Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Example: Manually Configuring VXLANs on MX Series Routers

 

Virtual Extensible Local Area Network (VXLAN) is a Layer 3 encapsulation protocol that enables MX Series routers to push Layer 2 or Layer 3 packets through a VXLAN tunnel to a virtualized data center or the Internet. Communication is established between two virtual tunnel endpoints (VTEPs). VTEPs encapsulate the virtual machine traffic into a VXLAN header and strip off the encapsulation.

This example shows how to configure VXLAN on MX Series routers using switch options in a default bridge domain.

Requirements

This example uses the following hardware and software components:

  • An MX Series router

  • A VXLAN capable peer router

  • Junos OS Release 14.1

Overview

In this example, VXLAN is configured to run on a default bridge domain. VTEP interfaces sources are configured to the loopback address, and VLAN groups are configured under bridge domains with VXLAN enabled. Interfaces are configured for VLAN tagging and encapsulation, and IRB is enabled. OSPF and PIM protocols are configured to facilitate unicast and multicast routing. The chassis is configured for GRES and enhanced IP services.

Topology

Figure 1: VXLAN Topology
VXLAN Topology

Configuring VXLAN on MX Series Routers

CLI Quick Configuration

To quickly configure this example, copy the following commands, paste them into a text file, remove any line breaks, change any details necessary to match your network configuration, and then copy and paste the commands into the CLI at the [edit] hierarchy level.

Configuring VXLAN

Step-by-Step Procedure

The following example show how to set up a basic VXLAN configuration with default bridge domains and switch options. To configure VXLAN on an MX Series router, follow these steps:

  1. Configure VTEP interface sources under switch-options for the default-switch.
  2. Set up a VLAN group named vlan-5 and set its VXLAN Network Identifier (VNI) to 100.
  3. Configure the vlan-5 multicast group address for VXLAN.
  4. Set the VLAN ID to 100 for vlan-5.
  5. Configure integrated bridging and routing (IRB) for vlan-5.
  6. Assign the xe-1/0/0.0 interface to vlan-5.
  7. Set up a VLAN group named vlan-6 and set its VXLAN Network Identifier (VNI) to 200.
  8. Configure the vlan-6 multicast group address for VXLAN.
  9. Set the VLAN ID to 100 for vlan-6.
  10. Configure IRB for vlan-6.
  11. Assign the xe-2/0/0.0 interface to vlan-6.
  12. Set up VLAN tagging for xe-1/0/0.
  13. Configure flexible Ethernet service encapsulation on xe-1/0/0.
  14. Set up VLAN bridging encapsulation for xe-1/0/0 unit 0˙.
  15. Set the xe-1/0/0 unit 0 VLAN ID to 100.
  16. Configure VLAN tagging for xe-2/0/0
  17. Set up flexible Ethernet service encapsulation on xe-2/0/0.
  18. Configure VLAN bridging encapsulation for xe-2/0/0 unit 0˙.
  19. Set the xe-2/0/0 unit 0 VLAN ID to 200.
  20. Configure the IRB unit 0 family inet address.
  21. Configure the IRB unit 1 family inet address.
  22. Set the family inet address for the loopback unit 0.
  23. Set up OSPF for the ge-8/3/8.0 interface.
  24. Configure OSPF for the loopback interface.
  25. Set up OSPF for the xe-0/1/3.0 interface.
  26. Configure OSPF for the ge-8/3/2.0 interface.
  27. Set up the static address for the protocol independent multicast (PIM) rendezvous point (RP).
  28. Configure the loopback interface to bidirectional sparse mode for the PIM protocol.
  29. Set the ge-8/3/8.0 interface to bidirectional sparse mode for the PIM protocol.
  30. Configure the xe-0/1/3.0 interface to bidirectional sparse mode for the PIM protocol.
  31. Set the ge-8/3/2.0 interface to bidirectional sparse mode for the PIM protocol.
  32. Configure redundant graceful switchover on the chassis.
  33. Set the aggregated ethernet device count to 10.
  34. Configure the tunnel services bandwidth for FPC 1/PIC 0.
  35. Enable enhanced IP for network services on the chassis.

Results

From configuration mode, confirm your configuration by entering the following commands. If the output does not display the intended configuration, repeat the instructions in this example to correct the configuration.

user@router# show switch-options
user@router# show bridge-domains
user@router# show interfaces
user@router# show protocols ospf
user@router# show protocols pim
user@router# show chassis

Verification

Confirm that the configuration is working properly.

Verifying Reachability

Purpose

Verify that the network is up and running with the proper interfaces and routes installed.

Action

user@router> show interfaces terse irb

user@router> ping 10.5.5.1/24

Meaning

Use the show interfaces terse irb command to verify that the IRB interface has been properly configured. The irb.0 and irb.1 interfaces should display the proper multiservice inet addresses.

Use the ping command to confirm that the network is connected to the IRB multiservice address.

Verifying VXLAN

Purpose

Verify that VXLAN is working and the proper protocols are enabled.

Action

user@router> show interfaces vtep

user@router> show l2-learning vxlan-tunnel-end-point remote mac-table

user@router> show l2-learning vxlan-tunnel-end-point source

Meaning

Use the show interface vtep command to displays information about VXLAN endpoint configuration. Make sure the routing instance is assigned to the default-switch..

Use the show l2-learning vxlan-tunnel-end-point remote mac-table command to confirm that the bridging domain VLAN groups were configured correctly.

Use the show l2-learning vxlan-tunnel-end-point source command to confirm the multicast IP addresses for bridging domain VLAN groups.