diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/host1.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/host1.md index 365385c79c6..84fab2c19dd 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/host1.md +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/host1.md @@ -7,12 +7,19 @@ - [Management Interfaces](#management-interfaces) - [IP Domain-list](#ip-domain-list) - [Clock Settings](#clock-settings) + - [Management Accounts](#management-accounts) + - [Management API gNMI](#management-api-gnmi) + - [Management CVX Summary](#management-cvx-summary) + - [Management Console](#management-console) + - [Management API HTTP](#management-api-http) + - [Management API Models](#management-api-models) - [CVX](#cvx) - [CVX Services](#cvx-services) - [CVX Device Configuration](#cvx-device-configuration) - [Authentication](#authentication) - [Local Users](#local-users) - [Enable Password](#enable-password) + - [Management defaults](#management-defaults) - [TACACS Servers](#tacacs-servers) - [RADIUS Server](#radius-server) - [AAA Server Groups](#aaa-server-groups) @@ -90,22 +97,45 @@ agent KernelFib environment KERNELFIB_PROGRAM_ALL_ECMP=true | Management Interface | Description | Type | VRF | IP Address | Gateway | | -------------------- | ----------- | ---- | --- | ---------- | ------- | +| Management0 | - | oob | default | 10.0.0.0 | - | | Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | +| Management42 | - | oob | default | - | - | +| Vlan123 | inband_management | inband | default | 10.73.0.123/24 | 10.73.0.1 | ##### IPv6 | Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | | -------------------- | ----------- | ---- | --- | ------------ | ------------ | +| Management0 | - | oob | default | - | - | | Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | +| Management42 | - | oob | default | - | - | +| Vlan123 | inband_management | inband | default | - | - | #### Management Interfaces Device Configuration ```eos ! +interface Management0 + mac-address 00:1c:73:00:00:aa + ip address 10.0.0.0 +! interface Management1 description OOB_MANAGEMENT vrf MGMT ip address 10.73.255.122/24 +! +interface Management42 + shutdown + speed forced 1000full + no lldp transmit + no lldp receive + lldp tlv transmit ztp vlan 666 +! +interface Vlan123 + description inband_management + mtu 1500 + ip address 10.73.0.123/24 + ip virtual-router address 10.73.0.1 ``` ### IP Domain-list @@ -136,6 +166,207 @@ Clock Timezone is set to **GMT**. clock timezone GMT ``` +### Management Accounts + +#### Password Policy + +The password policy set for management accounts is: AVD_POLICY + +#### Management Accounts Device Configuration + +```eos +! +management accounts + password policy AVD_POLICY +``` + +### Management API gNMI + +#### Management API gNMI Summary + +| Transport | SSL Profile | VRF | Notification Timestamp | ACL | Port | +| --------- | ----------- | --- | ---------------------- | --- | ---- | +| MGMT | gnmi | MGMT | send-time | acl1 | 6030 | +| mytransport | - | - | send-time | acl1 | 6032 | + +| Transport | Destination | Destination Port | gNMI SSL Profile | Tunnel SSL Profile | VRF | Local Interface | Local Port | Target ID | +| --------- | ----------- | ---------------- | ---------------- | ------------------ | --- | --------------- | ---------- | --------- | +| onetarget | 10.1.1.100 | 10000 | ssl_profile | ssl_profile | management | Management1 | 10001 | testid100 | +| multipletargets | 10.1.1.100 | 10000 | ssl_profile | ssl_profile | management | Management1 | 10001 | testid1 testid2 testid3 testid4 | +| serialandtargets | 10.1.1.100 | 10000 | ssl_profile | ssl_profile | management | Management1 | 10001 | Serial-Number testid10 testid20 | +| noserialnotargets | - | - | - | - | - | - | - | | +| serialonly | - | - | - | - | - | - | - | Serial-Number | + +Provider eos-native is configured. + +#### Management API gNMI Device Configuration + +```eos +! +management api gnmi + transport grpc MGMT + ssl profile gnmi + vrf MGMT + ip access-group acl1 + notification timestamp send-time + ! + transport grpc mytransport + port 6032 + ip access-group acl1 + notification timestamp send-time + ! + transport grpc-tunnel multipletargets + no shutdown + vrf management + tunnel ssl profile ssl_profile + gnmi ssl profile ssl_profile + destination 10.1.1.100 port 10000 + local interface Management1 port 10001 + target testid1 testid2 testid3 testid4 + ! + transport grpc-tunnel noserialnotargets + ! + transport grpc-tunnel onetarget + shutdown + vrf management + tunnel ssl profile ssl_profile + gnmi ssl profile ssl_profile + destination 10.1.1.100 port 10000 + local interface Management1 port 10001 + target testid100 + ! + transport grpc-tunnel serialandtargets + no shutdown + vrf management + tunnel ssl profile ssl_profile + gnmi ssl profile ssl_profile + destination 10.1.1.100 port 10000 + local interface Management1 port 10001 + target serial-number testid10 testid20 + ! + transport grpc-tunnel serialonly + target serial-number + provider eos-native +``` + +### Management CVX Summary + +| Shutdown | CVX Servers | +| -------- | ----------- | +| False | 10.90.224.188, 10.90.224.189, leaf1.atd.lab | + +#### Management CVX Source Interface + +| Interface | VRF | +| --------- | --- | +| Loopback0 | MGMT | + +#### Management CVX Device Configuration + +```eos +! +management cvx + no shutdown + server host 10.90.224.188 + server host 10.90.224.189 + server host leaf1.atd.lab + source-interface Loopback0 + vrf MGMT +``` + +### Management Console + +#### Management Console Timeout + +Management Console Timeout is set to **15** minutes. + +#### Management Console Device Configuration + +```eos +! +management console + idle-timeout 15 +``` + +### Management API HTTP + +#### Management API HTTP Summary + +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| False | True | True | + +Management HTTPS is using the SSL profile SSL_PROFILE + +#### Management API VRF Access + +| VRF Name | IPv4 ACL | IPv6 ACL | +| -------- | -------- | -------- | +| default | ACL-API | ACL-API6 | +| MGMT | ACL-API | - | + +HTTPS certificate and private key are configured. + +#### Management API HTTP Device Configuration + +```eos +! +management api http-commands + protocol https + no protocol http + default-services + protocol https ssl profile SSL_PROFILE + no shutdown + ! + vrf default + no shutdown + ip access-group ACL-API + ipv6 access-group ACL-API6 + ! + vrf MGMT + no shutdown + ip access-group ACL-API + protocol https certificate + +EOF + +EOF +``` + +### Management API Models + +#### Management API Models Summary + +| Provider | Path | Disabled | +| -------- | ---- | ------- | +| smash | flexCounters | False | +| smash | forwarding/srte/status/fec | False | +| smash | routing6/status | False | +| smash | routing/bgp/export/allPeerAdjRibIn | False | +| smash | routing/status | True | +| smash | tunnel/tunnelFib/entry | False | +| sysdb | /Sysdb/sys/logging/config/vrfLoggingHost/mgmt | True | +| sysdb | cell/1/agent | True | + +#### Management API Models Device Configuration + +```eos +! +management api models + ! + provider smash + path flexCounters + path forwarding/srte/status/fec + path routing6/status + path routing/bgp/export/allPeerAdjRibIn + path routing/status disabled + path tunnel/tunnelFib/entry + ! + provider sysdb + path /Sysdb/sys/logging/config/vrfLoggingHost/mgmt disabled + path cell/1/agent disabled +``` + ## CVX | Peer Hosts | @@ -209,6 +440,18 @@ enable password sha512 ! ``` +### Management defaults + +Default secret hash is set to md5 + +#### Management defaults Device Configuration + +```eos +! +management defaults + secret hash md5 +``` + ### TACACS Servers #### TACACS Servers diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/host2.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/host2.md index b52799db5f6..c086e8e20aa 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/host2.md +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/host2.md @@ -4,6 +4,8 @@ - [Management](#management) - [Management Interfaces](#management-interfaces) + - [Management CVX Summary](#management-cvx-summary) + - [Management API HTTP](#management-api-http) - [CVX](#cvx) - [CVX Device Configuration](#cvx-device-configuration) - [Authentication](#authentication) @@ -61,6 +63,39 @@ interface Management1 ip address 10.73.255.122/24 ``` +### Management CVX Summary + +| Shutdown | CVX Servers | +| -------- | ----------- | +| True | - | + +#### Management CVX Device Configuration + +```eos +! +management cvx + shutdown +``` + +### Management API HTTP + +#### Management API HTTP Summary + +| HTTP | HTTPS | Default Services | +| ---- | ----- | ---------------- | +| True | False | False | + +#### Management API HTTP Device Configuration + +```eos +! +management api http-commands + no protocol https + protocol http + no default-services + no shutdown +``` + ## CVX CVX is disabled diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-accounts.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-accounts.md deleted file mode 100644 index 7837ac0fc91..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-accounts.md +++ /dev/null @@ -1,49 +0,0 @@ -# management-accounts - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) - - [Management Accounts](#management-accounts-1) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -### Management Accounts - -#### Password Policy - -The password policy set for management accounts is: AVD_POLICY - -#### Management Accounts Device Configuration - -```eos -! -management accounts - password policy AVD_POLICY -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-api-http.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-api-http.md deleted file mode 100644 index 3b333c9a620..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-api-http.md +++ /dev/null @@ -1,103 +0,0 @@ -# management-api-http - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) - - [Management API HTTP](#management-api-http-1) -- [ACL](#acl) - - [Standard Access-lists](#standard-access-lists) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -### Management API HTTP - -#### Management API HTTP Summary - -| HTTP | HTTPS | Default Services | -| ---- | ----- | ---------------- | -| False | True | True | - -Management HTTPS is using the SSL profile SSL_PROFILE - -#### Management API VRF Access - -| VRF Name | IPv4 ACL | IPv6 ACL | -| -------- | -------- | -------- | -| default | ACL-API | - | -| MGMT | ACL-API | - | - -HTTPS certificate and private key are configured. - -#### Management API HTTP Device Configuration - -```eos -! -management api http-commands - protocol https - no protocol http - default-services - protocol https ssl profile SSL_PROFILE - no shutdown - ! - vrf default - no shutdown - ip access-group ACL-API - ! - vrf MGMT - no shutdown - ip access-group ACL-API - protocol https certificate - -EOF - -EOF -``` - -## ACL - -### Standard Access-lists - -#### Standard Access-lists Summary - -##### ACL-API - -| Sequence | Action | -| -------- | ------ | -| 10 | permit 10.0.0.0/8 | -| 20 | permit 100.0.0.0/8 | - -#### Standard Access-lists Device Configuration - -```eos -! -ip access-list standard ACL-API - 10 permit 10.0.0.0/8 - 20 permit 100.0.0.0/8 -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-api-models.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-api-models.md deleted file mode 100644 index f2f442fb399..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-api-models.md +++ /dev/null @@ -1,69 +0,0 @@ -# management-api-models - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) - - [Management API Models](#management-api-models-1) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -### Management API Models - -#### Management API Models Summary - -| Provider | Path | Disabled | -| -------- | ---- | ------- | -| smash | flexCounters | False | -| smash | forwarding/srte/status/fec | False | -| smash | routing6/status | False | -| smash | routing/bgp/export/allPeerAdjRibIn | False | -| smash | routing/status | True | -| smash | tunnel/tunnelFib/entry | False | -| sysdb | /Sysdb/sys/logging/config/vrfLoggingHost/mgmt | True | -| sysdb | cell/1/agent | True | - -#### Management API Models Device Configuration - -```eos -! -management api models - ! - provider smash - path flexCounters - path forwarding/srte/status/fec - path routing6/status - path routing/bgp/export/allPeerAdjRibIn - path routing/status disabled - path tunnel/tunnelFib/entry - ! - provider sysdb - path /Sysdb/sys/logging/config/vrfLoggingHost/mgmt disabled - path cell/1/agent disabled -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-console.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-console.md deleted file mode 100644 index 8717795921b..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-console.md +++ /dev/null @@ -1,49 +0,0 @@ -# management-console - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) - - [Management Console](#management-console-1) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -### Management Console - -#### Management Console Timeout - -Management Console Timeout is set to **15** minutes. - -#### Management Console Device Configuration - -```eos -! -management console - idle-timeout 15 -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-cvx.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-cvx.md deleted file mode 100644 index e270c26a1b9..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-cvx.md +++ /dev/null @@ -1,60 +0,0 @@ -# management-cvx - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) - - [Management CVX Summary](#management-cvx-summary) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -### Management CVX Summary - -| Shutdown | CVX Servers | -| -------- | ----------- | -| False | 10.90.224.188, 10.90.224.189, leaf1.atd.lab | - -#### Management CVX Source Interface - -| Interface | VRF | -| --------- | --- | -| Loopback0 | MGMT | - -#### Management CVX Device Configuration - -```eos -! -management cvx - no shutdown - server host 10.90.224.188 - server host 10.90.224.189 - server host leaf1.atd.lab - source-interface Loopback0 - vrf MGMT -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-defaults.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-defaults.md deleted file mode 100644 index 4e515cbd228..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-defaults.md +++ /dev/null @@ -1,50 +0,0 @@ -# management-defaults - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) -- [Authentication](#authentication) - - [Management defaults](#management-defaults-1) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -## Authentication - -### Management defaults - -Default secret hash is set to md5 - -#### Management defaults Device Configuration - -```eos -! -management defaults - secret hash md5 -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi-grpc-tunnel.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi-grpc-tunnel.md deleted file mode 100644 index 55a3a897a23..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi-grpc-tunnel.md +++ /dev/null @@ -1,88 +0,0 @@ -# management-gnmi-grpc-tunnel - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) - - [Management API gNMI](#management-api-gnmi) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -### Management API gNMI - -#### Management API gNMI Summary - -| Transport | Destination | Destination Port | gNMI SSL Profile | Tunnel SSL Profile | VRF | Local Interface | Local Port | Target ID | -| --------- | ----------- | ---------------- | ---------------- | ------------------ | --- | --------------- | ---------- | --------- | -| onetarget | 10.1.1.100 | 10000 | ssl_profile | ssl_profile | management | Management1 | 10001 | testid100 | -| multipletargets | 10.1.1.100 | 10000 | ssl_profile | ssl_profile | management | Management1 | 10001 | testid1 testid2 testid3 testid4 | -| serialandtargets | 10.1.1.100 | 10000 | ssl_profile | ssl_profile | management | Management1 | 10001 | Serial-Number testid10 testid20 | -| noserialnotargets | - | - | - | - | - | - | - | | -| serialonly | - | - | - | - | - | - | - | Serial-Number | - -Provider eos-native is configured. - -#### Management API gNMI Device Configuration - -```eos -! -management api gnmi - transport grpc-tunnel multipletargets - no shutdown - vrf management - tunnel ssl profile ssl_profile - gnmi ssl profile ssl_profile - destination 10.1.1.100 port 10000 - local interface Management1 port 10001 - target testid1 testid2 testid3 testid4 - ! - transport grpc-tunnel noserialnotargets - ! - transport grpc-tunnel onetarget - no shutdown - vrf management - tunnel ssl profile ssl_profile - gnmi ssl profile ssl_profile - destination 10.1.1.100 port 10000 - local interface Management1 port 10001 - target testid100 - ! - transport grpc-tunnel serialandtargets - no shutdown - vrf management - tunnel ssl profile ssl_profile - gnmi ssl profile ssl_profile - destination 10.1.1.100 port 10000 - local interface Management1 port 10001 - target serial-number testid10 testid20 - ! - transport grpc-tunnel serialonly - target serial-number - provider eos-native -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi-new-flags.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi-new-flags.md deleted file mode 100644 index dd270376d1a..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi-new-flags.md +++ /dev/null @@ -1,64 +0,0 @@ -# management-gnmi-new-flags - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) - - [Management API gNMI](#management-api-gnmi) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -### Management API gNMI - -#### Management API gNMI Summary - -| Transport | SSL Profile | VRF | Notification Timestamp | ACL | Port | -| --------- | ----------- | --- | ---------------------- | --- | ---- | -| MGMT | gnmi | MGMT | send-time | acl1 | 6030 | -| mytransport | - | - | send-time | acl1 | 6032 | - -Provider eos-native is configured. - -#### Management API gNMI Device Configuration - -```eos -! -management api gnmi - transport grpc MGMT - ssl profile gnmi - vrf MGMT - ip access-group acl1 - notification timestamp send-time - ! - transport grpc mytransport - port 6032 - ip access-group acl1 - notification timestamp send-time - provider eos-native -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi.md deleted file mode 100644 index 4bc256017ef..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-gnmi.md +++ /dev/null @@ -1,61 +0,0 @@ -# management-gnmi - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces) - - [Management API gNMI](#management-api-gnmi) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -``` - -### Management API gNMI - -#### Management API gNMI Summary - -| Transport | SSL Profile | VRF | Notification Timestamp | ACL | Port | -| --------- | ----------- | --- | ---------------------- | --- | ---- | -| MGMT | - | MGMT | last-change-time | ACL-GNMI | 6030 | -| MONITORING | - | MONITORING | last-change-time | - | 6031 | - -Provider eos-native is configured. - -#### Management API gNMI Device Configuration - -```eos -! -management api gnmi - transport grpc MGMT - vrf MGMT - ip access-group ACL-GNMI - ! - transport grpc MONITORING - port 6031 - vrf MONITORING - provider eos-native -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-interfaces.md b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-interfaces.md deleted file mode 100644 index 181cb0e18f7..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/management-interfaces.md +++ /dev/null @@ -1,57 +0,0 @@ -# management-interfaces - -## Table of Contents - -- [Management](#management) - - [Management Interfaces](#management-interfaces-1) - -## Management - -### Management Interfaces - -#### Management Interfaces Summary - -##### IPv4 - -| Management Interface | Description | Type | VRF | IP Address | Gateway | -| -------------------- | ----------- | ---- | --- | ---------- | ------- | -| Management0 | - | oob | default | 10.0.0.0 | - | -| Management1 | OOB_MANAGEMENT | oob | MGMT | 10.73.255.122/24 | 10.73.255.2 | -| Management42 | - | oob | default | - | - | -| Vlan123 | inband_management | inband | default | 10.73.0.123/24 | 10.73.0.1 | - -##### IPv6 - -| Management Interface | Description | Type | VRF | IPv6 Address | IPv6 Gateway | -| -------------------- | ----------- | ---- | --- | ------------ | ------------ | -| Management0 | - | oob | default | - | - | -| Management1 | OOB_MANAGEMENT | oob | MGMT | - | - | -| Management42 | - | oob | default | - | - | -| Vlan123 | inband_management | inband | default | - | - | - -#### Management Interfaces Device Configuration - -```eos -! -interface Management0 - mac-address 00:1c:73:00:00:aa - ip address 10.0.0.0 -! -interface Management1 - description OOB_MANAGEMENT - vrf MGMT - ip address 10.73.255.122/24 -! -interface Management42 - shutdown - speed forced 1000full - no lldp transmit - no lldp receive - lldp tlv transmit ztp vlan 666 -! -interface Vlan123 - description inband_management - mtu 1500 - ip address 10.73.0.123/24 - ip virtual-router address 10.73.0.1 -``` diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/host1.cfg b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/host1.cfg index a705ff28115..4f7b7d4c209 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/host1.cfg +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/host1.cfg @@ -124,6 +124,103 @@ vrf instance TENANT_A_PROJECT01 ! vrf instance TENANT_A_PROJECT02 ! +management accounts + password policy AVD_POLICY +! +management api http-commands + protocol https + no protocol http + default-services + protocol https ssl profile SSL_PROFILE + no shutdown + ! + vrf default + no shutdown + ip access-group ACL-API + ipv6 access-group ACL-API6 + ! + vrf MGMT + no shutdown + ip access-group ACL-API + protocol https certificate + +EOF + +EOF +! +management console + idle-timeout 15 +! +management cvx + no shutdown + server host 10.90.224.188 + server host 10.90.224.189 + server host leaf1.atd.lab + source-interface Loopback0 + vrf MGMT +! +management defaults + secret hash md5 +! +management api gnmi + transport grpc MGMT + ssl profile gnmi + vrf MGMT + ip access-group acl1 + notification timestamp send-time + ! + transport grpc mytransport + port 6032 + ip access-group acl1 + notification timestamp send-time + ! + transport grpc-tunnel multipletargets + no shutdown + vrf management + tunnel ssl profile ssl_profile + gnmi ssl profile ssl_profile + destination 10.1.1.100 port 10000 + local interface Management1 port 10001 + target testid1 testid2 testid3 testid4 + ! + transport grpc-tunnel noserialnotargets + ! + transport grpc-tunnel onetarget + shutdown + vrf management + tunnel ssl profile ssl_profile + gnmi ssl profile ssl_profile + destination 10.1.1.100 port 10000 + local interface Management1 port 10001 + target testid100 + ! + transport grpc-tunnel serialandtargets + no shutdown + vrf management + tunnel ssl profile ssl_profile + gnmi ssl profile ssl_profile + destination 10.1.1.100 port 10000 + local interface Management1 port 10001 + target serial-number testid10 testid20 + ! + transport grpc-tunnel serialonly + target serial-number + provider eos-native +! +management api models + ! + provider smash + path flexCounters + path forwarding/srte/status/fec + path routing6/status + path routing/bgp/export/allPeerAdjRibIn + path routing/status disabled + path tunnel/tunnelFib/entry + ! + provider sysdb + path /Sysdb/sys/logging/config/vrfLoggingHost/mgmt disabled + path cell/1/agent disabled +! radius-server deadtime 10 radius-server attribute 32 include-in-access-req hostname radius-server dynamic-authorization port 1700 @@ -251,11 +348,28 @@ interface Dps1 tcp mss ceiling ipv4 666 ipv6 666 ingress load-interval 42 ! +interface Management0 + mac-address 00:1c:73:00:00:aa + ip address 10.0.0.0 +! interface Management1 description OOB_MANAGEMENT vrf MGMT ip address 10.73.255.122/24 ! +interface Management42 + shutdown + speed forced 1000full + no lldp transmit + no lldp receive + lldp tlv transmit ztp vlan 666 +! +interface Vlan123 + description inband_management + mtu 1500 + ip address 10.73.0.123/24 + ip virtual-router address 10.73.0.1 +! application traffic recognition ! application ipv4 empty-application diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/host2.cfg b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/host2.cfg index f0045107836..f08cd3ee325 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/host2.cfg +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/host2.cfg @@ -6,6 +6,15 @@ dhcp relay server dhcp-relay-server1 server dhcp-relay-server2 ! +management api http-commands + no protocol https + protocol http + no default-services + no shutdown +! +management cvx + shutdown +! management security password encryption reversible aes-256-gcm ! diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-accounts.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-accounts.yml similarity index 93% rename from ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-accounts.yml rename to ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-accounts.yml index a244686dd63..fac57e72522 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-accounts.yml +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-accounts.yml @@ -1,3 +1,4 @@ +--- management_accounts: password: policy: "AVD_POLICY" diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi-grpc-tunnel.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-gnmi.yml similarity index 80% rename from ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi-grpc-tunnel.yml rename to ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-gnmi.yml index 07c63b39f55..c3fbd491be8 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi-grpc-tunnel.yml +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-gnmi.yml @@ -1,9 +1,20 @@ +--- management_api_gnmi: provider: "eos-native" transport: + grpc: + - name: MGMT + ssl_profile: gnmi + vrf: MGMT + notification_timestamp: "send-time" + ip_access_group: acl1 + - name: mytransport + notification_timestamp: "send-time" + ip_access_group: acl1 + port: "6032" grpc_tunnels: - name: onetarget - shutdown: false + shutdown: true tunnel_ssl_profile: ssl_profile gnmi_ssl_profile: ssl_profile vrf: management @@ -54,4 +65,4 @@ management_api_gnmi: - name: noserialnotargets - name: serialonly target: - use_serial_number: true + use_serial_number: true \ No newline at end of file diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-api-http.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-http.yml similarity index 59% rename from ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-api-http.yml rename to ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-http.yml index 144c6775517..81060c17ed3 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-api-http.yml +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-http.yml @@ -1,4 +1,4 @@ -# Management API HTTP +--- management_api_http: enable_http: false enable_https: true @@ -7,17 +7,9 @@ management_api_http: enable_vrfs: - name: default access_group: ACL-API + ipv6_access_group: ACL-API6 - name: MGMT access_group: ACL-API protocol_https_certificate: certificate: private_key: - -# Standard ACLs -standard_access_lists: - - name: ACL-API - sequence_numbers: - - sequence: 10 - action: "permit 10.0.0.0/8" - - sequence: 20 - action: "permit 100.0.0.0/8" diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-api-models.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-models.yml similarity index 95% rename from ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-api-models.yml rename to ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-models.yml index 6060c7f7fa4..4a1da3e222e 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-api-models.yml +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-api-models.yml @@ -1,4 +1,4 @@ -# Management API Models +--- management_api_models: providers: - name: smash diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-console.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-console.yml similarity index 90% rename from ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-console.yml rename to ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-console.yml index 7779bc6eda4..1b9b99dc48d 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-console.yml +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-console.yml @@ -1,2 +1,3 @@ +--- management_console: idle_timeout: 15 diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-cvx.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-cvx.yml similarity index 86% rename from ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-cvx.yml rename to ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-cvx.yml index fac3d13d4db..ba5b329755e 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-cvx.yml +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-cvx.yml @@ -1,4 +1,4 @@ -### MANAGEMENT CVX ### +--- management_cvx: shutdown: false server_hosts: diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-defaults.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-defaults.yml similarity index 61% rename from ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-defaults.yml rename to ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-defaults.yml index 548b893cb69..dfec6efb27a 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-defaults.yml +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-defaults.yml @@ -1,4 +1,4 @@ -### Management Defaults ### +--- management_defaults: secret: hash: md5 diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-interfaces.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-interfaces.yml similarity index 95% rename from ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-interfaces.yml rename to ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-interfaces.yml index c23d7afbcd5..c5e40f9991d 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-interfaces.yml +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host1/management-interfaces.yml @@ -1,4 +1,4 @@ -### Management Interfaces ### +--- management_interfaces: - name: Management1 description: OOB_MANAGEMENT diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host2/management-api-http.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host2/management-api-http.yml new file mode 100644 index 00000000000..b800704a142 --- /dev/null +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host2/management-api-http.yml @@ -0,0 +1,5 @@ +--- +management_api_http: + enable_http: true + enable_https: false + default_services: false diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host2/management-cvx.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host2/management-cvx.yml new file mode 100644 index 00000000000..3613207f81a --- /dev/null +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/host2/management-cvx.yml @@ -0,0 +1,3 @@ +--- +management_cvx: + shutdown: true diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi-new-flags.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi-new-flags.yml deleted file mode 100644 index 0ac30a04b72..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi-new-flags.yml +++ /dev/null @@ -1,13 +0,0 @@ -management_api_gnmi: - provider: "eos-native" - transport: - grpc: - - name: MGMT - ssl_profile: gnmi - vrf: MGMT - notification_timestamp: "send-time" - ip_access_group: acl1 - - name: mytransport - notification_timestamp: "send-time" - ip_access_group: acl1 - port: "6032" diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi.yml b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi.yml deleted file mode 100644 index bbab734b2f0..00000000000 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/management-gnmi.yml +++ /dev/null @@ -1,10 +0,0 @@ -management_api_gnmi: - provider: eos-native - transport: - grpc: - - name: MGMT - vrf: MGMT - ip_access_group: ACL-GNMI - - name: MONITORING - vrf: MONITORING - port: 6031 diff --git a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/hosts.ini b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/hosts.ini index 14d027d2504..e4a60ef3090 100644 --- a/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/hosts.ini +++ b/ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/hosts.ini @@ -56,16 +56,6 @@ mcs-client loopbacks-interfaces mac-address-table maintenance -management-accounts -management-api-http -management-cvx -management-api-models -management-gnmi -management-gnmi-new-flags -management-gnmi-grpc-tunnel -management-console -management-defaults -management-interfaces management-security management-ssh management-ssh-custom-cipher diff --git a/python-avd/pyavd/_eos_cli_config_gen/j2templates/eos/management-api-models.j2 b/python-avd/pyavd/_eos_cli_config_gen/j2templates/eos/management-api-models.j2 index 371b7885d4e..f7b2534f8a8 100644 --- a/python-avd/pyavd/_eos_cli_config_gen/j2templates/eos/management-api-models.j2 +++ b/python-avd/pyavd/_eos_cli_config_gen/j2templates/eos/management-api-models.j2 @@ -8,7 +8,7 @@ ! management api models {% for provider in management_api_models.providers | arista.avd.natural_sort('name') %} -{% if provider.name is arista.avd.defined and provider.name | lower in ['smash', 'sysdb'] %} +{% if provider.name is arista.avd.defined and provider.name %} ! provider {{ provider.name }} {% for path in provider.paths | arista.avd.natural_sort('path') %}