No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - VXLAN

CloudEngine 12800 and 12800E V200R003C00

This document describes the configurations of VXLAN.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Application of VRRP over VXLAN in Inter-DC Master/Backup Gateway Scenarios Where a VLXAN Network Connects to a VLAN Network

Application of VRRP over VXLAN in Inter-DC Master/Backup Gateway Scenarios Where a VLXAN Network Connects to a VLAN Network

Service Description

To improve reliability of ever-growing services, some enterprises require DCs to be deployed in different regions. If one DC has a VLAN network deployed whereas the other DC has a VXLAN network deployed, VRRP over VXLAN can still be deployed to implement the master/backup gateway function for the DCs, so that if one DC fails to work, the backup DC takes over services. In addition, multi-active gateways can be deployed in the VXLAN DC to improve DC reliability.

Networking Description

On the network shown in Figure 6-8, two separate DCs are deployed. DC1 is a VXLAN network, and DC2 is a VLAN network. VXLAN tunnels are deployed between gateways and Device1 in DC1, between DC1 gateways and the DC2 VXLAN proxy, and between DC1 Device1 and the DC2 VXLAN proxy. A dynamic fabric service (DFS) group is deployed on gateways in DC1 to perform packet replication. It is required that the master/backup gateway status of the two DCs be determined using VRRP.

Figure 6-8 Inter-DC master and backup gateways on VXLAN and VLAN networks, respectively

Feature Deployment

To implement the inter-DC master/backup gateway function, perform the following operations:
  1. Establish a VXLAN tunnel between each L3GW and Device1 in DC1.

  2. Deploy a DFS group on the two L3GWs in DC1 for packet replication, allowing active-active gateway implementation.

  3. Configure Layer 2 sub-interfaces on Device1 in DC1 for host traffic access.

  4. Establish VXLAN tunnels between the DC2 edge device VXLAN proxy and DC1 L3GWs and between the VXLAN proxy and DC1 Device1.

  5. Create VLANIF interfaces and configure VRRP on L3GWs in DC2.

  6. Configure a VLAN on Device2 for host traffic access.

NOTE:

The two L3GWs in DC1 must have the same VTEP address, virtual IP address, and VRRP priority; otherwise, the VRRP status on the gateways of the other DC will flap.

After the configurations are complete, VRRP master/backup negotiation and network traffic forwarding are performed as follows:
  • VRRP master/backup negotiation: After a VRRP Advertisement packet in DC1 arrives at the VXLAN proxy in DC2, the VXLAN proxy performs a VXLAN-to-VLAN conversion and broadcasts the Advertisement packet in the VLAN. The gateways in DC2 receive the packet and perform VRRP master/backup negotiation. If the VRRP priority in the packet is higher than the VRRP priority of the gateways in DC2, the gateways in DC2 switch their VRRP status to backup.

  • Intra-subnet host traffic forwarding: Host traffic in the same network segment is forwarded at Layer 2 to the VLAN of DC2 through the VXLAN tunnel between Device1 and VXLAN proxy.

  • Inter-subnet host communication or access from hosts to a network outside the DC

    The process of Device1 accesses an extranet outside the DC is described as follows:

    • If the VRRP state of the gateway in DC1 is master, L3GW1 and L3GW2 are active-active master gateways, and L3GW3 and L3GW4 in DC2 are backup gateways. The traffic sent by the host to access the extranet reaches Device1 and then is forwarded to L3GW1 or L3GW2 over a VXLAN tunnel. L3GW1 or L3GW2 performs VXLAN decapsulation for the traffic, searches for a matching route based on the destination address in the decapsulated traffic, and forwards the traffic based on the next-hop address and outbound interface of the route to the extranet.

    • If the VRRP state of the gateway in DC2 is master, L3GW1 and L3GW2 in DC1 are backup gateways. The two gateways in DC2 are deployed in the traditional VLAN deployment mode. That is, one device serves as the master device, and the other device serves as the backup device. It is assumed that L3GW3 serves as the master device and L3GW4 serves as the backup device. The traffic sent by the host to access the extranet reaches Device1 and then is forwarded to the VLAN proxy over a VXLAN tunnel. The VLAN proxy performs VXLAN decapsulation for the traffic and forwards the decapsulated traffic based on the MAC address in the traffic on the VLAN network of DC2. After the traffic reaches L3GW3, L3GW3 searches for a matching route based on the destination address in the traffic, and forwards the traffic based on the next-hop address and outbound interface of the route to the extranet.

Translation
Download
Updated: 2019-05-05

Document ID: EDOC1100004207

Views: 25571

Downloads: 65

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next