Configuring VXLAN EVPN Multi-Site

Similar documents
Configuring VXLAN EVPN Multi-Site

Configuring VXLAN EVPN Multi-Site

Hierarchical Fabric Designs The Journey to Multisite. Lukas Krattiger Principal Engineer September 2017

Introduction to External Connectivity

Border Provisioning Use Case in VXLAN BGP EVPN Fabrics - Multi-Site

VXLAN EVPN Multi-Site Design and Deployment

VXLAN EVPN Multihoming with Cisco Nexus 9000 Series Switches

Optimizing Layer 2 DCI with OTV between Multiple VXLAN EVPN Fabrics (Multifabric)

VXLAN Design with Cisco Nexus 9300 Platform Switches

Nexus 9000/3000 Graceful Insertion and Removal (GIR)

VXLAN Multipod Design for Intra-Data Center and Geographically Dispersed Data Center Sites

Implementing VXLAN. Prerequisites for implementing VXLANs. Information about Implementing VXLAN

Contents. Introduction. Prerequisites. Requirements. Components Used

VXLAN Deployment Use Cases and Best Practices

Configuring Virtual Port Channels

Data Center Configuration. 1. Configuring VXLAN

Provisioning Overlay Networks

Verified Scalability Limits

Verified Scalability Limits

Configuring VXLAN Multihoming

Configuring Virtual Port Channels

Contents. EVPN overview 1

Verified Scalability Limits

Configuring Virtual Port Channels

Creating and Managing Admin Domains

Configuring Virtual Port Channels

Implementing VXLAN in DataCenter

DHCP Relay in VXLAN BGP EVPN

MP-BGP VxLAN, ACI & Demo. Brian Kvisgaard System Engineer, CCIE SP #41039 November 2017

Unicast Forwarding. Unicast. Unicast Forwarding Flows Overview. Intra Subnet Forwarding (Bridging) Unicast, on page 1

VXLAN Cisco and/or its affiliates. All rights reserved. Cisco Public

Cisco Nexus 7000 Series NX-OS VXLAN Configuration Guide

Implementing DCI VXLAN Layer 3 Gateway

Solution Guide. Infrastructure as a Service: EVPN and VXLAN. Modified: Copyright 2016, Juniper Networks, Inc.

Virtual Extensible LAN and Ethernet Virtual Private Network

Deploy Application Load Balancers with Source Network Address Translation in Cisco DFA

Configuring Virtual Private LAN Service (VPLS) and VPLS BGP-Based Autodiscovery

MPLS VPN--Inter-AS Option AB

Building Data Center Networks with VXLAN EVPN Overlays Part I

Configuring MAC Address Tables

Routing Design. Transit Routing. About Transit Routing

Ethernet VPN (EVPN) in Data Center

Best Practices come from YOU Cisco and/or its affiliates. All rights reserved.

IP Fabric Reference Architecture

ACI Fabric Endpoint Learning

MPLS VPN Inter-AS Option AB

Network Virtualization in IP Fabric with BGP EVPN

HPE FlexFabric 5940 Switch Series

ACI Transit Routing, Route Peering, and EIGRP Support

Exam Questions

InterAS Option B. Information About InterAS. InterAS and ASBR

Configuring VRF-lite CHAPTER

Cisco ACI Multi-Pod/Multi-Site Deployment Options Max Ardica Principal Engineer BRKACI-2003

DHCP Relay in VXLAN BGP EVPN

Multi-Site Use Cases. Cisco ACI Multi-Site Service Integration. Supported Use Cases. East-West Intra-VRF/Non-Shared Service

OTV Loopback Join Interface

Feature Information for BGP Control Plane, page 1 BGP Control Plane Setup, page 1. Feature Information for BGP Control Plane

EXTREME VALIDATED DESIGN. Network Virtualization in IP Fabric with BGP EVPN

IOS-XR EVPN Distributed Anycast IRB Gateway, L2/L3VPN Service with MPLS Data Plane

Configuring PIM. Information About PIM. Send document comments to CHAPTER

Cisco CSR 1000V VxLAN Support 2

Question: 2 Which option accurately describes the implementation of Fabre Channel domain IDs?

Provisioning Overlay Networks

Configuration Examples for DHCP, on page 37 Configuration Examples for DHCP Client, on page 38 Additional References for DHCP, on page 38

vpc Best Practices and Design on NX-OS

Use Case: Three-Tier Application with Transit Topology

Configuring MPLS and EoMPLS

Cisco Nexus 3000 Series Switch NX-OS Verified Scalability Guide, Release 7.x

Internet Engineering Task Force (IETF) Request for Comments: N. Bitar Nokia R. Shekhar. Juniper. J. Uttaro AT&T W. Henderickx Nokia March 2018

Everyone in this room is a GENIUS

Configuring IPv6 Provider Edge over MPLS (6PE)

Cloud Data Center Architecture Guide

Huawei CloudEngine Series. VXLAN Technology White Paper. Issue 06 Date HUAWEI TECHNOLOGIES CO., LTD.

Configuring Virtual Private LAN Services


Introduction to Segment Routing

BESS work on control planes for DC overlay networks A short overview

Attilla de Groot Attilla de Groot Sr. Systems Engineer, HCIE #3494 Cumulus Networks

Enterprise. Nexus 1000V. L2/L3 Fabric WAN/PE. Customer VRF. MPLS Backbone. Service Provider Data Center-1 Customer VRF WAN/PE OTV OTV.

Pluribus Data Center Interconnect Validated

BGP mvpn BGP safi IPv4

BGP Best External. Finding Feature Information

VXLAN Commands. Cisco ASR 9000 Series Aggregation Services Router VPN and Ethernet Services Command Reference, Release 5.2.x 1

Cisco ACI Multi-Pod and Service Node Integration

Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS

Higher scalability to address more Layer 2 segments: up to 16 million VXLAN segments.

Routing Protocols. Technology Description BGP CHAPTER

Traffic Load Balancing in EVPN/VXLAN Networks. Tech Note

Auto-Configuration. Auto-Configuration. Information About Auto-Configuration in DFA. Configuration Profile

Cisco Programmable Fabric with VXLAN BGP EVPN Command Reference

Cisco Virtual Topology System (VTS) 2.3 User Guide

Layer 2 Implementation

VXLAN Overview: Cisco Nexus 9000 Series Switches

BGP-MVPN SAFI 129 IPv6

vpc Layer 3 Backup Routing with F1 and Peer Gateway

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Spirent TestCenter EVPN and PBB-EVPN AppNote

Verified Scalability Guide for Cisco APIC, Release 3.0(1k) and Cisco Nexus 9000 Series ACI-Mode Switches, Release 13.0(1k)

Configuring VRF-lite. Information About VRF-lite

Configuring Layer 3 Interfaces

Transcription:

This chapter contains the following sections: About VXLAN EVPN Multi-Site, on page 1 Licensing Requirements for VXLAN EVPN Multi-Site, on page 2 Guidelines and Limitations for VXLAN EVPN Multi-Site, on page 2 Enabling VXLAN EVPN Multi-Site, on page 3 Multi-Site with vpc Support, on page 5 Configuring VNI Dual Mode, on page 10 Configuring Fabric/DCI Link Tracking, on page 12 Configuring Fabric External Neighbors, on page 12 About VXLAN EVPN Multi-Site The VXLAN EVPN Multi-Site solution uses border gateways is either anycast or virtual port channel configuration in the data plane to terminate and interconnect overly domains. The border gateways provide the network control boundary that is necessary for traffic enforcement and failure containment functionality. In the control plane, BGP sessions between the border gateways rewrite the next hop information of EVPN routes and re-originate them. VXLAN Tunnel Endpoints (VTEPs) are only aware of their overlay domain internal neighbors including the border gateways. All routes external to the fabric have a next hop on the border gateways for Layer 2 and Layer 3 traffic. The VXLAN EVPN Multi-Site feature is a solution to interconnect two or more BGP-based Ethernet VPN (EVPN) site's fabrics in a scalable fashion over an IP-only network. The Border Gateway (BG) is the node that interacts with nodes within a site and with nodes that are external to the site. For example, in a leaf-spine data center fabric, it can be a leaf, a spine, or a separate device acting as a gateway to interconnect the sites. The VXLAN EVPN Multi-Site feature can be conceptualized as multiple site-local EVPN control planes and IP forwarding domains interconnected via a single common EVPN control and IP forwarding domain. Every EVPN node is identified with a unique site-scope identifier. A site-local EVPN domain consists of EVPN nodes with the same site identifier. Border Gateways on one hand are also part of site-specific EVPN domain and on the other hand a part of a common EVPN domain to interconnect with Border Gateways from other sites. For a given site, these Border Gateways facilitate site-specific nodes to visualize all other sites to be reachable only via them. This would mean: 1

Licensing Requirements for VXLAN EVPN Multi-Site Site-local bridging domains are interconnected only via Border Gateways with bridging domains from other sites. Site-local routing domains are interconnected only via Border Gateways with routing domains from other sites. Site-local flood domains are interconnected only via Border Gateways with flood domains from other sites. Selective Advertisement is defined as the configuration of the per-tenant information on the border gateway. Specifically, this means IP-VRF or MAC-VRF (EVPN Instance). In cases where External Connectivity (VRF-lite) and EVPN Multi-Site co-exist on the same border gateway, the advertisements are always enabled. Licensing Requirements for VXLAN EVPN Multi-Site The following table shows the licensing requirements for VXLAN EVPN Multi-Site: Product Cisco NX-OS License Requirement For all border gateways, the N93-FAB1K9 or N95-FAB1K9 license is required. If the border gateways are N9300-EX or N9300-FX leafs, the N93-FAB1K9 license is required. If the border gateways are N9500 modular switches with -EX or -FX line cards, the N95-FAB1K9 license is required. For a complete explanation of the Cisco NX-OS licensing scheme and how to obtain and apply licenses, see the Cisco NX-OS Licensing Guide. Guidelines and Limitations for VXLAN EVPN Multi-Site VXLAN EVPN Multi-Site has the following configuration guidelines and limitations: Beginning with Cisco NX-OS Release 7.0(3)I7(3), support for VXLAN EVPN Multi-Site functionality on the Cisco Nexus N9K-C9336C-FX and N9K-C93240YC-FX2 is added. N9K-C9348GC-FXP does not support VXLAN EVPN Multi-Site functionality. Beginning with Cisco NX-OS Release 7.0(3)I7(2), VXLAN EVPN Multi-Site and Tenant Routed Multicast (TRM) is supported between source and receivers deployed in the same site. Beginning with Cisco NX-OS Release 7.0(3)I7(2), the Multi-Site border gateway allows the co-existence of Multi-Site extensions (Layer 2 unicast/multicast and Layer 3 unicast) as well as Layer 3 unicast and multicast external connectivity. The following switches support VXLAN EVPN Multi-Site: Cisco Nexus 9300-EX, 9300-FX, and 9500 platform switches with X9700-EX line cards, beginning with Cisco NX-OS Release 7.0(3)I7(1) 2

Enabling VXLAN EVPN Multi-Site Note The Cisco Nexus 9348GC-FXP switch does not support VXLAN EVPN Multi-Site functionality. Cisco Nexus 9396C switch and Cisco Nexus 9500 platform switches with X9700-FX line cards, beginning with Cisco Nexus NX-OS Release 7.0(3)I7(2) Cisco Nexus 9336C-FX2 switch, beginning with Cisco Nexus NX-OS Release 7.0(3)I7(3) The number of border gateways per site is limited to four. Border Gateways (BGWs) in a vpc topology are not supported. Support for Multicast Flood Domain between inter-site/fabric border gateways is not supported. Multicast Underlay between sites is not supported. ibgp EVPN Peering between border gateways of different fabrics/sites is not supported. Configure the peer-type fabric-external command only in Multi-Site deployments. We do not recommend configuring this command on a pseudo border gateway. Enabling VXLAN EVPN Multi-Site This procedure enables the VXLAN EVPN Multi-Site feature. Multi-Site is enabled on the border gateways only. The site-id must be the same on all border gateways in the fabric/site. Procedure Step 1 Step 2 configure terminal switch# configure terminal evpn multisite border-gateway ms-id switch(config)# evpn multisite border-gateway 100 Enters global configuration mode. Configure the site ID for a site/fabric. The range of values for ms-id is 1 to 2,814,749,767,110,655. The ms-id must be the same in all border gateways within the same fabric/site. Step 3 interface nve 1 switch(config-evpn-msite-bgw)# interface nve 1 Creates a VXLAN overlay interface that terminates VXLAN tunnels. Note Only 1 NVE interface is allowed on the switch Step 4 source-interface loopback src-if The source interface must be a loopback interface that is configured on the switch with a valid /32 IP address. This /32 IP address must 3

Enabling VXLAN EVPN Multi-Site switch(config-if-nve)# source-interface loopback 0 be known by the transient devices in the transport network and the remote VTEPs. This is accomplished by advertising it through a dynamic routing protocol in the transport network. Step 5 host-reachability protocol bgp switch(config-if-nve)# host-reachability protocol bgp Defines BGP as the mechanism for host reachability advertisement. Step 6 Step 7 Step 8 Step 9 Step 10 multisite border-gateway interface loopback vi-num switch(config-if-nve)# multisite border-gateway interface loopback 100 no shutdown switch(config-if-nve)# no shutdown exit switch(config-if-nve)# exit interface loopback loopback_number switch(config)# interface loopback 0 ip address ip-addrress switch(config-if)# ip address 198.0.2.0/32 Defines the loopback interface used for the border gateway virtual IP address (VIP). The border-gateway interface must be a loopback interface that is configured on the switch with a valid /32 IP address. This /32 IP address must be known by the transient devices in the transport network and the remote VTEPs. This is accomplished by advertising it through a dynamic routing protocol in the transport network. This loopback must be different than the source interface loopback. The range of vi-num is from 0 to 1023. Negate shutdown command. Exits the NVE configuration mode. Configure the loopback interface. Configures the IP address for the loopback interface. 4

Multi-Site with vpc Support Multi-Site with vpc Support About Multi-Site with vpc Support The Border Gateways can be in a vpc complex. In that case, it is possible to support dually-attached directly-connected hosts that may be bridged or routed, as well as dually-attached firewalls or service attachments. The vpc Border Gateways have vpc specific multi-homing techniques and do not rely on EVPN Type 4 routes for DF election or split horizon. Guidelines and Limitations for Multi-Site with vpc Support Multi-Site with vpc Support has the following configuration guidelines and limitations: 4000 VNIs for vpc are not supported. For BUM with continued VIP use, the MCT link is used as transport upon core isolation or fabric isolation, and for unicast traffic in fabric isolation. Configuring Multi-Site with vpc Support This procedure describes the configuration of Multi-Site with vpc support: Configure vpc domain. Configure port channels. Configuring MCT Link as Transport in Case of Link Failure, on page 8 Enabling VXLAN EVPN Multi-Site, on page 3 Configuring VNI Dual Mode, on page 10 Configuring Fabric/DCI Link Tracking, on page 12 Configuring Fabric External Neighbors, on page 12 Verifying the Multi-Site with vpc Support Configuration, on page 9 Procedure Step 1 Step 2 configure terminal switch# configure terminal feature vpc switch(config)# feature vpc Enter global configuration mode. Enables vpcs on the device. 5

Configuring Multi-Site with vpc Support Step 3 Step 4 vpc domain domain-id switch(config)# vpc domain 1 peer switch switch(config-vpc-domain)# peer switch Creates a vpc domain on the device and enters vpn-domain configuration mode for configuration purposes. There is no default. The range is from 1 to 1000. Defines the peer switch. Step 5 peer gateway To enable Layer 3 forwarding for packets destined to the gateway MAC address of the virtual port channel (VPC), use the switch(config-vpc-domain)# peer gateway peer-gateway command. Step 6 peer-keepalive destination ipaddress source ipaddress switch(config-vpc-domain)# peer-keepalive destination 172.19.217.122 source 172.19.217.123 Configures the IPv4 address for the remote end of the vpc peer-keepalive link. Step 7 role priority priority switch(config-vpc-domain)# role priority 150 Enters the role priority that you want for the vpc system priority. The range of values is from 1 to 65636 and the default value is 32667. A lower value means that this switch has a better chance of being the primary vpc. Step 8 Step 9 Step 10 Step 11 ipv6 nd synchronize switch(config-vpc-domain)# ipv6 nd synchronize ip arp synchronize switch(config-vpc-domain)# ip arp synchronize exit switch(config-vpc-domain)# exit interface port-channel int-if switch(config)# interface port-channel 1 Supports faster convergence of address tables between the vpc peers. This convergence overcomes the delay that occurs in ARP table restoration for IPv4 or ND table restoration for IPv6 when the peer link port channel flaps or when a vpc peer comes back online. Supports faster convergence of address tables between the vpc peers. This convergence overcomes the delay that occurs in ARP table restoration for IPv4 or ND table restoration for IPv6 when the peer link port channel flaps or when a vpc peer comes back online. Exits the vpc-domain configuration mode. Enters interface configuration mode. 6

Configuring Multi-Site with vpc Support Step 12 switchport switch(config-if)# switchport Configures the interface as a Layer 2 access port. Step 13 switchport mode trunk switch(config-if)# switchport mode trunk (Optional) Configures the interface as a Layer 2 trunk port. Step 14 Step 15 vpc number switch(config-if)# vpc 1 exit switch(config-if)# exit Configures the selected port channel in the vpc to connect to the downstream device. Exits the interface configuration mode. Step 16 interface type slot/port switch(config)# interface ethernet 1/28 Specifies an interface to configure and enters interface configuration mode. Step 17 Step 18 channel-group channel-number switch(config-if)# channel-group 1 exit switch(config-if)# exit Configures the port in a channel group and sets the mode. The channel-number range is from 1 to 4096. Exits the interface configuration mode. Step 19 interface port-channel channel-number switch(config)# interface port-channel 10 Specifies the port-channel interface that you want to configure and enter the interface configuration mode. Step 20 Step 21 switch(config-if)# vpc peer-link exit switch(config-vpc-domain)# exit Configures the selected port channel as the vpc peer link and enters vpc-domain configuration mode. Exits the vpc-domain configuration mode. Step 22 interface type slot/port switch(config)# interface ethernet 1/33 Specifies an interface to configure and enters interface configuration mode. 7

Configuring MCT Link as Transport in Case of Link Failure Step 23 channel-group channel-number mode active switch(config-if)# channel-group 10 mode active Configures the port in a channel group and sets the mode. The channel-number range is from 1 to 4096. Configuring MCT Link as Transport in Case of Link Failure This procedure describes the configuration of an SVI interface configured with a high IGP cost to ensure it is only used as a backup link. Note This configuration is required to use the MCT link as a backup link during Fabric and/or DCI link failures. Procedure Step 1 configure terminal switch# configure terminal Enter global configuration mode. Step 2 system nve infra-vlans vlan-range switch(config)# system nve infra-vlans 7 Specifies VLANs used by all SVI interfaces for uplink and vpc peer-links in VXLAN as infra-vlans. You should not configure certain combinations of infra-vlans. For example, 2 and 514, 10 and 522, which are 512 apart. Step 3 Step 4 Step 5 Step 6 interface vlan_id switch(config)# interface vlan7 no shutdown switch(config-if)# no shutdown mtu value switch(config-if)# mtu 9216 no ip redirects switch(config-if)# no ip redirects Configures interface. Negates shutdown command. Sets the maximum transmission unit (MTU). Prevents the device from sending redirects. 8

Verifying the Multi-Site with vpc Support Configuration Step 7 Step 8 Step 9 Step 10 ip address ip-address/length switch(config-if)# ip address 35.1.1.2/24 no ipv6 redirects switch(config-if)# no ipv6 redirects ip ospf cost cost switch(config-if)# ip ospf cost 100 ip ospf network point-to-point switch(config-if)# ip ospf network point-to-point Configures an IP address for this interface. Disables the ICMP redirect messages on BFD-enabled interfaces. Configures the OSPF cost metric for this interface. Specify OSPF point-to-point network. Step 11 ip router ospf instance area area-number switch(config-if)# ip router ospf 1 area 0.0.0.0 Configures the routing process for IP on an interface and specifies an area. Step 12 ip pim sparse-mode switch(config-if)# ip pim sparse-mode Configures sparse-mode PIM on an interface. Verifying the Multi-Site with vpc Support Configuration To display Multi-Site with vpc Support information, enter one of the following commands: Table 1: show vpc brief show vpc consistency-parameters global show vpc consistency-parameters vni Displays general vpc and CC status. Displays the status of those parameters that must be consistent across all vpc interfaces. Displays configuration information for VNIs under NVE interface that must be consistent across both vpc peers. Output example of the show vpc brief command: switch# show vpc brief Legend: (*) - local vpc is down, forwarding via vpc peer-link 9

Configuring VNI Dual Mode vpc domain id : 1 Peer status : peer adjacency formed ok (<--- peer up) vpc keep-alive status : peer is alive Configuration consistency status : success (<----- CC passed) Per-vlan consistency status : success (<---- per-vni CCpassed) Type-2 consistency status : success vpc role : secondary Number of vpcs configured : 1 Peer Gateway : Enabled Dual-active excluded VLANs : - Graceful Consistency Check : Enabled Auto-recovery status : Enabled, timer is off.(timeout = 240s) Delay-restore status : Timer is off.(timeout = 30s) Delay-restore SVI status : Timer is off.(timeout = 10s) Operational Layer3 Peer-router : Disabled [...] Output example of the show vpc consistency-parameters global command: switch# show vpc consistency-parameters global Legend: Type 1 : vpc will be suspended in case of mismatch Name Type Local Value Peer Value ------------- ---- ---------------------- ----------------------- [...] Nve1 Adm St, Src Adm St, 1 Up, Up, 2.1.44.5, CP, Up, Up, 2.1.44.5, CP, Sec IP, Host Reach, VMAC TRUE, Disabled, TRUE, Disabled, Adv, SA,mcast l2, mcast 0.0.0.0, 0.0.0.0, 0.0.0.0, 0.0.0.0, l3, IR BGP,MS Adm St, Reo Disabled, Up, Disabled, Up, 200.200.200.200 200.200.200.200 [...] Output example of the show vpc consistency-parameters vni command: switch(config-if-nve-vni)# show vpc consistency-parameters vni Legend: Type 1 : vpc will be suspended in case of mismatch Name Type Local Value Peer Value ------------- ---- ---------------------- ----------------------- Nve1 Vni, Mcast, Mode, 1 11577, 234.1.1.1, 11577, 234.1.1.1, Type, Flags Mcast, L2, MS IR Mcast, L2, MS IR Nve1 Vni, Mcast, Mode, 1 11576, 234.1.1.1, 11576, 234.1.1.1, Type, Flags Mcast, L2, MS IR Mcast, L2, MS IR [...] Configuring VNI Dual Mode This procedure describes the configuration of BUM traffic domain for a given VLAN. Support exists for using multicast or ingress replication inside the fabric/site and Ingress replication across different fabrics/sites. 10

Configuring VNI Dual Mode Note In cases where only a Layer 3 extension is configured on the BGW, an additional loopback interface is required. The loopback interface must be present in the same VRF instance on all BGWs and with an individual IP address per BGW. Ensure the loopback interfaces IP address is redistributed into BGP EVPN, specially towards Site-External. For more information about configuring the mcast-group (or ingress-replication protocol bgp) for a large number of VNIs, see Example of VXLAN BGP EVPN (EBGP). Procedure Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 configure terminal switch# configure terminal interface nve 1 switch(config)# interface nve 1 member vni vni-range switch(config-if-nve)# member vni 200 mcast-group ip-addr switch(config-if-nve-vni)# mcast-group 255.0.4.1 ingress-replication protocol bgp switch(config-if-nve-vni)# ingress-replication protocol bgp multisite ingress-replication switch(config-if-nve-vni)# multisite ingress-replication Enters global configuration mode. Creates a VXLAN overlay interface that terminates VXLAN tunnels. Note Only one NVE interface is allowed on the switch. Configure the virtual network identifier (VNI). The range for vni-range is from 1 to 16,777,214. The value of vni-range can be a single value like 5000 or a range like 5001-5008. Note Enter one of the Step 4 or Step 5 commands. Configure the NVE Multicast group IP prefix within the fabric. Enables BGP EVPN with ingress replication for the VNI within the fabric. Defines the Multi-Site BUM replication method. Per-VNI knob for extending Layer 2 VNI. 11

Configuring Fabric/DCI Link Tracking Configuring Fabric/DCI Link Tracking This procedure describes the configuration to track all DCI facing interfaces and site internal/fabric facing interfaces. Tracking is mandatory and is used to disable re-origination of EVPN routes either from or to a site if all the DCI/fabric links go down. Procedure Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 configure terminal switch# configure terminal interface ethernet port switch(config)# interface ethernet1/1 evpn multisite dci-tracking switch(config-if)# evpn multisite dci-tracking interface ethernet port switch(config)# interface ethernet1/2 evpn multisite fabric-tracking switch(config-if)# evpn multisite fabric-tracking ip address ip-addr switch(config-if)# ip address 192.1.1.1 no shutdown switch(config-if)# no shutdown Enters global configuration mode. Etners interface configuration mode for DCI interface. Note Enter one of the following commands in Step 3 or Step 4. Configure DCI interface tracking. Enters interface configuration mode for fabric interface. Enters interface configuration mode for fabric interface. Configure IP features. Negate shutdown command. Configuring Fabric External Neighbors This procedure describes the configuration of Fabric External/DCI Neighbors for communication to other site/fabric border gateways. 12

Configuring Fabric External Neighbors Procedure Step 1 Step 2 configure terminal switch# configure terminal router bgp as-num switch(config)# router bgp 100 Enters global configuration mode. Configure the autonomous system number. The range for as-num is from 1 to 4,294,967,295. Step 3 Step 4 Step 5 neighbor ip-addr switch(config-router)# neighbor 100.0.0.1 Configure a BGP neighbor. peer-type fabric-external Enables the next hop rewrite for multi-site. Defines site external BGP neighbors for EVPN exchange. The default for peer-type is switch(config-router-neighbor)# peer-type fabric-internal. fabric-external Note The peer-type fabric-external command is required only for VXLAN Multi-Site border gateways. It is not required for pseudo border gateways. address-family l2vpn evpn switch(config-router-neighbor)# address-family l2vpn evpn Step 6 rewrite-evpn-rt-asn switch(config-router-neighbor)# rewrite-evpn-rt-asn Rewrites the route target information to simplify MAC-VRF and IP-VRF configuration. Normalizes the outgoing route target's AS number to match the remote AS number. Uses the BGP configured neighbors remote AS. 13

Configuring Fabric External Neighbors 14

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback