Multi LAN edge deployment, one global, two private¶
The following page explains how to set up a multi LAN edge node deployment connecting to a remote node, with one LAN in the global VRF and two LANs in private VRFs (“Red” and “Blue”).
![graph {
rankdir=TB;
newrank=true;
fontname="Arial";
splines=ortho;
bgcolor="transparent";
nodesep=0.25;
ranksep=0.75;
node [
shape=box,
style="filled,rounded",
fontname="Arial",
fontsize=12
];
edge [
penwidth=1.5,
fontname="Arial",
fontsize=10
];
lan_global [label=<LAN: <font color="#333333">198.51.100.0/24</font><br align="left"/>LAN: <font color="#333333">2001:db8::/64</font><br align="left"/>>, fillcolor="#FFFFFF", color="#666666"];
lan_red [label=<LAN: <font color="#C0392B">172.16.1.0/24</font><br align="left"/>LAN: <font color="#C0392B">fe00:1::/64</font><br align="left"/>>, fillcolor="#FFE0E0", color="#C0392B"];
lan_blue [label=<LAN: <font color="#2E86C1">172.16.2.0/24</font><br align="left"/>LAN: <font color="#2E86C1">fe00:2::/64</font><br align="left"/>>, fillcolor="#D3E4F4", color="#2E86C1"];
subgraph cluster_dc0 {
label="Node: dc0";
labelloc="t";
style="filled,rounded";
fillcolor="#E9F7EF";
color="#1E8449";
dc0_eth2 [
label=<<b>Interface: eth2</b><br align="left"/> Aliases: <font color="#2E86C1">private2</font><br align="left"/> VRF: <font color="#2E86C1">Blue</font><br align="left"/> IPv4: <font color="#2E86C1">10.0.2.1/24</font><br align="left"/> IPv6: <font color="#2E86C1">fd00:2::1/64</font><br align="left"/> Keep on shutdown: <font color="#2E86C1">✗</font><br align="left"/>>,
fillcolor="#D3E4F4",
color="#2E86C1"
];
dc0_eth1 [
label=<<b>Interface: eth1</b><br align="left"/> Aliases: <font color="#C0392B">private1</font><br align="left"/> VRF: <font color="#C0392B">Red</font><br align="left"/> IPv4: <font color="#C0392B">10.0.1.1/24</font><br align="left"/> IPv6: <font color="#C0392B">fd00:1::1/64</font><br align="left"/> Keep on shutdown: <font color="#C0392B">✗</font><br align="left"/>>,
fillcolor="#FFE0E0",
color="#C0392B"
];
dc0_eth0 [
label=<<b>Interface: eth0</b><br align="left"/> Aliases: <font color="#333333">public</font><br align="left"/> VRF: <font color="#333333">Global</font><br align="left"/> IPv4: <font color="#333333">203.0.113.1/24</font><br align="left"/> IPv6: <font color="#333333">2001:db8:1::1/64</font><br align="left"/> Keep on shutdown: <font color="#333333">✔ (IPv4/IPv6)</font><br align="left"/>>,
fillcolor="#FFFFFF",
color="#666666"
];
dc0_peer [
label=<<b>Peer: Default</b><br align="left"/> Mode: <font color="#D4A90D">Listen</font><br align="left"/>>,
shape=box,
fillcolor="#FEF9E7",
color="#F1C40F"
];
dc0_eth0 -- dc0_peer;
dc0_eth1 -- dc0_peer [color="#C0392B"];
dc0_eth2 -- dc0_peer [color="#2E86C1"];
}
subgraph cluster_cpe0 {
label="Node: cpe0 ";
labelloc="b";
style="filled,rounded";
fillcolor="#E9F7EF";
color="#1E8449";
cpe0_route_global1 [
label=<<b>Route: 0.0.0.0/0</b><br align="left"/> VRF: <font color="#333333">Global</font><br align="left"/> Nexthop: <font color="#333333">Default</font><br align="left"/> Preference: <font color="#333333">500</font><br align="left"/>>,
style="filled",
fillcolor="#FFFFFF",
color="#666666"
];
cpe0_route_global2 [
label=<<b>Route: ::/0</b><br align="left"/> VRF: <font color="#333333">Global</font><br align="left"/> Nexthop: <font color="#333333">Default</font><br align="left"/> Preference: <font color="#333333">500</font><br align="left"/>>,
style="filled",
fillcolor="#FFFFFF",
color="#666666"
];
cpe0_route_red1 [
label=<<b>Route: 10.0.1.0/24</b><br align="left"/> VRF: <font color="#C0392B">Red</font><br align="left"/> Nexthop: <font color="#C0392B">Default</font><br align="left"/> Preference: <font color="#C0392B">500</font><br align="left"/>>,
style="filled",
fillcolor="#FFE0E0",
color="#C0392B"
];
cpe0_route_red2 [
label=<<b>Route: fd00:1::/64</b><br align="left"/> VRF: <font color="#C0392B">Red</font><br align="left"/> Nexthop: <font color="#C0392B">Default</font><br align="left"/> Preference: <font color="#C0392B">500</font><br align="left"/>>,
style="filled",
fillcolor="#FFE0E0",
color="#C0392B"
];
cpe0_route_blue1 [
label=<<b>Route: 10.0.2.0/24</b><br align="left"/> VRF: <font color="#2E86C1">Blue</font><br align="left"/> Nexthop: <font color="#2E86C1">Default</font><br align="left"/> Preference: <font color="#2E86C1">500</font><br align="left"/>>,
style="filled",
fillcolor="#D3E4F4",
color="#2E86C1"
];
cpe0_route_blue2 [
label=<<b>Route: fd00:2::/64</b><br align="left"/> VRF: <font color="#2E86C1">Blue</font><br align="left"/> Nexthop: <font color="#2E86C1">Default</font><br align="left"/> Preference: <font color="#2E86C1">500</font><br align="left"/>>,
style="filled",
fillcolor="#D3E4F4",
color="#2E86C1"
];
cpe0_nexthop [
label=<<b>Nexthop: Peer</b><br align="left"/> Peer: <font color="#333333">Default</font><br align="left"/>>,
style="filled",
fillcolor="#FFFFFF",
color="#666666"
];
cpe0_peer [
label=<<b>Peer: Default</b><br align="left"/> Mode: <font color="#D4A90D">Connect</font><br align="left"/> Interface: <font color="#D4A90D">eth3</font><br align="left"/> Interface: <font color="#D4A90D">eth4</font><br align="left"/> Remote (node): <font color="#D4A90D">dc0</font><br align="left"/> Preference: <font color="#D4A90D">500</font><br align="left"/>>,
fillcolor="#FEF9E7",
color="#F1C40F"
];
cpe0_eth0 [
label=<<b>Interface: eth0</b><br align="left"/> Aliases: <font color="#333333">lan0</font><br align="left"/> VRF: <font color="#333333">Global</font><br align="left"/> IPv4: <font color="#333333">198.51.100.1/24</font><br align="left"/> IPv6: <font color="#333333">2001:db8::1/64</font><br align="left"/> Keep on shutdown: <font color="#333333">✗</font><br align="left"/>>,
fillcolor="#FFFFFF",
color="#666666"
];
cpe0_eth1 [
label=<<b>Interface: eth1</b><br align="left"/> Aliases: <font color="#C0392B">lan1</font><br align="left"/> VRF: <font color="#C0392B">Red</font><br align="left"/> IPv4: <font color="#C0392B">172.16.1.1/24</font><br align="left"/> IPv6: <font color="#C0392B">fe00:1::1/64</font><br align="left"/> Keep on shutdown: <font color="#C0392B">✗</font><br align="left"/>>,
fillcolor="#FFE0E0",
color="#C0392B"
];
cpe0_eth2 [
label=<<b>Interface: eth2</b><br align="left"/> Aliases: <font color="#2E86C1">lan2</font><br align="left"/> VRF: <font color="#2E86C1">Blue</font><br align="left"/> IPv4: <font color="#2E86C1">172.16.2.1/24</font><br align="left"/> IPv6: <font color="#2E86C1">fe00:2::1/64</font><br align="left"/> Keep on shutdown: <font color="#2E86C1">✗</font><br align="left"/>>,
fillcolor="#D3E4F4",
color="#2E86C1"
];
cpe0_eth3 [
label=<<b>Interface: eth3</b><br align="left"/> Aliases: <font color="#484D4D">wan0</font><br align="left"/> VRF: <font color="#484D4D">No VRF</font><br align="left"/> IPv4: <font color="#484D4D">DHCP</font><br align="left"/> Keep on shutdown: <font color="#333333">✔ (IPv4)</font><br align="left"/>>
];
cpe0_eth4 [
label=<<b>Interface: eth4</b><br align="left"/> Aliases: <font color="#484D4D">wan1</font><br align="left"/> VRF: <font color="#484D4D">No VRF</font><br align="left"/> IPv4: <font color="#484D4D">DHCP</font><br align="left"/> Keep on shutdown: <font color="#333333">✗</font><br align="left"/>>
];
cpe0_peer -- cpe0_eth3 [weight=100];
cpe0_peer -- cpe0_eth4 [weight=100];
cpe0_route_global1 -- cpe0_route_red1 -- cpe0_route_blue1 -- cpe0_eth2 [style=invis, weight=50];
cpe0_route_global2 -- cpe0_route_red2 -- cpe0_route_blue2 -- cpe0_eth3 [style=invis, weight=100];
cpe0_route_global1 -- cpe0_eth0 [constraint=false];
cpe0_route_global2 -- cpe0_eth0 [constraint=false];
cpe0_route_red1 -- cpe0_eth1 [constraint=false, color="#C0392B"];
cpe0_route_red2 -- cpe0_eth1 [constraint=false, color="#C0392B"];
cpe0_route_blue1 -- cpe0_eth2 [constraint=false, color="#2E86C1"];
cpe0_route_blue2 -- cpe0_eth2 [constraint=false, color="#2E86C1"];
cpe0_route_global1 -- cpe0_nexthop [constraint=false];
cpe0_route_global2 -- cpe0_nexthop [constraint=false];
cpe0_route_red1 -- cpe0_nexthop [constraint=false, color="#C0392B"];
cpe0_route_red2 -- cpe0_nexthop [constraint=false, color="#C0392B"];
cpe0_route_blue1 -- cpe0_nexthop [constraint=false, color="#2E86C1"];
cpe0_route_blue2 -- cpe0_nexthop [constraint=false, color="#2E86C1"];
cpe0_nexthop -- cpe0_peer [constraint=false];
}
dc0_peer -- cpe0_peer [color="#F1C40F"];
cpe0_eth0 -- lan_global;
cpe0_eth1 -- lan_red [color="#C0392B"];
cpe0_eth2 -- lan_blue [color="#2E86C1"];
{ rank=same; cpe0_route_global1 -- cpe0_route_global2 -- cpe0_nexthop -- cpe0_peer [style=invis] }
{ rank=same; cpe0_route_red1 -- cpe0_route_red2 [style=invis] }
{ rank=same; cpe0_route_blue1 -- cpe0_route_blue2 [style=invis] }
{ rank=same; cpe0_eth0 -- cpe0_eth1 -- cpe0_eth2 -- cpe0_eth3 -- cpe0_eth4 [style=invis] }
}](../../_images/graphviz-e461c26d48ef1b026806b105fc8327ec4ef1269e.png)
Instructions¶
Follow the instructions to set up a core node with an interface in a private VRF, but use the alias
private1on the first private VRF interface, and add an additional private VRF interface with the following configuration:Name:
eth2Aliases:
private2VRF:
BlueIPv4:
10.0.2.1/24IPv6:
fd00:2::1/64Keep on shutdown disabled
Create a new node record on the management server with the name
cpe0.Add the following interfaces to the newly created node:
Name:
eth0Aliases:
lan0VRF:
GlobalIPv4:
198.51.100.1/24IPv6:
2001:db8::1/64Keep on shutdown disabled
Name:
eth1Aliases:
lan1VRF:
RedIPv4:
172.16.1.1/24IPv6:
fe00:1::1/64Keep on shutdown disabled
Name:
eth2Aliases:
lan2VRF:
BlueIPv4:
172.16.2.1/24IPv6:
fe00:2::1/64Keep on shutdown disabled
Name:
eth3Aliases:
wan0VRF:
No VRFIPv4:
DHCPKeep on shutdown enabled
Name:
eth4Aliases:
wan1VRF:
No VRFIPv4:
DHCPKeep on shutdown disabled
Next, add a peer to the node:
Name:
DefaultInterface:
eth3(Preference:500)Interface:
eth4(Preference:500)Remote (node):
dc0(Preference:500)
Then, add a nexthop to the node:
Type:
PeerPeer:
Default
Finally, add six routes to the node:
Destination:
0.0.0.0/0VRF:
GlobalNexthop:
Default(Preference:500)
Destination:
::/0VRF:
GlobalNexthop:
Default(Preference:500)
Destination:
10.0.1.0/24VRF:
RedNexthop:
Default(Preference:500)
Destination:
fd00:1::/64VRF:
RedNexthop:
Default(Preference:500)
Destination:
10.0.2.0/24VRF:
BlueNexthop:
Default(Preference:500)
Destination:
fd00:2::/64VRF:
BlueNexthop:
Default(Preference:500)
You now have a complete multi LAN edge node configuration forming a peer connection with a remote node, with one LAN in the global VRF and two other LANs in private VRFs.