EVPN
-
Unified access policy (EX4100, EX4400, EX4650, and QFX5120)—Unified access policy extends group-based policy (GBP) support to Mist APs, including to parts of the wired and wireless access network outside of the EVPN-VXLAN infrastructure. GBP tags are learned through proprietary control plane messages from Mist APs and across access switches, allowing both wired and wireless clients to participate in GBP microsegmentation.
-
GBP support for DHCP, ARP, and neighbor discovery packets when snooping and inspection are enabled (EX4100, EX4400, EX4650, and QFX5120)—DHCP snooping, dynamic ARP inspection, and dynamic IPv6 neighbor discovery inspection now include GBP support for DHCP, Address Resolution Protocol (ARP), and neighbor discovery packets, respectively. Previously, when snooping and inspection were enabled, GBP processing of the snooped and inspected packets did not take place.
-
GBP on an IPv6 underlay (EX4100, EX4400, EX4650, and QFX5120)—Group-based policy (GBP) is now supported on top of an IPv6 underlay network. With an IPv6 underlay, you can take advantage of the expanded addressing capabilities and efficient packet processing that the IPv6 protocol offers.
[See Microsegmentation Using Group-Based Policies and EVPN-VXLAN with an IPv6 Underlay.]
-
EVPN maintenance mode CLI for multihomed ERB leaf nodes (EX4650, QFX5120-32C, QFX5120-48T, QFX5120-48Y, QFX5120-48YM, QFX5200, and QFX5210)—You can streamline the upgrade process for EVPN-VXLAN leaf devices by utilizing the maintenance mode CLI. This feature enables you to isolate multihomed nodes and manage the upgrade with minimal traffic loss. Use the configuration command
set protocols evpn maintenance-mode erb-leaf action-type choiceto enable maintenance mode, and verify the status withshow evpn maintenance-mode status.Ensure prechecks are validated to prevent disruptions, and manage the process efficiently with provided commands for deletion and validation. -
EVPN multihoming and multitenancy support over colored IP fabric with BGP DPF (EX4100-24MP, EX4100-24T, EX4100-48MP, EX4100-48P, EX4100-48T, QFX5120-32C, QFX5120-48T, QFX5120-48Y, and QFX5120-48YM)—You can leverage EVPN-VXLAN over colored IP fabric using BGP deterministic path forwarding (DPF) to support multihoming and multitenancy configurations for AI/ML applications. This functionality facilitates EVPN for Layer 3 networks with EVPN Type 5, enhancing network segmentation and resource allocation. By using a colored logical fabric, you can achieve flexible routing as uncolored routes integrate seamlessly with all color-coded sessions, optimizing network efficiency and adaptability.
-
Enable scaling for stretched VXLAN campus networks (EX4100-48MP, EX4100-24MP, EX4100-24T, EX4300-MP, EX4400-24MP, EX4400-24P, EX4400-24T, EX4400-24X, EX4400-48F, EX4400-48MP, EX4400-48P, EX4400-48T, EX4650, QFX5120-32C, QFX5120-48T, QFX5120-48Y, and QFX5120-48YM)—To support large-scaled stretched VXLAN campus networks, we provide new routing policy options, sample routing policies, and new statements to optimize how host routes are managed across the access, distribution, and core layers. With this feature, you can configure the network to install host routes in the core layer but not advertise the host routes to the distribution and access layers. The core devices advertise only subnet routes (using EVPN Type 5 routes) to the distribution devices. The distribution devices then advertise the subnet routes to the access layer. The configuration includes policies to ensure the EVPN Type 5 subnet routes are the preferred routes on the distribution and access layer devices. This design reduces the route table burden on access and distribution devices, enabling greater scalability.