Creating Device configuration snippets [CREATED] s1: initial,vlan,ospf,bgp,vrf,vxlan,evpn [CREATED] s2: initial,vlan,ospf,bgp,vrf,vxlan,evpn [CREATED] h1: initial,routing [CREATED] h2: initial,routing [CREATED] h3: initial,routing [CREATED] h4: initial,routing Checking Are lab devices ready to be configured? [INFO] Checking SSH server(s) on s1,s2 [SSH] SSH server on node s2 (device vjunos-router) is ready after 91.4 seconds [SSH] SSH server on node s1 (device vjunos-router) is ready after 92.1 seconds [INFO] Checking lab devices with an Ansible playbook [WARNING]: Found variable using reserved name: hosts PLAY [Wait for SSH servers] **************************************************** PLAY [Wait for device-specific conditions] ************************************* TASK [Set variables that cannot be set with VARS] ****************************** ok: [s1] ok: [s2] TASK [Find device readiness script] ******************************************** ok: [s1] ok: [s2] TASK [Wait for device to become ready] ***************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/readiness-check/junos.yml for s1, s2 TASK [set_fact] **************************************************************** ok: [s1] ok: [s2] TASK [Wait for first interface (ge-0/0/0)] ************************************* ok: [s1] ok: [s2] PLAY RECAP ********************************************************************* s1 : ok=5 changed=0 unreachable=0 failed=0 skipped=0 rescued=0 ignored=0 s2 : ok=5 changed=0 unreachable=0 failed=0 skipped=0 rescued=0 ignored=0 Config Deploying device configurations [INFO] Executing initial configuration for node h1 (namespace clab- ml-17-h1) [INFO] Executing initial configuration for node h2 (namespace clab- ml-17-h2) [INFO] Executing initial configuration for node h3 (namespace clab- ml-17-h3) [INFO] Executing initial configuration for node h4 (namespace clab- ml-17-h4) [INFO] Executing routing configuration for node h1 (namespace clab- ml-17-h1) [INFO] Executing routing configuration for node h4 (namespace clab- ml-17-h4) [INFO] Executing routing configuration for node h3 (namespace clab- ml-17-h3) [INFO] Executing routing configuration for node h2 (namespace clab- ml-17-h2) [INFO] Starting Ansible playbook to deploy the rest of the configurations [WARNING]: Found variable using reserved name: hosts PLAY [Deploy initial device configuration] ************************************* TASK [Set variables that cannot be set with VARS] ****************************** ok: [s2] ok: [s1] TASK [Normalize config on bridge-like devices] ********************************* included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 TASK [Figure out whether to deploy the module normalize on current device] ***** ok: [s2] ok: [s1] TASK [Find configuration template for normalize] ******************************* ok: [s1] ok: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for normalize] *************** ok: [s1] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [s1] skipping: [s2] TASK [Deploy normalize configuration] ****************************************** skipping: [s1] skipping: [s2] TASK [Deploy initial configuration] ******************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 TASK [Figure out whether to deploy the module initial on current device] ******* ok: [s2] ok: [s1] TASK [Find configuration template for initial] ********************************* ok: [s1] ok: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for initial] ***************** ok: [s1] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "initial configuration for s1\n=========================================\nsystem {\n host-name s1;\n static-host-mapping {\n s2 inet 10.0.0.2;\n h1 inet 172.16.0.3;\n h2 inet 172.16.1.4;\n h3 inet 172.16.2.5;\n h4 inet 172.16.3.6;\n }\n}\n\n\n\n\npolicy-options {\n community tg_65000_1 members target:65000:1;\n}\n\n\n\npolicy-options {\n policy-statement vrf-tenant-rt-export {\n term 1 {\n then {\n community add tg_65000_1;\n accept;\n }\n }\n }\n\n\n policy-statement vrf-tenant-rt-import {\n term 1 {\n from community [ tg_65000_1 ];\n then accept;\n }\n term default {\n then reject;\n }\n }\n}\n\nrouting-instances {\n\n tenant {\n instance-type vrf;\n route-distinguisher 65000:1;\n\n vrf-import vrf-tenant-rt-import;\n vrf-export vrf-tenant-rt-export;\n\n routing-options {\n auto-export;\n }\n\n interface irb.1000;\n interface irb.1002;\n interface irb.1001;\n\n }\n\n}\ninterfaces {\n\n\n\n\n\n\n\n\n\n\n\n ge-0/0/1 {\n flexible-vlan-tagging;\n native-vlan-id 1000;\n }\n\n ge-0/0/1.0 {\n vlan-id 1000;\n }\n\n\n\n\n\n\n\n ge-0/0/2 {\n flexible-vlan-tagging;\n native-vlan-id 1002;\n }\n\n ge-0/0/2.0 {\n vlan-id 1002;\n }\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n}\ninterfaces {\n ge-0/0/0 {\n mtu 1614;\n }\n ge-0/0/1 {\n mtu 1522;\n }\n ge-0/0/2 {\n mtu 1522;\n }\n\n lo0.0 {\n \n family inet {\n address 10.0.0.1/32;\n }\n \n }\n ge-0/0/0.0 {\n description \"s1 -> s2\";\n \n family inet {\n address 10.1.0.1/30;\n }\n \n }\n ge-0/0/1.0 {\n description \"[Access VLAN red] s1 -> h1\";\n \n \n }\n ge-0/0/2.0 {\n description \"[Access VLAN green] s1 -> h3\";\n \n \n }\n irb.1000 {\n description \"VLAN red (1000) -> [h1,s2]\";\n \n family inet {\n address 172.16.0.1/24;\n mtu 1500;\n }\n \n }\n irb.1002 {\n description \"VLAN green (1002) -> [h3] [stub]\";\n \n family inet {\n address 172.16.2.1/24;\n mtu 1500;\n }\n \n }\n irb.1001 {\n description \"VLAN blue (1001) -> [h2,s2]\";\n \n family inet {\n address 172.16.1.1/24;\n mtu 1500;\n }\n \n }\n}\nprotocols {\n lldp {\n interface fxp0 {\n disable;\n }\n interface all;\n }\n}\n" } ok: [s2] => { "msg": "initial configuration for s2\n=========================================\nsystem {\n host-name s2;\n static-host-mapping {\n s1 inet 10.0.0.1;\n h1 inet 172.16.0.3;\n h2 inet 172.16.1.4;\n h3 inet 172.16.2.5;\n h4 inet 172.16.3.6;\n }\n}\n\n\n\n\npolicy-options {\n community tg_65000_1 members target:65000:1;\n}\n\n\n\npolicy-options {\n policy-statement vrf-tenant-rt-export {\n term 1 {\n then {\n community add tg_65000_1;\n accept;\n }\n }\n }\n\n\n policy-statement vrf-tenant-rt-import {\n term 1 {\n from community [ tg_65000_1 ];\n then accept;\n }\n term default {\n then reject;\n }\n }\n}\n\nrouting-instances {\n\n tenant {\n instance-type vrf;\n route-distinguisher 65000:1;\n\n vrf-import vrf-tenant-rt-import;\n vrf-export vrf-tenant-rt-export;\n\n routing-options {\n auto-export;\n }\n\n interface irb.1001;\n interface irb.1003;\n interface irb.1000;\n\n }\n\n}\ninterfaces {\n\n\n\n\n\n\n\n\n\n\n\n ge-0/0/1 {\n flexible-vlan-tagging;\n native-vlan-id 1001;\n }\n\n ge-0/0/1.0 {\n vlan-id 1001;\n }\n\n\n\n\n\n\n\n ge-0/0/2 {\n flexible-vlan-tagging;\n native-vlan-id 1003;\n }\n\n ge-0/0/2.0 {\n vlan-id 1003;\n }\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n}\ninterfaces {\n ge-0/0/0 {\n mtu 1614;\n }\n ge-0/0/1 {\n mtu 1522;\n }\n ge-0/0/2 {\n mtu 1522;\n }\n\n lo0.0 {\n \n family inet {\n address 10.0.0.2/32;\n }\n \n }\n ge-0/0/0.0 {\n description \"s2 -> s1\";\n \n family inet {\n address 10.1.0.2/30;\n }\n \n }\n ge-0/0/1.0 {\n description \"[Access VLAN blue] s2 -> h2\";\n \n \n }\n ge-0/0/2.0 {\n description \"[Access VLAN purple] s2 -> h4\";\n \n \n }\n irb.1001 {\n description \"VLAN blue (1001) -> [s1,h2]\";\n \n family inet {\n address 172.16.1.2/24;\n mtu 1500;\n }\n \n }\n irb.1003 {\n description \"VLAN purple (1003) -> [h4] [stub]\";\n \n family inet {\n address 172.16.3.2/24;\n mtu 1500;\n }\n \n }\n irb.1000 {\n description \"VLAN red (1000) -> [h1,s1]\";\n \n family inet {\n address 172.16.0.2/24;\n mtu 1500;\n }\n \n }\n}\nprotocols {\n lldp {\n interface fxp0 {\n disable;\n }\n interface all;\n }\n}\n" } TASK [Deploy initial configuration] ******************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/junos.yml for s1, s2 TASK [junos_config: deploying initial from /work/netlab_cicd/node_files/s1/initial] *** changed: [s1] changed: [s2] PLAY [Deploy module-specific configurations] *********************************** TASK [Set variables that cannot be set with VARS] ****************************** ok: [s1] ok: [s2] TASK [Deploy individual configuration modules] ********************************* included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 => (item=vlan) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 => (item=routing) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 => (item=ospf) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 => (item=bgp) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 => (item=vrf) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 => (item=vxlan) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1, s2 => (item=evpn) TASK [Figure out whether to deploy the module vlan on current device] ********** ok: [s1] ok: [s2] TASK [Find configuration template for vlan] ************************************ ok: [s1] ok: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for vlan] ******************** ok: [s1] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "vlan configuration for s1\n=========================================\ninterfaces {\n\n ge-0/0/1 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/1.0 {\n encapsulation vlan-bridge;\n }\n\n\n ge-0/0/2 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/2.0 {\n encapsulation vlan-bridge;\n }\n\n}\n\n\nbridge-domains {\n\n vlan-1000 {\n domain-type bridge;\n vlan-id 1000;\n routing-interface irb.1000;\n\n interface ge-0/0/1.0;\n }\n\n\n vlan-1001 {\n domain-type bridge;\n vlan-id 1001;\n routing-interface irb.1001;\n\n }\n\n\n vlan-1002 {\n domain-type bridge;\n vlan-id 1002;\n routing-interface irb.1002;\n\n interface ge-0/0/2.0;\n }\n\n}\n" } ok: [s2] => { "msg": "vlan configuration for s2\n=========================================\ninterfaces {\n\n ge-0/0/1 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/1.0 {\n encapsulation vlan-bridge;\n }\n\n\n ge-0/0/2 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/2.0 {\n encapsulation vlan-bridge;\n }\n\n}\n\n\nbridge-domains {\n\n vlan-1000 {\n domain-type bridge;\n vlan-id 1000;\n routing-interface irb.1000;\n\n }\n\n\n vlan-1001 {\n domain-type bridge;\n vlan-id 1001;\n routing-interface irb.1001;\n\n interface ge-0/0/1.0;\n }\n\n\n vlan-1003 {\n domain-type bridge;\n vlan-id 1003;\n routing-interface irb.1003;\n\n interface ge-0/0/2.0;\n }\n\n}\n" } TASK [Deploy vlan configuration] *********************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/junos.yml for s1, s2 TASK [junos_config: deploying vlan from /work/netlab_cicd/node_files/s1/vlan] *** changed: [s2] changed: [s1] TASK [Figure out whether to deploy the module routing on current device] ******* ok: [s1] ok: [s2] TASK [Find configuration template for routing] ********************************* skipping: [s1] skipping: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for routing] ***************** skipping: [s1] skipping: [s2] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [s1] skipping: [s2] TASK [Deploy routing configuration] ******************************************** skipping: [s1] skipping: [s2] TASK [Figure out whether to deploy the module ospf on current device] ********** ok: [s1] ok: [s2] TASK [Find configuration template for ospf] ************************************ ok: [s1] ok: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for ospf] ******************** ok: [s1] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "ospf configuration for s1\n=========================================\nrouting-options {\n router-id 10.0.0.1\n}\nprotocols {\n delete: ospf;\n}\n\nprotocols {\n ospf {\n area 0.0.0.0 {\n interface lo0.0 {\n }\n }\n area 0.0.0.0 {\n interface ge-0/0/0.0 {\n interface-type p2p;\n }\n }\n }\n}\n\n" } ok: [s2] => { "msg": "ospf configuration for s2\n=========================================\nrouting-options {\n router-id 10.0.0.2\n}\nprotocols {\n delete: ospf;\n}\n\nprotocols {\n ospf {\n area 0.0.0.0 {\n interface lo0.0 {\n }\n }\n area 0.0.0.0 {\n interface ge-0/0/0.0 {\n interface-type p2p;\n }\n }\n }\n}\n\n" } TASK [Deploy ospf configuration] *********************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/junos.yml for s1, s2 TASK [junos_config: deploying ospf from /work/netlab_cicd/node_files/s1/ospf] *** [WARNING]: statement not found changed: [s2] changed: [s1] TASK [Figure out whether to deploy the module bgp on current device] *********** ok: [s1] ok: [s2] TASK [Find configuration template for bgp] ************************************* ok: [s1] ok: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for bgp] ********************* ok: [s1] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "bgp configuration for s1\n=========================================\n\nrouting-options {\n autonomous-system 65000;\n router-id 10.0.0.1\n}\n\n\npolicy-options community x-route-permit-mark members large:65535:0:65536;\n\npolicy-options {\n delete: policy-statement bgp-advertise;\n delete: policy-statement bgp-redistribute;\n delete: policy-statement next-hop-ebgp-ipv4;\n delete: policy-statement next-hop-all-ipv4;\n delete: policy-statement next-hop-ebgp-ipv6;\n delete: policy-statement next-hop-all-ipv6;\n delete: route-filter-list bgp-announce;\n}\n\npolicy-options {\n\n route-filter-list bgp-announce {\n }\n\n policy-statement next-hop-ebgp-ipv4 {\n term next-hop-self-ipv4 {\n from {\n family inet;\n route-type external;\n }\n then {\n next-hop self;\n }\n }\n }\n\n policy-statement next-hop-all-ipv4 {\n term next-hop-self-ipv4 {\n from {\n family inet;\n }\n then {\n next-hop self;\n }\n }\n }\n\n policy-statement next-hop-ebgp-ipv6 {\n term next-hop-self-ipv6 {\n from {\n family inet6;\n route-type external;\n }\n then {\n next-hop self;\n }\n }\n }\n\n policy-statement next-hop-all-ipv6 {\n term next-hop-self-ipv6 {\n from {\n family inet6;\n }\n then {\n next-hop self;\n }\n }\n }\n\n\n policy-statement bgp-advertise {\n term advertise {\n from {\n protocol direct;\n interface [ \n lo0.0 ];\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n\n term originate {\n from {\n protocol static;\n route-filter-list bgp-announce;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n\n }\n\n policy-statement bgp-redistribute {\n term redis_bgp {\n from protocol bgp;\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n }\n\n policy-statement bgp-final {\n term final-option {\n from community x-route-permit-mark;\n then {\n community delete x-route-permit-mark;\n accept;\n }\n }\n term default-reject {\n then reject;\n }\n }\n\n policy-statement bgp-initial {\n term initial-cleanup {\n from community x-route-permit-mark;\n then {\n community delete x-route-permit-mark;\n next policy;\n }\n }\n }\n\n}\nprotocols {\n delete: bgp;\n}\nprotocols {\n bgp {\n group ibgp-peers-ipv4 {\n type internal;\n export [ \n next-hop-ebgp-ipv4 bgp-advertise bgp-redistribute bgp-final\n ];\n advertise-inactive;\n neighbor 10.0.0.2 {\n\n local-address 10.0.0.1;\n description s2;\n family inet {\n unicast;\n }\n }\n }\n group ebgp-peers {\n export [ \n bgp-advertise bgp-redistribute bgp-final\n ];\n advertise-inactive;\n }\n }\n}\n" } ok: [s2] => { "msg": "bgp configuration for s2\n=========================================\n\nrouting-options {\n autonomous-system 65000;\n router-id 10.0.0.2\n}\n\n\npolicy-options community x-route-permit-mark members large:65535:0:65536;\n\npolicy-options {\n delete: policy-statement bgp-advertise;\n delete: policy-statement bgp-redistribute;\n delete: policy-statement next-hop-ebgp-ipv4;\n delete: policy-statement next-hop-all-ipv4;\n delete: policy-statement next-hop-ebgp-ipv6;\n delete: policy-statement next-hop-all-ipv6;\n delete: route-filter-list bgp-announce;\n}\n\npolicy-options {\n\n route-filter-list bgp-announce {\n }\n\n policy-statement next-hop-ebgp-ipv4 {\n term next-hop-self-ipv4 {\n from {\n family inet;\n route-type external;\n }\n then {\n next-hop self;\n }\n }\n }\n\n policy-statement next-hop-all-ipv4 {\n term next-hop-self-ipv4 {\n from {\n family inet;\n }\n then {\n next-hop self;\n }\n }\n }\n\n policy-statement next-hop-ebgp-ipv6 {\n term next-hop-self-ipv6 {\n from {\n family inet6;\n route-type external;\n }\n then {\n next-hop self;\n }\n }\n }\n\n policy-statement next-hop-all-ipv6 {\n term next-hop-self-ipv6 {\n from {\n family inet6;\n }\n then {\n next-hop self;\n }\n }\n }\n\n\n policy-statement bgp-advertise {\n term advertise {\n from {\n protocol direct;\n interface [ \n lo0.0 ];\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n\n term originate {\n from {\n protocol static;\n route-filter-list bgp-announce;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n\n }\n\n policy-statement bgp-redistribute {\n term redis_bgp {\n from protocol bgp;\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n }\n\n policy-statement bgp-final {\n term final-option {\n from community x-route-permit-mark;\n then {\n community delete x-route-permit-mark;\n accept;\n }\n }\n term default-reject {\n then reject;\n }\n }\n\n policy-statement bgp-initial {\n term initial-cleanup {\n from community x-route-permit-mark;\n then {\n community delete x-route-permit-mark;\n next policy;\n }\n }\n }\n\n}\nprotocols {\n delete: bgp;\n}\nprotocols {\n bgp {\n group ibgp-peers-ipv4 {\n type internal;\n export [ \n next-hop-ebgp-ipv4 bgp-advertise bgp-redistribute bgp-final\n ];\n advertise-inactive;\n neighbor 10.0.0.1 {\n\n local-address 10.0.0.2;\n description s1;\n family inet {\n unicast;\n }\n }\n }\n group ebgp-peers {\n export [ \n bgp-advertise bgp-redistribute bgp-final\n ];\n advertise-inactive;\n }\n }\n}\n" } TASK [Deploy bgp configuration] ************************************************ included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/junos.yml for s1, s2 TASK [junos_config: deploying bgp from /work/netlab_cicd/node_files/s1/bgp] **** changed: [s2] changed: [s1] TASK [Figure out whether to deploy the module vrf on current device] *********** ok: [s1] ok: [s2] TASK [Find configuration template for vrf] ************************************* ok: [s1] ok: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for vrf] ********************* ok: [s1] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s2] => { "msg": "vrf configuration for s2\n=========================================\n\n\npolicy-options {\n community x-route-permit-mark members large:65535:0:65536;\n\n policy-statement vrf-tenant-bgp-export {\n term redis_bgp {\n from {\n protocol bgp;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n term redis_direct {\n from {\n protocol direct;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n term redis_ospf {\n from {\n protocol ospf;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n term redis_ospf3 {\n from {\n protocol ospf3;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n }\n\n}\n\n\nrouting-instances {\n\n tenant {\n routing-options {\n autonomous-system 65000;\n router-id 10.0.0.2\n }\n\n protocols {\n bgp {\n\n group ebgp-peers {\n export [ vrf-tenant-bgp-export bgp-final ];\n advertise-inactive;\n }\n }\n }\n }\n\n}\nrouting-instances {\n tenant {\n routing-options {\n router-id 10.0.0.2\n }\n }\n}\n\npolicy-options {\n policy-statement vrf-tenant-ospf-export {\n term redis_direct {\n from {\n protocol direct;\n }\n then accept;\n }\n term redis_bgp {\n from protocol bgp;\n then {\n accept;\n }\n }\n term redis_local_target {\n from community [ tg_65000_1 ];\n then accept;\n }\n }\n}\nrouting-instances {\n tenant {\nprotocols {\n delete: ospf;\n}\n\nprotocols {\n ospf {\n export vrf-tenant-ospf-export;\n area 0.0.0.0 {\n interface irb.1001 {\n }\n }\n area 0.0.0.0 {\n interface irb.1003 {\n interface-type p2p;\n passive;\n }\n }\n area 0.0.0.0 {\n interface irb.1000 {\n }\n }\n }\n}\n} }\n\n" } ok: [s1] => { "msg": "vrf configuration for s1\n=========================================\n\n\npolicy-options {\n community x-route-permit-mark members large:65535:0:65536;\n\n policy-statement vrf-tenant-bgp-export {\n term redis_bgp {\n from {\n protocol bgp;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n term redis_direct {\n from {\n protocol direct;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n term redis_ospf {\n from {\n protocol ospf;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n term redis_ospf3 {\n from {\n protocol ospf3;\n }\n then {\n community add x-route-permit-mark;\n next policy;\n }\n }\n }\n\n}\n\n\nrouting-instances {\n\n tenant {\n routing-options {\n autonomous-system 65000;\n router-id 10.0.0.1\n }\n\n protocols {\n bgp {\n\n group ebgp-peers {\n export [ vrf-tenant-bgp-export bgp-final ];\n advertise-inactive;\n }\n }\n }\n }\n\n}\nrouting-instances {\n tenant {\n routing-options {\n router-id 10.0.0.1\n }\n }\n}\n\npolicy-options {\n policy-statement vrf-tenant-ospf-export {\n term redis_direct {\n from {\n protocol direct;\n }\n then accept;\n }\n term redis_bgp {\n from protocol bgp;\n then {\n accept;\n }\n }\n term redis_local_target {\n from community [ tg_65000_1 ];\n then accept;\n }\n }\n}\nrouting-instances {\n tenant {\nprotocols {\n delete: ospf;\n}\n\nprotocols {\n ospf {\n export vrf-tenant-ospf-export;\n area 0.0.0.0 {\n interface irb.1000 {\n }\n }\n area 0.0.0.0 {\n interface irb.1002 {\n interface-type p2p;\n passive;\n }\n }\n area 0.0.0.0 {\n interface irb.1001 {\n }\n }\n }\n}\n} }\n\n" } TASK [Deploy vrf configuration] ************************************************ included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/junos.yml for s1, s2 TASK [junos_config: deploying vrf from /work/netlab_cicd/node_files/s1/vrf] **** changed: [s2] changed: [s1] TASK [Figure out whether to deploy the module vxlan on current device] ********* ok: [s1] ok: [s2] TASK [Find configuration template for vxlan] *********************************** ok: [s1] ok: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for vxlan] ******************* ok: [s2] ok: [s1] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "vxlan configuration for s1\n=========================================\n\npolicy-options {\n policy-statement ecmp {\n then {\n load-balance per-flow;\n }\n }\n}\nrouting-options {\n forwarding-table {\n export ecmp;\n }\n}\n\nswitch-options {\n vtep-source-interface lo0.0;\n}\n\n\n\n\nswitch-options {\n route-distinguisher 10.0.0.1:65535;\n vrf-target target:65000:65535;\n}\n\nprotocols evpn encapsulation vxlan;\n\n" } ok: [s2] => { "msg": "vxlan configuration for s2\n=========================================\n\npolicy-options {\n policy-statement ecmp {\n then {\n load-balance per-flow;\n }\n }\n}\nrouting-options {\n forwarding-table {\n export ecmp;\n }\n}\n\nswitch-options {\n vtep-source-interface lo0.0;\n}\n\n\n\n\nswitch-options {\n route-distinguisher 10.0.0.2:65535;\n vrf-target target:65000:65535;\n}\n\nprotocols evpn encapsulation vxlan;\n\n" } TASK [Deploy vxlan configuration] ********************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/junos.yml for s1, s2 TASK [junos_config: deploying vxlan from /work/netlab_cicd/node_files/s1/vxlan] *** changed: [s2] changed: [s1] TASK [Figure out whether to deploy the module evpn on current device] ********** ok: [s1] ok: [s2] TASK [Find configuration template for evpn] ************************************ ok: [s1] ok: [s2] TASK [fail] ******************************************************************** skipping: [s1] skipping: [s2] TASK [Find configuration deployment deploy_script for evpn] ******************** ok: [s1] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s2] => { "msg": "evpn configuration for s2\n=========================================\n\n\nbridge-domains {\n delete: vlan-1000;\n delete: vlan-1001;\n}\n\nrouting-instances {\n vlan_red {\n bridge-domains {\n vlan-1000 {\n domain-type bridge;\n vlan-id 1000;\n routing-interface irb.1000;\n vxlan {\n vni 6000;\n }\n }\n }\n }\n vlan_blue {\n bridge-domains {\n vlan-1001 {\n domain-type bridge;\n vlan-id 1001;\n interface ge-0/0/1.0;\n routing-interface irb.1001;\n vxlan {\n vni 6001;\n }\n }\n }\n }\n}\n\nrouting-instances {\n}\n\n\n\nprotocols {\n bgp {\n group ibgp-peers-ipv4 {\n neighbor 10.0.0.1 {\n delete: shutdown;\n family evpn {\n signaling;\n }\n }\n }\n group ebgp-peers {\n }\n }\n}\n\npolicy-options {\n}\n\n\nrouting-instances {\n vlan_red {\n instance-type mac-vrf;\n service-type vlan-based;\n vtep-source-interface lo0.0;\n route-distinguisher 10.0.0.2:1000;\n vrf-target import target:65000:1000;\n vrf-target export target:65000:1000;\n protocols {\n evpn {\n encapsulation vxlan;\n default-gateway no-gateway-community;\n extended-vni-list all;\n }\n }\n }\n vlan_blue {\n instance-type mac-vrf;\n service-type vlan-based;\n vtep-source-interface lo0.0;\n route-distinguisher 10.0.0.2:1001;\n vrf-target import target:65000:1001;\n vrf-target export target:65000:1001;\n protocols {\n evpn {\n encapsulation vxlan;\n default-gateway no-gateway-community;\n extended-vni-list all;\n }\n }\n }\n}\n\nrouting-instances {\n}\n\nrouting-instances {\n\n\n}\n\npolicy-options {\n}\n\ninterfaces {\n irb.1000 {\n proxy-macip-advertisement;\n }\n irb.1001 {\n proxy-macip-advertisement;\n }\n}\n\n" } ok: [s1] => { "msg": "evpn configuration for s1\n=========================================\n\n\nbridge-domains {\n delete: vlan-1000;\n delete: vlan-1001;\n}\n\nrouting-instances {\n vlan_red {\n bridge-domains {\n vlan-1000 {\n domain-type bridge;\n vlan-id 1000;\n interface ge-0/0/1.0;\n routing-interface irb.1000;\n vxlan {\n vni 6000;\n }\n }\n }\n }\n vlan_blue {\n bridge-domains {\n vlan-1001 {\n domain-type bridge;\n vlan-id 1001;\n routing-interface irb.1001;\n vxlan {\n vni 6001;\n }\n }\n }\n }\n}\n\nrouting-instances {\n}\n\n\n\nprotocols {\n bgp {\n group ibgp-peers-ipv4 {\n neighbor 10.0.0.2 {\n delete: shutdown;\n family evpn {\n signaling;\n }\n }\n }\n group ebgp-peers {\n }\n }\n}\n\npolicy-options {\n}\n\n\nrouting-instances {\n vlan_red {\n instance-type mac-vrf;\n service-type vlan-based;\n vtep-source-interface lo0.0;\n route-distinguisher 10.0.0.1:1000;\n vrf-target import target:65000:1000;\n vrf-target export target:65000:1000;\n protocols {\n evpn {\n encapsulation vxlan;\n default-gateway no-gateway-community;\n extended-vni-list all;\n }\n }\n }\n vlan_blue {\n instance-type mac-vrf;\n service-type vlan-based;\n vtep-source-interface lo0.0;\n route-distinguisher 10.0.0.1:1001;\n vrf-target import target:65000:1001;\n vrf-target export target:65000:1001;\n protocols {\n evpn {\n encapsulation vxlan;\n default-gateway no-gateway-community;\n extended-vni-list all;\n }\n }\n }\n}\n\nrouting-instances {\n}\n\nrouting-instances {\n\n\n}\n\npolicy-options {\n}\n\ninterfaces {\n irb.1000 {\n proxy-macip-advertisement;\n }\n irb.1001 {\n proxy-macip-advertisement;\n }\n}\n\n" } TASK [Deploy evpn configuration] *********************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/junos.yml for s1, s2 TASK [junos_config: deploying evpn from /work/netlab_cicd/node_files/s1/evpn] *** [WARNING]: mgd: statement has no contents; ignored changed: [s1] changed: [s2] PLAY [Deploy custom deployment templates] ************************************** skipping: no hosts matched PLAY RECAP ********************************************************************* s1 : ok=57 changed=7 unreachable=0 failed=0 skipped=15 rescued=0 ignored=0 s2 : ok=57 changed=7 unreachable=0 failed=0 skipped=15 rescued=0 ignored=0 Results of configuration script deployments ================================================================================ h1 Script: initial,routing h2 Script: initial,routing h3 Script: initial,routing h4 Script: initial,routing The devices under test are VLAN-to-VXLAN routers using asymmetric IRB with EVPN control plane and running OSPF within the VRF (across VXLAN segments) to exchange information about non-EVPN subnets. All hosts should be able to ping each other