! Leaf8 Configuration ! VTEP4 - AS 65004 ! hostname leaf8 ! ! admin/admin for ssh access username admin privilege 15 role network-admin secret sha512 $6$xQktFrbdeqEhVzLM$.1wOJB25nw2fqYaSXDu6y4mo6AP9hngMCFe2vGDl84hWoz00Q.4unoEBqspNI0HEoRz.OZhdBHqQv12KABf0B0 ! Enable IP routing - CRITICAL for BGP ip routing ! ! Enable routing protocols service routing protocols model multi-agent ! ! VRF Definition vrf instance gold ! ! VLANs vlan 78 name vrf-gold-subnet ! vlan 900 name bgp-border ! vlan 4090 name mlag-peer trunk group mlag-peer ! vlan 4091 name mlag-ibgp trunk group mlag-peer ! ! Management interface interface Management1 vrf mgmt ip address 172.16.0.32/24 ! ! MLAG Peer-link SVI interface Vlan4090 description MLAG Peer-Link ip address 10.0.199.249/31 no autostate ! ! iBGP Peering SVI interface Vlan4091 description MLAG iBGP Peering ip address 10.0.3.7/31 mtu 9214 ! ! VRF VLAN Interfaces interface Vlan78 vrf gold ip address 10.78.78.3/24 ip virtual-router address 10.78.78.1 ! interface Vlan900 vrf gold ip address 10.90.90.3/29 ! ! Loopbacks interface Loopback0 description Router-ID ip address 10.0.250.18/32 ! interface Loopback1 description VTEP ip address 10.0.255.14/32 ! ! MLAG Peer-link interface Ethernet10 description mlag peer link channel-group 999 mode active ! interface Port-Channel999 description MLAG Peer switchport mode trunk switchport trunk group mlag-peer spanning-tree link-type point-to-point ! ! Underlay P2P interfaces to Spines interface Ethernet11 description spine1 no switchport ip address 10.0.1.15/31 mtu 9214 ! interface Ethernet12 description spine2 no switchport ip address 10.0.2.15/31 mtu 9214 ! ! Host-facing interface (MLAG) interface Ethernet1 description host4 channel-group 1 mode on ! interface Port-Channel1 description host4 switchport mode trunk switchport trunk allowed vlan 78 mlag 1 ! ! Spanning-tree no spanning-tree vlan 4090 no spanning-tree vlan 4091 ! ! Virtual MAC for Anycast Gateway ip virtual-router mac-address c001.cafe.babe ! ! MLAG Configuration mlag configuration domain-id leafs local-interface Vlan4090 peer-address 10.0.199.248 peer-link Port-Channel999 dual-primary detection delay 10 action errdisable all-interfaces peer-address heartbeat 172.16.0.31 vrf mgmt ! ! VXLAN Interface interface Vxlan1 vxlan source-interface Loopback1 vxlan udp-port 4789 vxlan learn-restrict any vxlan vrf gold vni 100001 ! ! IP Routing ip routing ip routing vrf gold ! ! BGP Configuration router bgp 65004 router-id 10.0.250.18 no bgp default ipv4-unicast bgp log-neighbor-changes distance bgp 20 200 200 maximum-paths 4 ecmp 64 ! ! Underlay peer-group neighbor underlay peer group neighbor underlay remote-as 65000 neighbor underlay maximum-routes 12000 warning-only neighbor 10.0.1.14 peer group underlay neighbor 10.0.2.14 peer group underlay ! ! iBGP peer-group neighbor underlay_ibgp peer group neighbor underlay_ibgp remote-as 65004 neighbor underlay_ibgp maximum-routes 12000 warning-only neighbor underlay_ibgp next-hop-self neighbor 10.0.3.6 peer group underlay_ibgp ! ! EVPN peer-group neighbor evpn peer group neighbor evpn remote-as 65000 neighbor evpn update-source Loopback0 neighbor evpn ebgp-multihop 3 neighbor evpn send-community extended neighbor evpn maximum-routes 12000 warning-only neighbor 10.0.250.1 peer group evpn neighbor 10.0.250.2 peer group evpn ! ! VRF Gold configuration vrf gold rd 10.0.250.18:1 route-target import evpn 1:100001 route-target export evpn 1:100001 neighbor 10.90.90.1 remote-as 64999 redistribute connected ! address-family ipv4 neighbor 10.90.90.1 activate ! ! IPv4 address family address-family ipv4 neighbor underlay activate neighbor underlay_ibgp activate network 10.0.250.18/32 network 10.0.255.14/32 ! ! EVPN address family address-family evpn neighbor evpn activate ! end