VXLAN IBGP RR 实验
网络拓扑图:
SPINE1配置
======================================================
hostname SPINE-1
nv overlay evpn
feature ospf
feature bgp
feature pim
feature nv overlay
ip pim rp-address 192.168.1.8 group-list 239.0.0.0/24
ip pim log-neighbor-changes
ip pim ssm range 232.0.0.0/8
ip pim anycast-rp 192.168.1.8 192.168.1.1
ip pim anycast-rp 192.168.1.8 192.168.1.2
vrf context management
interface Ethernet1/1
no switchport
ip address 10.10.1.1/30
ip ospf network point-to-point
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
no shutdown
interface Ethernet1/2
no switchport
ip address 10.10.3.1/30
ip ospf network point-to-point
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
no shutdown
interface loopback0
ip address 192.168.1.1/32
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
interface loopback1
ip address 192.168.1.8/32
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
line console
line vty
boot nxos bootflash:/nxos.7.0.3.I5.2.bin
router ospf 100
router-id 192.168.1.1
log-adjacency-changes
router bgp 65001
router-id 192.168.1.1
log-neighbor-changes
address-family ipv4 unicast
address-family l2vpn evpn
retain route-target all
template peer VTEP
remote-as 65001
update-source loopback0
address-family ipv4 unicast
send-community
send-community extended
route-reflector-client
address-family l2vpn evpn
send-community
send-community extended
route-reflector-client
neighbor 192.168.1.3
inherit peer VTEP
remote-as 65001
neighbor 192.168.1.4
inherit peer VTEP
remote-as 65001
SPINE2配置
======================================================
hostname SPINE-2
nv overlay evpn
feature ospf
feature bgp
feature pim
feature nv overlay
ip pim rp-address 192.168.1.8 group-list 239.0.0.0/24
ip pim log-neighbor-changes
ip pim ssm range 232.0.0.0/8
ip pim anycast-rp 192.168.1.8 192.168.1.1
ip pim anycast-rp 192.168.1.8 192.168.1.2
vrf context management
interface Ethernet1/1
no switchport
ip address 10.10.4.1/30
ip ospf network point-to-point
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
no shutdown
interface Ethernet1/2
no switchport
ip address 10.10.2.1/30
ip ospf network point-to-point
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
no shutdown
interface loopback0
ip address 192.168.1.2/32
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
interface loopback1
ip address 192.168.1.8/32
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
line console
line vty
boot nxos bootflash:/nxos.7.0.3.I5.2.bin
router ospf 100
router-id 192.168.1.2
log-adjacency-changes
router bgp 65001
router-id 192.168.1.2
log-neighbor-changes
address-family ipv4 unicast
address-family l2vpn evpn
retain route-target all
template peer VTEP
remote-as 65001
update-source loopback0
address-family ipv4 unicast
send-community
send-community extended
route-reflector-client
address-family l2vpn evpn
send-community
send-community extended
route-reflector-client
neighbor 192.168.1.3
inherit peer VTEP
remote-as 65001
neighbor 192.168.1.4
inherit peer VTEP
remote-as 65001
LEAF101配置
======================================================
hostname LEAF101
nv overlay evpn
feature ospf
feature bgp
feature pim
feature interface-vlan
feature vn-segment-vlan-based
feature nv overlay
vlan 1,11,21,31,41,901-904
fabric forwarding anycast-gateway-mac 0000.1111.2222
ip pim rp-address 192.168.1.8 group-list 239.0.0.0/24
ip pim log-neighbor-changes
ip pim ssm range 232.0.0.0/8
vlan 11
vn-segment 160011
vlan 21
vn-segment 160021
vlan 31
vn-segment 160031
vlan 41
vn-segment 160041
vlan 901
vn-segment 900901
vlan 902
vn-segment 900902
vlan 903
vn-segment 900903
vlan 904
vn-segment 900904
vrf context APP
vni 900901
rd auto
address-family ipv4 unicast
route-target both auto
route-target both auto evpn
vrf context CTRIX
vni 900903
rd auto
address-family ipv4 unicast
route-target both auto
route-target both auto evpn
vrf context DB
vni 900904
rd auto
address-family ipv4 unicast
route-target both auto
route-target both auto evpn
vrf context VM
vni 900902
rd auto
address-family ipv4 unicast
route-target both auto
route-target both auto evpn
vrf context management
interface Vlan1
interface Vlan11
no shutdown
mtu 9216
vrf member APP
ip address 10.133.1.254/24
fabric forwarding mode anycast-gateway
interface Vlan21
no shutdown
mtu 9216
vrf member VM
ip address 10.63.1.254/24
fabric forwarding mode anycast-gateway
interface Vlan31
no shutdown
mtu 9216
vrf member CTRIX
ip address 10.158.1.254/24
fabric forwarding mode anycast-gateway
interface Vlan41
no shutdown
mtu 9216
vrf member DB
ip address 10.79.1.254/24
fabric forwarding mode anycast-gateway
interface Vlan901
no shutdown
mtu 9216
vrf member APP
no ip redirects
ip forward
interface Vlan902
no shutdown
mtu 9216
vrf member VM
no ip redirects
ip forward
interface Vlan903
no shutdown
mtu 9216
vrf member CTRIX
no ip redirects
ip forward
interface Vlan904
no shutdown
mtu 9216
vrf member DB
no ip redirects
ip forward
interface nve1
no shutdown
source-interface loopback0
host-reachability protocol bgp
member vni 160011
mcast-group 239.0.0.1
member vni 160021
mcast-group 239.0.0.2
member vni 160031
mcast-group 239.0.0.3
member vni 160041
mcast-group 239.0.0.4
member vni 900901 associate-vrf
member vni 900902 associate-vrf
member vni 900903 associate-vrf
member vni 900904 associate-vrf
interface Ethernet1/1
no switchport
ip address 10.10.1.2/30
ip ospf network point-to-point
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
no shutdown
interface Ethernet1/2
no switchport
ip address 10.10.2.2/30
ip ospf network point-to-point
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
no shutdown
interface Ethernet1/3
switchport access vlan 11
interface loopback0
ip address 192.168.1.3/32
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
line console
line vty
boot nxos bootflash:/nxos.7.0.3.I5.2.bin
router ospf 100
router-id 192.168.1.3
log-adjacency-changes
router bgp 65001
router-id 192.168.1.3
log-neighbor-changes
address-family ipv4 unicast
address-family l2vpn evpn
neighbor 192.168.1.1
remote-as 65001
update-source loopback0
address-family ipv4 unicast
send-community
send-community extended
address-family l2vpn evpn
send-community
send-community extended
neighbor 192.168.1.2
remote-as 65001
update-source loopback0
address-family ipv4 unicast
send-community
send-community extended
address-family l2vpn evpn
send-community
send-community extended
vrf APP
address-family ipv4 unicast
advertise l2vpn evpn
maximum-paths 2
vrf CTRIX
address-family ipv4 unicast
advertise l2vpn evpn
maximum-paths ibgp 2
vrf DB
address-family ipv4 unicast
advertise l2vpn evpn
maximum-paths ibgp 2
vrf VM
address-family ipv4 unicast
advertise l2vpn evpn
maximum-paths ibgp 2
evpn
vni 160011 l2
rd auto
route-target import auto
route-target export auto
vni 160021 l2
rd auto
route-target import auto
route-target export auto
vni 160031 l2
rd auto
route-target import auto
route-target export auto
vni 160041 l2
rd auto
route-target import auto
route-target export auto
ip tcp path-mtu-discovery
BORDERLEAF配置
======================================================
hostname BORDERLEAF
nv overlay evpn
feature ospf
feature bgp
feature pim
feature interface-vlan
feature vn-segment-vlan-based
feature nv overlay
vlan 1,11,21,31,41,901-904
fabric forwarding anycast-gateway-mac 0000.1111.2222
ip pim rp-address 192.168.1.8 group-list 239.0.0.0/24
ip pim log-neighbor-changes
ip pim ssm range 232.0.0.0/8
vlan 11
vn-segment 160011
vlan 21
vn-segment 160021
vlan 31
vn-segment 160031
vlan 41
vn-segment 160041
vlan 901
vn-segment 900901
vlan 902
vn-segment 900902
vlan 903
vn-segment 900903
vlan 904
vn-segment 900904
ip prefix-list static2bgp seq 5 permit 0.0.0.0/0 le 32
route-map static2bgp permit 10
match ip address prefix-list static2bgp
vrf context APP
vni 900901
ip route 0.0.0.0/0 Ethernet1/3.110 10.20.1.2
rd auto
address-family ipv4 unicast
route-target both auto
route-target both auto evpn
vrf context CTRIX
vni 900903
ip route 0.0.0.0/0 Ethernet1/3.130 10.20.3.2
rd auto
address-family ipv4 unicast
route-target both auto
route-target both auto evpn
vrf context DB
vni 900904
ip route 0.0.0.0/0 Ethernet1/3.140 10.20.4.2
rd auto
address-family ipv4 unicast
route-target both auto
route-target both auto evpn
vrf context VM
vni 900902
ip route 0.0.0.0/0 Ethernet1/3.120 10.20.2.2
rd auto
address-family ipv4 unicast
route-target both auto
route-target both auto evpn
vrf context management
interface Vlan11
no shutdown
mtu 9216
vrf member APP
ip address 10.133.1.254/24
fabric forwarding mode anycast-gateway
interface Vlan21
no shutdown
mtu 9216
vrf member VM
ip address 10.63.1.254/24
fabric forwarding mode anycast-gateway
interface Vlan31
no shutdown
mtu 9216
vrf member CTRIX
ip address 10.158.1.254/24
fabric forwarding mode anycast-gateway
interface Vlan41
no shutdown
mtu 9216
vrf member DB
ip address 10.79.1.254/24
fabric forwarding mode anycast-gateway
interface Vlan901
no shutdown
mtu 9216
vrf member APP
no ip redirects
ip forward
interface Vlan902
no shutdown
mtu 9216
vrf member VM
no ip redirects
ip forward
interface Vlan903
no shutdown
mtu 9216
vrf member CTRIX
no ip redirects
ip forward
interface Vlan904
no shutdown
mtu 9216
vrf member DB
no ip redirects
ip forward
interface nve1
no shutdown
source-interface loopback0
host-reachability protocol bgp
member vni 160011
mcast-group 239.0.0.1
member vni 160021
mcast-group 239.0.0.2
member vni 160031
mcast-group 239.0.0.3
member vni 160041
mcast-group 239.0.0.4
member vni 900901 associate-vrf
member vni 900902 associate-vrf
member vni 900903 associate-vrf
member vni 900904 associate-vrf
interface Ethernet1/1
no switchport
ip address 10.10.4.2/30
ip ospf network point-to-point
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
no shutdown
interface Ethernet1/2
no switchport
ip address 10.10.3.2/30
ip ospf network point-to-point
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
no shutdown
interface Ethernet1/3
no switchport
no shutdown
interface Ethernet1/3.110
encapsulation dot1q 110
vrf member APP
ip address 10.20.1.1/30
no shutdown
interface Ethernet1/3.120
encapsulation dot1q 120
vrf member VM
ip address 10.20.2.1/30
no shutdown
interface Ethernet1/3.130
encapsulation dot1q 130
vrf member CTRIX
ip address 10.20.3.1/30
no shutdown
interface Ethernet1/3.140
encapsulation dot1q 140
vrf member DB
ip address 10.20.4.1/30
no shutdown
interface loopback0
ip address 192.168.1.4/32
ip router ospf 100 area 0.0.0.0
ip pim sparse-mode
line console
line vty
boot nxos bootflash:/nxos.7.0.3.I5.2.bin
router ospf 100
router-id 192.168.1.4
log-adjacency-changes
router bgp 65001
router-id 192.168.1.4
log-neighbor-changes
address-family ipv4 unicast
address-family l2vpn evpn
neighbor 192.168.1.1
remote-as 65001
update-source loopback0
address-family ipv4 unicast
send-community
send-community extended
address-family l2vpn evpn
send-community
send-community extended
neighbor 192.168.1.2
remote-as 65001
update-source loopback0
address-family ipv4 unicast
send-community
send-community extended
address-family l2vpn evpn
send-community
send-community extended
vrf APP
address-family ipv4 unicast
advertise l2vpn evpn
redistribute static route-map static2bgp
maximum-paths 2
default-information originate
vrf CTRIX
address-family ipv4 unicast
advertise l2vpn evpn
redistribute static route-map static2bgp
maximum-paths ibgp 2
default-information originate
vrf DB
address-family ipv4 unicast
advertise l2vpn evpn
redistribute static route-map static2bgp
maximum-paths ibgp 2
default-information originate
vrf VM
address-family ipv4 unicast
advertise l2vpn evpn
redistribute static route-map static2bgp
maximum-paths ibgp 2
default-information originate
evpn
vni 16004 l2
rd auto
vni 160011 l2
rd auto
route-target import auto
route-target export auto
vni 160021 l2
rd auto
route-target import auto
route-target export auto
vni 160031 l2
rd auto
route-target import auto
route-target export auto
vni 160041 l2
rd auto
route-target import auto
route-target export auto
ip tcp path-mtu-discovery
ISP配置
======================================================
!
hostname ISP
!
interface Loopback0
ip address 123.103.15.129 255.255.255.255
!
interface GigabitEthernet1.110
encapsulation dot1Q 110
ip address 10.20.1.2 255.255.255.252
!
interface GigabitEthernet1.120
encapsulation dot1Q 120
ip address 10.20.2.2 255.255.255.252
!
interface GigabitEthernet1.130
encapsulation dot1Q 130
ip address 10.20.3.2 255.255.255.252
!
interface GigabitEthernet1.140
encapsulation dot1Q 140
ip address 10.20.4.2 255.255.255.252
!
interface GigabitEthernet2
no ip address
shutdown
negotiation auto
!
interface GigabitEthernet3
no ip address
shutdown
negotiation auto
!
interface GigabitEthernet4
no ip address
shutdown
negotiation auto
!
!
virtual-service csr_mgmt
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
ip route 10.63.0.0 255.255.0.0 GigabitEthernet1.120 10.20.2.1
ip route 10.79.0.0 255.255.0.0 GigabitEthernet1.140 10.20.4.1
ip route 10.133.0.0 255.255.0.0 GigabitEthernet1.110 10.20.1.1
ip route 10.158.0.0 255.255.0.0 GigabitEthernet1.130 10.20.3.1
!
在leaf上查看NVE peer
======================================================
在VPC上ping测试external的loopback地址123.103.15.129/32
======================================================
VXLAN IBGP RR 实验的更多相关文章
- [原] 利用 OVS 建立 VxLAN 虚拟网络实验
OVS 配置 VxLAN HOST A ------------------------------------------ | zh-veth0(10.1.1.1) VM A | | ---|--- ...
- Open vSwitch系列实验(三):Open vSwitch的VxLAN隧道网络实验
1 实验目的 该实验通过Open vSwitch构建Overlay的VxLAN网络,更直观的展现VxLAN的优势.在实验过程中,可以了解如何建立VxLAN隧道并进行配置,并实现相同网段和不同网段之间的 ...
- 干货分享: 长达150页的openvswitch的ppt,不实验无真相
下载链接: Openvswitch实验教程 http://files.cnblogs.com/popsuper1982/Openvswtich.pptx 一.概论 Software Defined N ...
- GRE and VXLAN with Open vSwitch
因为在OpenStack的Neutron中比较常用,所以参考别人的博客试了下OVS的一些隧道封装功能(GRE,VXLAN). 实验:实现两个host的Network namespace之间的通信,NS ...
- Linux 下实践 VxLAN
本文首发于我的公众号 Linux云计算网络(id: cloud_dev),专注于干货分享,号内有 10T 书籍和视频资源,后台回复 「1024」 即可领取,欢迎大家关注,二维码文末可以扫. 来源:ht ...
- Linux 下实践 VxLAN:虚拟机和 Docker 场景
本文首发于我的公众号 Linux云计算网络(id: cloud_dev),专注于干货分享,号内有 10T 书籍和视频资源,后台回复 「1024」 即可领取,欢迎大家关注,二维码文末可以扫. 在上篇文章 ...
- [转帖]Linux 下实践 VxLAN:虚拟机和 Docker 场景
Linux 下实践 VxLAN:虚拟机和 Docker 场景 https://www.cnblogs.com/bakari/p/11264520.html 实践了下 没问题 作者写的很perfect ...
- Mysql学习笔记-临键锁实验
前言 昨天同事跟我聊到一个问题:InnoDB里面间隙锁锁住的数据可以update么?我们经常都说间隙锁是InnoDB在RR隔离级别下防止幻读的一种处理手段.它可以防止数据在间隙范围中insert数据, ...
- BGP笔记
BGP:用于AS与AS之间的路由,但现在也越来越多的用在IDC内部了 BGP是应用层协议,应用TCP协议(唯一一个运用TCP的路由协议) IGP和EGP的区别:IGP运行在一个AS之内,EGP运行在A ...
随机推荐
- 2017 校赛 问题 E: 神奇的序列
题目描述 Aurora在南宁发现了一个神奇的序列,即对于该序列的任意相邻两数之和都不是三的倍数.现在给你一个长度为n的整数序列,让你判断是否能够通过重新排列序列里的数字使得该序列变成一个 ...
- maven 标签: 项目管理软件 2016-09-11 22:29 323人阅读 评论(24) 收藏
开始接触itoo的java项目之后,也就开始接触maven,搭建环境中有一个步骤是配置maven和jboss,当时知道jboss是用来部署我们的项目的,但是maven就只知道一个更新maven,那么, ...
- iOS学习--详解UIView的 contentStretch属性
通过实例和图片理解UIView的contentStretch属性 方法 通过一个图片建立一个简单的UIImageView 设置它的contentStretch属性 修改它的frame属性 观察 测试用 ...
- mysql format时间格式化说明
原文地址为:mysql format时间格式化说明 date_format(datetime,formatting)可以格式日期和时间(例如 YYYY-MM-DD HH:MM:SS)和(HH:MM:S ...
- vue3——vue数据循环渲染
博客地址 :https://www.cnblogs.com/sandraryan/ vue循环渲染 <!DOCTYPE html> <html lang="en" ...
- 根据User Agent参数的各个字段Mozilla/5.0/4.0-AppleWebKit/Chrome/Safari/Firefox/Opera/MSIE来确定/判断客户端使用什么浏览器
下面给你一一解答以及给你介绍: //Mozilla/5.0 (Windows; U; Windows NT 5.1; zh-CN) AppleWebKit/533.21.1 (KHTML, like ...
- [Err] 1062 - Duplicate entry '0' for key 'PRIMARY'
问题描述: sql语句执行的时候,插入语句无法正确执行 问题原因: 主键 重复 出现 0 解决方案: 将主键设置为自增 然而,设置自增后还是可能会出现下面的问题 #1062 – Duplicate e ...
- SpringBoot 集成 Activiti 一路踩得坑
由于项目需要,本人开始在项目Spring boot 中集成工作流引擎Activiti.由于第一次集成,一路上步步都是坑,怪我没有先去看官方文档.现将一路上遇到的问题一一记录. 一. 环境配置 1.项目 ...
- SELinux: Could not downgrade policy file
在配置nfs服务器,设定selinux时,碰到了SELinux: Could not downgrade policy file的错误提示,下文是其解决方案. 一.故障现象 [root@system1 ...
- JPA 一对多、多对一注解
1. @OneToMany @OneToMany 是属性或方法级别的注解,用于定义源实体与目标实体是一对多的关系. 参数 类型 描述 targetEntity Class 源实体关联的目标实体类型,默 ...