Hello @hs08 

Do you please share your config ?

If your provider is doing QinQ, they expect tagged frames from your side, but their QiQ encapsulation will add a second outer VLAN (their service VLAN). If you only configured trunk mode, your switch might be dropping packets because the provider’s outer VLAN is stripping your inner VLAN...

Hello
TBH nothing for you to really to do on the CE side of things apart from creating the trunk or if you are using L3 subinterfaces you just need to make sure you do not have any native vlan within the range of the tagged SP qinq access vlan

Only config port connect to provider with access port. 

That what you need. 

MHM

Interesting replies from others.

I've only done real-world QinQ once, a couple of decades ago, with a MetroE provider.  I don't recall the individual interface statements, but I do recall, it wasn't the usual access or trunk port configuration.  I further recall, the provider gave me the VLAN ID to use on both ends for my connections to them.  QinQ allowed me to use any VLAN ID embedded under the provider's.  Basically and effectively, I was able to trunk between my two sites.

Perhaps, from the other replies, providers expect something different now days.  So, I suggest you contact your provider to determine whether they or you should be doing the initial/final QinQ encapsulation/decapsulation.

Hi All,

The connection now was established. Previously i'm only configure the port connected to the provider as trunk port and the connection can't established. Then i try to add switch port trunk allow vlan 303 in both port and the connection established.

Still not understand why i must add allow vlan since if we not define this mean all vlan is allowed.

Not knowing where you are located, I am not sure what documentation is required by your local telecomm regulators, but in the USA market, regulated/tariffed Ethernet services will usually have a service description filed somewhere that describes the behavior of their offered services. An example of this is AT&T Switched Ethernet Service Guide which contains the service description.

Generically, service descriptions more or less describe, in MEF terms, under what conditions Ethernet frames from a local CE are accepted across the local UNI to be transported by an EVC to the remote UNI and CE. These conditions are defined by the attributes of the service, which would include: port vs vlan service; p2p vs mp; c-tag preservation or not; L2CP transport, peering, or discard; etc. It is then up to the CE to only send traffic that conforms to the subscribed service description, with conforming traffic being delivered in accordance with any applicable SLS/SLA.

TLDR: Your Ethernet SP should be able to provide you with a technical description of the service you are subscribing to, as it is insufficient for them to just say “QinQ”. They should be able to tell you which VLAN IDs are accepted and which are not, what changes, if any, are made to VLAN tags, and what happens to L2 Control Protocol frames when you send one.