EVPN
-
Support for EVPN-VXLAN group-based policies (EX4400-24MP, EX4400-24P, EX4400-24T, EX4400-48F, EX4400-48MP, EX4400-48P, EX4400-48T, EX4650, and EX4650-48Y-VC)—Starting in Junos OS Release 21.4R1, EX4400 and EX4650 switches provide standards-based multi-level segmentation (also called group-based policy, or GBP) on the basis of Layer 3 virtual networks and group-based tags rather than IP-based filters. GBP supports an application-centric policy model that separates network access policies from the underlying network topology through the use of policy tags, thus allowing different levels of access control for endpoints and applications even within the same VLAN.
The EX4400 and EX4650 switches also provide GBP support for locally switched traffic on VXLAN access ports.
[See Micro and Macro Segmentation using Group Based Policy in a VXLAN.]
-
Dynamic overlay load balancing in an EVPN-VXLAN network (EX4400-24MP, EX4400-24P, EX4400-24T, EX4400-48F, EX4400-48MP, EX4400-48P, and EX4400-48T) —Starting in Junos OS Release 21.4R1, EX4400 switches in an EVPN-VXLAN network (centrally routed and edge-routed bridging overlays) support dynamic load balancing on virtual tunnel endpoints (VTEPs). Juniper Networks switches have dynamic load balancing enabled by default.
Interconnecting EVPN-VXLAN data centers with EVPN-MPLS in a WAN using gateway nodes (MX-Series, EX9200, EX9252, EX9253)—Starting in Junos OS Release 21.4R1, you can interconnect EVPN-VXLAN data centers with EVPN-MPLS in a WAN using gateway nodes, but without using logical tunnel interfaces. In Release 21.4R1, you can interconnect only those BDs/VLANs that are on the interconnected VLAN list. Note that the gateway nodes in one data center will have connectivity by means of virtual tunnel end points (VTEPs), whereas gateway nodes must be able to handle EVPN-VXLAN encapsulation on the data center side and EVPN-MPLS on the WAN (data center interconnect) side.
EVPN interconnect CLI commands:set routing-instances <instance-name> protocols evpn interconnect interconnected-vlan-list [ <vlan-id1> <vlan-id2>]
set routing-instances <instance-name> protocols evpn interconnect encapsulation mpls
[See Technology Overview of VXLAN-EVPN Integration for DCI and Connecting Logical Systems Using Logical Tunnel Interfaces.]