01-24-2012 08:59 PM - edited 03-07-2019 04:31 AM
Hi,
Can anyone tell me how QinQ works?
Explaination with example would be highly appreciated.
There is a very limited document about QinQ on Internet and i really want to know how it really works?
Thanks,
Asif Shaikh
Solved! Go to Solution.
01-24-2012 09:38 PM
Hello Asif,
I believe you might have already done some reading on Q-in-Q. So, i will add some more things which can make it feel simpler.
Now, from your point (as a customer), you need to extend your Layer 2 backbone from Site-A to Site-B.
If you were to send across your VLAN onto the service provider's network, there would have been a chance of leaking out your VLANs into other customers network. How would you securely transport your VLANs between Site-A & Site-B. So, there come Ethernet QinQ tunneling. You basically create a Layer 2 ethernet tunnel between Site-A & B to transport your VLANs.
How it works
Now, lets do the configuration (I will pretend to be a customer as well as a service provider). Lets assume your topology is something like this :
CUSTOMER_SITEA -->SERVICE-PROVIDER-SW1-A --> SERVICE-PROVIDER-SW1-B -->CUSTOMER_SITEB
On your SITEA switch your configuration is same as you configure a trunk port
interface fas 1/0
description ###Connecting to Service-Provider###
switchport trunk encapsulation dot1q
switchport mode trunk
On the service provider switch A
interface fas0/24
description ###Connecting to Customer-SiteA###
switchport access vlan 100
switchport mode dot1q-tunnel
l2protocol-tunnel cdp <--- if you need to transport CDP & STP over tunnel
l2protocol-tunnel stp
On the service provider switch B
interface fas0/24
description ###Connecting to Customer-SiteB###
switchport access vlan 100
switchport mode dot1q-tunnel
l2protocol-tunnel cdp
l2protocol-tunnel stp
On the Customer Site-B
interface fas 1/0
description ###Connecting to Service-Provider###
switchport trunk encapsulation dot1q
switchport mode trunk
So, lets replay whats happening here now. You notice the configuration of your customer switches? They are configured to be trunk ports whereas the service provider side is access vlan. What happens is, customer will send out all tagged frames (as its a trunk) & service provider switch will receive the same & add a VLAN tag of 100 over it.
Hope i tried to write up neat If it helps, please do rate.
Thanks
Vivek
01-24-2012 09:38 PM
Hello Asif,
I believe you might have already done some reading on Q-in-Q. So, i will add some more things which can make it feel simpler.
Now, from your point (as a customer), you need to extend your Layer 2 backbone from Site-A to Site-B.
If you were to send across your VLAN onto the service provider's network, there would have been a chance of leaking out your VLANs into other customers network. How would you securely transport your VLANs between Site-A & Site-B. So, there come Ethernet QinQ tunneling. You basically create a Layer 2 ethernet tunnel between Site-A & B to transport your VLANs.
How it works
Now, lets do the configuration (I will pretend to be a customer as well as a service provider). Lets assume your topology is something like this :
CUSTOMER_SITEA -->SERVICE-PROVIDER-SW1-A --> SERVICE-PROVIDER-SW1-B -->CUSTOMER_SITEB
On your SITEA switch your configuration is same as you configure a trunk port
interface fas 1/0
description ###Connecting to Service-Provider###
switchport trunk encapsulation dot1q
switchport mode trunk
On the service provider switch A
interface fas0/24
description ###Connecting to Customer-SiteA###
switchport access vlan 100
switchport mode dot1q-tunnel
l2protocol-tunnel cdp <--- if you need to transport CDP & STP over tunnel
l2protocol-tunnel stp
On the service provider switch B
interface fas0/24
description ###Connecting to Customer-SiteB###
switchport access vlan 100
switchport mode dot1q-tunnel
l2protocol-tunnel cdp
l2protocol-tunnel stp
On the Customer Site-B
interface fas 1/0
description ###Connecting to Service-Provider###
switchport trunk encapsulation dot1q
switchport mode trunk
So, lets replay whats happening here now. You notice the configuration of your customer switches? They are configured to be trunk ports whereas the service provider side is access vlan. What happens is, customer will send out all tagged frames (as its a trunk) & service provider switch will receive the same & add a VLAN tag of 100 over it.
Hope i tried to write up neat If it helps, please do rate.
Thanks
Vivek
01-24-2012 10:06 PM
Thank you Vivek for detailed explaination
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide