diff --git a/core-deploy.yml b/core-deploy.yml index 00b15ab..803a0b0 100644 --- a/core-deploy.yml +++ b/core-deploy.yml @@ -24,6 +24,9 @@ - name: Gather facts (junos) junos_facts: when: ansible_network_os == 'junos' + - name: Gather facts (ios) + ios_facts: + when: ansible_network_os == 'ios' - name: create the directory for the configuration file: path=core_config state=directory run_once: true @@ -56,6 +59,11 @@ src: core_config/{{inventory_hostname}}-config.txt when: ansible_network_os == 'eos' + - name: Load config (ios) + ios_config: + src: core_config/{{inventory_hostname}}-config.txt + when: ansible_network_os == 'ios' + # - name: load the configuration to the devices # napalm_install_config: # hostname: "{{ ansible_host }}" diff --git a/core/core-model-csr.yml b/core/core-model-csr.yml index e41c7f7..b91bcc3 100644 --- a/core/core-model-csr.yml +++ b/core/core-model-csr.yml @@ -82,9 +82,9 @@ bgp: - inet - inet-vpn -#ospf: -# area: 0 -# network: p2p +ospf: + area: 0 + network: p2p #isis: # network: p2p diff --git a/core_config/ansible-csr1-config.txt b/core_config/ansible-csr1-config.txt new file mode 100644 index 0000000..420230f --- /dev/null +++ b/core_config/ansible-csr1-config.txt @@ -0,0 +1,103 @@ +! +service timestamps debug datetime msec +service timestamps log datetime msec +no platform punt-keepalive disable-kernel-core +platform console auto +! +hostname ansible-csr1 +! +vrf definition MANAGEMENT + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +! +no aaa new-model +! +no ip domain lookup +ip domain name ntc.com +! +subscriber templating +! +multilink bundle-name authenticated +! +! +license udi pid CSR1000V sn 9KXI0D7TVFI +diagnostic bootup level minimal +archive + path bootflash:archive +! +spanning-tree extend system-id +netconf-yang cisco-odm on-demand-enable +netconf-yang cisco-odm polling-enable +netconf-yang +restconf +! +username ntc privilege 15 password 0 ntc123 +! +redundancy +! +lldp run +cdp run +! +interface Loopback0 + ip address 1.1.1.1 255.255.255.255 + ip ospf 1 area 0 + ! +interface GigabitEthernet1 + vrf forwarding MANAGEMENT + ip address 10.0.0.51 255.255.255.0 + negotiation auto +! +interface GigabitEthernet4 + no shutdown + ip address 172.10.12.1 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet3 + no shutdown + ip address 172.10.14.1 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet2 + no shutdown + ip address 172.10.13.1 255.255.255.0 + negotiation auto +! +! +! +router ospf 1 + router-id 1.1.1.1 + network 172.10.12.1 0.0.0.255 area 0 + network 172.10.14.1 0.0.0.255 area 0 + network 172.10.13.1 0.0.0.255 area 0 + virtual-service csr_mgmt +! +ip forward-protocol nd +ip http server +ip http authentication local +ip http secure-server +! +ip route vrf MANAGEMENT 0.0.0.0 0.0.0.0 10.0.0.2 +ip scp server enable +! +control-plane +! +alias exec ntcclear clear platform software vnic-if nv +! +line con 0 + stopbits 1 +line vty 0 4 + privilege level 15 + login local + transport preferred ssh +line vty 5 30 + privilege level 15 + login local + transport preferred ssh +! diff --git a/core_config/ansible-csr2-config.txt b/core_config/ansible-csr2-config.txt new file mode 100644 index 0000000..f962b83 --- /dev/null +++ b/core_config/ansible-csr2-config.txt @@ -0,0 +1,103 @@ +! +service timestamps debug datetime msec +service timestamps log datetime msec +no platform punt-keepalive disable-kernel-core +platform console auto +! +hostname ansible-csr2 +! +vrf definition MANAGEMENT + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +! +no aaa new-model +! +no ip domain lookup +ip domain name ntc.com +! +subscriber templating +! +multilink bundle-name authenticated +! +! +license udi pid CSR1000V sn 9KXI0D7TVFI +diagnostic bootup level minimal +archive + path bootflash:archive +! +spanning-tree extend system-id +netconf-yang cisco-odm on-demand-enable +netconf-yang cisco-odm polling-enable +netconf-yang +restconf +! +username ntc privilege 15 password 0 ntc123 +! +redundancy +! +lldp run +cdp run +! +interface Loopback0 + ip address 2.2.2.2 255.255.255.255 + ip ospf 1 area 0 + ! +interface GigabitEthernet1 + vrf forwarding MANAGEMENT + ip address 10.0.0.52 255.255.255.0 + negotiation auto +! +interface GigabitEthernet4 + no shutdown + ip address 172.10.12.2 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet3 + no shutdown + ip address 172.10.23.2 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet2 + no shutdown + ip address 172.10.25.2 255.255.255.0 + negotiation auto +! +! +! +router ospf 1 + router-id 2.2.2.2 + network 172.10.12.2 0.0.0.255 area 0 + network 172.10.23.2 0.0.0.255 area 0 + network 172.10.25.2 0.0.0.255 area 0 + virtual-service csr_mgmt +! +ip forward-protocol nd +ip http server +ip http authentication local +ip http secure-server +! +ip route vrf MANAGEMENT 0.0.0.0 0.0.0.0 10.0.0.2 +ip scp server enable +! +control-plane +! +alias exec ntcclear clear platform software vnic-if nv +! +line con 0 + stopbits 1 +line vty 0 4 + privilege level 15 + login local + transport preferred ssh +line vty 5 30 + privilege level 15 + login local + transport preferred ssh +! diff --git a/core_config/ansible-csr3-config.txt b/core_config/ansible-csr3-config.txt new file mode 100644 index 0000000..917904b --- /dev/null +++ b/core_config/ansible-csr3-config.txt @@ -0,0 +1,96 @@ +! +service timestamps debug datetime msec +service timestamps log datetime msec +no platform punt-keepalive disable-kernel-core +platform console auto +! +hostname ansible-csr3 +! +vrf definition MANAGEMENT + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +! +no aaa new-model +! +no ip domain lookup +ip domain name ntc.com +! +subscriber templating +! +multilink bundle-name authenticated +! +! +license udi pid CSR1000V sn 9KXI0D7TVFI +diagnostic bootup level minimal +archive + path bootflash:archive +! +spanning-tree extend system-id +netconf-yang cisco-odm on-demand-enable +netconf-yang cisco-odm polling-enable +netconf-yang +restconf +! +username ntc privilege 15 password 0 ntc123 +! +redundancy +! +lldp run +cdp run +! +interface Loopback0 + ip address 3.3.3.3 255.255.255.255 + ip ospf 1 area 0 + ! +interface GigabitEthernet1 + vrf forwarding MANAGEMENT + ip address 10.0.0.53 255.255.255.0 + negotiation auto +! +interface GigabitEthernet3 + no shutdown + ip address 172.10.23.3 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet2 + no shutdown + ip address 172.10.13.3 255.255.255.0 + negotiation auto +! +! +! +router ospf 1 + router-id 3.3.3.3 + network 172.10.23.3 0.0.0.255 area 0 + network 172.10.13.3 0.0.0.255 area 0 + virtual-service csr_mgmt +! +ip forward-protocol nd +ip http server +ip http authentication local +ip http secure-server +! +ip route vrf MANAGEMENT 0.0.0.0 0.0.0.0 10.0.0.2 +ip scp server enable +! +control-plane +! +alias exec ntcclear clear platform software vnic-if nv +! +line con 0 + stopbits 1 +line vty 0 4 + privilege level 15 + login local + transport preferred ssh +line vty 5 30 + privilege level 15 + login local + transport preferred ssh +! diff --git a/core_config/ansible-csr4-config.txt b/core_config/ansible-csr4-config.txt new file mode 100644 index 0000000..13efcdc --- /dev/null +++ b/core_config/ansible-csr4-config.txt @@ -0,0 +1,103 @@ +! +service timestamps debug datetime msec +service timestamps log datetime msec +no platform punt-keepalive disable-kernel-core +platform console auto +! +hostname ansible-csr4 +! +vrf definition MANAGEMENT + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +! +no aaa new-model +! +no ip domain lookup +ip domain name ntc.com +! +subscriber templating +! +multilink bundle-name authenticated +! +! +license udi pid CSR1000V sn 9KXI0D7TVFI +diagnostic bootup level minimal +archive + path bootflash:archive +! +spanning-tree extend system-id +netconf-yang cisco-odm on-demand-enable +netconf-yang cisco-odm polling-enable +netconf-yang +restconf +! +username ntc privilege 15 password 0 ntc123 +! +redundancy +! +lldp run +cdp run +! +interface Loopback0 + ip address 4.4.4.4 255.255.255.255 + ip ospf 1 area 0 + ! +interface GigabitEthernet1 + vrf forwarding MANAGEMENT + ip address 10.0.0.54 255.255.255.0 + negotiation auto +! +interface GigabitEthernet4 + no shutdown + ip address 172.10.45.4 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet3 + no shutdown + ip address 172.10.14.4 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet2 + no shutdown + ip address 172.10.46.4 255.255.255.0 + negotiation auto +! +! +! +router ospf 1 + router-id 4.4.4.4 + network 172.10.45.4 0.0.0.255 area 0 + network 172.10.14.4 0.0.0.255 area 0 + network 172.10.46.4 0.0.0.255 area 0 + virtual-service csr_mgmt +! +ip forward-protocol nd +ip http server +ip http authentication local +ip http secure-server +! +ip route vrf MANAGEMENT 0.0.0.0 0.0.0.0 10.0.0.2 +ip scp server enable +! +control-plane +! +alias exec ntcclear clear platform software vnic-if nv +! +line con 0 + stopbits 1 +line vty 0 4 + privilege level 15 + login local + transport preferred ssh +line vty 5 30 + privilege level 15 + login local + transport preferred ssh +! diff --git a/core_config/ansible-csr5-config.txt b/core_config/ansible-csr5-config.txt new file mode 100644 index 0000000..236fa34 --- /dev/null +++ b/core_config/ansible-csr5-config.txt @@ -0,0 +1,103 @@ +! +service timestamps debug datetime msec +service timestamps log datetime msec +no platform punt-keepalive disable-kernel-core +platform console auto +! +hostname ansible-csr5 +! +vrf definition MANAGEMENT + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +! +no aaa new-model +! +no ip domain lookup +ip domain name ntc.com +! +subscriber templating +! +multilink bundle-name authenticated +! +! +license udi pid CSR1000V sn 9KXI0D7TVFI +diagnostic bootup level minimal +archive + path bootflash:archive +! +spanning-tree extend system-id +netconf-yang cisco-odm on-demand-enable +netconf-yang cisco-odm polling-enable +netconf-yang +restconf +! +username ntc privilege 15 password 0 ntc123 +! +redundancy +! +lldp run +cdp run +! +interface Loopback0 + ip address 5.5.5.5 255.255.255.255 + ip ospf 1 area 0 + ! +interface GigabitEthernet1 + vrf forwarding MANAGEMENT + ip address 10.0.0.55 255.255.255.0 + negotiation auto +! +interface GigabitEthernet4 + no shutdown + ip address 172.10.45.5 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet3 + no shutdown + ip address 172.10.56.5 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet2 + no shutdown + ip address 172.10.25.5 255.255.255.0 + negotiation auto +! +! +! +router ospf 1 + router-id 5.5.5.5 + network 172.10.45.5 0.0.0.255 area 0 + network 172.10.56.5 0.0.0.255 area 0 + network 172.10.25.5 0.0.0.255 area 0 + virtual-service csr_mgmt +! +ip forward-protocol nd +ip http server +ip http authentication local +ip http secure-server +! +ip route vrf MANAGEMENT 0.0.0.0 0.0.0.0 10.0.0.2 +ip scp server enable +! +control-plane +! +alias exec ntcclear clear platform software vnic-if nv +! +line con 0 + stopbits 1 +line vty 0 4 + privilege level 15 + login local + transport preferred ssh +line vty 5 30 + privilege level 15 + login local + transport preferred ssh +! diff --git a/core_config/ansible-csr6-config.txt b/core_config/ansible-csr6-config.txt new file mode 100644 index 0000000..5de9e01 --- /dev/null +++ b/core_config/ansible-csr6-config.txt @@ -0,0 +1,96 @@ +! +service timestamps debug datetime msec +service timestamps log datetime msec +no platform punt-keepalive disable-kernel-core +platform console auto +! +hostname ansible-csr6 +! +vrf definition MANAGEMENT + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +! +no aaa new-model +! +no ip domain lookup +ip domain name ntc.com +! +subscriber templating +! +multilink bundle-name authenticated +! +! +license udi pid CSR1000V sn 9KXI0D7TVFI +diagnostic bootup level minimal +archive + path bootflash:archive +! +spanning-tree extend system-id +netconf-yang cisco-odm on-demand-enable +netconf-yang cisco-odm polling-enable +netconf-yang +restconf +! +username ntc privilege 15 password 0 ntc123 +! +redundancy +! +lldp run +cdp run +! +interface Loopback0 + ip address 6.6.6.6 255.255.255.255 + ip ospf 1 area 0 + ! +interface GigabitEthernet1 + vrf forwarding MANAGEMENT + ip address 10.0.0.56 255.255.255.0 + negotiation auto +! +interface GigabitEthernet3 + no shutdown + ip address 172.10.56.6 255.255.255.0 + negotiation auto +! +! +interface GigabitEthernet2 + no shutdown + ip address 172.10.46.6 255.255.255.0 + negotiation auto +! +! +! +router ospf 1 + router-id 6.6.6.6 + network 172.10.56.6 0.0.0.255 area 0 + network 172.10.46.6 0.0.0.255 area 0 + virtual-service csr_mgmt +! +ip forward-protocol nd +ip http server +ip http authentication local +ip http secure-server +! +ip route vrf MANAGEMENT 0.0.0.0 0.0.0.0 10.0.0.2 +ip scp server enable +! +control-plane +! +alias exec ntcclear clear platform software vnic-if nv +! +line con 0 + stopbits 1 +line vty 0 4 + privilege level 15 + login local + transport preferred ssh +line vty 5 30 + privilege level 15 + login local + transport preferred ssh +! diff --git a/core_config/ansible-veos1-config.txt b/core_config/ansible-veos1-config.txt deleted file mode 100644 index 65474fb..0000000 --- a/core_config/ansible-veos1-config.txt +++ /dev/null @@ -1,91 +0,0 @@ -! -no schedule tech-support -! -transceiver qsfp default-mode 4x10G -! -hostname ansible-veos1 -! -spanning-tree mode mstp -! -no aaa root -! -username admin privilege 15 role network-admin secret sha512 $6$QooVHYszFBY655A/$WnVBzmLe2LsWQ2kF01jtWff4L9xlxIfCpB0/rS7nWB70dFEoIbIYPRf1LHGg/jSGcR6VdecKvweJxry2vttCR1 -username salt privilege 15 role network-admin secret sha512 $6$gNfDGxuNqAufb7SS$XuBAZwDyHEX6Bt6zgDBA0zkJLhOm.5aJ8cwy2wd21DVr9yWr.gqwYBx7NUntbvSjTlKDQBg.XsMIIYRwqU10u1 -username salt sshkey ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt knewell@ubuntu -! -interface Ethernet4 - no switchport - ip address 172.10.15.1/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet1 - no switchport - ip address 172.10.12.1/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet2 - no switchport - ip address 172.10.13.1/24 - isis enable sr_instance - isis network point-to-point -! -! -! -interface Loopback0 - ip address 10.39.8.41/32 - isis enable sr_instance - node-segment ipv4 index 10 -! -interface Management1 - ip address 10.39.0.41/22 -! -ip route 0.0.0.0/0 10.39.0.1 -! -ip routing -! -ipv6 unicast-routing -! -! -mpls ip -! -mpls label range isis-sr 800000 4096 -! -router bgp 65000 - router-id 10.39.8.41 - ! - neighbor 10.39.8.42 remote-as 65000 - neighbor 10.39.8.42 update-source Management1 - ! - ! - neighbor 10.39.8.43 remote-as 65000 - neighbor 10.39.8.43 update-source Management1 - ! - ! - neighbor 10.39.8.44 remote-as 65000 - neighbor 10.39.8.44 update-source Management1 - ! - ! - ! -! -! -! -router isis sr_instance - net 49.0001.0010.0100.1001.00 - is-type level-2 - log-adjacency-changes - ! - address-family ipv4 unicast - ! - segment-routing mpls - router-id 10.39.8.41 - no shutdown - ! -! -management api http-commands - protocol http - no shutdown -! diff --git a/core_config/ansible-veos2-config.txt b/core_config/ansible-veos2-config.txt deleted file mode 100644 index 2514617..0000000 --- a/core_config/ansible-veos2-config.txt +++ /dev/null @@ -1,83 +0,0 @@ -! -no schedule tech-support -! -transceiver qsfp default-mode 4x10G -! -hostname ansible-veos2 -! -spanning-tree mode mstp -! -no aaa root -! -username admin privilege 15 role network-admin secret sha512 $6$QooVHYszFBY655A/$WnVBzmLe2LsWQ2kF01jtWff4L9xlxIfCpB0/rS7nWB70dFEoIbIYPRf1LHGg/jSGcR6VdecKvweJxry2vttCR1 -username salt privilege 15 role network-admin secret sha512 $6$gNfDGxuNqAufb7SS$XuBAZwDyHEX6Bt6zgDBA0zkJLhOm.5aJ8cwy2wd21DVr9yWr.gqwYBx7NUntbvSjTlKDQBg.XsMIIYRwqU10u1 -username salt sshkey ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt knewell@ubuntu -! -interface Ethernet3 - no switchport - ip address 172.10.24.2/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet4 - no switchport - ip address 172.10.25.2/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet1 - no switchport - ip address 172.10.12.2/24 - isis enable sr_instance - isis network point-to-point -! -! -! -interface Loopback0 - ip address 10.39.8.42/32 - isis enable sr_instance - node-segment ipv4 index 20 -! -interface Management1 - ip address 10.39.0.42/22 -! -ip route 0.0.0.0/0 10.39.0.1 -! -ip routing -! -ipv6 unicast-routing -! -! -mpls ip -! -mpls label range isis-sr 800000 4096 -! -router bgp 65000 - router-id 10.39.8.42 - ! - neighbor 10.39.8.41 remote-as 65000 - neighbor 10.39.8.41 update-source Management1 - ! - ! - ! -! -! -! -router isis sr_instance - net 49.0001.0010.0100.1002.00 - is-type level-2 - log-adjacency-changes - ! - address-family ipv4 unicast - ! - segment-routing mpls - router-id 10.39.8.42 - no shutdown - ! -! -management api http-commands - protocol http - no shutdown -! diff --git a/core_config/ansible-veos3-config.txt b/core_config/ansible-veos3-config.txt deleted file mode 100644 index 53a4373..0000000 --- a/core_config/ansible-veos3-config.txt +++ /dev/null @@ -1,83 +0,0 @@ -! -no schedule tech-support -! -transceiver qsfp default-mode 4x10G -! -hostname ansible-veos3 -! -spanning-tree mode mstp -! -no aaa root -! -username admin privilege 15 role network-admin secret sha512 $6$QooVHYszFBY655A/$WnVBzmLe2LsWQ2kF01jtWff4L9xlxIfCpB0/rS7nWB70dFEoIbIYPRf1LHGg/jSGcR6VdecKvweJxry2vttCR1 -username salt privilege 15 role network-admin secret sha512 $6$gNfDGxuNqAufb7SS$XuBAZwDyHEX6Bt6zgDBA0zkJLhOm.5aJ8cwy2wd21DVr9yWr.gqwYBx7NUntbvSjTlKDQBg.XsMIIYRwqU10u1 -username salt sshkey ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt knewell@ubuntu -! -interface Ethernet3 - no switchport - ip address 172.10.34.3/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet4 - no switchport - ip address 172.10.36.3/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet1 - no switchport - ip address 172.10.13.3/24 - isis enable sr_instance - isis network point-to-point -! -! -! -interface Loopback0 - ip address 10.39.8.43/32 - isis enable sr_instance - node-segment ipv4 index 30 -! -interface Management1 - ip address 10.39.0.43/22 -! -ip route 0.0.0.0/0 10.39.0.1 -! -ip routing -! -ipv6 unicast-routing -! -! -mpls ip -! -mpls label range isis-sr 800000 4096 -! -router bgp 65000 - router-id 10.39.8.43 - ! - neighbor 10.39.8.41 remote-as 65000 - neighbor 10.39.8.41 update-source Management1 - ! - ! - ! -! -! -! -router isis sr_instance - net 49.0001.0010.0100.1003.00 - is-type level-2 - log-adjacency-changes - ! - address-family ipv4 unicast - ! - segment-routing mpls - router-id 10.39.8.43 - no shutdown - ! -! -management api http-commands - protocol http - no shutdown -! diff --git a/core_config/ansible-veos4-config.txt b/core_config/ansible-veos4-config.txt deleted file mode 100644 index 41744a3..0000000 --- a/core_config/ansible-veos4-config.txt +++ /dev/null @@ -1,83 +0,0 @@ -! -no schedule tech-support -! -transceiver qsfp default-mode 4x10G -! -hostname ansible-veos4 -! -spanning-tree mode mstp -! -no aaa root -! -username admin privilege 15 role network-admin secret sha512 $6$QooVHYszFBY655A/$WnVBzmLe2LsWQ2kF01jtWff4L9xlxIfCpB0/rS7nWB70dFEoIbIYPRf1LHGg/jSGcR6VdecKvweJxry2vttCR1 -username salt privilege 15 role network-admin secret sha512 $6$gNfDGxuNqAufb7SS$XuBAZwDyHEX6Bt6zgDBA0zkJLhOm.5aJ8cwy2wd21DVr9yWr.gqwYBx7NUntbvSjTlKDQBg.XsMIIYRwqU10u1 -username salt sshkey ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt knewell@ubuntu -! -interface Ethernet3 - no switchport - ip address 172.10.34.4/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet4 - no switchport - ip address 172.10.46.4/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet2 - no switchport - ip address 172.10.24.4/24 - isis enable sr_instance - isis network point-to-point -! -! -! -interface Loopback0 - ip address 10.39.8.44/32 - isis enable sr_instance - node-segment ipv4 index 40 -! -interface Management1 - ip address 10.39.0.44/22 -! -ip route 0.0.0.0/0 10.39.0.1 -! -ip routing -! -ipv6 unicast-routing -! -! -mpls ip -! -mpls label range isis-sr 800000 4096 -! -router bgp 65000 - router-id 10.39.8.44 - ! - neighbor 10.39.8.41 remote-as 65000 - neighbor 10.39.8.41 update-source Management1 - ! - ! - ! -! -! -! -router isis sr_instance - net 49.0001.0010.0100.1004.00 - is-type level-2 - log-adjacency-changes - ! - address-family ipv4 unicast - ! - segment-routing mpls - router-id 10.39.8.44 - no shutdown - ! -! -management api http-commands - protocol http - no shutdown -! diff --git a/core_config/ansible-veos5-config.txt b/core_config/ansible-veos5-config.txt deleted file mode 100644 index 3d6b4e0..0000000 --- a/core_config/ansible-veos5-config.txt +++ /dev/null @@ -1,81 +0,0 @@ -! -no schedule tech-support -! -transceiver qsfp default-mode 4x10G -! -hostname ansible-veos5 -! -spanning-tree mode mstp -! -no aaa root -! -username admin privilege 15 role network-admin secret sha512 $6$QooVHYszFBY655A/$WnVBzmLe2LsWQ2kF01jtWff4L9xlxIfCpB0/rS7nWB70dFEoIbIYPRf1LHGg/jSGcR6VdecKvweJxry2vttCR1 -username salt privilege 15 role network-admin secret sha512 $6$gNfDGxuNqAufb7SS$XuBAZwDyHEX6Bt6zgDBA0zkJLhOm.5aJ8cwy2wd21DVr9yWr.gqwYBx7NUntbvSjTlKDQBg.XsMIIYRwqU10u1 -username salt sshkey ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt knewell@ubuntu -! -interface Ethernet3 - no switchport - ip address 172.10.55.5/24 -! -! -interface Ethernet1 - no switchport - ip address 172.10.15.5/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet2 - no switchport - ip address 172.10.25.5/24 - isis enable sr_instance - isis network point-to-point -! -! -! -interface Loopback0 - ip address 10.39.8.55/32 - isis enable sr_instance - node-segment ipv4 index 50 -! -interface Management1 - ip address 10.39.0.55/22 -! -ip route 0.0.0.0/0 10.39.0.1 -! -ip routing -! -ipv6 unicast-routing -! -! -mpls ip -! -mpls label range isis-sr 800000 4096 -! -router bgp 65000 - router-id 10.39.8.55 - ! - neighbor 10.39.8.41 remote-as 65000 - neighbor 10.39.8.41 update-source Management1 - ! - ! - ! -! -! -! -router isis sr_instance - net 49.0001.0010.0100.1005.00 - is-type level-2 - log-adjacency-changes - ! - address-family ipv4 unicast - ! - segment-routing mpls - router-id 10.39.8.55 - no shutdown - ! -! -management api http-commands - protocol http - no shutdown -! diff --git a/core_config/ansible-veos55-config.txt b/core_config/ansible-veos55-config.txt deleted file mode 100644 index 24d84f4..0000000 --- a/core_config/ansible-veos55-config.txt +++ /dev/null @@ -1,54 +0,0 @@ -! -no schedule tech-support -! -transceiver qsfp default-mode 4x10G -! -hostname ansible-veos55 -! -spanning-tree mode mstp -! -no aaa root -! -username admin privilege 15 role network-admin secret sha512 $6$QooVHYszFBY655A/$WnVBzmLe2LsWQ2kF01jtWff4L9xlxIfCpB0/rS7nWB70dFEoIbIYPRf1LHGg/jSGcR6VdecKvweJxry2vttCR1 -username salt privilege 15 role network-admin secret sha512 $6$gNfDGxuNqAufb7SS$XuBAZwDyHEX6Bt6zgDBA0zkJLhOm.5aJ8cwy2wd21DVr9yWr.gqwYBx7NUntbvSjTlKDQBg.XsMIIYRwqU10u1 -username salt sshkey ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt knewell@ubuntu -! -interface Ethernet1 - no switchport - ip address 172.10.55.55/24 -! -! -! -interface Loopback0 - ip address 10.39.8.155/32 -! -interface Management1 - ip address 10.39.0.155/22 -! -ip route 0.0.0.0/0 10.39.0.1 -! -ip routing -! -ipv6 unicast-routing -! -! -mpls ip -! -mpls label range isis-sr 800000 4096 -! -router bgp 65000 - router-id 10.39.8.155 - ! - neighbor 10.39.8.41 remote-as 65000 - neighbor 10.39.8.41 update-source Management1 - ! - ! - ! -! -! -! -! -management api http-commands - protocol http - no shutdown -! diff --git a/core_config/ansible-veos6-config.txt b/core_config/ansible-veos6-config.txt deleted file mode 100644 index 2481142..0000000 --- a/core_config/ansible-veos6-config.txt +++ /dev/null @@ -1,81 +0,0 @@ -! -no schedule tech-support -! -transceiver qsfp default-mode 4x10G -! -hostname ansible-veos6 -! -spanning-tree mode mstp -! -no aaa root -! -username admin privilege 15 role network-admin secret sha512 $6$QooVHYszFBY655A/$WnVBzmLe2LsWQ2kF01jtWff4L9xlxIfCpB0/rS7nWB70dFEoIbIYPRf1LHGg/jSGcR6VdecKvweJxry2vttCR1 -username salt privilege 15 role network-admin secret sha512 $6$gNfDGxuNqAufb7SS$XuBAZwDyHEX6Bt6zgDBA0zkJLhOm.5aJ8cwy2wd21DVr9yWr.gqwYBx7NUntbvSjTlKDQBg.XsMIIYRwqU10u1 -username salt sshkey ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt knewell@ubuntu -! -interface Ethernet3 - no switchport - ip address 172.10.66.6/24 -! -! -interface Ethernet1 - no switchport - ip address 172.10.36.6/24 - isis enable sr_instance - isis network point-to-point -! -! -interface Ethernet2 - no switchport - ip address 172.10.46.6/24 - isis enable sr_instance - isis network point-to-point -! -! -! -interface Loopback0 - ip address 10.39.8.56/32 - isis enable sr_instance - node-segment ipv4 index 60 -! -interface Management1 - ip address 10.39.0.56/22 -! -ip route 0.0.0.0/0 10.39.0.1 -! -ip routing -! -ipv6 unicast-routing -! -! -mpls ip -! -mpls label range isis-sr 800000 4096 -! -router bgp 65000 - router-id 10.39.8.56 - ! - neighbor 10.39.8.41 remote-as 65000 - neighbor 10.39.8.41 update-source Management1 - ! - ! - ! -! -! -! -router isis sr_instance - net 49.0001.0010.0100.1006.00 - is-type level-2 - log-adjacency-changes - ! - address-family ipv4 unicast - ! - segment-routing mpls - router-id 10.39.8.56 - no shutdown - ! -! -management api http-commands - protocol http - no shutdown -! diff --git a/core_config/ansible-veos66-config.txt b/core_config/ansible-veos66-config.txt deleted file mode 100644 index 56a6a91..0000000 --- a/core_config/ansible-veos66-config.txt +++ /dev/null @@ -1,54 +0,0 @@ -! -no schedule tech-support -! -transceiver qsfp default-mode 4x10G -! -hostname ansible-veos66 -! -spanning-tree mode mstp -! -no aaa root -! -username admin privilege 15 role network-admin secret sha512 $6$QooVHYszFBY655A/$WnVBzmLe2LsWQ2kF01jtWff4L9xlxIfCpB0/rS7nWB70dFEoIbIYPRf1LHGg/jSGcR6VdecKvweJxry2vttCR1 -username salt privilege 15 role network-admin secret sha512 $6$gNfDGxuNqAufb7SS$XuBAZwDyHEX6Bt6zgDBA0zkJLhOm.5aJ8cwy2wd21DVr9yWr.gqwYBx7NUntbvSjTlKDQBg.XsMIIYRwqU10u1 -username salt sshkey ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt knewell@ubuntu -! -interface Ethernet1 - no switchport - ip address 172.10.66.66/24 -! -! -! -interface Loopback0 - ip address 10.39.8.156/32 -! -interface Management1 - ip address 10.39.0.156/22 -! -ip route 0.0.0.0/0 10.39.0.1 -! -ip routing -! -ipv6 unicast-routing -! -! -mpls ip -! -mpls label range isis-sr 800000 4096 -! -router bgp 65000 - router-id 10.39.8.156 - ! - neighbor 10.39.8.41 remote-as 65000 - neighbor 10.39.8.41 update-source Management1 - ! - ! - ! -! -! -! -! -management api http-commands - protocol http - no shutdown -! diff --git a/core_config/ansible-vmx1-config.txt b/core_config/ansible-vmx1-config.txt deleted file mode 100644 index e37c024..0000000 --- a/core_config/ansible-vmx1-config.txt +++ /dev/null @@ -1,167 +0,0 @@ - -version 15.1F6.9 -system { - host-name ansible-vmx1; - no-redirects; - root-authentication { - encrypted-password "$5$mcE0Hfiq$JfBeC3QSAvnd1tjqlOhlYXDgVrwvd6S4G3oVj5wiMO7"; ## SECRET-DATA - } - login { - user salt { - uid 2001; - class super-user; - authentication { - encrypted-password "$5$yp7ziGTI$F5F.6AUlR8hDK2JIsw5WRrTLex/yTCWH3iSR1Auk293"; ## SECRET-DATA - ssh-rsa "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt"; ## SECRET-DATA - } - } - } - services { - ssh; - netconf { - ssh; - traceoptions { - file nc.txt size 1m world-readable; - flag all; - } - } - } - syslog { - user * { - any emergency; - } - file messages { - any any; - authorization info; - } - file interactive-commands { - interactive-commands any; - } - } -} - -interfaces { - ge-0/0/0 { - description "ansible-vmx2" - unit 0 { - family inet { - address 172.10.12.1/24 - } - family mpls; - family iso; - } - } - - ge-0/0/1 { - description "ansible-vmx3" - unit 0 { - family inet { - address 172.10.13.1/24 - } - family mpls; - family iso; - } - } - - ge-0/0/3 { - description "ansible-veos5" - unit 0 { - family inet { - address 172.10.15.1/24 - } - family mpls; - family iso; - } - } - - fxp0 { - description "OOB to MGMT Network"; - unit 0 { - family inet { - address 10.39.0.41/20; - } - } - } - lo0 { - unit 0 { - family inet { - address 10.39.8.41/32; - } - family iso { - address 49.0001.0010.0100.1001.00; - } - - } - } -} -routing-options { - router-id 10.39.8.41; - autonomous-system 65000; - static { - route 0.0.0.0/0 { - next-hop 10.39.0.1; - no-readvertise; - preference 255; - } - } -} -protocols { - bgp { - group Core { - type internal; - local-address 10.39.8.41; - cluster 10.39.8.41; - family inet { - unicast; - } - family inet-vpn { - unicast; - } - neighbor 10.39.8.42; - neighbor 10.39.8.43; - neighbor 10.39.8.44; - } - } - isis { - no-ipv6-routing; - source-packet-routing { - node-segment { - ipv4-index 10; - } - } - level 1 disable; - interface ge-0/0/0.0 { - point-to-point; - } - interface ge-0/0/1.0 { - point-to-point; - } - interface ge-0/0/3.0 { - point-to-point; - } - interface lo0.0 { - passive; - } - } - ldp { - interface ge-0/0/0.0; - interface ge-0/0/1.0; - interface ge-0/0/3.0; - interface lo0.0; - } - rsvp { - interface ge-0/0/0.0; - interface ge-0/0/1.0; - interface ge-0/0/3.0; - } - mpls { - interface ge-0/0/0.0; - interface ge-0/0/1.0; - interface ge-0/0/3.0; - } - lldp { - interface ge-0/0/0; - interface ge-0/0/1; - interface ge-0/0/3; - } -} diff --git a/core_config/ansible-vmx2-config.txt b/core_config/ansible-vmx2-config.txt deleted file mode 100644 index 295c263..0000000 --- a/core_config/ansible-vmx2-config.txt +++ /dev/null @@ -1,179 +0,0 @@ - -version 15.1F6.9 -system { - host-name ansible-vmx2; - no-redirects; - root-authentication { - encrypted-password "$5$mcE0Hfiq$JfBeC3QSAvnd1tjqlOhlYXDgVrwvd6S4G3oVj5wiMO7"; ## SECRET-DATA - } - login { - user salt { - uid 2001; - class super-user; - authentication { - encrypted-password "$5$yp7ziGTI$F5F.6AUlR8hDK2JIsw5WRrTLex/yTCWH3iSR1Auk293"; ## SECRET-DATA - ssh-rsa "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt"; ## SECRET-DATA - } - } - } - services { - ssh; - netconf { - ssh; - traceoptions { - file nc.txt size 1m world-readable; - flag all; - } - } - } - syslog { - user * { - any emergency; - } - file messages { - any any; - authorization info; - } - file interactive-commands { - interactive-commands any; - } - } -} - -interfaces { - ge-0/0/0 { - description "ansible-vmx1" - unit 0 { - family inet { - address 172.10.12.2/24 - } - family mpls; - family iso; - } - } - - ge-0/0/2 { - description "ansible-vmx4" - unit 0 { - family inet { - address 172.10.24.2/24 - } - family mpls; - family iso; - } - } - - ge-0/0/3 { - description "ansible-veos5" - unit 0 { - family inet { - address 172.10.25.2/24 - } - family mpls; - family iso; - } - } - - fxp0 { - description "OOB to MGMT Network"; - unit 0 { - family inet { - address 10.39.0.42/20; - } - } - } - lo0 { - unit 0 { - family inet { - address 10.39.8.42/32; - } - family iso { - address 49.0001.0010.0100.1002.00; - } - - } - } -} -routing-options { - router-id 10.39.8.42; - autonomous-system 65000; - static { - route 0.0.0.0/0 { - next-hop 10.39.0.1; - no-readvertise; - preference 255; - } - } -} -protocols { - bgp { - group Core { - type internal; - export __Ansible_Core_export; - local-address 10.39.8.42; - family inet { - unicast; - } - family inet-vpn { - unicast; - } - neighbor 10.39.8.41; - } - } - isis { - no-ipv6-routing; - source-packet-routing { - node-segment { - ipv4-index 20; - } - } - level 1 disable; - interface ge-0/0/0.0 { - point-to-point; - } - interface ge-0/0/2.0 { - point-to-point; - } - interface ge-0/0/3.0 { - point-to-point; - } - interface lo0.0 { - passive; - } - } - ldp { - interface ge-0/0/0.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - interface lo0.0; - } - rsvp { - interface ge-0/0/0.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - } - mpls { - interface ge-0/0/0.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - } - lldp { - interface ge-0/0/0; - interface ge-0/0/2; - interface ge-0/0/3; - } -} -policy-options { - policy-statement __Ansible_Core_export { - term ebgp { - from { - protocol bgp; - external; - } - then { - next-hop self; - accept; - } - } - } -} diff --git a/core_config/ansible-vmx3-config.txt b/core_config/ansible-vmx3-config.txt deleted file mode 100644 index e8a5f29..0000000 --- a/core_config/ansible-vmx3-config.txt +++ /dev/null @@ -1,179 +0,0 @@ - -version 15.1F6.9 -system { - host-name ansible-vmx3; - no-redirects; - root-authentication { - encrypted-password "$5$mcE0Hfiq$JfBeC3QSAvnd1tjqlOhlYXDgVrwvd6S4G3oVj5wiMO7"; ## SECRET-DATA - } - login { - user salt { - uid 2001; - class super-user; - authentication { - encrypted-password "$5$yp7ziGTI$F5F.6AUlR8hDK2JIsw5WRrTLex/yTCWH3iSR1Auk293"; ## SECRET-DATA - ssh-rsa "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt"; ## SECRET-DATA - } - } - } - services { - ssh; - netconf { - ssh; - traceoptions { - file nc.txt size 1m world-readable; - flag all; - } - } - } - syslog { - user * { - any emergency; - } - file messages { - any any; - authorization info; - } - file interactive-commands { - interactive-commands any; - } - } -} - -interfaces { - ge-0/0/0 { - description "ansible-vmx1" - unit 0 { - family inet { - address 172.10.13.3/24 - } - family mpls; - family iso; - } - } - - ge-0/0/2 { - description "ansible-vmx4" - unit 0 { - family inet { - address 172.10.34.3/24 - } - family mpls; - family iso; - } - } - - ge-0/0/3 { - description "ansible-veos6" - unit 0 { - family inet { - address 172.10.36.3/24 - } - family mpls; - family iso; - } - } - - fxp0 { - description "OOB to MGMT Network"; - unit 0 { - family inet { - address 10.39.0.43/20; - } - } - } - lo0 { - unit 0 { - family inet { - address 10.39.8.43/32; - } - family iso { - address 49.0001.0010.0100.1003.00; - } - - } - } -} -routing-options { - router-id 10.39.8.43; - autonomous-system 65000; - static { - route 0.0.0.0/0 { - next-hop 10.39.0.1; - no-readvertise; - preference 255; - } - } -} -protocols { - bgp { - group Core { - type internal; - export __Ansible_Core_export; - local-address 10.39.8.43; - family inet { - unicast; - } - family inet-vpn { - unicast; - } - neighbor 10.39.8.41; - } - } - isis { - no-ipv6-routing; - source-packet-routing { - node-segment { - ipv4-index 30; - } - } - level 1 disable; - interface ge-0/0/0.0 { - point-to-point; - } - interface ge-0/0/2.0 { - point-to-point; - } - interface ge-0/0/3.0 { - point-to-point; - } - interface lo0.0 { - passive; - } - } - ldp { - interface ge-0/0/0.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - interface lo0.0; - } - rsvp { - interface ge-0/0/0.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - } - mpls { - interface ge-0/0/0.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - } - lldp { - interface ge-0/0/0; - interface ge-0/0/2; - interface ge-0/0/3; - } -} -policy-options { - policy-statement __Ansible_Core_export { - term ebgp { - from { - protocol bgp; - external; - } - then { - next-hop self; - accept; - } - } - } -} diff --git a/core_config/ansible-vmx4-config.txt b/core_config/ansible-vmx4-config.txt deleted file mode 100644 index 27ba03d..0000000 --- a/core_config/ansible-vmx4-config.txt +++ /dev/null @@ -1,179 +0,0 @@ - -version 15.1F6.9 -system { - host-name ansible-vmx4; - no-redirects; - root-authentication { - encrypted-password "$5$mcE0Hfiq$JfBeC3QSAvnd1tjqlOhlYXDgVrwvd6S4G3oVj5wiMO7"; ## SECRET-DATA - } - login { - user salt { - uid 2001; - class super-user; - authentication { - encrypted-password "$5$yp7ziGTI$F5F.6AUlR8hDK2JIsw5WRrTLex/yTCWH3iSR1Auk293"; ## SECRET-DATA - ssh-rsa "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjxY2hLZ+ju5wdK4GYNhKGgnS8EWLBoEVpo+xQkhDzkTiBx3HGAnmARcVV0B9MqrHZl1omdnirJeygWzVbVY4yPUqGgEcUsTTq9fvK4AjTwtaoB5txAosaOnZq0zewmuZ6EMi6E3RND6A3FGXkf1Il2jg3I8k/dGqdyFI80B7sWy90fk+EqsGMPxVc+l5vAtY2jm84ellxxzBsulxfCSKPH86hZ1GqZ8A1ZBWITu15NjQw0aGssSYGMMTa1T8eFyY4hHWqqdwgOlODg9mZwwP1JdJH79SRoTOjqGGixuAFDGAgH3fNX6u8wTmYya/z7WXH6B2XwiiaZYdcyEbMLPZt"; ## SECRET-DATA - } - } - } - services { - ssh; - netconf { - ssh; - traceoptions { - file nc.txt size 1m world-readable; - flag all; - } - } - } - syslog { - user * { - any emergency; - } - file messages { - any any; - authorization info; - } - file interactive-commands { - interactive-commands any; - } - } -} - -interfaces { - ge-0/0/1 { - description "ansible-vmx2" - unit 0 { - family inet { - address 172.10.24.4/24 - } - family mpls; - family iso; - } - } - - ge-0/0/2 { - description "ansible-vmx3" - unit 0 { - family inet { - address 172.10.34.4/24 - } - family mpls; - family iso; - } - } - - ge-0/0/3 { - description "ansible-veos6" - unit 0 { - family inet { - address 172.10.46.4/24 - } - family mpls; - family iso; - } - } - - fxp0 { - description "OOB to MGMT Network"; - unit 0 { - family inet { - address 10.39.0.44/20; - } - } - } - lo0 { - unit 0 { - family inet { - address 10.39.8.44/32; - } - family iso { - address 49.0001.0010.0100.1004.00; - } - - } - } -} -routing-options { - router-id 10.39.8.44; - autonomous-system 65000; - static { - route 0.0.0.0/0 { - next-hop 10.39.0.1; - no-readvertise; - preference 255; - } - } -} -protocols { - bgp { - group Core { - type internal; - export __Ansible_Core_export; - local-address 10.39.8.44; - family inet { - unicast; - } - family inet-vpn { - unicast; - } - neighbor 10.39.8.41; - } - } - isis { - no-ipv6-routing; - source-packet-routing { - node-segment { - ipv4-index 40; - } - } - level 1 disable; - interface ge-0/0/1.0 { - point-to-point; - } - interface ge-0/0/2.0 { - point-to-point; - } - interface ge-0/0/3.0 { - point-to-point; - } - interface lo0.0 { - passive; - } - } - ldp { - interface ge-0/0/1.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - interface lo0.0; - } - rsvp { - interface ge-0/0/1.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - } - mpls { - interface ge-0/0/1.0; - interface ge-0/0/2.0; - interface ge-0/0/3.0; - } - lldp { - interface ge-0/0/1; - interface ge-0/0/2; - interface ge-0/0/3; - } -} -policy-options { - policy-statement __Ansible_Core_export { - term ebgp { - from { - protocol bgp; - external; - } - then { - next-hop self; - accept; - } - } - } -} diff --git a/group_vars/ios b/group_vars/ios new file mode 100644 index 0000000..c937082 --- /dev/null +++ b/group_vars/ios @@ -0,0 +1,8 @@ +--- +ansible_connection: network_cli +#ansible_connection: netconf +ansible_network_os: ios +ansible_user: ntc +ansible_ssh_pass: ntc123 +#ansible_become: yes +#ansible_become_method: enable diff --git a/hosts_csr b/hosts_csr index 367c0a5..5ae1043 100644 --- a/hosts_csr +++ b/hosts_csr @@ -3,19 +3,19 @@ all: children: cisco: children: - csr: + ios: hosts: ansible-csr1: - ansible_host: 10.0.0.51 + ansible_host: 18.235.114.115 ansible-csr2: - ansible_host: 10.0.0.52 + ansible_host: 18.215.77.84 ansible-csr3: - ansible_host: 10.0.0.53 + ansible_host: 18.210.215.85 ansible-csr4: - ansible_host: 10.0.0.54 + ansible_host: 34.236.81.154 ansible-csr5: - ansible_host: 10.0.0.55 + ansible_host: 35.170.134.202 ansible-csr6: - ansible_host: 10.0.0.56 + ansible_host: 18.235.79.28 vars: model: core-model-csr.yml diff --git a/ios/core.j2 b/ios/core.j2 new file mode 100644 index 0000000..61833df --- /dev/null +++ b/ios/core.j2 @@ -0,0 +1,103 @@ +{% set node = nodes[inventory_hostname] %} +! +service timestamps debug datetime msec +service timestamps log datetime msec +no platform punt-keepalive disable-kernel-core +platform console auto +! +hostname {{inventory_hostname}} +! +vrf definition MANAGEMENT + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +! +no aaa new-model +! +no ip domain lookup +ip domain name ntc.com +! +subscriber templating +! +multilink bundle-name authenticated +! +! +license udi pid CSR1000V sn 9KXI0D7TVFI +diagnostic bootup level minimal +archive + path bootflash:archive +! +spanning-tree extend system-id +netconf-yang cisco-odm on-demand-enable +netconf-yang cisco-odm polling-enable +netconf-yang +restconf +! +username ntc privilege 15 password 0 ntc123 +! +redundancy +! +lldp run +cdp run +! +interface Loopback0 + ip address {{node.rid}} 255.255.255.255 + {% if node.ospf is defined %} + ip ospf 1 area {{node.ospf.area}} + {% endif %} +! +interface GigabitEthernet1 + vrf forwarding MANAGEMENT + ip address {{node.mgmt}} 255.255.255.0 + negotiation auto +! +{% for intf,intf_attr in node.links.items() %} +interface {{intf.split('.')[0]}} + no shutdown +{% if intf_attr.vlan is undefined or intf_attr.vlan == 0 %} + ip address {{intf_attr.ip}} {{intf_attr.mask|default('255.255.255.0')}} + negotiation auto +{% endif %} +! +{% if intf_attr.vlan is defined and intf_attr.vlan != 0 %} +interface {{intf}} + ipv4 address {{intf_attr.ip}} {{intf_attr.mask|default('255.255.255.0')}} + encapsulation dot1q {{intf_attr.vlan}} +{% endif %} +! +{% endfor %} +! +router ospf 1 + router-id {{node.rid}} + {% for intf,intf_attr in node.links.items() %} + network {{intf_attr.ip}} 0.0.0.255 area {{node.ospf.area}} + {% endfor %} +virtual-service csr_mgmt +! +ip forward-protocol nd +ip http server +ip http authentication local +ip http secure-server +! +ip route vrf MANAGEMENT 0.0.0.0 0.0.0.0 10.0.0.2 +ip scp server enable +! +control-plane +! +alias exec ntcclear clear platform software vnic-if nv +! +line con 0 + stopbits 1 +line vty 0 4 + privilege level 15 + login local + transport preferred ssh +line vty 5 30 + privilege level 15 + login local + transport preferred ssh +! diff --git a/ios/core.j2.bak b/ios/core.j2.bak new file mode 100644 index 0000000..104605f --- /dev/null +++ b/ios/core.j2.bak @@ -0,0 +1,195 @@ + + + +{% set node = nodes[inventory_hostname] %} +! +service timestamps debug datetime msec +service timestamps log datetime msec +no platform punt-keepalive disable-kernel-core +platform console auto +! +hostname {{inventory_hostname}} +! +vrf definition MANAGEMENT + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +! +no aaa new-model +! +no ip domain lookup +ip domain name ntc.com +! +subscriber templating +! +multilink bundle-name authenticated +! +crypto pki trustpoint TP-self-signed-1692872229 + enrollment selfsigned + subject-name cn=IOS-Self-Signed-Certificate-1692872229 + revocation-check none + rsakeypair TP-self-signed-1692872229 +! +! +crypto pki certificate chain TP-self-signed-1692872229 + certificate self-signed 01 + 30820330 30820218 A0030201 02020101 300D0609 2A864886 F70D0101 05050030 + 31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 + 69666963 6174652D 31363932 38373232 3239301E 170D3136 30393137 31343532 + 31355A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 + 4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 36393238 + 37323232 39308201 22300D06 092A8648 86F70D01 01010500 0382010F 00308201 + 0A028201 01008C3F 8CC4110A 46D229F4 6CC98F4B B91EC0E7 14653DF4 929EFAE2 + 735FBFB9 944BBB69 76183782 C7580776 A63E0B59 1FC59096 46083864 3BCBA45B + DBBE4446 19E096CD 218C27B6 053F9ADA 3A9A442C 43028EA0 65751E97 E9AEA5AA + 79421470 4515CB08 B09A1546 0F2A547E 1BD79437 82000464 8675A977 0C46721B + 96EB64DD E69C1F5A BE21D8AE 9283BE65 F0D36816 360C71CB 266DDAF4 8E862D2F + 7665A0A9 1955CD7A 95B31F67 D24C4BB8 CF30E3CB 0ACA3698 0BEE3323 A2C3AF16 + B322FB52 BEDA9AB6 DE7B4D1A 6C89E060 0F971CC9 2192A88A E01D6B00 A7A4CBEC + 4EA3E233 AC213B27 6CFE403C 4ED6AF88 C48F0106 9DCB9B34 CE775B88 E22ED282 + 98112FF5 A07B0203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF + 301F0603 551D2304 18301680 142A6961 60B9636B 6AB03227 74EF7A25 CCEC0FCE + 81301D06 03551D0E 04160414 2A696160 B9636B6A B0322774 EF7A25CC EC0FCE81 + 300D0609 2A864886 F70D0101 05050003 82010100 17DC579F D400261B 6E725759 + A99EE2D9 BE51F87C 00205EF4 7C647E18 C736108A E86E4C1C 5494FFA8 358D1D89 + B0919DBA 0C5F72DB 831C67E7 0EE7C2EB 961E0355 5FAAECC7 A946D7A0 1C401D0D + FD4D1F63 C0BBCF43 DEAB63B5 11051773 172AA75D 389813A8 6080DFB6 C704A199 + EC8546B7 BA3C53C8 8B69DF64 5305FDEB 3A7ACA2A 1992AF6C C9D74A91 2601666D + FE0AD3F3 81015D87 9721ED5B 7CAC12EC 3AB40C1C 8C51A871 C8EEB611 29B16D10 + A7AE1C00 4B71940E AD42D20C FD9B958D 7D353DDC 195CC910 1DDC2BE7 E971B2EA + 209F3F96 FBE167D6 E0E4E11F E58834D8 7FE78CB5 039297CD 113CB419 6C5F9733 + AF749425 129B78B2 D6BBEFA0 34F4CB8E FF9B43A7 + quit +! +license udi pid CSR1000V sn 9KXI0D7TVFI +diagnostic bootup level minimal +archive + path bootflash:archive +! +spanning-tree extend system-id +netconf-yang cisco-odm on-demand-enable +netconf-yang cisco-odm polling-enable +netconf-yang +restconf +! +username ntc privilege 15 password 0 ntc123 +! +redundancy +! +lldp run +cdp run +! +interface Loopback0 + ip address {{node.rid}} 255.255.255.255 +! +interface GigabitEthernet1 + vrf forwarding MANAGEMENT + ip address {{node.mgmt}} 255.255.255.0 + negotiation auto +! +{% for intf,intf_attr in node.links.items() %} +interface {{intf.split('.')[0]}} + no shutdown +{% if intf_attr.vlan is undefined or intf_attr.vlan == 0 %} + ip address {{intf_attr.ip}}/{{intf_attr.mask|default('24')}} + negotiation auto +{% endif %} +! +{% if intf_attr.vlan is defined and intf_attr.vlan != 0 %} +interface {{intf}} + ipv4 address {{intf_attr.ip}}/{{intf_attr.mask|default('24')}} + encapsulation dot1q {{intf_attr.vlan}} +{% endif %} +! +{% endfor %} +! +#router ospf 1 +# address-family ipv4 unicast +# area {{node.ospf.area}} +# interface Loopback0 +# passive enable +# ! +#{% for intf, intf_attr in node.links.items()|sort %} +# interface {{intf}} +# cost {{intf_attr.cost}} +# network point-to-point +# ! +#{% endfor %} +# ! +# mpls traffic-eng router-id Loopback0 +! +#router bgp {{common.bgp_asn}} +#{% if 'inet' in node.bgp.ibgp.af %} +# address-family ipv4 unicast +#{% endif %} +# ! +#{% if 'inet-vpn' in node.bgp.ibgp.af %} +# address-family vpnv4 unicast +#{% endif %} +# ! +#{% for peer in node.bgp.ibgp.peers %} +# neighbor {{peer}} +# remote-as {{common.bgp_asn}} +# local address {{node.rid}} +#{% if 'inet' in node.bgp.ibgp.af %} +# address-family ipv4 unicast +#{% endif %} +# ! +#{% if 'inet-vpn' in node.bgp.ibgp.af %} +# address-family vpnv4 unicast +#{% endif %} +# ! +#{% endfor %} +# ! +! +#rsvp +#{% for intf, intf_attr in node.links.items()|sort %} +# interface {{intf}} +#{% endfor %} + ! +! +#mpls traffic-eng +#{% for intf, intf_attr in node.links.items()|sort %} +# interface {{intf}} +#{% endfor %} +! +#mpls ldp +#{% for intf, intf_attr in node.links.items()|sort %} +# interface {{intf}} +#{% endfor %} +! +#lldp +# subinterfaces enable +! +#xml agent tty +# iteration off +! +virtual-service csr_mgmt +! +ip forward-protocol nd +ip http server +ip http authentication local +ip http secure-server +! +ip route vrf MANAGEMENT 0.0.0.0 0.0.0.0 10.0.0.2 +ip scp server enable +! +control-plane +! +alias exec ntcclear clear platform software vnic-if nv +! +line con 0 + stopbits 1 +line vty 0 4 + privilege level 15 + login local + transport preferred ssh +line vty 5 30 + privilege level 15 + login local + transport preferred ssh +! diff --git a/iosxr/core.j2 b/iosxr/core.j2 deleted file mode 100644 index 79eca04..0000000 --- a/iosxr/core.j2 +++ /dev/null @@ -1,97 +0,0 @@ -{% set node = nodes[inventory_hostname] %} -! -hostname {{inventory_hostname}} -telnet vrf default ipv4 server max-servers 100 -username netconf - group sysadmin - group root-system - group cisco-support - password 7 151C0E1807252522796166 -! -username vagrant - group root-lr - group cisco-support - password 7 120F0410000A0210 -! -interface Loopback0 - ipv4 address {{node.rid}} 255.255.255.255 -! -interface MgmtEth0/0/CPU0/0 - ipv4 address {{node.mgmt}} 255.255.255.0 -! -{% for intf,intf_attr in node.links.items() %} -interface {{intf.split('.')[0]}} - no shutdown -{% if intf_attr.vlan is undefined or intf_attr.vlan == 0 %} - ipv4 address {{intf_attr.ip}}/{{intf_attr.mask|default('24')}} -{% endif %} -! -{% if intf_attr.vlan is defined and intf_attr.vlan != 0 %} -interface {{intf}} - ipv4 address {{intf_attr.ip}}/{{intf_attr.mask|default('24')}} - encapsulation dot1q {{intf_attr.vlan}} -{% endif %} -! -{% endfor %} -! -router ospf 1 - address-family ipv4 unicast - area {{node.ospf.area}} - interface Loopback0 - passive enable - ! -{% for intf, intf_attr in node.links.items()|sort %} - interface {{intf}} - cost {{intf_attr.cost}} - network point-to-point - ! -{% endfor %} - ! - mpls traffic-eng router-id Loopback0 -! -router bgp {{common.bgp_asn}} -{% if 'inet' in node.bgp.ibgp.af %} - address-family ipv4 unicast -{% endif %} - ! -{% if 'inet-vpn' in node.bgp.ibgp.af %} - address-family vpnv4 unicast -{% endif %} - ! -{% for peer in node.bgp.ibgp.peers %} - neighbor {{peer}} - remote-as {{common.bgp_asn}} - local address {{node.rid}} -{% if 'inet' in node.bgp.ibgp.af %} - address-family ipv4 unicast -{% endif %} - ! -{% if 'inet-vpn' in node.bgp.ibgp.af %} - address-family vpnv4 unicast -{% endif %} - ! -{% endfor %} - ! -! -rsvp -{% for intf, intf_attr in node.links.items()|sort %} - interface {{intf}} -{% endfor %} - ! -! -mpls traffic-eng -{% for intf, intf_attr in node.links.items()|sort %} - interface {{intf}} -{% endfor %} -! -mpls ldp -{% for intf, intf_attr in node.links.items()|sort %} - interface {{intf}} -{% endfor %} -! -lldp - subinterfaces enable -! -xml agent tty - iteration off -! diff --git a/nodes.yml b/nodes.yml index 62b5912..7e11bd3 100644 --- a/nodes.yml +++ b/nodes.yml @@ -25,6 +25,9 @@ nodes: af: - inet - inet-vpn + ospf: + area: 0 + network: p2p ansible-csr2: mgmt: 10.0.0.52 @@ -42,6 +45,9 @@ nodes: af: - inet - inet-vpn + ospf: + area: 0 + network: p2p ansible-csr3: mgmt: 10.0.0.53 @@ -58,6 +64,9 @@ nodes: af: - inet - inet-vpn + ospf: + area: 0 + network: p2p ansible-csr4: mgmt: 10.0.0.54 @@ -75,6 +84,9 @@ nodes: af: - inet - inet-vpn + ospf: + area: 0 + network: p2p ansible-csr5: mgmt: 10.0.0.55 @@ -92,6 +104,9 @@ nodes: af: - inet - inet-vpn + ospf: + area: 0 + network: p2p ansible-csr6: mgmt: 10.0.0.56 @@ -108,3 +123,6 @@ nodes: af: - inet - inet-vpn + ospf: + area: 0 + network: p2p