Example: interop1: bgp ao authentication¶
r1
hostname r1
vrf def v1
rd 1:1
exit
int eth1
vrf for v1
ipv4 addr 1.1.1.1 255.255.255.0
ipv6 addr 1234::1 ffff::
exit
int lo0
vrf for v1
ipv4 addr 2.2.2.1 255.255.255.255
ipv6 addr 4321::1 ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
exit
router bgp4 1
vrf v1
address uni
local-as 1
router-id 4.4.4.1
neigh 1.1.1.2 remote-as 1
neigh 1.1.1.2 connection pass
neigh 1.1.1.2 authen-type sha1 1
neigh 1.1.1.2 password tester
red conn
exit
router bgp6 1
vrf v1
address uni
local-as 1
router-id 6.6.6.1
neigh 1234::2 remote-as 1
neigh 1234::2 connection pass
neigh 1234::2 authen-type sha1 1
neigh 1234::2 password tester
red conn
exit
r2
hostname r2
ip routing
ipv6 unicast-routing
interface loopback0
ip addr 2.2.2.2 255.255.255.255
ipv6 addr 4321::2/128
exit
interface gigabit1
ip address 1.1.1.2 255.255.255.0
ipv6 address 1234::2/64
no shutdown
exit
key chain kc tcp
key 1
send-id 1
recv-id 1
include-tcp-options
cryptographic-algorithm hmac-sha-1
key-string tester
send-lifetime 00:00:00 Jul 9 2022 infinite
exit
router bgp 1
address-family ipv4 unicast
neighbor 1.1.1.1 remote-as 1
neighbor 1.1.1.1 ao kc include-tcp-options
redistribute connected
address-family ipv6 unicast
neighbor 1234::1 remote-as 1
neighbor 1234::1 ao kc include-tcp-options
redistribute connected
exit
r1 tping 100 10 1.1.1.2 vrf v1
r1 tping 100 10 1234::2 vrf v1
r1 tping 100 120 2.2.2.2 vrf v1 sou lo0
r1 tping 100 120 4321::2 vrf v1 sou lo0
- Install ContainerLab as described here
- Fetch intop1-bgp23 file
- Launch ContainerLab
intop1-bgp23.ymltopology:
containerlab deploy --topo intop1-bgp23.yml
intop1-bgp23.yml topology:
containerlab destroy --topo intop1-bgp23.yml