Dell S3048-ON EMC Networking Virtualization Overlay with BGP EVPN - Page 11

11

Dell EMC Networking Virtualization Overlay with BGP EVPN

3.2

BGP EVPN VXLAN operation

EVPN uses BGP to exchange endpoint MAC and IP address information between VTEPs. When a host

sends a packet to an endpoint, the switch looks up the routing table for a match. If it finds a match that exists

behind another VTEP, the packet is encapsulated with VXLAN and UDP headers and encapsulated again

with outer IP and Ethernet headers for transport over the leaf-spine network. When the packet arrives at the

destination VTEP, the outer Ethernet, IP, UDP, and VXLAN headers are removed, and the switch sends the

original packet to the endpoint.

3.3

Integrated routing and bridging (IRB)

With EVPN, overlay routing occurs on leaf switches. As of OS10EE version 10.4.3.1, Dell EMC

PowerSwitches support asymmetric IRB. This means that overlay routing, also known as RIOT, occurs on

ingress leaf switches. The packets travel over the leaf and spine network on the destination VNI. When the

packets arrive at the destination VTEP, they are bridged to the endpoint.

3.4

Anycast gateway

Anycast gateways with the same IP address are deployed to each leaf pair connected to servers. The anycast

gateway IP address is set as the default gateway for all VMs on that virtual network. VMs on VNIs with

anycast gateways use the same gateway information while behind different leaf pairs. When those VMs

communicate with different networks, their local leaf switches always do the routing. This replaces Virtual

Router Redundancy Protocol (VRRP) and enables VMs to migrate from one leaf pair to another without the

need to change the network configuration.

3.5

Indirect gateway

As shown in Figure 6, VNI C does not have an anycast gateway configured. It uses an indirect gateway

attached to the border leafs instead. In this case, the indirect gateway is a physical switch acting as a

firewall/gateway to the Internet. When a VM on VNI C sends a packet destined for another network, it is

tunneled to the border leaf pair where it is forwarded to the indirect gateway which makes the proper

forwarding decisions according to its routing table.

In this deployment example, VNIs A and B also use the indirect gateway to access the Internet by configuring

static routes.

Section	Page
1 Introduction	6
1.1 Typographical conventions	6
1.2 Attachments	6
2 Hardware Overview	7
2.1 Dell EMC PowerSwitch S5248F-ON	7
2.2 Dell EMC PowerSwitch S4148U-ON	7
2.3 Dell EMC PowerSwitch Z9264F-ON	8
2.4 Dell EMC PowerSwitch S3048-ON	8
2.5 Dell EMC PowerEdge R740xd server	8
3 BGP EVPN VXLAN overview	9
3.1 The VXLAN protocol	10
3.2 BGP EVPN VXLAN operation	11
3.3 Integrated routing and bridging (IRB)	11
3.4 Anycast gateway	11
3.5 Indirect gateway	11
4 Topology	12
4.1 Leaf-spine underlay	12
4.1.1 BGP ASNs and router IDs	13
4.1.2 Point-to-point IP networks	13
4.2 Underlay network connections	15
4.3 BGP EVPN VXLAN overlay	16
4.4 OOB management network connections	17
5 Switch preparation	19
5.1 Check switch OS version	19
5.2 Verify license installation	19
5.3 Factory default configuration	20
5.4 Configure switch port profile (S4148U-ON only)	20
6 Configure leaf switches	21
6.1 Initial configuration settings	21
6.2 VLT configuration	22
6.3 Virtual network configuration	22
6.4 VLAN configuration	24
6.5 Downstream interface configuration	25
6.6 Upstream interface configuration	26
6.7 Route map configuration	26
6.8 Configure UFD in reverse	27
6.9 BGP configuration	28
6.10 Static route configuration	30
7 Configure spine switches	31
7.1 Initial configuration settings	31
7.2 Downstream interface configuration	31
7.3 Route map configuration	33
7.4 BGP configuration	33
8 Leaf switch validation	37
8.1 General commands	37
8.1.1 show interface status	37
8.1.2 show vlan	37
8.1.3 show lldp neighbors	38
8.1.4 show uplink-state-group id_# detail	38
8.2 VLT validation commands	39
8.2.1 show vlt domain_id	39
8.2.2 show vlt domain_id backup-link	39
8.2.3 show vlt domain_id mismatch	39
8.2.4 show vlt domain_id vlt-port-detail	40
8.3 Routing validation commands	41
8.3.1 show bfd neighbors	41
8.3.2 show ip route	41
8.3.3 show ip bgp summary	42
8.4 EVPN validation commands	42
8.4.1 show ip route vrf vrf_name	42
8.4.2 show evpn evi	42
8.4.3 show ip bgp l2vpn evpn summary	43
8.4.4 show ip bgp l2vpn evpn	43
8.4.5 show evpn mac-ip	45
9 Spine switch validation	46
9.1 General commands	46
9.1.1 show interface status	46
9.1.2 show lldp neighbors	46
9.2 Routing validation commands	47
9.2.1 show bfd neighbors	47
9.2.2 show ip route	47
9.2.3 show ip bgp summary	48
9.2.4 show ip bgp l2vpn evpn summary	48
10 VMware host and network configuration	49
10.1 VMware ESXi download and installation	49
10.2 Install and configure VMware vCenter Server 6.7 U1	49
10.3 Add ESXi hosts to vCenter Server	49
10.4 Create VMs and install guest operating systems	50
10.5 vSphere distributed switches	51
10.6 Create a VDS	51
10.7 Add distributed port groups	52
10.8 Create LACP LAGs	52
10.9 Associate hosts and assign uplinks to LAGs	54
10.10 Connect VMs to VDS and port group	56
10.11 Configure networking in the guest OS	57
11 Validate connectivity	58
11.1 Validate tunneled Layer 2 bridging	58
11.2 Validate routing using anycast gateways	59
11.3 Validate routing using the indirect gateway	60
A Gateway/firewall switch configuration	62
A.1 Initial configuration settings	62
A.2 Indirect gateway configuration	62
A.3 Simulated external network interface configuration	63
A.4 Upstream interfaces	63
A.5 Static routes to VNIs	63
B Validated components	64
B.1 Dell EMC PowerSwitches	64
B.2 PowerEdge R740xd Servers	64
B.3 VMware software	64
C Technical resources	65
C.1 Dell EMC product manuals and technical guides	65
C.1 VMware product manuals and technical guides	65
D Fabric Design Center	66

Dell S3048-ON EMC Networking Virtualization Overlay with BGP EVPN - Page 11

BGP EVPN VXLAN operation, Integrated routing and bridging IRB, Anycast gateway, Indirect gateway

Page 11 highlights