Creating Device configuration snippets [CREATED] h1: initial,routing [CREATED] h2: initial,routing [CREATED] h3: initial,routing [CREATED] h4: initial,routing [CREATED] h5: initial,routing [CREATED] h6: initial,routing [CREATED] s1: initial,vlan [CREATED] s2: normalize,initial,vlan Checking Are lab devices ready to be configured? [INFO] Checking SSH server(s) on s1,s2 [SSH] SSH server on node s2 (device eos) is ready after 11.3 seconds [SSH] SSH server on node s1 (device vjunos-router) is ready after 77.4 seconds [INFO] Checking lab devices with an Ansible playbook [WARNING]: Found variable using reserved name: hosts PLAY [Wait for SSH servers] **************************************************** PLAY [Wait for device-specific conditions] ************************************* TASK [Set variables that cannot be set with VARS] ****************************** ok: [s1] TASK [Find device readiness script] ******************************************** ok: [s1] TASK [Wait for device to become ready] ***************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/readiness-check/junos.yml for s1 TASK [set_fact] **************************************************************** ok: [s1] TASK [Wait for first interface (ge-0/0/0)] ************************************* ok: [s1] PLAY RECAP ********************************************************************* s1 : ok=5 changed=0 unreachable=0 failed=0 skipped=0 rescued=0 ignored=0 Config Deploying device configurations [INFO] Executing initial configuration for node h1 (namespace clab- ml-81-h1) [INFO] Executing initial configuration for node h2 (namespace clab- ml-81-h2) [INFO] Executing initial configuration for node h4 (namespace clab- ml-81-h4) [INFO] Executing initial configuration for node h6 (namespace clab- ml-81-h6) [INFO] Executing initial configuration for node h3 (namespace clab- ml-81-h3) [INFO] Executing normalize configuration for node s2 [INFO] Executing initial configuration for node h5 (namespace clab- ml-81-h5) [INFO] Executing routing configuration for node h2 (namespace clab- ml-81-h2) [INFO] Executing routing configuration for node h1 (namespace clab- ml-81-h1) [INFO] Executing routing configuration for node h4 (namespace clab- ml-81-h4) [INFO] Executing routing configuration for node h3 (namespace clab- ml-81-h3) [INFO] Executing routing configuration for node h5 (namespace clab- ml-81-h5) [INFO] Executing routing configuration for node h6 (namespace clab- ml-81-h6) [INFO] Executing initial configuration for node s2 [INFO] Executing vlan configuration for node s2 [INFO] Starting Ansible playbook to deploy the rest of the configurations [WARNING]: Found variable using reserved name: hosts PLAY [Deploy initial device configuration] ************************************* TASK [Set variables that cannot be set with VARS] ****************************** ok: [s1] TASK [Normalize config on bridge-like devices] ********************************* included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for s1 TASK [Figure out whether to deploy the module normalize on current device] ***** ok: [s1] TASK [Find configuration template for normalize] ******************************* ok: [s1] TASK [fail] ******************************************************************** skipping: [s1] TASK [Find configuration deployment deploy_script for normalize] *************** ok: [s1] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [s1] TASK [Deploy normalize configuration] ****************************************** skipping: [s1] TASK [Deploy initial configuration] ******************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for s1 TASK [Figure out whether to deploy the module initial on current device] ******* ok: [s1] TASK [Find configuration template for initial] ********************************* ok: [s1] TASK [fail] ******************************************************************** skipping: [s1] TASK [Find configuration deployment deploy_script for initial] ***************** ok: [s1] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "initial configuration for s1\n=========================================\nsystem {\n host-name s1;\n static-host-mapping {\n h1 inet 172.31.1.1;\n h2 inet 172.31.1.2;\n h3 inet 172.31.1.3;\n h4 inet 172.31.1.4;\n h5 inet 172.31.1.5;\n h6 inet 172.31.1.6;\n s2 inet 10.0.0.8;\n }\n}\n\n\ninterfaces {\n\n\n\n\n\n ge-0/0/0 {\n flexible-vlan-tagging;\n native-vlan-id 700;\n }\n\n ge-0/0/0.0 {\n vlan-id 700;\n }\n\n\n\n\n\n\n\n ge-0/0/1 {\n flexible-vlan-tagging;\n native-vlan-id 700;\n }\n\n ge-0/0/1.0 {\n vlan-id 700;\n }\n\n\n\n\n\n\n\n ge-0/0/2 {\n flexible-vlan-tagging;\n native-vlan-id 701;\n }\n\n ge-0/0/2.0 {\n vlan-id 701;\n }\n\n\n\n\n\n\n\n ge-0/0/3 {\n flexible-vlan-tagging;\n native-vlan-id 702;\n }\n\n ge-0/0/3.0 {\n vlan-id 702;\n }\n\n\n\n\n\n ge-0/0/0 {\n flexible-vlan-tagging;\n }\n\n ge-0/0/0.701 {\n vlan-id 701;\n }\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n}\ninterfaces {\n ge-0/0/0 {\n mtu 1522;\n }\n ge-0/0/1 {\n mtu 1522;\n }\n ge-0/0/2 {\n mtu 1522;\n }\n ge-0/0/3 {\n mtu 1522;\n }\n\n lo0.0 {\n \n family inet {\n address 10.0.0.7/32;\n }\n \n }\n ge-0/0/0.0 {\n description \"s1 -> s2\";\n \n \n }\n ge-0/0/1.0 {\n description \"[Access VLAN red] s1 -> h1\";\n \n \n }\n ge-0/0/2.0 {\n description \"[Access VLAN blue] s1 -> h3\";\n \n \n }\n ge-0/0/3.0 {\n description \"[Access VLAN green] s1 -> h5\";\n \n \n }\n ge-0/0/0.701 {\n description \"[SubIf VLAN blue] s1 -> s2\";\n \n \n }\n irb.700 {\n description \"VLAN red (700) -> [h1,h2,s2]\";\n \n \n }\n irb.701 {\n description \"VLAN blue (701) -> [h3,h4,s2]\";\n \n \n }\n irb.702 {\n description \"VLAN green (702) -> [h5,h6,s2]\";\n \n \n }\n}\nprotocols {\n lldp {\n interface fxp0 {\n disable;\n }\n interface all;\n }\n}\n" } TASK [Deploy initial configuration] ******************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/junos.yml for s1 TASK [junos_config: deploying initial from /work/netlab_cicd/junos_c/node_files/s1/initial] *** changed: [s1] PLAY [Deploy module-specific configurations] *********************************** TASK [Set variables that cannot be set with VARS] ****************************** ok: [s1] TASK [Deploy individual configuration modules] ********************************* included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for s1 => (item=vlan) included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-module.yml for s1 => (item=routing) TASK [Figure out whether to deploy the module vlan on current device] ********** ok: [s1] TASK [Find configuration template for vlan] ************************************ ok: [s1] TASK [fail] ******************************************************************** skipping: [s1] TASK [Find configuration deployment deploy_script for vlan] ******************** ok: [s1] TASK [Print deployed configuration when running in verbose mode] *************** ok: [s1] => { "msg": "vlan configuration for s1\n=========================================\ninterfaces {\n\n ge-0/0/0 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/0.0 {\n encapsulation vlan-bridge;\n }\n\n\n ge-0/0/1 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/1.0 {\n encapsulation vlan-bridge;\n }\n\n\n ge-0/0/2 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/2.0 {\n encapsulation vlan-bridge;\n }\n\n\n ge-0/0/3 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/3.0 {\n encapsulation vlan-bridge;\n }\n\n\n ge-0/0/0 {\n encapsulation flexible-ethernet-services;\n }\n\n ge-0/0/0.701 {\n encapsulation vlan-bridge;\n }\n\n}\n\n\nbridge-domains {\n\n vlan-700 {\n domain-type bridge;\n vlan-id 700;\n routing-interface irb.700;\n\n interface ge-0/0/0.0;\n interface ge-0/0/1.0;\n }\n\n\n vlan-701 {\n domain-type bridge;\n vlan-id 701;\n routing-interface irb.701;\n\n interface ge-0/0/2.0;\n interface ge-0/0/0.701;\n }\n\n\n vlan-702 {\n domain-type bridge;\n vlan-id 702;\n routing-interface irb.702;\n\n interface ge-0/0/3.0;\n }\n\n}\n" } TASK [Deploy vlan configuration] *********************************************** included: /home/pipi/netlab_gh/netsim/ansible/tasks/deploy-config/junos.yml for s1 TASK [junos_config: deploying vlan from /work/netlab_cicd/junos_c/node_files/s1/vlan] *** changed: [s1] TASK [Figure out whether to deploy the module routing on current device] ******* ok: [s1] TASK [Find configuration template for routing] ********************************* skipping: [s1] TASK [fail] ******************************************************************** skipping: [s1] TASK [Find configuration deployment deploy_script for routing] ***************** skipping: [s1] TASK [Print deployed configuration when running in verbose mode] *************** skipping: [s1] TASK [Deploy routing configuration] ******************************************** skipping: [s1] PLAY [Deploy custom deployment templates] ************************************** skipping: no hosts matched PLAY RECAP ********************************************************************* s1 : ok=22 changed=2 unreachable=0 failed=0 skipped=10 rescued=0 ignored=0 Results of configuration script deployments ================================================================================ h1 Script: initial,routing h2 Script: initial,routing h3 Script: initial,routing h4 Script: initial,routing h5 Script: initial,routing h6 Script: initial,routing s2 Script: normalize,initial,vlan The devices under test are simple bridges with a VLAN trunk between them. One of the trunk members is a native VLAN. Both VLANs are using the same IP prefix to identify potential inter-VLAN leaking. * h1 and h2 should be able to ping each other * h3 and h4 should be able to ping each other * h1 should not be able to reach h3 * h5 should not be able to reach h6 Please note it might take a while for the lab to work due to STP learning phase