Cisco – VPLS

no service slave-log
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime localtime show-timezone
service password-encryption
service counters max age 10
no service dhcp
!
hostname SAS-A
!
boot-start-marker
boot-end-marker
!
!
vrf definition SYNC
description SYNC
rd 64574:1
route-target export 64574:1
route-target import 64574:1
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
vrf definition TEST
description TEST
rd 65001:1
route-target export 65001:1
route-target import 65001:1
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
logging count
logging snmp-authfail
logging userinfo
logging queue-limit 100
logging buffered 512000
logging console informational
!
aaa new-model
!
aaa session-id common
process cpu threshold type total rising 80 interval 5 falling 20 interval 5
platform ip cef load-sharing ip-only
clock timezone CET 1 0
clock summer-time SUM recurring last Sun Mar 2:00 last Sun Oct 3:00
!
!
!
!
!
fhrp version vrrp v3
!
ip vrf management
!
!
no ip bootp server
no ip domain-lookup
ip domain-name migratie.test

ipv6 unicast-routing
vtp mode off
!
flow monitor copp-fnf-cef-receive
record platform-original ipv4 full
!
!
!
mpls label protocol ldp
mpls ldp graceful-restart
mpls ldp session protection for backbone
mpls ldp label
allocate global prefix-list local-label-alloc
no mpls ldp advertise-labels
mpls ldp advertise-labels for backbone
!
!
!
!
!
!
!
!
!
!
!
!
!
!
logging event link-status default
!
!
archive
log config
logging enable
notify syslog contenttype plaintext
hidekeys
file prompt quiet
!
spanning-tree mode rapid-pvst
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
port-channel load-balance src-mixed-ip-port
!
redundancy
main-cpu
auto-sync running-config
mode sso
!

vlan internal allocation policy ascending
vlan access-log ratelimit 2000
!
lldp run
!
ip tcp path-mtu-discovery
!
class-map match-any class-copp-icmp-redirect-unreachable
class-map match-all class-copp-glean
class-map match-all class-copp-receive
class-map match-all class-copp-options
class-map match-all class-copp-broadcast
class-map match-all class-copp-mcast-acl-bridged
class-map match-all class-copp-slb
class-map match-all class-copp-mtu-fail
class-map match-all class-copp-ttl-fail
class-map match-all class-copp-arp-snooping
class-map match-any class-copp-mcast-copy
class-map match-any class-copp-ip-connected
class-map match-any class-copp-match-igmp
match access-group name acl-copp-match-igmp
class-map match-all class-copp-unknown-protocol
class-map match-any class-copp-vacl-log
class-map match-all class-copp-mcast-ipv6-control
class-map match-any class-copp-match-pimv6-data
match access-group name acl-copp-match-pimv6-data
class-map match-any class-copp-mcast-punt
class-map match-all class-copp-unsupp-rewrite
class-map match-all class-copp-ucast-egress-acl-bridged
class-map match-all class-copp-ip-admission
class-map match-any class-copp-dpss-divert
class-map match-all class-copp-service-insertion
class-map match-all class-copp-mac-pbf
class-map match-any class-copp-match-mld
match access-group name acl-copp-match-mld
class-map match-all class-copp-ucast-ingress-acl-bridged
class-map match-all class-copp-dhcp-snooping
class-map match-all class-copp-wccp
class-map match-all class-copp-nd
class-map match-any class-copp-ipv6-connected
class-map match-all class-copp-mcast-rpf-fail
class-map match-any class-copp-match-ndv6hl
match access-group name acl-copp-match-ndv6hl
class-map match-any class-copp-ucast-rpf-fail
class-map match-all class-copp-mcast-ip-control
class-map match-any class-copp-match-pim-data
match access-group name acl-copp-match-pim-data
class-map match-any class-copp-match-ndv6
match access-group name acl-copp-match-ndv6
class-map match-any class-copp-mcast-v4-data-on-routedPort
class-map match-any class-copp-mcast-v6-data-on-routedPort
!
policy-map policy-default-autocopp
class class-copp-mcast-v4-data-on-routedPort
police rate 10 pps burst 1 packets conform-action drop exceed-action drop
class class-copp-mcast-v6-data-on-routedPort
police rate 10 pps burst 1 packets conform-action drop exceed-action drop
class class-copp-dpss-divert
police rate 1000 pps burst 1000 packets conform-action transmit exceed-action drop
class class-copp-match-mld
police rate 5000 pps burst 5000 packets conform-action set-discard-class-transmit 48 exceed-action drop
class class-copp-match-igmp
police rate 5000 pps burst 5000 packets conform-action set-discard-class-transmit 48 exceed-action drop
class class-copp-icmp-redirect-unreachable
police rate 100 pps burst 10 packets conform-action transmit exceed-action drop
class class-copp-ucast-rpf-fail
police rate 100 pps burst 10 packets conform-action transmit exceed-action drop
class class-copp-vacl-log
police rate 2000 pps burst 1 packets conform-action transmit exceed-action drop
class class-copp-mcast-punt
police rate 1000 pps burst 256 packets conform-action transmit exceed-action drop
class class-copp-mcast-copy
police rate 1000 pps burst 256 packets conform-action transmit exceed-action drop
class class-copp-ip-connected
police rate 1000 pps burst 256 packets conform-action transmit exceed-action drop
class class-copp-ipv6-connected
police rate 1000 pps burst 256 packets conform-action transmit exceed-action drop
class class-copp-match-pim-data
police rate 1000 pps burst 1000 packets conform-action transmit exceed-action drop
class class-copp-match-pimv6-data
police rate 1000 pps burst 1000 packets conform-action transmit exceed-action drop
class class-copp-match-ndv6hl
police rate 10 pps burst 1 packets conform-action drop exceed-action drop
class class-copp-match-ndv6
police rate 1000 pps burst 1000 packets conform-action set-discard-class-transmit 48 exceed-action drop
!
pseudowire-class VPLS
encapsulation mpls
load-balance flow
flow-label enable
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Null0
no ip unreachables
!
interface Loopback0
vrf forwarding SYNC
ip address 10.31.160.126 255.255.255.248
!
interface Loopback1
vrf forwarding TEST
ip address 10.1.1.1 255.255.255.255
!
!
interface Port-channel20.53
encapsulation dot1Q 53
vrf forwarding SYNC
ip address 192.0.1.0 255.255.255.254
!
interface Tunnel1
ip address 192.0.2.1 255.255.255.252
no ip redirects
ip ospf authentication message-digest
ip ospf network point-to-point
ip ospf cost 20
mpls ip
tunnel source 192.0.1.0
tunnel destination 192.0.1.1
tunnel vrf SYNC
!
interface Vlan1
no ip address
shutdown
!
interface Vlan3050
no ip address
!
interface Vlan3051
no ip address
!
interface Vlan3052
no ip address
!
interface Vlan3053
no ip address
!
interface Vlan3054
no ip address
!
interface Vlan3055
no ip address
!
interface Vlan3056
no ip address
!
interface Vlan3057
no ip address
!
interface Vlan3058
no ip address
!
interface Vlan3059
no ip address
!
interface Vlan3500
no ip address
!
interface Vlan3501
no ip address
!
interface Vlan3502
no ip address
!
interface Vlan3503
no ip address
!
interface Vlan3504
no ip address
!
interface Vlan3505
no ip address
!
interface Vlan3506
no ip address
!
interface Vlan3507
no ip address
!
interface Vlan3508
no ip address
!
interface Vlan3509
no ip address
!
interface Vlan3510
no ip address
!
interface Vlan3511
no ip address
!
interface Vlan3512
no ip address
!
interface Vlan3513
no ip address
!
interface Vlan3514
no ip address
!
interface Vlan3515
no ip address
!
interface Vlan3516
no ip address
!
interface Vlan3517
no ip address
!
interface Vlan3518
no ip address
!
interface Vlan3519
no ip address
!
interface Vlan3520
no ip address
!
interface Vlan3521
no ip address
!
interface Vlan3522
no ip address
!
interface Vlan3523
no ip address
!
interface Vlan3524
no ip address
!
interface Vlan3525
no ip address
!
interface Vlan3526
no ip address
!
interface Vlan3527
no ip address
!
interface Vlan3528
no ip address
!
interface Vlan3529
no ip address
!
interface Vlan3530
no ip address
!
interface Vlan3531
no ip address
!
interface Vlan3532
no ip address
!
interface Vlan3533
no ip address
!
interface Vlan3534
no ip address
!
interface Vlan3535
no ip address
!
interface Vlan3536
no ip address
!
interface Vlan3537
no ip address
!
interface Vlan3538
no ip address
!
interface Vlan3539
no ip address
!
interface Vlan3540
no ip address
!
interface Vlan3541
no ip address
!
interface Vlan3542
no ip address
!
interface Vlan3543
no ip address
!
interface Vlan3544
no ip address
!
interface Vlan3545
no ip address
!
interface Vlan3546
no ip address
!
interface Vlan3547
no ip address
!
interface Vlan3548
no ip address
!
interface Vlan3549
no ip address
!
interface Vlan3550
no ip address
!
interface Vlan3551
no ip address
!
interface Vlan3552
no ip address
!
interface Vlan3553
no ip address
!
interface Vlan3554
no ip address
!
interface Vlan3555
no ip address
!
interface Vlan3556
no ip address
!
interface Vlan3557
no ip address
!
interface Vlan3558
no ip address
!
interface Vlan3559
no ip address
!
interface Vlan3560
no ip address
!
interface Vlan3561
no ip address
!
interface Vlan3562
no ip address
!
interface Vlan3563
no ip address
!
interface Vlan3564
no ip address
!
interface Vlan3565
no ip address
!
interface Vlan3566
no ip address
!
interface Vlan3567
no ip address
!
interface Vlan3568
no ip address
!
interface Vlan3569
no ip address
!
interface Vlan3570
no ip address
!
interface Vlan3571
no ip address
!
interface Vlan3572
no ip address
!
interface Vlan3573
no ip address
!
interface Vlan3574
no ip address
!
interface Vlan3575
no ip address
!
interface Vlan3576
no ip address
!
interface Vlan3577
no ip address
!
interface Vlan3578
no ip address
!
interface Vlan3579
no ip address
!
interface Vlan3580
no ip address
!
interface Vlan3581
no ip address
!
interface Vlan3582
no ip address
!
interface Vlan3583
no ip address
!
interface Vlan3584
no ip address
!
interface Vlan3585
no ip address
!
interface Vlan3586
no ip address
!
interface Vlan3587
no ip address
!
interface Vlan3588
no ip address
!
interface Vlan3589
no ip address
!
interface Vlan3590
no ip address
!
interface Vlan3591
no ip address
!
interface Vlan3592
no ip address
!
interface Vlan3593
no ip address
!
interface Vlan3594
no ip address
!
interface Vlan3595
no ip address
!
interface Vlan3596
no ip address
!
interface Vlan3597
no ip address
!
interface Vlan3598
no ip address
!
interface Vlan3599
no ip address
!
interface Virtual-Ethernet1
switchport
switchport mode trunk
switchport trunk allowed vlan 3050-3059,3500-3599
transport vpls mesh
neighbor 192.0.2.2 pw-class VPLS
!
router ospf 1
router-id 192.0.2.1
auto-cost reference-bandwidth 10000
redistribute connected subnets
passive-interface default
no passive-interface Tunnel1
network 192.0.2.0 0.0.0.255 area 0
!
router bgp 65001
bgp router-id 192.0.0.1
bgp log-neighbor-changes
bgp graceful-restart extended
bgp sso route-refresh-enable
neighbor 192.0.2.2 remote-as 65001
neighbor 192.0.2.2 update-source Tunnel1
!
address-family ipv4
redistribute connected
neighbor 192.0.2.2 activate
exit-address-family
!
address-family vpnv4
neighbor 192.0.2.2 activate
neighbor 192.0.2.2 send-community extended
exit-address-family
!
address-family ipv6
exit-address-family
!
address-family vpnv6
neighbor 192.0.2.2 activate
neighbor 192.0.2.2 send-community extended
exit-address-family
!
address-family ipv4 vrf TEST
redistribute connected
exit-address-family
!
no ip forward-protocol nd
no ip http server
no ip http secure-server
!
ip route vrf SYNC 10.31.160.96 255.255.255.248 192.0.1.1 name FNB-SAS-B
ip ssh time-out 60
ip ssh source-interface mgmt0
ip ssh version 2
ip ssh server algorithm mac hmac-sha1
ip ssh server algorithm encryption aes256-cbc
!
ip access-list standard backbone
permit 192.0.2.0 0.0.0.255
!
ip access-list extended acl-copp-match-igmp
permit igmp any any
ip access-list extended acl-copp-match-pim-data
deny pim any host 224.0.0.13
permit pim any any
!
!
!
!
!
!
ipv6 access-list acl-copp-match-mld
permit icmp any any mld-report
permit icmp any any mld-query
permit icmp any any mld-reduction
permit icmp any any 143
!
ipv6 access-list acl-copp-match-ndv6
permit icmp any any nd-na
permit icmp any any nd-ns
permit icmp any any router-advertisement
permit icmp any any router-solicitation
permit icmp any any redirect
!
ipv6 access-list acl-copp-match-ndv6hl
permit icmp any any nd-na hoplimit
permit icmp any any nd-ns hoplimit
permit icmp any any router-advertisement hoplimit
permit icmp any any router-solicitation hoplimit
permit icmp any any redirect hoplimit
!
ipv6 access-list acl-copp-match-pimv6-data
deny 103 any host FF02::D
permit 103 any any
!
control-plane
service-policy input policy-default-autocopp
!
!
vstack
!
line con 0
media-type rj45
line aux 0
line vty 0 4
transport input ssh
line vty 5 1509
transport input ssh
!
diagnostic bootup level minimal
end