Damien
4b4c1852c4
core1/core2 provide L3 transit between DC and Campus fabrics. Each physical link toward a Border Leaf is subinterfaced (.100 default, .200 VRF gold). OSPF area 0 in default VRF, eBGP to DC BLs (65005) and Campus BLs (66005), iBGP between core1 and core2 via Loopback0. VRF gold uses redistribute connected and VRF-aware eBGP sessions on .200 subinterfaces to stitch VRF gold end-to-end across fabrics.
225 lines
5.8 KiB
INI
225 lines
5.8 KiB
INI
! Core2 Configuration
|
|
! Core Router - AS 65500
|
|
! Transit between DC Border Leafs and Campus Border Leafs
|
|
!
|
|
hostname core2
|
|
!
|
|
! LLDP Management0
|
|
lldp management-address Management0
|
|
!
|
|
! enable gNMI API
|
|
management api gnmi
|
|
transport grpc default
|
|
provider eos-native
|
|
!
|
|
! admin/admin for ssh access
|
|
username admin privilege 15 role network-admin secret sha512 $6$xQktFrbdeqEhVzLM$.1wOJB25nw2fqYaSXDu6y4mo6AP9hngMCFe2vGDl84hWoz00Q.4unoEBqspNI0HEoRz.OZhdBHqQv12KABf0B0
|
|
!
|
|
! Enable IP routing
|
|
ip routing
|
|
!
|
|
! Enable routing protocols
|
|
service routing protocols model multi-agent
|
|
!
|
|
! VRF Definition
|
|
vrf instance gold
|
|
!
|
|
! Management interface
|
|
interface Management0
|
|
ip address 172.16.0.11/24
|
|
!
|
|
! Loopback for BGP Router-ID (default VRF)
|
|
interface Loopback0
|
|
description Router-ID
|
|
ip address 10.0.200.2/32
|
|
!
|
|
! Loopback in VRF Gold (router-id and health)
|
|
interface Loopback1
|
|
description VRF-Gold-RouterID
|
|
vrf gold
|
|
ip address 10.0.200.102/32
|
|
!
|
|
! Link to DC Border Leaf 1
|
|
interface Ethernet1
|
|
description border-leaf-dc1
|
|
no switchport
|
|
mtu 9214
|
|
!
|
|
interface Ethernet1.100
|
|
description border-leaf-dc1-underlay
|
|
encapsulation dot1q vlan 100
|
|
ip address 10.0.4.4/31
|
|
mtu 9214
|
|
!
|
|
interface Ethernet1.200
|
|
description border-leaf-dc1-vrf-gold
|
|
encapsulation dot1q vlan 200
|
|
vrf gold
|
|
ip address 10.0.14.4/31
|
|
mtu 9214
|
|
!
|
|
! Link to DC Border Leaf 2
|
|
interface Ethernet2
|
|
description border-leaf-dc2
|
|
no switchport
|
|
mtu 9214
|
|
!
|
|
interface Ethernet2.100
|
|
description border-leaf-dc2-underlay
|
|
encapsulation dot1q vlan 100
|
|
ip address 10.0.4.6/31
|
|
mtu 9214
|
|
!
|
|
interface Ethernet2.200
|
|
description border-leaf-dc2-vrf-gold
|
|
encapsulation dot1q vlan 200
|
|
vrf gold
|
|
ip address 10.0.14.6/31
|
|
mtu 9214
|
|
!
|
|
! Link to Campus Border Leaf 1
|
|
interface Ethernet3
|
|
description border-leaf-campus1
|
|
no switchport
|
|
mtu 9214
|
|
!
|
|
interface Ethernet3.100
|
|
description border-leaf-campus1-underlay
|
|
encapsulation dot1q vlan 100
|
|
ip address 10.0.5.4/31
|
|
mtu 9214
|
|
!
|
|
interface Ethernet3.200
|
|
description border-leaf-campus1-vrf-gold
|
|
encapsulation dot1q vlan 200
|
|
vrf gold
|
|
ip address 10.0.15.4/31
|
|
mtu 9214
|
|
!
|
|
! Link to Campus Border Leaf 2
|
|
interface Ethernet4
|
|
description border-leaf-campus2
|
|
no switchport
|
|
mtu 9214
|
|
!
|
|
interface Ethernet4.100
|
|
description border-leaf-campus2-underlay
|
|
encapsulation dot1q vlan 100
|
|
ip address 10.0.5.6/31
|
|
mtu 9214
|
|
!
|
|
interface Ethernet4.200
|
|
description border-leaf-campus2-vrf-gold
|
|
encapsulation dot1q vlan 200
|
|
vrf gold
|
|
ip address 10.0.15.6/31
|
|
mtu 9214
|
|
!
|
|
! Inter-Core link
|
|
interface Ethernet5
|
|
description core1
|
|
no switchport
|
|
mtu 9214
|
|
!
|
|
interface Ethernet5.100
|
|
description core1-underlay
|
|
encapsulation dot1q vlan 100
|
|
ip address 10.0.200.129/31
|
|
mtu 9214
|
|
!
|
|
interface Ethernet5.200
|
|
description core1-vrf-gold
|
|
encapsulation dot1q vlan 200
|
|
vrf gold
|
|
ip address 10.0.200.131/31
|
|
mtu 9214
|
|
!
|
|
! IP Routing
|
|
ip routing
|
|
ip routing vrf gold
|
|
ip route 100.64.0.0/10 172.16.0.254
|
|
!
|
|
! OSPF for loopback reachability (default VRF)
|
|
router ospf 1
|
|
router-id 10.0.200.2
|
|
passive-interface default
|
|
no passive-interface Ethernet1.100
|
|
no passive-interface Ethernet2.100
|
|
no passive-interface Ethernet3.100
|
|
no passive-interface Ethernet4.100
|
|
no passive-interface Ethernet5.100
|
|
network 10.0.200.2/32 area 0
|
|
network 10.0.4.4/31 area 0
|
|
network 10.0.4.6/31 area 0
|
|
network 10.0.5.4/31 area 0
|
|
network 10.0.5.6/31 area 0
|
|
network 10.0.200.128/31 area 0
|
|
max-lsa 12000
|
|
!
|
|
! BGP Configuration
|
|
router bgp 65500
|
|
router-id 10.0.200.2
|
|
no bgp default ipv4-unicast
|
|
bgp log-neighbor-changes
|
|
distance bgp 20 200 200
|
|
maximum-paths 4 ecmp 64
|
|
!
|
|
! iBGP to core1 (loopback-based, default VRF)
|
|
neighbor core_ibgp peer group
|
|
neighbor core_ibgp remote-as 65500
|
|
neighbor core_ibgp update-source Loopback0
|
|
neighbor core_ibgp next-hop-self
|
|
neighbor core_ibgp send-community extended
|
|
neighbor core_ibgp maximum-routes 12000 warning-only
|
|
neighbor 10.0.200.1 peer group core_ibgp
|
|
!
|
|
! eBGP to DC Border Leafs (default VRF)
|
|
neighbor dc_bl peer group
|
|
neighbor dc_bl remote-as 65005
|
|
neighbor dc_bl send-community extended
|
|
neighbor dc_bl maximum-routes 12000 warning-only
|
|
neighbor 10.0.4.5 peer group dc_bl
|
|
neighbor 10.0.4.7 peer group dc_bl
|
|
!
|
|
! eBGP to Campus Border Leafs (default VRF)
|
|
neighbor campus_bl peer group
|
|
neighbor campus_bl remote-as 66005
|
|
neighbor campus_bl send-community extended
|
|
neighbor campus_bl maximum-routes 12000 warning-only
|
|
neighbor 10.0.5.5 peer group campus_bl
|
|
neighbor 10.0.5.7 peer group campus_bl
|
|
!
|
|
! IPv4 address family (default VRF)
|
|
address-family ipv4
|
|
neighbor core_ibgp activate
|
|
neighbor dc_bl activate
|
|
neighbor campus_bl activate
|
|
network 10.0.200.2/32
|
|
!
|
|
! VRF Gold configuration - transit for inter-fabric routing
|
|
vrf gold
|
|
rd 10.0.200.2:100001
|
|
router-id 10.0.200.2
|
|
! iBGP to core1 in VRF gold (P2P)
|
|
neighbor 10.0.200.130 remote-as 65500
|
|
neighbor 10.0.200.130 next-hop-self
|
|
neighbor 10.0.200.130 send-community extended
|
|
neighbor 10.0.200.130 maximum-routes 12000 warning-only
|
|
! eBGP to DC Border Leafs in VRF gold
|
|
neighbor 10.0.14.5 remote-as 65005
|
|
neighbor 10.0.14.5 send-community extended
|
|
neighbor 10.0.14.5 maximum-routes 12000 warning-only
|
|
neighbor 10.0.14.7 remote-as 65005
|
|
neighbor 10.0.14.7 send-community extended
|
|
neighbor 10.0.14.7 maximum-routes 12000 warning-only
|
|
! eBGP to Campus Border Leafs in VRF gold
|
|
neighbor 10.0.15.5 remote-as 66005
|
|
neighbor 10.0.15.5 send-community extended
|
|
neighbor 10.0.15.5 maximum-routes 12000 warning-only
|
|
neighbor 10.0.15.7 remote-as 66005
|
|
neighbor 10.0.15.7 send-community extended
|
|
neighbor 10.0.15.7 maximum-routes 12000 warning-only
|
|
redistribute connected
|
|
!
|
|
end
|