07-11-2016 05:44 AM - edited 03-01-2019 08:18 AM
Hi,
I hope someone can help me in resolving this OTV issue. I have setup 2 ASR1002-X routers on a WAN connection and they see each other as adjacent server, so that is working. However in the left datacenter we have a different VLAN numbering we can't use in the right datacenter, so we have to rewrite the VLAN tag...
With these configurations, the mac-addresses located on the left datacenter aren't visible on the right OTV router via 'show otv route vlan 200', it feels like I'm overlooking something really small, but I can't find much on the internet.
Please help? :-) Thanks!
*******************************************************************
LEFT SIDE OTV
otv fragmentation join-interface Port-channel1
otv site-identifier 0001.0001.0001
!
interface Port-channel1
description *** provider OTV WAN-side ***
mtu 9216
ip address 172.30.40.1 255.255.255.224
no negotiation auto
!
interface Port-channel2
description *** switch OTV LAN-side ***
no ip address
no negotiation auto
!
service instance 2411 ethernet
encapsulation dot1q 200
rewrite ingress tag translate 1-to-1 dot1q 2411 symmetric
bridge-domain 2411
!
interface Overlay1
no ip address
otv join-interface Port-channel1
otv vpn-name OTV-VPN
no otv suppress arp-nd
otv adjacency-server unicast-only
service instance 2411 ethernet
encapsulation dot1q 200
bridge-domain 2411
!
*******************************************************************
RIGHT SIDE OTV
otv fragmentation join-interface Port-channel1
otv site-identifier 0002.0002.0002
!
interface Port-channel1
description *** provider OTV WAN-side ***
mtu 9216
ip address 172.30.36.29 255.255.255.224
no negotiation auto
!
interface Port-channel2
description *** switch OTV LAN-side ***
no ip address
no negotiation auto
!
service instance 2411 ethernet
encapsulation dot1q 2411
bridge-domain 2411
!
interface Overlay1
no ip address
otv join-interface Port-channel1
otv vpn-name OTV-VPN
no otv suppress arp-nd
otv adjacency-server unicast-only
service instance 2411 ethernet
encapsulation dot1q 2411
bridge-domain 2411
!
*******************************************************************
Solved! Go to Solution.
07-13-2016 03:48 AM
Hello Tom,
Solution of your problem is to correct service instance configuration on Overlay interface on LEFT SIDE OTV.
It should be
!
interface Overlay1
no ip address
otv join-interface Port-channel1
otv vpn-name OTV-VPN
no otv suppress arp-nd
otv adjacency-server unicast-only
service instance 2411 ethernet
encapsulation dot1q 2411
bridge-domain 2411
!
Then it should works.
This is about a logic how frame is flowing through OTV router. For frames coming from RIGHT SIDE OTV they are going through ports PO1 - Overlay interface - PO2 and vice versa. Currently service instance 2411 on Overlay interface is expecting frames with with VLAN 200 (encapsulation dot1q 200) but your frames has tag with VLAN 2411.
07-13-2016 03:48 AM
Hello Tom,
Solution of your problem is to correct service instance configuration on Overlay interface on LEFT SIDE OTV.
It should be
!
interface Overlay1
no ip address
otv join-interface Port-channel1
otv vpn-name OTV-VPN
no otv suppress arp-nd
otv adjacency-server unicast-only
service instance 2411 ethernet
encapsulation dot1q 2411
bridge-domain 2411
!
Then it should works.
This is about a logic how frame is flowing through OTV router. For frames coming from RIGHT SIDE OTV they are going through ports PO1 - Overlay interface - PO2 and vice versa. Currently service instance 2411 on Overlay interface is expecting frames with with VLAN 200 (encapsulation dot1q 200) but your frames has tag with VLAN 2411.
07-15-2016 08:14 AM
Hello Jacek,
That worked like a charm! Thank you very much!!! :-)
If I run into any problems maybe we will hire you or the company you work for :-P
Cheers, Tom
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide