用juniper VMX17.1R1.8实践PBB-EVPN
PBB-EVPN用于超大规模的MAC寻址(10万条目以上,用于减轻EVPN控制平面管理大规模mac时的负担)
SW2 SW3的配置与SW1的配置相同
ubuntu14.04-1 192.168.10.1 00:31:cc:fa:84:01
ubuntu14.04-2 192.168.10.2 00:31:cc:55:cb:01
ubuntu14.04-3 192.168.10.3 00:31:cc:62:99:01
ubuntu14.04-4 192.168.10.4 00:31:cc:85:d0:01
ubuntu14.04-5 192.168.10.5 00:31:cc:d8:6e:01
ubuntu14.04-6 192.168.10.6 00:31:cc:f2:2f:01
三台MX PE路由器需要开启enhanced-ip模式
root@PE1> show configuration | display set
set version 17.1R1.8
set system host-name PE1
set system root-authentication encrypted-password "$6$9zE1EkvG$F2aC5EyiX/QzcUykYqha69I8SNz96B/C4LGyUJ/RWOr5mye9.U4DSSkCjwJlU21aVLbxo6HBSD9X.qhniR6UB/"
set system services ssh protocol-version v2
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set chassis network-services enhanced-ip
set interfaces ge-0/0/0 flexible-vlan-tagging
set interfaces ge-0/0/0 encapsulation flexible-ethernet-services
set interfaces ge-0/0/0 unit 100 encapsulation vlan-bridge
set interfaces ge-0/0/0 unit 100 vlan-id 100
set interfaces ge-0/0/8 unit 0 family inet address 10.0.13.1/24
set interfaces ge-0/0/8 unit 0 family mpls
set interfaces ge-0/0/9 unit 0 family inet address 10.0.12.1/24
set interfaces ge-0/0/9 unit 0 family mpls
set interfaces cbp0 unit 1000 family bridge interface-mode trunk
set interfaces cbp0 unit 1000 family bridge bridge-domain-type bvlan
set interfaces cbp0 unit 1000 family bridge isid-list all
set interfaces fxp0 unit 0 family inet address 10.8.17.106/24
set interfaces lo0 unit 0 family inet address 1.1.1.1/32
set interfaces pip0 unit 1000 family bridge interface-mode trunk
set interfaces pip0 unit 1000 family bridge bridge-domain-type svlan
set interfaces pip0 unit 1000 family bridge isid-list all-service-groups
set routing-options static route 10.8.0.0/16 next-hop 10.8.17.254
set routing-options router-id 1.1.1.1
set routing-options autonomous-system 65000
set protocols mpls interface ge-0/0/9.0
set protocols mpls interface ge-0/0/8.0
set protocols bgp group mesh type internal
set protocols bgp group mesh local-address 1.1.1.1
set protocols bgp group mesh family evpn signaling
set protocols bgp group mesh neighbor 2.2.2.2
set protocols bgp group mesh neighbor 3.3.3.3
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface ge-0/0/9.0
set protocols ospf area 0.0.0.0 interface ge-0/0/8.0
set protocols ldp interface ge-0/0/8.0
set protocols ldp interface ge-0/0/9.0
set routing-instances PBB-EVPN-B-COMP instance-type virtual-switch
set routing-instances PBB-EVPN-B-COMP interface cbp0.1000
set routing-instances PBB-EVPN-B-COMP route-distinguisher 1.1.1.1:100
set routing-instances PBB-EVPN-B-COMP vrf-target target:100:100
set routing-instances PBB-EVPN-B-COMP protocols evpn control-word
set routing-instances PBB-EVPN-B-COMP protocols evpn pbb-evpn-core
set routing-instances PBB-EVPN-B-COMP protocols evpn extended-isid-list 100100
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 vlan-id 999
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 isid-list 100100
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 vlan-id-scope-local
set routing-instances PBB-EVPN-I-COMP instance-type virtual-switch
set routing-instances PBB-EVPN-I-COMP interface pip0.1000
set routing-instances PBB-EVPN-I-COMP bridge-domains BR-I-100 vlan-id 100
set routing-instances PBB-EVPN-I-COMP bridge-domains BR-I-100 interface ge-0/0/0.100
set routing-instances PBB-EVPN-I-COMP pbb-options peer-instance PBB-EVPN-B-COMP
set routing-instances PBB-EVPN-I-COMP service-groups CUST1 service-type elan
set routing-instances PBB-EVPN-I-COMP service-groups CUST1 pbb-service-options isid 100100 vlan-id-list 100
root@PE2> show configuration | display set
set version 17.1R1.8
set system host-name PE2
set system root-authentication encrypted-password "$6$BxZVN8w8$1doNHsXrG1ao8eAE9mvD8ovgAQsVej4VDjBrt46Ys1/6XVSe5X5tMcx9TLC67APHl56xPm8prIJUKbN.d4U/F0"
set system services ssh protocol-version v2
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set chassis network-services enhanced-ip
set interfaces ge-0/0/0 flexible-vlan-tagging
set interfaces ge-0/0/0 encapsulation flexible-ethernet-services
set interfaces ge-0/0/0 unit 100 encapsulation vlan-bridge
set interfaces ge-0/0/0 unit 100 vlan-id 100
set interfaces ge-0/0/7 unit 0 family inet address 10.0.23.2/24
set interfaces ge-0/0/7 unit 0 family mpls
set interfaces ge-0/0/9 unit 0 family inet address 10.0.12.2/24
set interfaces ge-0/0/9 unit 0 family mpls
set interfaces cbp0 unit 1000 family bridge interface-mode trunk
set interfaces cbp0 unit 1000 family bridge bridge-domain-type bvlan
set interfaces cbp0 unit 1000 family bridge isid-list all
set interfaces fxp0 unit 0 family inet address 10.8.17.107/24
set interfaces lo0 unit 0 family inet address 2.2.2.2/32
set interfaces pip0 unit 1000 family bridge interface-mode trunk
set interfaces pip0 unit 1000 family bridge bridge-domain-type svlan
set interfaces pip0 unit 1000 family bridge isid-list all-service-groups
set routing-options static route 10.8.0.0/16 next-hop 10.8.17.254
set routing-options router-id 2.2.2.2
set routing-options autonomous-system 65000
set protocols mpls interface ge-0/0/9.0
set protocols mpls interface ge-0/0/7.0
set protocols bgp group mesh type internal
set protocols bgp group mesh local-address 2.2.2.2
set protocols bgp group mesh family evpn signaling
set protocols bgp group mesh neighbor 1.1.1.1
set protocols bgp group mesh neighbor 3.3.3.3
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface ge-0/0/9.0
set protocols ospf area 0.0.0.0 interface ge-0/0/7.0
set protocols ldp interface ge-0/0/7.0
set protocols ldp interface ge-0/0/9.0
set routing-instances PBB-EVPN-B-COMP instance-type virtual-switch
set routing-instances PBB-EVPN-B-COMP interface cbp0.1000
set routing-instances PBB-EVPN-B-COMP route-distinguisher 2.2.2.2:100
set routing-instances PBB-EVPN-B-COMP vrf-target target:100:100
set routing-instances PBB-EVPN-B-COMP protocols evpn control-word
set routing-instances PBB-EVPN-B-COMP protocols evpn pbb-evpn-core
set routing-instances PBB-EVPN-B-COMP protocols evpn extended-isid-list 100100
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 vlan-id 999
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 isid-list 100100
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 vlan-id-scope-local
set routing-instances PBB-EVPN-I-COMP instance-type virtual-switch
set routing-instances PBB-EVPN-I-COMP interface pip0.1000
set routing-instances PBB-EVPN-I-COMP bridge-domains BR-I-100 vlan-id 100
set routing-instances PBB-EVPN-I-COMP bridge-domains BR-I-100 interface ge-0/0/0.100
set routing-instances PBB-EVPN-I-COMP pbb-options peer-instance PBB-EVPN-B-COMP
set routing-instances PBB-EVPN-I-COMP service-groups CUST1 service-type elan
set routing-instances PBB-EVPN-I-COMP service-groups CUST1 pbb-service-options isid 100100 vlan-id-list 100
root@PE3> show configuration | display set
set version 17.1R1.8
set system host-name PE3
set system root-authentication encrypted-password "$6$WAuusfiq$tGR4ZbqvX1Lm67cmGCdjbAq98jMhw3Keqg/MWImRc00X7SFLkpo7xRbM8MdlHEUPK7K1mIInzixF1rMHThlV8."
set system services ssh protocol-version v2
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set chassis network-services enhanced-ip
set interfaces ge-0/0/0 flexible-vlan-tagging
set interfaces ge-0/0/0 encapsulation flexible-ethernet-services
set interfaces ge-0/0/0 unit 100 encapsulation vlan-bridge
set interfaces ge-0/0/0 unit 100 vlan-id 100
set interfaces ge-0/0/7 unit 0 family inet address 10.0.23.3/24
set interfaces ge-0/0/7 unit 0 family mpls
set interfaces ge-0/0/8 unit 0 family inet address 10.0.13.3/24
set interfaces ge-0/0/8 unit 0 family mpls
set interfaces cbp0 unit 1000 family bridge interface-mode trunk
set interfaces cbp0 unit 1000 family bridge bridge-domain-type bvlan
set interfaces cbp0 unit 1000 family bridge isid-list all
set interfaces fxp0 unit 0 family inet address 10.8.17.108/24
set interfaces lo0 unit 0 family inet address 3.3.3.3/32
set interfaces pip0 unit 1000 family bridge interface-mode trunk
set interfaces pip0 unit 1000 family bridge bridge-domain-type svlan
set interfaces pip0 unit 1000 family bridge isid-list all-service-groups
set routing-options static route 10.8.0.0/16 next-hop 10.8.17.254
set routing-options router-id 3.3.3.3
set routing-options autonomous-system 65000
set protocols mpls interface ge-0/0/8.0
set protocols mpls interface ge-0/0/7.0
set protocols bgp group mesh type internal
set protocols bgp group mesh local-address 3.3.3.3
set protocols bgp group mesh family evpn signaling
set protocols bgp group mesh neighbor 2.2.2.2
set protocols bgp group mesh neighbor 1.1.1.1
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface ge-0/0/8.0
set protocols ospf area 0.0.0.0 interface ge-0/0/7.0
set protocols ldp interface ge-0/0/7.0
set protocols ldp interface ge-0/0/8.0
set routing-instances PBB-EVPN-B-COMP instance-type virtual-switch
set routing-instances PBB-EVPN-B-COMP interface cbp0.1000
set routing-instances PBB-EVPN-B-COMP route-distinguisher 3.3.3.3:100
set routing-instances PBB-EVPN-B-COMP vrf-target target:100:100
set routing-instances PBB-EVPN-B-COMP protocols evpn control-word
set routing-instances PBB-EVPN-B-COMP protocols evpn pbb-evpn-core
set routing-instances PBB-EVPN-B-COMP protocols evpn extended-isid-list 100100
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 vlan-id 999
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 isid-list 100100
set routing-instances PBB-EVPN-B-COMP bridge-domains BR-B-100100 vlan-id-scope-local
set routing-instances PBB-EVPN-I-COMP instance-type virtual-switch
set routing-instances PBB-EVPN-I-COMP interface pip0.1000
set routing-instances PBB-EVPN-I-COMP bridge-domains BR-I-100 vlan-id 100
set routing-instances PBB-EVPN-I-COMP bridge-domains BR-I-100 interface ge-0/0/0.100
set routing-instances PBB-EVPN-I-COMP pbb-options peer-instance PBB-EVPN-B-COMP
set routing-instances PBB-EVPN-I-COMP service-groups CUST1 service-type elan
set routing-instances PBB-EVPN-I-COMP service-groups CUST1 pbb-service-options isid 100100 vlan-id-list 100
MAC IN MAC实现了
验证
root@PE1> show bgp summary
Groups: 1 Peers: 2 Down peers: 0
Table Tot Paths Act Paths Suppressed History Damp State Pending
bgp.evpn.0
4 4 0 0 0 0
Peer AS InPkt OutPkt OutQ Flaps Last Up/Dwn State|#Active/Received/Accepted/Damped...
2.2.2.2 65000 65 64 0 1 27:19 Establ
bgp.evpn.0: 2/2/2/0
PBB-EVPN-B-COMP.evpn.0: 2/2/2/0
__default_evpn__.evpn.0: 0/0/0/0
3.3.3.3 65000 64 63 0 1 26:58 Establ
bgp.evpn.0: 2/2/2/0
PBB-EVPN-B-COMP.evpn.0: 2/2/2/0
__default_evpn__.evpn.0: 0/0/0/0
root@PE1> show route protocol bgp table PBB-EVPN-B-COMP.evpn.0
PBB-EVPN-B-COMP.evpn.0: 6 destinations, 6 routes (6 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
2:2.2.2.2:100::100100::00:05:86:db:82:b0/304 MAC/IP
*[BGP/170] 00:27:49, localpref 100, from 2.2.2.2
AS path: I, validation-state: unverified
> to 10.0.12.2 via ge-0/0/9.0
2:3.3.3.3:100::100100::00:05:86:e8:94:b0/304 MAC/IP
*[BGP/170] 00:27:29, localpref 100, from 3.3.3.3
AS path: I, validation-state: unverified
> to 10.0.13.3 via ge-0/0/8.0
3:2.2.2.2:100::100100::2.2.2.2/304 IM
*[BGP/170] 00:27:49, localpref 100, from 2.2.2.2
AS path: I, validation-state: unverified
> to 10.0.12.2 via ge-0/0/9.0
3:3.3.3.3:100::100100::3.3.3.3/304 IM
*[BGP/170] 00:27:29, localpref 100, from 3.3.3.3
AS path: I, validation-state: unverified
> to 10.0.13.3 via ge-0/0/8.0
root@PE2> show route protocol bgp table PBB-EVPN-B-COMP.evpn.0
PBB-EVPN-B-COMP.evpn.0: 6 destinations, 6 routes (6 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
2:1.1.1.1:100::100100::00:05:86:2d:80:b0/304 MAC/IP
*[BGP/170] 00:29:06, localpref 100, from 1.1.1.1
AS path: I, validation-state: unverified
> to 10.0.12.1 via ge-0/0/9.0
2:3.3.3.3:100::100100::00:05:86:e8:94:b0/304 MAC/IP
*[BGP/170] 00:28:46, localpref 100, from 3.3.3.3
AS path: I, validation-state: unverified
> to 10.0.23.3 via ge-0/0/7.0
3:1.1.1.1:100::100100::1.1.1.1/304 IM
*[BGP/170] 00:29:06, localpref 100, from 1.1.1.1
AS path: I, validation-state: unverified
> to 10.0.12.1 via ge-0/0/9.0
3:3.3.3.3:100::100100::3.3.3.3/304 IM
*[BGP/170] 00:28:46, localpref 100, from 3.3.3.3
AS path: I, validation-state: unverified
> to 10.0.23.3 via ge-0/0/7.0
root@PE3> show route protocol bgp table PBB-EVPN-B-COMP.evpn.0
PBB-EVPN-B-COMP.evpn.0: 6 destinations, 6 routes (6 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
2:1.1.1.1:100::100100::00:05:86:2d:80:b0/304 MAC/IP
*[BGP/170] 00:29:17, localpref 100, from 1.1.1.1
AS path: I, validation-state: unverified
> to 10.0.13.1 via ge-0/0/8.0
2:2.2.2.2:100::100100::00:05:86:db:82:b0/304 MAC/IP
*[BGP/170] 00:29:18, localpref 100, from 2.2.2.2
AS path: I, validation-state: unverified
> to 10.0.23.2 via ge-0/0/7.0
3:1.1.1.1:100::100100::1.1.1.1/304 IM
*[BGP/170] 00:29:17, localpref 100, from 1.1.1.1
AS path: I, validation-state: unverified
> to 10.0.13.1 via ge-0/0/8.0
3:2.2.2.2:100::100100::2.2.2.2/304 IM
*[BGP/170] 00:29:18, localpref 100, from 2.2.2.2
AS path: I, validation-state: unverified
> to 10.0.23.2 via ge-0/0/7.0
root@PE1> show bridge mac-table
MAC flags (S -static MAC, D -dynamic MAC, L -locally learned, C -Control MAC
O -OVSDB MAC, SE -Statistics enabled, NM -Non configured MAC, R -Remote PE MAC, P -Pinned MAC)
Routing instance : PBB-EVPN-B-COMP
Bridging domain : BR-B-100100, VLAN : 999
MAC MAC Logical NH MAC
address flags interface Index property
00:05:86:db:82:b0 DC 1048575
00:05:86:e8:94:b0 DC 1048578
01:1e:83:01:87:04 DC 1048576
MAC flags (S -static MAC, D -dynamic MAC,
SE -Statistics enabled, NM -Non configured MAC)
Routing instance : PBB-EVPN-I-COMP
Bridging domain : BR-I-100, ISID : 100100, VLAN : 100
MAC MAC Logical Remote
address flags interface BEB address
00:31:cc:55:cb:01 D ge-0/0/0.100
00:31:cc:62:99:01 D rbeb.32768 00:05:86:db:82:b0
00:31:cc:85:d0:01 D rbeb.32768 00:05:86:db:82:b0
00:31:cc:d8:6e:01 D rbeb.32769 00:05:86:e8:94:b0
00:31:cc:f2:2f:01 D rbeb.32769 00:05:86:e8:94:b0
00:31:cc:fa:84:01 D ge-0/0/0.100
REF:
https://tgregory.org/2016/11/15/evpn-vs-pbb-evpn-and-massive-scale/
