Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feat(eos_designs): Implement AVT policies / VRF #3446

Merged
merged 27 commits into from
Jan 16, 2024
Merged

Feat(eos_designs): Implement AVT policies / VRF #3446

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
27 commits
Select commit Hold shift + click to select a range
855d156
Feat(eos_designs): Schema for AVT policies / VRF
gmuloc Dec 18, 2023
dfff258
Refactor: Address PR comments
gmuloc Jan 8, 2024
03666c2
Feat: Implement Control plane policy injection
gmuloc Jan 9, 2024
b941a3a
Doc: Update schema doc
gmuloc Jan 9, 2024
5fb24ba
Feat: Support connected-to-pathfinder for Control-plane lb policy
gmuloc Jan 10, 2024
24381f9
Refactor: Address some review comments
gmuloc Jan 11, 2024
e7e7330
Feat: Enforce at least one priority 1/preferred in LB policy
gmuloc Jan 11, 2024
3f00830
Feat: Render policy/profile/lb policies only on relevant routers
gmuloc Jan 11, 2024
fa12109
Feat: Add -WITH-CP for default VRF to allow extra AVT for control tra…
gmuloc Jan 11, 2024
a0a705c
Doc: Separate Application Traffic Recognition table
gmuloc Jan 12, 2024
883d819
Refactor: Address PR comments
gmuloc Jan 12, 2024
0847c2f
Refactor: Remove _id
gmuloc Jan 12, 2024
63f0531
Feat: Allow to explicity not match default
gmuloc Jan 12, 2024
f0dc252
Feat: Add filtering for application-traffic-recognition
gmuloc Jan 12, 2024
3ab62f2
Refactor: Do not validate on applications
gmuloc Jan 12, 2024
3ac62f1
Refactor: Better error message
gmuloc Jan 12, 2024
b0af68f
Feat: WIP - wait for PR with metadata - Auto generate application tra…
gmuloc Jan 12, 2024
bec88c2
CI: Run pre-commit and molecule post rebase
gmuloc Jan 15, 2024
2bd8255
Refactor: Fix prefixes for control plane application
gmuloc Jan 15, 2024
168aff6
Test: Better comments and tests for application-traffic-recognition
gmuloc Jan 15, 2024
3df2218
Refactor: Make preference optional for load balance policies, using d…
gmuloc Jan 15, 2024
51ff14d
Refactor: Address PR comments
gmuloc Jan 15, 2024
06edea8
Refactor: Address PR comments
gmuloc Jan 15, 2024
1ced490
Refactor: Address PR comments
gmuloc Jan 15, 2024
d708234
CI: Run da pre-commit
gmuloc Jan 15, 2024
3a09e7c
Merge branch 'devel' into wan-avt
gmuloc Jan 16, 2024
32448d9
Doc: Update documentation for wan_preview
gmuloc Jan 16, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
58 changes: 54 additions & 4 deletions ..._collections/arista/avd/molecule/eos_designs_unit_tests/intended/configs/autovpn-edge.cfg
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,23 +26,52 @@ router path-selection
name autovpn-rr2
ipv4 address 10.8.8.8
!
load-balance policy LBPOLICY
load-balance policy LB-CONTROL-PLANE-PROFILE
path-group INET
!
policy dps-policy-default
load-balance policy LB-DEFAULT-AVT-POLICY-IT
path-group INET priority 2
gmuloc marked this conversation as resolved.
Show resolved Hide resolved
!
load-balance policy LB-PROD-AVT-POLICY-DEFAULT
path-group INET
!
load-balance policy LB-PROD-AVT-POLICY-VIDEO
path-group INET
!
load-balance policy LB-PROD-AVT-POLICY-VOICE
path-group INET
!
policy DEFAULT-AVT-POLICY-WITH-CP
10 application-profile CONTROL-PLANE-APPLICATION-PROFILE
load-balance LB-CONTROL-PLANE-PROFILE
20 application-profile IT
load-balance LB-DEFAULT-AVT-POLICY-IT
!
policy PROD-AVT-POLICY
default-match
load-balance LBPOLICY
load-balance LB-PROD-AVT-POLICY-DEFAULT
10 application-profile VOICE
load-balance LB-PROD-AVT-POLICY-VOICE
20 application-profile VIDEO
load-balance LB-PROD-AVT-POLICY-VIDEO
!
vrf default
path-selection-policy dps-policy-default
path-selection-policy DEFAULT-AVT-POLICY-WITH-CP
!
vrf PROD
path-selection-policy PROD-AVT-POLICY
!
spanning-tree mode none
!
no enable password
no aaa root
!
vrf instance IT
!
vrf instance MGMT
!
vrf instance PROD
!
ip security
!
ike policy AUTOVPN-IKE
Expand Down Expand Up @@ -81,9 +110,30 @@ interface Vxlan1
vxlan source-interface Loopback0
vxlan udp-port 4789
vxlan vrf default vni 1
vxlan vrf IT vni 100
vxlan vrf PROD vni 42
!
application traffic recognition
!
application ipv4 CONTROL-PLANE-APPLICATION
destination prefix field-set CONTROL-PLANE-APP-DEST-PREFIXES
!
application-profile CONTROL-PLANE-APPLICATION-PROFILE
application CONTROL-PLANE-APPLICATION
!
application-profile IT
!
application-profile VIDEO
!
application-profile VOICE
!
field-set ipv4 prefix CONTROL-PLANE-APP-DEST-PREFIXES
192.168.31.1/32 192.168.31.2/32
!
ip routing
ip routing vrf IT
no ip routing vrf MGMT
ip routing vrf PROD
!
router bfd
multihop interval 300 min-rx 300 multiplier 3
Expand Down
51 changes: 47 additions & 4 deletions ...e_collections/arista/avd/molecule/eos_designs_unit_tests/intended/configs/autovpn-rr1.cfg
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,15 +20,41 @@ router path-selection
name autovpn-rr2
ipv4 address 10.8.8.8
!
load-balance policy LBPOLICY
load-balance policy LB-CONTROL-PLANE-PROFILE
path-group INET
!
policy dps-policy-default
load-balance policy LB-DEFAULT-AVT-POLICY-IT
path-group MPLS
path-group INET priority 2
!
load-balance policy LB-PROD-AVT-POLICY-DEFAULT
path-group INET
!
load-balance policy LB-PROD-AVT-POLICY-VIDEO
path-group INET
!
load-balance policy LB-PROD-AVT-POLICY-VOICE
path-group INET
!
policy DEFAULT-AVT-POLICY-WITH-CP
10 application-profile CONTROL-PLANE-APPLICATION-PROFILE
load-balance LB-CONTROL-PLANE-PROFILE
20 application-profile IT
load-balance LB-DEFAULT-AVT-POLICY-IT
!
policy PROD-AVT-POLICY
default-match
load-balance LBPOLICY
load-balance LB-PROD-AVT-POLICY-DEFAULT
10 application-profile VOICE
load-balance LB-PROD-AVT-POLICY-VOICE
20 application-profile VIDEO
load-balance LB-PROD-AVT-POLICY-VIDEO
!
vrf default
path-selection-policy dps-policy-default
path-selection-policy DEFAULT-AVT-POLICY-WITH-CP
!
vrf PROD
path-selection-policy PROD-AVT-POLICY
!
spanning-tree mode none
!
Expand Down Expand Up @@ -73,6 +99,23 @@ interface Vxlan1
vxlan udp-port 4789
vxlan vrf default vni 1
!
application traffic recognition
!
application ipv4 CONTROL-PLANE-APPLICATION
destination prefix field-set CONTROL-PLANE-APP-DEST-PREFIXES
!
application-profile CONTROL-PLANE-APPLICATION-PROFILE
application CONTROL-PLANE-APPLICATION
!
application-profile IT
!
application-profile VIDEO
!
application-profile VOICE
!
field-set ipv4 prefix CONTROL-PLANE-APP-DEST-PREFIXES
192.168.30.0/24 192.168.31.2/32
!
ip routing
no ip routing vrf MGMT
!
Expand Down
51 changes: 47 additions & 4 deletions ...e_collections/arista/avd/molecule/eos_designs_unit_tests/intended/configs/autovpn-rr2.cfg
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,15 +20,41 @@ router path-selection
name autovpn-rr1
ipv4 address 10.7.7.7
!
load-balance policy LBPOLICY
load-balance policy LB-CONTROL-PLANE-PROFILE
path-group INET
!
policy dps-policy-default
load-balance policy LB-DEFAULT-AVT-POLICY-IT
path-group MPLS
path-group INET priority 2
!
load-balance policy LB-PROD-AVT-POLICY-DEFAULT
path-group INET
!
load-balance policy LB-PROD-AVT-POLICY-VIDEO
path-group INET
!
load-balance policy LB-PROD-AVT-POLICY-VOICE
path-group INET
!
policy DEFAULT-AVT-POLICY-WITH-CP
10 application-profile CONTROL-PLANE-APPLICATION-PROFILE
load-balance LB-CONTROL-PLANE-PROFILE
20 application-profile IT
load-balance LB-DEFAULT-AVT-POLICY-IT
!
policy PROD-AVT-POLICY
default-match
load-balance LBPOLICY
load-balance LB-PROD-AVT-POLICY-DEFAULT
10 application-profile VOICE
load-balance LB-PROD-AVT-POLICY-VOICE
20 application-profile VIDEO
load-balance LB-PROD-AVT-POLICY-VIDEO
!
vrf default
path-selection-policy dps-policy-default
path-selection-policy DEFAULT-AVT-POLICY-WITH-CP
!
vrf PROD
path-selection-policy PROD-AVT-POLICY
!
spanning-tree mode none
!
Expand Down Expand Up @@ -72,6 +98,23 @@ interface Vxlan1
vxlan udp-port 4789
vxlan vrf default vni 1
!
application traffic recognition
!
application ipv4 CONTROL-PLANE-APPLICATION
destination prefix field-set CONTROL-PLANE-APP-DEST-PREFIXES
!
application-profile CONTROL-PLANE-APPLICATION-PROFILE
application CONTROL-PLANE-APPLICATION
!
application-profile IT
!
application-profile VIDEO
!
application-profile VOICE
!
field-set ipv4 prefix CONTROL-PLANE-APP-DEST-PREFIXES
192.168.30.0/24 192.168.31.1/32
!
ip routing
no ip routing vrf MGMT
!
Expand Down
Loading