Browsed by
Tag: EVPN

Juniper EVPN BGP options – eBGP-only design

Juniper EVPN BGP options – eBGP-only design

Comments 12 comments

In another part of his never-ending EVPN/BGP saga Ivan Pepelnjak argued with Juniper fanboys once again about sanity of iBGP-over-eBGP and eBGP-over-eBGP designs and all that fun stuff. I’ve already written my opinion about that topic in my previous post and numerous comments to Ivan’s posts (TL;DR: iBGP-over-eBGP design has its advantages, just implement it wisely – don’t place RR on spine switches). But there is one thing that worries me. In almost every one of his posts Ivan talks…

Read More Read More

Vagrant + vQFX + Ansible = EVPN-VXLAN Fabric

Vagrant + vQFX + Ansible = EVPN-VXLAN Fabric

Comments 3 comments

Did you know that Juniper vQFX images are available in Vagrant Cloud? There is vQFX RE image and vQFX PFE one. You can use only RE image to build simple topologies, or pair every RE with PFE to use more complex protocols. There is also a bunch of examples in Juniper’s github repository. What is Vagrant? Let me quote official website: “Vagrant is a tool for building and managing virtual machine environments in a single workflow. Vagrant gives you a disposable environment and…

Read More Read More

List of EVPN and DC-related RFCs

List of EVPN and DC-related RFCs

Comments 1 comment

In this post I try to collect links to all interesting RFCs and drafts related to DC, EVPN and network overlays. Some of this documents are complete industry standards, some are drafts aiming to become such standarts, and others are just informational documents, often already outdated and forgotten, but despite this still interesting and useful. So don’t forget to pay attention to time frame each particular document was created and updated.   RFC 7209 – Requirements for Ethernet VPN (EVPN) This…

Read More Read More

This Week: Data Center Deployment with EVPN/VXLAN

This Week: Data Center Deployment with EVPN/VXLAN

Comments 0 Comment

Brand new book – This Week: Data Center Deployment with EVPN/VXLAN. Author did a great job explaining and showing various examples of real world implementations of EVPN-VXLAN and DCI. Definitely must read for anybody aiming for JNCIE-DC lab. I wish I’ve read this before my lab attempt – this book really helps to update and systematize all EVPN-VXLAN related knowledge. But that’s for sure not the first book to read if you doesn’t know anything about EVPN-VXLAN. I recommend firstly…

Read More Read More

EVPN lab – EVPN-VXLAN to EVPN-MPLS stitching

EVPN lab – EVPN-VXLAN to EVPN-MPLS stitching

Comments 5 comments

Last big topic that I need to practice – Data Center Interconnect (DCI). Fortunately I pretty confident in my skills in the MPLS L3VPN area, so I think I shouldn’t spend much time for this topic. The most complex DCI option remains – EVPN stitching. In this topic I will show you my example of EVPN-VXLAN to EVPN-MPLS stitching (there is also option of EVPN-VXLAN to EVPN-VXLAN stitching, but configuration should be similar to my example). EVPN stitching concept is…

Read More Read More

EVPN-VXLAN lab – IRB functionality

EVPN-VXLAN lab – IRB functionality

Comments 0 Comment

Firstly, QFX5100 series doesn’t support EVPN-VXLAN inter-VXLAN routing, so I practice all IRB related topics on vMX devices. vQFXs acts as a simple L2 EVPN gateways. This post continues the EVPN-VXLAN lab from the previous ones. Full vMX IRB interfaces configuration: alex@vMX1# show interfaces irb unit 100 {     proxy-macip-advertisement;     family inet {         address 172.16.0.251/24 {             virtual-gateway-address 172.16.0.254;         }     }  …

Read More Read More

EVPN-VXLAN lab – RT assignment methods

EVPN-VXLAN lab – RT assignment methods

Comments 2 comments

This post continues the EVPN-VXLAN lab from the previous one. For now I configured the simplest possible variant of RT assignment – one vrf-target for all ES and VNI routes (vrf-target target:65000:1): alex@vQFX1# show switch-options service-id 1; vtep-source-interface lo0.0; route-distinguisher 11.11.11.11:1; vrf-target target:65000:1;    ### This RT applies to ALL EVPN routes alex@vMX1# show routing-instances evpn {     vtep-source-interface lo0.0;     instance-type virtual-switch;     interface ge-0/0/4.0;     interface ae0.0;     route-distinguisher 1.1.1.1:1;    …

Read More Read More

EVPN-VXLAN lab – basic L2 switching

EVPN-VXLAN lab – basic L2 switching

Comments 1 comment

My EVPN-VXLAN lab topology: There is IP Fabric in DC1 (2 vMX and 2 vQFX), and 2 vMX_v14 to emulate CE devices. Each CE device connected to EVPN via LACP LAG ae0 (EVPN Active-Active ethernet segment on service side). vMX_old-1 also has sigle-homed interface ge-0/0/4 (just to show you the difference). Each CE device split into two logical systems for more convenient testing of routing functionality (global device context for Vlan100 and logical-system second for Vlan200). You could also use…

Read More Read More

My JNCIE-DC virtual lab

My JNCIE-DC virtual lab

Comments 3 comments

So I think I’m done with theory, and now it’s time to practice some of the most important topics – firstly MC-LAG and EVPN. Unfortunately I don’t have access to real QFX5100 gear, so I’m using vMX and vQFX virtual appliances. I built my lab in GNS3 using my home PC with 4-core CPU and 32 GB of RAM. I’m using vMX v17 (v16 doesn’t support all required EVPN functionality), vQFX v15; and also vMX v14 in CE and MPLS PE…

Read More Read More

EVPN-VXLAN to EVPN-MPLS stitching

EVPN-VXLAN to EVPN-MPLS stitching

Comments 0 Comment

For full configuration eample of EVPN-VXLAN to EVPN-MPLS stitching refer to MX Layer 2 VPNs Feature Guide, Chapter 28. First of all, you need to configure Logical Tunnel (lt-) interface for traffic between EVPN-VXLAN and EVPN-MPLS instances: interfaces lt-1/0/10 {     esi {         36:36:36:36:36:36:36:36:36:36;         all-active;     }     unit 3 {         encapsulation ethernet-bridge;         peer-unit 4;         family bridge {    …

Read More Read More