Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
50
Views
0
Helpful
0
Replies

IPv6 ND problem on Nexus 92160YC-X and VXLAN EVPN

vteronen
Community Member

‎02-19-2025 10:53 AM

Hi,

I have been banging my head against the wall with Nexus 92160YC-X for a while.
We are running a EVPN-VXLAN based network with mostly Juniper gear and are looking to add one Nexus switch to provide L2 ports (so no L3 SVI:s or anything. Just bridge ports towards the fabric).

I have followed this documentation: Cisco Nexus 9000 Series VXLAN configuration guide 93x 
And I have it working for IPv4 but not for IPv6. I think it's because the switch doesn't do IPv6 ND Suppression on L2 ports and doesn't learn the IPv6 addresses because of this.

So on to configuration

Basically I have a port

 

 

 

interface Ethernet1/52
  description "Transit: ISP"
  switchport
  switchport mode trunk
  switchport trunk allowed vlan 1701
  no shutdown

 

 

 

Which is connected to an ISP device with v4 & v6 addresses. This is connected to our EVPN-VXLAN fabric which is Juniper based. V4 is working just fine but V6 is not and it's because the Nexus doesn't know how to learn the v6 addresses from the switchport.

if I do

 

 

 

show l2route evpn mac-ip all
Flags -(Rmac):Router MAC (Stt):Static (L):Local (R):Remote (V):vPC link 
(Dup):Duplicate (Spl):Split (Rcv):Recv(D):Del Pending (S):Stale (C):Clear
(Ps):Peer Sync (Ro):Re-Originated (Orp):Orphan 
Topology    Mac Address    Host IP                                 Prod   Flags         Seq No     Next-Hops                              
----------- -------------- --------------------------------------- ------ ---------- ---------- ---------------------------------------
1701        60c7.8d28.6940 123.123.123.86                          ARP    L,            0         Eth1/52                                
1701        0021.59a9.5ff0 123.123.123.87                          BGP    --            0         172.31.254.202 (Label: 1701)           
1701        0021.59a9.5ff0 2001:123:123:123::2                        BGP    --            0         172.31.254.202 (Label: 1701)           
1701        0021.59a9.5ff0 fe80::221:5906:a5a9:5ff0                BGP    --            0         172.31.254.202 (Label: 17

 

 

 

I can see the V4 side coming from our Fabric & the ISP device and the also V6 side from our Fabric because it's broadcasted through BGP

The v4 side started working after I added suppress-arp to the nve1 interface

 

 

 

interface nve1
no shutdown
host-reachability protocol bgp
source-interface loopback0
global suppress-arp
member vni 1701
suppress-arp
ingress-replication protocol bgp

 

 

 

Is there anything I could try?
I am currently on the newest firmware I can see on the Cisco site (NXOS: version 9.3(14)) for the switch I have.

If I change the port to a regular L3 port then I can ping ISP device & I can see it in IPv6 neighbours so I am 100% that the problem is with the Nexus device I have.

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card