Skip to main content

EVPN-L3VPN

·980 words·5 mins
Rs
Rory
Author
Rory
Step by step the ladder is ascended

EVPN means next-generation all-in-one VPN technology that provides a wide of range of services such as E-LAN, E-Line, E-TREE, L3VPN, DCI, DC-Overlay, IRB, …  The following is the mapping between EVPN and traditional VPN technologies.

This topic will introduce EVPN L3VPN.

alt text

Firstly, EVPN will provide below different route types, it use Type 5 to advise VPNv4 prefiex.

alt text

EVPN Route Types

Topology
#

alt text

Core IGP
#

router isis core
 is-type level-2-only
 net 49.0000.0000.0000.4009.00
 segment-routing global-block 100000 165534
 address-family ipv4 unicast
  metric-style wide
  segment-routing mpls
 !
 interface Loopback0
  passive
  address-family ipv4 unicast
   prefix-sid index 9
  !
 !
 interface HundredGigE0/0/1/0
  circuit-type level-2-only
  point-to-point
  address-family ipv4 unicast

EVPN
#

*********PE1**********
router bgp 1
 address-family vpnv4 unicast
 !
 address-family l2vpn evpn
 !
 neighbor-group evpn-peer
  remote-as 1
  update-source Loopback0
  address-family l2vpn evpn
   advertise vpnv4 unicast re-originated    <<<< Send Type 5
  !
 !
 neighbor 172.16.64.21		<<<< Neighbor with PE
  use neighbor-group evpn-peer
 !
 vrf vpn1
  address-family ipv4 unicast
  !
  neighbor 10.1.1.1       <<< Neighbor with CE
   remote-as 65535
   address-family ipv4 unicast
    route-policy pass-all in
    route-policy pass-all out
    as-override
    soft-reconfiguration inbound always
   !
  !
 !
!
RP/0/RP0/CPU0:R2-5501#show run vrf
Fri Oct 25 02:50:36.685 UTC
vrf vpn1
 rd 172.16.64.9:1
 address-family ipv4 unicast
  import route-target
   1:1
  !
  export route-target
   1:1
  !

Check prefix from peer PE
#

RP/0/RP0/CPU0:R2-5501# show bgp l2vpn evpn summary
Fri Oct 25 03:14:10.589 UTC
BGP router identifier 172.16.64.9, local AS number 3462
BGP generic scan interval 60 secs
Non-stop routing is enabled
BGP table state: Active
Table ID: 0x0   RD version: 0
BGP main routing table version 203
BGP NSR Initial initsync version 1 (Reached)
BGP NSR/ISSU Sync-Group versions 0/0
BGP scan interval 60 secs

BGP is operating in STANDALONE mode.


Process       RcvTblVer   bRIB/RIB   LabelVer  ImportVer  SendTblVer  StandbyVer
Speaker             203        203        203        203         203           0

Neighbor        Spk    AS MsgRcvd MsgSent   TblVer  InQ OutQ  Up/Down  St/PfxRcd
172.16.64.21      0     1     922     922      203    0    0 13:02:12         20    <<< Recieve Count.20 prefix
RP/0/RP0/CPU0:R2-5501# show bgp l2vpn evpn
Fri Oct 25 03:15:09.399 UTC
BGP router identifier 172.16.64.9, local AS number 1
BGP generic scan interval 60 secs
Non-stop routing is enabled
BGP table state: Active
Table ID: 0x0   RD version: 0
BGP main routing table version 203
BGP NSR Initial initsync version 1 (Reached)
BGP NSR/ISSU Sync-Group versions 0/0
BGP scan interval 60 secs

Status codes: s suppressed, d damped, h history, * valid, > best
              i - internal, r RIB-failure, S stale, N Nexthop-discard
Origin codes: i - IGP, e - EGP, ? - incomplete
   Network            Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 172.16.64.21:1
*>i[5][0][32][200.0.0.1]/80
                      172.16.64.21                  100      0 65535 {1} i
*>i[5][0][32][200.0.0.2]/80
                      172.16.64.21                  100      0 65535 {1} i
<snip>
RP/0/RP0/CPU0:R2-5501# show bgp l2vpn evpn rd 172.16.64.21:1 [5][0][32][200.0.0.1]/80 detail
Fri Oct 25 03:17:55.241 UTC
BGP routing table entry for [5][0][32][200.0.0.1]/80, Route Distinguisher: 172.16.64.21:1
Versions:
  Process           bRIB/RIB  SendTblVer
  Speaker                197         197
    Flags: 0x00040001+0x00000000;
Last Modified: Oct 25 03:11:11.348 for 00:06:44
Paths: (1 available, best #1)
  Not advertised to any peer
  Path #1: Received by speaker 0
  Flags: 0x4000000025060005, import: 0x1f, EVPN: 0x1
  Not advertised to any peer
  65101 {1}
    172.16.64.21 (metric 10) from 172.16.64.21 (172.16.64.21), if-handle 0x00000000
      Received Label 24002     <<<< BGP label
      Origin IGP, localpref 100, valid, internal, best, group-best, import-candidate, not-in-vrf
      Received Path ID 0, Local Path ID 1, version 197
      Extended community: Flags 0x6: RT:1:1
      EVPN ESI: 0000.0000.0000.0000.0000, Gateway Address : 0.0.0.0
RP/0/RP0/CPU0:R2-5501#show bgp vpnv4 unicast
Fri Oct 25 03:20:52.534 UTC
BGP router identifier 172.16.64.9, local AS number 1
BGP generic scan interval 60 secs
Non-stop routing is enabled
BGP table state: Active
Table ID: 0x0   RD version: 0
BGP main routing table version 284
BGP NSR Initial initsync version 2 (Reached)
BGP NSR/ISSU Sync-Group versions 0/0
BGP scan interval 60 secs

Status codes: s suppressed, d damped, h history, * valid, > best
              i - internal, r RIB-failure, S stale, N Nexthop-discard
Origin codes: i - IGP, e - EGP, ? - incomplete
   Network            Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 172.16.64.9:1 (default for vrf vpn1)
*> 100.0.0.1/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.2/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.3/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.4/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.5/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.6/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.7/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.8/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.9/32       10.1.1.1                               0 65535 {1} i
*> 100.0.0.10/32      10.1.1.1                               0 65535 {1} i
*>i200.0.0.1/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.2/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.3/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.4/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.5/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.6/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.7/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.8/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.9/32       172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.10/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.11/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.12/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.13/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.14/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.15/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.16/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.17/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.18/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.19/32      172.16.64.21                  100      0 65535 {1} i
*>i200.0.0.20/32      172.16.64.21                  100      0 65535 {1} i
RP/0/RP0/CPU0:R2-5501#show bgp vpnv4 unicast rd 172.16.64.9:1 200.0.0.1/32 detail
Fri Oct 25 03:22:05.318 UTC
BGP routing table entry for 200.0.0.1/32, Route Distinguisher: 172.16.64.9:1
Versions:
  Process           bRIB/RIB  SendTblVer
  Speaker                265         265
    Flags: 0x00001001+0x00000000;
Last Modified: Oct 25 03:11:11.348 for 00:10:54
Paths: (1 available, best #1)
  Not advertised to any peer
  Path #1: Received by speaker 0
  Flags: 0x4401000005060005, import: 0x80
  Not advertised to any peer
  65101 {1}
    172.16.64.21 (metric 10) from 172.16.64.21 (172.16.64.21), if-handle 0x00000000
      Received Label 24002
      Origin IGP, localpref 100, valid, internal, best, group-best, import-candidate, imported
      Received Path ID 0, Local Path ID 1, version 265
      Extended community: RT:1:1
      EVPN Gateway Address : 0.0.0.0
      Source AFI: L2VPN EVPN, Source VRF: default, Source Route Distinguisher: 172.16.64.21:1  <<<<< source was L2vpn EVPN