!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !switch-vwd-1,switch-vwd-2 conf t vlan 8xx name template end wr mem !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !switch-vwd-sp1, switch-vwd-sp2 conf t vrf definition template rd 65000:1009 address-family ipv4 exit-address-family vlan 8xx name template ip access-list standard routes2template permit 192.168.112.0 0.0.0.255 permit 192.168.220.0 0.0.0.255 permit 172.20.20.0 0.0.0.255 permit 172.20.21.0 0.0.0.255 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !switch-vwd-sp1 conf t vlan Vlan10x name template interface vlan8xx description template vrf forwarding template ip address 10.120.1.98 255.255.255.248 int Gi1/0/10 description Cust: VWD-Transit (template) no switchport # vrf forwarding template # ip address 192.168.239.26 255.255.255.254 # switchport mode trunk|access # switchport access vlan ... # switchport trunk allowed vlan ... # channel-group X mode on|active int Vlan10x description Cust: VWD-Transit (template) vrf forwarding template ip address 192.168.239.26 255.255.255.254 router bgp 65148 address-family ipv4 vrf template bgp router-id auto-assign redistribute static neighbor 10.120.1.97 remote-as 65148 neighbor 10.120.1.99 remote-as 65160 neighbor 10.120.1.99 local-as 65160 neighbor 192.168.239.27 remote-as 6520x neighbor 192.168.239.27 local-as 65160 distribute-list routes2template exit-address-family ip route vrf template 172.20.20.0 255.255.255.0 10.120.2.1 ip route vrf template 172.20.21.0 255.255.255.0 10.120.2.1 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !switch-vwd-sp2 conf t vlan Vlan10y name template vlan 8xx name template interface vlan8xx description template vrf forwarding template ip address 10.120.1.99 255.255.255.248 int Gi1/0/10 description Cust: VWD-Transit (template) no switchport # vrf forwarding template # ip address 192.168.239.154 255.255.255.254 # switchport mode trunk|access # switchport access vlan ... # switchport trunk allowed vlan ... # channel-group X mode on|active int Vlan10y description Cust: VWD-Transit (template) vrf forwarding template ip address 192.168.239.154 255.255.255.254 router bgp 65148 address-family ipv4 vrf template bgp router-id auto-assign redistribute static neighbor 10.120.1.97 remote-as 65148 neighbor 10.120.1.98 remote-as 65160 neighbor 10.120.1.98 local-as 65160 neighbor 192.168.239.155 remote-as 6520x neighbor 192.168.239.155 local-as 65160 distribute-list routes2template exit-address-family ip route vrf template 172.20.20.0 255.255.255.0 10.120.2.1 ip route vrf template 172.20.21.0 255.255.255.0 10.120.2.1 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !asa-vwd-1 conf t interface Port-channel2.8xx vlan 8xx nameif template security-level 100 ip address 10.120.1.97 255.255.255.248 access-list template_access_in extended permit icmp any any access-list template_access_in extended deny ip any any no monitor-interface template access-group template_access_in in interface template router bgp 65148 bgp log-neighbor-changes address-family ipv4 unicast neighbor 10.120.1.98 remote-as 65148 neighbor 10.120.1.98 description template primary weight 200 neighbor 10.120.1.98 activate neighbor 10.120.1.98 next-hop-self neighbor 10.120.1.98 weight 200 neighbor 10.120.1.99 remote-as 65148 neighbor 10.120.1.99 description template secondary weight 100 neighbor 10.120.1.99 activate neighbor 10.120.1.99 next-hop-self neighbor 10.120.1.99 weight 100