[WARNING]: Could not match supplied host pattern, ignoring: unprovisioned PLAY [Deploy initial device configuration] ************************************* TASK [Set variables that cannot be set with VARS] ****************************** ok: [h1] ok: [h2] ok: [srv] ok: [dut] TASK [Find device readiness script] ******************************************** ok: [h1] ok: [h2] ok: [srv] ok: [dut] TASK [Wait for device to become ready] ***************************************** skipping: [h1] skipping: [h2] skipping: [srv] skipping: [dut] TASK [Deploy initial configuration] ******************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for h1, h2, srv, dut TASK [Figure out whether to deploy the module initial on current device] ******* ok: [h1] ok: [h2] ok: [srv] ok: [dut] TASK [Find configuration template for initial] ********************************* ok: [h1] ok: [h2] ok: [dut] ok: [srv] TASK [Print deployed configuration when running in verbose mode] *************** ok: [h1] => msg: |- initial configuration for h1 ========================================= #!/bin/bash # # This script contains the 'ip' commands needed to set up container # interfaces and route table. It's executed within the container # network namespace on the container host. # # /etc/hosts file is generated as a clab bind. # set -e ### One-Shot configuration (non-Ubuntu VM or container) # # Disable IPv4 and IPv6 forwarding # sysctl -w net.ipv4.ip_forward=0 sysctl -w net.ipv6.conf.all.forwarding=0 # # Interface addressing # ip link set dev eth1 up set +e ip addr del 172.16.0.1/24 dev eth1 2>/dev/null set -e ip addr add 172.16.0.1/24 dev eth1 ip link set eth1 mtu 1500 # # Add routes to IPv4 address pools pointing to the first neighbor on the first link # # If you need anything better, use FRR instead of Linux and start routing (or use IPv6) # # lan prefix: 172.16.0.0/16 local subnet: 172.16.0.0/24 set +e ip route del 172.16.0.0/16 2>/dev/null set -e ip route add 172.16.0.0/16 via 172.16.0.4 # loopback prefix: 10.0.0.0/24 local subnet: 172.16.0.0/24 set +e ip route del 10.0.0.0/24 2>/dev/null set -e ip route add 10.0.0.0/24 via 172.16.0.4 # mgmt prefix: 192.168.17.0/24 local subnet: 172.16.0.0/24 # p2p prefix: 10.1.0.0/16 local subnet: 172.16.0.0/24 set +e ip route del 10.1.0.0/16 2>/dev/null set -e ip route add 10.1.0.0/16 via 172.16.0.4 # router_id prefix: 10.0.0.0/24 local subnet: 172.16.0.0/24 # vrf_loopback prefix: 10.2.0.0/24 local subnet: 172.16.0.0/24 set +e ip route del 10.2.0.0/24 2>/dev/null set -e ip route add 10.2.0.0/24 via 172.16.0.4 # # Print the final routing table ip route ok: [h2] => msg: |- initial configuration for h2 ========================================= #!/bin/bash # # This script contains the 'ip' commands needed to set up container # interfaces and route table. It's executed within the container # network namespace on the container host. # # /etc/hosts file is generated as a clab bind. # set -e ### One-Shot configuration (non-Ubuntu VM or container) # # Disable IPv4 and IPv6 forwarding # sysctl -w net.ipv4.ip_forward=0 sysctl -w net.ipv6.conf.all.forwarding=0 # # Interface addressing # ip link set dev eth1 up set +e ip addr del 172.16.1.2/24 dev eth1 2>/dev/null set -e ip addr add 172.16.1.2/24 dev eth1 ip link set eth1 mtu 1500 # # Add routes to IPv4 address pools pointing to the first neighbor on the first link # # If you need anything better, use FRR instead of Linux and start routing (or use IPv6) # # lan prefix: 172.16.0.0/16 local subnet: 172.16.1.0/24 set +e ip route del 172.16.0.0/16 2>/dev/null set -e ip route add 172.16.0.0/16 via 172.16.1.4 # loopback prefix: 10.0.0.0/24 local subnet: 172.16.1.0/24 set +e ip route del 10.0.0.0/24 2>/dev/null set -e ip route add 10.0.0.0/24 via 172.16.1.4 # mgmt prefix: 192.168.17.0/24 local subnet: 172.16.1.0/24 # p2p prefix: 10.1.0.0/16 local subnet: 172.16.1.0/24 set +e ip route del 10.1.0.0/16 2>/dev/null set -e ip route add 10.1.0.0/16 via 172.16.1.4 # router_id prefix: 10.0.0.0/24 local subnet: 172.16.1.0/24 # vrf_loopback prefix: 10.2.0.0/24 local subnet: 172.16.1.0/24 set +e ip route del 10.2.0.0/24 2>/dev/null set -e ip route add 10.2.0.0/24 via 172.16.1.4 # # Print the final routing table ip route ok: [srv] => msg: |- initial configuration for srv ========================================= #!/bin/bash # # This script contains the 'ip' commands needed to set up container # interfaces and route table. It's executed within the container # network namespace on the container host. # # /etc/hosts file is generated as a clab bind. # set -e ### One-Shot configuration (non-Ubuntu VM or container) # # Disable IPv4 and IPv6 forwarding # sysctl -w net.ipv4.ip_forward=0 sysctl -w net.ipv6.conf.all.forwarding=0 # # Interface addressing # ip link set dev eth1 up set +e ip addr del 172.16.2.3/24 dev eth1 2>/dev/null set -e ip addr add 172.16.2.3/24 dev eth1 ip link set eth1 mtu 1500 # # Add routes to IPv4 address pools pointing to the first neighbor on the first link # # If you need anything better, use FRR instead of Linux and start routing (or use IPv6) # # lan prefix: 172.16.0.0/16 local subnet: 172.16.2.0/24 set +e ip route del 172.16.0.0/16 2>/dev/null set -e ip route add 172.16.0.0/16 via 172.16.2.4 # loopback prefix: 10.0.0.0/24 local subnet: 172.16.2.0/24 set +e ip route del 10.0.0.0/24 2>/dev/null set -e ip route add 10.0.0.0/24 via 172.16.2.4 # mgmt prefix: 192.168.17.0/24 local subnet: 172.16.2.0/24 # p2p prefix: 10.1.0.0/16 local subnet: 172.16.2.0/24 set +e ip route del 10.1.0.0/16 2>/dev/null set -e ip route add 10.1.0.0/16 via 172.16.2.4 # router_id prefix: 10.0.0.0/24 local subnet: 172.16.2.0/24 # vrf_loopback prefix: 10.2.0.0/24 local subnet: 172.16.2.0/24 set +e ip route del 10.2.0.0/24 2>/dev/null set -e ip route add 10.2.0.0/24 via 172.16.2.4 # # Print the final routing table ip route ok: [dut] => msg: |- initial configuration for dut ========================================= #!/bin/vbash source /opt/vyatta/etc/functions/script-template if [ "$(id -g -n)" != 'vyattacfg' ] ; then exec sg vyattacfg -c "/bin/vbash $(readlink -f $0) $@" fi # Configuration items start here configure set system host-name 'dut' set vrf name blue table 101 set vrf name common table 102 set vrf name red table 100 set interfaces dummy dum0 address 10.0.0.4/32 set interfaces ethernet eth1 description 'dut -> h1 [stub]' set interfaces ethernet eth1 address 172.16.0.4/24 set interfaces ethernet eth1 vrf red set interfaces ethernet eth2 description 'dut -> h2 [stub]' set interfaces ethernet eth2 address 172.16.1.4/24 set interfaces ethernet eth2 vrf blue set interfaces ethernet eth3 description 'dut -> srv [stub]' set interfaces ethernet eth3 address 172.16.2.4/24 set interfaces ethernet eth3 vrf common set service lldp interface all set service lldp interface eth0 disable # Commit, save and exit from subshell commit save exit # Restart FRR to pick up the new hostname sudo service frr restart TASK [Find configuration deployment deploy_script for initial] ***************** ok: [h1] ok: [h2] ok: [srv] ok: [dut] TASK [Deploy initial configuration] ******************************************** included: /home/pipi/net101/tools/netsim/ansible/tasks/linux/initial-clab.yml for h1, h2, srv included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/vyos.yml for dut TASK [set_fact] **************************************************************** ok: [h1] ok: [h2] ok: [srv] TASK [Create initial container setup from /home/pipi/net101/tools/netsim/ansible/templates/initial/linux-clab.j2] *** changed: [srv -> localhost] changed: [h2 -> localhost] changed: [h1 -> localhost] TASK [Initial container configuration via /tmp/config-bXPiGCBc-h1.sh] ********** changed: [srv -> localhost] changed: [h2 -> localhost] changed: [h1 -> localhost] TASK [file] ******************************************************************** changed: [h1 -> localhost] changed: [srv -> localhost] changed: [h2 -> localhost] TASK [wait_for_connection] ***************************************************** skipping: [dut] TASK [wait_for] **************************************************************** skipping: [dut] TASK [set_fact] **************************************************************** ok: [dut] TASK [set_fact] **************************************************************** ok: [dut] TASK [template] **************************************************************** changed: [dut] TASK [execute config-initial.sh to deploy initial config from /home/pipi/net101/tools/netsim/ansible/templates/initial/vyos.j2] *** changed: [dut] PLAY [Deploy module-specific configurations] *********************************** TASK [Set variables that cannot be set with VARS] ****************************** ok: [dut] TASK [Deploy individual configuration modules] ********************************* included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-module.yml for dut => (item=vrf) TASK [Figure out whether to deploy the module vrf on current device] *********** ok: [dut] TASK [Find configuration template for vrf] ************************************* ok: [dut] TASK [Print deployed configuration when running in verbose mode] *************** ok: [dut] => msg: |- vrf configuration for dut ========================================= #!/bin/vbash source /opt/vyatta/etc/functions/script-template if [ "$(id -g -n)" != 'vyattacfg' ] ; then exec sg vyattacfg -c "/bin/vbash $(readlink -f $0) $@" fi # Configuration items start here configure set protocols bgp system-as 65000 # Enter vrf sublevel edit vrf name blue set protocols bgp system-as 65000 set protocols bgp parameters router-id 10.0.0.4 set protocols bgp address-family ipv4-unicast rd vpn export 65000:2 set protocols bgp address-family ipv4-unicast route-target vpn import "65000:2 65000:3" set protocols bgp address-family ipv4-unicast route-target vpn export "65000:2" set protocols bgp address-family ipv4-unicast import vpn set protocols bgp address-family ipv4-unicast export vpn set protocols bgp address-family ipv4-unicast label vpn export auto set protocols bgp address-family ipv4-unicast redistribute connected # Define networks for VRF Loopback # Back to root level top edit vrf name common set protocols bgp system-as 65000 set protocols bgp parameters router-id 10.0.0.4 set protocols bgp address-family ipv4-unicast rd vpn export 65000:3 set protocols bgp address-family ipv4-unicast route-target vpn import "65000:1 65000:2 65000:3" set protocols bgp address-family ipv4-unicast route-target vpn export "65000:3" set protocols bgp address-family ipv4-unicast import vpn set protocols bgp address-family ipv4-unicast export vpn set protocols bgp address-family ipv4-unicast label vpn export auto set protocols bgp address-family ipv4-unicast redistribute connected # Define networks for VRF Loopback # Back to root level top edit vrf name red set protocols bgp system-as 65000 set protocols bgp parameters router-id 10.0.0.4 set protocols bgp address-family ipv4-unicast rd vpn export 65000:1 set protocols bgp address-family ipv4-unicast route-target vpn import "65000:1 65000:3" set protocols bgp address-family ipv4-unicast route-target vpn export "65000:1" set protocols bgp address-family ipv4-unicast import vpn set protocols bgp address-family ipv4-unicast export vpn set protocols bgp address-family ipv4-unicast label vpn export auto set protocols bgp address-family ipv4-unicast redistribute connected # Define networks for VRF Loopback # Back to root level top # Commit, save and exit from subshell commit save exit TASK [Find configuration deployment deploy_script for vrf] ********************* ok: [dut] TASK [Deploy vrf configuration] ************************************************ included: /home/pipi/net101/tools/netsim/ansible/tasks/deploy-config/vyos.yml for dut TASK [wait_for_connection] ***************************************************** skipping: [dut] TASK [wait_for] **************************************************************** skipping: [dut] TASK [set_fact] **************************************************************** ok: [dut] TASK [set_fact] **************************************************************** ok: [dut] TASK [template] **************************************************************** changed: [dut] TASK [execute config-vrf.sh to deploy vrf config from /home/pipi/net101/tools/netsim/ansible/templates/vrf/vyos.j2] *** changed: [dut] PLAY [Deploy custom deployment templates] ************************************** skipping: no hosts matched PLAY RECAP ********************************************************************* dut : ok=23 changed=4 unreachable=0 failed=0 skipped=5 rescued=0 ignored=0 h1 : ok=12 changed=3 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 h2 : ok=12 changed=3 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 srv : ok=12 changed=3 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 The device under test has two user VRFs and a common services VRF. The lab tests inter-VRF route leaking between common VRF and other VRFs * h1 and h2 should be able to ping srv but not each other