Scribd
Upload
593 views74 pages

Implement MP-BGP EVPN VXLAN Control Plane Lab v2

Here are the steps to establish iBGP peering between the Spine switches and Leaf switches: 1. Configure BGP on each Spine and Leaf switch with the ASN 65000 2. On Spine 1, configure iBGP peering to Leaf 1, Leaf 2, Leaf 3, and Leaf 4 3. On Spine 2, configure iBGP peering to Leaf 1, Leaf 2, Leaf 3, and Leaf 4 This will establish the iBGP peering required between the Spine and Leaf switches to exchange routing information.

Uploaded by

Renato Franchesco Valega Gamarra
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
593 views74 pages

Implement MP-BGP EVPN VXLAN Control Plane Lab v2

Here are the steps to establish iBGP peering between the Spine switches and Leaf switches: 1. Configure BGP on each Spine and Leaf switch with the ASN 65000 2. On Spine 1, configure iBGP peering to Leaf 1, Leaf 2, Leaf 3, and Leaf 4 3. On Spine 2, configure iBGP peering to Leaf 1, Leaf 2, Leaf 3, and Leaf 4 This will establish the iBGP peering required between the Spine and Leaf switches to exchange routing information.

Uploaded by

Renato Franchesco Valega Gamarra
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
  • Introduction to VXLAN MP-BGP EVPN
  • Technical Setup Information
  • Lab Starting Procedures
  • Caveats in dCloud VXLAN Lab
  • Detailed Task Completion Guide

Lab:

VXLAN – MPBGP EVPN


Cisco dCloud
Implement MP-BGP EVPN VXLAN Control Plane Lab v2

1
VXLAN Topology

Spine-1 Spine-2

WAN
Leaf-1 Leaf-2 Leaf-3 Leaf-4
Server-3

Server-1 Server-2

2
dCloud Demonstration Topology

Spine-1 Spine-2
192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3 1/1

WAN
Leaf-1 Leaf-2 Leaf-3 Leaf-4 Server-3
192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5
198.18.134.150
1/3 1/3

1/1 1/1

Server-4
Server-1 Server-2 198.18.134.250
198.18.134.50 198.18.134.100
4
IP Sheet
Spine-1 Spine-2
Leaf-1 10.0.0.20/30 10.0.128.4/30
Leaf-2 10.0.0.24/30 10.0.128.8/30
Leaf-3 10.0.0.28/30 10.0.128.12/30
Leaf-4 10.0.128.0/30 10.0.128.16/30

Note: First IP in the subnet to Spine; Second IP to corresponding Leaf

5
Session Users

Device IP Address Login Credentials


Spine_1 198.18.134.140 admin/C1sco12345
Spine_2 198.18.134.141 admin/C1sco12345
Leaf_1 198.18.134.142 admin/C1sco12345
Leaf_2 198.18.134.143 admin/C1sco12345
Leaf_3 198.18.134.144 admin/C1sco12345
Leaf_4 198.18.134.145 admin/C1sco12345
Server_1 198.18.134.50 root/C1sco12345
Server_2 198.18.134.100 root/C1sco12345
Server_3 198.18.134.150 root/C1sco12345
WAN 198.18.133.45 admin/C1sco12345
Remote Workstation 198.18.133.36 demouser/C1sco12345

6
IP Addresses

Leaf Switch Loopback0 Loopback1 Spine-1 Spine-2 WAN


Spine-1 192.168.0.6 192.168.0.100
Spine-2 192.168.0.7 192.168.0.100
Leaf-1 192.168.0.8 192.168.0.18 10.0.0.20/30 10.0.128.6/30
Leaf-2 192.168.0.9 192.168.0.19 10.0.0.24/30 10.0.128.8/30
Leaf-3 192.168.0.10 192.168.0.110 10.0.0.28/30 10.0.128.12/30
Leaf-4 192.168.0.11 192.168.0.111 10.0.0128.0/30 10.0.128.16/30 10.0.0.16/30

Subnet Addresses

7
How to Start the Lab

C1sco12345

8
How to Start the Lab

• Scheduled > Starting > View > RDP – Remote Desktop > Putty
• Change Putty Settings

9
• Once you login to devices; All the devices can restart again

• You may not be able to login to one of the switch


• Leaf 2 , Putty > Window > Color > Use System Color
Tasks
Task 0: Pre-Configuration & Checks
Task 1: Establish iBGP Peer between Spine and Leaf Switches
Task 2: Configuring Multicast to Support BUM in VXLAN Fabric
Task 3: Configuring VXLAN Fabric
Task 4: Configuring BGP EVPN Control Plane
Task 5: Verify VXLAN EVPN Control Plane Update
Task 6: Configure Border Leaf to External Entity
Task 0:
Pre-Configuration & Checks
• MTU
• OSPF
• LACP
• LLDP
• Interface-vlan
Task 0. Pre-Configuration & Checks

#feature ospf
#feature lldp
#feature lacp
#feature interface-vlan Check that
MTU is
configured
#show feature | in ena
#show run | in interface|mtu
Task 0. Pre-Configuration & Checks
# show run | in interface|mtu
# show run int e1/1-4 | in mtu

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5

1
Task 0. Pre-Configuration & Checks
# show run ospf
# show ip ospf neighbor
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN


192.168.0.8 192.168.0.9 192.168. 0.10 192.168.0.11 192.168.0.5
Task 0. Pre-Configuration & Checks
# show run ospf
# show ip ospf neighbor Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN


192.168.0.8 192.168.0.9 192. 168.0.10 192.168.0.11 192.168.0.5
1/3 1/3

18
Tasks
Task 0: Pre-Configuration & Checks
Task 1: Establish iBGP Peer between Spine and Leaf Switches
Task 2: Configuring Multicast to Support BUM in VXLAN Fabric
Task 3: Configuring VXLAN Fabric
Task 4: Configuring BGP EVPN Control Plane
Task 5: Verify VXLAN EVPN Control Plane Update
Task 6: Configure Border Leaf to External Entity
Task 1:
Establish iBGP Peer between
Spine and Leaf Switches
Configure iBGP from:
1. Spine 1 to all Leaf Switches (Leaf-1, Leaf-2, Leaf-3, Leaf-4)
2. Spine 2 to all Leaf Switches (Leaf-1, Leaf-2, Leaf-3, Leaf-4)
Task 1. Establish iBGP Peer between Spine and Leaf Switches
# con
# feature bgp
# . Spine-1 Spine-2
# router bgp 65000
# router-id 192.168.0.6 192.168.0.6 192.168.0.7
1/1 1/4
# address-family ipv4 unicast 1/1 1/4
1/2 1/3
# template peer LEAF-PEER 1/2 1/3
# remote-as 65000
# update-source loopback0 1/1
1/1 1/2 1/2
1/2 1/1
# address-family ipv4 unicast 1/2 1/1
# send-community both
# route-reflector-client Leaf-1 Leaf-2 Leaf-3 Leaf-4
# neighbor 192.168.0.8 192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
# inherit peer LEAF-PEER
# neighbor 192.168.0.9
# inherit peer LEAF-PEER AS 65000
# neighbor 192.168.0.10
# inherit peer LEAF-PEER
# neighbor 192.168.0.11
# inherit peer LEAF-PEER
# copy run start
Task 1. Establish iBGP Peer between Spine and Leaf Switches

# config t
# feature bgp Spine-1 Spine-2
# .
# router bgp 65000 192.168.0.6 192.168.0.7
1/1 1/4
# router-id 192.168.0.7 1/1 1/4
1/2 1/3
# address-family ipv4 unicast 1/2 1/3
# template peer LEAF-PEER
# remote-as 65000 1/1
1/1 1/2 1/2
# update-source loopback0 1/2 1/1
1/2 1/1
# address-family ipv4 unicast
# send-community both
# route-reflector-client Leaf-1 Leaf-2 Leaf-3 Leaf-4
# neighbor 192.168.0.8 192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
# inherit peer LEAF-PEER
# neighbor 192.168.0.9
# inherit peer LEAF-PEER AS 65000
# neighbor 192.168.0.10
# inherit peer LEAF-PEER
# neighbor 192.168.0.11
# inherit peer LEAF-PEER # copy run start
# show run bgp
Task 1. Establish iBGP Peer between Spine and Leaf Switches
# config t
# feature bgp Spine-1 Spine-2
!
192.168.0.6 192.168.0.7
# router bgp 65000
1/1 1/4
1/4
# router-id 192.168.0.8 1/1
1/3
1/2
1/2 1/3
# address-family ipv4 unicast
# neighbor 192.168.0.6
1/1 1/2
# remote-as 65000 1/1 1/1
1/2 1/1
1/2
# update-source loopback0 1/2

# address-family ipv4 unicast


Leaf-3 Leaf-4
# send-community both Leaf-1 Leaf-2
192.168.0.10 192.168.0.11
# neighbor 192.168.0.7 192.168.0.8 192.168.0.9
# remote-as 65000
# update-source loopback0
# address-family ipv4 unicast AS 65000
# send-community both
# copy run start

13/01/22
Task 1. Establish iBGP Peer between Spine and Leaf Switches
# config t
# feature bgp Spine-1 Spine-2
!
192.168.0.6 192.168.0.7
# router bgp 65000
1/1 1/4
1/4
# router-id 192.168.0.9 1/1
1/3
1/2
1/2 1/3
# address-family ipv4 unicast
# neighbor 192.168.0.6
1/1 1/2
# remote-as 65000 1/1 1/2
1/2 1/1 1/1
# update-source loopback0 1/2

# address-family ipv4 unicast


Leaf-3 Leaf-4
# send-community both Leaf-1 Leaf-2
192.168.0.10 192.168.0.11
# neighbor 192.168.0.7 192.168.0.8 192.168.0.9
# remote-as 65000
# update-source loopback0
# address-family ipv4 unicast AS 65000
# send-community both
# copy run start

13/01/22
Task 1. Establish iBGP Peer between Spine and Leaf Switches
# config t
# feature bgp Spine-1 Spine-2
# .
192.168.0.6 192.168.0.7
# router bgp 65000
1/1 1/4
1/4
# router-id 192.168.0.10 1/1
1/3
1/2
1/2 1/3
# address-family ipv4 unicast
# neighbor 192.168.0.6
1/1 1/2
# remote-as 65000 1/1 1/2 1/1
1/2 1/1
# update-source loopback0 1/2

# address-family ipv4 unicast


Leaf-4
# send-community both Leaf-1 Leaf-2 Leaf-3
192.168.0.11
# neighbor 192.168.0.7 192.168.0.8 192.168.0.9 192.168.0.10
# remote-as 65000
# update-source loopback0
# address-family ipv4 unicast AS 65000
# send-community both
# copy run start
Task 1. Establish iBGP Peer between Spine and Leaf Switches
# config t
# feature bgp Spine-1 Spine-2
!
192.168.0.6 192.168.0.7
# router bgp 65000
1/4 1/1 1/4
# router-id 192.168.0.11 1/1
1/2 1/3 1/2 1/3
# address-family ipv4 unicast
# neighbor 192.168.0.6
1/1 1/2
# remote-as 65000 1/1 1/1
1/2
1/2 1/1
# update-source loopback0 1/2

# address-family ipv4 unicast


# send-community both Leaf-1 Leaf-2 Leaf-3 Leaf-4
# neighbor 192.168.0.7 192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
# remote-as 65000
# update-source loopback0
# address-family ipv4 unicast AS 65000
# send-community both

# copy run start


Task 1. Verification Spine-1 Spine-2

192.168.0.6 192.168.0.7
# show ip bgp summary 1/1 1/4 1/1 1/4

1/2 1/3 1/2 1/3

1/1 1/2
1/1 1/2
1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11

AS 65000

29
Spine-1 Spine-2
Task 1. Verification
192.168.0.6 192.168.0.7
# show ip bgp summary 1/1 1/4 1/1 1/4

1/2 1/3 1/2 1/3

1/1 1/2
1/1 1/2
1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11

AS 65000
Tasks
Task 0: Pre-Configuration & Checks
Task 1: Establish iBGP Peer between Spine and Leaf Switches
Task 2: Configuring Multicast to Support BUM in VXLAN Fabric
Task 3: Configuring VXLAN Fabric
Task 4: Configuring BGP EVPN Control Plane
Task 5: Verify VXLAN EVPN Control Plane Update
Task 6: Configure Border Leaf to External Entity
Task 2:
Configuring Multicast to
Support BUM in VXLAN Fabric
Configure PIM-SM with Anycast RP:
1. Enable PIM
2. Configure PIM on Spine & Leaf interfaces (all)
3. Enable OSPF on Loopback interface
4. Enable Anycast RP between Spine switches
Task 2. Configuring Multicast to Support BUM in VXLAN Fabric
# config t Rendezvous Point
# feature pim For RP Spine-1 Spine-2
!
192.168.0.6 192.168.0.7
# interface loopback1
1/4 1/1 1/4
# ip address 192.168.0.100/32 1/1
1/2 1/3 1/2 1/3
# ip pim sparse-mode
# ip router ospf 1 area 0.0.0.0
1/1 1/2
1/1 1/2
# copy run start 1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11

AS 65000
Task 2. Configuring Multicast to Support BUM in VXLAN
Fabric
Anycast RP allows two or more rendezvous points (RPs) to share the load for source
registration and the ability to act as hot backup routers for each other.

Anycast-RP for
Load Balancing
# config t
& Redundancy Spine-1 Spine-2
# ip pim rp-address 192.168.0.100
# ip pim anycast-rp 192.168.0.100 192.168.0.6
192.168.0.6 192.168.0.7
# ip pim anycast-rp 192.168.0.100 192.168.0.7 1/4 1/1 1/4
1/1
# interface e1/1-4 1/2 1/3 1/2 1/3
# ip pim sparse-mode
# interface loopback0 1/1
1/2 1/2
1/1 1/2 1/1
# ip pim sparse-mode 1/2
1/1
# copy run start
# show run pim
Leaf-1 Leaf-2 Leaf-3 Leaf-4
192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11

AS 65000
Task 2. Configuring Multicast to Support BUM in VXLAN
Fabric
# config t
# feature pim
Anycast-RP
Configuration
!
# ip pim rp-address 192.168.0.100
# interface e1/1-2
# ip pim sparse-mode Spine-1 Spine-2
# interface loopback0
# ip pim sparse-mode 192.168.0.6 192.168.0.7
1/1 1/4
# interface loopback1 1/1 1/4
1/2 1/3 1/2 1/3
# ip pim sparse-mode
For NVEnterface
i
# copy run start
1/1 1/1 1/2 1/2
# show run pim 1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11

AS 65000
Spine-1 Spine-2
Task 2. Verification
192.168.0.6 192.168.0.7
# show ip pim neighbor 1/1 1/4 1/1 1/4

1/2 1/3 1/2 1/3

1/1 1/2
1/1 1/2
1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11

AS 65000
Task 2. Verification
# show ip pim rp
Tasks
Task 0: Pre-Configuration & Checks
Task 1: Establish iBGP Peer between Spine and Leaf Switches
Task 2: Configuring Multicast to Support BUM in VXLAN Fabric
Task 3: Configuring VXLAN Fabric
Task 4: Configuring BGP EVPN Control Plane
Task 5: Verify VXLAN EVPN Control Plane Update
Task 6: Configure Border Leaf to External Entity
Task 3:
Configuring VXLAN Fabric
Configure:
1. VLAN/VNI/Multicast Group
i. VLAN ID to L2 VNI Segment ID mapping – one to one mapping
ii. L2 VNI Segment ID to Multicast group mapping – one to one mapping
2. L3 VNI for VXLAN Routing
Task 3. Configuring VXLAN Fabric
For BUM
traffic inside
L2 VNI
L2 VNI

VLAN ID Name SVI VNI Multicast Group


140 L2-VNI-140-Tenant1 172.21.140.1/24 50140 239.0.0.140
141 L2-VNI-141-Tenant1 172.21.141.1/24 50141 239.0.0.141
999 L3-VNI-999-Tenant1 50999

L3 VNI for
L2 VLAN for L3 VNI
VXLAN Routing
Task 3. Configuring VXLAN Fabric

# config t Enables VXLAN Routing Spine-1 Spine-2


# feature nv overlay
for
for VL
VL ANs to VxLAN mapping
192.168.0.6 192.168.0.7
# feature vn-segment-vlan-based 1/1
1/4 1/4
1/1
# feature fabric forwarding 1/2 1/3 1/2 1/3
Enable
En EVPN
# nv overlay evpn cont
control plane
# copy run start for VXLAN 1/1 1/1 1/2 1/2
1/2 1/1
1/1
1/2

Can not create nve interface in


the absence of this command Leaf-1 Leaf-2 Leaf-3 Leaf-4
192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11

AS 65000
Configure on Nx5K
# install feature-set fabric
# feature-set fabric
Enables fabric forwarding anycast gateway configuration
# feature fabric forwarding
Task 3. Configuring VXLAN Fabric

# config t
# spanning-tree vlan 1,140,141,999 priority 4096

# vlan 140
# name L2-VNI-140-Tenant1 Spine-1 Spine-2
# vn-segment 50140
192.168.0.7
# vlan 141 192.168.0.6
1/1
L2 VNI 1/4 1/4
# name L2-VNI-141-T enant1 1/1
1/2 1/3
1/2 1/3
# vn-segment 50141
# vlan 999 L2 VLAN 1/1 1/1 1/2 1/2
for L3 VNI 1/2 1/1
1/1
# vn-segment
gment 50999 1/2

# copy run start


Leaf-1 Leaf-2 Leaf-3 Leaf-4
L3 VNI for 192.168.0.10 192.168.0.11
192.168.0.8 192.168.0.9
VXLAN
Routing AS 65000
Task 3. Configuring VXLAN Fabric
## vrf
vrfcontext
context Tenant-1
configure VRF for Tenant-1 and SVI for VLAN/VNI
# vni 50999
L3VNI # rd auto Generated from Router ID and internal VRF ID

# address-family ipv4 unicast Spine-1 Spine-2


# route-target both auto ASN:L3VNI (RT=65000:50999)
#
# route-target
route-target both
both auto
auto evpn
evpn 192.168.0.7
.
192.168.0.6
# fabricforwarding
forwardinganycast-gateway-mac
anycast-gateway-mac 0000.2222.3333 1/4 1/1 1/4
# fabric 0000.2222.3 1/1
# interface Vlan140 1/2 1/3 1/2 1/3
Provides a common gateway mac address for end points
# no shutdown
# vrf member Tenant-1
1/1 1/1 1/2 1/2
# no ip redirects 1/2 1/1
1/1
# ip address 172.21.140.1/24 1/2
# fabric forwarding mode anycast-gateway
# interface Vlan141 Leaf-1 Leaf-2 Leaf-3 Leaf-4
# no shutdown 192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
# vrf member Tenant-1
# no ip redirects AS 65000
# ip address 172.21.141.1/24
41.1/24 Warning Message: Deleted
D all L3 config on interfacee Vlanxxx
# fabric forwarding mode anycast-gateway
ode anycast-gateway
# interface vlan999
# no shutdown
# vrf member Tenant-1
# 13/01/22
ip forward
Task 3. Configuring VXLAN Fabric

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/1 1/4
Configure VXLAN tunnel interface (NVE) 1/1 1/4
1/2 1/3 1/2 1/3

# interface
interfac nve1 1/2 1/2
1/1 1/1
# no shutdown 1/2 1/1
1/1
1/2
# source-interface loopback1
# host-reachability protocol bgp
Leaf-1 Leaf-2 Leaf-3 Leaf-4
# member vni 50140 Lo0-192.168.0.8 Lo0-192.168.0.9 Lo0-192.168.0.10 Lo0-192.168.0.1
# mcast-group 239.0.0.140 Lo1-192.168.0.18 Lo1-192.168.0.19 Lo1-192.168.0.110 Lo1
Lo1-192.168.0.111
# member vni 50141
# mcast-group 239.0.0.141
# member vni 50999 associate-vrf
AS 65000
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1 1/1 1/2 1/2


1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


Lo0-192.168.0.8 Lo0-192.168.0.9 Lo0-192.168.0.10 Lo0-192.168.0.1
Lo1-192.168.0.18 Lo1-192.168.0.19 Lo1-192.168.0.110 Lo1-192.168.0.111

AS 65000
Task 3. Verify VXLAN Configuration

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1 1/1 1/2 1/2


1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
AS 65000
Task 3. Verify VXLAN Configuration

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1 1/1 1/2 1/2


1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
AS 65000
Task 3. Verify VXLAN Configuration

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1 1/1 1/2 1/2


1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
AS 65000
Task 3. Verify VXLAN Configuration

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1 1/1 1/2 1/2


1/2 1/1
1/1
1/2

Leaf-1 Leaf-2 Leaf-3 Leaf-4


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
AS 65000
Tasks
Task 0: Pre-Configuration & Checks
Task 1: Establish iBGP Peer between Spine and Leaf Switches
Task 2: Configuring Multicast to Support BUM in VXLAN Fabric
Task 3: Configuring VXLAN Fabric
Task 4: Configuring BGP EVPN Control Plane
Task 5: Verify VXLAN EVPN Control Plane Update
Task 6: Configure Border Leaf to External Entity
Task 4:
Configuring BGP EVPN Control
Plane
1. Create peer template on both Spine switches
2. Create L2vpn evpn address families on all leaf switches
3. Configure RD/RT values under evpn VRF
Task 4. Configuring BGP EVPN Control Plane
Add the l2vpn evpn address family under the existing BGP AS
# config t
# router bgp 65000 Spine-1 Spine-2
# address-family l2vpn evpn
# retain route-target all 192.168.0.7
192.168.0.6
# template peer LEAF-PEER 1/4 1/1 1/4
1/1
# address-family l2vpn evpn 1/2 1/3 1/2 1/3
# send-community both
# route-reflector-client 1/1 1/2 1/2
1/1 1/1
1/2 1/1
1/2

Create peer template on both Spine switches Leaf-1 Leaf-2 Leaf-3 Leaf-4
192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11

AS 65000
Spine-1 Spine-2

192.168.0.6 192.168.0.7
Task 4. Configuring BGP EVPN Control Plane

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

# config t
1/1 1/2
# router bgp 65000 1/1 1/2 1/1 1/2
1/2
# address-family l2vpn evpn
1/1
# retain route-target all
# neighbor 192.168.0.6 Leaf-1 Leaf-2 Leaf-3 Leaf-4
192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
# remote-as 65000
# address-family l2vpn evpn AS 65000
# send-community both
# neighbor 192.168.0.7
# remote-as 65000
# address-family l2vpn evpn
# send-community both
AAdddd tthhee eevvppnn ad
adddrreessss ffam
amilyily uunnddeerr tthhee eexxisisttiningg BBGP
GP
Task 4. Configuring BGP EVPN Cont rol Plane

Configure RD and RT for VXLAN bridging


Spine-1 Spine-2

# config t 192.168.0.6 192.168.0.7


BGP Control Plane 1/1
1/1 1/4 1/4
# evpn
1/2 1/3 1/2 1/3
Advertise L2 VNI routes into BGP EVPN
# vni 50140 l2
RD generated from Router IID & internal VRF ID
# rd auto
1/1 1/1 1/2 1/2
1/1
# route-target import auto 1/2 1/1
1/2
# route-target export auto
# vni 50141 l2 Leaf-3 Leaf-4
Leaf-1 Leaf-2
# rd auto 192.168.0.8 192.168.0.9
192. 192.168.0.10 192.168.0.11
# route-target import auto
AS 65000
# route-target export auto
ASN:VNI (RT= 65000:50141)
Tasks
Task 0: Pre-Configuration & Checks
Task 1: Establish iBGP Peer between Spine and Leaf Switches
Task 2: Configuring Multicast to Support BUM in VXLAN Fabric
Task 3: Configuring VXLAN Fabric
Task 4: Configuring BGP EVPN Control Plane
Task 5: Verify VXLAN EVPN Control Plane Update
Task 6: Configure Border Leaf to External Entity
Task 5:
Verify VXLAN EVPN Control
Plane Update
• Verify the dynamic tunnel established between VTEPs
• Verify the node mac/IP host route being updated via BGP EVPN control plane
Task 5. Verify VXLAN EVPN Control Plane Update
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3 1/1

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3

192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5


1/3 1/3

1/1 1/1

• Verify:
Server-1 • Action: Server-2
• dynamic tunnel established between
• initiate traffic across different VTEPs
VXLANs • node MAC/IP host route being updated
via BGP EVPN control plane
Task 5. Verify VXLAN EVPN Control Plane Update
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3 1/1

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN


Loop1 192.168.0.5
Server-3
192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11
1/3 Loop1 1/3

1/1
1/1

# show nve peers


dynamic tunnel between VTEPs created
Server-1 Server-2
172.21.140.10 172.21.141.10
Task 5. Verify VXLAN EVPN Control Plane Update
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/1 1/4 1/1 # 1/4
show ip route vrf Tenant-1
1/2 1/3 1/2 1/3
Routing table with the /32 host route learned from BGP

1/1
1/1 1/2 1/2
1/2 1/1
1/2 1/3 ge2 ge3 1/1
1/1

Leaf-4 WAN Server-3

Leaf-1 Leaf-2 Leaf-3 2.168.0.11 192.168.0.5


192.168.0.8 192.168.0.9 192.168.0.10 19
1/3 1/3# show ip route vrf Tenant-1

Routing table with the /32 host route learned from BGP
1/1
1/1

Server-2
Server-1 172.21.141.10
172.21.140.10
Task 5. Verify VXLAN EVPN Control Plane Update
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/1 1/4 1/1 # 1/4
show ip route vrf Tenant-1
1/2 1/3 1/2 1/3
Routing table with the /32 host route learned from BGP

1/1
1/1 1/2 1/2
1/2 1/1
1/2 1/3 ge2 ge3 1/1
1/1

Leaf-4 WAN Server-3


Leaf-1 Leaf-2 Leaf-3 92.168.0.11 192.168.0.5
192.168.0.8 192.168.0.9 192.168.0.10 1
1/3 1/3# show ip route vrf Tenant-1

Routing table with the /32 host route learned from BGP
1/1
1/1

Server-2
Server-1 172.21.141.10
172.21.140.10
Task 5. Verify VXLAN EVPN Control Plane Update
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3 1/1

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3

192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5


1/3 1/3

1/1
1/1
# show bgp l2vpn evpn
verify the EVPN control plane update
Server-2
Server-1 172.21.141.10
172.21.140.10
Task 5. Verify VXLAN EVPN Control Plane Update
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1
1/ 2 ge3 1/1
1/1 e2
1/3 g

Leaf-1 WAN Server-3

192.168.0.8 Leaf-2 Leaf-3 Leaf-4 192.168.0.5


1/3 192.168.0.9 192.168.0.10 192.168.0.11
1/3

1/1 1/1

Server-2
172.21.141.10
Server-1
172.21.140.10
Task 5. Verify VXLAN EVPN Control Plane Update
Spine-1 Spine-2

92.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1 1/1 1/2 1/2


1/2 1/1 1/1
1/3 ge2
1/2 ge3 1/1

Leaf-2 Leaf-3 Leaf-4 WAN


Leaf-1 Server-3
192.168.0.9 192.168.0.10 192.168.0.11 192.168.
192.168.0.8 0.5
1/3
1/3
1/1

1/1

Server-2
172.21.141.10
Server-1
172.21.140.10

Ashish Sehgal
Task 5. Verify VXLAN EVPN Control Plane Update
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 ge3 1/1
1/3 ge2

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3

Lo1 192.168.0.18 Lo1 192.168.0.19 Lo1 192.168.0.110 Lo1 192.168.0.111 192.168.0.5


1/3 1/3

eth1
eth1

Server-2
172.21.141.10
Server-1
172.21.140.10

# show l2route evpn mac-ip all


verify the forwarding table
Task 5. Verify Inter-VLAN Routing

Spine-1 pine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/3 /2 1/3
1/2

1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3 1/1

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3

1 92.168.0.8 192.168.0.9 192.168.0 192.168.0.11 192.168.0.5


.10 1/3
1/3

eth1
eth1

Server-2
172.21.141.10
Server-1
172.21.140.10
Tasks
Task 0: Pre-Configuration & Checks
Task 1: Establish iBGP Peer between Spine and Leaf Switches
Task 2: Configuring Multicast to Support BUM in VXLAN Fabric
Task 3: Configuring VXLAN Fabric
Task 4: Configuring BGP EVPN Control Plane
Task 5: Verify VXLAN EVPN Control Plane Update
Task 6: Configure Border Leaf to External Entity
Task 6:
Configure Border Leaf to
External Entity
• Establish connectivity from the VXLAN fabric to external network.
• Redistribute routes in VXLAN fabric to WAN router (via the Border leaf switch, Leaf-4)
and vice versa
• Pings from server-3 to server-1 and server-2 inside the VXLAN fabric will be successful
Task 6. Configure Border Leaf to External Entit y

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3 172.21.1.0/24

1/1
1/1 1/2
1/2
1/2 1/1 1/1
1/2 1/3 ge3 1/1
ge2

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3


Lo0 192.168.0.5
192.168.0.8 Lo0 192.168.0.9 Lo0 192.168.0.10 Lo0 192.168.0.11
1/3
1/3

eth1
eth1

Server-2
Server-1 172.21.141.10
172.21.140.10
Task 6. Configure Border Leaf to External Entity
# interface gig2
# mtu 9216
# description to Leaf-4
# ip address 10.0.0.17 255.255.255.252
# ip ospf network point-to-point
Spine-1 Spine-2 # exit
# router ospf 1
192.168.0.6 192.168. .7 # router-id 192.168.0.5
1/4 1/1 0 # network 10.0.0.16 0.0.0.3 area 0
1/1
1/3 1/4 # redistribute connected subnets
1/2 1/3 1/2
172.21.1.0/24
1/1
1/1 1/2 1/2
1/2 1/1
1/2 1/1 gig3 1/1
1/3 gig2

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server -3


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5
1/3 1/3

eth1 # interface Ethernet1/3


eth1 # mtu 9216
# vrf member Tenanat-1
# ip address 10.0.0.18/30
Server-2 # ip ospf network point-to-point
172.21.141.10 # ip router ospf 1 area 0.0.0.0
Server-1
# no shut
172.21.140.10 # router ospf 1
# router-id 192.168.0.11
# vrf Tenant-1
# copy run start
Task 6. Configure Border Leaf to External Entity
Verify OSPF neighbor between WAN and Leaf-4
Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

1/1
1/1 1/2 1/2
1/2 1/1
1/2 1/1 1/1
1/3 ge2 ge3

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5
1/3 1/3

eth1
eth1

Server-2
172.21.141.10
Server-1
172.21.140.10
Task 6. Configure Border Leaf to External Entity

Spine-1 Spine-2
# route-map permit-bgp2ospf permit 10
192.168.0.6 192.168.0.7
# route-map permit-ospf2bgp permit 1/4 10 1/1 1/4
1/1
# ! 1/2 1/3 1/2 1/3

# router bgp 65000


1/1
1/1 1/2 1/2
# vrf Tenant-1 1/2 1/1 1/1
1/2 1/3 ge2 ge3 1/1
# address-family ipv4 unicast
# advertise l2vpn
Leaf-1 evpn
Leaf-2 Leaf-3 Leaf-4 WAN Server-3

192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5


# redistribute ospf 1 route-map permit-ospf2bgp
1/3
1/3
# router ospf 1
1/1
#1/1vrf Tenant-1
# redistribute bgp 65000 route-map permit-bgp2ospf
Server-2
# redistribute direct route-map permit-bgp2ospf
172.21.141.10
Server-1
172.21.140.10
Task 6. Verification – Route to External Entity

Spine-1 Spine-2

192.168.0.6 192.168.0.7
1/1 1/4 1/1 1/4
1/2 1/3 1/2 1/3 172.21.1.0/24

1/1
1/1 1/2 1/2
1/2 1/2 1/1 1/1
1/3 ge2 ge3 1/1

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5
1/3 1/3

1/1
1/1

Server-2
Server-1 172.21.141.10
172.21.140.10
Task 6. Configure Border Leaf to External Entity

Spine-1 Spine-2 # interface gig3


# description to Server-3
# ip address 172.21.1.1 255.255.255.0
192.168.0.6 192.168.0.7 # exit
1/4 1/1 1/4
1/1
1/2 1/3 1/2 1/3

Usr-root
1/1 Pw-C1sco12345
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3 eth1

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3


192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5
1/3 1/3
# sudo ifconfig eth1 172.21.1.10 netmask 255.255.255.0 up
1/1
1/1 # sudo route add –net 172.21.0.0/16 gw 172.21.1.1 dev eth1

Server-2
172.21.141.10
Server-1
172.21.140.10
Task 6. Configure Border Leaf to External Entity

Spine-1 Spine-2
# ping 172.21.141.10
192.168.0.6 192.168.0.7
1/4 1/1 1/4 # ping 172.21.140.10
1/1
1/2 1/3 1/2 1/3
# show ip route ospf
1/1
1/1 1/2 1/2
1/2 1/1 1/1
1/2 1/3 ge2 ge3 1/1

Leaf-1 Leaf-2 Leaf-3 Leaf-4 WAN Server-3

192.168.0.8 192.168.0.9 192.168.0.10 192.168.0.11 192.168.0.5


1/3 1/3

eth1
1/1

Server-2
172.21.141. 10
Server-1
172.21.140.10

You might also like