ansible-frr

ansible-frr

An Ansible role to install/configure FRR

NOTE: FRRouting (FRR) is an IP routing protocol suite for Linux and Unix platforms which includes protocol daemons for BGP, IS-IS, LDP, OSPF, PIM, and RIP.

Requirements

Role Variables

defaults/main.yml

Dependencies

Example Playbook

Supported Routing Protocols

Protocol	Implemented	Notes
BGP	X	Only initial config
OSPF	X	Only initial config

BGP

Enable BGP

To enable BGP routing, make sure that bgpd: true is configured under:

frr_daemons:
  bgpd: false
  isisd: false
  ldpd: false
  nhrpd: false
  ospf6d: false
  ospfd: false
  pimd: false
  ripd: false
  ripngd: false
  zebra: true

Configuring BGP

In order to configure BGP, define the following based on your requirements:

frr_bgp: []
  # asns:
  #   65000:
  #     log_neighbor_changes: true
  #     neighbors:
  #       192.168.250.11:
  #         asn: 65000
  #         default_originate: false
  #         description: node1
  #         next_hop_self: true
  #       192.168.250.12:
  #         asn: 65000
  #         default_originate: false
  #         description: node2
  #         next_hop_self: true
  #     networks:
  #       - "{{ frr_router_id }}/32"
  #       - "{{ hostvars[inventory_hostname]['ansible_enp0s8']['ipv4']['address'] }}/24"
  #     redistribute: []
  #       # - bgp
  #       # - connected
  #       # - kernel
  #       # - ospf
  #       # - static

Example BGP

Below is an example of a BGP configuration:

frr_bgp:
  asns:
    65000:
      log_neighbor_changes: true
      neighbors:
        192.168.250.11:
          asn: 65000
          default_originate: false
          description: node1
          next_hop_self: true
        192.168.250.12:
          asn: 65000
          default_originate: false
          description: node2
          next_hop_self: true
      networks:
        - "{{ frr_router_id }}/32"
        - "{{ hostvars[inventory_hostname]['ansible_enp0s8']['ipv4']['address'] }}/24"
        - "{{ hostvars[inventory_hostname]['ansible_enp0s9']['ipv4']['address'] }}/24"
        - "{{ hostvars[inventory_hostname]['ansible_enp0s10']['ipv4']['address'] }}/24"
        - "{{ hostvars[inventory_hostname]['ansible_enp0s16']['ipv4']['address'] }}/24"

Below is an example of a BGP summary based on the above configuration:

BGP table version is 13, local router ID is 1.1.1.1
Status codes: s suppressed, d damped, h history, * valid, > best, = multipath,
              i internal, r RIB-failure, S Stale, R Removed
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
*> 1.1.1.1/32       0.0.0.0                  0         32768 i
*>i2.2.2.2/32       192.168.250.11           0    100      0 i
*>i3.3.3.3/32       192.168.250.12           0    100      0 i
*> 192.168.10.0     0.0.0.0                  0         32768 i
*>i192.168.11.0     192.168.250.11           0    100      0 i
*>i192.168.12.0     192.168.250.12           0    100      0 i
*> 192.168.20.0     0.0.0.0                  0         32768 i
*>i192.168.21.0     192.168.250.11           0    100      0 i
*>i192.168.22.0     192.168.250.12           0    100      0 i
*> 192.168.30.0     0.0.0.0                  0         32768 i
*>i192.168.31.0     192.168.250.11           0    100      0 i
*>i192.168.32.0     192.168.250.12           0    100      0 i
* i192.168.250.0    192.168.250.11           0    100      0 i
* i                 192.168.250.12           0    100      0 i
*>                  0.0.0.0                  0         32768 i

Displayed  13 routes and 15 total paths

OSPF

Enable OSPF

To enable OSPF routing, make sure that ospfd: true is configured under:

frr_daemons:
  bgpd: false
  isisd: false
  ldpd: false
  nhrpd: false
  ospf6d: false
  ospfd: false
  pimd: false
  ripd: false
  ripngd: false
  zebra: true

Configuring OSPF

In order to configure OSPF, define the following based on your requirements:

frr_ospf: []
  # areas:
  #   0:
  #     networks:
  #       - "{{ frr_router_id }}/32"
  #   1:
  #     networks:
  #       - "{{ hostvars[inventory_hostname]['ansible_enp0s8']['ipv4']['address'] }}/24"
  #   2:
  #     networks:
  #       - "{{ hostvars[inventory_hostname]['ansible_enp0s9']['ipv4']['address'] }}/24"
  # log_adjacency_changes: true
  # passive_interfaces: []
  #   # - default
  # redistribute: []
  #   # - bgp
  #   # - connected
  #   # - kernel
  #   # - ospf
  #   # - static

Vagrant

Included is a ready to go BGP CLOS fabric based on the below diagram. Ready to be spun up in Vagrant.

Node	Function	ASN	Loopback	enp0s8	enp0s9	enp0s10	enp0s16	enp0s17
Spine1	Spine	65011	10.0.10.1/32	192.168.250.11/24	192.168.1.0/31	192.168.1.2/31	192.168.1.4/31	192.168.1.6/31
Spine2	Spine	65012	10.0.10.2/32	192.168.250.12/24	192.168.2.0/31	192.168.2.2/31	192.168.2.4/31	192.168.2.6/31
Leaf1	Leaf	65021	10.0.20.3/32	192.168.250.21/24	192.168.1.1/31	192.168.10.0/31	192.168.2.5/31
Leaf2	Leaf	65022	10.0.20.4/32	192.168.250.22/24	192.168.1.3/31	192.168.10.2/31	192.168.2.7/31
Leaf3	Leaf	65023	10.0.20.5/32	192.168.250.23/24	192.168.1.5/31	192.168.20.0/31	192.168.2.1/31
Leaf4	Leaf	65024	10.0.20.6/32	192.168.250.24/24	192.168.1.7/31	192.168.20.2/31	192.168.2.3/31
Compute1	Compute	65031	10.0.30.1/32	192.168.250.31/24	192.168.10.1/31	192.168.10.3/31
Compute2	Compute	65032	10.0.30.2/32	192.168.250.32/24	192.168.20.1/31	192.168.20.3/31

Spinning Up

In order to spin up this environment simply do the following:

cd Vagrant
vagrant up

Once all of the nodes are spun up your routing topology should be similar to below:

sh ip route bgp
Codes: K - kernel route, C - connected, S - static, R - RIP,
       O - OSPF, I - IS-IS, B - BGP, P - PIM, N - NHRP, T - Table,
       v - VNC, V - VNC-Direct,
       > - selected route, * - FIB route

B>* 10.0.10.2/32 [20/0] via 192.168.1.3, enp0s10, 02:53:22
B>* 10.0.20.3/32 [20/0] via 192.168.1.1, enp0s9, 02:43:37
B>* 10.0.20.4/32 [20/0] via 192.168.1.3, enp0s10, 02:53:22
B>* 10.0.20.5/32 [20/0] via 192.168.1.5, enp0s16, 02:53:22
B>* 10.0.20.6/32 [20/0] via 192.168.1.7, enp0s17, 02:53:22
B>* 10.0.30.1/32 [20/0] via 192.168.1.3, enp0s10, 02:53:22
B>* 10.0.30.2/32 [20/0] via 192.168.1.7, enp0s17, 02:53:22
B>* 192.168.2.0/31 [20/0] via 192.168.1.5, enp0s16, 02:53:22
B>* 192.168.2.2/31 [20/0] via 192.168.1.7, enp0s17, 02:53:22
B>* 192.168.2.4/31 [20/0] via 192.168.1.1, enp0s9, 02:43:37
B>* 192.168.2.6/31 [20/0] via 192.168.1.3, enp0s10, 02:53:22
B>* 192.168.10.0/31 [20/0] via 192.168.1.1, enp0s9, 02:43:37
B>* 192.168.10.2/31 [20/0] via 192.168.1.3, enp0s10, 02:53:22
B>* 192.168.20.0/31 [20/0] via 192.168.1.5, enp0s16, 02:53:22
B>* 192.168.20.2/31 [20/0] via 192.168.1.7, enp0s17, 02:53:22

Monitoring

We have included some basic monitoring of BGP stats and system stats. We are spinning up an InfluxDB container on compute1 and a Grafana container on compute2 as part of the provisioning. All of the VMs are running Telegraf which is running some scripts to capture BGP stats and then sending to InfluxDB. We can then visualize the status using Grafana by connecting to the Grafana Web UI which again, is a Docker container running on compute2.

Grafana

Accessing Grafana

Using your browser of choice connect to the Grafana Web UI and use admin:admin to login.

Configuring InfluxDB Data Source

Add InfluxDB as a data source by providing the following in the config:

Name: influxdb
Type: InfluxDB
URL: http://192.168.250.31:8086
Database: telegraf

Grafana Dashboards

We have included some Grafana dashboards which can be imported in the Vagrant/dashboards folder.

Tearing down

When you are done testing you can simply tear everything down by:

scripts/cleanup.sh

License

MIT

Author Information

Larry Smith Jr.

timrots / ansible-frr Goto Github PK

ansible-frr's Introduction