! Leaf1 Configuration
! VTEP1 - AS 65001
!
hostname leaf1
!
! admin/admin for ssh access
username admin privilege 15 role network-admin secret sha512 $6$xQktFrbdeqEhVzLM$.1wOJB25nw2fqYaSXDu6y4mo6AP9hngMCFe2vGDl84hWoz00Q.4unoEBqspNI0HEoRz.OZhdBHqQv12KABf0B0
!
! Enable routing protocols
service routing protocols model multi-agent
!
! VLANs
vlan 40
   name test-l2-vxlan
!
vlan 4090
   name mlag-peer
   trunk group mlag-peer
!
vlan 4091
   name mlag-ibgp
   trunk group mlag-peer
!
! Management interface
interface Management1
   vrf mgmt
   ip address 172.16.0.25/24
!
! MLAG Peer-link SVI
interface Vlan4090
   description MLAG Peer-Link
   ip address 10.0.199.254/31
   no autostate
!
! iBGP Peering SVI
interface Vlan4091
   description MLAG iBGP Peering
   ip address 10.0.3.0/31
   mtu 9214
!
! Loopbacks
interface Loopback0
   description Router-ID
   ip address 10.0.250.11/32
!
interface Loopback1
   description VTEP
   ip address 10.0.255.11/32
!
! MLAG Peer-link
interface Ethernet10
   description mlag peer link
   channel-group 999 mode active
!
interface Port-Channel999
   description MLAG Peer
   switchport mode access
   switchport trunk group mlag-peer
   spanning-tree link-type point-to-point
!
! Underlay P2P interfaces to Spines
interface Ethernet11
   description spine1
   no switchport
   ip address 10.0.1.1/31
   mtu 9214
!
interface Ethernet12
   description spine2
   no switchport
   ip address 10.0.2.1/31
   mtu 9214
!
! Host-facing interface (MLAG)
interface Ethernet1
   description host1
   channel-group 1 mode on
!
interface Port-Channel1
   description host1
   switchport mode access
   switchport access vlan 40
   mlag 1
!
! Spanning-tree
no spanning-tree vlan 4090
no spanning-tree vlan 4091
!
! Virtual MAC for Anycast Gateway
ip virtual-router mac-address c001.cafe.babe
!
! MLAG Configuration
mlag configuration
   domain-id leafs
   local-interface Vlan4090
   peer-address 10.0.199.255
   peer-link Port-Channel999
   dual-primary detection delay 10 action errdisable all-interfaces
   peer-address heartbeat 172.16.0.50 vrf mgmt
!
! VXLAN Interface
interface Vxlan1
   vxlan source-interface Loopback1
   vxlan udp-port 4789
   vxlan learn-restrict any
   vxlan vlan 40 vni 110040
!
! IP Routing
ip routing
!
! BGP Configuration
router bgp 65001
   router-id 10.0.250.11
   no bgp default ipv4-unicast
   bgp log-neighbor-changes
   distance bgp 20 200 200
   maximum-paths 4 ecmp 64
   !
   ! Underlay peer-group
   neighbor underlay peer group
   neighbor underlay remote-as 65000
   neighbor underlay maximum-routes 12000 warning-only
   neighbor 10.0.1.0 peer group underlay
   neighbor 10.0.2.0 peer group underlay
   !
   ! iBGP peer-group
   neighbor underlay_ibgp peer group
   neighbor underlay_ibgp remote-as 65001
   neighbor underlay_ibgp maximum-routes 12000 warning-only
   neighbor underlay_ibgp next-hop-self
   neighbor 10.0.3.1 peer group underlay_ibgp
   !
   ! EVPN peer-group
   neighbor evpn peer group
   neighbor evpn remote-as 65000
   neighbor evpn update-source Loopback0
   neighbor evpn ebgp-multihop 3
   neighbor evpn send-community extended
   neighbor evpn maximum-routes 12000 warning-only
   neighbor 10.0.250.1 peer group evpn
   neighbor 10.0.250.2 peer group evpn
   !
   ! VLAN 40 for L2 VXLAN
   vlan 40
      rd 65001:110040
      route-target both 40:110040
      redistribute learned
   !
   ! IPv4 address family
   address-family ipv4
      neighbor underlay activate
      neighbor underlay_ibgp activate
      network 10.0.250.11/32
      network 10.0.255.11/32
   !
   ! EVPN address family
   address-family evpn
      neighbor evpn activate
!
end