在此页面上
示例:EVPN-MPLS 与 Junos Fusion Enterprise 互连
此示例说明如何使用以太网 VPN (EVPN) 通过 MPLS 网络将 Junos Fusion Enterprise 扩展到地理位置分散的园区或企业网络。
Junos Fusion Enterprise 基于 Multichassis 链路聚合组 (MC-LAG) 基础架构,可为用作聚合设备的 EX9200 交换机提供冗余,从而支持 EVPN-MPLS 互通。
Junos Fusion Enterprise 中的聚合设备连接到 MPLS 网络中的提供商边缘 (PE) 设备。PE 设备可以是 MX 系列路由器,也可以是 EX9200 交换机。
此示例说明如何将 Junos Fusion Enterprise 中的聚合设备和 MPLS 网络中的 PE 设备配置为相互通。
要求
此示例使用以下硬件和软件组件:
三台 EX9200 交换机:
PE1 和 PE2,它们都充当 Junos Fusion Enterprise 中的聚合设备,以及 EVPN-MPLS 叠加网络中的 EVPN BGP 对等方。
PE3,在 EVPN-MPLS 叠加网络中充当 EVPN BGP 对等方。
EX9200 交换机运行的是 Junos OS 17.4R1 或更高版本的软件。
注意:
尽管 Junos Fusion Enterprise 包括三个卫星设备,但此示例重点介绍 PE1、PE2 和 PE3 的配置。有关配置卫星设备的详细信息,请参阅 配置或扩展 Junos Fusion Enterprise。
概述和拓扑
图 1 显示了具有双聚合设备 PE1 和 PE2 的 Junos Fusion Enterprise。聚合设备使用机箱间链路 (ICL) 连接,并使用机箱间控制协议 (ICCP) 相互通信。
图 1:EVPN-MPLS 与 Junos Fusion Enterprise
的互连
的互连
Junos Fusion Enterprise 还包括三个卫星设备。卫星设备 SD120 是与 PE1 具有单宿主连接的独立卫星设备。卫星设备 SD100 和 SD108 包含在名为 Cluster_100_108 的群集中。SD100 是唯一连接到聚合设备(在本例中为 PE1 和 PE2)的多宿主连接的集群成员。
图 1 中的拓扑还包括位于 MPLS 网络边缘的 PE3。PE3 充当 Junos Fusion Enterprise 网络与地理上分散的园区或企业网络之间的网关。PE1、PE2 和 PE3 运行 EVPN,这使得 Junos Fusion Enterprise 网络中的主机能够通过干预 MPLS 网络与园区或企业网络中的主机进行通信。
从 EVPN-MPLS 互通功能的角度来看,PE3 仅用作 EVPN BGP 对等方,Junos Fusion Enterprise 中的 PE1 和 PE2 具有双重角色:
Junos Fusion Enterprise 中的聚合设备。
EVPN-MPLS 网络中的 EVPN BGP 对等方。
由于具有双重角色,PE1 和 PE2 配置了 Junos Fusion Enterprise、EVPN、BGP 和 MPLS 属性。
表 1 概述了在 PE1、PE2 和 PE3 上配置的关键 Junos Fusion Enterprise 和 EVPN(BGP 和 MPLS)属性。
关键属性 |
PE1 |
PE2 |
PE3 |
|---|---|---|---|
Junos Fusion Enterprise Attributes |
|||
接口 |
ICL: ge-1/0/3 ICCP: ge-1/0/2 |
ICL: ge-3/1/9 ICCP: ge-3/1/7 |
不适用 |
EVPN-MPLS |
|||
接口 |
与 PE3 的连接:ge-1/1/3 与 PE2 的连接:ge-1/1/7 |
与 PE3 的连接:ge-3/1/5 与 PE1 的连接:ge-3/1/8 |
与 PE1 的连接:ge-0/3/5 与 PE2 的连接:ge-0/3/7 |
IP 地址 |
BGP 对等地址:10.25.0.1 |
BGP 对等方地址:10.25.0.2 |
BGP 对等方地址:10.25.0.3 |
自治系统 |
100 |
100 |
100 |
虚拟交换机路由实例 |
EVPN1 |
EVPN1 |
EVPN1 |
请注意以下有关 EVPN-MPLS 互通功能及其配置的信息:
您必须在 Junos Fusion Enterprise 的双宿主扩展端口上配置以太网分段标识符 (ESI)。ESI 使 EVPN 能够识别双宿主扩展端口。
唯一受支持的路由实例类型是虚拟交换机实例 (
set routing-instances name instance-type virtual-switch)。Junos Fusion Enterprise 仅支持一个虚拟交换机实例。
在 Junos Fusion Enterprise 的聚合设备上,必须在层次结构级别中包含
bgp-peer[edit routing-instances name protocols evpn mclag]配置语句。此配置语句允许 EVPN-MPLS 与聚合设备上的 Junos Fusion Enterprise 互通。不支持地址解析协议 (ARP) 抑制。
聚合设备(PE1 和 PE2)配置
要配置聚合设备 PE1 和 PE2,请执行以下任务。
注意:
本节重点介绍如何在 PE1 和 PE2 上启用 EVPN-MPLS。因此,在 PE1 和 PE2 上执行 Junos Fusion Enterprise 配置时无需使用配置同步功能。有关配置同步的信息,请参阅 了解配置同步。
- CLI 快速配置
- PE1:配置 Junos Fusion Enterprise
- PE1:配置 EVPN-MPLS
- PE2:配置 Junos Fusion Enterprise
- PE2:配置 EVPN-MPLS
CLI 快速配置
PE1:Junos Fusion Enterprise 配置
set interfaces ge-1/1/9 cascade-port set interfaces ge-1/1/5 cascade-port set chassis satellite-management fpc 120 cascade-ports ge-1/1/9 set chassis satellite-management cluster Cluster_100_108 cluster-id 2 set chassis satellite-management cluster Cluster_100_108 cascade-ports ge-1/1/5 set chassis satellite-management cluster Cluster_100_108 fpc 100 alias SD100 set chassis satellite-management cluster Cluster_100_108 fpc 100 system-id 88:e0:f3:1f:3d:50 set chassis satellite-management cluster Cluster_100_108 fpc 108 alias SD108 set chassis satellite-management cluster Cluster_100_108 fpc 108 system-id 88:e0:f3:1f:c8:d1 set chassis satellite-management cluster Cluster_100_108 fpc 100 member-id 1 set chassis satellite-management cluster Cluster_100_108 fpc 108 member-id 8 set chassis satellite-management upgrade-groups upgrade_120 satellite 120 set chassis satellite-management upgrade-groups upgrade_100 satellite 100 set chassis satellite-management redundancy-groups rg1 redundancy-group-id 2 set chassis satellite-management redundancy-groups chassis-id 1 set chassis satellite-management redundancy-groups rg1 peer-chassis-id 2 inter-chassis-link ge-1/0/3 set chassis satellite-management redundancy-groups rg1 cluster Cluster_100_108 set interfaces ge-1/0/2 description iccp-link set interfaces ge-1/0/2 unit 0 family inet address 10.20.20.1/24 set interfaces ge-1/0/3 description icl-link set interfaces ge-1/0/3 unit 0 family ethernet-switching interface-mode trunk set interfaces ge-1/0/3 unit 0 family ethernet-switching vlan members 100 set switch-options service-id 1
PE1:EVPN-MPLS 配置
set interfaces lo0 unit 0 family inet address 10.25.0.1/32 set interfaces ge-1/1/3 unit 0 family inet address 10.0.1.1/30 set interfaces ge-1/1/3 unit 0 family mpls set interfaces ge-1/1/7 unit 0 family inet address 10.0.3.1/30 set interfaces ge-1/1/7 unit 0 family mpls set interfaces ge-108/0/25 unit 0 esi 00:01:02:03:04:00:01:02:04:26 set interfaces ge-108/0/25 unit 0 esi all-active set interfaces ge-108/0/25 unit 0 family ethernet-switching vlan members v100 set interfaces ge-108/0/27 unit 0 esi 00:01:02:03:04:00:01:02:04:28 set interfaces ge-108/0/27 unit 0 esi all-active set interfaces ge-108/0/27 unit 0 family ethernet-switching vlan members v100 set routing-options router-id 10.25.0.1 set routing-options autonomous-system 100 set protocols mpls interface lo0.0 set protocols mpls interface ge-1/1/3.0 set protocols mpls interface ge-1/1/7.0 set protocols bgp local-address 10.25.0.1 set protocols bgp peer-as 100 set protocols bgp local-as 100 set protocols bgp group evpn-mes type internal set protocols bgp group evpn-mes family evpn signaling set protocols bgp group evpn-mes peer-as 100 set protocols bgp group evpn-mes neighbor 10.25.0.2 set protocols bgp group evpn-mes neighbor 10.25.0.3 set protocols ospf traffic-engineering set protocols ospf area 0.0.0.0 interface ge-1/1/3.0 set protocols ospf area 0.0.0.0 interface lo0.0 set protocols ospf area 0.0.0.0 interface fxp0.0 disable set protocols ospf area 0.0.0.0 interface ge-1/1/7.0 set protocols ldp interface lo0.0 set protocols ldp interface ge-1/1/3.0 set protocols ldp interface ge-1/1/7.0 set routing-instances evpn1 instance-type virtual-switch set routing-instances evpn1 interface ge-108/0/25.0 set routing-instances evpn1 interface ge-108/0/27.0 set routing-instances evpn1 interface ge-1/0/3.0 set routing-instances evpn1 route-distinguisher 10.25.0.1:1 set routing-instances evpn1 vrf-target target:100:1 set routing-instances evpn1 protocols evpn label-allocation per-instance set routing-instances evpn1 protocols evpn extended-vlan-list 100 set routing-instances evpn1 protocols evpn mclag bgp-peer 10.25.0.2 set routing-instances evpn1 switch-options service-id 2 set routing-instances evpn1 vlans v100 vlan-id 100
PE2:Junos Fusion Enterprise 配置
set interfaces ge-3/1/4 cascade-port set chassis satellite-management cluster Cluster_100_108 cluster-id 2 set chassis satellite-management cluster Cluster_100_108 cascade-ports ge-3/1/4 set chassis satellite-management cluster Cluster_100_108 fpc 100 alias SD100 set chassis satellite-management cluster Cluster_100_108 fpc 100 system-id 88:e0:f3:1f:3d:50 set chassis satellite-management cluster Cluster_100_108 fpc 108 alias SD108 set chassis satellite-management cluster Cluster_100_108 fpc 108 system-id 88:e0:f3:1f:c8:d1 set chassis satellite-management cluster Cluster_100_108 fpc 100 member-id 1 set chassis satellite-management cluster Cluster_100_108 fpc 108 member-id 8 set chassis satellite-management upgrade-groups upgrade_100 satellite 100 set chassis satellite-management redundancy-groups rg1 redundancy-group-id 2 set chassis satellite-management redundancy-groups chassis-id 2 set chassis satellite-management redundancy-groups rg1 peer-chassis-id 1 inter-chassis-link ge-3/1/9 set chassis satellite-management redundancy-groups rg1 cluster Cluster_100_108 set interfaces ge-3/1/7 description iccp-link set interfaces ge-3/1/7 unit 0 family inet address 10.20.20.2/24 set interfaces ge-3/1/9 description icl-link set interfaces ge-3/1/9 unit 0 family ethernet-switching interface-mode trunk set interfaces ge-3/1/9 unit 0 family ethernet-switching vlan members 100 set switch-options service-id 1
PE2:EVPN-MPLS 配置
set interfaces lo0 unit 0 family inet address 10.25.0.2/32 set interfaces ge-3/1/5 unit 0 family inet address 10.0.4.2/30 set interfaces ge-3/1/5 unit 0 family mpls set interfaces ge-3/1/8 unit 0 family inet address 10.0.3.2/30 set interfaces ge-3/1/8 unit 0 family mpls set interfaces irb unit 0 family inet address 10.5.5.1/24 virtual-gateway-address 10.5.5.5 set interfaces ge-108/0/25 unit 0 esi 00:01:02:03:04:00:01:02:04:26 set interfaces ge-108/0/25 unit 0 esi all-active set interfaces ge-108/0/25 unit 0 family ethernet-switching vlan members v100 set interfaces ge-108/0/27 unit 0 esi 00:01:02:03:04:00:01:02:04:28 set interfaces ge-108/0/27 unit 0 esi all-active set interfaces ge-108/0/27 unit 0 family ethernet-switching vlan members v100 set routing-options router-id 10.25.0.2 set routing-options autonomous-system 100 set protocols mpls interface lo0.0 set protocols mpls interface ge-3/1/5.0 set protocols mpls interface ge-3/1/8.0 set protocols bgp local-address 10.25.0.2 set protocols bgp peer-as 100 set protocols bgp local-as 100 set protocols bgp group evpn-mes type internal set protocols bgp group evpn-mes family evpn signaling set protocols bgp group evpn-mes peer-as 100 set protocols bgp group evpn-mes neighbor 10.25.0.1 set protocols bgp group evpn-mes neighbor 10.25.0.3 set protocols ospf traffic-engineering set protocols ospf area 0.0.0.0 interface ge-3/1/5.0 set protocols ospf area 0.0.0.0 interface lo0.0 set protocols ospf area 0.0.0.0 interface fxp0.0 disable set protocols ospf area 0.0.0.0 interface ge-3/1/8.0 set protocols ldp interface lo0.0 set protocols ldp interface ge-3/1/5.0 set protocols ldp interface ge-3/1/8.0 set routing-instances evpn1 instance-type virtual-switch set routing-instances evpn1 interface ge-108/0/25.0 set routing-instances evpn1 interface ge-108/0/27.0 set routing-instances evpn1 interface ge-3/1/9.0 set routing-instances evpn1 route-distinguisher 10.25.0.2:1 set routing-instances evpn1 vrf-target target:100:1 set routing-instances evpn1 protocols evpn label-allocation per-instance set routing-instances evpn1 protocols evpn extended-vlan-list 100 set routing-instances evpn1 protocols evpn mclag bgp-peer 10.25.0.1 set routing-instances evpn1 switch-options service-id 2 set routing-instances evpn1 vlans v100 vlan-id 100 set routing-instances evpn1 vlans v100 l3-interface irb.0
PE1:配置 Junos Fusion Enterprise
分步过程
配置级联端口。
[edit] user@switch# set interfaces ge-1/1/9 cascade-port user@switch# set interfaces ge-1/1/5 cascade-port
为独立卫星设备 SD120 配置 FPC 插槽 ID,并将其映射到级联端口。
[edit] user@switch# set chassis satellite-management fpc 120 cascade-ports ge-1/1/9
创建卫星设备群集,并为其分配名称和群集 ID。
[edit] user@switch# set chassis satellite-management cluster Cluster_100_108 cluster-id 2
定义与卫星设备群集关联的级联端口。
[edit] user@switch# set chassis satellite-management cluster Cluster_100_108 cascade-ports ge-1/1/5 user@switch# set chassis satellite-management cluster Cluster_100_108 cascade-ports ge-1/1/9
配置 FPC 插槽 ID 号,并分别映射到卫星设备 SD100 和 SD108 的 MAC 地址。
[edit] user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 100 alias SD100 user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 100 system-id 88:e0:f3:1f:3d:50 user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 108 alias SD108 user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 108 system-id 88:e0:f3:1f:c8:d1
为卫星设备群集中的每个卫星设备分配成员 ID。
[edit] user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 100 member-id 1 user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 108 member-id 8
创建两个卫星软件升级组,一个包含卫星设备 SD120,另一个包含卫星设备 SD100。
[edit] user@switch# set chassis satellite-management upgrade-groups upgrade_120 satellite 120 user@switch# set chassis satellite-management upgrade-groups upgrade_100 satellite 100
创建和配置冗余组,其中包括Cluster_100_108中的聚合设备和卫星设备。
[edit] user@switch# set chassis satellite-management redundancy-groups rg1 redundancy-group-id 2 user@switch# set chassis satellite-management redundancy-groups chassis-id 1 user@switch# set chassis satellite-management redundancy-groups rg1 peer-chassis-id 2 inter-chassis-link ge-1/0/3 user@switch# set chassis satellite-management redundancy-groups rg1 cluster Cluster_100_108
配置 ICL 和 ICCP 链路。
[edit] user@switch# set interfaces ge-1/0/2 description iccp-link user@switch# set interfaces ge-1/0/2 unit 0 family inet address 10.20.20.1/24 user@switch# set interfaces ge-1/0/3 description icl-link user@switch# set interfaces ge-1/0/3 unit 0 family ethernet-switching interface-mode trunk user@switch# set interfaces ge-1/0/3 unit 0 family ethernet-switching vlan members 100 user@switch# set switch-options service-id 1
注意:虽然此步骤显示接口 ge-1/0/2(指定为 ICCP 接口)的配置,但不显示如何在接口 ge-1/0/2 上配置 ICCP 属性。默认情况下,ICCP 是使用双聚合设备在 Junos Fusion Enterprise 中自动调配的。有关自动调配 ICCP 的详细信息,请参阅 配置或扩展 Junos Fusion Enterprise。
PE1:配置 EVPN-MPLS
分步过程
配置环路接口和连接到其他 PE 设备的接口。
[edit] user@switch# set interfaces lo0 unit 0 family inet address 10.25.0.1/32 user@switch# set interfaces ge-1/1/3 unit 0 family inet address 10.0.1.1/30 user@switch# set interfaces ge-1/1/3 unit 0 family mpls user@switch# set interfaces ge-1/1/7 unit 0 family inet address 10.0.3.1/30 user@switch# set interfaces ge-1/1/7 unit 0 family mpls
使用主动-主动模式下的 EVPN 多宿主配置扩展端口和 ESI,并将端口映射到 VLAN v100。
[edit] user@switch# set interfaces ge-108/0/25 unit 0 esi 00:01:02:03:04:00:01:02:04:26 user@switch# set interfaces ge-108/0/25 unit 0 esi all-active user@switch# set interfaces ge-108/0/25 unit 0 family ethernet-switching vlan members v100 user@switch# set interfaces ge-108/0/27 unit 0 esi 00:01:02:03:04:00:01:02:04:28 user@switch# set interfaces ge-108/0/27 unit 0 esi all-active user@switch# set interfaces ge-108/0/27 unit 0 family ethernet-switching vlan members v100
分配路由器 ID 以及 PE1、PE2 和 PE3 所在的自治系统。
[edit] user@switch# set routing-options router-id 10.25.0.1 user@switch# set routing-options autonomous-system 100
在环路接口以及接口 ge-1/1/3.0 和 ge-1/1/7.0 上启用 MPLS。
[edit] user@switch# set protocols mpls interface lo0.0 user@switch# set protocols mpls interface ge-1/1/3.0 user@switch# set protocols mpls interface ge-1/1/7.0
配置包含 PE1、PE2 和 PE3 的 IBGP 叠加网络。
[edit] user@switch# set protocols bgp local-address 10.25.0.1 user@switch# set protocols bgp peer-as 100 user@switch# set protocols bgp local-as 100 user@switch# set protocols bgp group evpn-mes type internal user@switch# set protocols bgp group evpn-mes family evpn signaling user@switch# set protocols bgp group evpn-mes peer-as 100 user@switch# set protocols bgp group evpn-mes neighbor 10.25.0.2 user@switch# set protocols bgp group evpn-mes neighbor 10.25.0.3
通过指定启用 EVPN-MPLS 的区域 ID 和接口,将 OSPF 配置为 EVPN 的内部路由协议。
[edit] user@switch# set protocols ospf traffic-engineering user@switch# set protocols ospf area 0.0.0.0 interface ge-1/1/3.0 user@switch# set protocols ospf area 0.0.0.0 interface lo0.0 user@switch# set protocols ospf area 0.0.0.0 interface fxp0.0 disable user@switch# set protocols ospf area 0.0.0.0 interface ge-1/1/7.0
在环路接口和启用 EVPN-MPLS 的接口上配置标签分发协议 (LDP)。
[edit] user@switch# set protocols ldp interface lo0.0 user@switch# set protocols ldp interface ge-1/1/3.0 user@switch# set protocols ldp interface ge-1/1/7.0
为 VLAN v100 配置虚拟交换机路由实例,并包括与该 VLAN 关联的接口和其他实体。
[edit] user@switch# set routing-instances evpn1 instance-type virtual-switch user@switch# set routing-instances evpn1 interface ge-108/0/25.0 user@switch# set routing-instances evpn1 interface ge-108/0/27.0 user@switch# set routing-instances evpn1 interface ge-1/0/3.0 user@switch# set routing-instances evpn1 route-distinguisher 10.25.0.1:1 user@switch# set routing-instances evpn1 vrf-target target:100:1 user@switch# set routing-instances evpn1 protocols evpn label-allocation per-instance user@switch# set routing-instances evpn1 protocols evpn extended-vlan-list 100 user@switch# set routing-instances evpn1 protocols evpn mclag bgp-peer 10.25.0.2 user@switch# set routing-instances evpn1 switch-options service-id 2 user@switch# set routing-instances evpn1 vlans v100 vlan-id 100
PE2:配置 Junos Fusion Enterprise
分步过程
配置级联端口。
[edit] user@switch# set interfaces ge-3/1/4 cascade-port
创建卫星设备群集,并为其分配名称和群集 ID。
[edit] user@switch# set chassis satellite-management cluster Cluster_100_108 cluster-id 2
定义与卫星设备群集关联的级联端口。
[edit] user@switch# set chassis satellite-management cluster Cluster_100_108 cascade-ports ge-3/1/4
配置 FPC 插槽 ID 号,并分别映射到卫星设备 SD100 和 SD108 的 MAC 地址。
[edit] user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 100 alias SD100 user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 100 system-id 88:e0:f3:1f:3d:50 user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 108 alias SD108 user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 108 system-id 88:e0:f3:1f:c8:d1
为卫星设备群集中的每个卫星设备分配成员 ID。
[edit] user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 100 member-id 1 user@switch# set chassis satellite-management cluster Cluster_100_108 fpc 108 member-id 8
创建包含卫星设备 SD100 的卫星软件升级组。
[edit] user@switch# set chassis satellite-management upgrade-groups upgrade_100 satellite 100
创建和配置冗余组,其中包括Cluster_100_108中的聚合设备和卫星设备。
[edit] user@switch# set chassis satellite-management redundancy-groups rg1 redundancy-group-id 2 user@switch# set chassis satellite-management redundancy-groups chassis-id 2 user@switch# set chassis satellite-management redundancy-groups rg1 peer-chassis-id 1inter-chassis-link ge-3/1/9 user@switch# set chassis satellite-management redundancy-groups rg1 cluster Cluster_100_108
配置 ICL 和 ICCP 链路。
[edit] user@switch# set interfaces ge-3/1/7 description iccp-link user@switch# set interfaces ge-3/1/7 unit 0 family inet address 10.20.20.2/24 user@switch# set interfaces ge-3/1/9 description icl-link user@switch# set interfaces ge-3/1/9 unit 0 family ethernet-switching interface-mode trunk user@switch# set interfaces ge-3/1/9 unit 0 family ethernet-switching vlan members 100 user@switch# set switch-options service-id 1
注意:虽然此步骤显示接口 ge-3/1/7(指定为 ICCP 接口)的配置,但不显示如何在接口 ge-3/1/7 上配置 ICCP 属性。默认情况下,ICCP 是使用双聚合设备在 Junos Fusion Enterprise 中自动调配的。有关自动调配 ICCP 的详细信息,请参阅 配置或扩展 Junos Fusion Enterprise。
PE2:配置 EVPN-MPLS
分步过程
配置环路接口、连接到其他 PE 设备的接口以及也配置为默认第 3 层网关的 IRB 接口。
[edit] user@switch# set interfaces lo0 unit 0 family inet address 10.25.0.2/32 user@switch# set interfaces ge-3/1/5 unit 0 family inet address 10.0.4.2/30 user@switch# set interfaces ge-3/1/5 unit 0 family mpls user@switch# set interfaces ge-3/1/8 unit 0 family inet address 10.0.3.2/30 user@switch# set interfaces ge-3/1/8 unit 0 family mpls user@switch# set interfaces irb unit 0 family inet address 10.5.5.1/24 virtual-gateway-address 10.5.5.5
使用主动-主动模式下的 EVPN 多宿主配置扩展端口和 ESI,并将端口映射到 VLAN v100。
[edit] user@switch# set interfaces ge-108/0/25 unit 0 esi 00:01:02:03:04:00:01:02:04:26 user@switch# set interfaces ge-108/0/25 unit 0 esi all-active user@switch# set interfaces ge-108/0/25 unit 0 family ethernet-switching vlan members v100 user@switch# set interfaces ge-108/0/27 unit 0 esi 00:01:02:03:04:00:01:02:04:28 user@switch# set interfaces ge-108/0/27 unit 0 esi all-active user@switch# set interfaces ge-108/0/27 unit 0 family ethernet-switching vlan members v100
分配路由器 ID 以及 PE1、PE2 和 PE3 所在的自治系统。
[edit] user@switch# set routing-options router-id 10.25.0.2 user@switch# set routing-options autonomous-system 100
在环路接口以及接口 ge-3/1/5.0 和 ge-3/1/8.0 上启用 MPLS。
[edit] user@switch# set protocols mpls interface lo0.0 user@switch# set protocols mpls interface ge-3/1/5.0 user@switch# set protocols mpls interface ge-3/1/8.0
配置包含 PE1、PE2 和 PE3 的 IBGP 叠加网络。
[edit] user@switch# set protocols bgp local-address 10.25.0.2 user@switch# set protocols bgp peer-as 100 user@switch# set protocols bgp local-as 100 user@switch# set protocols bgp group evpn-mes type internal user@switch# set protocols bgp group evpn-mes family evpn signaling user@switch# set protocols bgp group evpn-mes peer-as 100 user@switch# set protocols bgp group evpn-mes neighbor 10.25.0.1 user@switch# set protocols bgp group evpn-mes neighbor 10.25.0.3
通过指定启用 EVPN-MPLS 的区域 ID 和接口,将 OSPF 配置为 EVPN 的内部路由协议。
[edit] user@switch# set protocols ospf traffic-engineering user@switch# set protocols ospf area 0.0.0.0 interface ge-3/1/5.0 user@switch# set protocols ospf area 0.0.0.0 interface lo0.0 user@switch# set protocols ospf area 0.0.0.0 interface fxp0.0 disable user@switch# set protocols ospf area 0.0.0.0 interface ge-3/1/8.0
在环路接口和启用 EVPN-MPLS 的接口上配置 LDP。
[edit] user@switch# set protocols ldp interface lo0.0 user@switch# set protocols ldp interface ge-3/1/5.0 user@switch# set protocols ldp interface ge-3/1/8.0
为 VLAN v100 配置虚拟交换机路由实例,并包括与该 VLAN 关联的接口和其他实体。
[edit] user@switch# set routing-instances evpn1 instance-type virtual-switch user@switch# set routing-instances evpn1 interface ge-108/0/25.0 user@switch# set routing-instances evpn1 interface ge-108/0/27.0 user@switch# set routing-instances evpn1 interface ge-3/1/9.0 user@switch# set routing-instances evpn1 route-distinguisher 10.25.0.2:1 user@switch# set routing-instances evpn1 vrf-target target:100:1 user@switch# set routing-instances evpn1 protocols evpn label-allocation per-instance user@switch# set routing-instances evpn1 protocols evpn extended-vlan-list 100 user@switch# set routing-instances evpn1 protocols evpn mclag bgp-peer 10.25.0.1 user@switch# set routing-instances evpn1 switch-options service-id 2 user@switch# set routing-instances evpn1 vlans v100 vlan-id 100 user@switch# set routing-instances evpn1 vlans v100 l3-interface irb.0
PE3 配置
CLI 快速配置
PE3:EVPN-MPLS 配置
set interfaces lo0 unit 0 family inet address 10.25.0.3/32 set interfaces ge-0/3/5 unit 0 family inet address 10.0.1.2/30 set interfaces ge-0/3/5 unit 0 family mpls set interfaces ge-0/3/7 unit 0 family inet address 10.0.4.1/30 set interfaces ge-0/3/7 unit 0 family mpls set interfaces ge-0/0/46 unit 0 esi 00:01:02:03:04:00:01:02:04:12 set interfaces ge-0/0/46 unit 0 esi all-active set interfaces ge-0/0/46 unit 0 family ethernet-switching vlan members 100 set routing-options router-id 10.25.0.3 set routing-options autonomous-system 100 set routing-options forwarding-table export evpn-pplb set policy-options policy-statement evpn-pplb from protocol evpn set policy-options policy-statement evpn-pplb then load-balance per-packet set protocols mpls interface lo0.0 set protocols mpls interface ge-0/3/5.0 set protocols mpls interface ge-0/3/7.0 set protocols bgp local-address 10.25.0.3 set protocols bgp peer-as 100 set protocols bgp local-as 100 set protocols bgp group evpn-mes type internal set protocols bgp group evpn-mes family evpn signaling set protocols bgp group evpn-mes peer-as 100 set protocols bgp group evpn-mes neighbor 10.25.0.2 set protocols bgp group evpn-mes neighbor 10.25.0.1 set protocols ospf traffic-engineering set protocols ospf area 0.0.0.0 interface ge-0/3/5.0 set protocols ospf area 0.0.0.0 interface lo0.0 set protocols ospf area 0.0.0.0 interface fxp0.0 disable set protocols ospf area 0.0.0.0 interface ge-0/3/7.0 set protocols ldp interface lo0.0 set protocols ldp interface ge-0/3/5.0 set protocols ldp interface ge-0/3/7.0 set routing-instances evpn1 instance-type virtual-switch set routing-instances evpn1 interface ge-0/0/46.0 set routing-instances evpn1 route-distinguisher 10.25.0.3:1 set routing-instances evpn1 vrf-target target:100:1 set routing-instances evpn1 protocols evpn label-allocation per-instance set routing-instances evpn1 protocols evpn extended-vlan-list 100 set routing-instances evpn1 switch-options service-id 2 set routing-instances evpn1 vlans v100 vlan-id 100
PE3:配置 EVPN-MPLS
分步过程
在 EVPN-MPLS 上配置接口互通。
[edit] user@switch# set interfaces lo0 unit 0 family inet address 10.25.0.3/32 user@switch# set interfaces ge-0/3/5 unit 0 family inet address 10.0.1.2/30 user@switch# set interfaces ge-0/3/5 unit 0 family mpls user@switch# set interfaces ge-0/3/7 unit 0 family inet address 10.0.4.1/30 user@switch# set interfaces ge-0/3/7 unit 0 family mpls
在主动-主动模式下配置具有 EVPN 多宿主的接口 ge-0/0/46,一个 ESI,并将端口映射到 VLAN v100。
[edit] user@switch# set interfaces ge-0/0/46 unit 0 esi 00:01:02:03:04:00:01:02:04:12 user@switch# set interfaces ge-0/0/46 unit 0 esi all-active user@switch# set interfaces ge-0/0/46 unit 0 family ethernet-switching vlan members 100
分配路由器 ID 以及 PE1、PE2 和 PE3 所在的自治系统。
[edit] user@switch# set routing-options router-id 10.25.0.2 user@switch# set routing-options autonomous-system 100
使用 EVPN 多宿主主动-主动模式时,为 EVPN 路由启用按数据包负载均衡。
[edit] user@switch# set routing-options forwarding-table export evpn-pplb user@switch# set policy-options policy-statement evpn-pplb from protocol evpn user@switch# set policy-options policy-statement evpn-pplb then load-balance per-packet
在环路接口以及接口 ge-0/3/5.0 和 ge-0/3/7.0 上启用 MPLS。
[edit] user@switch# set protocols mpls interface lo0.0 user@switch# set protocols mpls interface ge-0/3/5.0 user@switch# set protocols mpls interface ge-0/3/7.0
配置包含 PE1、PE2 和 PE3 的 IBGP 叠加网络。
[edit] user@switch# set protocols bgp local-address 10.25.0.3 user@switch# set protocols bgp peer-as 100 user@switch# set protocols bgp local-as 100 user@switch# set protocols bgp group evpn-mes type internal user@switch# set protocols bgp group evpn-mes family evpn signaling user@switch# set protocols bgp group evpn-mes peer-as 100 user@switch# set protocols bgp group evpn-mes neighbor 10.25.0.2 user@switch# set protocols bgp group evpn-mes neighbor 10.25.0.1
通过指定启用 EVPN-MPLS 的区域 ID 和接口,将 OSPF 配置为 EVPN 的内部路由协议。
[edit] user@switch# set protocols ospf traffic-engineering user@switch# set protocols ospf area 0.0.0.0 interface ge-0/3/5.0 user@switch# set protocols ospf area 0.0.0.0 interface lo0.0 user@switch# set protocols ospf area 0.0.0.0 interface fxp0.0 disable user@switch# set protocols ospf area 0.0.0.0 interface ge-0/3/7.0
在环路接口和启用 EVPN-MPLS 的接口上配置 LDP。
[edit] user@switch# set protocols ldp interface lo0.0 user@switch# set protocols ldp interface ge-0/3/5.0 user@switch# set protocols ldp interface ge-0/3/7.0
为 VLAN v100 配置虚拟交换机路由实例,并包括与该 VLAN 关联的接口和其他实体。
[edit] user@switch# set routing-instances evpn1 instance-type virtual-switch user@switch# set routing-instances evpn1 interface ge-0/0/46.0 user@switch# set routing-instances evpn1 route-distinguisher 10.25.0.3:1 user@switch# set routing-instances evpn1 vrf-target target:100:1 user@switch# set routing-instances evpn1 protocols evpn label-allocation per-instance user@switch# set routing-instances evpn1 protocols evpn extended-vlan-list 100 user@switch# set routing-instances evpn1 switch-options service-id 2 user@switch# set routing-instances evpn1 vlans v100 vlan-id 100