---- ---- Installed eve-ng installed as vm under KVM and "Virtual Network (NAT)"\\ To access KVM via my laptop's virtual-manager (while in ocna), we just use ssh and the ssh proxy settings in .ssh/config: \\ ## us-ashburn-1 V2 Host 10.195.* 10.197.* *iad1.mycompany2datacloud.com *iadshared1.mycompany2datacloud.com !bastion-62-* *ash.oci.mycompany1.co.uk *iad.oci.mycompany1.co.uk ProxyCommand ssh bastion-iad.mycompany2datacloud.com -W %h:%p \\ To access the UI interface on http://192.168.122.174/#/login : e do to socks tunnel to the end host (networklab). That ssh flow is directed to the proxy settings in .ssh/config and it just works (set FF settings to socks on 1084)\\ ssh -CAD 1084 user@networklab01.iad.oci.mycompany1.co.uk \\ CSR: \\ [[https://www.eve-ng.net/index.php/documentation/howtos/howto-add-cisco-csrv1000-16-x-denali-everest-fuji/]] \\ Alternative versions in networklab01:/home/jaime.santos.amandi/Downloads \\ ** THIS CSR VERSION WORKS**\\ /opt/qemu/bin/qemu-img create -f qcow2 virtioa.qcow2 8G \\ \\ /opt/qemu-2.2.0/bin/qemu-system-x86_64 -nographic -drive file=virtioa.qcow2,if=virtio,bus=0,unit=0,cache=none -machine type=pc-1.0,accel=kvm -serial mon:stdio -nographic -nodefconfig -nodefaults -rtc base=utc -cdrom csr1000v-universalk9.16.03.09.iso -boot order=dc -m 4096 \\ [.Takes some time to boot ~10min.] mkdir /opt/unetlab/addons/qemu/csr1000vng-universalk9.16.03.09 mv virtioa.qcow2 /opt/unetlab/addons/qemu/csr1000vng-universalk9.16.03.09/ \\ /opt/unetlab/wrappers/unl_wrapper -a fixpermissions [% Failed to initialize nvram but it finally boots] \\ 1 vcpu and 4096 ram (defaults). 4 interfaces work ok and numbering correct ---- **MANAGEMENT HOST AUTOMATION:**\\ * Install this image following the eve-ng howto : linux-ubuntu-server-18.04-pfne.tar.gz . See https://ipnet.xyz/2018/06/ubuntu-image-for-eve-ng-python-for-network-engineers/ * cpu: 2 ; ram 8192 ethernets 2 ; qemu ver 2.12.0 x86_64 e1000 * Create a cloud object (Management(Cloud0)) so we create a tun/tap interface to connect to the vms inside eve-ng * to access the linux bastion host: root@192.168.122.160 * Using eve-ng html-5 console, access the host and enable root login in sshd ---- CISCO IOS BASELINE CONFIGURATION The below is to be run manually in each of the CSR routers when they boot:\\ [[https://www.cisco.com/c/en/us/td/docs/routers/csr1000/software/configuration/b_CSR1000v_Configuration_Guide/b_CSR1000v_Configuration_Guide_chapter_01101.html]] This is to allow the automation tool to talk to the routers: conf t username ansible privilege 15 password 0 ansible line vty 0 8 exec-timeout 720 0 password ansible login local transport input ssh \\ ! use this command when copying the public key from the users' workstation to the router: fold -b -w 72 /home/ubuntu/.ssh/id_rsa.pub conf t username jaime privilege 15 ip ssh pubkey-chain username jaime key-string ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDVewvRcYNMK7e88mCs5clB5G6ItBuOP8xgZhYbvVQDboXdNbrWlnokGdIOBQY1M8K5bbTDdVeHf8mXgfVxWGrcd0uigO+VDxcRL5tFPcx7rJQVhsVaTbnIzmNmRpqihRUHvVN2yxNHEwLZa2fuzFqghcJOJLCCY+khpx4uq2D7ILX/NBggSm0mXTJJ+9ebBP2MLbJItwwnmdAhaUUbgMNNPp218SpK1Bjbv57/gDi+4Kgzu8ojJgqcvAq4gK0T4RVPjbSHNTXFkGkbmF9XHQYibrHeOOLKuhGNzdNGLAPO/S/JvKI94WdnUMfxdOFlbMolmKijFGCy6YzWcMVoHaQT root@ubuntu1804-pfn e exit exit exit wr ! --- EVE-NG LINUX IMAGE: \\ * [[https://ipnet.xyz/2018/06/ubuntu-image-for-eve-ng-python-for-network-engineers/]] * Min requirements: