评分并提供意见反馈 :
华为采用机器翻译与人工审校相结合的方式将此文档翻译成不同语言,希望能帮助您更容易理解此文档的内容。 请注意:即使是最好的机器翻译,其准确度也不及专业翻译人员的水平。 华为对于翻译的准确性不承担任何责任,并建议您参考英文文档(已提供链接)。
配置VPLS与EVPN混合共存示例
本例介绍VPLS网络向EVPN网络演进的过程,该过程中会出现EVPN与VPLS混合共存的组网状态,且业务不会中断。
组网需求
如图12-60所示,该组网中已经部署了VPLS业务,现在用户希望在PE1和PE3上部署EVPN功能,即在PE1和PE3之间改为使用BGP EVPN承载业务。因此用户需要在PE1、PE3上配置EVPN实例并在PE1和PE3的广播域BD上绑定EVPN实例,然后在PE1和PE3之间建立BGP EVPN对等体关系。
配置注意事项
在配置过程中,需注意以下事项:
同一EVPN实例的Export VPN-Target列表与其它站点的Import VPN-Target列表有共同的VPN-Target,Import VPN-Target列表与其它站点的Export VPN-Target列表有共同的VPN-Target。
PE上配置的源地址建议为本地Loopback地址。
配置思路
采用如下的思路进行配置:
配置PE1、PE3上的BD模式EVPN实例和BD,并将BD绑定到相应的EVPN实例。
配置PE1、PE3上的源地址。
配置PE1与PE3间的BGP EVPN对等体关系。
操作步骤
- 网络中已经配置了EVC承载VPLS业务的功能,具体配置可以参考配置文件。
在PE1上执行display vsi name e1 verbose命令,可以看到名字为e1的VSI建立了两条分别到PE2和PE3的PW,VSI和PW的状态都为UP。
[~PE1] display vsi name e1 verbose***VSI Name : e1 Work Mode : bd-mode Administrator VSI : no Isolate Spoken : disable VSI Index : 2 PW Signaling : bgp Member Discovery Style : -- Bridge-domain Mode : enable PW MAC Learn Style : qualify Encapsulation Type : vlan MTU : 1500 Diffserv Mode : uniform Service Class : -- Color : -- DomainId : 255 Domain Name : Ignore AcState : disable P2P VSI : disable Create Time : 0 days, 0 hours, 50 minutes, 49 seconds VSI State : up Resource Status : -- BGP RD : 100:1 SiteID/Range/Offset : 1/10/0 Import vpn target : 1:1 Export vpn target : 1:1 Remote Label Block : 294928/8/0 294928/8/0 Local Label Block : 0/294928/8/0 Access Bridge-domain : Bridge-domain 10 Vac State : up Last Up Time : 2018/03/23 11:01:50 Total Up Time : 0 days, 0 hours, 37 minutes, 53 seconds **PW Information: *Peer Ip Address : 2.2.2.2 PW State : up Local VC Label : 294930 Remote VC Label : 294929 PW Type : label Tunnel ID : 0x0000000001004c4bc1 Broadcast Tunnel ID : -- Broad BackupTunnel ID : -- Ckey : 129 Nkey : 16777346 Main PW Token : 0x0 Slave PW Token : 0x0 Tnl Type : ldp OutInterface : -- Backup OutInterface : -- Stp Enable : 0 Mac Flapping : 0 PW Last Up Time : 2018/03/23 11:38:42 PW Total Up Time : 0 days, 0 hours, 1 minutes, 1 seconds *Peer Ip Address : 3.3.3.3 PW State : up Local VC Label : 294931 Remote VC Label : 294929 PW Type : label Tunnel ID : 0x0000000001004c4b42 Broadcast Tunnel ID : -- Broad BackupTunnel ID : -- Ckey : 130 Nkey : 16777347 Main PW Token : 0x0 Slave PW Token : 0x0 Tnl Type : ldp OutInterface : -- Backup OutInterface : -- Stp Enable : 0 Mac Flapping : 0 PW Last Up Time : 2018/03/23 11:39:10 PW Total Up Time : 0 days, 0 hours, 0 minutes, 33 seconds - 配置PE上的EVPN实例。
# 配置PE1。
[~PE1] evpn vpn-instance evrf1 bd-mode[*PE1-evpn-instance-evrf1] route-distinguisher 100:1[*PE1-evpn-instance-evrf1] vpn-target 1:1[*PE1-evpn-instance-evrf1] quit[*PE1] bridge-domain 10[*PE1-bd10] evpn binding vpn-instance evrf1[*PE1-bd10] quit[*PE1] commit# 配置PE3。
[~PE3] evpn vpn-instance evrf1 bd-mode[*PE3-evpn-instance-evrf1] route-distinguisher 100:1[*PE3-evpn-instance-evrf1] vpn-target 1:1[*PE3-evpn-instance-evrf1] quit[*PE3] bridge-domain 10[*PE3-bd10] evpn binding vpn-instance evrf1[*PE3-bd10] quit[*PE3] commit - 配置PE上的源地址。
# 配置PE1。
[~PE1] evpn source-address 1.1.1.1[*PE1] commit# 配置PE3。
[~PE3] evpn source-address 3.3.3.3[*PE3] commit - 配PE间的BGP EVPN对等体关系。
# 配置PE1。
[~PE1] bgp 100[~PE1-bgp] l2vpn-family evpn[*PE1-bgp-af-evpn] peer 3.3.3.3 enable[*PE1-bgp-af-evpn] quit[*PE1-bgp] quit[*PE1] commit# 配置PE3。
[~PE3] bgp 100[~PE3-bgp] l2vpn-family evpn[*PE3-bgp-af-evpn] peer 1.1.1.1 enable[*PE3-bgp-af-evpn] quit[*PE3-bgp] quit[*PE3] commit - 检查配置结果。
配置完成后,在PE1上执行display bgp evpn peer命令,可以看到PE1与PE3间BGP对等体关系已建立,并达到Established状态。
[~PE1] display bgp evpn peerBGP local router ID : 10.1.1.1 Local AS number : 100 Total number of peers : 1 Peers in established state : 1 Peer V AS MsgRcvd MsgSent OutQ Up/Down State PrefRcv 3.3.3.3 4 100 7 9 0 00:00:07 Established 1
在PE1上执行display bgp evpn all routing-table命令,可以看到PE3上收到的集成多播路由(Inclusive Multicast Route)。
[~PE1] display bgp evpn all routing-tableLocal AS number : 100 BGP Local router ID is 10.1.1.1 Status codes: * - valid, > - best, d - damped, x - best external, a - add path, h - history, i - internal, s - suppressed, S - Stale Origin : i - IGP, e - EGP, ? - incomplete EVPN address family: Number of Inclusive Multicast Routes: 2 Route Distinguisher: 100:1 Network(EthTagId/IpAddrLen/OriginalIp) NextHop *> 0:32:1.1.1.1 127.0.0.1 *>i 0:32:3.3.3.3 3.3.3.3 m EVPN-Instance evrf1: Number of Inclusive Multicast Routes: 2 Network(EthTagId/IpAddrLen/OriginalIp) NextHop *> 0:32:1.1.1.1 127.0.0.1 *>i 0:32:3.3.3.3 3.3.3.3在PE1上执行display alarm active root verbose命令,可以看到PE1上产生的VPLS VC状态由UP变为Down时触发的告警信息。其中表示告警原因的参数HWL2VpnStateChangeReason的值是98,表示EVPN连接成功导致VPLS VC变Down。
[~PE1] display alarm active root verboseSequence : 46 AlarmId : 0xD4D0001 AlarmName : hwVplsVcDown AlarmType : communication Severity : Major State : active RootKindFlag: Independent StartTime : 2018-03-26 02:42:23 Description : The status of the VPLS VC turned DOWN. (VsiName=e1, PwId=3, RemoteIp=3.3.3.3, PwType=1, HWL2VpnStateChangeReason=98, SysUpTime=23691243, TunnelPolicyName=-)
在PE1设备上执行display vsi name e1 verbose命令,可以看到仅剩下与PE2的PW,且处于Up状态。
[~PE1] display vsi name e1 verbose***VSI Name : e1 Work Mode : bd-mode Administrator VSI : no Isolate Spoken : disable VSI Index : 2 PW Signaling : bgp Member Discovery Style : -- Bridge-domain Mode : enable PW MAC Learn Style : qualify Encapsulation Type : vlan MTU : 1500 Diffserv Mode : uniform Service Class : -- Color : -- DomainId : 255 Domain Name : Ignore AcState : disable P2P VSI : disable Create Time : 0 days, 1 hours, 0 minutes, 52 seconds VSI State : up Resource Status : -- BGP RD : 100:1 SiteID/Range/Offset : 1/10/0 Import vpn target : 1:1 Export vpn target : 1:1 Remote Label Block : 294928/8/0 294928/8/0 Local Label Block : 0/294928/8/0 Access Bridge-domain : Bridge-domain 10 Vac State : up Last Up Time : 2018/03/23 11:01:50 Total Up Time : 0 days, 0 hours, 47 minutes, 56 seconds **PW Information: *Peer Ip Address : 2.2.2.2 PW State : up Local VC Label : 294930 Remote VC Label : 294929 PW Type : label Tunnel ID : 0x0000000001004c4bc1 Broadcast Tunnel ID : -- Broad BackupTunnel ID : -- Ckey : 129 Nkey : 16777346 Main PW Token : 0x0 Slave PW Token : 0x0 Tnl Type : ldp OutInterface : -- Backup OutInterface : -- Stp Enable : 0 Mac Flapping : 0 PW Last Up Time : 2018/03/23 11:38:42 PW Total Up Time : 0 days, 0 hours, 11 minutes, 4 seconds
配置文件
PE1的配置文件
# sysname PE1 # evpn vpn-instance evrf1 bd-mode route-distinguisher 100:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity # mpls lsr-id 1.1.1.1 # mpls # mpls l2vpn # vsi e1 bd-mode pwsignal bgp route-distinguisher 100:1 vpn-target 1:1 import-extcommunity vpn-target 1:1 export-extcommunity site 1 range 10 default-offset 0 # bridge-domain 10 l2 binding vsi e1 evpn binding vpn-instance evrf1 # mpls ldp # interface GigabitEthernet1/0/0 undo shutdown # interface GigabitEthernet1/0/0.1 mode l2 encapsulation dot1q vid 10 bridge-domain 10 # interface GigabitEthernet2/0/0 undo shutdown ip address 10.1.1.1 255.255.255.0 mpls mpls ldp # interface GigabitEthernet3/0/0 undo shutdown ip address 10.2.1.2 255.255.255.0 mpls mpls ldp # interface LoopBack0 ip address 1.1.1.1 255.255.255.255 # bgp 100 peer 2.2.2.2 as-number 100 peer 2.2.2.2 connect-interface LoopBack0 peer 3.3.3.3 as-number 100 peer 3.3.3.3 connect-interface LoopBack0 # ipv4-family unicast undo synchronization peer 2.2.2.2 enable peer 3.3.3.3 enable # l2vpn-ad-family policy vpn-target signaling vpls peer 2.2.2.2 enable peer 3.3.3.3 enable # l2vpn-family evpn undo policy vpn-target peer 3.3.3.3 enable # ospf 1 area 0.0.0.0 network 1.1.1.1 0.0.0.0 network 10.1.1.0 0.0.0.255 network 10.2.1.0 0.0.0.255 # evpn source-address 1.1.1.1 # return
PE2的配置文件
# sysname PE2 # mpls lsr-id 2.2.2.2 # mpls # mpls l2vpn # vsi e1 bd-mode pwsignal bgp route-distinguisher 100:1 vpn-target 1:1 import-extcommunity vpn-target 1:1 export-extcommunity site 2 range 10 default-offset 0 # bridge-domain 10 l2 binding vsi e1 # mpls ldp # interface GigabitEthernet1/0/0 undo shutdown # interface GigabitEthernet1/0/0.1 mode l2 encapsulation dot1q vid 10 rewrite pop single bridge-domain 10 # interface GigabitEthernet2/0/0 undo shutdown ip address 10.2.1.1 255.255.255.0 mpls mpls ldp # interface GigabitEthernet3/0/0 undo shutdown ip address 10.3.1.1 255.255.255.0 mpls mpls ldp # interface LoopBack0 ip address 2.2.2.2 255.255.255.255 # bgp 100 peer 1.1.1.1 as-number 100 peer 1.1.1.1 connect-interface LoopBack0 peer 3.3.3.3 as-number 100 peer 3.3.3.3 connect-interface LoopBack0 # ipv4-family unicast undo synchronization peer 1.1.1.1 enable peer 3.3.3.3 enable # l2vpn-ad-family policy vpn-target signaling vpls peer 1.1.1.1 enable peer 3.3.3.3 enable # ospf 1 area 0.0.0.0 network 2.2.2.2 0.0.0.0 network 10.2.1.0 0.0.0.255 network 10.3.1.0 0.0.0.255 # return
PE3的配置文件
# sysname PE3 # evpn vpn-instance evrf1 bd-mode route-distinguisher 100:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity # mpls lsr-id 3.3.3.3 # mpls # mpls l2vpn # vsi e1 bd-mode pwsignal bgp route-distinguisher 100:1 vpn-target 1:1 import-extcommunity vpn-target 1:1 export-extcommunity site 3 range 10 default-offset 0 # bridge-domain 10 l2 binding vsi e1 evpn binding vpn-instance evrf1 # mpls ldp # interface GigabitEthernet1/0/0 undo shutdown ip address 10.1.1.2 255.255.255.0 mpls mpls ldp # interface GigabitEthernet2/0/0 undo shutdown ip address 10.3.1.2 255.255.255.0 mpls mpls ldp # interface GigabitEthernet3/0/0 undo shutdown # interface GigabitEthernet3/0/0.1 mode l2 encapsulation dot1q vid 10 rewrite pop single bridge-domain 10 # interface LoopBack0 ip address 3.3.3.3 255.255.255.255 # bgp 100 peer 1.1.1.1 as-number 100 peer 1.1.1.1 connect-interface LoopBack0 peer 2.2.2.2 as-number 100 peer 2.2.2.2 connect-interface LoopBack0 # ipv4-family unicast undo synchronization peer 1.1.1.1 enable peer 2.2.2.2 enable # l2vpn-ad-family policy vpn-target signaling vpls peer 1.1.1.1 enable peer 2.2.2.2 enable # l2vpn-family evpn undo policy vpn-target peer 1.1.1.1 enable # ospf 1 area 0.0.0.0 network 3.3.3.3 0.0.0.0 network 10.1.1.0 0.0.0.255 network 10.3.1.0 0.0.0.255 # evpn source-address 3.3.3.3 # return
CE1的配置文件
# sysname CE1 # interface GigabitEthernet1/0/0 portswitch undo shutdown port link-type trunk port trunk allow-pass vlan 10 # returnCE2的配置文件
# sysname CE2 # interface GigabitEthernet1/0/0 portswitch undo shutdown port link-type trunk port trunk allow-pass vlan 10 # returnCE3的配置文件
# sysname CE3 # interface GigabitEthernet1/0/0 portswitch undo shutdown port link-type trunk port trunk allow-pass vlan 10 # return
