Creating Device configuration snippets [CREATED] h1: initial,routing [CREATED] h2: initial,routing [CREATED] h3: initial,routing [CREATED] h4: initial,routing [CREATED] h5: initial,routing [CREATED] h6: initial,routing [CREATED] s1: initial,vlan [CREATED] s2: normalize,initial,vlan Checking Are lab devices ready to be configured? [INFO] Checking SSH server(s) on s2 Config Deploying device configurations [INFO] Executing initial configuration for node h1 (namespace clab- ml-85-h1) [INFO] Executing initial configuration for node h2 (namespace clab- ml-85-h2) [INFO] Executing initial configuration for node h3 (namespace clab- ml-85-h3) [INFO] Executing initial configuration for node h4 (namespace clab- ml-85-h4) [INFO] Executing initial configuration for node h6 (namespace clab- ml-85-h6) [INFO] Executing initial configuration for node h5 (namespace clab- ml-85-h5) [INFO] Executing normalize configuration for node s2 [INFO] Executing routing configuration for node h1 (namespace clab- ml-85-h1) [INFO] Executing routing configuration for node h3 (namespace clab- ml-85-h3) [INFO] Executing routing configuration for node h2 (namespace clab- ml-85-h2) [INFO] Executing routing configuration for node h4 (namespace clab- ml-85-h4) [INFO] Executing routing configuration for node h6 (namespace clab- ml-85-h6) [INFO] Executing routing configuration for node h5 (namespace clab- ml-85-h5) [INFO] Executing initial configuration for node s2 [INFO] Executing vlan configuration for node s2 [INFO] Starting Ansible playbook to deploy the rest of the configurations [WARNING]: Found variable using reserved name: hosts PLAY [Deploy initial device configuration] ************************************* TASK [Set variables that cannot be set with VARS] ****************************** ok: [s1] TASK [Normalize config on bridge-like devices] ********************************* included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1 TASK [Figure out whether to deploy the module normalize on current device] ***** ok: [s1] TASK [Find configuration template for normalize] ******************************* ok: [s1] TASK [fail] ******************************************************************** skipping: [s1] TASK [Find configuration deployment deploy_script for normalize] *************** ok: [s1] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [s1] TASK [Deploy normalize configuration] ****************************************** skipping: [s1] TASK [Deploy initial configuration] ******************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1 TASK [Figure out whether to deploy the module initial on current device] ******* ok: [s1] TASK [Find configuration template for initial] ********************************* ok: [s1] TASK [fail] ******************************************************************** skipping: [s1] TASK [Find configuration deployment deploy_script for initial] ***************** ok: [s1] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "initial configuration for s1\n=========================================\nhostname s1\n!\nlldp\n!\n\n\n!\nvlan 700\n name red\n!\nvlan 701\n name blue\n!\nvlan 702\n name green\n!\n\n!\n\n!\ninterface mgmt\n no lldp transmit\n no lldp receive\n!\n\n\ninterface loopback 0\n ip address 10.0.0.7/32\n no shutdown\n!\n\ninterface 1/1/1\n shutdown\n mtu 9198\n description s1 -> s2\n no shutdown\n!\n\ninterface 1/1/2\n shutdown\n mtu 9198\n description [Access VLAN red] s1 -> h1\n no shutdown\n!\n\ninterface 1/1/3\n shutdown\n mtu 9198\n description [Access VLAN blue] s1 -> h3\n no shutdown\n!\n\ninterface 1/1/4\n shutdown\n mtu 9198\n description [Access VLAN green] s1 -> h5\n no shutdown\n!\n\ninterface vlan700\n description VLAN red (700) -> [h1,h2,s2]\n no shutdown\n!\n\ninterface vlan701\n description VLAN blue (701) -> [h3,h4,s2]\n no shutdown\n!\n\ninterface vlan702\n description VLAN green (702) -> [h5,h6,s2]\n no shutdown\n!\n!\n" } TASK [Deploy initial configuration] ******************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/arubacx.yml for s1 TASK [tempfile] **************************************************************** changed: [s1 -> localhost] TASK [template] **************************************************************** changed: [s1 -> localhost] TASK [aoscx_config: deploying initial from /work/netlab_cicd/other_vm/node_files/s1/initial] *** changed: [s1] TASK [file] ******************************************************************** changed: [s1 -> localhost] PLAY [Deploy module-specific configurations] *********************************** TASK [Set variables that cannot be set with VARS] ****************************** ok: [s1] TASK [Deploy individual configuration modules] ********************************* included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1 => (item=vlan) included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for s1 => (item=routing) TASK [Figure out whether to deploy the module vlan on current device] ********** ok: [s1] TASK [Find configuration template for vlan] ************************************ ok: [s1] TASK [fail] ******************************************************************** skipping: [s1] TASK [Find configuration deployment deploy_script for vlan] ******************** ok: [s1] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "vlan configuration for s1\n=========================================\n!\n!\ninterface 1/1/1\n no routing\n vlan trunk allow 700,701\n vlan trunk native 700\n!\ninterface 1/1/2\n no routing\n vlan access 700\n!\ninterface 1/1/3\n no routing\n vlan access 701\n!\ninterface 1/1/4\n no routing\n vlan access 702\n!\ninterface vlan700\n!\ninterface vlan701\n!\ninterface vlan702\n" } TASK [Deploy vlan configuration] *********************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/arubacx.yml for s1 TASK [tempfile] **************************************************************** changed: [s1 -> localhost] TASK [template] **************************************************************** changed: [s1 -> localhost] TASK [aoscx_config: deploying vlan from /work/netlab_cicd/other_vm/node_files/s1/vlan] *** changed: [s1] TASK [file] ******************************************************************** changed: [s1 -> localhost] TASK [Figure out whether to deploy the module routing on current device] ******* ok: [s1] TASK [Find configuration template for routing] ********************************* skipping: [s1] TASK [fail] ******************************************************************** skipping: [s1] TASK [Find configuration deployment deploy_script for routing] ***************** skipping: [s1] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [s1] TASK [Deploy routing configuration] ******************************************** skipping: [s1] PLAY [Deploy custom deployment templates] ************************************** skipping: no hosts matched PLAY RECAP ********************************************************************* s1 : ok=28 changed=8 unreachable=0 failed=0 skipped=10 rescued=0 ignored=0 Results of configuration script deployments ================================================================================ h1 Script: initial,routing h2 Script: initial,routing h3 Script: initial,routing h4 Script: initial,routing h5 Script: initial,routing h6 Script: initial,routing s2 Script: normalize,initial,vlan The devices under test are simple bridges with a VLAN trunk between them. One of the trunk members is a native VLAN. Both VLANs are using the same IP prefix to identify potential inter-VLAN leaking. * h1 and h2 should be able to ping each other * h3 and h4 should be able to ping each other * h1 should not be able to reach h3 * h5 should not be able to reach h6 Please note it might take a while for the lab to work due to STP learning phase