VPN 1 Deployment via Templates

Please refer to the first part for defining and applying templates:

We start by creating the feature templates for VPN1 and VPN1 Interface:

I- Feature templates

VPN Template:


Specified VPN id as “1”:

added a static route:


Next create a VPN Interface Ethernet template:


In my case, I’m using the internal interface ge0/2:


II- Device Template

I’ve updated The existing Device template:


and selected the VPN 1 and VPN interface feature templates:


Since this device template is already attached to vEDGE devices, once I click on update for the device template, it will directly show the Interface to push to the configuration:


Enter the device specific parameters for each vEDGE and click “Next”:

We have the option to verify the configuration drift for each device, illustrating what commands will be added and what will be removed based on the current device configuration and the target configuration:


The configuration Look as we expect, will confirm and push the configuration:


It take few moment and configuration is properly pushed, and we can verify the OMP routes already propagated to vEDGEs:

LearnDuty-vEdge1# show ip routes vpn 1
Codes Proto-sub-type:
  IA -> ospf-intra-area, IE -> ospf-inter-area,
  E1 -> ospf-external1, E2 -> ospf-external2,
  N1 -> ospf-nssa-external1, N2 -> ospf-nssa-external2,
  e -> bgp-external, i -> bgp-internal
Codes Status flags:
  F -> fib, S -> selected, I -> inactive,
  B -> blackhole, R -> recursive

                                            PROTOCOL  NEXTHOP     NEXTHOP          NEXTHOP
VPN    PREFIX              PROTOCOL         SUB TYPE  IF NAME     ADDR             VPN      TLOC IP          COLOR            ENCAP  STATUS
---------------------------------------------------------------------------------------------------------------------------------------------
1      10.10.1.0/24        connected        -         ge0/2       -                -        -                -                -      F,S
1      10.10.2.0/24        omp              -         -           -                -        10.120.0.12      mpls             ipsec  F,S
1      10.10.2.0/24        omp              -         -           -                -        10.120.0.12      public-internet  ipsec  F,S
1      10.10.3.0/24        omp              -         -           -                -        10.130.0.13      mpls             ipsec  F,S
1      10.10.3.0/24        omp              -         -           -                -        10.130.0.13      public-internet  ipsec  F,S
1      192.168.1.0/24      static           -         ge0/2       10.10.1.2        -        -                -                -      F,S
1      192.168.2.0/24      omp              -         -           -                -        10.130.0.13      mpls             ipsec  F,S
1      192.168.2.0/24      omp              -         -           -                -        10.130.0.13      public-internet  ipsec  F,S
1      192.168.3.0/24      omp              -         -           -                -        10.120.0.12      mpls             ipsec  F,S
1      192.168.3.0/24      omp              -         -           -                -        10.120.0.12      public-internet  ipsec  F,S
Code language: PHP (php)

Bilel Ameur

Enthusiastic Network Engineer specializing in Cisco ACI, passionate about solving challenges. A lifelong learner who loves gaining and sharing knowledge. Profile: https://www.linkedin.com/in/bilel-ameur-71116b2b5
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x