评分并提供意见反馈 :
华为采用机器翻译与人工审校相结合的方式将此文档翻译成不同语言,希望能帮助您更容易理解此文档的内容。 请注意:即使是最好的机器翻译,其准确度也不及专业翻译人员的水平。 华为对于翻译的准确性不承担任何责任,并建议您参考英文文档(已提供链接)。
配置Vlan Aware方式接入EVPN E-Lan over VXLAN隧道示例
在EVPN E-Lan over VXLAN的接入侧网络,通过配置VLAN AWARE可以实现基于物理口划分不同的VLAN,多个不同的VLAN共同接入同一个EVPN实例,但是VLAN间的广播域依然隔离。
组网需求
如图12-58所示,Site1和Site2内为二层流量,为了实现通过骨干网使不同Site间相互通信,可以在网络中配置EVPN功能,实现业务流量互访。当Site之间为同一子网时,各个PE设备上创建EVPN实例,存储EVPN路由。RR设备将配置成路由反射器,用于反射EVPN路由。各个PE间建立VXLAN隧道承载业务流量。为了使BUM流量以负载分担的形式通过PE1和PE2向CE1传输,因此需要在PE1和PE2上配置ETH-Trunk子接口连接Site1。配置PE对CE的接入方式为VLAN AWARE,实现基于物理接口划分不同的VLAN,多个不同的VLAN共同接入同一个EVPN实例,但是VLAN对应的广播域可以保持相互隔离。
配置注意事项
在配置过程中,需注意以下事项:
同一EVPN实例的Export VPN-Target列表与其它站点的Import VPN-Target列表有共同的VPN-Target,Import VPN-Target列表与其它站点的Export VPN-Target列表有共同的VPN-Target。
PE上配置的源地址建议为本地Loopback地址。
配置思路
采用如下的思路进行配置:
在骨干网上配置IGP实现各个PE以及RR设备之间的互通。
配置PE上的BD模式EVPN实例和BD,并将BD绑定到相应的EVPN实例,同时设置bd-tag。
配置PE上与CE相连的子接口。
配置各个PE与CE接口上的ESI。
配置RR与PE间的BGP EVPN对等体关系,并在RR上指定各个PE为其反射器的客户机。
配置CE与PE之间相互通信。
操作步骤
- 按图12-58配置PE和RR的各接口地址,具体配置请参见配置文件。
- 在骨干网上配置IGP实现各个PE以及RR设备之间的互通。本例中IGP为OSPF为例进行说明。
# 配置PE1。
[~PE1] ospf 1[*PE1-ospf-1] area 0[*PE1-ospf-1-area-0.0.0.0] network 10.1.1.0 0.0.0.255[*PE1-ospf-1-area-0.0.0.0] network 1.1.1.1 0.0.0.0[*PE1-ospf-1-area-0.0.0.0] commit[~PE1-ospf-1-area-0.0.0.0] quit[~PE1-ospf-1] quit# 配置PE2。
[~PE2] ospf 1[*PE2-ospf-1] area 0[*PE2-ospf-1-area-0.0.0.0] network 10.2.1.0 0.0.0.255[*PE2-ospf-1-area-0.0.0.0] network 2.2.2.2 0.0.0.0[*PE2-ospf-1-area-0.0.0.0] commit[~PE2-ospf-1-area-0.0.0.0] quit[~PE2-ospf-1] quit# 配置PE3。
[~PE3] ospf 1[*PE3-ospf-1] area 0[*PE3-ospf-1-area-0.0.0.0] network 10.3.1.0 0.0.0.255[*PE3-ospf-1-area-0.0.0.0] network 4.4.4.4 0.0.0.0[*PE3-ospf-1-area-0.0.0.0] commit[~PE3-ospf-1-area-0.0.0.0] quit[~PE3-ospf-1] quit# 配置RR。
[~RR] ospf 1[*RR-ospf-1] area 0[*RR-ospf-1-area-0.0.0.0] network 10.1.1.0 0.0.0.255[*RR-ospf-1-area-0.0.0.0] network 10.2.1.0 0.0.0.255[*RR-ospf-1-area-0.0.0.0] network 10.3.1.0 0.0.0.255[*RR-ospf-1-area-0.0.0.0] network 3.3.3.3 0.0.0.0[*RR-ospf-1-area-0.0.0.0] commit[~RR-ospf-1-area-0.0.0.0] quit[~RR-ospf-1] quit配置完成后,PE1、PE2、PE3和RR之间应能建立OSPF邻居关系,执行display ospf peer命令可以看到邻居状态为Full。执行display ip routing-table命令可以看到PE和RR之间学习到对方的Loopback接口的路由。
以PE1的显示为例:
[~PE1] display ospf peer(M) Indicates MADJ neighbor OSPF Process 1 with Router ID 10.1.1.1 Neighbors Area 0.0.0.0 interface 10.1.1.1 (GE2/0/0)'s neighbors Router ID: 10.1.1.2 Address: 10.1.1.2 State: Full Mode:Nbr is Master Priority: 1 DR: 10.1.1.1 BDR: 10.1.1.2 MTU: 0 Dead timer due in 32 sec Retrans timer interval: 5 Neighbor is up for 02h56m15s Authentication Sequence: [ 0 ][~PE1] display ip routing-tableRoute Flags: R - relay, D - download to fib, T - to vpn-instance, B - black hole route ------------------------------------------------------------------------------ Routing Table : _public_ Destinations : 13 Routes : 13 Destination/Mask Proto Pre Cost Flags NextHop Interface 1.1.1.1/32 Direct 0 0 D 127.0.0.1 LoopBack0 2.2.2.2/32 OSPF 10 2 D 10.1.1.2 GigabitEthernet2/0/0 3.3.3.3/32 OSPF 10 1 D 10.1.1.2 GigabitEthernet2/0/0 4.4.4.4/32 OSPF 10 2 D 10.1.1.2 GigabitEthernet2/0/0 10.1.1.0/24 Direct 0 0 D 10.1.1.1 GigabitEthernet2/0/0 10.1.1.1/32 Direct 0 0 D 127.0.0.1 GigabitEthernet2/0/0 10.1.1.255/32 Direct 0 0 D 127.0.0.1 GigabitEthernet2/0/0 10.2.1.0/24 OSPF 10 2 D 10.1.1.2 GigabitEthernet2/0/0 10.3.1.0/24 OSPF 10 2 D 10.1.1.2 GigabitEthernet2/0/0 127.0.0.0/8 Direct 0 0 D 127.0.0.1 InLoopBack0 127.0.0.1/32 Direct 0 0 D 127.0.0.1 InLoopBack0 127.255.255.255/32 Direct 0 0 D 127.0.0.1 InLoopBack0 255.255.255.255/32 Direct 0 0 D 127.0.0.1 InLoopBack0
- 配置PE上的EVPN实例。
# 配置PE1。
[~PE1] evpn vpn-instance evrf1 bd-mode[*PE1-evpn-instance-evrf1] route-distinguisher 100:1[*PE1-evpn-instance-evrf1] vpn-target 1:1[*PE1-evpn-instance-evrf1] quit[*PE1] bridge-domain 10[*PE1-bd10] vxlan vni 11 split-horizon-mode[*PE1-bd10] evpn binding vpn-instance evrf1 bd-tag 100[*PE1-bd10] quit[*PE1] bridge-domain 20[*PE1-bd20] vxlan vni 22 split-horizon-mode[*PE1-bd20] evpn binding vpn-instance evrf1 bd-tag 200[*PE1-bd20] quit[*PE1] evpn[*PE1-evpn] vlan-extend private enable[*PE1-evpn] vlan-extend redirect enable[*PE1-evpn] local-remote frr enable[*PE1-evpn] quit[*PE1] commit# 配置PE2。
[~PE2] evpn vpn-instance evrf1 bd-mode[*PE2-evpn-instance-evrf1] route-distinguisher 200:1[*PE2-evpn-instance-evrf1] vpn-target 1:1[*PE2-evpn-instance-evrf1] quit[*PE2] bridge-domain 10[*PE2-bd10] vxlan vni 11 split-horizon-mode[*PE2-bd10] evpn binding vpn-instance evrf1 bd-tag 100[*PE2-bd10] quit[*PE2] bridge-domain 20[*PE2-bd20] vxlan vni 22 split-horizon-mode[*PE2-bd20] evpn binding vpn-instance evrf1 bd-tag 200[*PE2-bd20] quit[*PE2] evpn[*PE2-evpn] vlan-extend private enable[*PE2-evpn] vlan-extend redirect enable[*PE2-evpn] local-remote frr enable[*PE2-evpn] quit[*PE2] commit# 配置PE3。
[~PE3] evpn vpn-instance evrf1 bd-mode[*PE3-evpn-instance-evrf1] route-distinguisher 400:1[*PE3-evpn-instance-evrf1] vpn-target 1:1[*PE3-evpn-instance-evrf1] quit[*PE3] bridge-domain 10[*PE3-bd10] vxlan vni 11 split-horizon-mode[*PE3-bd10] evpn binding vpn-instance evrf1 bd-tag 100[*PE3-bd10] quit[*PE3] bridge-domain 20[*PE3-bd20] vxlan vni 22 split-horizon-mode[*PE3-bd20] evpn binding vpn-instance evrf1 bd-tag 200[*PE3-bd20] quit[*PE3] commit - 配置PE与CE相连的Eth-Trunk子接口。
# 配置PE1。
[~PE1] e-trunk 1[*PE1-e-trunk-1] peer-address 2.2.2.2 source-address 1.1.1.1[*PE1-e-trunk-1] quit[*PE1] interface eth-trunk 10[*PE1-Eth-Trunk10] e-trunk 1[*PE1-Eth-Trunk10] e-trunk mode force-master[*PE1-Eth-Trunk10] quit[*PE1] interface eth-trunk 10.1 mode l2[*PE1-Eth-Trunk10.1] encapsulation dot1q vid 100[*PE1-Eth-Trunk10.1] bridge-domain 10[*PE1-Eth-Trunk10.1] quit[*PE1] interface eth-trunk 10.2 mode l2[*PE1-Eth-Trunk10.2] encapsulation dot1q vid 200[*PE1-Eth-Trunk10.2] bridge-domain 20[*PE1-Eth-Trunk10.2] quit[*PE1] interface gigabitethernet 1/0/0
[*PE1-GigabitEthernet1/0/0] eth-trunk 10
[*PE1-GigabitEthernet1/0/0] quit
[*PE1] commit# 配置PE2。
[~PE2] e-trunk 1[*PE2-e-trunk-1] peer-address 1.1.1.1 source-address 2.2.2.2[*PE2-e-trunk-1] quit[*PE2] interface eth-trunk 10[*PE2-Eth-Trunk10] e-trunk 1[*PE2-Eth-Trunk10] e-trunk mode force-master[*PE2-Eth-Trunk10] quit[*PE2] interface eth-trunk 10.1 mode l2[*PE2-Eth-Trunk10.1] encapsulation dot1q vid 100[*PE2-Eth-Trunk10.1] bridge-domain 10[*PE2-Eth-Trunk10.1] quit[*PE2] interface eth-trunk 10.2 mode l2[*PE2-Eth-Trunk10.2] encapsulation dot1q vid 200[*PE2-Eth-Trunk10.2] bridge-domain 20[*PE2-Eth-Trunk10.2] quit[*PE2] interface gigabitethernet 1/0/0
[*PE2-GigabitEthernet1/0/0] eth-trunk 10
[*PE2-GigabitEthernet1/0/0] quit
[*PE2] commit# 配置PE3。
[~PE3] interface eth-trunk 10[*PE3-Eth-Trunk10] quit[*PE3] interface eth-trunk 10.1 mode l2[*PE3-Eth-Trunk10.1] encapsulation dot1q vid 100[*PE3-Eth-Trunk10.1] bridge-domain 10[*PE3-Eth-Trunk10.1] quit[*PE3] interface eth-trunk 10.2 mode l2[*PE3-Eth-Trunk10.2] encapsulation dot1q vid 200[*PE3-Eth-Trunk10.2] bridge-domain 20[*PE3-Eth-Trunk10.2] quit[*PE3] interface gigabitethernet 1/0/0
[*PE3-GigabitEthernet1/0/0] eth-trunk 10
[*PE3-GigabitEthernet1/0/0] quit
[*PE3] commit - 配置PE上连接CE接口上的ESI。
# 配置PE1。
[~PE1] interface eth-trunk 10[*PE1-Eth-Trunk10] esi 0000.1111.2222.1111.1111[*PE1-Eth-Trunk10] quit[*PE1] commit# 配置PE2。
[~PE2] interface eth-trunk 10[*PE2-Eth-Trunk10] esi 0000.1111.2222.1111.1111[*PE2-Eth-Trunk10] quit[*PE2] commit# 配置PE3。
[~PE3] interface eth-trunk 10[*PE3-Eth-Trunk10] esi 0000.1111.3333.4444.5555[*PE3-Eth-Trunk10] quit[*PE3] commit - 配置RR与PE间的BGP EVPN对等体关系,并在RR上指定各个PE为其反射器的客户机
# 配置PE1。
[~PE1] bgp 100[*PE1-bgp] peer 3.3.3.3 as-number 100[*PE1-bgp] peer 3.3.3.3 connect-interface loopback 0[*PE1-bgp] l2vpn-family evpn[*PE1-bgp-af-evpn] peer 3.3.3.3 enable[*PE1-bgp-af-evpn] peer 3.3.3.3 advertise encap-type vxlan[*PE1-bgp-af-evpn] quit[*PE1-bgp] quit[*PE1] commit# 配置PE2。
[~PE2] bgp 100[*PE2-bgp] peer 3.3.3.3 as-number 100[*PE2-bgp] peer 3.3.3.3 connect-interface loopback 0[*PE2-bgp] l2vpn-family evpn[*PE2-bgp-af-evpn] peer 3.3.3.3 enable[*PE2-bgp-af-evpn] peer 3.3.3.3 advertise encap-type vxlan[*PE2-bgp-af-evpn] quit[*PE2-bgp] quit[*PE2] commit# 配置PE3。
[~PE3] bgp 100[*PE3-bgp] peer 3.3.3.3 as-number 100[*PE3-bgp] peer 3.3.3.3 connect-interface loopback 0[*PE3-bgp] l2vpn-family evpn[*PE3-bgp-af-evpn] peer 3.3.3.3 enable[*PE3-bgp-af-evpn] peer 3.3.3.3 advertise encap-type vxlan[*PE3-bgp-af-evpn] quit[*PE3-bgp] quit[*PE3] commit# 配置RR。
[~RR] bgp 100[*RR-bgp] peer 1.1.1.1 as-number 100[*RR-bgp] peer 1.1.1.1 connect-interface loopback 0[*RR-bgp] peer 2.2.2.2 as-number 100[*RR-bgp] peer 2.2.2.2 connect-interface loopback 0[*RR-bgp] peer 4.4.4.4 as-number 100[*RR-bgp] peer 4.4.4.4 connect-interface loopback 0[*RR-bgp] l2vpn-family evpn[*RR-bgp-af-evpn] peer 1.1.1.1 enable[*RR-bgp-af-evpn] peer 1.1.1.1 reflect-client[*RR-bgp-af-evpn] peer 1.1.1.1 advertise encap-type vxlan[*RR-bgp-af-evpn] peer 2.2.2.2 enable[*RR-bgp-af-evpn] peer 2.2.2.2 reflect-client[*RR-bgp-af-evpn] peer 2.2.2.2 advertise encap-type vxlan[*RR-bgp-af-evpn] peer 4.4.4.4 enable[*RR-bgp-af-evpn] peer 4.4.4.4 reflect-client[*RR-bgp-af-evpn] peer 4.4.4.4 advertise encap-type vxlan[*RR-bgp-af-evpn] quit[*RR-bgp] quit[*RR] commit配置完成后,在RR上执行display bgp evpn peer命令,可以看到RR与PE间BGP对等体关系已建立,并达到Established状态。
[~RR] display bgp evpn peerBGP local router ID : 10.1.1.2 Local AS number : 100 Total number of peers : 3 Peers in established state : 3 Peer V AS MsgRcvd MsgSent OutQ Up/Down State PrefRcv 1.1.1.1 4 100 231 253 0 03:07:26 Established 6 2.2.2.2 4 100 231 256 0 03:07:44 Established 6 4.4.4.4 4 100 232 254 0 03:07:54 Established 6
- 配置CE与PE之间相互通信。
# 配置CE1。
[~CE1] interface Eth-Trunk20[*CE1-Eth-Trunk20] quit[*CE1] bridge-domain 10[*CE1-bd10] quit[*CE1] bridge-domain 20[*CE1-bd20] quit[*CE1] interface Eth-Trunk20.1 mode l2[*CE1-Eth-Trunk20.1] encapsulation dot1q vid 100[*CE1-Eth-Trunk20.1] bridge-domain 10[*CE1-Eth-Trunk20.1] quit[*CE1] interface Eth-Trunk20.2 mode l2[*CE1-Eth-Trunk20.2] encapsulation dot1q vid 200[*CE1-Eth-Trunk20.2] bridge-domain 20[*CE1-Eth-Trunk20.2] quit[*CE1] interface gigabitethernet1/0/0
[*CE1-GigabitEthernet1/0/0] eth-trunk 20
[*CE1-GigabitEthernet1/0/0] quit
[*CE1] interface gigabitethernet2/0/0
[*CE1-GigabitEthernet2/0/0] eth-trunk 20
[*CE1-GigabitEthernet2/0/0] quit
[*CE1] commit# 配置CE2。
[~CE2] interface Eth-Trunk 10[*CE2-Eth-Trunk10] quit[*CE2] bridge-domain 10[*CE2-bd10] quit[*CE2] interface Eth-Trunk 10.1 mode l2[*CE2-Eth-Trunk10.1] encapsulation dot1q vid 100[*CE2-Eth-Trunk10.1] bridge-domain 10[*CE2-Eth-Trunk10.1] quit[*CE2] interface Eth-Trunk 10.2 mode l2[*CE2-Eth-Trunk10.2] encapsulation dot1q vid 200[*CE2-Eth-Trunk10.2] bridge-domain 20[*CE2-Eth-Trunk10.2] quit[*CE2] interface gigabitethernet1/0/0
[*CE2-GigabitEthernet1/0/0] eth-trunk 10
[*CE2-GigabitEthernet1/0/0] quit
[*CE2] commit - 在PE设备上使能头端复制功能
# 配置PE1。
[~PE1] interface Nve 1[*PE1-Nve1] source 1.1.1.1[*PE1-Nve1] vni 11 head-end peer-list protocol bgp[*PE1-Nve1] vni 22 head-end peer-list protocol bgp[*PE1-Nve1] quit[*PE1] commit# 配置PE2。
[~PE2] interface Nve 1[*PE2-Nve1] source 2.2.2.2[*PE2-Nve1] vni 11 head-end peer-list protocol bgp[*PE2-Nve1] vni 22 head-end peer-list protocol bgp[*PE2-Nve1] quit[*PE2] commit# 配置PE3。
[~PE3] interface Nve 1[*PE3-Nve1] source 4.4.4.4[*PE3-Nve1] vni 11 head-end peer-list protocol bgp[*PE3-Nve1] vni 22 head-end peer-list protocol bgp[*PE3-Nve1] quit[*PE3] commit - 检查配置结果。
在PE3设备上执行display bgp evpn all routing-table命令,可以看到远端PE发来的携带了EthTagId的EVPN路由。
[~PE3] display bgp evpn all routing-tableLocal AS number : 100 BGP Local router ID is 10.3.1.2 Status codes: * - valid, > - best, d - damped, x - best external, a - add path, h - history, i - internal, s - suppressed, S - Stale Origin : i - IGP, e - EGP, ? - incomplete EVPN address family: Number of A-D Routes: 9 Route Distinguisher: 100:1 Network(ESI/EthTagId) NextHop *>i 0000.1111.2222.1111.1111:100 1.1.1.1 *>i 0000.1111.2222.1111.1111:200 1.1.1.1 Route Distinguisher: 200:1 Network(ESI/EthTagId) NextHop *>i 0000.1111.2222.1111.1111:100 2.2.2.2 *>i 0000.1111.2222.1111.1111:200 2.2.2.2 Route Distinguisher: 1.1.1.1:0 Network(ESI/EthTagId) NextHop *>i 0000.1111.2222.1111.1111:4294967295 1.1.1.1 Route Distinguisher: 400:1 Network(ESI/EthTagId) NextHop *> 0000.1111.3333.4444.5555:100 0.0.0.0 *> 0000.1111.3333.4444.5555:200 0.0.0.0 Route Distinguisher: 2.2.2.2:0 Network(ESI/EthTagId) NextHop *>i 0000.1111.2222.1111.1111:4294967295 2.2.2.2 Route Distinguisher: 4.4.4.4:0 Network(ESI/EthTagId) NextHop *> 0000.1111.3333.4444.5555:4294967295 0.0.0.0 EVPN-Instance evrf1: Number of A-D Routes: 8 Network(ESI/EthTagId) NextHop *>i 0000.1111.2222.1111.1111:100 1.1.1.1 * i 2.2.2.2 *>i 0000.1111.2222.1111.1111:200 1.1.1.1 * i 2.2.2.2 *>i 0000.1111.2222.1111.1111:4294967295 1.1.1.1 * i 2.2.2.2 *> 0000.1111.3333.4444.5555:100 0.0.0.0 *> 0000.1111.3333.4444.5555:200 0.0.0.0 EVPN address family: Number of Inclusive Multicast Routes: 6 Route Distinguisher: 100:1 Network(EthTagId/IpAddrLen/OriginalIp) NextHop *>i 200:32:1.1.1.1 1.1.1.1 Route Distinguisher: 200:1 Network(EthTagId/IpAddrLen/OriginalIp) NextHop *>i 100:32:2.2.2.2 2.2.2.2 Route Distinguisher: 400:1 Network(EthTagId/IpAddrLen/OriginalIp) NextHop *> 100:32:4.4.4.4 0.0.0.0 *> 100:32:4.4.4.4 127.0.0.1 *> 200:32:4.4.4.4 0.0.0.0 *> 200:32:4.4.4.4 127.0.0.1 EVPN-Instance evrf1: Number of Inclusive Multicast Routes: 6 Network(EthTagId/IpAddrLen/OriginalIp) NextHop *>i 100:32:2.2.2.2 2.2.2.2 *> 100:32:4.4.4.4 0.0.0.0 *> 100:32:4.4.4.4 127.0.0.1 *>i 200:32:1.1.1.1 1.1.1.1 *> 200:32:4.4.4.4 0.0.0.0 *> 200:32:4.4.4.4 127.0.0.1 EVPN address family: Number of ES Routes: 3 Route Distinguisher: 1.1.1.1:0 Network(ESI) NextHop *>i 0000.1111.2222.1111.1111 1.1.1.1 Route Distinguisher: 2.2.2.2:0 Network(ESI) NextHop *>i 0000.1111.2222.1111.1111 2.2.2.2 Route Distinguisher: 4.4.4.4:0 Network(ESI) NextHop *> 0000.1111.3333.4444.5555 0.0.0.0 EVPN-Instance evrf1: Number of ES Routes: 1 Network(ESI) NextHop *> 0000.1111.3333.4444.5555 0.0.0.0
配置文件
PE1的配置文件
# sysname PE1 # evpn vlan-extend private enable vlan-extend redirect enable local-remote frr enable # evpn vpn-instance evrf1 bd-mode route-distinguisher 100:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity # bridge-domain 10 vxlan vni 11 split-horizon-mode evpn binding vpn-instance evrf1 bd-tag 100 # bridge-domain 20 vxlan vni 22 split-horizon-mode evpn binding vpn-instance evrf1 bd-tag 200 # e-trunk 1 peer-address 2.2.2.2 source-address 1.1.1.1 # interface Eth-Trunk10 e-trunk 1 e-trunk mode force-master esi 0000.1111.2222.1111.1111 # interface Eth-Trunk10.1 mode l2 encapsulation dot1q vid 100 rewrite pop single bridge-domain 10 # interface Eth-Trunk10.2 mode l2 encapsulation dot1q vid 200 rewrite pop single bridge-domain 20 # interface GigabitEthernet1/0/0 undo shutdown eth-trunk 10 # interface GigabitEthernet2/0/0 undo shutdown ip address 10.1.1.1 255.255.255.0 # interface LoopBack0 ip address 1.1.1.1 255.255.255.255 # interface Nve1 source 1.1.1.1 vni 11 head-end peer-list protocol bgp vni 22 head-end peer-list protocol bgp # bgp 100 peer 3.3.3.3 as-number 100 peer 3.3.3.3 connect-interface LoopBack0 # ipv4-family unicast undo synchronization peer 3.3.3.3 enable # l2vpn-family evpn undo policy vpn-target peer 3.3.3.3 enable peer 3.3.3.3 advertise encap-type vxlan # ospf 1 area 0.0.0.0 network 1.1.1.1 0.0.0.0 network 10.1.1.0 0.0.0.255 # return
PE2的配置文件
# sysname PE2 # evpn vlan-extend private enable vlan-extend redirect enable local-remote frr enable # evpn vpn-instance evrf1 bd-mode route-distinguisher 200:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity # bridge-domain 10 vxlan vni 11 split-horizon-mode evpn binding vpn-instance evrf1 bd-tag 100 # bridge-domain 20 vxlan vni 22 split-horizon-mode evpn binding vpn-instance evrf1 bd-tag 200 # e-trunk 1 peer-address 1.1.1.1 source-address 2.2.2.2 # interface Eth-Trunk10 e-trunk 1 e-trunk mode force-master esi 0000.1111.2222.1111.1111 # interface Eth-Trunk10.1 mode l2 encapsulation dot1q vid 100 rewrite pop single bridge-domain 10 # interface Eth-Trunk10.2 mode l2 encapsulation dot1q vid 200 rewrite pop single bridge-domain 20 # interface GigabitEthernet1/0/0 undo shutdown eth-trunk 10 # interface GigabitEthernet2/0/0 undo shutdown ip address 10.2.1.1 255.255.255.0 # interface LoopBack0 ip address 2.2.2.2 255.255.255.255 # interface Nve1 source 2.2.2.2 vni 11 head-end peer-list protocol bgp vni 22 head-end peer-list protocol bgp # bgp 100 peer 3.3.3.3 as-number 100 peer 3.3.3.3 connect-interface LoopBack0 # ipv4-family unicast undo synchronization peer 3.3.3.3 enable # l2vpn-family evpn undo policy vpn-target peer 3.3.3.3 enable peer 3.3.3.3 advertise encap-type vxlan # ospf 1 area 0.0.0.0 network 2.2.2.2 0.0.0.0 network 10.2.1.0 0.0.0.255 # return
PE3的配置文件
# sysname PE3 # evpn vpn-instance evrf1 bd-mode route-distinguisher 400:1 vpn-target 1:1 export-extcommunity vpn-target 1:1 import-extcommunity # bridge-domain 10 vxlan vni 11 split-horizon-mode evpn binding vpn-instance evrf1 bd-tag 100 # bridge-domain 20 vxlan vni 22 split-horizon-mode evpn binding vpn-instance evrf1 bd-tag 200 # interface Eth-Trunk10 esi 0000.1111.3333.4444.5555 # interface Eth-Trunk10.1 mode l2 encapsulation dot1q vid 100 rewrite pop single bridge-domain 10 # interface Eth-Trunk10.2 mode l2 encapsulation dot1q vid 200 rewrite pop single bridge-domain 20 # interface GigabitEthernet1/0/0 undo shutdown ip address 10.3.1.2 255.255.255.0 # interface GigabitEthernet2/0/0 undo shutdown eth-trunk 10 # interface LoopBack0 ip address 4.4.4.4 255.255.255.255 # interface Nve1 source 4.4.4.4 vni 11 head-end peer-list protocol bgp vni 22 head-end peer-list protocol bgp # bgp 100 peer 3.3.3.3 as-number 100 peer 3.3.3.3 connect-interface LoopBack0 # ipv4-family unicast undo synchronization peer 3.3.3.3 enable # l2vpn-family evpn undo policy vpn-target peer 3.3.3.3 enable peer 3.3.3.3 advertise encap-type vxlan # ospf 1 area 0.0.0.0 network 4.4.4.4 0.0.0.0 network 10.3.1.0 0.0.0.255 # return
RR的配置文件
# sysname RR # interface GigabitEthernet1/0/0 undo shutdown ip address 10.1.1.2 255.255.255.0 # interface GigabitEthernet2/0/0 undo shutdown ip address 10.2.1.2 255.255.255.0 # interface GigabitEthernet3/0/0 undo shutdown ip address 10.3.1.1 255.255.255.0 # interface LoopBack0 ip address 3.3.3.3 255.255.255.255 # bgp 100 peer 1.1.1.1 as-number 100 peer 1.1.1.1 connect-interface LoopBack0 peer 2.2.2.2 as-number 100 peer 2.2.2.2 connect-interface LoopBack0 peer 4.4.4.4 as-number 100 peer 4.4.4.4 connect-interface LoopBack0 # ipv4-family unicast undo synchronization peer 1.1.1.1 enable peer 2.2.2.2 enable peer 4.4.4.4 enable # l2vpn-family evpn undo policy vpn-target peer 1.1.1.1 enable peer 1.1.1.1 reflect-client peer 1.1.1.1 advertise encap-type vxlan peer 2.2.2.2 enable peer 2.2.2.2 reflect-client peer 2.2.2.2 advertise encap-type vxlan peer 4.4.4.4 enable peer 4.4.4.4 reflect-client peer 4.4.4.4 advertise encap-type vxlan # ospf 1 area 0.0.0.0 network 3.3.3.3 0.0.0.0 network 10.1.1.0 0.0.0.255 network 10.2.1.0 0.0.0.255 network 10.3.1.0 0.0.0.255 # return
CE1的配置文件
# sysname CE1 # bridge-domain 10 # bridge-domain 20 # interface Eth-Trunk20 # interface Eth-Trunk20.1 mode l2 encapsulation dot1q vid 100 bridge-domain 10 # interface Eth-Trunk20.2 mode l2 encapsulation dot1q vid 200 bridge-domain 20 # interface GigabitEthernet1/0/0 undo shutdown eth-trunk 20 # interface GigabitEthernet2/0/0 undo shutdown eth-trunk 20 # return
CE2的配置文件
# sysname CE2 # bridge-domain 10 # bridge-domain 20 # interface Eth-Trunk10 # interface Eth-Trunk10.1 mode l2 encapsulation dot1q vid 100 bridge-domain 10 # interface Eth-Trunk10.2 mode l2 encapsulation dot1q vid 200 bridge-domain 20 # interface GigabitEthernet1/0/0 undo shutdown eth-trunk 10 # return
