서비스 프로바이더 스타일 인터페이스 구성을 사용하는 VXLAN 레이어 3 게이트웨이
PaaS(Platform-as-a-Service) 및 IaaS(Infrastructure-as-a-Service) 구축에서 고객 클라우드 및 프라이빗 클라우드 제공업체는 종종 동일한 리프 디바이스를 사용하여 VXLAN 코어 네트워크를 통해 네트워크 트래픽을 전달합니다. 고객 클라우드 및 프라이빗 클라우드 프로바이더는 이제 서비스 프로바이더 스타일 인터페이스 구성 CLI를 사용하여 레이어 3 게이트웨이 역할을 하는 리프 디바이스를 구성할 수 있습니다. 또한 서비스 프로바이더 스타일의 CLI를 사용하여 동일한 리프 디바이스에서 동일한 VLAN에 매핑되는 여러 인터페이스를 구성할 수 있습니다.
서비스 프로바이더 스타일 CLI는 다음 디바이스에서 사용할 수 있습니다.
-
EX4650, QFX5110, QFX5120-32C, QFX5120-48T, QFX5120-48Y, QFX5120-48YM—Junos OS 릴리스 22.2R1부터 시작
서비스 프로바이더 스타일 CLI를 사용하여 다음 작업을 수행할 수 있습니다.
-
단일 물리적 인터페이스에서 여러 논리적 인터페이스를 구성합니다.
-
에지 라우팅 브리징(ERB) 및 중앙 라우팅 브리징(CRB) 오버레이에서 리프 디바이스를 레이어 3 게이트웨이로 구성합니다.
-
통합 라우팅 및 브리징(IRB) 인터페이스를 가상 네트워크 식별자(VNI)에 매핑합니다.
-
VXLAN 라우팅을 수행합니다.
-
ERB 오버레이를 구성합니다.
-
CRB 오버레이를 구성합니다.
-
VLAN ID를 구성합니다.
-
VLAN ID를 none으로 구성합니다.
-
VLAN 인식 번들 서비스를 구성합니다.
-
가상 게이트웨이 주소를 구성합니다.
-
IRB 인터페이스를 하나의 VLAN에 매핑하거나 여러 IRB 인터페이스를 여러 VLAN에 매핑합니다.
- VLAN ID와 동일한 VLAN ID를 사용하여 IRB 인터페이스에 VLAN ID를 할당하거나 다른 VLAN ID를 할당합니다.
혜택
-
서비스 프로바이더 스타일 인터페이스 스타일을 사용하여 레이어 3 게이트웨이 역할을 하는 리프 디바이스를 구성할 수 있습니다.
-
또한 서비스 프로바이더 스타일의 인터페이스 구성을 사용하여 단일 리프 디바이스에서 여러 인터페이스를 구성하고 동일한 VLAN에 매핑할 수 있습니다.
서비스 프로바이더 스타일 인터페이스 구성을 사용하는 ERB 오버레이의 레이어 3 게이트웨이
리프 1
set chassis aggregated-devices ethernet device-count 20 set interfaces et-2/0/5 description "To PORT-1 --> 1/13" set interfaces et-2/0/5 flexible-vlan-tagging set interfaces et-2/0/5 encapsulation extended-vlan-bridge set interfaces et-2/0/5 unit 100 vlan-id 100 set interfaces et-2/0/5 unit 200 vlan-id 200 set interfaces et-2/0/8 description "To Spine-1 in ae31" set interfaces et-2/0/8 ether-options 802.3ad ae31 set interfaces et-2/0/11 description "To Spine-1 in ae31" set interfaces et-2/0/11 ether-options 802.3ad ae31 set interfaces ae31 description "To Spine-1" set interfaces ae31 aggregated-ether-options lacp active set interfaces ae31 aggregated-ether-options lacp periodic fast set interfaces ae31 aggregated-ether-options lacp system-id 11:11:11:11:11:11 set interfaces ae31 unit 0 family inet address 10.40.1.2/24 set interfaces et-2/0/9 description "To spine-2" set interfaces et-2/0/9 unit 0 family inet address 10.50.1.2/24 set interfaces et-2/0/12:0 description "To CE-1 in ae12" set interfaces et-2/0/12:0 ether-options 802.3ad ae12 set interfaces ae12 description "To CE-1" set interfaces ae12 flexible-vlan-tagging set interfaces ae12 encapsulation extended-vlan-bridge set interfaces ae12 esi 00:12:12:12:12:12:12:12:12:12 set interfaces ae12 esi all-active set interfaces ae12 aggregated-ether-options lacp active set interfaces ae12 aggregated-ether-options lacp periodic fast set interfaces ae12 aggregated-ether-options lacp system-id 12:12:12:12:12:12 set interfaces ae12 unit 100 vlan-id 100 set interfaces ae12 unit 200 vlan-id 200 set interfaces lo0 unit 0 family inet address 10.10.10.10/24 primary set interfaces irb unit 100 virtual-gateway-accept-data set interfaces irb unit 100 family inet address 10.100.1.1/24 preferred set interfaces irb unit 100 family inet address 10.100.1.1/24 virtual-gateway-address 10.100.1.254 set interfaces irb unit 100 family inet6 address abcd::0010:0100:0001:0001/96 preferred set interfaces irb unit 100 family inet6 address abcd::abcd::0010:0100:0001:0001/96 virtual-gateway-address abcd::0192:0100:0001:0254 set interfaces irb unit 100 virtual-gateway-v4-mac 00:10:01:00:01:fe set interfaces irb unit 100 virtual-gateway-v6-mac 00:10:01:00:02:fe set interfaces irb unit 200 virtual-gateway-accept-data set interfaces irb unit 200 family inet address 10.200.1.1/24 preferred set interfaces irb unit 200 family inet address 10.200.1.1/24 virtual-gateway-address 10.200.1.254 set interfaces irb unit 200 family inet6 address abcd::abcd::0010:0200:0001:0001/24 preferred set interfaces irb unit 200 family inet6 address abcd::abcd::0010:0200:0001:0001/24 virtual-gateway-address abcd::0010:0200:0001:0254 set interfaces irb unit 200 virtual-gateway-v4-mac 00:10:01:00:01:fe set interfaces irb unit 200 virtual-gateway-v6-mac 00:10:01:00:00:01:fe set routing-instances evpn_vlan_aware instance-type mac-vrf set routing-instances evpn_vlan_aware protocols evpn encapsulation vxlan set routing-instances evpn_vlan_aware protocols evpn default-gateway no-gateway-community set routing-instances evpn_vlan_aware vtep-source-interface lo0.0 set routing-instances evpn_vlan_aware service-type vlan-aware set routing-instances evpn_vlan_aware route-distinguisher 1010:100200 set routing-instances evpn_vlan_aware vrf-target target:666:100200 set routing-instances evpn_vlan_aware vlans V100 vlan-id 100 set routing-instances evpn_vlan_aware vlans V100 interface et-2/0/5.100 set routing-instances evpn_vlan_aware vlans V100 interface ae12.100 set routing-instances evpn_vlan_aware vlans V100 l3-interface irb.100 set routing-instances evpn_vlan_aware vlans V100 vxlan vni 1100 set routing-instances evpn_vlan_aware vlans V200 vlan-id 200 set routing-instances evpn_vlan_aware vlans V200 interface et-2/0/5.200 set routing-instances evpn_vlan_aware vlans V200 interface ae12.200 set routing-instances evpn_vlan_aware vlans V200 l3-interface irb.200 set routing-instances evpn_vlan_aware vlans V200 vxlan vni 1200 set routing-options router-id 10.10.10.10 set routing-options autonomous-system 666 set protocols bgp group vteps type internal set protocols bgp group vteps local-address 10.10.10.10 set protocols bgp group vteps family evpn signaling set protocols bgp group vteps neighbor 10.30.30.30 set protocols bgp group vteps neighbor 10.20.20.20 set protocols ospf area 0.0.0.0 interface et-2/0/9.0 set protocols ospf area 0.0.0.0 interface lo0.0 passive set protocols ospf area 0.0.0.0 interface ae31.0
스파인 1
set chassis aggregated-devices ethernet device-count 20 set interfaces et-0/0/10 description "To Leaf-1 in ae31" set interfaces et-0/0/10 ether-options 802.3ad ae31 set interfaces et-0/0/13 description "To Leaf-1 in ae31" set interfaces et-0/0/13 ether-options 802.3ad ae31 set interfaces ae31 description "To Leaf-1" set interfaces ae31 aggregated-ether-options lacp active set interfaces ae31 aggregated-ether-options lacp periodic fast set interfaces ae31 aggregated-ether-options lacp system-id 30:30:30:30:30:30 set interfaces ae31 unit 0 family inet address 10.40.1.1/24 set interfaces et-0/0/1 description "To Leaf-2" set interfaces et-0/0/1 unit 0 family inet address 10.30.1.1/24 set interfaces et-0/0/16 description "To Leaf-3" set interfaces et-0/0/16 unit 0 family inet address 10.40.1.1/24 set interfaces lo0 unit 0 family inet address 10.50.40.1/24 primary set protocols ospf area 0.0.0.0 interface et-0/0/1.0 set protocols ospf area 0.0.0.0 interface et-0/0/16.0 set protocols ospf area 0.0.0.0 interface ae31.0
서비스 프로바이더 스타일 인터페이스 구성을 사용하는 CRB 오버레이 구성의 레이어 3 게이트웨이
이 샘플 구성에서는 서비스 프로바이더 스타일 인터페이스 구성을 사용하여 레이어 3 게이트웨이, CRB 오버레이, 가상 게이트웨이 주소, MAC-VRF 인스턴스 및 VLAN ID가 있는 VLAN을 생성합니다. 간결성을 위해 리프 디바이스 1개와 스파인 1개에 대한 구성만 제공합니다.
리프 1
set chassis aggregated-devices ethernet device-count 20 set interfaces et-2/0/5 description "To PORT-1 --> 1/13" set interfaces et-2/0/5 flexible-vlan-tagging set interfaces et-2/0/5 encapsulation extended-vlan-bridge set interfaces et-2/0/5 unit 100 vlan-id 100 set interfaces et-2/0/5 unit 200 vlan-id 200 set interfaces et-2/0/8 description "To Spine-1 in ae31" set interfaces et-2/0/8 ether-options 802.3ad ae31 set interfaces et-2/0/11 description "To Spine-1 in ae31" set interfaces et-2/0/11 ether-options 802.3ad ae31 set interfaces ae31 description "To Spine-1" set interfaces ae31 aggregated-ether-options lacp active set interfaces ae31 aggregated-ether-options lacp periodic fast set interfaces ae31 aggregated-ether-options lacp system-id 11:11:11:11:11:11 set interfaces ae31 unit 0 family inet address 10.4.1.2/24 set interfaces et-2/0/9 description "To spine-2" set interfaces et-2/0/9 unit 0 family inet address 10.5.1.2/24 set interfaces et-2/0/12:0 description "To CE-1 in ae12" set interfaces et-2/0/12:0 ether-options 802.3ad ae12 set interfaces ae12 description "To CE-1" set interfaces ae12 flexible-vlan-tagging set interfaces ae12 encapsulation extended-vlan-bridge set interfaces ae12 esi 00:12:12:12:12:12:12:12:12:12 set interfaces ae12 esi all-active set interfaces ae12 aggregated-ether-options lacp active set interfaces ae12 aggregated-ether-options lacp periodic fast set interfaces ae12 aggregated-ether-options lacp system-id 12:12:12:12:12:12 set interfaces ae12 unit 100 vlan-id 100 set interfaces ae12 unit 200 vlan-id 200 set interfaces lo0 unit 0 family inet address 10.10.10.10/24 primary set routing-instances evpn_vlan_aware instance-type mac-vrf set routing-instances evpn_vlan_aware protocols evpn encapsulation vxlan set routing-instances evpn_vlan_aware vtep-source-interface lo0.0 set routing-instances evpn_vlan_aware service-type vlan-aware set routing-instances evpn_vlan_aware route-distinguisher 1010:100200 set routing-instances evpn_vlan_aware vrf-target target:666:100200 set routing-instances evpn_vlan_aware vlans V100 interface et-2/0/5.100 set routing-instances evpn_vlan_aware vlans V100 interface ae12.100 set routing-instances evpn_vlan_aware vlans V100 vxlan vni 1100 set routing-instances evpn_vlan_aware vlans V200 interface et-2/0/5.200 set routing-instances evpn_vlan_aware vlans V200 interface ae12.200 set routing-instances evpn_vlan_aware vlans V200 vxlan vni 1200 set routing-options router-id 10.10.10.10 set routing-options autonomous-system 666 set protocols bgp group vteps type internal set protocols bgp group vteps local-address 10.10.10.10 set protocols bgp group vteps family evpn signaling set protocols bgp group vteps neighbor 10.1.1.30 set protocols bgp group vteps neighbor 10.5.5.50 set protocols bgp group vteps neighbor 10.4.4.40 set protocols bgp group vteps neighbor 10.2.2.20 set protocols ospf area 0.0.0.0 interface et-2/0/9.0 set protocols ospf area 0.0.0.0 interface lo0.0 passive set protocols ospf area 0.0.0.0 interface ae31.0
스파인 1
set chassis aggregated-devices ethernet device-count 20 set interfaces et-0/0/0 description "To CE-3 in ae34" set interfaces et-0/0/0 ether-options 802.3ad ae34 set interfaces ae34 description "To CE-1" set interfaces ae34 flexible-vlan-tagging set interfaces ae34 encapsulation extended-vlan-bridge set interfaces ae34 esi 00:34:34:34:34:34:34:34:34:34 set interfaces ae34 esi all-active set interfaces ae34 aggregated-ether-options lacp active set interfaces ae34 aggregated-ether-options lacp periodic fast set interfaces ae34 aggregated-ether-options lacp system-id 34:34:34:34:34:34 set interfaces ae34 unit 100 vlan-id 100 set interfaces ae34 unit 200 vlan-id 200 set interfaces et-0/0/10 description "To Leaf-1 in ae31" set interfaces et-0/0/10 ether-options 802.3ad ae31 set interfaces ae31 description "To Leaf-1" set interfaces ae31 aggregated-ether-options lacp active set interfaces ae31 aggregated-ether-options lacp periodic fast set interfaces ae31 aggregated-ether-options lacp system-id 30:30:30:30:30:30 set interfaces ae31 unit 0 family inet address 10.40.1.1/24 set interfaces et-0/0/11 description "To PORT-5 --> 1/1" set interfaces et-0/0/11 flexible-vlan-tagging set interfaces et-0/0/11 speed 40g set interfaces et-0/0/11 encapsulation extended-vlan-bridge set interfaces et-0/0/11 unit 100 vlan-id 100 set interfaces et-0/0/11 unit 200 vlan-id 200 set interfaces et-0/0/12 description "To PORT- --> 1/5" set interfaces et-0/0/12 flexible-vlan-tagging set interfaces et-0/0/12 encapsulation extended-vlan-bridge set interfaces et-0/0/12 unit 100 vlan-id 100 set interfaces et-0/0/12 unit 200 vlan-id 200 set interfaces et-0/0/13 description "To Leaf-1 in ae31" set interfaces et-0/0/13 ether-options 802.3ad ae31 set interfaces et-0/0/1 description "To Leaf-2" set interfaces et-0/0/1 unit 0 family inet address 10.40.1.1/24 set interfaces et-0/0/16 description "To Leaf-3" set interfaces et-0/0/16 unit 0 family inet address 10.30.1.1/24 set interfaces irb unit 100 virtual-gateway-accept-data set interfaces irb unit 100 family inet address 10.100.1.1/16 preferred set interfaces irb unit 100 family inet address 10.100.1.1/16 virtual-gateway-address 10.100.1.254 set interfaces irb unit 100 family inet6 address abcd::0010:0100:0001:0001/16 preferred set interfaces irb unit 100 family inet6 address abcd::0010:0100:0001:0001/96 virtual-gateway-address abcd::0010:0100:0001:0254 set interfaces irb unit 100 virtual-gateway-v4-mac 00:10:01:00:01:fe set interfaces irb unit 100 virtual-gateway-v6-mac 00:10:01:00:02:fe set interfaces irb unit 200 virtual-gateway-accept-data set interfaces irb unit 200 family inet address 10.200.1.1/16 preferred set interfaces irb unit 200 family inet address 10.200.1.1/16 virtual-gateway-address 10.200.1.254 set interfaces irb unit 200 family inet6 address abcd::0010:0200:0001:0001/96 preferred set interfaces irb unit 200 family inet6 address abcd::0010:0200:0001:0001/96 virtual-gateway-address abcd::0010:0200:0001:0254 set interfaces irb unit 200 virtual-gateway-v4-mac 00:20:02:00:01:fe set interfaces irb unit 200 virtual-gateway-v6-mac 00:20:02:00:02:fe set interfaces lo0 unit 0 family inet address 10.300.40.40/32 primary set routing-instances evpn_vlan_aware instance-type mac-vrf set routing-instances evpn_vlan_aware protocols evpn encapsulation vxlan set routing-instances evpn_vlan_aware vtep-source-interface lo0.0 set routing-instances evpn_vlan_aware service-type vlan-aware set routing-instances evpn_vlan_aware route-distinguisher 4040:100200 set routing-instances evpn_vlan_aware vrf-target target:666:100200 set routing-instances evpn_vlan_aware vlans V100 vlan-id 100 set routing-instances evpn_vlan_aware vlans V100 interface et-0/0/11.100 set routing-instances evpn_vlan_aware vlans V100 interface et-0/0/12.100 set routing-instances evpn_vlan_aware vlans V100 interface ae34.100 set routing-instances evpn_vlan_aware vlans V100 l3-interface irb.100 set routing-instances evpn_vlan_aware vlans V100 vxlan vni 1100 set routing-instances evpn_vlan_aware vlans V200 vlan-id 200 set routing-instances evpn_vlan_aware vlans V200 interface et-0/0/11.200 set routing-instances evpn_vlan_aware vlans V200 interface et-0/0/12.200 set routing-instances evpn_vlan_aware vlans V200 interface ae34.200 set routing-instances evpn_vlan_aware vlans V200 l3-interface irb.200 set routing-instances evpn_vlan_aware vlans V200 vxlan vni 1200 set routing-options router-id 40.40.40.40 set routing-options autonomous-system 666 set protocols bgp group vteps type internal set protocols bgp group vteps local-address 10.10.10.10 set protocols bgp group vteps family evpn signaling set protocols bgp group vteps neighbor 10.20.30.30 set protocols bgp group vteps neighbor 10.30.50.50 set protocols bgp group vteps neighbor 10.40.10.10 set protocols bgp group vteps neighbor 10.50.20.20 set protocols ospf area 0.0.0.0 interface et-0/0/1.0 set protocols ospf area 0.0.0.0 interface et-0/0/16.0 set protocols ospf area 0.0.0.0 interface lo0.0 passive set protocols ospf area 0.0.0.0 interface ae31.0