Solved: Interconnecting router bridge domains and etherswitch VLANs

rbeal · ‎03-31-2021

OK I think I know the answer to this question but would be good to have confirmation.

I have a ISR4331 running XE 16.12.05 with an NIM-ES2-8-P etherswitch module installed.

The switch module has a couple of vlans which I want to trunk over fibre to another switch in the site via one of the router interfaces Gi0/0/0 ot Gi0/0/2 using the SFP port.

It seems that this 'could' be possible using bridge domains but there seems to be a limitation that the router bridge domain and the etherswitch vlan are not connected.

Config snippet

bridge-domain 100
bridge-domain 200

!

interface GigabitEthernet0/0/0
no ip address
media-type sfp
negotiation auto
service instance 100 ethernet
encapsulation dot1q 100
bridge-domain 100
!
service instance 200 ethernet
encapsulation dot1q 200
bridge-domain 200

!

interface GigabitEthernet0/1/2
switchport access vlan 100
switchport mode access
spanning-tree portfast
!

interface Vlan100
ip address 192.169.100.200 255.255.255.0

!

interface BDI100
no ip address
encapsulation dot1Q 100
!
interface BDI200
ip address 172.21.100.20 255.255.255.0
encapsulation dot1Q 200

!

Dependant upon where the ip address is defined BDI100 or VLAN100 reachability is limited to devices connected to the etherswitch or the adjacent switch via Gi0/0/0.

When I look at spanningtree for vlan 100 we get this.

sh spanning-tree vlan 100

G0:VLAN0100
Spanning tree enabled protocol rstp
Root ID Priority 32868
Address bce7.12e3.df61
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec

Bridge ID Priority 32868 (priority 32768 sys-id-ext 100)
Address bce7.12e3.df61
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Aging Time 300 sec

Interface Role Sts Cost Prio.Nbr Type
------------------- ---- --- --------- -------- --------------------------------
Gi0/1/2 Desg FWD 4 128.12 P2p Edge

G1:VLAN0100
Spanning tree enabled protocol rstp
Root ID Priority 32868
Address b4e9.b00f.3f80
Cost 19
Port 6 (GigabitEthernet0/0/0)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec

Bridge ID Priority 32868 (priority 32768 sys-id-ext 100)
Address bce7.12e3.df62
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Aging Time 300 sec

Interface Role Sts Cost Prio.Nbr Type
------------------- ---- --- --------- -------- --------------------------------
Gi0/0/0 Root FWD 19 128.6 P2p

Implying two completely isolated domains.

Does anyone know if these can be linked and the config changes needed, before I go and buy an SM-X-16G4M2X with the SFPs in the module.

rbeal · ‎04-08-2021

I eventually answered my own question and will post here if it is helpful for anyone else. Essentially the requirement is to move the L3 vlan config to the BDI and create a service instance on the VLAN interfaces

hope this helps anyone trying to find the answer.

bridge-domain 100
bridge-domain 200

!

interface GigabitEthernet0/0/0
no ip address
media-type sfp
negotiation auto
service instance 100 ethernet
encapsulation dot1q 100
bridge-domain 100
!
service instance 200 ethernet
encapsulation dot1q 200
bridge-domain 200

!

interface GigabitEthernet0/1/2
switchport access vlan 100
switchport mode access
spanning-tree portfast
!

interface Vlan100
i~~p address 192.169.100.200 255.255.255.0~~

no ip address

service instance 100 ethernet

encapsulation dot1q 100

bridge-domain 100

!

interface BDI100
~~no ip address~~

ip address 192.169.100.200 255.255.255.0
encapsulation dot1Q 100
!
interface BDI200
ip address 172.21.100.20 255.255.255.0
encapsulation dot1Q 200

!

View solution in original post

rbeal · ‎04-08-2021