From 4b4c1852c44c214cdb3c9e92755170f22e9a3b0b Mon Sep 17 00:00:00 2001
From: Damien <damien@arnodo.fr>
Date: Sat, 18 Apr 2026 08:38:21 +0000
Subject: [PATCH] Add Core router configs (AS 65500, iBGP + VRF gold transit)

core1/core2 provide L3 transit between DC and Campus fabrics. Each
physical link toward a Border Leaf is subinterfaced (.100 default,
.200 VRF gold). OSPF area 0 in default VRF, eBGP to DC BLs (65005)
and Campus BLs (66005), iBGP between core1 and core2 via Loopback0.
VRF gold uses redistribute connected and VRF-aware eBGP sessions on
.200 subinterfaces to stitch VRF gold end-to-end across fabrics.
---
 configs/core1.cfg | 224 ++++++++++++++++++++++++++++++++++++++++++++++
 configs/core2.cfg | 224 ++++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 448 insertions(+)
 create mode 100644 configs/core1.cfg
 create mode 100644 configs/core2.cfg

diff --git a/configs/core1.cfg b/configs/core1.cfg
new file mode 100644
index 0000000..51a035d
--- /dev/null
+++ b/configs/core1.cfg
@@ -0,0 +1,224 @@
+! Core1 Configuration
+! Core Router - AS 65500
+! Transit between DC Border Leafs and Campus Border Leafs
+!
+hostname core1
+!
+! LLDP Management0
+lldp management-address Management0
+!
+! enable gNMI API
+management api gnmi
+   transport grpc default
+   provider eos-native
+!
+! admin/admin for ssh access
+username admin privilege 15 role network-admin secret sha512 $6$xQktFrbdeqEhVzLM$.1wOJB25nw2fqYaSXDu6y4mo6AP9hngMCFe2vGDl84hWoz00Q.4unoEBqspNI0HEoRz.OZhdBHqQv12KABf0B0
+!
+! Enable IP routing
+ip routing
+!
+! Enable routing protocols
+service routing protocols model multi-agent
+!
+! VRF Definition
+vrf instance gold
+!
+! Management interface
+interface Management0
+   ip address 172.16.0.10/24
+!
+! Loopback for BGP Router-ID (default VRF)
+interface Loopback0
+   description Router-ID
+   ip address 10.0.200.1/32
+!
+! Loopback in VRF Gold (router-id and health)
+interface Loopback1
+   description VRF-Gold-RouterID
+   vrf gold
+   ip address 10.0.200.101/32
+!
+! Link to DC Border Leaf 1 (subinterfaced: .100 default VRF, .200 VRF gold)
+interface Ethernet1
+   description border-leaf-dc1
+   no switchport
+   mtu 9214
+!
+interface Ethernet1.100
+   description border-leaf-dc1-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.4.0/31
+   mtu 9214
+!
+interface Ethernet1.200
+   description border-leaf-dc1-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.14.0/31
+   mtu 9214
+!
+! Link to DC Border Leaf 2
+interface Ethernet2
+   description border-leaf-dc2
+   no switchport
+   mtu 9214
+!
+interface Ethernet2.100
+   description border-leaf-dc2-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.4.2/31
+   mtu 9214
+!
+interface Ethernet2.200
+   description border-leaf-dc2-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.14.2/31
+   mtu 9214
+!
+! Link to Campus Border Leaf 1
+interface Ethernet3
+   description border-leaf-campus1
+   no switchport
+   mtu 9214
+!
+interface Ethernet3.100
+   description border-leaf-campus1-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.5.0/31
+   mtu 9214
+!
+interface Ethernet3.200
+   description border-leaf-campus1-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.15.0/31
+   mtu 9214
+!
+! Link to Campus Border Leaf 2
+interface Ethernet4
+   description border-leaf-campus2
+   no switchport
+   mtu 9214
+!
+interface Ethernet4.100
+   description border-leaf-campus2-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.5.2/31
+   mtu 9214
+!
+interface Ethernet4.200
+   description border-leaf-campus2-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.15.2/31
+   mtu 9214
+!
+! Inter-Core link
+interface Ethernet5
+   description core2
+   no switchport
+   mtu 9214
+!
+interface Ethernet5.100
+   description core2-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.200.128/31
+   mtu 9214
+!
+interface Ethernet5.200
+   description core2-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.200.130/31
+   mtu 9214
+!
+! IP Routing
+ip routing
+ip routing vrf gold
+ip route 100.64.0.0/10 172.16.0.254
+!
+! OSPF for loopback reachability (default VRF)
+router ospf 1
+   router-id 10.0.200.1
+   passive-interface default
+   no passive-interface Ethernet1.100
+   no passive-interface Ethernet2.100
+   no passive-interface Ethernet3.100
+   no passive-interface Ethernet4.100
+   no passive-interface Ethernet5.100
+   network 10.0.200.1/32 area 0
+   network 10.0.4.0/31 area 0
+   network 10.0.4.2/31 area 0
+   network 10.0.5.0/31 area 0
+   network 10.0.5.2/31 area 0
+   network 10.0.200.128/31 area 0
+   max-lsa 12000
+!
+! BGP Configuration
+router bgp 65500
+   router-id 10.0.200.1
+   no bgp default ipv4-unicast
+   bgp log-neighbor-changes
+   distance bgp 20 200 200
+   maximum-paths 4 ecmp 64
+   !
+   ! iBGP to core2 (loopback-based, default VRF)
+   neighbor core_ibgp peer group
+   neighbor core_ibgp remote-as 65500
+   neighbor core_ibgp update-source Loopback0
+   neighbor core_ibgp next-hop-self
+   neighbor core_ibgp send-community extended
+   neighbor core_ibgp maximum-routes 12000 warning-only
+   neighbor 10.0.200.2 peer group core_ibgp
+   !
+   ! eBGP to DC Border Leafs (default VRF)
+   neighbor dc_bl peer group
+   neighbor dc_bl remote-as 65005
+   neighbor dc_bl send-community extended
+   neighbor dc_bl maximum-routes 12000 warning-only
+   neighbor 10.0.4.1 peer group dc_bl
+   neighbor 10.0.4.3 peer group dc_bl
+   !
+   ! eBGP to Campus Border Leafs (default VRF)
+   neighbor campus_bl peer group
+   neighbor campus_bl remote-as 66005
+   neighbor campus_bl send-community extended
+   neighbor campus_bl maximum-routes 12000 warning-only
+   neighbor 10.0.5.1 peer group campus_bl
+   neighbor 10.0.5.3 peer group campus_bl
+   !
+   ! IPv4 address family (default VRF)
+   address-family ipv4
+      neighbor core_ibgp activate
+      neighbor dc_bl activate
+      neighbor campus_bl activate
+      network 10.0.200.1/32
+   !
+   ! VRF Gold configuration - transit for inter-fabric routing
+   vrf gold
+      rd 10.0.200.1:100001
+      router-id 10.0.200.1
+      ! iBGP to core2 in VRF gold (P2P)
+      neighbor 10.0.200.131 remote-as 65500
+      neighbor 10.0.200.131 next-hop-self
+      neighbor 10.0.200.131 send-community extended
+      neighbor 10.0.200.131 maximum-routes 12000 warning-only
+      ! eBGP to DC Border Leafs in VRF gold
+      neighbor 10.0.14.1 remote-as 65005
+      neighbor 10.0.14.1 send-community extended
+      neighbor 10.0.14.1 maximum-routes 12000 warning-only
+      neighbor 10.0.14.3 remote-as 65005
+      neighbor 10.0.14.3 send-community extended
+      neighbor 10.0.14.3 maximum-routes 12000 warning-only
+      ! eBGP to Campus Border Leafs in VRF gold
+      neighbor 10.0.15.1 remote-as 66005
+      neighbor 10.0.15.1 send-community extended
+      neighbor 10.0.15.1 maximum-routes 12000 warning-only
+      neighbor 10.0.15.3 remote-as 66005
+      neighbor 10.0.15.3 send-community extended
+      neighbor 10.0.15.3 maximum-routes 12000 warning-only
+      redistribute connected
+!
+end
diff --git a/configs/core2.cfg b/configs/core2.cfg
new file mode 100644
index 0000000..93b41fb
--- /dev/null
+++ b/configs/core2.cfg
@@ -0,0 +1,224 @@
+! Core2 Configuration
+! Core Router - AS 65500
+! Transit between DC Border Leafs and Campus Border Leafs
+!
+hostname core2
+!
+! LLDP Management0
+lldp management-address Management0
+!
+! enable gNMI API
+management api gnmi
+   transport grpc default
+   provider eos-native
+!
+! admin/admin for ssh access
+username admin privilege 15 role network-admin secret sha512 $6$xQktFrbdeqEhVzLM$.1wOJB25nw2fqYaSXDu6y4mo6AP9hngMCFe2vGDl84hWoz00Q.4unoEBqspNI0HEoRz.OZhdBHqQv12KABf0B0
+!
+! Enable IP routing
+ip routing
+!
+! Enable routing protocols
+service routing protocols model multi-agent
+!
+! VRF Definition
+vrf instance gold
+!
+! Management interface
+interface Management0
+   ip address 172.16.0.11/24
+!
+! Loopback for BGP Router-ID (default VRF)
+interface Loopback0
+   description Router-ID
+   ip address 10.0.200.2/32
+!
+! Loopback in VRF Gold (router-id and health)
+interface Loopback1
+   description VRF-Gold-RouterID
+   vrf gold
+   ip address 10.0.200.102/32
+!
+! Link to DC Border Leaf 1
+interface Ethernet1
+   description border-leaf-dc1
+   no switchport
+   mtu 9214
+!
+interface Ethernet1.100
+   description border-leaf-dc1-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.4.4/31
+   mtu 9214
+!
+interface Ethernet1.200
+   description border-leaf-dc1-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.14.4/31
+   mtu 9214
+!
+! Link to DC Border Leaf 2
+interface Ethernet2
+   description border-leaf-dc2
+   no switchport
+   mtu 9214
+!
+interface Ethernet2.100
+   description border-leaf-dc2-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.4.6/31
+   mtu 9214
+!
+interface Ethernet2.200
+   description border-leaf-dc2-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.14.6/31
+   mtu 9214
+!
+! Link to Campus Border Leaf 1
+interface Ethernet3
+   description border-leaf-campus1
+   no switchport
+   mtu 9214
+!
+interface Ethernet3.100
+   description border-leaf-campus1-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.5.4/31
+   mtu 9214
+!
+interface Ethernet3.200
+   description border-leaf-campus1-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.15.4/31
+   mtu 9214
+!
+! Link to Campus Border Leaf 2
+interface Ethernet4
+   description border-leaf-campus2
+   no switchport
+   mtu 9214
+!
+interface Ethernet4.100
+   description border-leaf-campus2-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.5.6/31
+   mtu 9214
+!
+interface Ethernet4.200
+   description border-leaf-campus2-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.15.6/31
+   mtu 9214
+!
+! Inter-Core link
+interface Ethernet5
+   description core1
+   no switchport
+   mtu 9214
+!
+interface Ethernet5.100
+   description core1-underlay
+   encapsulation dot1q vlan 100
+   ip address 10.0.200.129/31
+   mtu 9214
+!
+interface Ethernet5.200
+   description core1-vrf-gold
+   encapsulation dot1q vlan 200
+   vrf gold
+   ip address 10.0.200.131/31
+   mtu 9214
+!
+! IP Routing
+ip routing
+ip routing vrf gold
+ip route 100.64.0.0/10 172.16.0.254
+!
+! OSPF for loopback reachability (default VRF)
+router ospf 1
+   router-id 10.0.200.2
+   passive-interface default
+   no passive-interface Ethernet1.100
+   no passive-interface Ethernet2.100
+   no passive-interface Ethernet3.100
+   no passive-interface Ethernet4.100
+   no passive-interface Ethernet5.100
+   network 10.0.200.2/32 area 0
+   network 10.0.4.4/31 area 0
+   network 10.0.4.6/31 area 0
+   network 10.0.5.4/31 area 0
+   network 10.0.5.6/31 area 0
+   network 10.0.200.128/31 area 0
+   max-lsa 12000
+!
+! BGP Configuration
+router bgp 65500
+   router-id 10.0.200.2
+   no bgp default ipv4-unicast
+   bgp log-neighbor-changes
+   distance bgp 20 200 200
+   maximum-paths 4 ecmp 64
+   !
+   ! iBGP to core1 (loopback-based, default VRF)
+   neighbor core_ibgp peer group
+   neighbor core_ibgp remote-as 65500
+   neighbor core_ibgp update-source Loopback0
+   neighbor core_ibgp next-hop-self
+   neighbor core_ibgp send-community extended
+   neighbor core_ibgp maximum-routes 12000 warning-only
+   neighbor 10.0.200.1 peer group core_ibgp
+   !
+   ! eBGP to DC Border Leafs (default VRF)
+   neighbor dc_bl peer group
+   neighbor dc_bl remote-as 65005
+   neighbor dc_bl send-community extended
+   neighbor dc_bl maximum-routes 12000 warning-only
+   neighbor 10.0.4.5 peer group dc_bl
+   neighbor 10.0.4.7 peer group dc_bl
+   !
+   ! eBGP to Campus Border Leafs (default VRF)
+   neighbor campus_bl peer group
+   neighbor campus_bl remote-as 66005
+   neighbor campus_bl send-community extended
+   neighbor campus_bl maximum-routes 12000 warning-only
+   neighbor 10.0.5.5 peer group campus_bl
+   neighbor 10.0.5.7 peer group campus_bl
+   !
+   ! IPv4 address family (default VRF)
+   address-family ipv4
+      neighbor core_ibgp activate
+      neighbor dc_bl activate
+      neighbor campus_bl activate
+      network 10.0.200.2/32
+   !
+   ! VRF Gold configuration - transit for inter-fabric routing
+   vrf gold
+      rd 10.0.200.2:100001
+      router-id 10.0.200.2
+      ! iBGP to core1 in VRF gold (P2P)
+      neighbor 10.0.200.130 remote-as 65500
+      neighbor 10.0.200.130 next-hop-self
+      neighbor 10.0.200.130 send-community extended
+      neighbor 10.0.200.130 maximum-routes 12000 warning-only
+      ! eBGP to DC Border Leafs in VRF gold
+      neighbor 10.0.14.5 remote-as 65005
+      neighbor 10.0.14.5 send-community extended
+      neighbor 10.0.14.5 maximum-routes 12000 warning-only
+      neighbor 10.0.14.7 remote-as 65005
+      neighbor 10.0.14.7 send-community extended
+      neighbor 10.0.14.7 maximum-routes 12000 warning-only
+      ! eBGP to Campus Border Leafs in VRF gold
+      neighbor 10.0.15.5 remote-as 66005
+      neighbor 10.0.15.5 send-community extended
+      neighbor 10.0.15.5 maximum-routes 12000 warning-only
+      neighbor 10.0.15.7 remote-as 66005
+      neighbor 10.0.15.7 send-community extended
+      neighbor 10.0.15.7 maximum-routes 12000 warning-only
+      redistribute connected
+!
+end