Refactor: Move wan_vni to wan_virtual_topologies

aristanetworks · Feb 23, 2024 · d0e123c · d0e123c
1 parent d602bb1
commit d0e123c
Show file tree

Hide file tree

Showing 51 changed files with 2,775 additions and 809 deletions.
diff --git a/...a/avd/molecule/eos_designs_unit_tests/intended/configs/autovpn-edge-no-default-policy.cfg b/...a/avd/molecule/eos_designs_unit_tests/intended/configs/autovpn-edge-no-default-policy.cfg
@@ -22,17 +22,27 @@ router path-selection
    load-balance policy LB-CONTROL-PLANE-PROFILE
       path-group INET
    !
-   load-balance policy LB-DEFAULT-AVT-POLICY-DEFAULT
+   load-balance policy LB-DEFAULT-POLICY-DEFAULT
       path-group INET
    !
-   policy DEFAULT-AVT-POLICY-WITH-CP
+   policy DEFAULT-POLICY
       default-match
-         load-balance LB-DEFAULT-AVT-POLICY-DEFAULT
+         load-balance LB-DEFAULT-POLICY-DEFAULT
+   !
+   policy DEFAULT-POLICY-WITH-CP
+      default-match
+         load-balance LB-DEFAULT-POLICY-DEFAULT
       10 application-profile CONTROL-PLANE-APPLICATION-PROFILE
          load-balance LB-CONTROL-PLANE-PROFILE
    !
    vrf default
-      path-selection-policy DEFAULT-AVT-POLICY-WITH-CP
+      path-selection-policy DEFAULT-POLICY-WITH-CP
+   !
+   vrf IT
+      path-selection-policy DEFAULT-POLICY
+   !
+   vrf PROD
+      path-selection-policy DEFAULT-POLICY
 !
 spanning-tree mode none
 !

diff --git a/...cule/eos_designs_unit_tests/intended/configs/cv-pathfinder-edge-custom-default-policy.cfg b/...cule/eos_designs_unit_tests/intended/configs/cv-pathfinder-edge-custom-default-policy.cfg
@@ -0,0 +1,313 @@
+!RANCID-CONTENT-TYPE: arista
+!
+flow tracking hardware
+   tracker WAN-FLOW-TRACKER
+      record export on inactive timeout 70000
+      record export on interval 5000
+      exporter DPI-EXPORTER
+         collector 127.0.0.1
+         local interface Loopback0
+         template interval 5000
+   no shutdown
+!
+service routing protocols model multi-agent
+!
+hostname cv-pathfinder-edge-custom-default-policy
+!
+router adaptive-virtual-topology
+   topology role edge
+   region AVD_Land_West id 42
+   zone DEFAULT-ZONE id 1
+   site Site1 id 1
+   !
+   policy DEFAULT-POLICY
+      !
+      match application-profile VIDEO
+         avt profile DEFAULT-POLICY-VIDEO
+      !
+      match application-profile default
+         avt profile DEFAULT-POLICY-DEFAULT
+   !
+   policy DEFAULT-POLICY-WITH-CP
+      !
+      match application-profile CONTROL-PLANE-APPLICATION-PROFILE
+         avt profile CONTROL-PLANE-PROFILE
+      !
+      match application-profile VIDEO
+         avt profile DEFAULT-POLICY-VIDEO
+      !
+      match application-profile default
+         avt profile DEFAULT-POLICY-DEFAULT
+   !
+   profile CONTROL-PLANE-PROFILE
+      path-selection load-balance LB-CONTROL-PLANE-PROFILE
+   !
+   profile DEFAULT-POLICY-DEFAULT
+      path-selection load-balance LB-DEFAULT-POLICY-DEFAULT
+   !
+   profile DEFAULT-POLICY-VIDEO
+      path-selection load-balance LB-DEFAULT-POLICY-VIDEO
+   !
+   profile DEFAULT-POLICY-WITH-CP-DEFAULT
+      path-selection load-balance LB-DEFAULT-POLICY-WITH-CP-DEFAULT
+   !
+   profile DEFAULT-POLICY-WITH-CP-VIDEO
+      path-selection load-balance LB-DEFAULT-POLICY-WITH-CP-VIDEO
+   !
+   vrf default
+      avt policy DEFAULT-POLICY-WITH-CP
+      avt profile DEFAULT-POLICY-DEFAULT id 1
+      avt profile DEFAULT-POLICY-VIDEO id 3
+      avt profile CONTROL-PLANE-PROFILE id 254
+   !
+   vrf PROD
+      avt policy DEFAULT-POLICY
+      avt profile DEFAULT-POLICY-DEFAULT id 1
+      avt profile DEFAULT-POLICY-VIDEO id 3
+!
+router path-selection
+   tcp mss ceiling ipv4 ingress
+   !
+   path-group INET id 101
+      ipsec profile CP-PROFILE
+      !
+      local interface Ethernet1
+         stun server-profile INET-cv-pathfinder-pathfinder-Ethernet1 INET-cv-pathfinder-pathfinder-Ethernet3
+      !
+      peer dynamic
+      !
+      peer static router-ip 192.168.144.1
+         name cv-pathfinder-pathfinder
+         ipv4 address 10.7.7.7
+         ipv4 address 10.9.9.9
+   !
+   path-group LTE id 102
+      ipsec profile CP-PROFILE
+      !
+      local interface Ethernet3
+      !
+      peer dynamic
+   !
+   path-group MPLS id 100
+      !
+      local interface Ethernet2
+         stun server-profile MPLS-cv-pathfinder-pathfinder-Ethernet2
+      !
+      peer dynamic
+      !
+      peer static router-ip 192.168.144.1
+         name cv-pathfinder-pathfinder
+         ipv4 address 172.16.0.1
+   !
+   load-balance policy LB-CONTROL-PLANE-PROFILE
+      path-group INET
+      path-group MPLS
+   !
+   load-balance policy LB-DEFAULT-POLICY-DEFAULT
+      path-group INET
+      path-group LTE priority 42
+   !
+   load-balance policy LB-DEFAULT-POLICY-VIDEO
+      path-group INET
+      path-group MPLS
+!
+spanning-tree mode none
+!
+no enable password
+no aaa root
+!
+vrf instance IT
+!
+vrf instance MGMT
+!
+vrf instance PROD
+!
+ip security
+   !
+   ike policy CP-IKE-POLICY
+      local-id 192.168.255.1
+   !
+   sa policy DP-SA-POLICY
+      esp encryption aes128
+      pfs dh-group 14
+   !
+   sa policy CP-SA-POLICY
+      esp encryption aes128
+      pfs dh-group 14
+   !
+   profile DP-PROFILE
+      sa-policy DP-SA-POLICY
+      connection start
+      shared-key 7 ABCDEF1234567890666
+      dpd 10 50 clear
+      mode transport
+   !
+   profile CP-PROFILE
+      ike-policy CP-IKE-POLICY
+      sa-policy CP-SA-POLICY
+      connection start
+      shared-key 7 ABCDEF1234567890
+      dpd 10 50 clear
+      mode transport
+   !
+   key controller
+      profile DP-PROFILE
+!
+interface Dps1
+   description DPS Interface
+   mtu 9214
+   flow tracker hardware WAN-FLOW-TRACKER
+   ip address 192.168.255.1/32
+!
+interface Ethernet1
+   no shutdown
+   no switchport
+   flow tracker hardware WAN-FLOW-TRACKER
+   ip address dhcp
+   dhcp client accept default-route
+!
+interface Ethernet2
+   no shutdown
+   no switchport
+   flow tracker hardware WAN-FLOW-TRACKER
+   ip address 172.15.5.5/31
+!
+interface Ethernet3
+   no shutdown
+   no switchport
+   flow tracker hardware WAN-FLOW-TRACKER
+   ip address 172.20.20.20/31
+!
+interface Loopback0
+   description Router_ID
+   no shutdown
+   ip address 192.168.42.1/32
+!
+interface Vxlan1
+   description cv-pathfinder-edge-custom-default-policy_VTEP
+   vxlan source-interface Dps1
+   vxlan udp-port 4789
+   vxlan vrf default vni 1
+   vxlan vrf IT vni 100
+   vxlan vrf PROD vni 42
+!
+application traffic recognition
+   !
+   application ipv4 CONTROL-PLANE-APPLICATION
+      destination prefix field-set CONTROL-PLANE-APP-DEST-PREFIXES
+   !
+   application-profile CONTROL-PLANE-APPLICATION-PROFILE
+      application CONTROL-PLANE-APPLICATION
+   !
+   application-profile VIDEO
+      application CUSTOM-APPLICATION-1
+      application skype
+   !
+   field-set ipv4 prefix CONTROL-PLANE-APP-DEST-PREFIXES
+      192.168.144.1/32
+!
+ip routing
+ip routing vrf IT
+no ip routing vrf MGMT
+ip routing vrf PROD
+!
+ip extcommunity-list ECL-EVPN-SOO permit soo 192.168.42.1:1
+!
+ip prefix-list PL-LOOPBACKS-EVPN-OVERLAY
+   seq 10 permit 192.168.42.0/24 eq 32
+!
+route-map RM-CONN-2-BGP permit 10
+   match ip address prefix-list PL-LOOPBACKS-EVPN-OVERLAY
+   set extcommunity soo 192.168.42.1:1 additive
+!
+route-map RM-EVPN-EXPORT-VRF-DEFAULT permit 10
+   match extcommunity ECL-EVPN-SOO
+!
+route-map RM-EVPN-SOO-IN deny 10
+   match extcommunity ECL-EVPN-SOO
+!
+route-map RM-EVPN-SOO-IN permit 20
+!
+route-map RM-EVPN-SOO-OUT permit 10
+   set extcommunity soo 192.168.42.1:1 additive
+!
+router bfd
+   multihop interval 300 min-rx 300 multiplier 3
+!
+router bgp 65000
+   router-id 192.168.42.1
+   maximum-paths 16
+   update wait-install
+   no bgp default ipv4-unicast
+   neighbor WAN-OVERLAY-PEERS peer group
+   neighbor WAN-OVERLAY-PEERS remote-as 65000
+   neighbor WAN-OVERLAY-PEERS update-source Dps1
+   neighbor WAN-OVERLAY-PEERS bfd
+   neighbor WAN-OVERLAY-PEERS bfd interval 1000 min-rx 1000 multiplier 10
+   neighbor WAN-OVERLAY-PEERS ttl maximum-hops 42
+   neighbor WAN-OVERLAY-PEERS password 7 htm4AZe9mIQOO1uiMuGgYQ==
+   neighbor WAN-OVERLAY-PEERS send-community
+   neighbor WAN-OVERLAY-PEERS maximum-routes 0
+   neighbor 192.168.144.1 peer group WAN-OVERLAY-PEERS
+   neighbor 192.168.144.1 description cv-pathfinder-pathfinder
+   redistribute connected route-map RM-CONN-2-BGP
+   !
+   address-family evpn
+      neighbor WAN-OVERLAY-PEERS route-map RM-EVPN-SOO-IN in
+      neighbor WAN-OVERLAY-PEERS route-map RM-EVPN-SOO-OUT out
+      neighbor WAN-OVERLAY-PEERS activate
+   !
+   address-family ipv4
+      no neighbor WAN-OVERLAY-PEERS activate
+   !
+   address-family ipv4 sr-te
+      neighbor WAN-OVERLAY-PEERS activate
+   !
+   address-family link-state
+      neighbor WAN-OVERLAY-PEERS activate
+      path-selection
+   !
+   address-family path-selection
+      bgp additional-paths receive
+      bgp additional-paths send any
+      neighbor WAN-OVERLAY-PEERS activate
+   !
+   vrf default
+      rd 192.168.42.1:1
+      route-target import evpn 1:1
+      route-target export evpn 1:1
+      route-target export evpn route-map RM-EVPN-EXPORT-VRF-DEFAULT
+   !
+   vrf IT
+      rd 192.168.42.1:100
+      route-target import evpn 100:100
+      route-target export evpn 100:100
+      router-id 192.168.42.1
+      redistribute connected
+   !
+   vrf PROD
+      rd 192.168.42.1:42
+      route-target import evpn 42:42
+      route-target export evpn 42:42
+      router-id 192.168.42.1
+      redistribute connected
+!
+router traffic-engineering
+!
+management api http-commands
+   protocol https
+   no shutdown
+   !
+   vrf MGMT
+      no shutdown
+!
+stun
+   client
+      server-profile INET-cv-pathfinder-pathfinder-Ethernet1
+         ip address 10.7.7.7
+      server-profile INET-cv-pathfinder-pathfinder-Ethernet3
+         ip address 10.9.9.9
+      server-profile MPLS-cv-pathfinder-pathfinder-Ethernet2
+         ip address 172.16.0.1
+!
+end