Scribd Logo
Upload

Welcome to Scribd!

  • Configuring VXLAN BGP EVPN

    Uploaded by

    Emailiftekhar
    534 views13 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    534 views13 pages

    Configuring VXLAN BGP EVPN

    Uploaded by

    Emailiftekhar

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 13

    Download PNETLab Platform

    PNETLAB Store
    PNETLab.com

    Configuring VXLAN BGP EVPN


    Topology:

    https://user.pnetlab.com/store/labs/detail?id=16041268916594

    Premise:
    You have 1 Spines and 3 Leafs. Leaf-2 and Leaf-3 are setup as vPC pairs.

    • The host port on Leaf-1 is in VLAN 10 and on Leaf-2 in VLAN 10 & 20


    • vPC pair has a L2 switch connected to its member port and is passing all Vlans
    10, 20 , 30.

    1
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    Requirement:

    Image Name Downloaded Filename Version vCPUs vRAM


    nxosv9k-9.3.3 nxosv9k-9.3.3.qcow2 nxosv9k-9.3.3 2 8192

    Link download NexusOS: https://bom.to/EldO25C

    Goal: The Goal of the lab is to configure VXLAN overlay to provide reachability
    between SW1,SW2 and SW3 using VXLAN

    Perform the initial configuration for the Swich Nexus


    After turning on the Nexus Switch, the switch starts long, about 4 -5 minutes, after
    starting, we see the log as below, select "yes".
    Abort Power On Auto Provisioning [yes - continue with normal setup, skip - bypass
    password and basic configuration, no - continue with Power On Auto Provisioning]
    (yes/skip/no)[no]:

    The switch will continue to run until the log appears as below, select "no". This dialog
    requires us to use a highly secure password, if we select "yes" will have to set a
    complex password, if "no" then just set the password simply. If you want to ignore not
    setting a password, select any and then press Ctrl + D
    Do you want to enforce secure password standard (yes/no) [y]:
    Then log on to the switch with the newly set password, if the password is not set, the
    password line is blank.
    STEP1: Configure basic IP reachability between Leaf and Spine switches using OSPF
    routing protocol and enable feature OSPF.
    hostname Spine-1
    !
    feature ospf
    feature bgp
    feature pim
    feature fabric forwarding
    feature interface-vlan
    !
    interface Ethernet1/1
    no switchport
    ip address 10.1.1.1/24
    ip router ospf 1 area 0.0.0.0
    no shutdown
    !
    interface Ethernet1/2
    no switchport

    2
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    ip address 10.2.1.1/24
    ip router ospf 1 area 0.0.0.0
    no shutdown
    !
    interface Ethernet1/3
    no switchport
    ip address 10.3.1.1/24
    ip router ospf 1 area 0.0.0.0
    no shutdown
    !
    interface loopback0
    ip address 1.1.1.1/32
    ip router ospf 1 area 0.0.0.0
    !
    router ospf 1
    hostname Leaf-1
    !
    feature ospf
    feature bgp
    feature pim
    feature fabric forwarding
    feature interface-vlan
    !
    interface Ethernet1/1
    no switchport
    ip address 10.1.1.2/24
    ip router ospf 1 area 0.0.0.0
    no shutdown
    !
    interface Ethernet1/2
    switchport access vlan 10
    spanning-tree port type edge trunk
    !
    interface loopback0
    ip address 2.2.2.2/32
    ip router ospf 1 area 0.0.0.0
    !
    router ospf 1

    hostname Leaf-2
    !
    feature ospf
    feature bgp
    feature pim
    feature fabric forwarding
    feature interface-vlan
    feature lacp
    feature vpc

    3
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    !
    interface Ethernet1/1
    no switchport
    ip address 10.2.1.2/24
    ip router ospf 1 area 0.0.0.0
    no shutdown
    !
    interface Ethernet1/2
    switchport mode trunk
    channel-group 1 mode active
    !
    interface Ethernet1/3
    switchport mode trunk
    channel-group 1 mode active
    !
    interface Ethernet1/4
    switchport mode trunk
    spanning-tree port type edge trunk
    channel-group 10
    !
    interface mgmt0
    vrf member management
    ip address 192.168.1.1/24
    !
    interface loopback0
    ip address 3.3.3.3/32
    ip address 5.5.5.56/32 secondary
    ip router ospf 1 area 0.0.0.0
    !
    Router ospf 1
    hostname Leaf-3
    !
    feature ospf
    feature bgp
    feature pim
    feature fabric forwarding
    feature interface-vlan
    feature lacp
    feature vpc
    !
    interface Ethernet1/1
    no switchport
    ip address 10.3.1.2/24
    ip router ospf 1 area 0.0.0.0
    no shutdown
    !
    interface Ethernet1/2
    switchport mode trunk

    4
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    channel-group 1 mode active


    !
    interface Ethernet1/3
    switchport mode trunk
    channel-group 1 mode active
    !
    interface Ethernet1/4
    switchport mode trunk
    spanning-tree port type edge trunk
    channel-group 10
    !
    interface mgmt0
    vrf member management
    ip address 192.168.1.2/24
    !
    interface loopback0
    ip address 4.4.4.4/32
    ip address 5.5.5.56/32 secondary
    ip router ospf 1 area 0.0.0.0
    !
    router ospf 1

    STEP2: Configure multicast between Leaf and Spine. Best practice is to use
    bidirectional mode. We can configure anycast or phantom RP for Spine redundancy.
    Make sure to allow the correct group address to be used for VxLAN.
    hostname Spine-1
    !
    feature pim
    !
    vlan 1
    ip pim rp-address 1.1.1.1 group-list 224.0.0.0/4 bidir
    ip pim ssm range 232.0.0.0/8
    ip pim anycast-rp 1.1.1.1 1.1.1.1
    ip pim anycast-rp 1.1.1.1 2.2.2.2
    !
    interface loopback0
    ip pim sparse-mode
    !
    interface Ethernet1/1
    ip pim sparse-mode
    5
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    !
    interface Ethernet1/2
    ip pim sparse-mode
    !
    interface Ethernet1/3
    ip pim sparse-mode

    Note: Flood and Learn (F&L)

    As the name suggests, F&L used exactly flooding and learning procedure to learn the
    end hosts. F&L works in data plane.

    Step3: Configure “feature nv overlay” and “feature vn-segment-vlan-based” on all


    Leaf switches

    feature vn-segment-vlan-based
    feature nv overlay

    Step4: Configure Vlan and associate unique vn-segment per vlan.


    hostname Leaf-2

    vlan 1,10,20,500
    fabric forwarding anycast-gateway-mac 0000.2222.3333
    ip pim rp-address 1.1.1.1 group-list 224.0.0.0/4
    ip pim ssm range 232.0.0.0/8
    vlan 10
    vn-segment 10010
    vlan 20
    vn-segment 10020
    vlan 500
    vn-segment 10500

    6
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    Step5: Configure “nve” interface with source interface of Loopback 0. Associate vni to
    nve interface and assign multicast group of which vni should be part of.
    interface nve1
    no shutdown
    source-interface loopback0
    member vni 10010
    mcast-group 228.1.1.1
    member vni 10020
    mcast-group 228.2.2.2
    member vni 10500 associate-vrf

    Step6: Configure a common secondary IP on loopback for vpc peers. The nve peering
    will be done with secondary IP only.
    interface loopback0
    ip address 3.3.3.3/32
    ip address 5.5.5.56/32 secondary
    ip router ospf 1 area 0.0.0.0
    ip pim sparse-mode

    Step7: Configure VPC nve vlan on both vpc peers and SVI with ospf on it. Make sure
    to have increased cost on this link, so that it can’t be used as transit for all traffic.
    Interface vlan99
    No shutdown
    No ip redirects
    Ip address 20.20.20.1/24
    No ipv6 redirects
    Ip router ospf 1 area 0

    Note: In F&L, there is no configuration needed on Spine.

    Verification: Once nve interface is configured on all the leafs, you are ready to test
    the connectivity.

    7
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    Verification: you will see (*,G) and (S,G) entry in mroute table.

    BGP EVPN:
    Step1: Configure “nv overlay evpn” on all switches.
    nv overlay evpn
    feature ospf
    feature bgp
    feature pim
    feature fabric forwarding
    feature interface-vlan
    fearture vn-segment-vlan-based
    feature nv overlay

    8
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    Step2: For control plane, configure BGP from Leaf to Spine with address family l2vpn
    evpn.

    Verification:

    Step3: configure bgp in line with the interface to use bgp as a protocol for host
    reachability.
    9
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    Step4: Map the vni to evpn and configure RD/RT. Here we have an option configure
    device to automatically generated RD/RT value.

    Verification:

    10
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    Step5: Configure the spines as route-reflector Client

    This is data driven protocol, which means you will see nve peer and mac address only
    when there is an active traffic.

    11
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    Once the address is learned on leaf, BGP control plane will advertise the same to
    remote peers.

    12
    Download PNETLab Platform
    PNETLAB Store
    PNETLab.com

    13

    You might also like