This document describes the steps to setup the testbed and deploy a topology.
-
Install Ubuntu 18.04 amd64 on the server.
-
Setup management port configuration using this sample
/etc/network/interfaces:root@server-1:~# cat /etc/network/interfaces # The management network interface auto ma0 iface ma0 inet manual # Server, VM and PTF management interface auto br1 iface br1 inet static bridge_ports ma0 bridge_stp off bridge_maxwait 0 bridge_fd 0 address 10.250.0.245 netmask 255.255.255.0 network 10.250.0.0 broadcast 10.250.0.255 gateway 10.250.0.1 dns-nameservers 10.250.0.1 10.250.0.2 # dns-* options are implemented by the resolvconf package, if installed -
Install python 2.7 (this is required by Ansible).
-
Add Docker's official GPG key:
$ curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add -
The PTF docker container is used to send and receive data plane packets to the DUT.
-
Build
docker-ptfimagegit clone --recursive https://github.com/Azure/sonic-buildimage.git cd sonic-buildimage make configure PLATFORM=generic make target/docker-ptf.gz -
Setup your own Docker Registry and upload
docker-ptfto your registry.
Managing the testbed and running tests requires various dependencies to be installed and configured. We have built a docker-sonic-mgmt image that takes care of these dependencies so you can use ansible-playbook, pytest, and spytest.
-
Build
docker-sonic-mgmtimage from scratch:git clone --recursive https://github.com/Azure/sonic-buildimage.git cd sonic-buildimage make configure PLATFORM=generic make target/docker-sonic-mgmt.gzYou can also download a pre-built
docker-sonic-mgmtimage here. -
Clone the
sonic-mgmtrepo into your working directory:git clone https://github.com/Azure/sonic-mgmt -
Create a
docker-sonic-mgmtcontainer. Note that you must mount your clone ofsonic-mgmtinside the container to access the deployment and testing scripts:docker load < docker-sonic-mgmt.gz docker run -v $PWD:/data -it docker-sonic-mgmt bash cd ~/sonic-mgmt
NOTE: From this point on, all steps are ran inside the docker-sonic-mgmt container.
Once you are in the docker container, you need to modify the testbed configuration files to reflect your lab setup.
-
Server
-
Update the server management IP in
ansible/veos. -
Update the testbed server credentials in
ansible/group_vars/vm_host/creds.yml. -
Update the server network configuration for the VM and PTF management interfaces in
ansible/host_vars/STR-ACS-SERV-01.yml.external_port: server trunk port name (connected to the fanout switch)mgmt_gw: ip of the gateway for the VM management interfacesmgmt_prefixlen: prefixlen for the management interfaces
-
Check that ansible can reach this host:
ansible -m ping -i veos vm_host_1
-
-
VMs
-
Download vEOS image from Arista.
-
Copy these image files to
~/veos-vm/imageson your testbed server:Aboot-veos-serial-8.0.0.isovEOS-lab-4.20.15M.vmdk
-
Update the VM IP addresses in the
ansible/veosinventory file. These IP addresses should be in the management subnet defined above. -
Update the VM credentials in
ansible/group_vars/eos/creds.yml.
-
-
PTF Docker
- Update the docker registry information in
vars/docker_registry.yml.
- Update the docker registry information in
-
Start the VMs:
./testbed-cli.sh start-vms server_1 password.txtPlease note:
password.txtis the ansible vault password file name/path. Ansible allows users to useansible-vaultto encrypt password files. By default, this shell script requires a password file. If you are not usingansible-vault, just create an empty file and pass the file name to the command line. The file name and location is created and maintained by the user. -
Check that all the VMs are up and running:
ansible -m ping -i veos server_1
You need to specify all physical connections that exist in the lab before deploying the fanout and running the tests.
Please follow the "Testbed Physical Topology" section of the Configuration Guide to prepare your lab connection graph file.
We are using Arista switches as the fanout switches in our lab. So, the playbook under roles/fanout is for deploying fanout (leaf) switch Vlan configurations on Arista devices only. If you are using other types of fanout switches, you can manually configure the Vlan configurations on the switch, or you can deploy a regular Layer-2 switch configuration.
Our fanout switches deploy using the Arista switch's eosadmin shell login. If you have an Arista switch as your fanout and you want to run fanout/tasks/main.yml to deploy the switch, please scp the roles/fanout/template/rc.eos file to the Arista switch flash, and make sure that you can login to the shell with fanout_admin_user/fanout_admin_password.
TODO:
- Improve testbed root fanout switch configuration method.
- Update the inventory file format. Some of the early fanout definition files have duplicated fields with the inventory file. We should adopt a new inventory file and improve the lab graph.
- Update
testbed.csvwith your data. At the least, you should update the PTF management interface settings. - To deploy a topology run:
./testbed-cli.sh add-topo vms-t1 ~/.password - To remove a topology run:
./testbed-cli.sh remove-topo vms-t1 ~/.password
NOTE: The last step in testbed-cli.sh is trying to re-deploy the Vlan range in the root fanout switch to match the VLAN range specified in the topology. In other words, it's trying to change the "allowed" Vlan for the Arista switch ports. If you have a different type of switch, this may or may not work. Please review the steps and update accordingly if necessary. If you comment out the last step, you may manually swap Vlan ranges in the root fanout to make the testbed topology switch work.