As shown in Figure 5, when a packet is sent from VNI A to VNI B, the ingress VTEP routes the packet to the Layer-3 VNI. It rewrites the inner destination MAC address to the egress VTEP’s router MAC address and encodes the Layer-3 VNI in the VXLAN header. After the egress VTEP receives the encapsulated VXLAN packet, it first decapsulates the packet by removing the VXLAN header. Then it looks at the inner packet header. Because the destination MAC address in the inner packet header is its own MAC address, it performs a Layer-3 routing lookup. The Layer-3 VNI in the VXLAN header provides the VRF context in which this routing lookup is performed.
I'm confused with the explanation, I guess when they refer to Layer-3 VNI they are talking about the VNI we declared below the VRF context (in the same document they used 39000 and 39010). If is that the case the corresponding interface VLAN of those VNI has no IP address, so how the traffic is routed? My other question is, for instance if we have only two VTEPs in the topology, in the data-packet the destination IP address of the VXLAN header (outer header) is the same if we routed or bridged the traffic?
Hi,I'm learning vxlan right now,so I'll try to answer your questions.
From my understanding,when the VTEP doing IRB,it does not need an ip address for l3 vni,it only uses the l3 vni MAC to encapsulate the packet(inner packet),the inner packet is like this:
source mac:ingress vtep router mac dest mac:egress vtep router mac
source ip:source user ip dest ip:dest user ip
As for your other question,I think the answer is Yes.Vxlan uses the same egress vtep ip transfering either routed or bridged user traffic.Just consider Vxlan a tunnel, and the address of the tunnle endpoint always keeps the same no matter what's travelling in it.
Hello,I understand that Contracts in ACI that are enfored by the leafs are stateless ACL. When is an ACI Contract stateful?- as far as I know when using AVS/AVE?- what about when using Kubernetes/Openstack integration with ovs?
[ The link to the discussion will be published on October 26th ]
This event is an opportunity to have your questions answered on tools available for Nexus 3000 and 9000 Series device/network performance monitoring.
Michal will cover usage, configuration, ...
I'm having a strange problem redistributing iBGP routes to OSPF on Nexus 9000. Initially I had an open prefix list to get things working. Some of the routes weren't being redistributed to OSPF and I found this article which helped which said you nee...