Feat(eos_designs): Implement AVT policies / VRF

[gmuloc]

Change Summary

Built on top of

• Feat(eos_designs): Add WAN design new top level schema keys #3388
• Feat(eos_designs): Add l3_edge.l3_interfaces support #3426
• Feat(eos_designs): Add WAN interface configuration under l3_edge.l3_interfaces #3440

So it needs to be rebased regularly once they are changing.

Requires rebase onto:

• Feat(eos_designs): Preview - Generate CV Tags and metadata for WAN #3487

Related Issue(s)

Fixes #

Component(s) name

arista.avd.eos_designs

Proposed changes

How to test

Checklist

Questions to reviewer

• What should be the behavior if the default VRF is not in the wan_virtual_topologies.vrfs list? Auto create or raise?
  • raising for now

User Checklist

• Adjust model following call (preferred / alternate need to change)
• Filter non present Path-groups on edge/transit from LB policies
• Implement control_plane AVT
• Implement the AVT ids under CV pathfinder policies
• Answer and address all review questions
• Refactor the AVT ids under CV pathfinder policies (_id)
• enforce application-profile to be defined (ignored for now)
• Add constraint of always having prio 1 / preferred in virtual topology
• Configure extra vrf DEFAULT policy -WITH-CP for only VRF default in case of reuse
• For AUTOVPN - rule-id starts at 10 even when injecting CP
• Do not put instructured_config priority 1 for preferred / preference 1 so that it is not rendered.
• IPsec configuration - verify Dataplan / Controlp[lane config
• Hard code 254 for Control plane ID and limit to 1-253 for others
• Check if default virtual topology is mandatory - if so make it using index 1. and then 2-253 for indexes in the other.
• Implement application_traffic_reognition python module
• Make sure that policy / profiles / lb_policies are not rendered on devices where they are not used
• Make sure that application_profile are not rendered on devices where they are not used
• Add possibility to drop in default virtual topology (boolean) and otherwise require at least one path-group being set.
• CONTROL-PLANE-APPLICATION-PROFILE - fix pathfinders IPs for prefix field sets once Feat(eos_designs): Preview - Generate CV Tags and metadata for WAN #3487 is merged and this PR rebased
• Prepare for metadata for VRFs in shared_utils (?) - not needed for now

Future work

• Reassess default VRF policy requirements (maybe auto generate)
• Review with AutoVPN experts to simplify the outputs
• Update documentation around wan_virtual_topologies
  • Make a special chapter on separated inventories
• Refactor - avoid to generate profile names / policy names in multiple places (<policy_name>-<application-profile>)

Repository Checklist

• My code has been rebased from devel before I start
• I have read the CONTRIBUTING document.
• My change requires a change to the documentation and documentation have been updated accordingly.
• I have updated molecule CI testing accordingly. (check the box if not applicable)

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.