search

FRRouting / frr

The FRRouting Protocol Suite
https://frrouting.org/
Other
3.33k stars 1.25k forks source link

EVPN and vlan_filtering bridge. #14676

Closed Lolikololix closed 5 months ago

Lolikololix commented 12 months ago

Hi! i would like to continue an issue starting at #1771 I use FRRouting (version 9.0.1) trying to build fabric with on Debian 5.10.178-3 I use vlan_filtering to ensure compatibility with other vendors in case of QinQ traffic. (linux swap outer vlan tag with vxlan header and keep inner on traditional bridge, and keeps all tags on vlan_filtering bridge)

My interface config:

 ip link add br0 type bridge vlan_filtering 1                                    
 ip link set br0 addrgenmode none                                                
 ip link set br0 addr aa:bb:cc:00:02:26                                          
 sysctl -w net.ipv4.conf.br0.forwarding=0                                        
 sysctl -w net.ipv6.conf.br0.forwarding=0                                        
 ip link set br0 up                                                              
 ip link set downlink master br0                                                 
 bridge vlan del dev downlink vid 1                                              
 bridge vlan del dev br0 vid 1 self                                              
 ethtool -K downlink l2-fwd-offload on                

 ip link add vni10150 type vxlan local 10.131.0.2 dstport 4789 id 10150 nolearning 
 ip link set vni10150 master br0 addrgenmode none                                
 ip link set vni10150 type bridge_slave neigh_suppress on learning off vlan_tunnel on
 ip link set vni10150 up                                                         
 bridge vlan del dev vni10150 vid 1                                              
 bridge vlan add dev downlink vid 150                                            
 bridge vlan add dev vni10150 vid 150

FRR doesnt learn local mac from bridge. So it does not make a type 2 route for advertisment. There are no routes on spine, local and remote leaf. But its just works. VNI 10150 working without type-2 announce... (vni 20601 makes with traditional bridge, vtep 0.101 is a same as 0.1 but from different nve if)

bras-evpn# show evpn mac vni 20601
Number of MACs (local and remote) known for this VNI: 2
Flags: N=sync-neighs, I=local-inactive, P=peer-active, X=peer-proxy
MAC               Type   Flags Intf/Remote ES/VTEP            VLAN  Seq #'s
2c:c8:1b:79:55:a9 local        uplink.601                           0/0
48:a9:8a:2b:0b:fa remote       10.131.0.101                         0/0
bras-evpn# show evpn mac vni 10150
Number of MACs (local and remote) known for this VNI: 1
Flags: N=sync-neighs, I=local-inactive, P=peer-active, X=peer-proxy
MAC               Type   Flags Intf/Remote ES/VTEP            VLAN  Seq #'s
48:a9:8a:2b:0b:fa remote       10.131.0.1                           0/0

On remote leaf:

LEAF-1# show mac address-table vlan 150
          Mac Address Table
-------------------------------------------
(*)  - Security Entry     (M)  - MLAG Entry
(MO) - MLAG Output Entry  (MI) - MLAG Input Entry
(E)  - EVPN Entry         (EO) - EVPN Output Entry
(EI) - EVPN Input Entry   
Vlan    Mac Address       Type        Ports
----    -----------       --------    -----
150     48a9.8a2b.0bfa    dynamic     eth-0-2(EO)
150     2cc8.1b79.55a9    dynamic     VxLAN: 10.131.0.1->10.131.0.2
Lolikololix commented 12 months ago

this working only with starry-network switches, and not with juniper and option "encapsulate-inner-vlan" no bgp advertisments - no forwarding

github-actions[bot] commented 5 months ago

This issue is stale because it has been open 180 days with no activity. Comment or remove the autoclose label in order to avoid having this issue closed.

frrbot[bot] commented 5 months ago

This issue will be automatically closed in the specified period unless there is further activity.

shaneshort commented 4 months ago

I'm also trying to get this working as well, can we re-open this?