Management Interfaces Summary
Management Interface
description
Type
VRF
IP Address
Gateway
Management1
oob_management
oob
MGMT
172.16.1.101/24
172.16.1.1
Management Interface
description
Type
VRF
IPv6 Address
IPv6 Gateway
Management1
oob_management
oob
MGMT
-
-
Management Interfaces Device Configuration !
interface Management1
description oob_management
no shutdown
vrf MGMT
ip address 172.16.1.101/24
Management API HTTP Summary
HTTP
HTTPS
Default Services
False
True
-
Management API VRF Access
VRF Name
IPv4 ACL
IPv6 ACL
MGMT
-
-
Management API HTTP Configuration !
management api http-commands
protocol https
no shutdown
!
vrf MGMT
no shutdown
User
Privilege
Role
Disabled
Shell
admin
15
network-admin
False
-
ansible
15
network-admin
False
-
Local Users Device Configuration !
username admin privilege 15 role network-admin nopassword
username ansible privilege 15 role network-admin secret sha512 $6$7u4j1rkb3VELgcZE$EJt2Qff8kd/TapRoci0XaIZsL4tFzgq1YZBLD9c6f/knXzvcYY0NcMKndZeCv0T268knGKhOEwZAxqKjlMm920
Domain-id
Local-interface
Peer-address
Peer-link
DC1_L3_LEAF1
Vlan4094
10.255.1.65
Port-Channel3
Dual primary detection is disabled.
MLAG Device Configuration !
mlag configuration
domain-id DC1_L3_LEAF1
local-interface Vlan4094
peer-address 10.255.1.65
peer-link Port-Channel3
reload-delay mlag 300
reload-delay non-mlag 330
STP mode: mstp
MSTP Instance and Priority
Instance(s)
Priority
0
4096
Global Spanning-Tree Settings
Spanning Tree disabled for VLANs: 4093-4094
Spanning Tree Device Configuration !
spanning-tree mode mstp
no spanning-tree vlan-id 4093-4094
spanning-tree mst 0 priority 4096
Internal VLAN Allocation Policy Internal VLAN Allocation Policy Summary
Policy Allocation
Range Beginning
Range Ending
ascending
1006
1199
Internal VLAN Allocation Policy Configuration !
vlan internal order ascending range 1006 1199
VLAN ID
Name
Trunk Groups
11
VRF10_VLAN11
-
12
VRF10_VLAN12
-
21
VRF11_VLAN21
-
22
VRF11_VLAN22
-
3009
MLAG_iBGP_VRF10
LEAF_PEER_L3
3010
MLAG_iBGP_VRF11
LEAF_PEER_L3
3401
L2_VLAN3401
-
3402
L2_VLAN3402
-
4093
LEAF_PEER_L3
LEAF_PEER_L3
4094
MLAG_PEER
MLAG
VLANs Device Configuration !
vlan 11
name VRF10_VLAN11
!
vlan 12
name VRF10_VLAN12
!
vlan 21
name VRF11_VLAN21
!
vlan 22
name VRF11_VLAN22
!
vlan 3009
name MLAG_iBGP_VRF10
trunk group LEAF_PEER_L3
!
vlan 3010
name MLAG_iBGP_VRF11
trunk group LEAF_PEER_L3
!
vlan 3401
name L2_VLAN3401
!
vlan 3402
name L2_VLAN3402
!
vlan 4093
name LEAF_PEER_L3
trunk group LEAF_PEER_L3
!
vlan 4094
name MLAG_PEER
trunk group MLAG
Ethernet Interfaces Summary
Interface
Description
Mode
VLANs
Native VLAN
Trunk Group
Channel-Group
Ethernet3
MLAG_PEER_dc1-leaf1b_Ethernet3
*trunk
*2-4094
*-
*['LEAF_PEER_L3', 'MLAG']
3
Ethernet4
MLAG_PEER_dc1-leaf1b_Ethernet4
*trunk
*2-4094
*-
*['LEAF_PEER_L3', 'MLAG']
3
Ethernet5
dc1-leaf1-server1_PCI1
*trunk
*11-12,21-22
*4092
*-
5
Ethernet8
DC1-LEAF1C_Ethernet1
*trunk
*11-12,21-22,3401-3402
*-
*-
8
*Inherited from Port-Channel Interface
Interface
Description
Type
Channel Group
IP Address
VRF
MTU
Shutdown
ACL In
ACL Out
Ethernet1
P2P_LINK_TO_DC1-SPINE1_Ethernet1
routed
-
10.255.255.1/31
default
1500
False
-
-
Ethernet2
P2P_LINK_TO_DC1-SPINE2_Ethernet1
routed
-
10.255.255.3/31
default
1500
False
-
-
Ethernet Interfaces Device Configuration !
interface Ethernet1
description P2P_LINK_TO_DC1-SPINE1_Ethernet1
no shutdown
mtu 1500
no switchport
ip address 10.255.255.1/31
!
interface Ethernet2
description P2P_LINK_TO_DC1-SPINE2_Ethernet1
no shutdown
mtu 1500
no switchport
ip address 10.255.255.3/31
!
interface Ethernet3
description MLAG_PEER_dc1-leaf1b_Ethernet3
no shutdown
channel-group 3 mode active
!
interface Ethernet4
description MLAG_PEER_dc1-leaf1b_Ethernet4
no shutdown
channel-group 3 mode active
!
interface Ethernet5
description dc1-leaf1-server1_PCI1
no shutdown
channel-group 5 mode active
!
interface Ethernet8
description DC1-LEAF1C_Ethernet1
no shutdown
channel-group 8 mode active
Port-Channel Interfaces Summary
Interface
Description
Type
Mode
VLANs
Native VLAN
Trunk Group
LACP Fallback Timeout
LACP Fallback Mode
MLAG ID
EVPN ESI
Port-Channel3
MLAG_PEER_dc1-leaf1b_Po3
switched
trunk
2-4094
-
['LEAF_PEER_L3', 'MLAG']
-
-
-
-
Port-Channel5
dc1-leaf1-server1_PortChannel dc1-leaf1-server1
switched
trunk
11-12,21-22
4092
-
-
-
5
-
Port-Channel8
DC1-LEAF1C_Po1
switched
trunk
11-12,21-22,3401-3402
-
-
-
-
8
-
Port-Channel Interfaces Device Configuration !
interface Port-Channel3
description MLAG_PEER_dc1-leaf1b_Po3
no shutdown
switchport
switchport trunk allowed vlan 2-4094
switchport mode trunk
switchport trunk group LEAF_PEER_L3
switchport trunk group MLAG
!
interface Port-Channel5
description dc1-leaf1-server1_PortChannel dc1-leaf1-server1
no shutdown
switchport
switchport trunk allowed vlan 11-12,21-22
switchport trunk native vlan 4092
switchport mode trunk
mlag 5
spanning-tree portfast
!
interface Port-Channel8
description DC1-LEAF1C_Po1
no shutdown
switchport
switchport trunk allowed vlan 11-12,21-22,3401-3402
switchport mode trunk
mlag 8
Loopback Interfaces Summary
Interface
Description
VRF
IP Address
Loopback0
EVPN_Overlay_Peering
default
10.255.0.3/32
Loopback1
VTEP_VXLAN_Tunnel_Source
default
10.255.1.3/32
Loopback10
VRF10_VTEP_DIAGNOSTICS
VRF10
10.255.10.3/32
Loopback11
VRF11_VTEP_DIAGNOSTICS
VRF11
10.255.11.3/32
Interface
Description
VRF
IPv6 Address
Loopback0
EVPN_Overlay_Peering
default
-
Loopback1
VTEP_VXLAN_Tunnel_Source
default
-
Loopback10
VRF10_VTEP_DIAGNOSTICS
VRF10
-
Loopback11
VRF11_VTEP_DIAGNOSTICS
VRF11
-
Loopback Interfaces Device Configuration !
interface Loopback0
description EVPN_Overlay_Peering
no shutdown
ip address 10.255.0.3/32
!
interface Loopback1
description VTEP_VXLAN_Tunnel_Source
no shutdown
ip address 10.255.1.3/32
!
interface Loopback10
description VRF10_VTEP_DIAGNOSTICS
no shutdown
vrf VRF10
ip address 10.255.10.3/32
!
interface Loopback11
description VRF11_VTEP_DIAGNOSTICS
no shutdown
vrf VRF11
ip address 10.255.11.3/32
Interface
Description
VRF
MTU
Shutdown
Vlan11
VRF10_VLAN11
VRF10
-
False
Vlan12
VRF10_VLAN12
VRF10
-
False
Vlan21
VRF11_VLAN21
VRF11
-
False
Vlan22
VRF11_VLAN22
VRF11
-
False
Vlan3009
MLAG_PEER_L3_iBGP: vrf VRF10
VRF10
1500
False
Vlan3010
MLAG_PEER_L3_iBGP: vrf VRF11
VRF11
1500
False
Vlan4093
MLAG_PEER_L3_PEERING
default
1500
False
Vlan4094
MLAG_PEER
default
1500
False
Interface
VRF
IP Address
IP Address Virtual
IP Router Virtual Address
VRRP
ACL In
ACL Out
Vlan11
VRF10
-
10.10.11.1/24
-
-
-
-
Vlan12
VRF10
-
10.10.12.1/24
-
-
-
-
Vlan21
VRF11
-
10.10.21.1/24
-
-
-
-
Vlan22
VRF11
-
10.10.22.1/24
-
-
-
-
Vlan3009
VRF10
10.255.1.96/31
-
-
-
-
-
Vlan3010
VRF11
10.255.1.96/31
-
-
-
-
-
Vlan4093
default
10.255.1.96/31
-
-
-
-
-
Vlan4094
default
10.255.1.64/31
-
-
-
-
-
VLAN Interfaces Device Configuration !
interface Vlan11
description VRF10_VLAN11
no shutdown
vrf VRF10
ip address virtual 10.10.11.1/24
!
interface Vlan12
description VRF10_VLAN12
no shutdown
vrf VRF10
ip address virtual 10.10.12.1/24
!
interface Vlan21
description VRF11_VLAN21
no shutdown
vrf VRF11
ip address virtual 10.10.21.1/24
!
interface Vlan22
description VRF11_VLAN22
no shutdown
vrf VRF11
ip address virtual 10.10.22.1/24
!
interface Vlan3009
description MLAG_PEER_L3_iBGP: vrf VRF10
no shutdown
mtu 1500
vrf VRF10
ip address 10.255.1.96/31
!
interface Vlan3010
description MLAG_PEER_L3_iBGP: vrf VRF11
no shutdown
mtu 1500
vrf VRF11
ip address 10.255.1.96/31
!
interface Vlan4093
description MLAG_PEER_L3_PEERING
no shutdown
mtu 1500
ip address 10.255.1.96/31
!
interface Vlan4094
description MLAG_PEER
no shutdown
mtu 1500
no autostate
ip address 10.255.1.64/31
Setting
Value
Source Interface
Loopback1
UDP port
4789
EVPN MLAG Shared Router MAC
mlag-system-id
VLAN to VNI, Flood List and Multicast Group Mappings
VLAN
VNI
Flood List
Multicast Group
11
10011
-
-
12
10012
-
-
21
10021
-
-
22
10022
-
-
3401
13401
-
-
3402
13402
-
-
VRF to VNI and Multicast Group Mappings
VRF
VNI
Multicast Group
VRF10
10
-
VRF11
11
-
VXLAN Interface Device Configuration !
interface Vxlan1
description dc1-leaf1a_VTEP
vxlan source-interface Loopback1
vxlan virtual-router encapsulation mac-address mlag-system-id
vxlan udp-port 4789
vxlan vlan 11 vni 10011
vxlan vlan 12 vni 10012
vxlan vlan 21 vni 10021
vxlan vlan 22 vni 10022
vxlan vlan 3401 vni 13401
vxlan vlan 3402 vni 13402
vxlan vrf VRF10 vni 10
vxlan vrf VRF11 vni 11
Service Routing Protocols Model Multi agent routing protocol model enabled
!
service routing protocols model multi-agent
Virtual Router MAC Address Virtual Router MAC Address Summary Virtual Router MAC Address: 00:1c:73:00:00:99 Virtual Router MAC Address Configuration !
ip virtual-router mac-address 00:1c:73:00:00:99
VRF
Routing Enabled
default
True
MGMT
False
VRF10
True
VRF11
True
IP Routing Device Configuration !
ip routing
no ip routing vrf MGMT
ip routing vrf VRF10
ip routing vrf VRF11
VRF
Routing Enabled
default
False
MGMT
false
VRF10
false
VRF11
false
VRF
Destination Prefix
Next Hop IP
Exit interface
Administrative Distance
Tag
Route Name
Metric
MGMT
0.0.0.0/0
172.16.1.1
-
1
-
-
-
Static Routes Device Configuration !
ip route vrf MGMT 0.0.0.0/0 172.16.1.1
BGP AS
Router ID
65101
10.255.0.3
BGP Tuning
no bgp default ipv4-unicast
distance bgp 20 200 200
graceful-restart restart-time 300
graceful-restart
maximum-paths 4 ecmp 4
Settings
Value
Address Family
evpn
Source
Loopback0
BFD
True
Ebgp multihop
3
Send community
all
Maximum routes
0 (no limit)
Settings
Value
Address Family
ipv4
Send community
all
Maximum routes
12000
Settings
Value
Address Family
ipv4
Remote AS
65101
Next-hop self
True
Send community
all
Maximum routes
12000
Neighbor
Remote AS
VRF
Shutdown
Send-community
Maximum-routes
Allowas-in
BFD
RIB Pre-Policy Retain
Route-Reflector Client
Passive
10.255.0.1
65100
default
-
Inherited from peer group EVPN-OVERLAY-PEERS
Inherited from peer group EVPN-OVERLAY-PEERS
-
Inherited from peer group EVPN-OVERLAY-PEERS
-
-
-
10.255.0.2
65100
default
-
Inherited from peer group EVPN-OVERLAY-PEERS
Inherited from peer group EVPN-OVERLAY-PEERS
-
Inherited from peer group EVPN-OVERLAY-PEERS
-
-
-
10.255.1.97
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
default
-
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
-
-
-
-
-
10.255.255.0
65100
default
-
Inherited from peer group IPv4-UNDERLAY-PEERS
Inherited from peer group IPv4-UNDERLAY-PEERS
-
-
-
-
-
10.255.255.2
65100
default
-
Inherited from peer group IPv4-UNDERLAY-PEERS
Inherited from peer group IPv4-UNDERLAY-PEERS
-
-
-
-
-
10.255.1.97
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
VRF10
-
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
-
-
-
-
-
10.255.1.97
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
VRF11
-
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
Inherited from peer group MLAG-IPv4-UNDERLAY-PEER
-
-
-
-
-
Router BGP EVPN Address Family
Peer Group
Activate
Encapsulation
EVPN-OVERLAY-PEERS
True
default
VLAN
Route-Distinguisher
Both Route-Target
Import Route Target
Export Route-Target
Redistribute
11
10.255.0.3:10011
10011:10011
-
-
learned
12
10.255.0.3:10012
10012:10012
-
-
learned
21
10.255.0.3:10021
10021:10021
-
-
learned
22
10.255.0.3:10022
10022:10022
-
-
learned
3401
10.255.0.3:13401
13401:13401
-
-
learned
3402
10.255.0.3:13402
13402:13402
-
-
learned
VRF
Route-Distinguisher
Redistribute
VRF10
10.255.0.3:10
connected
VRF11
10.255.0.3:11
connected
Router BGP Device Configuration !
router bgp 65101
router-id 10.255.0.3
no bgp default ipv4-unicast
distance bgp 20 200 200
graceful-restart restart-time 300
graceful-restart
maximum-paths 4 ecmp 4
neighbor EVPN-OVERLAY-PEERS peer group
neighbor EVPN-OVERLAY-PEERS update-source Loopback0
neighbor EVPN-OVERLAY-PEERS bfd
neighbor EVPN-OVERLAY-PEERS ebgp-multihop 3
neighbor EVPN-OVERLAY-PEERS password 7 Q4fqtbqcZ7oQuKfuWtNGRQ==
neighbor EVPN-OVERLAY-PEERS send-community
neighbor EVPN-OVERLAY-PEERS maximum-routes 0
neighbor IPv4-UNDERLAY-PEERS peer group
neighbor IPv4-UNDERLAY-PEERS password 7 7x4B4rnJhZB438m9+BrBfQ==
neighbor IPv4-UNDERLAY-PEERS send-community
neighbor IPv4-UNDERLAY-PEERS maximum-routes 12000
neighbor MLAG-IPv4-UNDERLAY-PEER peer group
neighbor MLAG-IPv4-UNDERLAY-PEER remote-as 65101
neighbor MLAG-IPv4-UNDERLAY-PEER next-hop-self
neighbor MLAG-IPv4-UNDERLAY-PEER description dc1-leaf1b
neighbor MLAG-IPv4-UNDERLAY-PEER password 7 4b21pAdCvWeAqpcKDFMdWw==
neighbor MLAG-IPv4-UNDERLAY-PEER send-community
neighbor MLAG-IPv4-UNDERLAY-PEER maximum-routes 12000
neighbor MLAG-IPv4-UNDERLAY-PEER route-map RM-MLAG-PEER-IN in
neighbor 10.255.0.1 peer group EVPN-OVERLAY-PEERS
neighbor 10.255.0.1 remote-as 65100
neighbor 10.255.0.1 description dc1-spine1
neighbor 10.255.0.2 peer group EVPN-OVERLAY-PEERS
neighbor 10.255.0.2 remote-as 65100
neighbor 10.255.0.2 description dc1-spine2
neighbor 10.255.1.97 peer group MLAG-IPv4-UNDERLAY-PEER
neighbor 10.255.1.97 description dc1-leaf1b
neighbor 10.255.255.0 peer group IPv4-UNDERLAY-PEERS
neighbor 10.255.255.0 remote-as 65100
neighbor 10.255.255.0 description dc1-spine1_Ethernet1
neighbor 10.255.255.2 peer group IPv4-UNDERLAY-PEERS
neighbor 10.255.255.2 remote-as 65100
neighbor 10.255.255.2 description dc1-spine2_Ethernet1
redistribute connected route-map RM-CONN-2-BGP
!
vlan 11
rd 10.255.0.3:10011
route-target both 10011:10011
redistribute learned
!
vlan 12
rd 10.255.0.3:10012
route-target both 10012:10012
redistribute learned
!
vlan 21
rd 10.255.0.3:10021
route-target both 10021:10021
redistribute learned
!
vlan 22
rd 10.255.0.3:10022
route-target both 10022:10022
redistribute learned
!
vlan 3401
rd 10.255.0.3:13401
route-target both 13401:13401
redistribute learned
!
vlan 3402
rd 10.255.0.3:13402
route-target both 13402:13402
redistribute learned
!
address-family evpn
neighbor EVPN-OVERLAY-PEERS activate
!
address-family ipv4
no neighbor EVPN-OVERLAY-PEERS activate
neighbor IPv4-UNDERLAY-PEERS activate
neighbor MLAG-IPv4-UNDERLAY-PEER activate
!
vrf VRF10
rd 10.255.0.3:10
route-target import evpn 10:10
route-target export evpn 10:10
router-id 10.255.0.3
neighbor 10.255.1.97 peer group MLAG-IPv4-UNDERLAY-PEER
redistribute connected
!
vrf VRF11
rd 10.255.0.3:11
route-target import evpn 11:11
route-target export evpn 11:11
router-id 10.255.0.3
neighbor 10.255.1.97 peer group MLAG-IPv4-UNDERLAY-PEER
redistribute connected
Router BFD Multihop Summary
Interval
Minimum RX
Multiplier
300
300
3
Router BFD Device Configuration !
router bfd
multihop interval 300 min-rx 300 multiplier 3
IGMP Snooping
Fast Leave
Interface Restart Query
Proxy
Restart Query Interval
Robustness Variable
Enabled
-
-
-
-
-
IP IGMP Snooping Device Configuration PL-LOOPBACKS-EVPN-OVERLAY
Sequence
Action
10
permit 10.255.0.0/27 eq 32
20
permit 10.255.1.0/27 eq 32
Prefix-lists Device Configuration !
ip prefix-list PL-LOOPBACKS-EVPN-OVERLAY
seq 10 permit 10.255.0.0/27 eq 32
seq 20 permit 10.255.1.0/27 eq 32
Sequence
Type
Match
Set
Sub-Route-Map
Continue
10
permit
ip address prefix-list PL-LOOPBACKS-EVPN-OVERLAY
-
-
-
Sequence
Type
Match
Set
Sub-Route-Map
Continue
10
permit
-
origin incomplete
-
-
Route-maps Device Configuration !
route-map RM-CONN-2-BGP permit 10
match ip address prefix-list PL-LOOPBACKS-EVPN-OVERLAY
!
route-map RM-MLAG-PEER-IN permit 10
description Make routes learned over MLAG Peer-link less preferred on spines to ensure optimal routing
set origin incomplete
VRF Name
IP Routing
MGMT
disabled
VRF10
enabled
VRF11
enabled
VRF Instances Device Configuration !
vrf instance MGMT
!
vrf instance VRF10
!
vrf instance VRF11
Virtual Source NAT Summary
Source NAT VRF
Source NAT IP Address
VRF10
10.255.10.3
VRF11
10.255.11.3
Virtual Source NAT Configuration !
ip address virtual source-nat vrf VRF10 address 10.255.10.3
ip address virtual source-nat vrf VRF11 address 10.255.11.3