BE Labs

Welcome to BE Labs, the online Verity evaluation environment!

This guide will walk you through a quick introduction to Verity and the main components of the solution.

LUKE - LAB Design description, simple diagram here.

Requirements

To use this lab you must have the following:

Item	Source
Google Chrome	Google, duh
BE Labs URL	BE Networks Solutions Team
Verity Username	BE Networks Solutions Team
Verity Password	BE Networks Solutions Team

Scenario 1 - Create a Tenant

In this scenario you will login to Verity, get comfortable with the navigation, and create a new Tenant in Verity, including Layer-2 Services, and finally a Gateway.

Logging into Verity

1. Enter the BE Labs URL in your browser.
2. Enter the Username and Password provided to login.
3. Wait a moment for the items in the left sidebar to turn black, indicating that the components of the Verity GUI are ready for use.

Create a Tenant

1. Click Tenancy on the left main menu.
2. Click Tenants
3. Click Add Button in the upper right corner.

LUKE please continue cleaning up and organizing from here down....

1. Give the Tenant a Name in the dialog box. Click Create Tenant button to create tenant
2. Verity the VRF settings and adjust as neccissary. (Optional) If DHCP relay is required, enter the details for the DHCP Subnet here.
3. (Optional) Under Inter-Tenant Routing, enable importing Routes from another Tenant * Select Route Map template or Create a new route map template to apply to the imported or exported Tenant routes.
4. Click Save to save the settings of the Tenant.

Create new Services

1. Click Tenancy
2. Click Services
3. Click +Add Button
4. Give the Service a Name in the dialog box. Click Create Service button to create the service.
5. Click the Enable slide to enable the service for use.
6. From the Tenant drop down menu, select the Tenant that will manage this service.
7. Under Layer-2, enter the VLAN ID for the VLAN
8. (Optional) Under Layer-3, enter the Anycast GW IP address and Mask for the VLAN.
9. (Optional) Under DHCP Relay, enter the DHCP Server if applicable.
10. (Optional) Under Policy Based Routing, enter the PBR Template or create one for this VLAN
11. Click Save to save the settings for this VLAN
12. Repeat these steps to create a second VLAN.

Create a new Gateway

1. Click Tenancy
2. Click Gateways
3. Click +Add Button
4. Give the Gateway a name in the dialog box. Click Create Gateway button to create the Gateway.
5. Click the Enalbe slide to enable the service for use.
6. From the Tenant drop down menu, select the Tenant that will manage this Gateway.
7. Select the Gateway mode. Select Static BGP * (Optional) Enter Egress VLAN if required. * (Optional) Enter Anycast IP and Mask if required.
8. (Optional) Enter the import and export Route maps if required. You can also create these templates from here.
9. Under BGP, enter the Neighbor ASN. * (Optional) The Local AS, Source IP Address, MD5 Password and the Next Hop Self and Default Originalte can be entered, but are not mandedtory. * Under BGP Neighbor Configuration, Enter the Neighbor Next Hop IP Address (Optional) * Enter the Nightbor IP Address. This is the neighbors configured Router-ID.
10. (Optional) Update the Timers if required.
11. (Optional) Under Static Routes, enter any Static routes you need for routing here.
12. (Optional) Enable Bi-directional Forwarding (BFD) and adjust the settings as required.
13. Click Save to save the settings for this Gateway.

Apply tenant to ports (bundle services with eth-port-profile, apply profile to a port)

This Demonstration will show how to apply the Tenants and Services to a profile, and apply the profiles to a port.

Creating an Eth-Port Profile (L2 Services template).

1. Click Templates
2. Under Layer-2, click Eth-Port Profiles
3. Click +Add button
4. Give the Eth-Port Profile a name in the dialog box. Click the Create Eth-Port Profile button to create the profile.
5. Click the enable slide to enable the profile for use.
6. Under Services, from the Service Pull-down menu, select the L2 Service you want to be managed by this profile. * Click Enabled to enable the service * (Optional) From the Ingress/Egress ACL pull-down menu's, select the ACL rules you want applied to the profile. * From the External VLAN pull-down menu, select how you want the VLAN configured:
   • From Service = Tagged VLAN (switchport trunk mode)
   • Untagged = Untagged VLAN (switchport access mode)
   • Translated = VLAN Translation of VLAN ID to VLAN ID
7. Repeat step 6 for any additional services you want to add to this profile.
8. (Optional) Under Port ACL's Enter the Ingress/Egress ACL rules template or create one here.
9. (Optional) Under details, select the port monitoring: * Monitored = Verity monitors and reports Port status * Critical = Only report if in Critical state * Unmonitored = Do no report status of the port.
10. Click Save to save the settings for this Eth-Port Profile

Apply the Eth-Port Profile to an interface.

1. Click Topology
2. Double-click the Leaf switch you want to configure the profile on.
3. Double-click the Port you want to configure
4. Double-click the Provision Port settings box (the Grey box). * Click the Edit button * From the (No Provisioning) Pull-down menu, select the Eth-Port Profile created in the previous section.
5. Click Save to save settings.
6. Click Yes button to confirm and apply the settings to the switch.
7. The switches will change color to Green letting the user know that the system is provisioing the changes to the devices. Once complete, the devices will return to their normal "white" color.

Time Traveler (navigate to it and create a snapshot, compare snapshot to a different snapshot)

This demonstration is to show how to use the Time Traveler feature in Verity to create a snapshot of the current intended network configuration, compare the snapshot to the previous snapshot, and how to restore a time traveler snapshot.

Create a new Time Traveler Snapshot

1. Click Operations
2. Under Version Control, click Time Traveler
3. Click the "+" Button in the top left corner of the Time Traveler pane to create a new Time Traveler Snapshot.
4. Give the backup a name * (Optional) Add a note to the backup so other users know what it is for. * Click the Save icon to save the snapshot
5. The Time Traveler backup will be at the top of the list of backups.

Compare the Time Travler backup with the previous backup

1. Click the "Compare to previous backup" button
2. In the Backup Compare Options, select which details you want to see in the comparison report.
3. Click the Compare button
4. You are presented with a simple report detailing the differences between the backups, including Services, tenants, gateways, provisioned ports, templates, profiles and configuration changes that have happened between the backups.
5. Click View Details button * This is the detailed report that allows users to click and drill in to the specific changes to get finer details of the backup differences.
6. Click the Cancel button to close the report and return to the Time Traveler Dashboard

Restore a Time Traveler snapshot

1. Click the "Restore Network Time Traveler Backup" button.
2. In the Backup Import Options, select which options you want to recover:
3. Click the Import... button * A dialog box appears warning the user that importing Switches, can re-provision LAG configurations, which can lead to instability. Click Yes to proceed.
4. A report of what will be restored and the changes will be displayed * (Optional) You can click View Details button to see all the specific details of what will be restored.
5. Click the Begin Import button to start the recovery process.
6. Verity automatically puts the system into World Read-only mode when doing a recovery so that users can verify and validate any changes to the devices before implementing the changes. If everything looks correct, remove the World Read-only option by performing the following:
7. Click Topology
8. Click Network View
9. Ensure you are at the root level view of the Network View but clicking the Network View Link in the Topology Breadcrumb.
10. Click the Read-only button in the upper right corner.
11. Confirm you want to take the system out of read only and click Yes.
12. The system will be placed in to normal Read/Write mode and provision the devices as they are intended from the Time Traveler Backup.

Topology (navigate to a device and view the running configuration)

This demonstration will show how to view a specific switches Running-Configuration in Verity.

How to view a switches Running-Configuration

1. Click on Topology
2. Click on Network View
3. Double Click the switch you want to see the running-configuration on.
4. Double Click the top box of the switch to zoom in to the Switch Details view.
5. Click the "Click to see current switch configuration" Button in the upper right corner.
6. In the Configuration window, from the Type: Pull-down menu, select "Target Running" * This shows the current target-running configuration on the switch.
7. When finished reviewing, click the Close button in the upper right corner to close the configuration pane.

Satori (navigate through the dashboards from the main dashboard to a switch, to an individual port)

This demonstration will show how to navigate to Satori, and how to move between the different dashboards (Site, switch and Port views)

Navigating to Satori and the Main Site View

1. Click Satori
2. Click Site * This is the overall site view of Satori. This view provides users with a zoomed out view of all the metric and telemetry information collected at the Site level. Dashboards in this view consist of:
   • Summary:
   • Switch Connectivity
   • Underlay BGP Status
   • Switch Provisioning Status
   • Active Alarm counts by severity
   • Provisioned Leaf Ports
   • Provisioned Leaf Port Bandwidth High Usage
   • Leaf Gateway Port Dropped Packets
   • CPU Load Outliers by Spine
   • CPU Load Outliers by Leaf
   • Utilized Memory Outliers by Leaf
   • Utilized Memory Outliers by Spine
   • Hardware:
   • Device Software Versions used
   • SFP Models used and counts
   • sFlow:
   • Top Talkers by source
   • Top Talkers by destination
   • Conversation Traffic over time
   • Underlay Conversations

Navigating to the Switch View in Satori

1. Click Satori
2. Select Switch
3. From the Switch Drop-down menu, select which switch you want to view. * This is the Switch specific view in Satori. This view provides users with switch specific details based on which switch the user selects. It consists of the following dashboards:
   • Summary:
   • Device Details
   • An image of the switch
   • CPU Usage
   • Available Memory
   • Active Alarms
   • Sensor Temperatures
   • Component Status like fans and PSU's
   • Gateway Port Dropped Packets
   • Total provisioned ports on the switch
   • SFP models used by the switch
   • Port Statistics:
   • Shows only the current provisioned ports and their stats.
   • Port Errors:
   • Show errors on current provisioned ports
   • Port Packets/Second
   • Shows the current packets/second on the provisioned ports
   • TCAM Resource Usage:
   • IPv4 Resource Usage
   • IPv6 Resource Usage
   • Nexthop Resource Usage
   • FDB Usage
   • Source NAT Usage
   • Destination NAT Usage
   • ACL Egress/Ingress per LAG usage
   • ACL Egress/Ingress per Port usage
   • ACL Egress/Ingress RIF Usage
   • ACL Egress/Ingress usage by the switch
   • ACL Egress/Ingress usage by VLAN
   • sFlow:
   • Top Talkers by source
   • Top Talkers by destination
   • Ingress flows
   • Egress flows
   • VxLAN Tunnel Traffic
   • VNI-Specific flows
   • Frame-type Breakdowns
   • Application Protocol Distribution

Navigating to the Port View in Satori

1. Click Satori
2. Click Port
3. From the Switch Drop-down menu, select which switch you want to view their ports
4. From the Port Drop-down menu, select which port on the switch you want to view statistics for * This is the port specific view for the selected switch in Satori. It consists of the following dashboards:
   • Summary:
   • Details of the Port
   • Current Traffic details of the port
   • Packets/Second report
   • Multicast, Errors and Discards:
   • Multicast Packets/Second
   • Errors/Second
   • Discards/Second
   • Optics Power and Temperatures
   • Optic Power
   • Optic Temperature
   • Optic Temperature Rate
   • Optics Temperature
   • sFlow:
   • Top Talkers by Source
   • Top Talkers by Destination
   • VNI-Specific Flows
   • Ingress Flows
   • Application Protocol Distribution
   • Frame Type Breakdown