Feat(eos_designs): Implement AVT policies / VRF (#3446)

ansible_collections/arista/avd/molecule/eos_designs_unit_tests/intended/configs/autovpn-edge.cfg

@@ -26,23 +26,52 @@ router path-selection
          name autovpn-rr2
          ipv4 address 10.8.8.8
    !
-   load-balance policy LBPOLICY
+   load-balance policy LB-CONTROL-PLANE-PROFILE
       path-group INET
    !
-   policy dps-policy-default
+   load-balance policy LB-DEFAULT-AVT-POLICY-IT
+      path-group INET priority 2
+   !
+   load-balance policy LB-PROD-AVT-POLICY-DEFAULT
+      path-group INET
+   !
+   load-balance policy LB-PROD-AVT-POLICY-VIDEO
+      path-group INET
+   !
+   load-balance policy LB-PROD-AVT-POLICY-VOICE
+      path-group INET
+   !
+   policy DEFAULT-AVT-POLICY-WITH-CP
+      10 application-profile CONTROL-PLANE-APPLICATION-PROFILE
+         load-balance LB-CONTROL-PLANE-PROFILE
+      20 application-profile IT
+         load-balance LB-DEFAULT-AVT-POLICY-IT
+   !
+   policy PROD-AVT-POLICY
       default-match
-         load-balance LBPOLICY
+         load-balance LB-PROD-AVT-POLICY-DEFAULT
+      10 application-profile VOICE
+         load-balance LB-PROD-AVT-POLICY-VOICE
+      20 application-profile VIDEO
+         load-balance LB-PROD-AVT-POLICY-VIDEO
    !
    vrf default
-      path-selection-policy dps-policy-default
+      path-selection-policy DEFAULT-AVT-POLICY-WITH-CP
+   !
+   vrf PROD
+      path-selection-policy PROD-AVT-POLICY
 !
 spanning-tree mode none
 !
 no enable password
 no aaa root
 !
+vrf instance IT
+!
 vrf instance MGMT
 !
+vrf instance PROD
+!
 ip security
    !
    ike policy AUTOVPN-IKE
@@ -81,9 +110,30 @@ interface Vxlan1
    vxlan source-interface Loopback0
    vxlan udp-port 4789
    vxlan vrf default vni 1
+   vxlan vrf IT vni 100
+   vxlan vrf PROD vni 42
+!
+application traffic recognition
+   !
+   application ipv4 CONTROL-PLANE-APPLICATION
+      destination prefix field-set CONTROL-PLANE-APP-DEST-PREFIXES
+   !
+   application-profile CONTROL-PLANE-APPLICATION-PROFILE
+      application CONTROL-PLANE-APPLICATION
+   !
+   application-profile IT
+   !
+   application-profile VIDEO
+   !
+   application-profile VOICE
+   !
+   field-set ipv4 prefix CONTROL-PLANE-APP-DEST-PREFIXES
+      192.168.31.1/32 192.168.31.2/32
 !
 ip routing
+ip routing vrf IT
 no ip routing vrf MGMT
+ip routing vrf PROD
 !
 router bfd
    multihop interval 300 min-rx 300 multiplier 3

ansible_collections/arista/avd/molecule/eos_designs_unit_tests/intended/configs/autovpn-rr1.cfg

@@ -20,15 +20,41 @@ router path-selection
          name autovpn-rr2
          ipv4 address 10.8.8.8
    !
-   load-balance policy LBPOLICY
+   load-balance policy LB-CONTROL-PLANE-PROFILE
       path-group INET
    !
-   policy dps-policy-default
+   load-balance policy LB-DEFAULT-AVT-POLICY-IT
+      path-group MPLS
+      path-group INET priority 2
+   !
+   load-balance policy LB-PROD-AVT-POLICY-DEFAULT
+      path-group INET
+   !
+   load-balance policy LB-PROD-AVT-POLICY-VIDEO
+      path-group INET
+   !
+   load-balance policy LB-PROD-AVT-POLICY-VOICE
+      path-group INET
+   !
+   policy DEFAULT-AVT-POLICY-WITH-CP
+      10 application-profile CONTROL-PLANE-APPLICATION-PROFILE
+         load-balance LB-CONTROL-PLANE-PROFILE
+      20 application-profile IT
+         load-balance LB-DEFAULT-AVT-POLICY-IT
+   !
+   policy PROD-AVT-POLICY
       default-match
-         load-balance LBPOLICY
+         load-balance LB-PROD-AVT-POLICY-DEFAULT
+      10 application-profile VOICE
+         load-balance LB-PROD-AVT-POLICY-VOICE
+      20 application-profile VIDEO
+         load-balance LB-PROD-AVT-POLICY-VIDEO
    !
    vrf default
-      path-selection-policy dps-policy-default
+      path-selection-policy DEFAULT-AVT-POLICY-WITH-CP
+   !
+   vrf PROD
+      path-selection-policy PROD-AVT-POLICY
 !
 spanning-tree mode none
 !
@@ -73,6 +99,23 @@ interface Vxlan1
    vxlan udp-port 4789
    vxlan vrf default vni 1
 !
+application traffic recognition
+   !
+   application ipv4 CONTROL-PLANE-APPLICATION
+      destination prefix field-set CONTROL-PLANE-APP-DEST-PREFIXES
+   !
+   application-profile CONTROL-PLANE-APPLICATION-PROFILE
+      application CONTROL-PLANE-APPLICATION
+   !
+   application-profile IT
+   !
+   application-profile VIDEO
+   !
+   application-profile VOICE
+   !
+   field-set ipv4 prefix CONTROL-PLANE-APP-DEST-PREFIXES
+      192.168.30.0/24 192.168.31.2/32
+!
 ip routing
 no ip routing vrf MGMT
 !

ansible_collections/arista/avd/molecule/eos_designs_unit_tests/intended/configs/autovpn-rr2.cfg

@@ -20,15 +20,41 @@ router path-selection
          name autovpn-rr1
          ipv4 address 10.7.7.7
    !
-   load-balance policy LBPOLICY
+   load-balance policy LB-CONTROL-PLANE-PROFILE
       path-group INET
    !
-   policy dps-policy-default
+   load-balance policy LB-DEFAULT-AVT-POLICY-IT
+      path-group MPLS
+      path-group INET priority 2
+   !
+   load-balance policy LB-PROD-AVT-POLICY-DEFAULT
+      path-group INET
+   !
+   load-balance policy LB-PROD-AVT-POLICY-VIDEO
+      path-group INET
+   !
+   load-balance policy LB-PROD-AVT-POLICY-VOICE
+      path-group INET
+   !
+   policy DEFAULT-AVT-POLICY-WITH-CP
+      10 application-profile CONTROL-PLANE-APPLICATION-PROFILE
+         load-balance LB-CONTROL-PLANE-PROFILE
+      20 application-profile IT
+         load-balance LB-DEFAULT-AVT-POLICY-IT
+   !
+   policy PROD-AVT-POLICY
       default-match
-         load-balance LBPOLICY
+         load-balance LB-PROD-AVT-POLICY-DEFAULT
+      10 application-profile VOICE
+         load-balance LB-PROD-AVT-POLICY-VOICE
+      20 application-profile VIDEO
+         load-balance LB-PROD-AVT-POLICY-VIDEO
    !
    vrf default
-      path-selection-policy dps-policy-default
+      path-selection-policy DEFAULT-AVT-POLICY-WITH-CP
+   !
+   vrf PROD
+      path-selection-policy PROD-AVT-POLICY
 !
 spanning-tree mode none
 !
@@ -72,6 +98,23 @@ interface Vxlan1
    vxlan udp-port 4789
    vxlan vrf default vni 1
 !
+application traffic recognition
+   !
+   application ipv4 CONTROL-PLANE-APPLICATION
+      destination prefix field-set CONTROL-PLANE-APP-DEST-PREFIXES
+   !
+   application-profile CONTROL-PLANE-APPLICATION-PROFILE
+      application CONTROL-PLANE-APPLICATION
+   !
+   application-profile IT
+   !
+   application-profile VIDEO
+   !
+   application-profile VOICE
+   !
+   field-set ipv4 prefix CONTROL-PLANE-APP-DEST-PREFIXES
+      192.168.30.0/24 192.168.31.1/32
+!
 ip routing
 no ip routing vrf MGMT
 !