Re: [vpp-dev] Help on VxLAN configuration
Thanks, it works that putting the loop interface into the separate IP tables!
-Original Message-
From: John Lo (loj)
Sent: Wednesday, November 07, 2018 2:14 AM
To: Hu, Xuekun ; vpp-dev@lists.fd.io
Subject: RE: Help on VxLAN configuration
One can put the BD BVI interfaces into its own IP table and leave VXLAN encap
and underlay in default global IP table. We would put the loopN interface into
an IP table before assigning its IP address:
vpp# set int ip table ?
set interface ip table set interface ip table
One can also specify the IP table for the VXLAN encap VRF in the create VXLAN
tunnel CLI:
vpp# create vxlan tunnel ?
create vxlan tunnel create vxlan tunnel src
{dst |group }
vni [instance ] [encap-vrf-id ] [decap-next [l2|node ]] [del]
where encap-vrf-id specifies an IP table for the underlay interface. If it is
not specified, it default to 0 or the global IP table.
Regards,
John
-Original Message-
From: vpp-dev@lists.fd.io On Behalf Of Xuekun
Sent: Tuesday, November 06, 2018 3:02 AM
To: vpp-dev@lists.fd.io
Subject: [vpp-dev] Help on VxLAN configuration
Hi, All
How to isolate two VxLAN unicast tunnels when L3 routing available? For
example, I have two tenants, with different vxlan tunnels connected to the VPP
box. Each vxlan tunnel is under a different bridge domain with different loop
interface. I need the loop interface to connect to external network. Now how to
isolate the internal 10.10.10.x and 20.20.20.x network segment?
...
create bridge-domain 1000 learn 1 forward 1 uu-flood 1 flood 1 arp-term 0
create vxlan tunnel src 172.168.1.1 dst 172.168.1.2 vni 100 set interface l2
bridge vxlan_tunnel0 1000 loopback create set interface l2 bridge loop0 1000
bvi set interface ip address loop0 10.10.10.1/24 ...
create bridge-domain 2000 learn 1 forward 1 uu-flood 1 flood 1 arp-term 0
create vxlan tunnel src 172.168.1.1 dst 172.168.1.3 vni 100 set interface l2
bridge vxlan_tunnel1 1000 loopback create set interface l2 bridge loop1 2000
bvi set interface ip address loop0 20.20.20.1/24
(sorry, today I'm a little messy)
Many thanks.
Thx, Xuekun
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#11132): https://lists.fd.io/g/vpp-dev/message/11132
Mute This Topic: https://lists.fd.io/mt/27868329/21656
Group Owner: vpp-dev+ow...@lists.fd.io
Unsubscribe: https://lists.fd.io/g/vpp-dev/unsub [arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [vpp-dev] Help on VxLAN configuration
One can put the BD BVI interfaces into its own IP table and leave VXLAN encap
and underlay in default global IP table. We would put the loopN interface into
an IP table before assigning its IP address:
vpp# set int ip table ?
set interface ip table set interface ip table
One can also specify the IP table for the VXLAN encap VRF in the create VXLAN
tunnel CLI:
vpp# create vxlan tunnel ?
create vxlan tunnel create vxlan tunnel src
{dst |group }
vni [instance ] [encap-vrf-id ] [decap-next [l2|node ]] [del]
where encap-vrf-id specifies an IP table for the underlay interface. If it is
not specified, it default to 0 or the global IP table.
Regards,
John
-Original Message-
From: vpp-dev@lists.fd.io On Behalf Of Xuekun
Sent: Tuesday, November 06, 2018 3:02 AM
To: vpp-dev@lists.fd.io
Subject: [vpp-dev] Help on VxLAN configuration
Hi, All
How to isolate two VxLAN unicast tunnels when L3 routing available? For
example, I have two tenants, with different vxlan tunnels connected to the VPP
box. Each vxlan tunnel is under a different bridge domain with different loop
interface. I need the loop interface to connect to external network. Now how to
isolate the internal 10.10.10.x and 20.20.20.x network segment?
...
create bridge-domain 1000 learn 1 forward 1 uu-flood 1 flood 1 arp-term 0
create vxlan tunnel src 172.168.1.1 dst 172.168.1.2 vni 100
set interface l2 bridge vxlan_tunnel0 1000
loopback create
set interface l2 bridge loop0 1000 bvi
set interface ip address loop0 10.10.10.1/24
...
create bridge-domain 2000 learn 1 forward 1 uu-flood 1 flood 1 arp-term 0
create vxlan tunnel src 172.168.1.1 dst 172.168.1.3 vni 100
set interface l2 bridge vxlan_tunnel1 1000
loopback create
set interface l2 bridge loop1 2000 bvi
set interface ip address loop0 20.20.20.1/24
(sorry, today I'm a little messy)
Many thanks.
Thx, Xuekun
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#11131): https://lists.fd.io/g/vpp-dev/message/11131
Mute This Topic: https://lists.fd.io/mt/27868329/21656
Group Owner: vpp-dev+ow...@lists.fd.io
Unsubscribe: https://lists.fd.io/g/vpp-dev/unsub [arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[vpp-dev] Help on VxLAN configuration
Hi, All How to isolate two VxLAN unicast tunnels when L3 routing available? For example, I have two tenants, with different vxlan tunnels connected to the VPP box. Each vxlan tunnel is under a different bridge domain with different loop interface. I need the loop interface to connect to external network. Now how to isolate the internal 10.10.10.x and 20.20.20.x network segment? ... create bridge-domain 1000 learn 1 forward 1 uu-flood 1 flood 1 arp-term 0 create vxlan tunnel src 172.168.1.1 dst 172.168.1.2 vni 100 set interface l2 bridge vxlan_tunnel0 1000 loopback create set interface l2 bridge loop0 1000 bvi set interface ip address loop0 10.10.10.1/24 ... create bridge-domain 2000 learn 1 forward 1 uu-flood 1 flood 1 arp-term 0 create vxlan tunnel src 172.168.1.1 dst 172.168.1.3 vni 100 set interface l2 bridge vxlan_tunnel1 1000 loopback create set interface l2 bridge loop1 2000 bvi set interface ip address loop0 20.20.20.1/24 (sorry, today I'm a little messy) Many thanks. Thx, Xuekun -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#7): https://lists.fd.io/g/vpp-dev/message/7 Mute This Topic: https://lists.fd.io/mt/27868329/21656 Group Owner: vpp-dev+ow...@lists.fd.io Unsubscribe: https://lists.fd.io/g/vpp-dev/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
