[c-nsp] ES20, VPLS & netflow problem

Dmitry Valdov dv at dv.ru
Mon Mar 3 08:52:28 EST 2008 

Hello,

On Mon, 3 Mar 2008, Geir Jensen wrote:

> I don't have a solution for the netflow problem....
> However we are running a 7600/Sup720/ES20/12.2(33)SRB2 - based network,
> and Dmitry's vpls config got me curious.
>
> I notice that the vpls is terminated at layer 3 (ip address x.x.x.x under vlan30), and
> I wonder if this configuration requires any special hardware?

ES20 cards facing MPLS core is enought.

> Also, does any of you have a pointer to any documentation for this kind of configuration?
> On cco, I can only find examples where the VPLS is a (layer2)service connecting customers, and
> no examples where the VPLS is terminated at layer3 at the service provider.

But it works. I'm using it to connect two 76xx with 1M routes over MPLS cloud
which contain 76xx with 256K routes.


I didn't find this configuration in examples and configuration guides but 
it's not in restrictions section too.
So if we have an SVI at the router why not to enable IP processing on it :)
I think, L3 on SVI processed in PFC.


>
>
> Rgds,
> Geir Jensen, ccie #8795
>
> -----Opprinnelig melding-----
> Fra: cisco-nsp-bounces at puck.nether.net
> [mailto:cisco-nsp-bounces at puck.nether.net]PЕ vegne av Dmitry Valdov
> Sendt: 21. februar 2008 15:39
> Til: cisco-nsp at puck.nether.net
> Emne: [c-nsp] ES20, VPLS & netflow problem
>
>
> Hello,
>
> We have configuration with 2 ciscos 76xx/SUP720 connected together via
> 10Gb ports on ES20 (Ethernet Services) cards.
> MPLS is there. Now we need to make VPLS vlan between them (for BGP full
> table). We are exporting netflow information version 5 to the collector.
> When traffic goes directly via 10G ports (routed) everything is OK, but
> if we reroute traffic via VPLS VLAN, there is no netflow information
> exported about traffic entering the router via this vlan. Netflow
> information about every other traffic  (including traffic which enters
> throught normal SVI interfaces) is appears as usualy.
>
>
> IOS 12.2(33)SRB2
>
> Is this bug or feature? Here is part of my configuration:
>
>
> [..]
> ip flow ingress layer2-switched vlan 30
> [..]
> mls flow ip interface-full
> no mls flow ipv6
> mls nde sender version 5
> mls qos
> [..]
> !
> vlan 30
>  name BGP
> !
> [..]
> l2 vfi bgp manual
>  vpn id 30
>  neighbor xx.xx.xx.xx encapsulation mpls
>
> [..]
>
> interface Vlan30
>  description BGP vlan
>  ip address yy.yy.yy.yy 255.255.255.248
>  no ip proxy-arp
>  ip flow ingress
>  load-interval 30
>  xconnect vfi bgp
>
> [..]
>
> ip flow-export source Loopback0
> ip flow-export version 5
> ip flow-export destination zz.zz.zz.zz 9991
>
>
> -- 
> Dmitry Valdov
> CCIE #15379 (R&S and SP)
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>

-- 
Dmitry Valdov
CCIE #15379 (R&S and SP)

More information about the cisco-nsp mailing list