Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1574
Views
0
Helpful
2
Replies

Multipoint L2VPN and BVI

Go to solution
ProNtokz
Level 1
Level 1

‎08-14-2019 03:48 AM

Hi, am faced with a rather weird one. I have configured a L2VPN between a pair of NCS5501`s, and connected end devices(CPEs) to the attached VLAN. All is working, except connectivity to a BVI interface configured on on one of the routers, from the remote peer and its connected devices.

Find attached a topology of the physical layout.

 

Here is the Config:

PR-R1

!
l2vpn
pw-class VPLS
encapsulation mpls
!
!
bridge group CUST_SET1
bridge-domain VL10_CloudC
interface GigabitEthernet0/0/0/0.10
!
vfi VL10_CloudC
neighbor 172.31.253.1 pw-id 10
pw-class VPLS
!
!
routed interface BVI10
!
!
!
interface GigabitEthernet0/0/0/0.10 l2transport
encapsulation dot1q 10
rewrite ingress tag pop 1 symmetric

PR-R2

!
l2vpn
pw-class VPLS
encapsulation mpls
!
!
bridge group CUST_SET1
bridge-domain VL10_CloudC
interface GigabitEthernet0/0/0/0.10
!
vfi VL10_CloudC
neighbor 172.31.254.1 pw-id 10
pw-class VPLS
!
!

!
interface GigabitEthernet0/0/0/0.10 l2transport
description CloudC
encapsulation dot1q 10
rewrite ingress tag pop 1 symmetric
!

 

Topology.JPG

 

I cannot reach the BVI interface on PR-R1 from C-R2 or PS-SW2, but I can get to PS-SW1 and C-R1 from these

devices(C-R2 or PS-SW2).

 

Any ideas, tips, solutions will be much appreciated.

 

 

 

 

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ChasMac
Level 1
Level 1

‎08-17-2019 09:51 AM - edited ‎08-17-2019 09:53 AM

We have also run into this on a 5501-SE vs. an ASR9001.   From what we understand, while the command is accepted into the config (routed interface BVIxxx) it will only work with physical interfaces, not with VFIs.

As explained to us -- due to the Merchant Silicon-based product (the 55xx) - it has a pipeline architecture which means a packet can only pass through the internals once -- eg, in this case -- a VFI termination, or a BVI termination -- but not both.

We ended up doing a "hairpin" as a work-around (a bad kludge - and wasting ports/bandwidth licensing) -- eg, terminate the VPLS on a physical interface (in l2transport mode), and then literally connect that L2 port back into the router itself, and on that port, it is a L3 "ip address" port.   We do this as "matching-pair" sub-interfaces on each L2/L3 port to be able to accomplish the same thing as "routed interface BVIxxx"

...Chas

View solution in original post

0 Helpful
2 Replies 2

Go to solution
ChasMac
Level 1
Level 1

‎08-17-2019 09:51 AM - edited ‎08-17-2019 09:53 AM

We have also run into this on a 5501-SE vs. an ASR9001.   From what we understand, while the command is accepted into the config (routed interface BVIxxx) it will only work with physical interfaces, not with VFIs.

As explained to us -- due to the Merchant Silicon-based product (the 55xx) - it has a pipeline architecture which means a packet can only pass through the internals once -- eg, in this case -- a VFI termination, or a BVI termination -- but not both.

We ended up doing a "hairpin" as a work-around (a bad kludge - and wasting ports/bandwidth licensing) -- eg, terminate the VPLS on a physical interface (in l2transport mode), and then literally connect that L2 port back into the router itself, and on that port, it is a L3 "ip address" port.   We do this as "matching-pair" sub-interfaces on each L2/L3 port to be able to accomplish the same thing as "routed interface BVIxxx"

...Chas

0 Helpful

Go to solution
ProNtokz
Level 1
Level 1
In response to ChasMac

‎08-19-2019 06:47 AM

Yes Chas,

This was confirmed to me by Cisco TAC.

Thanks!

0 Helpful
Customers Also Viewed These Support Documents