├── Alexandria-Edges ├── ESG-HBE-01 ├── ESG-HBE-02 ├── ESG-HBE-VPN-GW └── NSX-UDLR-LocalEgress ├── Arista_vEOSs ├── Arista-ToR-01 ├── Arista-ToR-02 ├── Arista-ToR-03 └── Arista-ToR-04 ├── Cairo-Edges ├── CAI-DLR-MEdge-Rack ├── ESG-CAI-01 ├── ESG-CAI-02 ├── ESG-CAI-VPN-GW ├── ESG-w-ToRack01-CAI-01 ├── ESG-w-ToRack01-CAI-02 ├── ESG-w-ToRack02-CAI-03 ├── ESG-w-ToRack02-CAI-04 └── NSX-UDLR-LocalEgress ├── Cisco-CSRs ├── vRouter_DC01 ├── vRouter_DC02 ├── vRouter_Remote03 └── vRouter_WAN_SP ├── README.md └── Scripts ├── Resolve-Clusters.py └── nsx-sdn-lab-upgrade.sh /Alexandria-Edges/ESG-HBE-01: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-1 4 | 19 5 | deployed 6 | datacenter-2 7 | Alexandria Datacenter 8 | default 9 | ESG-HBE-01 10 | NSX-edge-1 11 | true 12 | false 13 | emergency 14 | 15 | 16 | vNic_0 17 | vnic0 18 | 19 | 1500 20 | internal 21 | false 22 | 0 23 | false 24 | true 25 | 26 | 27 | vNic_1 28 | Internal-HBE-Transport 29 | 30 | 31 | 192.168.20.1 32 | 255.255.255.0 33 | 24 34 | 35 | 36 | 1500 37 | internal 38 | true 39 | 1 40 | universalwire-3 41 | HBE-Transport-VXLAN 42 | false 43 | false 44 | 45 | 46 | vNic_2 47 | Uplink-HBE-EdgeNet01 48 | 49 | 50 | 192.168.200.5 51 | 255.255.255.0 52 | 24 53 | 54 | 55 | 1500 56 | uplink 57 | true 58 | 2 59 | dvportgroup-69 60 | DPortGroup-HBE-Edge-Net01 61 | false 62 | true 63 | 64 | 65 | vNic_3 66 | vnic3 67 | 68 | 1500 69 | internal 70 | false 71 | 3 72 | false 73 | true 74 | 75 | 76 | vNic_4 77 | vnic4 78 | 79 | 1500 80 | internal 81 | false 82 | 4 83 | false 84 | true 85 | 86 | 87 | vNic_5 88 | vnic5 89 | 90 | 1500 91 | internal 92 | false 93 | 5 94 | false 95 | true 96 | 97 | 98 | vNic_6 99 | vnic6 100 | 101 | 1500 102 | internal 103 | false 104 | 6 105 | false 106 | true 107 | 108 | 109 | vNic_7 110 | vnic7 111 | 112 | 1500 113 | internal 114 | false 115 | 7 116 | false 117 | true 118 | 119 | 120 | vNic_8 121 | vnic8 122 | 123 | 1500 124 | internal 125 | false 126 | 8 127 | false 128 | true 129 | 130 | 131 | vNic_9 132 | vnic9 133 | 134 | 1500 135 | internal 136 | false 137 | 9 138 | false 139 | true 140 | 141 | 142 | 143 | compact 144 | 145 | 0 146 | 503bd488-4904-dcc4-8b84-71987d53256b 147 | vm-466 148 | up 149 | domain-c7 150 | HBE Cluster 151 | datastore-61 152 | NFS10 153 | host-10 154 | esx01-s2.core.hypervizor.com 155 | group-v3 156 | vm 157 | NSX-edge-1-0 158 | ESG-HBE-01-0 159 | true 160 | edge-1 161 | 162 | domain-c7 163 | HBE Cluster 164 | true 165 | 166 | 167 | datastore-61 168 | NFS10 169 | true 170 | 171 | 172 | true 173 | 174 | 175 | true 176 | admin 177 | 178 | *************************************************************************** 179 | NOTICE TO USERS 180 | 181 | 182 | This computer system is the private property of its owner, whether 183 | individual, corporate or government. It is for authorized use only. 184 | Users (authorized or unauthorized) have no explicit or implicit 185 | expectation of privacy. 186 | 187 | Any or all uses of this system and all files on this system may be 188 | intercepted, monitored, recorded, copied, audited, inspected, and 189 | disclosed to your employer, to authorized site, government, and law 190 | enforcement personnel, as well as authorized officials of government 191 | agencies, both domestic and foreign. 192 | 193 | By using this system, the user consents to such interception, monitoring, 194 | recording, copying, auditing, inspection, and disclosure at the 195 | discretion of such personnel or officials. Unauthorized or improper use 196 | of this system may result in civil and criminal penalties and 197 | administrative or disciplinary action, as appropriate. By continuing to 198 | use this system you indicate your awareness of and consent to these terms 199 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 200 | conditions stated in this warning. 201 | 202 | **************************************************************************** 203 | 99999 204 | 205 | 206 | 207 | 6 208 | false 209 | 210 | true 211 | notice 212 | 213 | 214 | 215 | 216 | 17 217 | false 218 | 219 | false 220 | false 221 | true 222 | true 223 | false 224 | 30 225 | 21600 226 | 30 227 | 60 228 | 10 229 | 10 230 | 120 231 | false 232 | 233 | 234 | accept 235 | false 236 | 237 | 238 | 239 | 131075 240 | 131075 241 | routing 242 | internal_high 243 | true 244 | false 245 | routing 246 | accept 247 | 248 | 249 | ospf 250 | any 251 | any 252 | 253 | 254 | 255 | 256 | 131073 257 | 131073 258 | default rule for ingress traffic 259 | default_policy 260 | true 261 | false 262 | default rule for ingress traffic 263 | accept 264 | 265 | 266 | 267 | 268 | 6 269 | false 270 | 271 | true 272 | notice 273 | 274 | 275 | false 276 | false 277 | false 278 | false 279 | 280 | false 281 | 282 | 0 283 | 10 284 | 285 | 286 | 287 | true 288 | false 289 | 290 | 291 | VMware 292 | VMware 293 | jpg 294 | /api/4.0/edges/edge-1/sslvpn/config/layout/images/portallogo 295 | 56A2D4 296 | 996600 297 | 000000 298 | 999999 299 | FFFFFF 300 | FFFFFF 301 | F5F5F5 302 | 303 | 304 | 305 | 1 306 | 307 | 308 | 309 | 310 | 311 | 312 | 6 313 | false 314 | 16 315 | 316 | any 317 | 318 | 319 | 320 | view-0 321 | vsm-default-view 322 | true 323 | 324 | any 325 | any 326 | 327 | false 328 | 329 | 330 | 331 | false 332 | info 333 | 334 | 335 | 336 | 17 337 | true 338 | 339 | 192.168.200.5 340 | true 341 | 342 | false 343 | info 344 | 345 | 346 | 347 | 348 | 349 | 1500 350 | Backup Static route for ControlVM failure 351 | user 352 | 1 353 | 172.16.0.0/16 354 | 192.168.20.11 355 | 10 356 | 357 | 358 | 359 | 360 | true 361 | 362 | 363 | 51 364 | nssa 365 | 366 | none 367 | 368 | 369 | 370 | 0 371 | normal 372 | 373 | none 374 | 375 | 376 | 377 | 20 378 | nssa 379 | 380 | none 381 | 382 | 383 | 384 | 385 | 386 | 2 387 | 20 388 | 10 389 | 40 390 | 128 391 | 1 392 | true 393 | 394 | 395 | 1 396 | 20 397 | 10 398 | 40 399 | 128 400 | 1 401 | true 402 | 403 | 404 | 405 | true 406 | 407 | 408 | 0 409 | 410 | false 411 | false 412 | false 413 | false 414 | true 415 | 416 | permit 417 | 418 | 419 | 420 | true 421 | false 422 | 423 | 424 | 425 | 6 426 | false 427 | 6 428 | 429 | false 430 | info 431 | 432 | 433 | false 434 | 435 | 436 | 437 | 5 438 | true 439 | tcp 440 | 441 | log.core.hypervizor.com 442 | 443 | 444 | 445 | 446 | 4 447 | false 448 | false 449 | false 450 | 451 | monitor-1 452 | tcp 453 | 5 454 | 15 455 | 3 456 | default_tcp_monitor 457 | 458 | 459 | monitor-2 460 | http 461 | 5 462 | 15 463 | 3 464 | GET 465 | / 466 | default_http_monitor 467 | 468 | 469 | monitor-3 470 | https 471 | 5 472 | 15 473 | 3 474 | GET 475 | / 476 | default_https_monitor 477 | 478 | 479 | false 480 | info 481 | 482 | 483 | 484 | 4 485 | false 486 | 487 | false 488 | info 489 | 490 | 491 | 492 | 4 493 | false 494 | 495 | true 496 | warning 497 | 498 | 499 | 500 | ****** 501 | 502 | 503 | 504 | 505 | 506 | 6 507 | false 508 | 509 | 510 | 511 | false 512 | info 513 | 514 | 515 | 516 | 6 517 | false 518 | 519 | 520 | 6 521 | true 522 | 523 | 524 | 525 | 526 | 527 | true 528 | high 529 | 530 | gatewayServices 531 | false 532 | false 533 | 534 | false 535 | 5666 536 | 537 | 538 | -------------------------------------------------------------------------------- /Alexandria-Edges/ESG-HBE-02: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-2 4 | 22 5 | deployed 6 | datacenter-2 7 | Alexandria Datacenter 8 | default 9 | ESG-HBE-02 10 | NSX-edge-2 11 | true 12 | false 13 | emergency 14 | 15 | 16 | vNic_0 17 | vnic0 18 | 19 | 1500 20 | internal 21 | false 22 | 0 23 | false 24 | true 25 | 26 | 27 | vNic_1 28 | Internal-HBE-Transport 29 | 30 | 31 | 192.168.20.2 32 | 255.255.255.0 33 | 24 34 | 35 | 36 | 1500 37 | internal 38 | true 39 | 1 40 | universalwire-3 41 | HBE-Transport-VXLAN 42 | false 43 | false 44 | 45 | 46 | vNic_2 47 | Uplink-HBE-EdgeNet01 48 | 49 | 50 | 192.168.200.6 51 | 255.255.255.0 52 | 24 53 | 54 | 55 | 1500 56 | uplink 57 | true 58 | 2 59 | dvportgroup-69 60 | DPortGroup-HBE-Edge-Net01 61 | false 62 | true 63 | 64 | 65 | vNic_3 66 | vnic3 67 | 68 | 1500 69 | internal 70 | false 71 | 3 72 | false 73 | true 74 | 75 | 76 | vNic_4 77 | vnic4 78 | 79 | 1500 80 | internal 81 | false 82 | 4 83 | false 84 | true 85 | 86 | 87 | vNic_5 88 | vnic5 89 | 90 | 1500 91 | internal 92 | false 93 | 5 94 | false 95 | true 96 | 97 | 98 | vNic_6 99 | vnic6 100 | 101 | 1500 102 | internal 103 | false 104 | 6 105 | false 106 | true 107 | 108 | 109 | vNic_7 110 | vnic7 111 | 112 | 1500 113 | internal 114 | false 115 | 7 116 | false 117 | true 118 | 119 | 120 | vNic_8 121 | vnic8 122 | 123 | 1500 124 | internal 125 | false 126 | 8 127 | false 128 | true 129 | 130 | 131 | vNic_9 132 | vnic9 133 | 134 | 1500 135 | internal 136 | false 137 | 9 138 | false 139 | true 140 | 141 | 142 | 143 | compact 144 | 145 | 0 146 | 503b4567-df87-b0d9-7953-db1b6d0a0c00 147 | vm-467 148 | up 149 | domain-c7 150 | HBE Cluster 151 | datastore-61 152 | NFS10 153 | host-10 154 | esx01-s2.core.hypervizor.com 155 | group-v3 156 | vm 157 | NSX-edge-2-0 158 | ESG-HBE-02-0 159 | true 160 | edge-2 161 | 162 | domain-c7 163 | HBE Cluster 164 | true 165 | 166 | 167 | datastore-62 168 | NFS11 169 | true 170 | 171 | 172 | true 173 | 174 | 175 | true 176 | admin 177 | 178 | *************************************************************************** 179 | NOTICE TO USERS 180 | 181 | 182 | This computer system is the private property of its owner, whether 183 | individual, corporate or government. It is for authorized use only. 184 | Users (authorized or unauthorized) have no explicit or implicit 185 | expectation of privacy. 186 | 187 | Any or all uses of this system and all files on this system may be 188 | intercepted, monitored, recorded, copied, audited, inspected, and 189 | disclosed to your employer, to authorized site, government, and law 190 | enforcement personnel, as well as authorized officials of government 191 | agencies, both domestic and foreign. 192 | 193 | By using this system, the user consents to such interception, monitoring, 194 | recording, copying, auditing, inspection, and disclosure at the 195 | discretion of such personnel or officials. Unauthorized or improper use 196 | of this system may result in civil and criminal penalties and 197 | administrative or disciplinary action, as appropriate. By continuing to 198 | use this system you indicate your awareness of and consent to these terms 199 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 200 | conditions stated in this warning. 201 | 202 | **************************************************************************** 203 | 99999 204 | 205 | 206 | 207 | 6 208 | false 209 | 210 | true 211 | notice 212 | 213 | 214 | 215 | 216 | 19 217 | false 218 | 219 | false 220 | false 221 | true 222 | true 223 | false 224 | 30 225 | 21600 226 | 30 227 | 60 228 | 10 229 | 10 230 | 120 231 | false 232 | 233 | 234 | accept 235 | false 236 | 237 | 238 | 239 | 131075 240 | 131075 241 | routing 242 | internal_high 243 | true 244 | false 245 | routing 246 | accept 247 | 248 | 249 | ospf 250 | any 251 | any 252 | 253 | 254 | 255 | 256 | 131073 257 | 131073 258 | default rule for ingress traffic 259 | default_policy 260 | true 261 | false 262 | default rule for ingress traffic 263 | accept 264 | 265 | 266 | 267 | 268 | 6 269 | false 270 | 271 | true 272 | notice 273 | 274 | 275 | false 276 | false 277 | false 278 | false 279 | 280 | false 281 | 282 | 0 283 | 10 284 | 285 | 286 | 287 | true 288 | false 289 | 290 | 291 | VMware 292 | VMware 293 | jpg 294 | /api/4.0/edges/edge-2/sslvpn/config/layout/images/portallogo 295 | 56A2D4 296 | 996600 297 | 000000 298 | 999999 299 | FFFFFF 300 | FFFFFF 301 | F5F5F5 302 | 303 | 304 | 305 | 1 306 | 307 | 308 | 309 | 310 | 311 | 312 | 6 313 | false 314 | 16 315 | 316 | any 317 | 318 | 319 | 320 | view-0 321 | vsm-default-view 322 | true 323 | 324 | any 325 | any 326 | 327 | false 328 | 329 | 330 | 331 | false 332 | info 333 | 334 | 335 | 336 | 20 337 | true 338 | 339 | 192.168.200.6 340 | true 341 | 342 | false 343 | info 344 | 345 | 346 | 347 | 348 | 349 | 1500 350 | Backup Static route for ControlVM failure 351 | user 352 | 1 353 | 172.16.0.0/16 354 | 192.168.20.11 355 | 10 356 | 357 | 358 | 359 | 360 | true 361 | 362 | 363 | 51 364 | nssa 365 | 366 | none 367 | 368 | 369 | 370 | 0 371 | normal 372 | 373 | none 374 | 375 | 376 | 377 | 20 378 | nssa 379 | 380 | none 381 | 382 | 383 | 384 | 385 | 386 | 2 387 | 20 388 | 10 389 | 40 390 | 128 391 | 1 392 | true 393 | 394 | 395 | 1 396 | 20 397 | 10 398 | 40 399 | 128 400 | 1 401 | true 402 | 403 | 404 | 405 | true 406 | 407 | 408 | 0 409 | 410 | false 411 | false 412 | false 413 | false 414 | true 415 | 416 | permit 417 | 418 | 419 | 420 | true 421 | false 422 | 423 | 424 | 425 | 6 426 | false 427 | 6 428 | 429 | false 430 | info 431 | 432 | 433 | false 434 | 435 | 436 | 437 | 5 438 | true 439 | tcp 440 | 441 | log.core.hypervizor.com 442 | 443 | 444 | 445 | 446 | 4 447 | false 448 | false 449 | false 450 | 451 | monitor-1 452 | tcp 453 | 5 454 | 15 455 | 3 456 | default_tcp_monitor 457 | 458 | 459 | monitor-2 460 | http 461 | 5 462 | 15 463 | 3 464 | GET 465 | / 466 | default_http_monitor 467 | 468 | 469 | monitor-3 470 | https 471 | 5 472 | 15 473 | 3 474 | GET 475 | / 476 | default_https_monitor 477 | 478 | 479 | false 480 | info 481 | 482 | 483 | 484 | 4 485 | false 486 | 487 | false 488 | info 489 | 490 | 491 | 492 | 4 493 | false 494 | 495 | true 496 | warning 497 | 498 | 499 | 500 | ****** 501 | 502 | 503 | 504 | 505 | 506 | 6 507 | false 508 | 509 | 510 | 511 | false 512 | info 513 | 514 | 515 | 516 | 6 517 | true 518 | 519 | 520 | 521 | 6 522 | false 523 | 524 | 525 | 526 | 527 | true 528 | high 529 | 530 | gatewayServices 531 | false 532 | false 533 | 534 | false 535 | 5666 536 | 537 | 538 | -------------------------------------------------------------------------------- /Alexandria-Edges/NSX-UDLR-LocalEgress: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-a9cd7497-f0dc-455b-945d-ac47639cf17e 4 | 233 5 | deployed 6 | default 7 | NSX-UDLR-LocalEgress 8 | NSX-edge-a9cd7497-f0dc-455b-945d-ac47639cf17e 9 | false 10 | false 11 | emergency 12 | 13 | compact 14 | 15 | 0 16 | 503bf9c8-6aa2-19bc-9931-ffabe2d68aaf 17 | vm-465 18 | domain-c7 19 | HBE Cluster 20 | datastore-61 21 | NFS10 22 | host-10 23 | esx01-s2.core.hypervizor.com 24 | group-v3 25 | vm 26 | NSX-edge-a9cd7497-f0dc-455b-945d-ac47639cf17e-0 27 | edge-a9cd7497-f0dc-455b-945d-ac47639cf17e-0-NSX-UDLR-LocalEgress 28 | true 29 | 30 | 1000 31 | 32 | 33 | 512 34 | 35 | edge-a9cd7497-f0dc-455b-945d-ac47639cf17e 36 | 37 | domain-c7 38 | HBE Cluster 39 | true 40 | 41 | 42 | datastore-61 43 | NFS10 44 | true 45 | 46 | 47 | true 48 | 49 | 50 | false 51 | admin 52 | 53 | *************************************************************************** 54 | NOTICE TO USERS 55 | 56 | 57 | This computer system is the private property of its owner, whether 58 | individual, corporate or government. It is for authorized use only. 59 | Users (authorized or unauthorized) have no explicit or implicit 60 | expectation of privacy. 61 | 62 | Any or all uses of this system and all files on this system may be 63 | intercepted, monitored, recorded, copied, audited, inspected, and 64 | disclosed to your employer, to authorized site, government, and law 65 | enforcement personnel, as well as authorized officials of government 66 | agencies, both domestic and foreign. 67 | 68 | By using this system, the user consents to such interception, monitoring, 69 | recording, copying, auditing, inspection, and disclosure at the 70 | discretion of such personnel or officials. Unauthorized or improper use 71 | of this system may result in civil and criminal penalties and 72 | administrative or disciplinary action, as appropriate. By continuing to 73 | use this system you indicate your awareness of and consent to these terms 74 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 75 | conditions stated in this warning. 76 | 77 | **************************************************************************** 78 | 99999 79 | 80 | 81 | 82 | 224 83 | false 84 | 85 | 86 | 87 | 228 88 | false 89 | 90 | false 91 | false 92 | true 93 | true 94 | false 95 | 30 96 | 3600 97 | 30 98 | 60 99 | 10 100 | 10 101 | 120 102 | false 103 | 104 | 105 | deny 106 | false 107 | 108 | 109 | 110 | 131075 111 | 131075 112 | routing 113 | internal_high 114 | true 115 | false 116 | routing 117 | accept 118 | 119 | 120 | ospf 121 | any 122 | any 123 | 124 | 125 | 126 | 127 | 131073 128 | 131073 129 | default rule for ingress traffic 130 | default_policy 131 | true 132 | false 133 | default rule for ingress traffic 134 | deny 135 | 136 | 137 | 138 | 139 | 228 140 | true 141 | 142 | 192.168.20.11 143 | true 144 | 145 | false 146 | info 147 | 148 | 149 | 150 | 151 | 152 | 153 | true 154 | 192.168.20.12 155 | 192.168.20.11 156 | 157 | 158 | 51 159 | nssa 160 | 161 | none 162 | 163 | 164 | 165 | 0 166 | normal 167 | 168 | none 169 | 170 | 171 | 172 | 20 173 | nssa 174 | 175 | none 176 | 177 | 178 | 179 | 180 | 181 | 3 182 | 20 183 | 10 184 | 40 185 | 128 186 | 1 187 | true 188 | 189 | 190 | 191 | true 192 | 193 | 194 | 0 195 | 196 | false 197 | false 198 | false 199 | false 200 | true 201 | 202 | permit 203 | 204 | 205 | 206 | true 207 | false 208 | 209 | 210 | 211 | 223 212 | false 213 | 214 | 215 | 216 | false 217 | info 218 | 219 | 220 | 221 | 223 222 | false 223 | 224 | 225 | 224 226 | false 227 | 15 228 | 229 | false 230 | info 231 | 232 | 233 | false 234 | 235 | 236 | 237 | 238 | true 239 | high 240 | 241 | distributedRouter 242 | true 243 | 221 244 | 245 | vNic_0 246 | vnic0 247 | 248 | 1500 249 | 0 250 | 251 | 252 | 253 | 138800000002/vNic_2 254 | Uplink-CAI-Transport 255 | 256 | 257 | 192.168.10.11 258 | 255.255.255.0 259 | 24 260 | 261 | 262 | 1500 263 | uplink 264 | true 265 | false 266 | 2 267 | universalwire-2 268 | CAI-Transport-VXLAN 269 | 270 | 271 | 138800000003/vNic_3 272 | Uplinl-HBE-Transport 273 | 274 | 275 | 192.168.20.11 276 | 255.255.255.0 277 | 24 278 | 279 | 280 | 1500 281 | uplink 282 | true 283 | false 284 | 3 285 | universalwire-3 286 | HBE-Transport-VXLAN 287 | 288 | 289 | 13880000000a 290 | We-Tier-ULS 291 | 292 | 293 | 172.16.10.1 294 | 255.255.255.0 295 | 24 296 | 297 | 298 | 1500 299 | internal 300 | true 301 | false 302 | 10 303 | universalwire-1 304 | Web-Tier-ULS 305 | 306 | 307 | 13880000000b 308 | App-Tier-ULS 309 | 310 | 311 | 172.16.20.1 312 | 255.255.255.0 313 | 24 314 | 315 | 316 | 1500 317 | internal 318 | true 319 | false 320 | 11 321 | universalwire-5 322 | App-Tier-ULS 323 | 324 | 325 | 13880000000c 326 | DB-Tier-ULS 327 | 328 | 329 | 172.16.30.1 330 | 255.255.255.0 331 | 24 332 | 333 | 334 | 1500 335 | internal 336 | true 337 | false 338 | 12 339 | universalwire-4 340 | DB-Tier-ULS 341 | 342 | 343 | 13880000000d 344 | vCD-HV-Tenant 345 | 346 | 347 | 172.16.50.1 348 | 255.255.255.0 349 | 24 350 | 351 | 352 | 1500 353 | internal 354 | true 355 | false 356 | 13 357 | universalwire-29 358 | vCD-HV-Tenant-ULS 359 | 360 | 361 | 5000 362 | 53ba33fc-2759-489f-94a5-e85bd5990669 363 | 364 | false 365 | 5666 366 | 367 | true 368 | 369 | -------------------------------------------------------------------------------- /Arista_vEOSs/Arista-ToR-01: -------------------------------------------------------------------------------- 1 | Arista-ToR-01#sh run 2 | ! Command: show running-config 3 | ! device: Arista-ToR-01 (vEOS, EOS-4.15.4F) 4 | ! 5 | ! boot system flash:/vEOS-lab.swi 6 | ! 7 | transceiver qsfp default-mode 4x10G 8 | ! 9 | hostname Arista-ToR-01 10 | ! 11 | snmp-server community arista rw 12 | ! 13 | spanning-tree mode mstp 14 | ! 15 | no aaa root 16 | ! 17 | username admin role network-admin secret 5 $1$VtCBsFJ6$c6zfdzg9WtZPeeWuFaooU/ 18 | ! 19 | vlan 50 20 | ! 21 | interface Ethernet1 22 | description Downlink to ESXi Host Uplink 1 23 | mtu 1600 24 | switchport access vlan 50 25 | ! 26 | interface Ethernet2 27 | description Arista vUplink to Spine 28 | mtu 1600 29 | no switchport 30 | ip address 192.168.150.5/24 31 | ! 32 | interface Ethernet3 33 | ! 34 | interface Ethernet4 35 | ! 36 | interface Ethernet5 37 | ! 38 | interface Ethernet6 39 | ! 40 | interface Ethernet7 41 | ! 42 | interface Ethernet8 43 | ! 44 | interface Ethernet9 45 | ! 46 | interface Management1 47 | description Management Interface 48 | ! 49 | interface Vlan50 50 | mtu 1600 51 | ip address 192.168.50.1/24 52 | ! 53 | ip routing 54 | ! 55 | router ospf 50 56 | router-id 192.168.150.5 57 | redistribute connected 58 | redistribute static 59 | area 0.0.0.150 nssa 60 | network 192.168.50.0/24 area 0.0.0.150 61 | network 192.168.150.0/24 area 0.0.0.150 62 | max-lsa 12000 63 | ! 64 | management ssh 65 | idle-timeout 20 66 | authentication mode password 67 | ! 68 | ! 69 | end 70 | -------------------------------------------------------------------------------- /Arista_vEOSs/Arista-ToR-02: -------------------------------------------------------------------------------- 1 | Arista-ToR-02#sh run 2 | ! Command: show running-config 3 | ! device: Arista-ToR-02 (vEOS, EOS-4.15.4F) 4 | ! 5 | ! boot system flash:/vEOS-lab.swi 6 | ! 7 | transceiver qsfp default-mode 4x10G 8 | ! 9 | hostname Arista-ToR-02 10 | ! 11 | snmp-server community arista rw 12 | ! 13 | spanning-tree mode mstp 14 | ! 15 | no aaa root 16 | ! 17 | username admin role network-admin secret 5 $1$QBcDRAQl$SOhd49xVrby0ic/B9t4ta1 18 | ! 19 | vlan 60 20 | ! 21 | interface Ethernet1 22 | description Dwonlink to ESXi Host Uplink2 23 | mtu 1600 24 | switchport access vlan 60 25 | ! 26 | interface Ethernet2 27 | description Arista vUplink to Spine 28 | mtu 1600 29 | no switchport 30 | ip address 192.168.150.6/24 31 | ! 32 | interface Ethernet3 33 | ! 34 | interface Ethernet4 35 | ! 36 | interface Ethernet5 37 | ! 38 | interface Ethernet6 39 | ! 40 | interface Ethernet7 41 | ! 42 | interface Ethernet8 43 | ! 44 | interface Ethernet9 45 | ! 46 | interface Management1 47 | description Management Interface 48 | ! 49 | interface Vlan60 50 | mtu 1600 51 | ip address 192.168.60.1/24 52 | ! 53 | ip routing 54 | ! 55 | router ospf 60 56 | router-id 192.168.150.6 57 | redistribute connected 58 | redistribute static 59 | area 0.0.0.150 nssa 60 | network 192.168.60.0/24 area 0.0.0.150 61 | network 192.168.150.0/24 area 0.0.0.150 62 | max-lsa 12000 63 | ! 64 | management ssh 65 | idle-timeout 20 66 | authentication mode password 67 | ! 68 | ! 69 | end 70 | -------------------------------------------------------------------------------- /Arista_vEOSs/Arista-ToR-03: -------------------------------------------------------------------------------- 1 | Arista-ToR-03#sh run 2 | ! Command: show running-config 3 | ! device: Arista-ToR-03 (vEOS, EOS-4.15.4F) 4 | ! 5 | ! boot system flash:/vEOS-lab.swi 6 | ! 7 | transceiver qsfp default-mode 4x10G 8 | ! 9 | hostname Arista-ToR-03 10 | ! 11 | snmp-server community arista rw 12 | ! 13 | spanning-tree mode mstp 14 | ! 15 | no aaa root 16 | ! 17 | username admin role network-admin secret 5 $1$yaFLQ8Ee$FDAG6h3WVBl4ghLKxmsYx/ 18 | ! 19 | vlan 70 20 | ! 21 | interface Ethernet1 22 | description Downlink to ESXi Host Uplink 1 23 | mtu 1600 24 | switchport access vlan 70 25 | ! 26 | interface Ethernet2 27 | description Arista vUplink to Spine 28 | mtu 1600 29 | no switchport 30 | ip address 192.168.150.7/24 31 | ! 32 | interface Management1 33 | description Management Interface 34 | ! 35 | interface Vlan70 36 | mtu 1600 37 | ip address 192.168.70.1/24 38 | ! 39 | ip routing 40 | ! 41 | router ospf 70 42 | router-id 192.168.150.7 43 | redistribute connected 44 | redistribute static 45 | area 0.0.0.150 nssa 46 | network 192.168.70.0/24 area 0.0.0.150 47 | network 192.168.150.0/24 area 0.0.0.150 48 | max-lsa 12000 49 | ! 50 | management ssh 51 | authentication mode password 52 | ! 53 | ! 54 | end 55 | -------------------------------------------------------------------------------- /Arista_vEOSs/Arista-ToR-04: -------------------------------------------------------------------------------- 1 | Arista-ToR-04#sh run 2 | ! Command: show running-config 3 | ! device: Arista-ToR-04 (vEOS, EOS-4.15.4F) 4 | ! 5 | ! boot system flash:/vEOS-lab.swi 6 | ! 7 | transceiver qsfp default-mode 4x10G 8 | ! 9 | hostname Arista-ToR-04 10 | ! 11 | snmp-server community arista rw 12 | ! 13 | spanning-tree mode mstp 14 | ! 15 | no aaa root 16 | ! 17 | username admin role network-admin secret 5 $1$fJS6wI00$DTP6kXCS0O/OPfdwVVGrK. 18 | ! 19 | vlan 80 20 | ! 21 | interface Ethernet1 22 | description Downlink to ESXi Hst Uplink 2 23 | mtu 1600 24 | switchport access vlan 80 25 | ! 26 | interface Ethernet2 27 | description Arista vUplink to Spine 28 | mtu 1600 29 | no switchport 30 | ip address 192.168.150.8/24 31 | ! 32 | interface Management1 33 | description Management Interface 34 | ! 35 | interface Vlan80 36 | mtu 1600 37 | ip address 192.168.80.1/24 38 | ! 39 | ip routing 40 | ! 41 | router ospf 80 42 | router-id 192.168.150.8 43 | redistribute connected 44 | redistribute static 45 | area 0.0.0.150 nssa 46 | network 192.168.80.0/24 area 0.0.0.150 47 | network 192.168.150.0/24 area 0.0.0.150 48 | max-lsa 12000 49 | ! 50 | management ssh 51 | authentication mode password 52 | ! 53 | ! 54 | end 55 | -------------------------------------------------------------------------------- /Cairo-Edges/CAI-DLR-MEdge-Rack: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-26 4 | 16 5 | deployed 6 | datacenter-2 7 | Cairo Datacenter 8 | default 9 | CAI-DLR-MEdge-Rack 10 | NSX-edge-26 11 | false 12 | false 13 | emergency 14 | 15 | compact 16 | 17 | 0 18 | 5016e56e-925f-d0d9-83c2-d11bd23c8f39 19 | vm-696 20 | up 21 | domain-c253 22 | CAI Edge Cluster 23 | datastore-82 24 | NFS03 25 | host-277 26 | esx03-s1.core.hypervizor.com 27 | group-v3 28 | vm 29 | NSX-edge-26-0 30 | CAI-DLR-MEdge-Rack-0 31 | true 32 | edge-26 33 | 34 | domain-c253 35 | CAI Edge Cluster 36 | true 37 | 38 | 39 | datastore-83 40 | NFS04 41 | true 42 | 43 | 44 | host-277 45 | esx03-s1.core.hypervizor.com 46 | true 47 | 48 | 49 | group-v3 50 | vm 51 | true 52 | 53 | 54 | true 55 | 56 | 57 | true 58 | admin 59 | 60 | *************************************************************************** 61 | NOTICE TO USERS 62 | 63 | 64 | This computer system is the private property of its owner, whether 65 | individual, corporate or government. It is for authorized use only. 66 | Users (authorized or unauthorized) have no explicit or implicit 67 | expectation of privacy. 68 | 69 | Any or all uses of this system and all files on this system may be 70 | intercepted, monitored, recorded, copied, audited, inspected, and 71 | disclosed to your employer, to authorized site, government, and law 72 | enforcement personnel, as well as authorized officials of government 73 | agencies, both domestic and foreign. 74 | 75 | By using this system, the user consents to such interception, monitoring, 76 | recording, copying, auditing, inspection, and disclosure at the 77 | discretion of such personnel or officials. Unauthorized or improper use 78 | of this system may result in civil and criminal penalties and 79 | administrative or disciplinary action, as appropriate. By continuing to 80 | use this system you indicate your awareness of and consent to these terms 81 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 82 | conditions stated in this warning. 83 | 84 | **************************************************************************** 85 | 99999 86 | 87 | 88 | 89 | 5 90 | true 91 | tcp 92 | 93 | log.core.hypervizor.com 94 | 95 | 96 | 97 | 98 | 9 99 | false 100 | 101 | false 102 | false 103 | true 104 | true 105 | false 106 | 30 107 | 21600 108 | 30 109 | 60 110 | 10 111 | 10 112 | 120 113 | false 114 | 115 | 116 | deny 117 | false 118 | 119 | 120 | 121 | 131077 122 | 131077 123 | routing 124 | internal_high 125 | true 126 | false 127 | routing 128 | accept 129 | 130 | 131 | ospf 132 | any 133 | any 134 | 135 | 136 | 137 | 138 | 131076 139 | 131076 140 | default rule for ingress traffic 141 | default_policy 142 | true 143 | false 144 | default rule for ingress traffic 145 | deny 146 | 147 | 148 | 149 | 150 | 10 151 | true 152 | 153 | 192.168.11.11 154 | true 155 | 156 | false 157 | info 158 | 159 | 160 | 161 | 162 | 163 | 164 | true 165 | 192.168.11.12 166 | 192.168.11.11 167 | 168 | 169 | 51 170 | nssa 171 | 172 | none 173 | 174 | 175 | 176 | 150 177 | nssa 178 | 179 | none 180 | 181 | 182 | 183 | 184 | 185 | 2 186 | 150 187 | 10 188 | 40 189 | 128 190 | 1 191 | true 192 | 193 | 194 | 195 | true 196 | 197 | 198 | 0 199 | 200 | false 201 | false 202 | false 203 | false 204 | true 205 | 206 | permit 207 | 208 | 209 | 210 | true 211 | false 212 | 213 | 214 | 215 | 5 216 | false 217 | 218 | 219 | 220 | false 221 | info 222 | 223 | 224 | 225 | 5 226 | false 227 | 228 | 229 | 5 230 | false 231 | 6 232 | 233 | false 234 | info 235 | 236 | 237 | false 238 | 239 | 240 | 241 | 242 | true 243 | high 244 | 245 | distributedRouter 246 | false 247 | 248 | vNic_0 249 | mgmtInterface 250 | 251 | 1500 252 | 0 253 | dvportgroup-18 254 | DPortGroup-CAI-VM-Management-Networks 255 | 256 | 257 | 258 | 271000000002/vNic_2 259 | Uplink-CAI-Transport--VXLAN-2-Local-Multi-Edge 260 | 261 | 262 | 192.168.11.11 263 | 255.255.255.0 264 | 24 265 | 266 | 267 | 1500 268 | uplink 269 | true 270 | false 271 | 2 272 | virtualwire-5 273 | CAI-Transport--VXLAN-2-Local-MEdge 274 | 275 | 276 | 27100000000a 277 | LIF-CAI-MEdge-App-LS 278 | 279 | 280 | 172.16.150.1 281 | 255.255.255.0 282 | 24 283 | 284 | 285 | 1500 286 | internal 287 | true 288 | false 289 | 10 290 | virtualwire-6 291 | CAI-MEdge-App-LS 292 | 293 | 294 | 10000 295 | be6c1ad8-8a29-4582-b6f0-4a035d8d011c 296 | 297 | false 298 | 5666 299 | 300 | 301 | -------------------------------------------------------------------------------- /Cairo-Edges/ESG-CAI-01: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-1 4 | 38 5 | deployed 6 | datacenter-2 7 | Cairo Datacenter 8 | default 9 | ESG-CAI-01 10 | NSX-edge-1 11 | true 12 | false 13 | emergency 14 | 15 | 16 | vNic_0 17 | vnic0 18 | 19 | 1500 20 | internal 21 | false 22 | 0 23 | false 24 | true 25 | 26 | 27 | vNic_1 28 | Internal-CAI-Transport 29 | 30 | 31 | 192.168.10.1 32 | 255.255.255.0 33 | 24 34 | 35 | 36 | 1500 37 | internal 38 | true 39 | 1 40 | universalwire-2 41 | CAI-Transport-VXLAN 42 | false 43 | false 44 | 45 | 46 | vNic_2 47 | Uplink-CAI-EdgeNet01 48 | 49 | 50 | 192.168.100.5 51 | 255.255.255.0 52 | 24 53 | 54 | 55 | 1500 56 | uplink 57 | true 58 | 2 59 | dvportgroup-86 60 | DPortGroup-CAI-Edge-Net01 61 | false 62 | true 63 | 64 | 65 | vNic_3 66 | vnic3 67 | 68 | 1500 69 | internal 70 | false 71 | 3 72 | false 73 | true 74 | 75 | 76 | vNic_4 77 | vnic4 78 | 79 | 1500 80 | internal 81 | false 82 | 4 83 | false 84 | true 85 | 86 | 87 | vNic_5 88 | vnic5 89 | 90 | 1500 91 | internal 92 | false 93 | 5 94 | false 95 | true 96 | 97 | 98 | vNic_6 99 | vnic6 100 | 101 | 1500 102 | internal 103 | false 104 | 6 105 | false 106 | true 107 | 108 | 109 | vNic_7 110 | vnic7 111 | 112 | 1500 113 | internal 114 | false 115 | 7 116 | false 117 | true 118 | 119 | 120 | vNic_8 121 | vnic8 122 | 123 | 1500 124 | internal 125 | false 126 | 8 127 | false 128 | true 129 | 130 | 131 | vNic_9 132 | vnic9 133 | 134 | 1500 135 | internal 136 | false 137 | 9 138 | false 139 | true 140 | 141 | 142 | 143 | compact 144 | 145 | 0 146 | 50166aee-015b-0d96-34bc-0a9220166931 147 | vm-690 148 | up 149 | domain-c253 150 | CAI Edge Cluster 151 | datastore-19 152 | NFS01 153 | host-277 154 | esx03-s1.core.hypervizor.com 155 | group-v3 156 | vm 157 | NSX-edge-1-0 158 | ESG-CAI-01-0 159 | true 160 | edge-1 161 | 162 | domain-c253 163 | CAI Edge Cluster 164 | true 165 | 166 | 167 | datastore-20 168 | NFS02 169 | true 170 | 171 | 172 | true 173 | 174 | 175 | true 176 | admin 177 | 178 | *************************************************************************** 179 | NOTICE TO USERS 180 | 181 | 182 | This computer system is the private property of its owner, whether 183 | individual, corporate or government. It is for authorized use only. 184 | Users (authorized or unauthorized) have no explicit or implicit 185 | expectation of privacy. 186 | 187 | Any or all uses of this system and all files on this system may be 188 | intercepted, monitored, recorded, copied, audited, inspected, and 189 | disclosed to your employer, to authorized site, government, and law 190 | enforcement personnel, as well as authorized officials of government 191 | agencies, both domestic and foreign. 192 | 193 | By using this system, the user consents to such interception, monitoring, 194 | recording, copying, auditing, inspection, and disclosure at the 195 | discretion of such personnel or officials. Unauthorized or improper use 196 | of this system may result in civil and criminal penalties and 197 | administrative or disciplinary action, as appropriate. By continuing to 198 | use this system you indicate your awareness of and consent to these terms 199 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 200 | conditions stated in this warning. 201 | 202 | **************************************************************************** 203 | 99999 204 | 205 | 206 | 207 | 6 208 | false 209 | 210 | true 211 | notice 212 | 213 | 214 | 215 | 216 | 26 217 | false 218 | 219 | false 220 | false 221 | true 222 | true 223 | false 224 | 30 225 | 21600 226 | 30 227 | 60 228 | 10 229 | 10 230 | 120 231 | false 232 | 233 | 234 | accept 235 | false 236 | 237 | 238 | 239 | 131075 240 | 131075 241 | routing 242 | internal_high 243 | true 244 | false 245 | routing 246 | accept 247 | 248 | 249 | ospf 250 | any 251 | any 252 | 253 | 254 | 255 | 256 | 131073 257 | 131073 258 | default rule for ingress traffic 259 | default_policy 260 | true 261 | false 262 | default rule for ingress traffic 263 | accept 264 | 265 | 266 | 267 | 268 | 6 269 | false 270 | 16 271 | 272 | any 273 | 274 | 275 | 276 | view-0 277 | vsm-default-view 278 | true 279 | 280 | any 281 | any 282 | 283 | false 284 | 285 | 286 | 287 | false 288 | info 289 | 290 | 291 | 292 | 6 293 | false 294 | 295 | true 296 | notice 297 | 298 | 299 | false 300 | false 301 | false 302 | false 303 | 304 | false 305 | 306 | 0 307 | 10 308 | 309 | 310 | 311 | true 312 | false 313 | 314 | 315 | VMware 316 | VMware 317 | jpg 318 | /api/4.0/edges/edge-1/sslvpn/config/layout/images/portallogo 319 | 56A2D4 320 | 996600 321 | 000000 322 | 999999 323 | FFFFFF 324 | FFFFFF 325 | F5F5F5 326 | 327 | 328 | 329 | 1 330 | 331 | 332 | 333 | 334 | 335 | 336 | 27 337 | true 338 | 339 | 192.168.100.5 340 | true 341 | 342 | false 343 | info 344 | 345 | 346 | 347 | 348 | 349 | 1500 350 | Backup static route for Control VM failuer 351 | user 352 | 1 353 | 172.16.0.0/16 354 | 192.168.10.11 355 | 10 356 | 357 | 358 | 359 | 360 | true 361 | 362 | 363 | 51 364 | nssa 365 | 366 | none 367 | 368 | 369 | 370 | 0 371 | normal 372 | 373 | none 374 | 375 | 376 | 377 | 10 378 | nssa 379 | 380 | none 381 | 382 | 383 | 384 | 385 | 386 | 2 387 | 10 388 | 10 389 | 40 390 | 128 391 | 1 392 | true 393 | 394 | 395 | 1 396 | 10 397 | 10 398 | 40 399 | 128 400 | 1 401 | true 402 | 403 | 404 | 405 | true 406 | 407 | 408 | 0 409 | 410 | false 411 | false 412 | false 413 | true 414 | true 415 | 416 | permit 417 | 418 | 419 | 420 | true 421 | false 422 | 423 | 424 | 425 | 14 426 | false 427 | 6 428 | 429 | false 430 | info 431 | 432 | 433 | false 434 | 435 | 436 | 437 | 5 438 | true 439 | tcp 440 | 441 | log.core.hypervizor.com 442 | 443 | 444 | 445 | 446 | 4 447 | false 448 | false 449 | false 450 | 451 | monitor-1 452 | tcp 453 | 5 454 | 15 455 | 3 456 | default_tcp_monitor 457 | 458 | 459 | monitor-2 460 | http 461 | 5 462 | 15 463 | 3 464 | GET 465 | / 466 | default_http_monitor 467 | 468 | 469 | monitor-3 470 | https 471 | 5 472 | 15 473 | 3 474 | GET 475 | / 476 | default_https_monitor 477 | 478 | 479 | false 480 | info 481 | 482 | 483 | 484 | 4 485 | false 486 | 487 | false 488 | info 489 | 490 | 491 | 492 | 4 493 | false 494 | 495 | true 496 | warning 497 | 498 | 499 | 500 | ****** 501 | 502 | 503 | 504 | 505 | 506 | 6 507 | false 508 | 509 | 510 | 511 | false 512 | info 513 | 514 | 515 | 516 | 6 517 | true 518 | 519 | 520 | 521 | 6 522 | false 523 | 524 | 525 | 526 | 527 | true 528 | high 529 | 530 | gatewayServices 531 | false 532 | false 533 | 534 | false 535 | 5666 536 | 537 | 538 | -------------------------------------------------------------------------------- /Cairo-Edges/ESG-CAI-02: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-2 4 | 31 5 | deployed 6 | datacenter-2 7 | Cairo Datacenter 8 | default 9 | ESG-CAI-02 10 | NSX-edge-2 11 | true 12 | false 13 | emergency 14 | 15 | 16 | vNic_0 17 | vnic0 18 | 19 | 1500 20 | internal 21 | false 22 | 0 23 | false 24 | true 25 | 26 | 27 | vNic_1 28 | Internal-CAI-Transport 29 | 30 | 31 | 192.168.10.2 32 | 255.255.255.0 33 | 24 34 | 35 | 36 | 1500 37 | internal 38 | true 39 | 1 40 | universalwire-2 41 | CAI-Transport-VXLAN 42 | false 43 | false 44 | 45 | 46 | vNic_2 47 | Uplink-CAI-EdgeNet01 48 | 49 | 50 | 192.168.100.6 51 | 255.255.255.0 52 | 24 53 | 54 | 55 | 1500 56 | uplink 57 | true 58 | 2 59 | dvportgroup-86 60 | DPortGroup-CAI-Edge-Net01 61 | false 62 | true 63 | 64 | 65 | vNic_3 66 | vnic3 67 | 68 | 1500 69 | internal 70 | false 71 | 3 72 | false 73 | true 74 | 75 | 76 | vNic_4 77 | vnic4 78 | 79 | 1500 80 | internal 81 | false 82 | 4 83 | false 84 | true 85 | 86 | 87 | vNic_5 88 | vnic5 89 | 90 | 1500 91 | internal 92 | false 93 | 5 94 | false 95 | true 96 | 97 | 98 | vNic_6 99 | vnic6 100 | 101 | 1500 102 | internal 103 | false 104 | 6 105 | false 106 | true 107 | 108 | 109 | vNic_7 110 | vnic7 111 | 112 | 1500 113 | internal 114 | false 115 | 7 116 | false 117 | true 118 | 119 | 120 | vNic_8 121 | vnic8 122 | 123 | 1500 124 | internal 125 | false 126 | 8 127 | false 128 | true 129 | 130 | 131 | vNic_9 132 | vnic9 133 | 134 | 1500 135 | internal 136 | false 137 | 9 138 | false 139 | true 140 | 141 | 142 | 143 | compact 144 | 145 | 0 146 | 501668b8-c191-b6a8-21e3-f8abcb6d0964 147 | vm-691 148 | up 149 | domain-c253 150 | CAI Edge Cluster 151 | datastore-83 152 | NFS04 153 | host-280 154 | esx04-s1.core.hypervizor.com 155 | group-v3 156 | vm 157 | NSX-edge-2-0 158 | ESG-CAI-02-0 159 | true 160 | edge-2 161 | 162 | domain-c253 163 | CAI Edge Cluster 164 | true 165 | 166 | 167 | datastore-20 168 | NFS02 169 | true 170 | 171 | 172 | host-277 173 | esx03-s1.core.hypervizor.com 174 | true 175 | 176 | 177 | true 178 | 179 | 180 | true 181 | admin 182 | 183 | *************************************************************************** 184 | NOTICE TO USERS 185 | 186 | 187 | This computer system is the private property of its owner, whether 188 | individual, corporate or government. It is for authorized use only. 189 | Users (authorized or unauthorized) have no explicit or implicit 190 | expectation of privacy. 191 | 192 | Any or all uses of this system and all files on this system may be 193 | intercepted, monitored, recorded, copied, audited, inspected, and 194 | disclosed to your employer, to authorized site, government, and law 195 | enforcement personnel, as well as authorized officials of government 196 | agencies, both domestic and foreign. 197 | 198 | By using this system, the user consents to such interception, monitoring, 199 | recording, copying, auditing, inspection, and disclosure at the 200 | discretion of such personnel or officials. Unauthorized or improper use 201 | of this system may result in civil and criminal penalties and 202 | administrative or disciplinary action, as appropriate. By continuing to 203 | use this system you indicate your awareness of and consent to these terms 204 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 205 | conditions stated in this warning. 206 | 207 | **************************************************************************** 208 | 99999 209 | 210 | 211 | 212 | 6 213 | false 214 | 215 | true 216 | notice 217 | 218 | 219 | 220 | 221 | 24 222 | false 223 | 224 | false 225 | false 226 | true 227 | true 228 | false 229 | 30 230 | 21600 231 | 30 232 | 60 233 | 10 234 | 10 235 | 120 236 | false 237 | 238 | 239 | accept 240 | false 241 | 242 | 243 | 244 | 131075 245 | 131075 246 | routing 247 | internal_high 248 | true 249 | false 250 | routing 251 | accept 252 | 253 | 254 | ospf 255 | any 256 | any 257 | 258 | 259 | 260 | 261 | 131073 262 | 131073 263 | default rule for ingress traffic 264 | default_policy 265 | true 266 | false 267 | default rule for ingress traffic 268 | accept 269 | 270 | 271 | 272 | 273 | 6 274 | false 275 | 276 | true 277 | notice 278 | 279 | 280 | false 281 | false 282 | false 283 | false 284 | 285 | false 286 | 287 | 0 288 | 10 289 | 290 | 291 | 292 | true 293 | false 294 | 295 | 296 | VMware 297 | VMware 298 | jpg 299 | /api/4.0/edges/edge-2/sslvpn/config/layout/images/portallogo 300 | 56A2D4 301 | 996600 302 | 000000 303 | 999999 304 | FFFFFF 305 | FFFFFF 306 | F5F5F5 307 | 308 | 309 | 310 | 1 311 | 312 | 313 | 314 | 315 | 316 | 317 | 6 318 | false 319 | 16 320 | 321 | any 322 | 323 | 324 | 325 | view-0 326 | vsm-default-view 327 | true 328 | 329 | any 330 | any 331 | 332 | false 333 | 334 | 335 | 336 | false 337 | info 338 | 339 | 340 | 341 | 24 342 | true 343 | 344 | 192.168.100.6 345 | true 346 | 347 | false 348 | info 349 | 350 | 351 | 352 | 353 | 354 | 1500 355 | Backup static route for Control VM failuer 356 | user 357 | 1 358 | 172.16.0.0/16 359 | 192.168.10.11 360 | 10 361 | 362 | 363 | 364 | 365 | true 366 | 367 | 368 | 51 369 | nssa 370 | 371 | none 372 | 373 | 374 | 375 | 0 376 | normal 377 | 378 | none 379 | 380 | 381 | 382 | 10 383 | nssa 384 | 385 | none 386 | 387 | 388 | 389 | 390 | 391 | 1 392 | 10 393 | 10 394 | 40 395 | 128 396 | 1 397 | true 398 | 399 | 400 | 2 401 | 10 402 | 10 403 | 40 404 | 128 405 | 1 406 | true 407 | 408 | 409 | 410 | true 411 | 412 | 413 | 0 414 | 415 | false 416 | false 417 | false 418 | true 419 | true 420 | 421 | permit 422 | 423 | 424 | 425 | true 426 | false 427 | 428 | 429 | 430 | 11 431 | false 432 | 6 433 | 434 | false 435 | info 436 | 437 | 438 | false 439 | 440 | 441 | 442 | 5 443 | true 444 | tcp 445 | 446 | log.core.hypervizor.com 447 | 448 | 449 | 450 | 451 | 4 452 | false 453 | false 454 | false 455 | 456 | monitor-1 457 | tcp 458 | 5 459 | 15 460 | 3 461 | default_tcp_monitor 462 | 463 | 464 | monitor-2 465 | http 466 | 5 467 | 15 468 | 3 469 | GET 470 | / 471 | default_http_monitor 472 | 473 | 474 | monitor-3 475 | https 476 | 5 477 | 15 478 | 3 479 | GET 480 | / 481 | default_https_monitor 482 | 483 | 484 | false 485 | info 486 | 487 | 488 | 489 | 4 490 | false 491 | 492 | false 493 | info 494 | 495 | 496 | 497 | 4 498 | false 499 | 500 | true 501 | warning 502 | 503 | 504 | 505 | ****** 506 | 507 | 508 | 509 | 510 | 511 | 6 512 | false 513 | 514 | 515 | 516 | false 517 | info 518 | 519 | 520 | 521 | 6 522 | true 523 | 524 | 525 | 526 | 6 527 | false 528 | 529 | 530 | 531 | 532 | true 533 | high 534 | 535 | gatewayServices 536 | false 537 | false 538 | 539 | false 540 | 5666 541 | 542 | 543 | -------------------------------------------------------------------------------- /Cairo-Edges/ESG-w-ToRack02-CAI-03: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-24 4 | 15 5 | deployed 6 | datacenter-2 7 | Cairo Datacenter 8 | default 9 | ESG-w-ToRack02-CAI-03 10 | NSX-edge-24 11 | true 12 | false 13 | emergency 14 | 15 | 16 | vNic_0 17 | Uplink-CAI-Edge-Net-VLAN70 18 | 19 | 20 | 192.168.70.7 21 | 255.255.255.0 22 | 24 23 | 24 | 25 | 1500 26 | uplink 27 | true 28 | 0 29 | dvportgroup-564 30 | DPortGroup-CAI-Edge-Net-VLAN70 31 | false 32 | false 33 | 34 | 35 | vNic_1 36 | Uplink-CAI-Edge-Net-VLAN80 37 | 38 | 39 | 192.168.80.7 40 | 255.255.255.0 41 | 24 42 | 43 | 44 | 1500 45 | uplink 46 | true 47 | 1 48 | dvportgroup-565 49 | DPortGroup-CAI-Edge-Net-VLAN80 50 | false 51 | true 52 | 53 | 54 | vNic_2 55 | Internal-CAI-Transport--VXLAN-2-Local-Multi-Edge 56 | 57 | 58 | 192.168.11.3 59 | 255.255.255.0 60 | 24 61 | 62 | 63 | 1500 64 | internal 65 | true 66 | 2 67 | virtualwire-5 68 | CAI-Transport--VXLAN-2-Local-MEdge 69 | false 70 | true 71 | 72 | 73 | vNic_3 74 | vnic3 75 | 76 | 1500 77 | internal 78 | false 79 | 3 80 | false 81 | true 82 | 83 | 84 | vNic_4 85 | vnic4 86 | 87 | 1500 88 | internal 89 | false 90 | 4 91 | false 92 | true 93 | 94 | 95 | vNic_5 96 | vnic5 97 | 98 | 1500 99 | internal 100 | false 101 | 5 102 | false 103 | true 104 | 105 | 106 | vNic_6 107 | vnic6 108 | 109 | 1500 110 | internal 111 | false 112 | 6 113 | false 114 | true 115 | 116 | 117 | vNic_7 118 | vnic7 119 | 120 | 1500 121 | internal 122 | false 123 | 7 124 | false 125 | true 126 | 127 | 128 | vNic_8 129 | vnic8 130 | 131 | 1500 132 | internal 133 | false 134 | 8 135 | false 136 | true 137 | 138 | 139 | vNic_9 140 | vnic9 141 | 142 | 1500 143 | internal 144 | false 145 | 9 146 | false 147 | true 148 | 149 | 150 | 151 | compact 152 | 153 | 0 154 | 501678fb-2037-93c3-5795-85f32645b6a0 155 | vm-694 156 | up 157 | domain-c253 158 | CAI Edge Cluster 159 | datastore-82 160 | NFS03 161 | host-280 162 | esx04-s1.core.hypervizor.com 163 | group-v3 164 | vm 165 | NSX-edge-24-0 166 | ESG-w-ToRack02-CAI-03-0 167 | true 168 | edge-24 169 | 170 | domain-c253 171 | CAI Edge Cluster 172 | true 173 | 174 | 175 | datastore-83 176 | NFS04 177 | true 178 | 179 | 180 | host-280 181 | esx04-s1.core.hypervizor.com 182 | true 183 | 184 | 185 | true 186 | 187 | 188 | true 189 | admin 190 | 191 | *************************************************************************** 192 | NOTICE TO USERS 193 | 194 | 195 | This computer system is the private property of its owner, whether 196 | individual, corporate or government. It is for authorized use only. 197 | Users (authorized or unauthorized) have no explicit or implicit 198 | expectation of privacy. 199 | 200 | Any or all uses of this system and all files on this system may be 201 | intercepted, monitored, recorded, copied, audited, inspected, and 202 | disclosed to your employer, to authorized site, government, and law 203 | enforcement personnel, as well as authorized officials of government 204 | agencies, both domestic and foreign. 205 | 206 | By using this system, the user consents to such interception, monitoring, 207 | recording, copying, auditing, inspection, and disclosure at the 208 | discretion of such personnel or officials. Unauthorized or improper use 209 | of this system may result in civil and criminal penalties and 210 | administrative or disciplinary action, as appropriate. By continuing to 211 | use this system you indicate your awareness of and consent to these terms 212 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 213 | conditions stated in this warning. 214 | 215 | **************************************************************************** 216 | 99999 217 | 218 | 219 | 220 | 5 221 | false 222 | 223 | true 224 | notice 225 | 226 | 227 | 228 | 229 | 11 230 | false 231 | 232 | false 233 | false 234 | true 235 | true 236 | false 237 | 30 238 | 21600 239 | 30 240 | 60 241 | 10 242 | 10 243 | 120 244 | false 245 | 246 | 247 | accept 248 | false 249 | 250 | 251 | 252 | 131075 253 | 131075 254 | routing 255 | internal_high 256 | true 257 | false 258 | routing 259 | accept 260 | 261 | 262 | ospf 263 | any 264 | any 265 | 266 | 267 | 268 | 269 | 131073 270 | 131073 271 | default rule for ingress traffic 272 | default_policy 273 | true 274 | false 275 | default rule for ingress traffic 276 | accept 277 | 278 | 279 | 280 | 281 | 5 282 | false 283 | 284 | true 285 | notice 286 | 287 | 288 | false 289 | false 290 | false 291 | false 292 | 293 | false 294 | 295 | 0 296 | 10 297 | 298 | 299 | 300 | true 301 | false 302 | 303 | 304 | VMware 305 | VMware 306 | jpg 307 | /api/4.0/edges/edge-24/sslvpn/config/layout/images/portallogo 308 | 56A2D4 309 | 996600 310 | 000000 311 | 999999 312 | FFFFFF 313 | FFFFFF 314 | F5F5F5 315 | 316 | 317 | 318 | 1 319 | 320 | 321 | 322 | 323 | 324 | 325 | 5 326 | false 327 | 16 328 | 329 | any 330 | 331 | 332 | 333 | view-0 334 | vsm-default-view 335 | true 336 | 337 | any 338 | any 339 | 340 | false 341 | 342 | 343 | 344 | false 345 | info 346 | 347 | 348 | 349 | 13 350 | true 351 | 352 | 192.168.70.7 353 | true 354 | 355 | false 356 | info 357 | 358 | 359 | 360 | 361 | 362 | 363 | true 364 | 365 | 366 | 51 367 | nssa 368 | 369 | none 370 | 371 | 372 | 373 | 0 374 | normal 375 | 376 | none 377 | 378 | 379 | 380 | 150 381 | nssa 382 | 383 | none 384 | 385 | 386 | 387 | 388 | 389 | 0 390 | 150 391 | 10 392 | 40 393 | 128 394 | 1 395 | true 396 | 397 | 398 | 1 399 | 150 400 | 10 401 | 40 402 | 128 403 | 1 404 | true 405 | 406 | 407 | 2 408 | 150 409 | 10 410 | 40 411 | 128 412 | 1 413 | true 414 | 415 | 416 | 417 | true 418 | 419 | 420 | 0 421 | 422 | false 423 | false 424 | false 425 | false 426 | true 427 | 428 | permit 429 | 430 | 431 | 432 | true 433 | false 434 | 435 | 436 | 437 | 5 438 | false 439 | 6 440 | 441 | false 442 | info 443 | 444 | 445 | false 446 | 447 | 448 | 449 | 4 450 | true 451 | tcp 452 | 453 | log.core.hypervizor.com 454 | 455 | 456 | 457 | 458 | 3 459 | false 460 | false 461 | false 462 | 463 | monitor-1 464 | tcp 465 | 5 466 | 15 467 | 3 468 | default_tcp_monitor 469 | 470 | 471 | monitor-2 472 | http 473 | 5 474 | 15 475 | 3 476 | GET 477 | / 478 | default_http_monitor 479 | 480 | 481 | monitor-3 482 | https 483 | 5 484 | 15 485 | 3 486 | GET 487 | / 488 | default_https_monitor 489 | 490 | 491 | false 492 | info 493 | 494 | 495 | 496 | 3 497 | false 498 | 499 | false 500 | info 501 | 502 | 503 | 504 | 3 505 | false 506 | 507 | true 508 | warning 509 | 510 | 511 | 512 | ****** 513 | 514 | 515 | 516 | 517 | 518 | 5 519 | false 520 | 521 | 522 | 523 | false 524 | info 525 | 526 | 527 | 528 | 5 529 | false 530 | 531 | 532 | 5 533 | true 534 | 535 | 536 | 537 | 538 | 539 | true 540 | high 541 | 542 | gatewayServices 543 | false 544 | false 545 | 546 | false 547 | 5666 548 | 549 | 550 | -------------------------------------------------------------------------------- /Cairo-Edges/ESG-w-ToRack02-CAI-04: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-25 4 | 15 5 | deployed 6 | datacenter-2 7 | Cairo Datacenter 8 | default 9 | ESG-w-ToRack02-CAI-04 10 | NSX-edge-25 11 | true 12 | false 13 | emergency 14 | 15 | 16 | vNic_0 17 | Uplink-CAI-Edge-Net-VLAN70 18 | 19 | 20 | 192.168.70.8 21 | 255.255.255.0 22 | 24 23 | 24 | 25 | 1500 26 | uplink 27 | true 28 | 0 29 | dvportgroup-564 30 | DPortGroup-CAI-Edge-Net-VLAN70 31 | false 32 | false 33 | 34 | 35 | vNic_1 36 | Uplink-CAI-Edge-Net-VLAN80 37 | 38 | 39 | 192.168.80.8 40 | 255.255.255.0 41 | 24 42 | 43 | 44 | 1500 45 | uplink 46 | true 47 | 1 48 | dvportgroup-565 49 | DPortGroup-CAI-Edge-Net-VLAN80 50 | false 51 | true 52 | 53 | 54 | vNic_2 55 | Internal-CAI-Transport--VXLAN-2-Local-Multi-Edge 56 | 57 | 58 | 192.168.11.4 59 | 255.255.255.0 60 | 24 61 | 62 | 63 | 1500 64 | internal 65 | true 66 | 2 67 | virtualwire-5 68 | CAI-Transport--VXLAN-2-Local-MEdge 69 | false 70 | true 71 | 72 | 73 | vNic_3 74 | vnic3 75 | 76 | 1500 77 | internal 78 | false 79 | 3 80 | false 81 | true 82 | 83 | 84 | vNic_4 85 | vnic4 86 | 87 | 1500 88 | internal 89 | false 90 | 4 91 | false 92 | true 93 | 94 | 95 | vNic_5 96 | vnic5 97 | 98 | 1500 99 | internal 100 | false 101 | 5 102 | false 103 | true 104 | 105 | 106 | vNic_6 107 | vnic6 108 | 109 | 1500 110 | internal 111 | false 112 | 6 113 | false 114 | true 115 | 116 | 117 | vNic_7 118 | vnic7 119 | 120 | 1500 121 | internal 122 | false 123 | 7 124 | false 125 | true 126 | 127 | 128 | vNic_8 129 | vnic8 130 | 131 | 1500 132 | internal 133 | false 134 | 8 135 | false 136 | true 137 | 138 | 139 | vNic_9 140 | vnic9 141 | 142 | 1500 143 | internal 144 | false 145 | 9 146 | false 147 | true 148 | 149 | 150 | 151 | compact 152 | 153 | 0 154 | 5016c5bf-d450-346e-b207-14acd38269e6 155 | vm-695 156 | up 157 | domain-c253 158 | CAI Edge Cluster 159 | datastore-82 160 | NFS03 161 | host-280 162 | esx04-s1.core.hypervizor.com 163 | group-v3 164 | vm 165 | NSX-edge-25-0 166 | ESG-w-ToRack02-CAI-04-0 167 | true 168 | edge-25 169 | 170 | domain-c253 171 | CAI Edge Cluster 172 | true 173 | 174 | 175 | datastore-82 176 | NFS03 177 | true 178 | 179 | 180 | host-280 181 | esx04-s1.core.hypervizor.com 182 | true 183 | 184 | 185 | true 186 | 187 | 188 | true 189 | admin 190 | 191 | *************************************************************************** 192 | NOTICE TO USERS 193 | 194 | 195 | This computer system is the private property of its owner, whether 196 | individual, corporate or government. It is for authorized use only. 197 | Users (authorized or unauthorized) have no explicit or implicit 198 | expectation of privacy. 199 | 200 | Any or all uses of this system and all files on this system may be 201 | intercepted, monitored, recorded, copied, audited, inspected, and 202 | disclosed to your employer, to authorized site, government, and law 203 | enforcement personnel, as well as authorized officials of government 204 | agencies, both domestic and foreign. 205 | 206 | By using this system, the user consents to such interception, monitoring, 207 | recording, copying, auditing, inspection, and disclosure at the 208 | discretion of such personnel or officials. Unauthorized or improper use 209 | of this system may result in civil and criminal penalties and 210 | administrative or disciplinary action, as appropriate. By continuing to 211 | use this system you indicate your awareness of and consent to these terms 212 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 213 | conditions stated in this warning. 214 | 215 | **************************************************************************** 216 | 99999 217 | 218 | 219 | 220 | 5 221 | false 222 | 223 | true 224 | notice 225 | 226 | 227 | 228 | 229 | 11 230 | false 231 | 232 | false 233 | false 234 | true 235 | true 236 | false 237 | 30 238 | 21600 239 | 30 240 | 60 241 | 10 242 | 10 243 | 120 244 | false 245 | 246 | 247 | accept 248 | false 249 | 250 | 251 | 252 | 131075 253 | 131075 254 | routing 255 | internal_high 256 | true 257 | false 258 | routing 259 | accept 260 | 261 | 262 | ospf 263 | any 264 | any 265 | 266 | 267 | 268 | 269 | 131073 270 | 131073 271 | default rule for ingress traffic 272 | default_policy 273 | true 274 | false 275 | default rule for ingress traffic 276 | accept 277 | 278 | 279 | 280 | 281 | 5 282 | false 283 | 284 | true 285 | notice 286 | 287 | 288 | false 289 | false 290 | false 291 | false 292 | 293 | false 294 | 295 | 0 296 | 10 297 | 298 | 299 | 300 | true 301 | false 302 | 303 | 304 | VMware 305 | VMware 306 | jpg 307 | /api/4.0/edges/edge-25/sslvpn/config/layout/images/portallogo 308 | 56A2D4 309 | 996600 310 | 000000 311 | 999999 312 | FFFFFF 313 | FFFFFF 314 | F5F5F5 315 | 316 | 317 | 318 | 1 319 | 320 | 321 | 322 | 323 | 324 | 325 | 5 326 | false 327 | 16 328 | 329 | any 330 | 331 | 332 | 333 | view-0 334 | vsm-default-view 335 | true 336 | 337 | any 338 | any 339 | 340 | false 341 | 342 | 343 | 344 | false 345 | info 346 | 347 | 348 | 349 | 13 350 | true 351 | 352 | 192.168.70.8 353 | true 354 | 355 | false 356 | info 357 | 358 | 359 | 360 | 361 | 362 | 363 | true 364 | 365 | 366 | 51 367 | nssa 368 | 369 | none 370 | 371 | 372 | 373 | 0 374 | normal 375 | 376 | none 377 | 378 | 379 | 380 | 150 381 | nssa 382 | 383 | none 384 | 385 | 386 | 387 | 388 | 389 | 0 390 | 150 391 | 10 392 | 40 393 | 128 394 | 1 395 | true 396 | 397 | 398 | 1 399 | 150 400 | 10 401 | 40 402 | 128 403 | 1 404 | true 405 | 406 | 407 | 2 408 | 150 409 | 10 410 | 40 411 | 128 412 | 1 413 | true 414 | 415 | 416 | 417 | true 418 | 419 | 420 | 0 421 | 422 | false 423 | false 424 | false 425 | false 426 | true 427 | 428 | permit 429 | 430 | 431 | 432 | true 433 | false 434 | 435 | 436 | 437 | 5 438 | false 439 | 6 440 | 441 | false 442 | info 443 | 444 | 445 | false 446 | 447 | 448 | 449 | 4 450 | true 451 | tcp 452 | 453 | log.core.hypervizor.com 454 | 455 | 456 | 457 | 458 | 3 459 | false 460 | false 461 | false 462 | 463 | monitor-1 464 | tcp 465 | 5 466 | 15 467 | 3 468 | default_tcp_monitor 469 | 470 | 471 | monitor-2 472 | http 473 | 5 474 | 15 475 | 3 476 | GET 477 | / 478 | default_http_monitor 479 | 480 | 481 | monitor-3 482 | https 483 | 5 484 | 15 485 | 3 486 | GET 487 | / 488 | default_https_monitor 489 | 490 | 491 | false 492 | info 493 | 494 | 495 | 496 | 3 497 | false 498 | 499 | false 500 | info 501 | 502 | 503 | 504 | 3 505 | false 506 | 507 | true 508 | warning 509 | 510 | 511 | 512 | ****** 513 | 514 | 515 | 516 | 517 | 518 | 5 519 | false 520 | 521 | 522 | 523 | false 524 | info 525 | 526 | 527 | 528 | 5 529 | false 530 | 531 | 532 | 5 533 | true 534 | 535 | 536 | 537 | 538 | 539 | true 540 | high 541 | 542 | gatewayServices 543 | false 544 | false 545 | 546 | false 547 | 5666 548 | 549 | 550 | -------------------------------------------------------------------------------- /Cairo-Edges/NSX-UDLR-LocalEgress: -------------------------------------------------------------------------------- 1 | 2 | 3 | edge-a9cd7497-f0dc-455b-945d-ac47639cf17e 4 | 79 5 | deployed 6 | datacenter-2 7 | Cairo Datacenter 8 | default 9 | NSX-UDLR-LocalEgress 10 | NSX-edge-a9cd7497-f0dc-455b-945d-ac47639cf17e 11 | false 12 | false 13 | emergency 14 | 15 | compact 16 | 17 | 0 18 | 501697cc-eba0-284f-9a92-24de3deaa54a 19 | vm-689 20 | up 21 | domain-c253 22 | CAI Edge Cluster 23 | datastore-82 24 | NFS03 25 | host-277 26 | esx03-s1.core.hypervizor.com 27 | group-v3 28 | vm 29 | NSX-edge-a9cd7497-f0dc-455b-945d-ac47639cf17e-0 30 | edge-a9cd7497-f0dc-455b-945d-ac47639cf17e-0-NSX-UDLR-LocalEgress 31 | true 32 | 33 | 1000 34 | 35 | 36 | 512 37 | 38 | edge-a9cd7497-f0dc-455b-945d-ac47639cf17e 39 | 40 | domain-c253 41 | CAI Edge Cluster 42 | true 43 | 44 | 45 | datastore-19 46 | NFS01 47 | true 48 | 49 | 50 | true 51 | 52 | 53 | true 54 | admin 55 | 56 | *************************************************************************** 57 | NOTICE TO USERS 58 | 59 | 60 | This computer system is the private property of its owner, whether 61 | individual, corporate or government. It is for authorized use only. 62 | Users (authorized or unauthorized) have no explicit or implicit 63 | expectation of privacy. 64 | 65 | Any or all uses of this system and all files on this system may be 66 | intercepted, monitored, recorded, copied, audited, inspected, and 67 | disclosed to your employer, to authorized site, government, and law 68 | enforcement personnel, as well as authorized officials of government 69 | agencies, both domestic and foreign. 70 | 71 | By using this system, the user consents to such interception, monitoring, 72 | recording, copying, auditing, inspection, and disclosure at the 73 | discretion of such personnel or officials. Unauthorized or improper use 74 | of this system may result in civil and criminal penalties and 75 | administrative or disciplinary action, as appropriate. By continuing to 76 | use this system you indicate your awareness of and consent to these terms 77 | and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the 78 | conditions stated in this warning. 79 | 80 | **************************************************************************** 81 | 99999 82 | 83 | 84 | 85 | 5 86 | true 87 | tcp 88 | 89 | log.core.hypervizor.com 90 | 91 | 92 | 93 | 94 | 62 95 | false 96 | 97 | false 98 | false 99 | true 100 | true 101 | false 102 | 30 103 | 21600 104 | 30 105 | 60 106 | 10 107 | 10 108 | 120 109 | false 110 | 111 | 112 | deny 113 | false 114 | 115 | 116 | 117 | 131075 118 | 131075 119 | routing 120 | internal_high 121 | true 122 | false 123 | routing 124 | accept 125 | 126 | 127 | ospf 128 | any 129 | any 130 | 131 | 132 | 133 | 134 | 131073 135 | 131073 136 | default rule for ingress traffic 137 | default_policy 138 | true 139 | false 140 | default rule for ingress traffic 141 | deny 142 | 143 | 144 | 145 | 146 | 63 147 | true 148 | 149 | 192.168.10.11 150 | true 151 | 152 | false 153 | info 154 | 155 | 156 | 157 | 158 | 159 | 160 | true 161 | 192.168.10.12 162 | 192.168.10.11 163 | 164 | 165 | 51 166 | nssa 167 | 168 | none 169 | 170 | 171 | 172 | 0 173 | normal 174 | 175 | none 176 | 177 | 178 | 179 | 10 180 | nssa 181 | 182 | none 183 | 184 | 185 | 186 | 187 | 188 | 2 189 | 10 190 | 10 191 | 40 192 | 128 193 | 1 194 | true 195 | 196 | 197 | 198 | true 199 | 200 | 201 | 0 202 | 203 | false 204 | false 205 | false 206 | false 207 | true 208 | 209 | permit 210 | 211 | 212 | 213 | true 214 | false 215 | 216 | 217 | 218 | 48 219 | false 220 | 221 | 222 | 223 | false 224 | info 225 | 226 | 227 | 228 | 48 229 | false 230 | 231 | 232 | 55 233 | false 234 | 6 235 | 236 | false 237 | info 238 | 239 | 240 | false 241 | 242 | 243 | 244 | 245 | true 246 | high 247 | 248 | distributedRouter 249 | true 250 | 221 251 | 252 | vNic_0 253 | mgmtInterface 254 | 255 | 1500 256 | 0 257 | dvportgroup-18 258 | DPortGroup-CAI-VM-Management-Networks 259 | 260 | 261 | 262 | 138800000002/vNic_2 263 | Uplink-CAI-Transport 264 | 265 | 266 | 192.168.10.11 267 | 255.255.255.0 268 | 24 269 | 270 | 271 | 1500 272 | uplink 273 | true 274 | false 275 | 2 276 | universalwire-2 277 | CAI-Transport-VXLAN 278 | 279 | 280 | 138800000003/vNic_3 281 | Uplinl-HBE-Transport 282 | 283 | 284 | 192.168.20.11 285 | 255.255.255.0 286 | 24 287 | 288 | 289 | 1500 290 | uplink 291 | true 292 | false 293 | 3 294 | universalwire-3 295 | HBE-Transport-VXLAN 296 | 297 | 298 | 13880000000a 299 | We-Tier-ULS 300 | 301 | 302 | 172.16.10.1 303 | 255.255.255.0 304 | 24 305 | 306 | 307 | 1500 308 | internal 309 | true 310 | false 311 | 10 312 | universalwire-1 313 | Web-Tier-ULS 314 | 315 | 316 | 13880000000b 317 | App-Tier-ULS 318 | 319 | 320 | 172.16.20.1 321 | 255.255.255.0 322 | 24 323 | 324 | 325 | 1500 326 | internal 327 | true 328 | false 329 | 11 330 | universalwire-5 331 | App-Tier-ULS 332 | 333 | 334 | 13880000000c 335 | DB-Tier-ULS 336 | 337 | 338 | 172.16.30.1 339 | 255.255.255.0 340 | 24 341 | 342 | 343 | 1500 344 | internal 345 | true 346 | false 347 | 12 348 | universalwire-4 349 | DB-Tier-ULS 350 | 351 | 352 | 13880000000d 353 | vCD-HV-Tenant 354 | 355 | 356 | 172.16.50.1 357 | 255.255.255.0 358 | 24 359 | 360 | 361 | 1500 362 | internal 363 | true 364 | false 365 | 13 366 | universalwire-29 367 | vCD-HV-Tenant-ULS 368 | 369 | 370 | 5000 371 | 5b9177c2-d56d-4765-9bad-d5a812ea2e8c 372 | 373 | false 374 | 5666 375 | 376 | true 377 | 378 | -------------------------------------------------------------------------------- /Cisco-CSRs/vRouter_DC01: -------------------------------------------------------------------------------- 1 | 2 | vRouter_DC01#sh run 3 | Building configuration... 4 | 5 | version 15.4 6 | service timestamps debug datetime msec 7 | service timestamps log datetime msec 8 | service call-home 9 | no platform punt-keepalive disable-kernel-core 10 | platform console virtual 11 | platform hardware throughput level MB 1000 12 | ! 13 | hostname vRouter_DC01 14 | ! 15 | boot-start-marker 16 | boot-end-marker 17 | ! 18 | ! 19 | enable secret 5 $1$1h4K$8IJV7eg.PMwuIUHDq5fXo1 20 | enable password vmware 21 | ! 22 | no aaa new-model 23 | clock timezone PST -7 0 24 | clock calendar-valid 25 | ! 26 | ! 27 | ! 28 | ! 29 | ! 30 | ! 31 | ! 32 | ! 33 | ! 34 | 35 | 36 | ip domain name core.hypervizor.com 37 | 38 | ! 39 | ! 40 | ! 41 | ! 42 | ! 43 | ! 44 | multilink bundle-name authenticated 45 | ! 46 | spanning-tree extend system-id 47 | ! 48 | username admin password 0 VMware1! 49 | ! 50 | redundancy 51 | mode none 52 | ! 53 | ! 54 | ! 55 | ! 56 | ! 57 | cdp run 58 | ! 59 | ! 60 | ! 61 | ! 62 | ! 63 | ! 64 | ! 65 | ! 66 | ! 67 | ! 68 | ! 69 | ! 70 | ! 71 | ! 72 | ! 73 | ! 74 | ! 75 | interface Loopback0 76 | no ip address 77 | ! 78 | interface GigabitEthernet1 79 | description Site01_Internet 80 | mtu 1600 81 | ip address 192.168.21.2 255.255.255.0 82 | ip nat outside 83 | negotiation auto 84 | cdp enable 85 | ! 86 | interface GigabitEthernet2 87 | description WAN_MPLS 88 | mtu 1600 89 | ip address 10.155.14.10 255.255.255.0 90 | negotiation auto 91 | cdp enable 92 | ! 93 | interface GigabitEthernet3 94 | description Site01_Management 95 | mtu 1600 96 | ip address 192.168.110.2 255.255.255.0 97 | ip nat inside 98 | negotiation auto 99 | ntp broadcast 100 | cdp enable 101 | ! 102 | interface GigabitEthernet4 103 | description Site01_DC_Access 104 | mtu 1600 105 | ip address 10.160.110.2 255.255.255.0 106 | ip nat inside 107 | negotiation auto 108 | cdp enable 109 | ! 110 | interface GigabitEthernet5 111 | mtu 1600 112 | ip address 1.1.1.1 255.255.255.0 113 | negotiation auto 114 | ! 115 | interface GigabitEthernet6 116 | description Site01_EdgeNetworks 117 | mtu 1600 118 | ip address 192.168.100.2 255.255.255.0 119 | ip nat inside 120 | negotiation auto 121 | cdp enable 122 | ! 123 | interface GigabitEthernet7 124 | mtu 1600 125 | ip address 192.168.150.2 255.255.255.0 126 | ip nat inside 127 | negotiation auto 128 | cdp enable 129 | ! 130 | interface GigabitEthernet8 131 | mtu 1600 132 | no ip address 133 | shutdown 134 | negotiation auto 135 | ! 136 | interface GigabitEthernet9 137 | mtu 1600 138 | no ip address 139 | shutdown 140 | negotiation auto 141 | ! 142 | interface GigabitEthernet10 143 | mtu 1600 144 | no ip address 145 | shutdown 146 | negotiation auto 147 | ! 148 | router ospf 1 149 | router-id 11.11.11.11 150 | area 10 nssa no-summary 151 | area 150 nssa no-summary 152 | redistribute connected subnets 153 | passive-interface Loopback0 154 | network 10.155.14.10 0.0.0.0 area 0 155 | network 10.155.14.0 0.0.0.255 area 0 156 | network 10.160.110.2 0.0.0.0 area 0 157 | network 192.168.21.2 0.0.0.0 area 0 158 | network 192.168.100.2 0.0.0.0 area 10 159 | network 192.168.110.2 0.0.0.0 area 0 160 | network 192.168.150.2 0.0.0.0 area 150 161 | ! 162 | ! 163 | virtual-service csr_mgmt 164 | ! 165 | ip nat inside source list NAT-Sources-Site01 interface GigabitEthernet1 overload 166 | ip nat inside source static tcp 192.168.110.25 443 192.168.21.2 443 extendable 167 | ip nat inside source static tcp 192.168.110.10 3389 192.168.21.2 3389 extendable 168 | ip forward-protocol nd 169 | ! 170 | no ip http server 171 | no ip http secure-server 172 | ip route 0.0.0.0 0.0.0.0 192.168.21.1 173 | ! 174 | ip access-list extended NAT-Sources-Site01 175 | permit ip 192.168.110.0 0.0.0.255 any 176 | permit ip 172.16.0.0 0.0.255.255 any 177 | permit ip 10.160.110.0 0.0.0.255 any 178 | ! 179 | ! 180 | snmp-server group DC01 v3 auth access vmware 181 | snmp-server view mib2 mib-2 included 182 | snmp-server community vmware RO 183 | snmp-server community public RO 184 | snmp-server community private RW 185 | snmp-server host 172.16.10.25 version 2c vmware 186 | ! 187 | ! 188 | control-plane 189 | ! 190 | ! 191 | line con 0 192 | stopbits 1 193 | line vty 0 4 194 | password vmware 195 | login local 196 | line vty 5 98 197 | login local 198 | ! 199 | ntp master 200 | ! 201 | end 202 | 203 | vRouter_DC01# 204 | -------------------------------------------------------------------------------- /Cisco-CSRs/vRouter_DC02: -------------------------------------------------------------------------------- 1 | vRouter_DC02#sh run 2 | Building configuration... 3 | 4 | version 15.4 5 | service timestamps debug datetime msec 6 | service timestamps log datetime msec 7 | service call-home 8 | no platform punt-keepalive disable-kernel-core 9 | platform console virtual 10 | platform hardware throughput level MB 1000 11 | ! 12 | hostname vRouter_DC02 13 | ! 14 | boot-start-marker 15 | boot-end-marker 16 | ! 17 | ! 18 | enable secret 5 $1$M4VF$KEpZBb0QG6R.MZn6nlqeI1 19 | enable password vmware 20 | ! 21 | no aaa new-model 22 | clock timezone PST -7 0 23 | clock calendar-valid 24 | ! 25 | ip domain name core.hypervizor.com 26 | username admin password 0 VMware1! 27 | ! 28 | redundancy 29 | mode none 30 | ! 31 | ! 32 | ! 33 | ! 34 | ! 35 | ! 36 | ! 37 | ! 38 | ! 39 | ! 40 | ! 41 | ! 42 | ! 43 | ! 44 | ! 45 | ! 46 | ! 47 | ! 48 | ! 49 | ! 50 | ! 51 | ! 52 | interface Loopback0 53 | no ip address 54 | ! 55 | interface GigabitEthernet1 56 | description Site01_Internet 57 | mtu 1600 58 | ip address 192.168.22.2 255.255.255.0 59 | ip nat outside 60 | negotiation auto 61 | cdp enable 62 | ! 63 | interface GigabitEthernet2 64 | description WAN_MPLS 65 | mtu 1600 66 | ip address 10.157.17.20 255.255.255.0 67 | negotiation auto 68 | cdp enable 69 | ! 70 | interface GigabitEthernet3 71 | description Site02_Management 72 | mtu 1600 73 | ip address 192.168.210.2 255.255.255.0 74 | ip nat inside 75 | negotiation auto 76 | ntp broadcast 77 | cdp enable 78 | ! 79 | interface GigabitEthernet4 80 | description Site02_DC_Access 81 | mtu 1600 82 | ip address 10.160.210.2 255.255.255.0 83 | ip nat inside 84 | negotiation auto 85 | cdp enable 86 | ! 87 | interface GigabitEthernet5 88 | mtu 1600 89 | ip address 2.2.2.2 255.255.255.0 90 | negotiation auto 91 | ! 92 | interface GigabitEthernet6 93 | description Site02_EdgeNetworks 94 | mtu 1600 95 | ip address 192.168.200.2 255.255.255.0 96 | ip nat inside 97 | negotiation auto 98 | cdp enable 99 | ! 100 | interface GigabitEthernet7 101 | mtu 1600 102 | no ip address 103 | shutdown 104 | negotiation auto 105 | ! 106 | interface GigabitEthernet8 107 | mtu 1600 108 | no ip address 109 | shutdown 110 | negotiation auto 111 | ! 112 | interface GigabitEthernet9 113 | mtu 1600 114 | no ip address 115 | shutdown 116 | negotiation auto 117 | ! 118 | interface GigabitEthernet10 119 | mtu 1600 120 | no ip address 121 | shutdown 122 | negotiation auto 123 | ! 124 | router ospf 2 125 | router-id 22.22.22.22 126 | area 20 nssa no-summary 127 | redistribute connected subnets 128 | passive-interface Loopback0 129 | network 10.157.17.20 0.0.0.0 area 0 130 | network 10.160.210.2 0.0.0.0 area 0 131 | network 192.168.22.2 0.0.0.0 area 0 132 | network 192.168.200.2 0.0.0.0 area 20 133 | network 192.168.210.2 0.0.0.0 area 0 134 | ! 135 | ! 136 | virtual-service csr_mgmt 137 | ! 138 | ip nat inside source list NAT-Sources-Site02 interface GigabitEthernet1 overload 139 | ip nat inside source static 192.168.210.10 192.168.22.2 140 | ip forward-protocol nd 141 | ! 142 | no ip http server 143 | no ip http secure-server 144 | ip route 0.0.0.0 0.0.0.0 192.168.22.1 145 | ! 146 | ip access-list extended NAT-Sources-Site02 147 | permit ip 172.16.0.0 0.0.255.255 any 148 | permit ip 192.168.210.0 0.0.0.255 any 149 | permit ip 10.160.210.0 0.0.0.255 any 150 | ! 151 | ! 152 | snmp-server community public RO 153 | snmp-server community vmwaredc02 RW 154 | snmp-server location Alexandria 155 | snmp-server contact vRouter_DC02 156 | snmp-server chassis-id vRouter_DC02 157 | snmp-server host 172.16.10.25 version 2c vmwaredc02 158 | ! 159 | ! 160 | control-plane 161 | ! 162 | ! 163 | line con 0 164 | stopbits 1 165 | line vty 0 4 166 | password vmware 167 | login local 168 | line vty 5 98 169 | login local 170 | ! 171 | ntp master 172 | ! 173 | end 174 | -------------------------------------------------------------------------------- /Cisco-CSRs/vRouter_Remote03: -------------------------------------------------------------------------------- 1 | vRouter_Remote03#sh run 2 | Building configuration... 3 | 4 | Current configuration : 1591 bytes 5 | ! 6 | ! Last configuration change at 07:06:14 UTC Fri Aug 26 2016 7 | ! 8 | version 15.4 9 | service timestamps debug datetime msec 10 | service timestamps log datetime msec 11 | no platform punt-keepalive disable-kernel-core 12 | platform console virtual 13 | ! 14 | hostname vRouter_Remote03 15 | ! 16 | boot-start-marker 17 | boot-end-marker 18 | ! 19 | ! 20 | enable secret 5 $1$arcS$RpczvVbdEybBZKjqaQE6E0 21 | enable password VMware1!VMware1! 22 | ! 23 | no aaa new-model 24 | ! 25 | ! 26 | ! 27 | ! 28 | ! 29 | ! 30 | ! 31 | ! 32 | ! 33 | 34 | 35 | ip domain name core.hypervizor.com 36 | 37 | ! 38 | ! 39 | ! 40 | ! 41 | ! 42 | ! 43 | ! 44 | ! 45 | ! 46 | ! 47 | subscriber templating 48 | multilink bundle-name authenticated 49 | ! 50 | ! 51 | username admin password 0 VMware1! 52 | ! 53 | redundancy 54 | mode none 55 | ! 56 | ! 57 | ! 58 | ! 59 | ! 60 | ! 61 | ! 62 | interface Loopback0 63 | ip address 33.33.33.33 255.255.255.255 64 | ip ospf 1 area 0 65 | ! 66 | interface GigabitEthernet1 67 | description Site03_WAN 68 | mtu 1600 69 | ip address 10.156.16.30 255.255.255.0 70 | ip ospf 1 area 0 71 | negotiation auto 72 | cdp enable 73 | ! 74 | interface GigabitEthernet2 75 | description Remote03_LAN 76 | mtu 1600 77 | ip address 10.171.11.2 255.255.255.0 78 | ip ospf 1 area 0 79 | negotiation auto 80 | cdp enable 81 | ! 82 | interface GigabitEthernet3 83 | mtu 1600 84 | no ip address 85 | shutdown 86 | negotiation auto 87 | ! 88 | interface GigabitEthernet4 89 | mtu 1600 90 | no ip address 91 | shutdown 92 | negotiation auto 93 | ! 94 | interface GigabitEthernet5 95 | mtu 1600 96 | ip address 3.3.3.3 255.255.255.0 97 | negotiation auto 98 | ! 99 | router ospf 1 100 | passive-interface Loopback0 101 | ! 102 | ! 103 | virtual-service csr_mgmt 104 | ! 105 | ip forward-protocol nd 106 | ! 107 | no ip http server 108 | no ip http secure-server 109 | ip route 0.0.0.0 0.0.0.0 192.168.21.2 110 | ! 111 | ! 112 | ! 113 | ! 114 | control-plane 115 | ! 116 | ! 117 | line con 0 118 | stopbits 1 119 | line vty 0 4 120 | password VMware1! 121 | login local 122 | line vty 5 98 123 | login local 124 | ! 125 | ! 126 | end 127 | -------------------------------------------------------------------------------- /Cisco-CSRs/vRouter_WAN_SP: -------------------------------------------------------------------------------- 1 | vRouter_WAN_ISP#sh run 2 | Building configuration... 3 | 4 | Current configuration : 2428 bytes 5 | ! 6 | ! Last configuration change at 00:06:09 PST Fri Aug 26 2016 7 | ! NVRAM config last updated at 00:06:09 PST Fri Aug 26 2016 8 | ! 9 | version 15.4 10 | service timestamps debug datetime msec 11 | service timestamps log datetime msec 12 | no platform punt-keepalive disable-kernel-core 13 | platform console virtual 14 | ! 15 | hostname vRouter_WAN_ISP 16 | ! 17 | boot-start-marker 18 | boot-end-marker 19 | ! 20 | ! 21 | enable secret 5 $1$voj9$n8XbKPz5b30ctGonYWg1K0 22 | enable password VMware1!VMware1! 23 | ! 24 | no aaa new-model 25 | clock timezone PST -7 0 26 | clock calendar-valid 27 | ! 28 | ! 29 | ! 30 | ! 31 | ! 32 | ! 33 | ! 34 | ! 35 | ! 36 | 37 | 38 | ip domain name core.hypervizor.com 39 | 40 | ! 41 | ! 42 | ! 43 | ! 44 | ! 45 | ! 46 | ! 47 | ! 48 | ! 49 | ! 50 | subscriber templating 51 | multilink bundle-name authenticated 52 | ! 53 | ! 54 | username admin password 0 VMware1! 55 | ! 56 | redundancy 57 | mode none 58 | ! 59 | ! 60 | ! 61 | ! 62 | ! 63 | ! 64 | ! 65 | interface Loopback0 66 | ip address 5.5.5.5 255.255.255.255 67 | ip ospf 1 area 0 68 | ! 69 | interface GigabitEthernet1 70 | description WAN_To_Site01 71 | mtu 1600 72 | ip address 10.155.14.5 255.255.255.0 73 | ip ospf 1 area 0 74 | negotiation auto 75 | cdp enable 76 | ! 77 | interface GigabitEthernet2 78 | description WAN_To_Site02 79 | mtu 1600 80 | ip address 10.157.17.5 255.255.255.0 81 | ip ospf 1 area 0 82 | negotiation auto 83 | cdp enable 84 | ! 85 | interface GigabitEthernet3 86 | description WAN_To_Site03 87 | mtu 1600 88 | ip address 10.156.16.5 255.255.255.0 89 | ip ospf 1 area 0 90 | negotiation auto 91 | cdp enable 92 | ! 93 | interface GigabitEthernet4 94 | mtu 1600 95 | no ip address 96 | ip ospf 1 area 0 97 | shutdown 98 | negotiation auto 99 | ! 100 | interface GigabitEthernet5 101 | mtu 1600 102 | no ip address 103 | ip ospf 1 area 0 104 | shutdown 105 | negotiation auto 106 | ! 107 | interface GigabitEthernet6 108 | mtu 1600 109 | no ip address 110 | shutdown 111 | negotiation auto 112 | ! 113 | interface GigabitEthernet7 114 | mtu 1600 115 | no ip address 116 | shutdown 117 | negotiation auto 118 | ! 119 | interface GigabitEthernet8 120 | mtu 1600 121 | no ip address 122 | shutdown 123 | negotiation auto 124 | ! 125 | interface GigabitEthernet9 126 | mtu 1600 127 | no ip address 128 | shutdown 129 | negotiation auto 130 | ! 131 | interface GigabitEthernet10 132 | mtu 1600 133 | ip address 3.3.3.3 255.255.255.0 134 | negotiation auto 135 | ! 136 | router ospf 1 137 | passive-interface Loopback0 138 | ! 139 | ! 140 | virtual-service csr_mgmt 141 | ! 142 | ip forward-protocol nd 143 | ! 144 | no ip http server 145 | no ip http secure-server 146 | ! 147 | ! 148 | snmp-server group DC01 v3 auth access vmware 149 | snmp-server view mib2 mib-2 included 150 | snmp-server community vmware RO 151 | snmp-server community public RO 152 | snmp-server community private RW 153 | snmp-server host 172.16.10.25 version 2c vmware 154 | ! 155 | ! 156 | control-plane 157 | ! 158 | ! 159 | line con 0 160 | stopbits 1 161 | line vty 0 4 162 | password VMware1! 163 | login local 164 | line vty 5 98 165 | login local 166 | ! 167 | ! 168 | end 169 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # NSX-SDN-LAB v3.5.1 2 | NSX Software-defined Networking Lab - Architected and Developed by Hany Michael 3 | 4 | # About 5 | NSX SDN-LAB is a fully virtualized and nested lab running on VMware’s internal cloud. This lab is architected and developed by Hany Michael – Senior Staff Architect in the Networking & Security Business Unit. If you are a VMware employee, you have an instant access to this lab as a virtual pod which could be deployed as an independent and dedicated instance from the OneCloud portal. If you are a VMware customer or a partner and would like to have an access to the lab, you can contact your account team for further guidance. This lab is vendor neutral and any of its third-party vendors listed could be replaced if required. This architecture could be used also to illustrate some of VMware’s networking and security solutions and capabilities. All the information included in this architecture reflects the exact design and configuration of the NSX SDN-LAB including but not limited to: designs, product releases, hostnames, IP addresses and so forth. The lab is also designed to be modular and could be scaled to include more sites, network, servers and/or storage resources. The future development of this lab will be based on “add-ons” to introduce other networking technologies (like MPLS), topologies (like Service-Provider models) or external clouds (like Amazon AWS, Microsoft Azure, Google CPE just to name a few). 6 | 7 | # NSX Design & Features 8 | NSX System: 9 | - 2 x NSX Managers in Cross-vCenter 10 | - 3 x Universal Controllers 11 | - CAI: 1 x Edge Cluster + 1 x Compute 12 | - HBE: 1 x Collapsed Edge + Compute 13 | 14 | Multi-Rack Multi Edge Routing: 15 | - 1 x Local DLR with 1 LIF 16 | - 4 x Edge Services Gateways 17 | - 4 x Arista Top-of-Rack Switches 18 | - ECMP Configuration between ESGs & Arista ToRs over 4 VLANs (50, 60, 70, 80) 19 | 20 | Datacenter Interconnect: 21 | - 1 x Universal DLR with 3 LIFs 22 | - 2 x ESGs in Cairo Datacenter 23 | - 2 x ESGs in Alexandria Datacenter 24 | - ECMP Configuration 25 | - Local Egress 26 | 27 | Virtual Private Networking: 28 | - Site-to-Site VPN between CAI & HBE 29 | - 3-Site L2-VPN in Hub (CAI) spoke (HBE + Remote) design. 30 | - SSL-VPN Gateway in HBE for remote access 31 | - SSL-VPN-Clients on Remote Site 32 | 33 | Load Balancing: 34 | - Load balancers for vCD-SP and vRA 35 | 36 | Distributed Firewall: 37 | - DFW with Universal FW Rules applied on the vRealize Automation Portal for end-user access. 38 | - DFW with Local FW Rules on the 3-Tier Web/App/DB Application. 39 | 40 | # NSX Integrations: 41 | VMware Products 42 | - BCDR: vCenter Site Recovery Manager 43 | - Security: vRealize Log Insight 44 | - Visibility: vRealize Network Insight 45 | - Automation: vRealize Automation 46 | - Service Provider: vCD-SP 47 | 48 | Third-Party: 49 | - Routing: Arista vROS & Cisco CSR 50 | - Security NI: Palo Alto Networks 51 | - Security GI: Trend Micro 52 | 53 | # Products & Accounts 54 | vSphere: 55 | - vCenter Server 6.0 U2 - User/Pass: administrator/VMware1! 56 | - ESXi 6.0 U2 - User/Pass: root/VMware1! 57 | 58 | NSX: 59 | - NSX 6.2.4 - User/Pass: admin/VMware1! 60 | 61 | Site Recovery Manager: 62 | - vCenter SRM 6.1 - User/Pass: administrator/VMware1! 63 | - vSphere Replication 6.1 - User/Pass: root/VMware1! 64 | 65 | vRealize Log Insight: 66 | - vRealize Log Insight 3.3 - User/Pass: admin/VMware1! 67 | 68 | vRealize Network Insight: 69 | - vRealize Network Insight 3.0 - User/Pass: admin/VMware1! 70 | 71 | vRealize Operations: 72 | - vRealize Operations 6.1 - User/Pass: admini/VMware1! 73 | 74 | vRealize Automation: 75 | - vRealize Automation 7.1 - User/Pass: administrator/VMware1! 76 | 77 | vCloud Director-SP 8.1: 78 | - vCloud Director SP 8.1 - User/Pass: administrator/VMware1! 79 | 80 | # Third-Party Vendors 81 | Cisco: 82 | - Cisco CSR 1000V - User/Pass: admin/VMware1! 83 | 84 | Arista: 85 | - Arista vEOS 4.15.4F - User/Pass: admin/VMware1! 86 | 87 | Palo Alto Networks: 88 | - Panorama 7.1 - User/Pass: admin/VMware1! 89 | - NSX VM-Series Firewall 7.0.1 90 | 91 | OpenFiler: 92 | - OpenFiler ESA 2.99.1 - User/Pass: admin/VMware1! 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | -------------------------------------------------------------------------------- /Scripts/Resolve-Clusters.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | 3 | # Resolve cluster issues after the first boot of the NSX SDN-LAB pod. 4 | # Hany Michael - www.networkskyx.com 5 | 6 | import requests 7 | from xml.etree import ElementTree 8 | 9 | url1='https://nsxmgr01.core.hypervizor.com//api/2.0/nwfabric/resolveIssues/domain-c7' 10 | url2='https://nsxmgr01.core.hypervizor.com//api/2.0/nwfabric/resolveIssues/domain-c253' 11 | url3='https://nsxmgr02.core.hypervizor.com//api/2.0/nwfabric/resolveIssues/domain-c7' 12 | 13 | nsxmanager_user='admin' 14 | nsxmanager_password='VMware1!' 15 | 16 | nsx_headers={'content-type':'application/xml'} 17 | 18 | 19 | try: 20 | response = requests.post(url1, headers=nsx_headers,auth=(nsxmanager_user,nsxmanager_password), verify=False) 21 | except requests.exceptions.ConnectionError as e: 22 | print ("Connection error") 23 | 24 | print (response.text) 25 | 26 | 27 | try: 28 | response = requests.post(url2, headers=nsx_headers,auth=(nsxmanager_user,nsxmanager_password), verify=False) 29 | except requests.exceptions.ConnectionError as e: 30 | print ("Connection error") 31 | 32 | print (response.text) 33 | 34 | try: 35 | response = requests.post(url3, headers=nsx_headers,auth=(nsxmanager_user,nsxmanager_password), verify=False) 36 | except requests.exceptions.ConnectionError as e: 37 | print ("Connection error") 38 | 39 | print (response.text) 40 | 41 | -------------------------------------------------------------------------------- /Scripts/nsx-sdn-lab-upgrade.sh: -------------------------------------------------------------------------------- 1 | ##!/bin/bash 2 | if [ -z "$2" ] 3 | then 4 | echo "Arguments supplied not complete. Please provide the NSX release and build number." 5 | echo "Syntax: ./nsx-sdn-lab-upgrade 6.2.4 4567890" 6 | exit 1 7 | fi 8 | echo "" 9 | echo "███╗ ██╗███████╗██╗ ██╗ ███████╗██████╗ ███╗ ██╗ ██╗ █████╗ ██████╗ ██╗ ██╗██████╗ ██████╗ ██████╗ █████╗ ██████╗ ███████╗" 10 | echo "████╗ ██║██╔════╝╚██╗██╔╝ ██╔════╝██╔══██╗████╗ ██║ ██║ ██╔══██╗██╔══██╗ ██║ ██║██╔══██╗██╔════╝ ██╔══██╗██╔══██╗██╔══██╗██╔════╝" 11 | echo "██╔██╗ ██║███████╗ ╚███╔╝ ███████╗██║ ██║██╔██╗ ██║█████╗██║ ███████║██████╔╝ ██║ ██║██████╔╝██║ ███╗██████╔╝███████║██║ ██║█████╗ " 12 | echo "██║╚██╗██║╚════██║ ██╔██╗ ╚════██║██║ ██║██║╚██╗██║╚════╝██║ ██╔══██║██╔══██╗ ██║ ██║██╔═══╝ ██║ ██║██╔══██╗██╔══██║██║ ██║██╔══╝ " 13 | echo "██║ ╚████║███████║██╔╝ ██╗ ███████║██████╔╝██║ ╚████║ ███████╗██║ ██║██████╔╝ ╚██████╔╝██║ ╚██████╔╝██║ ██║██║ ██║██████╔╝███████╗" 14 | echo "╚═╝ ╚═══╝╚══════╝╚═╝ ╚═╝ ╚══════╝╚═════╝ ╚═╝ ╚═══╝ ╚══════╝╚═╝ ╚═╝╚═════╝ ╚═════╝ ╚═╝ ╚═════╝ ╚═╝ ╚═╝╚═╝ ╚═╝╚═════╝ ╚══════╝" 15 | echo "" 16 | echo "╔══════════════════════════╗" 17 | echo "║- Author: Hany Michael ║" 18 | echo "║- eMail: hany@vmware.com ║" 19 | echo "║- Version: 1.0 ║" 20 | echo "╚══════════════════════════╝" 21 | echo "" 22 | echo "" 23 | # NSX Manager of Site 01 24 | nsxManagerSite01_host="nsxmgr01.core.hypervizor.com" 25 | nsxManagerSite01_user="admin" 26 | nsxManagerSite01_pass="VMware1!" 27 | # NSX Manager of Site 02 28 | nsxManagerSite02_host="nsxmgr02.core.hypervizor.com" 29 | nsxManagerSite02_user="admin" 30 | nsxManagerSite02_pass="VMware1!" 31 | # NSX Buildweb URL 32 | nsxBuildweb_URL="http://URL/" 33 | 34 | 35 | echo "╔══════════════════════════" 36 | echo "║ NSX Release: $1 " 37 | echo "║ NSX Build: $2 " 38 | echo "╚══════════════════════════" 39 | echo "" 40 | echo ""'Buildweb upgrade bundle URL: '$nsxBuildweb_URL'VMware-NSX-Manager-upgrade-bundle-$1-$2.tar.gz'"" 41 | 42 | echo "╔═══════════════════════════════════════════════════════╗" 43 | echo "║ Downloading the Upgrade Bundle ║" 44 | echo "╚═══════════════════════════════════════════════════════╝" 45 | wget $nsxBuildweb_URL'VMware-NSX-Manager-upgrade-bundle-'$1-$2'.tar.gz' 46 | 47 | echo "╔═══════════════════════════════════════════════════════╗" 48 | echo "║ Renaming the upgrade bundle to upgrade-bundle.tar.gz ║" 49 | echo "╚═══════════════════════════════════════════════════════╝" 50 | mv VMware-NSX-Manager-upgrade-bundle-$1-$2.tar.gz upgrade-bundle.tar.gz 51 | 52 | echo "╔═════════════════════════════════════════════════════════════════════╗" 53 | echo "║ Uploading the upgade package to the NSX Manager in Cairo Datacenter ║" 54 | echo "╚═════════════════════════════════════════════════════════════════════╝" 55 | curl -i -v -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -H 'Accept:application/xml' -F file=@upgrade-bundle.tar.gz -X POST https://$nsxManagerSite01_host/api/1.0/appliance-management/upgrade/uploadbundle/NSX -o upload.out 56 | 57 | echo "╔═══════════════════════════════════════════════════════╗" 58 | echo "║ Upgrading NSX Manager in Cairo Datacenter ║" 59 | echo "╚═══════════════════════════════════════════════════════╝" 60 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" -d 'preUpgradeChecks1:Q1Do you want to enable SSH? YESNOYES' "https://$nsxManagerSite01_host/api/1.0/appliance-management/upgrade/start/NSX" 61 | 62 | echo "╔═════════════════════════════════════════════════════════════════════╗" 63 | echo "║ Uploading Package to secondary NSX Manager in Alexandria Datacenter ║" 64 | echo "╚═════════════════════════════════════════════════════════════════════╝" 65 | curl -i -v -k -u $nsxManagerSite02_user:$nsxManagerSite01_pass -H 'Accept:application/xml' -F file=@upgrade-bundle.tar.gz -X POST https://$nsxManagerSite02_host/api/1.0/appliance-management/upgrade/uploadbundle/NSX -o upload.out 66 | 67 | echo "╔═══════════════════════════════════════════════════════╗" 68 | echo "║ Upgrading NSX Manager in Alexandria Datacenter ║" 69 | echo "╚═══════════════════════════════════════════════════════╝" 70 | curl -k -u $nsxManagerSite02_user:$nsxManagerSite02_pass -X POST -H "Content-Type: application/xml" -d 'preUpgradeChecks1:Q1Do you want to enable SSH? YESNOYES' "https://$nsxManagerSite02_host/api/1.0/appliance-management/upgrade/start/NSX" 71 | 72 | echo "╔═══════════════════════════════════════════════════════╗" 73 | echo "║ Sleeping for 10 minutes ║" 74 | echo "╚═══════════════════════════════════════════════════════╝" 75 | sleep 10m 76 | 77 | echo "╔═══════════════════════════════════════════════════════╗" 78 | echo "║ Upgrading Controller Cluster in Cairo Datacenter ║" 79 | echo "╚═══════════════════════════════════════════════════════╝" 80 | curl -i -v -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -H 'Accept:application/xml' -X POST https://$nsxManagerSite01_host/api/2.0/vdn/controller/cluster/upgrade 81 | 82 | echo "╔═══════════════════════════════════════════════════════════════════════════╗" 83 | echo "║ Sleeping for 70 minutes until the controller cluster finishes the upgrade ║" 84 | echo "╚═══════════════════════════════════════════════════════════════════════════╝" 85 | sleep 70m 86 | 87 | echo "╔═══════════════════════════════════════════════════════╗" 88 | echo "║ Upgrading Compute Cluster in Cairo Datacenter ║" 89 | echo "╚═══════════════════════════════════════════════════════╝" 90 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X PUT -H "Content-Type: application/xml" -d 'domain-c7' "https://$nsxManagerSite01_host/api/2.0/nwfabric/configure" 91 | 92 | echo "╔═══════════════════════════════════════════════════════╗" 93 | echo "║ Upgrading Edge Cluster in Cairo Datacenter ║" 94 | echo "╚═══════════════════════════════════════════════════════╝" 95 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X PUT -H "Content-Type: application/xml" -d 'domain-c253' "https://$nsxManagerSite01_host/api/2.0/nwfabric/configure" 96 | 97 | echo "╔═══════════════════════════════════════════════════════╗" 98 | echo "║ Upgrading Compute Cluster in Alexandria Datacenter ║" 99 | echo "╚═══════════════════════════════════════════════════════╝" 100 | curl -k -u $nsxManagerSite02_user:$nsxManagerSite02_pass -X PUT -H "Content-Type: application/xml" -d 'domain-c7' "https://$nsxManagerSite02_host/api/2.0/nwfabric/configure" 101 | 102 | echo "╔═══════════════════════════════════════════════════════╗" 103 | echo "║ Upgrading the ESGs in Cairo Datacenter ║" 104 | echo "╚═══════════════════════════════════════════════════════╝" 105 | echo "Upgrading UDLR" 106 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-a9cd7497-f0dc-455b-945d-ac47639cf17e?action=upgrade" 107 | echo "Upgrading edge-1" 108 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-1?action=upgrade" 109 | echo "Upgrading edge-2" 110 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-2?action=upgrade" 111 | echo "Upgrading edge-17" 112 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-17?action=upgrade" 113 | echo "Upgrading edge-19" 114 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-19?action=upgrade" 115 | echo "Upgrading edge-22" 116 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-22?action=upgrade" 117 | echo "Upgrading edge-23" 118 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-23?action=upgrade" 119 | echo "Upgrading edge-24" 120 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-24?action=upgrade" 121 | echo "Upgrading edge-25" 122 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-25?action=upgrade" 123 | echo "Upgrading edge-26" 124 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-26?action=upgrade" 125 | echo "Upgrading edge-32" 126 | curl -k -u $nsxManagerSite01_user:$nsxManagerSite01_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite01_host/api/4.0/edges/edge-32?action=upgrade" 127 | 128 | echo "╔═══════════════════════════════════════════════════════╗" 129 | echo "║ Upgrading the ESGs in Alexandria Datacenter ║" 130 | echo "╚═══════════════════════════════════════════════════════╝" 131 | echo "Upgrading edge-1" 132 | curl -k -u $nsxManagerSite02_user:$nsxManagerSite02_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite02_host/api/4.0/edges/edge-1?action=upgrade" 133 | echo "Upgrading edge-2" 134 | curl -k -u $nsxManagerSite02_user:$nsxManagerSite02_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite02_host/api/4.0/edges/edge-2?action=upgrade" 135 | echo "Upgrading edge-4" 136 | curl -k -u $nsxManagerSite02_user:$nsxManagerSite02_pass -X POST -H "Content-Type: application/xml" "https://$nsxManagerSite02_host/api/4.0/edges/edge-4?action=upgrade" 137 | 138 | echo "▄▄▄▄▄▄▄▄▄▄▄ ▄ ▄ ▄▄▄▄▄▄▄▄▄▄▄ ▄▄▄▄▄▄▄▄▄▄▄ ▄▄ ▄ ▄▄▄▄▄▄▄▄▄▄ " 139 | echo "▐░░░░░░░░░░░▌▐░▌ ▐░▌▐░░░░░░░░░░░▌ ▐░░░░░░░░░░░▌▐░░▌ ▐░▌▐░░░░░░░░░░▌" 140 | echo "▀▀▀▀█░█▀▀▀▀ ▐░▌ ▐░▌▐░█▀▀▀▀▀▀▀▀▀ ▐░█▀▀▀▀▀▀▀▀▀ ▐░▌░▌ ▐░▌▐░█▀▀▀▀▀▀▀█░▌" 141 | echo " ▐░▌ ▐░▌ ▐░▌▐░▌ ▐░▌ ▐░▌▐░▌ ▐░▌▐░▌ ▐░▌" 142 | echo " ▐░▌ ▐░█▄▄▄▄▄▄▄█░▌▐░█▄▄▄▄▄▄▄▄▄ ▐░█▄▄▄▄▄▄▄▄▄ ▐░▌ ▐░▌ ▐░▌▐░▌ ▐░▌" 143 | echo " ▐░▌ ▐░░░░░░░░░░░▌▐░░░░░░░░░░░▌ ▐░░░░░░░░░░░▌▐░▌ ▐░▌ ▐░▌▐░▌ ▐░▌" 144 | echo " ▐░▌ ▐░█▀▀▀▀▀▀▀█░▌▐░█▀▀▀▀▀▀▀▀▀ ▐░█▀▀▀▀▀▀▀▀▀ ▐░▌ ▐░▌ ▐░▌▐░▌ ▐░▌" 145 | echo " ▐░▌ ▐░▌ ▐░▌▐░▌ ▐░▌ ▐░▌ ▐░▌▐░▌▐░▌ ▐░▌" 146 | echo " ▐░▌ ▐░▌ ▐░▌▐░█▄▄▄▄▄▄▄▄▄ ▐░█▄▄▄▄▄▄▄▄▄ ▐░▌ ▐░▐░▌▐░█▄▄▄▄▄▄▄█░▌" 147 | echo " ▐░▌ ▐░▌ ▐░▌▐░░░░░░░░░░░▌ ▐░░░░░░░░░░░▌▐░▌ ▐░░▌▐░░░░░░░░░░▌ " 148 | echo " ▀ ▀ ▀ ▀▀▀▀▀▀▀▀▀▀▀ ▀▀▀▀▀▀▀▀▀▀▀ ▀ ▀▀ ▀▀▀▀▀▀▀▀▀▀ " 149 | --------------------------------------------------------------------------------