface[name=ethernet-1/1]\n value:\n description: \"dut ~ s2\"\n # min 1500; max 9412 for 7220, 9500 for 7250 platforms\n mtu: 1614\n subinterface:\n # min 1500; max 9412 for 7220, 9500 for 7250 platforms\n ip-mtu: 1600\n index: 0\n description: \"dut ~ s2\"\n\n- path: /interface[name=ethernet-1/1]/subinterface[index=0]\n value:\n description: \"dut ~ s2\"\n admin-state: enable\n ipv4:\n admin-state: enable\n address:\n - ip-prefix: \"10.1.0.1/30\"\n primary: [null]\n\n- path: /interface[name=ethernet-1/2]\n value:\n description: \"dut ~ hr1\"\n subinterface:\n index: 0\n description: \"dut ~ hr1\"\n\n- path: /interface[name=ethernet-1/2]/subinterface[index=0]\n value:\n description: \"dut ~ hr1\"\n admin-state: enable\n ipv4:\n admin-state: enable\n address:\n - ip-prefix: \"172.16.0.5/24\"\n primary: [null]\n\n- path: /interface[name=ethernet-1/3]\n value:\n description: \"dut ~ hb1\"\n subinterface:\n index: 0\n description: \"dut ~ hb1\"\n\n- path: /interface[name=ethernet-1/3]/subinterface[index=0]\n value:\n description: \"dut ~ hb1\"\n admin-state: enable\n ipv4:\n admin-state: enable\n address:\n - ip-prefix: \"172.16.2.5/24\"\n primary: [null]\n\n\n\n- path: /network-instance[name=default]\n value:\n type: default\n interface:\n - name: system0.0\n\n- path: /network-instance[name=default]\n value:\n type: default\n interface:\n - name: ethernet-1/1.0\n\n\n\n# TODO: vdata.rd, vdata.import/export, vdata.af\n- path: /network-instance[name=customer]\n value:\n type: ip-vrf\n interface:\n - name: ethernet-1/2.0\n\n\n\n# TODO: vdata.rd, vdata.import/export, vdata.af\n- path: /network-instance[name=other]\n value:\n type: ip-vrf\n interface:\n - name: ethernet-1/3.0\n\n\n" } TASK [Deploy initial configuration] ******************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/srlinux.yml for dut TASK [Generate JSON-RPC YAML configuration] ************************************ ok: [dut] TASK [Update SRL initial node configuration (template=/work/netlab_cicd/node_files/dut/initial)] *** changed: [dut] TASK [debug] ******************************************************************* skipping: [dut] PLAY [Deploy module-specific configurations] *********************************** TASK [Set variables that cannot be set with VARS] ****************************** ok: [dut] TASK [Deploy individual configuration modules] ********************************* included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for dut => (item=vlan) included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for dut => (item=routing) included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for dut => (item=ospf) included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for dut => (item=bgp) included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for dut => (item=vrf) included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for dut => (item=vxlan) included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for dut => (item=evpn) TASK [Figure out whether to deploy the module vlan on current device] ********** ok: [dut] TASK [Find configuration template for vlan] ************************************ ok: [dut] TASK [fail] ******************************************************************** skipping: [dut] TASK [Find configuration deployment deploy_script for vlan] ******************** ok: [dut] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "vlan configuration for dut\n=========================================\n\nupdates:\n \n" } TASK [Deploy vlan configuration] *********************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/srlinux.yml for dut TASK [Generate JSON-RPC YAML configuration] ************************************ ok: [dut] TASK [Update SRL vlan node configuration (template=/work/netlab_cicd/node_files/dut/vlan)] *** skipping: [dut] TASK [debug] ******************************************************************* skipping: [dut] TASK [Figure out whether to deploy the module routing on current device] ******* ok: [dut] TASK [Find configuration template for routing] ********************************* skipping: [dut] TASK [fail] ******************************************************************** skipping: [dut] TASK [Find configuration deployment deploy_script for routing] ***************** skipping: [dut] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [dut] TASK [Deploy routing configuration] ******************************************** skipping: [dut] TASK [Figure out whether to deploy the module ospf on current device] ********** ok: [dut] TASK [Find configuration template for ospf] ************************************ ok: [dut] TASK [fail] ******************************************************************** skipping: [dut] TASK [Find configuration deployment deploy_script for ospf] ******************** ok: [dut] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "ospf configuration for dut\n=========================================\nupdates:\n\n\n- path: /network-instance[name=default]\n value:\n router-id: 10.0.0.5\n protocols:\n ospf:\n instance:\n - name: \"0\"\n version: ospf-v2\n admin-state: enable\n max-ecmp-paths: 64\n area:\n - area-id: 0.0.0.0\n interface:\n - interface-name: system0.0\n passive: True\n - area-id: 0.0.0.0\n interface:\n - interface-name: ethernet-1/1.0\n interface-type: \"point-to-point\"\n failure-detection:\n enable-bfd: False\n # OSPF not configured on external interface ethernet-1/2\n # OSPF not configured on external interface ethernet-1/3\n\n" } TASK [Deploy ospf configuration] *********************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/srlinux.yml for dut TASK [Generate JSON-RPC YAML configuration] ************************************ ok: [dut] TASK [Update SRL ospf node configuration (template=/work/netlab_cicd/node_files/dut/ospf)] *** changed: [dut] TASK [debug] ******************************************************************* skipping: [dut] TASK [Figure out whether to deploy the module bgp on current device] *********** ok: [dut] TASK [Find configuration template for bgp] ************************************* ok: [dut] TASK [fail] ******************************************************************** skipping: [dut] TASK [Find configuration deployment deploy_script for bgp] ********************* ok: [dut] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "bgp configuration for dut\n=========================================\nupdates:\n\n- path: /routing-policy/policy[name=accept_all]\n value:\n default-action:\n policy-result: accept\n\n- path: /routing-policy/community-set[name=ibgp-mark]\n value:\n member: [ \"65536:0:65536\" ]\n\n- path: /routing-policy/policy[name=ibgp-mark]\n value:\n default-action:\n policy-result: reject\n statement:\n - name: mark-ibgp-routes\n action:\n bgp:\n communities:\n add: ibgp-mark\n policy-result: accept\n\n- path: /routing-policy/prefix-set[name=default_bgp_advertise]\n value:\n prefix: [] # Make sure it exists\n\n- path: /routing-policy/policy[name=default_bgp_export]\n value:\n default-action:\n policy-result: reject\n statement:\n - name: prefixes\n match:\n prefix:\n prefix-set: default_bgp_advertise\n action:\n policy-result: next-policy\n - name: bgp\n match:\n protocol: bgp\n action:\n policy-result: next-policy\n bgp:\n communities:\n remove:\n ibgp-mark\n\n\n- path: /network-instance[name=default]/protocols/bgp\n value:\n admin-state: enable\n autonomous-system: 65000\n router-id: 10.0.0.5\n ebgp-default-policy:\n export-reject-all: False\n import-reject-all: False\n\n afi-safi:\n - afi-safi-name: ipv4-unicast\n admin-state: enable\n\n- path: /routing-policy/prefix-set[name=default_bgp_advertise]\n value:\n prefix:\n - ip-prefix: 10.0.0.5/32\n mask-length-range: exact\n\n\n\n- path: /network-instance[name=default]/protocols/bgp/group[group-name=ibgp-ipv4]\n value:\n admin-state: enable\n# neighbor: {'name': 's2', 'as': 65000, 'type': 'ibgp', 'ipv4': '10.0.0.6', '_source_intf': {'type': 'loopback', 'neighbors': [], 'virtual_interface': True, 'ifindex': 0, 'ifname': 'lo0.0', 'ipv4': '10.0.0.5/32'}, 'next_hop_self': 'ebgp', 'activate': {'ipv4': True}, 'evpn': 'ipv4'}\n# ipv4: True\n# ipv6: True\n afi-safi:\n - afi-safi-name: ipv4-unicast\n admin-state: enable\n send-community-type: ['standard', 'large', 'extended']\n\n import-policy: ['accept_all']\n export-policy: ['default_bgp_export', 'accept_all']\n - afi-safi-name: ipv6-unicast\n admin-state: disable\n send-community-type: ['standard', 'large', 'extended']\n\n import-policy: ['accept_all']\n export-policy: ['default_bgp_export', 'accept_all']\n - afi-safi-name: evpn\n admin-state: enable\n send-community-type: ['standard', 'large', 'extended']\n\n\n timers:\n connect-retry: 10\n _annotate_connect-retry: \"Reduce default 120s to 10s\"\n minimum-advertisement-interval: 1\n peer-as: 65000\n transport:\n local-address: 10.0.0.5\n next-hop-self: True\n\n\n- path: /network-instance[name=default]/protocols/bgp\n value:\n neighbor:\n - peer-address: \"10.0.0.6\"\n description: s2\n peer-group: ibgp-ipv4\n # neighbor: {'name': 's2', 'as': 65000, 'type': 'ibgp', 'ipv4': '10.0.0.6', '_source_intf': {'type': 'loopback', 'neighbors': [], 'virtual_interface': True, 'ifindex': 0, 'ifname': 'lo0.0', 'ipv4': '10.0.0.5/32'}, 'next_hop_self': 'ebgp', 'activate': {'ipv4': True}, 'evpn': 'ipv4'}\n # ipv4: True\n # ipv6: False\n afi-safi:\n - afi-safi-name: ipv4-unicast\n admin-state: enable\n send-community-type: ['standard', 'large', 'extended']\n\n - afi-safi-name: ipv6-unicast\n admin-state: disable\n - afi-safi-name: evpn\n admin-state: enable\n send-community-type: ['standard', 'large', 'extended']\n\n\n\n" } TASK [Deploy bgp configuration] ************************************************ included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/srlinux.yml for dut TASK [Generate JSON-RPC YAML configuration] ************************************ ok: [dut] TASK [Update SRL bgp node configuration (template=/work/netlab_cicd/node_files/dut/bgp)] *** changed: [dut] TASK [debug] ******************************************************************* skipping: [dut] TASK [Figure out whether to deploy the module vrf on current device] *********** ok: [dut] TASK [Find configuration template for vrf] ************************************* ok: [dut] TASK [fail] ******************************************************************** skipping: [dut] TASK [Find configuration deployment deploy_script for vrf] ********************* ok: [dut] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "vrf configuration for dut\n=========================================\n\nupdates:\n\n- path: /network-instance[name=customer]\n value:\n type: ip-vrf\n\n\n- path: /routing-policy/community-set[name=C65000_1]\n value:\n member:\n - \"target:65000:1\" # Single member, else matching is AND\n\n- path: /routing-policy/community-set[name=customer_export]\n value:\n member:\n - \"target:65000:1\"\n\n\n- path: /routing-policy/policy[name=customer_bgp_export]\n value:\n default-action:\n policy-result: reject\n statement:\n - name: bgp\n match:\n protocol: bgp\n action:\n policy-result: next-policy\n bgp:\n communities:\n remove:\n ibgp-mark\n - name: bgp_evpn\n match:\n protocol: bgp-evpn\n action:\n policy-result: next-policy\n - name: export_local\n match:\n protocol: local\n action:\n policy-result: next-policy\n\n\n- path: /network-instance[name=customer]/protocols/bgp\n value:\n admin-state: enable\n autonomous-system: 65000\n router-id: 10.0.0.5\n ebgp-default-policy:\n export-reject-all: False\n import-reject-all: False\n\n afi-safi:\n - afi-safi-name: ipv4-unicast\n admin-state: enable\n\n- path: /routing-policy/prefix-set[name=customer_bgp_advertise]\n value:\n prefix:\n - ip-prefix: 172.16.0.0/24\n mask-length-range: exact\n\n\n\n\n\n- path: /network-instance[name=customer]/protocols/bgp-vpn\n value:\n bgp-instance:\n - id: 1\n route-distinguisher:\n rd: \"65000:1\"\n\n- path: /network-instance[name=customer]/inter-instance-policies\n value:\n apply-policy:\n export-policy:\n - \"customer_vpn_export\"\n import-policy:\n - \"customer_vpn_import\"\n\n- path: /routing-policy/policy[name=customer_vpn_export]\n value:\n default-action:\n policy-result: \"accept\"\n bgp:\n communities:\n add: \"customer_export\"\n\n- path: /routing-policy/policy[name=customer_vpn_import]\n value:\n default-action:\n policy-result: \"reject\"\n statement:\n - name: 11\n match:\n bgp:\n community-set: \"C65000_1\"\n action:\n policy-result: \"accept\"\n\n\n- path: /network-instance[name=other]\n value:\n type: ip-vrf\n\n\n- path: /routing-policy/community-set[name=C65000_2]\n value:\n member:\n - \"target:65000:2\" # Single member, else matching is AND\n\n- path: /routing-policy/community-set[name=other_export]\n value:\n member:\n - \"target:65000:2\"\n\n\n- path: /routing-policy/policy[name=other_bgp_export]\n value:\n default-action:\n policy-result: reject\n statement:\n - name: bgp\n match:\n protocol: bgp\n action:\n policy-result: next-policy\n bgp:\n communities:\n remove:\n ibgp-mark\n - name: bgp_evpn\n match:\n protocol: bgp-evpn\n action:\n policy-result: next-policy\n - name: export_local\n match:\n protocol: local\n action:\n policy-result: next-policy\n\n\n- path: /network-instance[name=other]/protocols/bgp\n value:\n admin-state: enable\n autonomous-system: 65000\n router-id: 10.0.0.5\n ebgp-default-policy:\n export-reject-all: False\n import-reject-all: False\n\n afi-safi:\n - afi-safi-name: ipv4-unicast\n admin-state: enable\n\n- path: /routing-policy/prefix-set[name=other_bgp_advertise]\n value:\n prefix:\n - ip-prefix: 172.16.2.0/24\n mask-length-range: exact\n\n\n\n\n\n- path: /network-instance[name=other]/protocols/bgp-vpn\n value:\n bgp-instance:\n - id: 1\n route-distinguisher:\n rd: \"65000:2\"\n\n- path: /network-instance[name=other]/inter-instance-policies\n value:\n apply-policy:\n export-policy:\n - \"other_vpn_export\"\n import-policy:\n - \"other_vpn_import\"\n\n- path: /routing-policy/policy[name=other_vpn_export]\n value:\n default-action:\n policy-result: \"accept\"\n bgp:\n communities:\n add: \"other_export\"\n\n- path: /routing-policy/policy[name=other_vpn_import]\n value:\n default-action:\n policy-result: \"reject\"\n statement:\n - name: 11\n match:\n bgp:\n community-set: \"C65000_2\"\n action:\n policy-result: \"accept\"\n\n" } TASK [Deploy vrf configuration] ************************************************ included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/srlinux.yml for dut TASK [Generate JSON-RPC YAML configuration] ************************************ ok: [dut] TASK [Update SRL vrf node configuration (template=/work/netlab_cicd/node_files/dut/vrf)] *** changed: [dut] TASK [debug] ******************************************************************* skipping: [dut] TASK [Figure out whether to deploy the module vxlan on current device] ********* ok: [dut] TASK [Find configuration template for vxlan] *********************************** ok: [dut] TASK [fail] ******************************************************************** skipping: [dut] TASK [Find configuration deployment deploy_script for vxlan] ******************* ok: [dut] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "vxlan configuration for dut\n=========================================\n\nupdates:\n\n- path: /tunnel-interface[name=vxlan0]/vxlan-interface[index=100]\n value:\n type: routed\n ingress:\n vni: 5042\n egress:\n source-ip: use-system-ipv4-address\n\n- path: /network-instance[name=customer]\n value:\n type: ip-vrf\n vxlan-interface:\n - name: vxlan0.100\n protocols:\n bgp-vpn:\n bgp-instance:\n - id: 1\n # route-distinguisher:\n # rd: \"65000:1\"\n _annotate: \"RD left as for EVPN services and ECMP to work as expected, not '65000:1'\"\n route-target:\n _annotate: \"For compatibility with frr, override auto-derived RT based on EVI 100 with VNI 5042\"\n import-rt: \"target:65000:1\"\n export-rt: \"target:65000:1\"\n bgp-evpn:\n bgp-instance:\n - id: 1\n evi: 100\n ecmp: 8\n vxlan-interface: vxlan0.100\n\n- path: /tunnel-interface[name=vxlan0]/vxlan-interface[index=101]\n value:\n type: routed\n ingress:\n vni: 5067\n egress:\n source-ip: use-system-ipv4-address\n\n- path: /network-instance[name=other]\n value:\n type: ip-vrf\n vxlan-interface:\n - name: vxlan0.101\n protocols:\n bgp-vpn:\n bgp-instance:\n - id: 1\n # route-distinguisher:\n # rd: \"65000:2\"\n _annotate: \"RD left as for EVPN services and ECMP to work as expected, not '65000:2'\"\n route-target:\n _annotate: \"For compatibility with frr, override auto-derived RT based on EVI 101 with VNI 5067\"\n import-rt: \"target:65000:2\"\n export-rt: \"target:65000:2\"\n bgp-evpn:\n bgp-instance:\n - id: 1\n evi: 101\n ecmp: 8\n vxlan-interface: vxlan0.101\n\n" } TASK [Deploy vxlan configuration] ********************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/srlinux.yml for dut TASK [Generate JSON-RPC YAML configuration] ************************************ ok: [dut] TASK [Update SRL vxlan node configuration (template=/work/netlab_cicd/node_files/dut/vxlan)] *** changed: [dut] TASK [debug] ******************************************************************* skipping: [dut] TASK [Figure out whether to deploy the module evpn on current device] ********** ok: [dut] TASK [Find configuration template for evpn] ************************************ ok: [dut] TASK [fail] ******************************************************************** skipping: [dut] TASK [Find configuration deployment deploy_script for evpn] ******************** ok: [dut] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "evpn configuration for dut\n=========================================\n\n\nupdates:\n- path: /network-instance[name=default]/protocols/bgp\n value:\n group:\n - group-name: ibgp-ipv4 # Could create a dedicated group for EVPN only?\n afi-safi:\n - afi-safi-name: evpn\n admin-state: enable\n route-advertisement:\n rapid-withdrawal: True\n afi-safi:\n - afi-safi-name: evpn\n evpn:\n rapid-update: True\n\n" } TASK [Deploy evpn configuration] *********************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/srlinux.yml for dut TASK [Generate JSON-RPC YAML configuration] ************************************ ok: [dut] TASK [Update SRL evpn node configuration (template=/work/netlab_cicd/node_files/dut/evpn)] *** changed: [dut] TASK [debug] ******************************************************************* skipping: [dut] PLAY [Deploy custom deployment templates] ************************************** skipping: no hosts matched PLAY RECAP ********************************************************************* dut : ok=59 changed=6 unreachable=0 failed=0 skipped=20 rescued=0 ignored=0 Results of configuration script deployments ================================================================================ hr1 Script: initial,routing hr2 Script: initial,routing hb1 Script: initial,routing hb2 Script: initial,routing s2 Script: initial,vlan,ospf,bgp,vrf,vxlan,evpn The device under test is a VLAN-to-VXLAN layer-3 switch between an access interface and an EVPN transit VNI. Hosts should be able to ping each other. Please note it might take a while for the lab to work due to STP learning phase.