-
Notifications
You must be signed in to change notification settings - Fork 184
/
cv-pathfinder-transit.cfg
182 lines (182 loc) · 4.21 KB
/
cv-pathfinder-transit.cfg
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
!RANCID-CONTENT-TYPE: arista
!
vlan internal order ascending range 1006 1199
!
flow tracking hardware
tracker WAN-FLOW-TRACKER
record export on inactive timeout 70000
record export on interval 5000
exporter DPI-EXPORTER
collector 127.0.0.1
local interface Loopback0
template interval 5000
!
transceiver qsfp default-mode 4x10G
!
service routing protocols model multi-agent
!
hostname cv-pathfinder-transit
!
router path-selection
!
path-group INET id 101
ipsec profile CP-PROFILE
!
local interface Ethernet1
stun server-profile cv-pathfinder-pathfinder-INET-0 cv-pathfinder-pathfinder-INET-1
!
peer dynamic
!
peer static router-ip 192.168.44.1
name cv-pathfinder-pathfinder
ipv4 address 10.7.7.7
ipv4 address 10.9.9.9
!
path-group MPLS id 100
!
local interface Ethernet2
stun server-profile cv-pathfinder-pathfinder-MPLS-0
!
peer dynamic
!
peer static router-ip 192.168.44.1
name cv-pathfinder-pathfinder
ipv4 address 172.16.0.1
!
load-balance policy LBPOLICY
path-group INET
path-group MPLS
!
router adaptive-virtual-topology
topology role transit region
region AVD_Land_West id 42
zone DEFAULT-ZONE id 1
site Site422 id 422
!
spanning-tree mode none
!
no enable password
no aaa root
!
vrf instance MGMT
!
ip security
!
ike policy DP-IKE-POLICY
local-id 192.168.43.1
!
ike policy CP-IKE-POLICY
local-id 192.168.43.1
!
sa policy DP-SA-POLICY
esp encryption aes128
pfs dh-group 14
!
sa policy CP-SA-POLICY
esp encryption aes128
pfs dh-group 14
!
profile DP-PROFILE
ike-policy DP-IKE-POLICY
sa-policy DP-SA-POLICY
connection start
shared-key 7 ABCDEF1234567890666
dpd 10 50 clear
mode transport
!
profile CP-PROFILE
ike-policy CP-IKE-POLICY
sa-policy CP-SA-POLICY
connection start
shared-key 7 ABCDEF1234567890
dpd 10 50 clear
mode transport
!
key controller
profile DP-PROFILE
!
interface Dps1
description DPS Interface
flow tracker hardware WAN-FLOW-TRACKER
tcp mss ceiling ipv4 1000
!
interface Ethernet1
no shutdown
no switchport
flow tracker hardware WAN-FLOW-TRACKER
ip address dhcp
dhcp client accept default-route
!
interface Ethernet2
no shutdown
no switchport
flow tracker hardware WAN-FLOW-TRACKER
ip address 172.16.6.6/31
!
interface Loopback0
description Router_ID
no shutdown
ip address 192.168.43.1/32
!
interface Vxlan1
description cv-pathfinder-transit_VTEP
vxlan source-interface Loopback0
vxlan udp-port 4789
vxlan vrf default vni 1
!
ip routing
no ip routing vrf MGMT
!
router bfd
multihop interval 300 min-rx 300 multiplier 3
!
router bgp 65000
router-id 192.168.43.1
maximum-paths 4 ecmp 4
update wait-install
no bgp default ipv4-unicast
neighbor WAN-OVERLAY-PEERS peer group
neighbor WAN-OVERLAY-PEERS remote-as 65000
neighbor WAN-OVERLAY-PEERS update-source Loopback0
neighbor WAN-OVERLAY-PEERS bfd
neighbor WAN-OVERLAY-PEERS password 7 htm4AZe9mIQOO1uiMuGgYQ==
neighbor WAN-OVERLAY-PEERS send-community
neighbor WAN-OVERLAY-PEERS maximum-routes 0
neighbor 192.168.44.1 peer group WAN-OVERLAY-PEERS
neighbor 192.168.44.1 description cv-pathfinder-pathfinder
!
address-family evpn
neighbor WAN-OVERLAY-PEERS activate
!
address-family ipv4
no neighbor WAN-OVERLAY-PEERS activate
!
address-family ipv4 sr-te
neighbor WAN-OVERLAY-PEERS activate
!
address-family link-state
neighbor WAN-OVERLAY-PEERS activate
path-selection
!
address-family path-selection
bgp additional-paths receive
bgp additional-paths send any
neighbor WAN-OVERLAY-PEERS activate
!
management api http-commands
protocol https
no shutdown
!
vrf MGMT
no shutdown
!
stun
client
server-profile cv-pathfinder-pathfinder-INET-0
ip address 10.7.7.7/31
server-profile cv-pathfinder-pathfinder-INET-1
ip address 10.9.9.9/31
server-profile cv-pathfinder-pathfinder-MPLS-0
ip address 172.16.0.1/31
!
end