Browsed by
Month: July 2017

MC-LAG lab – advanced IRB functionality

MC-LAG lab – advanced IRB functionality

Comments 3 comments

For simplified Layer 3 gateway services, where Layer 3 routing protocols are not run on the MC-LAG peers, you simply configure the same Layer 3 gateway IP address on both MC-LAG peers and enable IRB MAC address synchronization. This IP address is used as the default gateway for the MC-LAG servers or hosts. For more advanced Layer 3 gateway services, where Layer 3 routing protocols and Layer 3 multicast operations are required on the MC-LAG peers, you configure unique IRB…

Read More Read More

MC-LAG lab – basic L2 connectivity

MC-LAG lab – basic L2 connectivity

Comments 2 comments

My topology for MC-LAG practice: I already configured IP fabric between vQFX and vMX nodes using EBGP (to save space, I show the configuration for only one device – the rest are configured the same way): alex@vMX1> show configuration protocols bgp group underlay type external; export direct; local-as 65001; multipath multiple-as; neighbor 192.168.0.1 {     ###vQFX1     peer-as 65011; } neighbor 192.168.0.3 {     ###vQFX2     peer-as 65022; } alex@vMX1> show configuration policy-options policy-statement direct term…

Read More Read More

My JNCIE-DC virtual lab

My JNCIE-DC virtual lab

Comments 3 comments

So I think I’m done with theory, and now it’s time to practice some of the most important topics – firstly MC-LAG and EVPN. Unfortunately I don’t have access to real QFX5100 gear, so I’m using vMX and vQFX virtual appliances. I built my lab in GNS3 using my home PC with 4-core CPU and 32 GB of RAM. I’m using vMX v17 (v16 doesn’t support all required EVPN functionality), vQFX v15; and also vMX v14 in CE and MPLS PE…

Read More Read More

EVPN-VXLAN to EVPN-MPLS stitching

EVPN-VXLAN to EVPN-MPLS stitching

Comments 0 Comment

For full configuration eample of EVPN-VXLAN to EVPN-MPLS stitching refer to MX Layer 2 VPNs Feature Guide, Chapter 28. First of all, you need to configure Logical Tunnel (lt-) interface for traffic between EVPN-VXLAN and EVPN-MPLS instances: interfaces lt-1/0/10 {     esi {         36:36:36:36:36:36:36:36:36:36;         all-active;     }     unit 3 {         encapsulation ethernet-bridge;         peer-unit 4;         family bridge {    …

Read More Read More

DCI options for EVPN

DCI options for EVPN

Comments 0 Comment

Four Data Center InterConnect (DCI) options for EVPN-VXLAN service are described in detail in the Advanced Data Center Switching (ADCX) course materials. These options are: EVPN-VXLAN session over L3VPN-MPLS service; EVPN-VXLAN to EVPN-MPLS stitching; EVPN-VXLAN to EVPN-VXLAN stitching; EVPN-VXLAN session over dark fiber. First and last options are not so interesting – simple EVPN-VXLAN session between DC devices over direct IP connectivity or via L3VPN service. Basic L3VPN/MPLS stuff. But EVPN stitching is a slightly different story. Resembles Inter-AS VRF Option-A….

Read More Read More

MX EVPN IRB functionality

MX EVPN IRB functionality

Comments 0 Comment

First note – QFX5100 series doesn’t support EVPN-VXLAN inter-VXLAN routing, and doesn’t support EVPN-MPLS at all. So all information in this post applicable only to MX devices. For EVPN-MPLS there is two types of IRB implementation: configuration of same MAC address on every IRB interface; default gateway MAC synchronization using EVPN default-gateway community. In EVPN-MPLS it is expected, that if IRB functionality necessary for this L2 domain, then IRB interfaces should be configured on every participating PE router. …

Read More Read More

EVPN-VXLAN RT communities

EVPN-VXLAN RT communities

Comments 0 Comment

The general route target configured under vrf-target will be used by type 1 EVPN routes: MX:   set routing-instances VS_VLAN100 vrf-target target:1:100 QFX:  set switch-options vrf-target target:65000:2 If you configure vrf-target auto, then type 2 and type 3 EVPN routes will use the auto-derived per-VNI route target for export and import. Community numbers based on autonomous system number defined in routing-options stanza. MX:   set routing-instances VS_VLAN100 switch-options vrf-target auto QFX:  set switch-options vrf-target auto If you prefer…

Read More Read More

QFX EVPN basic config

QFX EVPN basic config

Comments 0 Comment

The overall structure of QFX5100 EVPN-VXLAN configuration is almost identical to MX configuration, but QFX configuration statements are scattered across three different stanzas: switch-options, protocols evpn and vlans. First is the switch-options config: set switch-options vtep-source-interface lo0.0 set switch-options route-distinguisher 10.0.0.3:1 set switch-options vrf-import EVPN_VRF_IMPORT set switch-options vrf-target target:65000:2 set switch-options vrf-target auto           ### depends on AS number in routing-options Vtep-source-interface and route-target policices are configured here. Configuration of vrf-import policy: set policy-options…

Read More Read More

MX EVPN-VXLAN basic config

MX EVPN-VXLAN basic config

Comments 3 comments

Basic config for EVPN-VXLAN service on Juniper MX. Important BGP configuration statements: set protocols bgp group EVPN_VXLAN family evpn signaling set protocols bgp group EVPN_VXLAN multipath Routing instance configuration: VS_VLAN100 {     vtep-source-interface lo0.0;     instance-type virtual-switch;     route-distinguisher 1.255.255.0:100;     vrf-import VS_VLAN100_IMP;     vrf-target target:1:100;     protocols {         evpn {             encapsulation vxlan;             extended-vni-list 1100;  …

Read More Read More

MX EVPN-MPLS basic config

MX EVPN-MPLS basic config

Comments 0 Comment

Short notes about MX EVPN-MPLS configuration. Vlan-based configuration: routing-instances {     EVPN-1 {         instance-type evpn;         vlan-id 100;         interface ae0.100;         routing-interface irb.100;         route-distinguisher 11.11.11.11:1;         vrf-target target:65000:1;         protocols {             evpn {                 default-gateway do-not-advertise;            }…

Read More Read More