Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1869
Views
15
Helpful
5
Replies

VxLAN - underlay traffic to VxLAN

kain.niak
Level 1
Level 1

‎01-03-2021 09:50 AM

Hi guys,

 

I currently have some trouble with VXLAN.

Currently I want to test a simple topology with 1 Catalyst 9500 as spine switch and 2 Catalyst 9300 as leaf switch as below:

       vxlan_topo.PNG

My current configuration is very simple:

  • Underlay running OSPF
  • Overlay running BGP
  • VXLAN over BGP EVPN using multicast (PIM sparse-mode)
  • No VRF/no border leaf

The l2vpn evpn is up, each vtep can learn MAC-address of the remote host. So I assume my VXLAN is successful.

But I'm unable to route normal traffic to VXLAN (host3 to host1/host2), ping is successful but other traffic has problem. It seems that from Spine switch, it see 2 different paths to the subnet 192.168.1.x via leaf1 and leaf2.

host3 >> spine >> leaf1 >> leaf2 >> host 2 >> leaf2 >> spine >> host3.

Does anyone have idea about this or any guide that I can follow to solve this problem?

 

Thank you!

5 Replies 5

omz
VIP Alumni
VIP Alumni

‎01-03-2021 10:39 AM

You dont connect end hosts to spines .. only leafs 

kain.niak
Level 1
Level 1
In response to omz

‎01-03-2021 02:42 PM

Yes. But this is just for lab purpose. This host3 stand for traditional network..

0 Helpful

MHM Cisco World
VIP
VIP

‎01-03-2021 06:31 PM

Bro spine must not have any idea about the subnet,

The underlaying config to connect loopback "router id" of leaf to spine only.

The vxlan do the job of forward traffic between host.

Just remove subnet from ospf and let vxlan do forwarding 

kain.niak
Level 1
Level 1
In response to MHM Cisco World

‎01-03-2021 07:10 PM

Thanks. I'm just trying to tweak the usage of VXLAN a little bit. I'm having a case that need to extend a L2 network across 2 sites. We have 2 core (stacking virtual) and a L3 switch at each site.

The job is done easily with VXLAN. Next step is how to communicate with this VXLAN. Since this is just a small topo, I cannot afford a border node to let the traffic in VXLAN exit. I have some reference to other vendor and see they use something called naked routing or route leak to advertise routes.

Do you have any suggestion? I guess VXLAN or any L2 VPN method is not the solution for my case?

0 Helpful

BCKWDS
Level 1
Level 1

‎09-09-2022 03:29 PM

Read up on Border Leaf or Border Spine for ISP connectivity then look into Multisite for connecting two remote locations.

 

0 Helpful
Customers Also Viewed These Support Documents