[c-nsp] ME3600X - Bridge Domain Routing with SVI

Steve McCrory smccrory at gcicom.net
Tue Sep 4 08:46:40 EDT 2012 

Hi Reuben,

Thanks for the pointers. I can confirm that vlan 200 has been defined on
the 3524. I can also confirm that the 3524 doesn't support q-in-q and
I'm currently looking for at least a 3550 that may be lurking in stores
somewhere.

However, I'll provide a bit more information on what I'm trying to
achieve:

I'm trying to replicate the delivery of Ethernet circuits to us by our
carrier. At the CE-end, we are assigned an S-VLAN which we tag on frames
towards them. At the PE-end, the carrier's bearer lands on a trunk port
and each site is presented to us as the S-VLAN which we can then trunk
onwards or terminate Layer 3 on an SVI etc.

With this in mind, I'm trying to double-tag frames on the CE,
encapsulating a C-VLAN inside the S-VLAN. On the ME3600 I'd like to
strip off the S-VLAN and then terminate the C-VLAN on an SVI.

I hope this clarifies my aims and objectives to hopefully encourage
further advice

Thanks

Steven


-----Original Message-----
From: Reuben Farrelly [mailto:reuben-cisco-nsp at reub.net] 
Sent: 04 September 2012 12:31
To: Steve McCrory
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] ME3600X - Bridge Domain Routing with SVI

Hi Steve

A few things to check:

1. You have vlan 200 created on the 3524 (the commands you have in the 
diagram will be permitted without the actual vlan existing on the
switch)

2. You may need to set the q-in-q outer tag on the 3524 with the 
following commands on the Fa0/1 port:

switchport mode dot1q-tunnel
switchport access vlan 200

And just have the 1841 pass single tagged frames to the 3524, allowing 
the 3524 to add the extra (outer) q tag.  Obviously this is slightly 
different to what you are doing now but it's more common - may be what 
you actually want to do.  Assuming that the 3524 supports dot1q-tunnel -

3550s, 3560s and above all do, can't remember if the 3524 can or not.

3.  Don't forget to increase the MTU globally on the 3524 and on the 
ME3600 per-port to at least 1504 to account for the extra q tag.  You'll

definitely need more than 1500 (the default) to avoid very nasty layer 2

MTU problems.  This won't fix the pinging problem but it will cause much

hair loss later on if you don't address it at the time of setup ie now.

4.  And lastly, I have run into problems with this sort of thing before 
with carriers in between the various devices permitting (or more 
specifically, not actually permitting) double tagged frames across their

networks.  Not sure if this applies to you or not.

Hope this helps.  I've been down this learning curve myself in the last 
12 months, once you master it the metro ethernet gear is simply 
fantastic at this sort of stuff and you'll wonder how people ever build 
customer facing networks without it :-)

Reuben


On 4/09/2012 8:30 PM, Steve McCrory wrote:
> Hi list,
>
>
>
> I'm having a play about with the EVC features of the ME3600 and I've
hit
> a problem with Bridge Domain Routing.
>
>
>
> I have a CE configured with stacked VLANs connected to the trunk port
of
> a 3524, with an outer VLAN of 200 and an inner VLAN of 100. The 3524
has
> a trunk port connected to an ME3600X. VLAN 200 is defined locally on
the
> 3524 and allowed on both trunk ports.
>
>
>
> The corresponding port on the ME3600 has been configured with a
service
> instance, matching double-tagged frames (200/100). I've popped the two
> tags and I'm trying to ping from an SVI on the ME3600 back to the CE
> interface but without success. I've followed the Cisco config guide
for
> enabling bridge domain routing with two tags


 
Steve McCrory
Senior Network Engineer
  
GCI Com
Cedar Court Office Park
Denby Dale Road
Calder Grove
Wakefield
WF4 3QZ
 
Office:   0844 443 3537
Fax:      0844 443 3540
http://www.gcicom.net/


This email has been swept by Webroot for viruses. Any files transmitted with it are confidential and intended solely for the email recipient. If you are not the intended recipient please delete this email immediately. Be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited. If you have received this email in error please notify the system administrator. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the company. Finally, the recipient should check this email and any attachments for the presence of viruses.


GCI Com incorporates the following Group Companies:
GCI Telecom Group Limited Reg. No. 5396496, Edge Telecommunications Ltd Reg. No. 5748740, Edge Telecom Ltd Reg. No. 3101247, IP Infrastructures Ltd Reg. No. 4657026, Invomo Ltd Reg. No. 6267056, NetServices UK Ltd Reg. No. 7118768, WAN Services Ltd Reg. No. 4082862. All Registered in England and Wales, Registered Office: Global House, 2 Crofton Close, Lincoln, LN3 4NT

More information about the cisco-nsp mailing list