/EX4600 Core A Secret
Created
February 4, 2025 19:35
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## Last changed: 2025-02-04 19:12:17 UTC | |
| ## Image name: jinstall-host-ex-4600-21.4R3-S9.5-signed.tgz | |
| version 21.4R3-S9.5; | |
| system { | |
| host-name EX4600-Core-A; | |
| services { | |
| ssh { | |
| root-login allow; | |
| } | |
| } | |
| syslog { | |
| file interactive-commands { | |
| interactive-commands any; | |
| } | |
| file messages { | |
| any notice; | |
| authorization info; | |
| } | |
| } | |
| } | |
| chassis { | |
| aggregated-devices { | |
| ethernet { | |
| device-count 32; | |
| } | |
| } | |
| } | |
| interfaces { | |
| xe-0/0/0 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/1 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/2 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/3 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/4 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/5 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/6 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/7 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/8 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/9 { | |
| description "ESXi Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode trunk; | |
| vlan { | |
| members [ 10-12 15 ]; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/20 { | |
| description "Test Host"; | |
| unit 0 { | |
| family ethernet-switching { | |
| vlan { | |
| members 15; | |
| } | |
| } | |
| } | |
| } | |
| xe-0/0/22 { | |
| description "Connected to SAN"; | |
| gigether-options { | |
| 802.3ad ae3; | |
| } | |
| } | |
| xe-0/0/23 { | |
| description "Connected to Cisco NGFW 2130 Port 13"; | |
| gigether-options { | |
| 802.3ad ae2; | |
| } | |
| } | |
| et-0/0/26 { | |
| description "Connected to EX4600-Core-B-1"; | |
| gigether-options { | |
| auto-negotiation; | |
| 802.3ad ae1; | |
| } | |
| } | |
| et-0/0/27 { | |
| description "Connected to EX4600-Core-B-2"; | |
| gigether-options { | |
| auto-negotiation; | |
| 802.3ad ae1; | |
| } | |
| } | |
| ae1 { | |
| description "Connected to EX4600-Core-B"; | |
| mtu 9216; | |
| unit 0 { | |
| family inet { | |
| address 192.168.100.2/31; | |
| } | |
| } | |
| } | |
| ae2 { | |
| description "Connected to Cisco NGFW 2130"; | |
| mtu 9216; | |
| unit 0 { | |
| family inet { | |
| address 192.168.0.2/29; | |
| } | |
| } | |
| } | |
| ae3 { | |
| description "Connected to SAN"; | |
| mtu 9216; | |
| unit 0 { | |
| family ethernet-switching { | |
| interface-mode access; | |
| vlan { | |
| members 15; | |
| } | |
| } | |
| } | |
| } | |
| em0 { | |
| unit 0 { | |
| family inet { | |
| address 192.168.1.51/24; | |
| } | |
| } | |
| } | |
| irb { | |
| unit 10 { | |
| virtual-gateway-accept-data; | |
| description "Virtual Machines"; | |
| family inet { | |
| address 10.25.10.2/24 { | |
| preferred; | |
| virtual-gateway-address 10.25.10.1; | |
| } | |
| } | |
| } | |
| unit 11 { | |
| virtual-gateway-accept-data; | |
| description ESXi; | |
| family inet { | |
| address 10.25.11.2/24 { | |
| preferred; | |
| virtual-gateway-address 10.25.11.1; | |
| } | |
| } | |
| } | |
| unit 12 { | |
| virtual-gateway-accept-data; | |
| description vMotion; | |
| family inet { | |
| address 10.25.12.2/24 { | |
| preferred; | |
| virtual-gateway-address 10.25.12.1; | |
| } | |
| } | |
| } | |
| unit 15 { | |
| virtual-gateway-accept-data; | |
| description iSCSI; | |
| family inet { | |
| address 10.25.15.2/24 { | |
| preferred; | |
| virtual-gateway-address 10.25.15.1; | |
| } | |
| } | |
| } | |
| } | |
| lo0 { | |
| unit 0 { | |
| family inet { | |
| address 192.168.255.2/32; | |
| } | |
| } | |
| } | |
| } | |
| forwarding-options { | |
| storm-control-profiles default { | |
| all; | |
| } | |
| } | |
| policy-options { | |
| policy-statement UNDERLAY-EXPORT { | |
| term LOOPBACK { | |
| from { | |
| route-filter 192.168.255.0/24 orlonger; | |
| } | |
| then accept; | |
| } | |
| term DEFAULT { | |
| then reject; | |
| } | |
| } | |
| policy-statement UNDERLAY-IMPORT { | |
| term LOOPBACK { | |
| from { | |
| route-filter 192.168.255.0/24 orlonger; | |
| } | |
| then accept; | |
| } | |
| term DEFAULT { | |
| then reject; | |
| } | |
| } | |
| policy-statement ecmp_policy { | |
| then { | |
| load-balance per-packet; | |
| accept; | |
| } | |
| } | |
| } | |
| routing-instances { | |
| JNPR_1_VRF { | |
| instance-type vrf; | |
| routing-options { | |
| static { | |
| route 0.0.0.0/0 next-hop 192.168.1.1; | |
| } | |
| auto-export; | |
| } | |
| description "VRF for Virtual Machines"; | |
| interface irb.10; | |
| route-distinguisher 192.168.255.2:10; | |
| vrf-target target:10:65001; | |
| vrf-table-label; | |
| } | |
| JNPR_2_VRF { | |
| instance-type vrf; | |
| routing-options { | |
| static { | |
| route 0.0.0.0/0 next-hop 192.168.1.1; | |
| } | |
| auto-export; | |
| } | |
| description "VRF for ESXi"; | |
| interface irb.11; | |
| route-distinguisher 192.168.255.2:11; | |
| vrf-target target:11:65001; | |
| vrf-table-label; | |
| } | |
| JNPR_3_VRF { | |
| instance-type vrf; | |
| routing-options { | |
| static { | |
| route 0.0.0.0/0 next-hop 192.168.1.1; | |
| } | |
| auto-export; | |
| } | |
| description "VRF for vMotion"; | |
| interface irb.12; | |
| route-distinguisher 192.168.255.2:12; | |
| vrf-target target:12:65001; | |
| vrf-table-label; | |
| } | |
| JNPR_4_VRF { | |
| instance-type vrf; | |
| routing-options { | |
| static { | |
| route 0.0.0.0/0 next-hop 192.168.1.1; | |
| } | |
| auto-export; | |
| } | |
| description "VRF for iSCSI"; | |
| interface irb.15; | |
| route-distinguisher 192.168.255.2:15; | |
| vrf-target target:15:65001; | |
| vrf-table-label; | |
| } | |
| } | |
| routing-options { | |
| router-id 192.168.255.2; | |
| autonomous-system 65100; | |
| static { | |
| route 0.0.0.0/0 next-hop 192.168.1.1; | |
| } | |
| forwarding-table { | |
| export ecmp_policy; | |
| } | |
| } | |
| protocols { | |
| bgp { | |
| group UNDERLAY { | |
| type external; | |
| description "EBGP UNDERLAY"; | |
| import UNDERLAY-IMPORT; | |
| family inet { | |
| unicast; | |
| } | |
| authentication-key "SECRET-DATA"; | |
| export UNDERLAY-EXPORT; | |
| local-as 65012; | |
| multipath { | |
| multiple-as; | |
| } | |
| bfd-liveness-detection { | |
| minimum-interval 350; | |
| multiplier 3; | |
| } | |
| neighbor 192.168.100.3 { | |
| peer-as 65013; | |
| } | |
| } | |
| group EVPN_FABRIC { | |
| type internal; | |
| description "OVERLAY Config"; | |
| local-address 192.168.255.2; | |
| family evpn { | |
| signaling; | |
| } | |
| authentication-key "SECRET-DATA"; | |
| local-as 65100; | |
| multipath; | |
| neighbor 192.168.255.3; | |
| } | |
| bfd-liveness-detection { | |
| minimum-interval 1000; | |
| } | |
| } | |
| evpn { | |
| no-core-isolation; | |
| encapsulation vxlan; | |
| default-gateway no-gateway-community; | |
| extended-vni-list [ 51010 51011 51012 51015 ]; | |
| } | |
| lldp { | |
| interface all; | |
| } | |
| lldp-med { | |
| interface all; | |
| } | |
| igmp-snooping { | |
| vlan default; | |
| } | |
| rstp { | |
| interface all; | |
| } | |
| } | |
| switch-options { | |
| vtep-source-interface lo0.0; | |
| route-distinguisher 192.168.255.2:1; | |
| vrf-target { | |
| target:999:999; | |
| auto; | |
| } | |
| } | |
| vlans { | |
| VLAN-10 { | |
| description "Virtual Machines"; | |
| vlan-id 10; | |
| l3-interface irb.10; | |
| vxlan { | |
| vni 51010; | |
| } | |
| } | |
| VLAN-11 { | |
| description ESXi; | |
| vlan-id 11; | |
| l3-interface irb.11; | |
| vxlan { | |
| vni 51011; | |
| } | |
| } | |
| VLAN-12 { | |
| description vMotion; | |
| vlan-id 12; | |
| l3-interface irb.12; | |
| vxlan { | |
| vni 51012; | |
| } | |
| } | |
| VLAN-15 { | |
| description iSCSI; | |
| vlan-id 15; | |
| l3-interface irb.15; | |
| vxlan { | |
| vni 51015; | |
| } | |
| } | |
| } | |
| {master:0} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment