[c-nsp] ME3600X - Bridge Domain Routing with SVI

Reuben Farrelly reuben-cisco-nsp at reub.net
Tue Sep 4 07:30:32 EDT 2012 

Hi Steve

A few things to check:

1. You have vlan 200 created on the 3524 (the commands you have in the 
diagram will be permitted without the actual vlan existing on the switch)

2. You may need to set the q-in-q outer tag on the 3524 with the 
following commands on the Fa0/1 port:

switchport mode dot1q-tunnel
switchport access vlan 200

And just have the 1841 pass single tagged frames to the 3524, allowing 
the 3524 to add the extra (outer) q tag.  Obviously this is slightly 
different to what you are doing now but it's more common - may be what 
you actually want to do.  Assuming that the 3524 supports dot1q-tunnel - 
3550s, 3560s and above all do, can't remember if the 3524 can or not.

3.  Don't forget to increase the MTU globally on the 3524 and on the 
ME3600 per-port to at least 1504 to account for the extra q tag.  You'll 
definitely need more than 1500 (the default) to avoid very nasty layer 2 
MTU problems.  This won't fix the pinging problem but it will cause much 
hair loss later on if you don't address it at the time of setup ie now.

4.  And lastly, I have run into problems with this sort of thing before 
with carriers in between the various devices permitting (or more 
specifically, not actually permitting) double tagged frames across their 
networks.  Not sure if this applies to you or not.

Hope this helps.  I've been down this learning curve myself in the last 
12 months, once you master it the metro ethernet gear is simply 
fantastic at this sort of stuff and you'll wonder how people ever build 
customer facing networks without it :-)

Reuben


On 4/09/2012 8:30 PM, Steve McCrory wrote:
> Hi list,
>
>
>
> I'm having a play about with the EVC features of the ME3600 and I've hit
> a problem with Bridge Domain Routing.
>
>
>
> I have a CE configured with stacked VLANs connected to the trunk port of
> a 3524, with an outer VLAN of 200 and an inner VLAN of 100. The 3524 has
> a trunk port connected to an ME3600X. VLAN 200 is defined locally on the
> 3524 and allowed on both trunk ports.
>
>
>
> The corresponding port on the ME3600 has been configured with a service
> instance, matching double-tagged frames (200/100). I've popped the two
> tags and I'm trying to ping from an SVI on the ME3600 back to the CE
> interface but without success. I've followed the Cisco config guide for
> enabling bridge domain routing with two tags

More information about the cisco-nsp mailing list