[c-nsp] Loopback/VLAN question

Arie Vayner (avayner) avayner at cisco.com
Tue Dec 15 15:13:30 EST 2009 

Frank,

The right way to solve it would be to use the ES20 (or more actually the
more recent ES+) modules.
This would allow you to create a separate EVC/EFP (service-instance) per
site, using whatever VLAN IDs (even reusing them, or using QinQ) and
then bridge-domain them all to the same central global bridge VLAN,
which would be the Layer 3 service endpoint (for DHCP).

"Use the right tools for the job"

Anyway, with your setup, if this is not becoming a big service (which
would then make sense to invest in new HW), then maybe you should just
break them into separate L3 domains.

Another option is to use the MetroE model of uPE and nPE, where a uPE is
used for some parts of the service. This could be a L2 switch (CPE?
ME3400-2CS) to do the VLAN translation...

Hope this helps.

Arie

-----Original Message-----
From: Frank Bulk - iName.com [mailto:frnkblk at iname.com] 
Sent: Tuesday, December 15, 2009 21:56
To: Arie Vayner (avayner); cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] Loopback/VLAN question

I have 5 remote sites where I'm doing FTTH and transporting the traffic
over
a third-party transport gear to our HQ.  Each site-HQ link is a separate
VLAN and uniquely numbered.  My preference is to burn up only one port
on
the Cisco 7609-S (RSP720-3C with WS-X6748-DFC3C) and transport gear by
trunking the traffic between the two boxes.  But I don't want to have a
separate IP address pool (with associated static IP /24 and web filter
/24)
for each remote site.  I would like each remote site to use the same
address
pool.  So I'm looking for something like IRB.

SiteA  SiteB  SiteC  SiteD  SiteE
  |      |      |      |      |
VLAN1  VLAN2  VLAN3  VLAN4  VLAN5
  |      |      |      |      |
  =============================
                |
	802.1q tagged (1 thru 5)
                |
             7609-S
                |
	     DHCP server

I could use the transport gear's VLAN-translation and drop off each site
into their own physical port on the 7609-S but have it be the same VLAN,
but
that's burning more ports on both boxes than what I would like.

But perhaps I have to use separate IP address pools for each remote
site.
That would have the benefit of reducing the L3-broadcast traffic.

Frank

-----Original Message-----
From: Arie Vayner (avayner) [mailto:avayner at cisco.com] 
Sent: Tuesday, December 15, 2009 1:32 PM
To: frnkblk at iname.com; cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] Loopback/VLAN question

Frank,

Can you please explain what do you want to achieve?
I think this should be done in a different way.

Also, what HW do you have?

Arie

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Frank Bulk -
iName.com
Sent: Tuesday, December 15, 2009 20:19
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Loopback/VLAN question

I have several uniquely numbered 802.1q tagged links coming into a Cisco
7609-S (12.2(33)SRB3) on a single physical port.  I would like to use
the
same group of subnets for each VLAN and I tried using loopbacks but it
doesn't work.  Any ideas on what I'm doing wrong?

interface Loopback 2
 ip dhcp relay information trusted
 ip dhcp relay information option-insert none
 ip dhcp relay information policy-action keep
 ip address a.b.c.1 255.255.255.0
 ip address a.b.d.1 255.255.255.0 secondary
 ip address a.b.e.1 255.255.255.0 secondary
 ip helper-address w.x.y.z
 arp timeout 300

interface Vlan10
 ip unnumbered loopback 2
 ip dhcp relay information trusted
 ip dhcp relay information option-insert none
 ip dhcp relay information policy-action keep
 ip helper-address w.x.y.z

interface Vlan11
 ip unnumbered loopback 2
 ip dhcp relay information trusted
 ip dhcp relay information option-insert none
 ip dhcp relay information policy-action keep
 ip helper-address w.x.y.z

interface GigabitEthernet1/1
 switchport
 switchport trunk encapsulation dot1q
 switchport trunk allowed vlan 10, 11
 switchport mode trunk
end

_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list