evpn实现vxlan分布式网关

huawei
网络技术 huawei
发布日期:   2025-03-10
文章字数:   690
阅读时长:   4 分

evpn实现vxlan分布式网关

实验目标

  1. PC1在bd 10, PC在bd 20,地址如图
  2. 希望通过分布式vxlan网关+evpn自动隧道,实现pc1和pc2的连通性

实验规划

  1. pc1和pc2属于ip vpn实例testnet,L3 vni为123
  2. bd 10的vni为100
  3. Bd 20的vni为200
  4. 所有vpn实例的rd/irt/ert为100:1

基础配置

IP地址和vxlan

LSW1

system-view
sysname LSW1

vlan 10
int g0/0/1
port link-type access
port de vlan 10
int g0/0/2
por link-type trunk
port trunk allow-pas vlan 10

LSW2

system-view
sysname LSW2

vlan 20
int g0/0/1
port link-type access
port de vlan 20
int g0/0/2
port link-type trunk
port trunk allow-pas vlan 20

CE1

system-view
sysname CE1

bridge-domain 10
int g1/0/0
undo shutdown
port link-type trunk
int g1/0/0.10 mo l2
enca dot1q vid 10
bridge-domain 10
quit

bridge-domain 10
vxlan vni 100
quit

int vbdif 10
ip add 192.168.10.1 24

int g1/0/1
undo shutdown 
undo portswitch
ip add 10.10.11.1 24

int loop 0
ip add 1.1.1.1 32

CE2

system-view
sysname CE2

bridge-domain 20
int g1/0/0
undo shutdown
port link-type trunk
int g1/0/0.20 mo l2
enca dot1q vid 20
bridge-domain 20
quit

bridge-domain 20
vxlan vni 200
quit

int vbdif 20
ip add 192.168.20.1 24

AR1

system-view
sysname AR1

int g0/0/0
ip add 10.10.11.2 24

int g0/0/1
ip add 10.10.22.2 24

int loop 0
ip add 3.3.3.3 32

ospf 1
area 0
net 10.0.0.0 0.255.255.255
net 3.3.3.3 0.0.0.0

CE1

int g1/0/1
undo shutdown
undo portswitch
ip add 10.10.11.1 24

int loop 0
ip add 1.1.1.1 32

ospf 1
area 0
net 10.0.0.0 0.255.255.255
net 1.1.1.1 0.0.0.0

CE2

int g1/0/1
undo shutdown
undo portswitch
ip add 10.10.22.1 24

int loop 0
ip add 2.2.2.2 32

ospf 1
area 0
net 10.0.0.0 0.255.255.255
net 2.2.2.2 0.0.0.0

配置BGP

CE1

bgp 100
peer 2.2.2.2 as-num 100
peer 2.2.2.2 connect-inter loop 0

evpn-overlay enable
bgp 100
l2vpn-family evpn
peer 2.2.2.2 enable
peer 2.2.2.2 adv irb

CE2

bgp 100
peer 1.1.1.1 as-num 100
peer 1.1.1.1 connect-inter loop 0

evpn-overlay enable
bgp 100
l2vpn-family evpn
peer 1.1.1.1 enable
peer 1.1.1.1 adv irb
dis bgp evpn peer

CE1

int nve 1
souce 1.1.1.1
vni 100 head-end peer-list protocol bgp

ip vpn-instance testnet
route-distinguisher 100:1
vpn-target 100:1 both evpn
vxlan vni 123

int vbdif 10
ip binding vpn-instance testnet
ip add 192.168.10.1 24

bridge-domain 10
evpn
route-dis 100:1
vpn-target 100:1 both 

int vbdif 10
arp collect host enable

CE2

int nve1
source 2.2.2.2
vni 200 head-end peer-list protocol bgp

ip vpn-instance testnet
route-distinguisher 100:1
vpn-target 100:1 both evpn
vxlan vni 123

int vbdif 20
ip binding vpn-instance testnet
ip add 192.168.20.1 24

bridge-domain 20
evpn
route-dis 100:1
vpn-target 100:1 both

int vbdif 20
arp collect host enable

dis vxlan tunnel
dis bgp evpn all routing-table
文章作者: AaronXu
文章链接: https://iproute.cn/2025/03/10/evpn-shi-xian-vxlan-fen-bu-shi-wang-guan/
版权声明: 本博客所有文章除特別声明外,均采用 CC BY 4.0 许可协议。转载请注明来源 AaronXu !
huawei
评论
  目录