Creating Device configuration snippets [CREATED] h1: initial,routing [CREATED] h2: initial,routing [CREATED] h3: initial,routing [CREATED] h4: initial,routing [CREATED] dut: initial,vlan,isis,bgp,sr,evpn [CREATED] s2: initial,vlan,isis,bgp,sr,evpn [CREATED] p: initial,isis,sr Config Deploying device configurations [INFO] Executing initial configuration for node h1 (namespace clab- ml-17-h1) [INFO] Executing initial configuration for node h2 (namespace clab- ml-17-h2) [INFO] Executing initial configuration for node h3 (namespace clab- ml-17-h3) [INFO] Executing initial configuration for node h4 (namespace clab- ml-17-h4) [INFO] Executing initial configuration for node p [INFO] Executing routing configuration for node h2 (namespace clab- ml-17-h2) [INFO] Executing routing configuration for node h1 (namespace clab- ml-17-h1) [INFO] Executing routing configuration for node h3 (namespace clab- ml-17-h3) [INFO] Executing routing configuration for node h4 (namespace clab- ml-17-h4) [INFO] Executing isis configuration for node p [INFO] Executing sr configuration for node p [INFO] Starting Ansible playbook to deploy the rest of the configurations [WARNING]: Found variable using reserved name: hosts PLAY [Deploy initial device configuration] ************************************* TASK [Set variables that cannot be set with VARS] ****************************** ok: [dut] ok: [s2] TASK [Normalize config on bridge-like devices] ********************************* included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut, s2 TASK [Figure out whether to deploy the module normalize on current device] ***** ok: [dut] ok: [s2] TASK [Find configuration template for normalize] ******************************* ok: [dut] ok: [s2] TASK [fail] ******************************************************************** skipping: [dut] skipping: [s2] TASK [Find configuration deployment deploy_script for normalize] *************** ok: [dut] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [dut] skipping: [s2] TASK [Deploy normalize configuration] ****************************************** skipping: [dut] skipping: [s2] TASK [Deploy initial configuration] ******************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut, s2 TASK [Figure out whether to deploy the module initial on current device] ******* ok: [dut] ok: [s2] TASK [Find configuration template for initial] ********************************* ok: [dut] ok: [s2] TASK [fail] ******************************************************************** skipping: [dut] skipping: [s2] TASK [Find configuration deployment deploy_script for initial] ***************** ok: [dut] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "initial configuration for dut\n=========================================\nhostname dut\n!\nno ip domain lookup\nlogging buffered 256000\n\n!\nlldp run\n!\nip host h1 172.31.1.1\nip host h2 172.31.1.2\nip host h3 172.31.1.3\nip host h4 172.31.1.4\nip host p 10.0.0.7 10.1.0.2 10.1.0.5\nip host s2 10.0.0.6 10.1.0.6\n!\nip routing\n!\nno ipv6 unicast-routing\n!\n\n!\n!\ninterface Loopback0\n ip address 10.0.0.5 255.255.255.255\n!\ninterface GigabitEthernet1\n no lldp transmit\n no lldp receive\n!\ninterface GigabitEthernet2\n description dut -> p\n mtu 1600\n ip address 10.1.0.1 255.255.255.252\n no shutdown\n!\ninterface GigabitEthernet3\n description [Access VLAN red] dut -> h1\n no shutdown\n!\ninterface GigabitEthernet4\n description [Access VLAN blue] dut -> h3\n no shutdown\n!\ninterface BDI1000\n description VLAN red (1000) -> [h1,h2,s2]\n no shutdown\n!\ninterface BDI1001\n description VLAN blue (1001) -> [h3,h4,s2]\n no shutdown\n!\n!\nline vty 0 4\n exec-timeout 0 0 \n!\nno banner exec\nno banner login\nno banner incoming\n" } ok: [s2] => { "msg": "initial configuration for s2\n=========================================\nhostname s2\n!\nno ip domain lookup\nlogging buffered 256000\n\n!\nlldp run\n!\nip host dut 10.0.0.5 10.1.0.1\nip host h1 172.31.1.1\nip host h2 172.31.1.2\nip host h3 172.31.1.3\nip host h4 172.31.1.4\nip host p 10.0.0.7 10.1.0.2 10.1.0.5\n!\nip routing\n!\nno ipv6 unicast-routing\n!\n\n!\n!\ninterface Loopback0\n ip address 10.0.0.6 255.255.255.255\n!\ninterface GigabitEthernet1\n no lldp transmit\n no lldp receive\n!\ninterface GigabitEthernet2\n description s2 -> p\n mtu 1600\n ip address 10.1.0.6 255.255.255.252\n no shutdown\n!\ninterface GigabitEthernet3\n description [Access VLAN red] s2 -> h2\n no shutdown\n!\ninterface GigabitEthernet4\n description [Access VLAN blue] s2 -> h4\n no shutdown\n!\ninterface BDI1000\n description VLAN red (1000) -> [h1,dut,h2]\n no shutdown\n!\ninterface BDI1001\n description VLAN blue (1001) -> [h3,dut,h4]\n no shutdown\n!\n!\nline vty 0 4\n exec-timeout 0 0 \n!\nno banner exec\nno banner login\nno banner incoming\n" } TASK [Deploy initial configuration] ******************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/ios.yml for dut, s2 TASK [ios_config: deploying initial from /work/netlab_cicd/node_files/dut/initial] *** [WARNING]: To ensure idempotency and correct diff the input configuration lines should be similar to how they appear if present in the running configuration on device including the indentation changed: [dut] changed: [s2] PLAY [Deploy module-specific configurations] *********************************** TASK [Set variables that cannot be set with VARS] ****************************** ok: [dut] ok: [s2] TASK [Deploy individual configuration modules] ********************************* included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut, s2 => (item=vlan) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut, s2 => (item=routing) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut, s2 => (item=isis) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut, s2 => (item=bgp) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut, s2 => (item=sr) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut, s2 => (item=evpn) TASK [Figure out whether to deploy the module vlan on current device] ********** ok: [dut] ok: [s2] TASK [Find configuration template for vlan] ************************************ ok: [dut] ok: [s2] TASK [fail] ******************************************************************** skipping: [dut] skipping: [s2] TASK [Find configuration deployment deploy_script for vlan] ******************** ok: [dut] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "vlan configuration for dut\n=========================================\n!\nbridge-domain 1000\n member GigabitEthernet3 service-instance 1000\n!\nbridge-domain 1001\n member GigabitEthernet4 service-instance 1001\n!\ninterface GigabitEthernet3\n service instance 1000 ethernet\n encapsulation untagged\n!\ninterface GigabitEthernet4\n service instance 1001 ethernet\n encapsulation untagged\n" } ok: [s2] => { "msg": "vlan configuration for s2\n=========================================\n!\nbridge-domain 1000\n member GigabitEthernet3 service-instance 1000\n!\nbridge-domain 1001\n member GigabitEthernet4 service-instance 1001\n!\ninterface GigabitEthernet3\n service instance 1000 ethernet\n encapsulation untagged\n!\ninterface GigabitEthernet4\n service instance 1001 ethernet\n encapsulation untagged\n" } TASK [Deploy vlan configuration] *********************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/ios.yml for dut, s2 TASK [ios_config: deploying vlan from /work/netlab_cicd/node_files/dut/vlan] *** changed: [dut] changed: [s2] TASK [Figure out whether to deploy the module routing on current device] ******* ok: [dut] ok: [s2] TASK [Find configuration template for routing] ********************************* skipping: [dut] skipping: [s2] TASK [fail] ******************************************************************** skipping: [dut] skipping: [s2] TASK [Find configuration deployment deploy_script for routing] ***************** skipping: [dut] skipping: [s2] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [dut] skipping: [s2] TASK [Deploy routing configuration] ******************************************** skipping: [dut] skipping: [s2] TASK [Figure out whether to deploy the module isis on current device] ********** ok: [dut] ok: [s2] TASK [Find configuration template for isis] ************************************ ok: [dut] ok: [s2] TASK [fail] ******************************************************************** skipping: [dut] skipping: [s2] TASK [Find configuration deployment deploy_script for isis] ******************** ok: [dut] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "isis configuration for dut\n=========================================\n!\n!\ninterface Loopback0\n! \n ip router isis Gandalf\n!\ninterface GigabitEthernet2\n! dut -> p\n ip router isis Gandalf\n isis network point-to-point\n isis three-way-handshake ietf\n!\n!\nrouter isis Gandalf\n log-adjacency-changes\n hostname dynamic\n is-type level-2\n metric-style wide\n net 49.0001.0000.0000.0005.00\n" } ok: [s2] => { "msg": "isis configuration for s2\n=========================================\n!\n!\ninterface Loopback0\n! \n ip router isis Gandalf\n!\ninterface GigabitEthernet2\n! s2 -> p\n ip router isis Gandalf\n isis network point-to-point\n isis three-way-handshake ietf\n!\n!\nrouter isis Gandalf\n log-adjacency-changes\n hostname dynamic\n is-type level-2\n metric-style wide\n net 49.0001.0000.0000.0006.00\n" } TASK [Deploy isis configuration] *********************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/ios.yml for dut, s2 TASK [ios_config: deploying isis from /work/netlab_cicd/node_files/dut/isis] *** changed: [s2] changed: [dut] TASK [Figure out whether to deploy the module bgp on current device] *********** ok: [dut] ok: [s2] TASK [Find configuration template for bgp] ************************************* ok: [dut] ok: [s2] TASK [fail] ******************************************************************** skipping: [dut] skipping: [s2] TASK [Find configuration deployment deploy_script for bgp] ********************* ok: [dut] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "bgp configuration for dut\n=========================================\n!\nip bgp-community new-format\n!\nrouter bgp 65000\n no bgp default ipv4-unicast\n bgp update-delay 5\n bgp nopeerup-delay cold-boot 1\n bgp nopeerup-delay user-initiated 1\n bgp router-id 10.0.0.5\n neighbor 10.0.0.6 remote-as 65000\n neighbor 10.0.0.6 description s2\n neighbor 10.0.0.6 update-source Loopback0\n\n!\n address-family ipv4\n bgp scan-time 5\n!\n!\n! Originate networks from connected subnets\n!\n network 10.0.0.5 mask 255.255.255.255\n\n!\n neighbor 10.0.0.6 activate\n neighbor 10.0.0.6 advertisement-interval 0\n neighbor 10.0.0.6 next-hop-self\n neighbor 10.0.0.6 send-community both\n\n!\n" } ok: [s2] => { "msg": "bgp configuration for s2\n=========================================\n!\nip bgp-community new-format\n!\nrouter bgp 65000\n no bgp default ipv4-unicast\n bgp update-delay 5\n bgp nopeerup-delay cold-boot 1\n bgp nopeerup-delay user-initiated 1\n bgp router-id 10.0.0.6\n neighbor 10.0.0.5 remote-as 65000\n neighbor 10.0.0.5 description dut\n neighbor 10.0.0.5 update-source Loopback0\n\n!\n address-family ipv4\n bgp scan-time 5\n!\n!\n! Originate networks from connected subnets\n!\n network 10.0.0.6 mask 255.255.255.255\n\n!\n neighbor 10.0.0.5 activate\n neighbor 10.0.0.5 advertisement-interval 0\n neighbor 10.0.0.5 next-hop-self\n neighbor 10.0.0.5 send-community both\n\n!\n" } TASK [Deploy bgp configuration] ************************************************ included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/ios.yml for dut, s2 TASK [ios_config: deploying bgp from /work/netlab_cicd/node_files/dut/bgp] ***** changed: [dut] changed: [s2] TASK [Figure out whether to deploy the module sr on current device] ************ ok: [dut] ok: [s2] TASK [Find configuration template for sr] ************************************** ok: [dut] ok: [s2] TASK [fail] ******************************************************************** skipping: [dut] skipping: [s2] TASK [Find configuration deployment deploy_script for sr] ********************** ok: [dut] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "sr configuration for dut\n=========================================\nmpls ip\n!\nsegment-routing mpls\n !\n set-attributes\n address-family ipv4\n explicit-null\n !\n connected-prefix-sid-map\n address-family ipv4\n 10.0.0.5/32 index 5 range 1\n!\nrouter isis Gandalf\n segment-routing mpls\n" } ok: [s2] => { "msg": "sr configuration for s2\n=========================================\nmpls ip\n!\nsegment-routing mpls\n !\n set-attributes\n address-family ipv4\n explicit-null\n !\n connected-prefix-sid-map\n address-family ipv4\n 10.0.0.6/32 index 6 range 1\n!\nrouter isis Gandalf\n segment-routing mpls\n" } TASK [Deploy sr configuration] ************************************************* included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/ios.yml for dut, s2 TASK [ios_config: deploying sr from /work/netlab_cicd/node_files/dut/sr] ******* changed: [dut] changed: [s2] TASK [Figure out whether to deploy the module evpn on current device] ********** ok: [dut] ok: [s2] TASK [Find configuration template for evpn] ************************************ ok: [dut] ok: [s2] TASK [fail] ******************************************************************** skipping: [dut] skipping: [s2] TASK [Find configuration deployment deploy_script for evpn] ******************** ok: [dut] ok: [s2] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => { "msg": "evpn configuration for dut\n=========================================\n! \nbridge-domain 1000\n member evpn-instance 1000\n! \nbridge-domain 1001\n member evpn-instance 1001\n!\nl2vpn evpn instance 1000 vlan-based\n replication-type ingress\n rd 10.0.0.5:1000\n route-target import 65000:1000\n route-target export 65000:1000\n!\nl2vpn evpn instance 1001 vlan-based\n replication-type ingress\n rd 10.0.0.5:1001\n route-target import 65000:1001\n route-target export 65000:1001\n!\nrouter bgp 65000\n address-family l2vpn evpn\n bgp scan-time 5\n neighbor 10.0.0.6 encap mpls\n neighbor 10.0.0.6 activate\n neighbor 10.0.0.6 send-community both\n" } ok: [s2] => { "msg": "evpn configuration for s2\n=========================================\n! \nbridge-domain 1000\n member evpn-instance 1000\n! \nbridge-domain 1001\n member evpn-instance 1001\n!\nl2vpn evpn instance 1000 vlan-based\n replication-type ingress\n rd 10.0.0.6:1000\n route-target import 65000:1000\n route-target export 65000:1000\n!\nl2vpn evpn instance 1001 vlan-based\n replication-type ingress\n rd 10.0.0.6:1001\n route-target import 65000:1001\n route-target export 65000:1001\n!\nrouter bgp 65000\n address-family l2vpn evpn\n bgp scan-time 5\n neighbor 10.0.0.5 encap mpls\n neighbor 10.0.0.5 activate\n neighbor 10.0.0.5 send-community both\n" } TASK [Deploy evpn configuration] *********************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/ios.yml for dut, s2 TASK [ios_config: deploying evpn from /work/netlab_cicd/node_files/dut/evpn] *** changed: [dut] changed: [s2] PLAY [Deploy custom deployment templates] ************************************** skipping: no hosts matched PLAY RECAP ********************************************************************* dut : ok=50 changed=6 unreachable=0 failed=0 skipped=14 rescued=0 ignored=0 s2 : ok=50 changed=6 unreachable=0 failed=0 skipped=14 rescued=0 ignored=0 Results of configuration script deployments ================================================================================ h1 Script: initial,routing h2 Script: initial,routing h3 Script: initial,routing h4 Script: initial,routing p Script: initial,isis,sr The device under test is an EVPN PE-device bridging two VLANs over MPLS. The other EVPN PE-device is an Arista cEOS. Both VLANs are using the same IP prefix to identify potential inter-VLAN leaking. * h1 and h2 should be able to ping each other * h3 and h4 should be able to ping each other * h1 should not be able to reach h3 or h4 Please note it might take a while for the lab to work due to STP learning phase