EVPN集中式三层网关------跨子网包转发spine配置接口配置sudoiplinkaddvbdif10typebridgesudoiplinkaddvbdif20typebridgesudoiplinksetvbdif10upsudoip链接设置vbdif20upsudoip链接添加vxlan20类型vxlanid20本地192.168.59.130dstport4789nolearningsudoip链接添加vxlan10类型vxlanid10本地192.168.59.130dstport4789nolearningsudoip链接设置vxlan10upxdo链接设置vxlan10upxlanip20vxlan20mastervbdif20sudoiplinksetvxlan10mastervbdif10sudoipaddressadd2.2.2.254/24devvbdif10sudoipaddressadd2.2.3.254/24devvbdif20#开启转发ubuntu@ubuntu:~$sudo-i[sudo]pass:wordroot@ubuntu:~#root@ubuntu:~#root@ubuntu:~#echo1>/proc/sys/net/ipv4/ip_forwardroot@ubuntu:~#exitbgpevpn配置路由器bgp7677bgprouter-id192.168.59.130bgpbestpathas-路径多路径放松邻居结构对等组邻居结构远程作为外部邻居192.168.59.128对等组结构邻居192.168.59.129同行布料!address-familyl2vpnevpnneighborfabricactivateadvertise-all-vniadvertise-gwexit-address-family!address-familyl2vpnevpn:这条bgp路由支持地址协议l2vpnevpnneighborfabricactivate:表示地址协议激活,配置好后命令,设备将接收并发布evpn路由。advertise-all-vni:表示向邻居通告本地所有vni。advertise-default-gw:表示本地vni需要做三层网关。此命令必须在启用advertise-all-vni并在本地创建vxlan隧道后配置。否则会出现如下错误信息:ThiscommandisonlysupportedundertheEVPNVRFleaf1andhost1configurationinterfaceconfigurationsudoipnetnsaddhost1sudoiplinkaddveth1typevethpeernameeth0netnshost1sudoipnetnsexechost1iplinksetloupsudoipnetnsexechost1iplinkseteth0upsudoipnetnsexechost1ipaddradd2.2.2/24deveth0sudoipnetnsexechost1iprouteadddefaultvia2.2.2.254deveth0sudoiplinkaddbr10typebridgesudoiplinkaddvxlan10输入vxlanid10local192.168.59.128sudstport4789vlearningsetdobrx1link0upsudoiplinksetveth1upsudoiplinksetveth1masterbr10sudoiplinksetvxlan10masterbr10bgpevpn配置路由器bgp7675bgprouter-id192.168bgprouter-id192.168bestpathas-pathmultipath-relaxneighborfabricpeer-groupneighborfabric远程作为外部邻居192.168.59.130peer-groupfabric!地址族l2vpnevpn邻居fabricactivateadvertise-all-vniexit-address-family!leaf2和host2配置接口配置sudoipnetnsaddhost2sudoiplinkaddveth1typevethpeernameeth0netnshost2sudoipnetnsexechost2iplinksetloupsudoipnetnsexechost2iplink设置eth0upsudoipnetnsexechost2ipaddradd2.2.3.2/24deveth0sudoipnetnsexechost2iprouteadddefaultvia2.2.3.254deveth0sudoiplinkaddbr20typebridgesudoiplinkaddvxlan20typevxlanid20local192.168.59.129dstport4789nolearningsudoiplinksetbr20upsudoiplinksetvxlan20upsudoiplinksetveth1upsudoiplinksetveth1masterbr20sudoiplinksetvxlan20masterbr20bgpevpn配置路由器bgp7676bgprouter-id192.168.59.129bgpmultipathbestpathas--relaxneighborfabricpeer-groupneighborfabricremote-作为外部邻居192.168.59.130peer-groupfabric!address-familyl2vpnevpnneighborfabricactivateadvertise-all-vniexit-address-family!查看bgp信息spine查看邻居信息ubuntu#showbgpneighborsBGPneighboris192.168.59.128,remoteAS7675,localAS7677,externallinkHostname:bgpd对等组结构的成员,用于会话参数BGP版本4,远程路由器ID192.168.59.128,本地路由器ID192.168.59.130BGP状态=Established,upfor00:15:28Lastread00:00:28,Lastwrite00:00:28Holdtimeis180,keepaliveintervalis60secondsNeighborcapabilities:4ByteAS:advertisedandreceivedAddPath:IPv4单播:RX发布的IPv4单播和接收的L2VPNEVPN:RX发布的L2VPNEVPN和接收的路由刷新:发布的和接收的(旧的和新的)地址族IPv4单播:发布的和接收的地址族L2VPNEVPN:发布的和接收的主机名能力:发布(名称:bgpd,域名:n/a)收到(名称:bgpd,域名:n/a)平滑重启能力:已公布和接收远程重启计时器为120秒对等地址系列:无优雅重启信息:RIB发送结束:IPv4单播、L2VPNEVPN接收到RIB结束:IPv4单播、L2VPNEVPN消息统计:Inq深度为0Outq深度为0已发送Rcvd打开:22通知:02更新:1414Keepalives:1717路由刷新:00能力:00总计:3335广告运行之间的最短时间为0秒对于地址系列:IPv4单播结构对等组成员更新组9,子组10数据包队列长度0社区属性发送到这个邻居(全部)0接受前缀地址族:L2VPNEVPN结构对等组成员更新组10,子组11数据包队列长度0NEXT_HOP传播到这个邻居不变社区属性发送到这个邻居(所有)广告ise-all-vni2接受的前缀连接建立2;dropped1Lastreset00:15:30,duetoNOTIFICATIONreceived(Cease/OtherConfigurationChange)本地主机:192.168.59.130,本地端口:42668外国主机:192.168.59.128,外国端口:179Nexthop:192.168.59.130Nexthopglobal:fe80::30a7:5600:4add:b313Nexthop本地:fe80::30a7:5600:4add:b313BGP连接:共享网络BGP连接重试计时器(秒):120读取线程:写入线程:onBGP邻居为192.168.59.129,远程AS7676,本地AS7677,外部链接主机名:bgpd会话参数BGP版本4的对等组结构成员,远程路由器ID192.168.59.129,本地路由器ID192.168.59.130BGP状态=已建立,等待00:11:21最后读取00:00:21,最后写入00:00:21保持时间为180,保活间隔为60秒邻居功能:4字节AS:通告和接收AddPath:IPv4单播:RX通告IPv4单播并接收L2VPNEVPN:RX通告L2VPNEVPN并接收路由刷新:通告和接收(旧和新)地址族IPv4单播:通告和接收地址族L2VPNEVPN:通告和接收主机名能力:通告(名称:bgpd,域名:n/a)已接收(名称:bgpd,域名:n/a)平滑重启能力:通告和接收远程重启计时器为120秒对等地址族:无平滑重启信息:RIB结束发送:IPv4单播,L2VPNEVPN结束-RIB收到:IPv4单播,L2VPNEVPN消息统计:Inq深度为0Outq深度为0发送Rcvd打开:22通知:02更新:1414保持活动:1313路由刷新:00能力:00总计:29最低31广告运行之间的时间为0秒对于地址系列:IPv4单播结构对等组成员更新组9,子组10数据包队列长度0社区属性发送到此邻居(全部)0接受的前缀对于地址系列:L2VPNEVPN结构对等组member更新组10,子组11数据包队列长度0NEXT_HOP不变地传播到该邻居Community属性发送到该邻居(全部)advertise-all-vni3acceptedprefixesConnectionsestablished2;dropped1Lastreset00:11:23,duetoNOTIFICATIONreceived(Cease/OtherConfigurationChange)本地主机:192.168.59.130,本地端口:48016外国主机:192.168.59.129,外国端口:179Nexthop:192.168.59.130Nexthopglobal:fe80::30a7:5600:4add:b313Nexthop本地:fe80::30a7:5600:4add:b313BGP连接:共享网络BGP连接重试计时器(秒):120读取线程:写入线程:onubuntu#查看转发消息ubuntu#showbgpl2vpnevpnBGP表版本是2,本地路由器ID是192.168.59.130状态码:ssuppressed,ddamped,hhistory,*valid,>best,i-internalOrigincodes:i-IGP,e-EGP,?-不完整的网络下一跳度量LocPrf权重路径路由区分器:ip192.168.59.128:4*>[2]:[0]:[48]:[3a:58:62:d5:eb:53]192.168.59.12807675i*>[3]:[0]:[32]:[192.168.59.128]192.168.59.12807675iRoute标识符:ip192.168.59.129:4*>[2]:[0]:[48]:[9a:d2:01:d9:8b:0b]:[128]:[fe80::e8dc:91ff:fe85:fe05]192.168.59.12907676i*>[2]:[0]:[48]:[de:f6:18:47:27:a6]192.168.59.12907676i*>[3]:[0]:[32]:[192.168.59.129]192.168.59.12907676iRoute标识符:ip192.168.59.130:4*>[2]:[0]:[48]:[7e:3a:03:b3:84:d0]:[128]:[fe80::7c3a:3ff:feb3:84d0]192.168.59.13032768i*>[2]:[0]:[48]:[c2:2e:49:dc:a8:17]:[32]:[2.2.3.254]192.168。59.13032768i*>[3]:[0]:[32]:[192.168.59.130]192.168.59.13032768iRoute标识符:ip192.168.59.130:5*>[2]:[0]:[48]:[62:06:e0:e7:b7:a4]:[128]:[fe80::6006:e0ff:fee7:b7a4]192.168.59.13032768i*>[2]:[0]:[48]:[76:b9:aa:37:13:6a]:[32]:[2.2.2.254]192.168.59.13032768i*>[3]:[0]:[32]:[192.168.59.130]192.168.59.13032768iDisplayed总共11个prefixesubuntu中的11#
