[c-nsp] OTV between couple of CSRs 1000v and dot1q TAG rewriting

Mohammad Khalil eng_mssk at hotmail.com
Tue Sep 1 06:15:21 EDT 2015


Hi all
I got interested in your mail and tried to simulate the feature using GNS3 , please find below my configurations and outputs

Topology:
R1 -- ASR1 -- R3 -- ASR2 -- R2
I have connected the cloud routers to an intermediate router as I cannot connect directly between the clouds

Configurations:

ASR1
hostname ASR1

otv site bridge-domain 1
otv site-identifier 0000.0000.0001

interface Loopback0
 ip address 1.1.1.1 255.255.255.255

interface Overlay1
 no ip address
 otv join-interface GigabitEthernet1
 otv use-adjacency-server 192.168.13.1 unicast-only
 otv adjacency-server unicast-only
 service instance 50 ethernet
  encapsulation dot1q 100
  bridge-domain 200

 service instance 51 ethernet
  encapsulation dot1q 101
  bridge-domain 201

 service instance 52 ethernet
  encapsulation dot1q 33
  bridge-domain 202

interface GigabitEthernet1
 mtu 4470
 ip address 192.168.13.1 255.255.255.0
 negotiation auto

interface GigabitEthernet2
 no ip address
 negotiation auto
 service instance 1 ethernet
  encapsulation untagged
  bridge-domain 1

 service instance 50 ethernet
  encapsulation dot1q 100
  bridge-domain 200

 service instance 51 ethernet
  encapsulation dot1q 101
  bridge-domain 201

 service instance 52 ethernet
  encapsulation dot1q 13
  rewrite ingress tag translate 1-to-1 dot1q 33 symmetric
  bridge-domain 202

router ospf 1
 router-id 1.1.1.1
 network 1.1.1.1 0.0.0.0 area 0
 network 192.168.13.1 0.0.0.0 area 0

ASR2
hostname ASR2

otv site bridge-domain 1
otv site-identifier 0000.0000.0002

interface Loopback0
 ip address 2.2.2.2 255.255.255.255

interface Overlay1
 no ip address
 otv join-interface GigabitEthernet1
 otv use-adjacency-server 192.168.13.1 unicast-only
 service instance 50 ethernet
  encapsulation dot1q 100
  bridge-domain 200

 service instance 51 ethernet
  encapsulation dot1q 101
  bridge-domain 201

 service instance 52 ethernet
  encapsulation dot1q 33
  bridge-domain 202

interface GigabitEthernet1
 mtu 4470
 ip address 192.168.23.2 255.255.255.0
 negotiation auto

interface GigabitEthernet2
 no ip address
 negotiation auto
 service instance 1 ethernet
  encapsulation untagged
  bridge-domain 1

 service instance 50 ethernet
  encapsulation dot1q 100
  bridge-domain 200

 service instance 51 ethernet
  encapsulation dot1q 101
  bridge-domain 201

 service instance 52 ethernet
  encapsulation dot1q 33
  bridge-domain 202

router ospf 1
 router-id 2.2.2.2
 network 2.2.2.2 0.0.0.0 area 0
 network 192.168.23.2 0.0.0.0 area 0

R1
interface Vlan100
 ip address 192.168.100.11 255.255.255.0

interface Vlan101
 ip address 192.168.101.11 255.255.255.0

interface Vlan13
 ip address 192.168.133.1 255.255.255.0

interface FastEthernet1/0
 switchport mode trunk

R2
interface Vlan100
 ip address 192.168.100.12 255.255.255.0

interface Vlan101
 ip address 192.168.101.12 255.255.255.0

interface Vlan33
 ip address 192.168.133.3 255.255.255.0

interface FastEthernet1/0
 switchport mode trunk

Outputs:
R1#ping 192.168.100.12

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.100.12, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 40/265/692 ms

R1#ping 192.168.101.12

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.101.12, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 20/115/272 ms

R1#ping 192.168.133.3 source vlan 13

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.133.3, timeout is 2 seconds:
Packet sent with a source address of 192.168.133.1
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 20/44/80 ms

ASR1# show otv
Overlay Interface Overlay1
 VPN name                 : None
 VPN ID                   : 1
 State                    : UP
 Fwd-capable              : Yes
 Fwd-ready                : Yes
 AED-Server               : Yes
 Backup AED-Server        : No
 AED Capable              : Yes
 Join interface(s)        : GigabitEthernet1
 Join IPv4 address        : 192.168.13.1
 Tunnel interface(s)      : Tunnel0
 Encapsulation format     : GRE/IPv4
 Site Bridge-Domain       : 1
 Capability               : Unicast-only
 Is Adjacency Server      : Yes
 Adj Server Configured    : Yes
 Prim/Sec Adj Svr(s)      : 192.168.13.1

ASR1# show otv route vlan 100

Codes: BD - Bridge-Domain, AD - Admin-Distance,
       SI - Service Instance, * - Backup Route

OTV Unicast MAC Routing Table for Overlay1

 Inst VLAN BD     MAC Address    AD    Owner  Next Hops(s)
----------------------------------------------------------
 0    100  200    c201.1ea0.0000 40    BD Eng Gi2:SI50
 0    100  200    c202.1ce4.0000 50    ISIS   ASR2

2 unicast routes displayed in Overlay1

----------------------------------------------------------
2 Total Unicast Routes Displayed

ASR1# show otv route vlan 101

Codes: BD - Bridge-Domain, AD - Admin-Distance,
       SI - Service Instance, * - Backup Route

OTV Unicast MAC Routing Table for Overlay1

 Inst VLAN BD     MAC Address    AD    Owner  Next Hops(s)
----------------------------------------------------------
 0    101  201    c201.1ea0.0000 40    BD Eng Gi2:SI51
 0    101  201    c202.1ce4.0000 50    ISIS   ASR2

2 unicast routes displayed in Overlay1

----------------------------------------------------------
2 Total Unicast Routes Displayed

ASR1# show otv route vlan 13
Failed to find VLAN 13 in any Overlay

ASR1# show otv route vlan 33

Codes: BD - Bridge-Domain, AD - Admin-Distance,
       SI - Service Instance, * - Backup Route

OTV Unicast MAC Routing Table for Overlay1

 Inst VLAN BD     MAC Address    AD    Owner  Next Hops(s)
----------------------------------------------------------
 0    33   202    c201.1ea0.0000 40    BD Eng Gi2:SI52
 0    33   202    c202.1ce4.0000 50    ISIS   ASR2

2 unicast routes displayed in Overlay1

----------------------------------------------------------
2 Total Unicast Routes Displayed

ASR2#show otv route vlan 100

Codes: BD - Bridge-Domain, AD - Admin-Distance,
       SI - Service Instance, * - Backup Route

OTV Unicast MAC Routing Table for Overlay1

 Inst VLAN BD     MAC Address    AD    Owner  Next Hops(s)
----------------------------------------------------------
 0    100  200    0000.0c07.ac0a 50    ISIS   ASR1
 0    100  200    c201.1ea0.0000 50    ISIS   ASR1
 0    100  200    c202.1ce4.0000 40    BD Eng Gi2:SI50

3 unicast routes displayed in Overlay1

----------------------------------------------------------
3 Total Unicast Routes Displayed

ASR2#show otv route vlan 101

Codes: BD - Bridge-Domain, AD - Admin-Distance,
       SI - Service Instance, * - Backup Route

OTV Unicast MAC Routing Table for Overlay1

 Inst VLAN BD     MAC Address    AD    Owner  Next Hops(s)
----------------------------------------------------------
 0    101  201    c201.1ea0.0000 50    ISIS   ASR1
 0    101  201    c202.1ce4.0000 40    BD Eng Gi2:SI51

2 unicast routes displayed in Overlay1

----------------------------------------------------------
2 Total Unicast Routes Displayed

ASR2#show otv route vlan 33

Codes: BD - Bridge-Domain, AD - Admin-Distance,
       SI - Service Instance, * - Backup Route

OTV Unicast MAC Routing Table for Overlay1

 Inst VLAN BD     MAC Address    AD    Owner  Next Hops(s)
----------------------------------------------------------
 0    33   202    c201.1ea0.0000 50    ISIS   ASR1
 0    33   202    c202.1ce4.0000 40    BD Eng Gi2:SI52

2 unicast routes displayed in Overlay1

----------------------------------------------------------
2 Total Unicast Routes Displayed


ASR1#show otv vlan
Key:  SI - Service Instance, NA - Non AED, NFC - Not Forward Capable.

Overlay 1 VLAN Configuration Information
 Inst VLAN BD   Auth ED              State                Site If(s)
 0    33   202  *ASR1                active              Gi2:SI52
 0    100  200  *ASR1                active              Gi2:SI50
 0    101  201  *ASR1                active              Gi2:SI51
 Total VLAN(s): 3

ASR2#show otv vlan
Key:  SI - Service Instance, NA - Non AED, NFC - Not Forward Capable.

Overlay 1 VLAN Configuration Information
 Inst VLAN BD   Auth ED              State                Site If(s)
 0    33   202  *ASR2                active              Gi2:SI52
 0    100  200  *ASR2                active              Gi2:SI50
 0    101  201  *ASR2                active              Gi2:SI51
 Total VLAN(s): 3

I enabled capture as well to see the hello messages

ip access-list extended CAPTURE
 permit udp host 192.168.13.1 host 192.168.23.2 eq 8472
 permit udp host 192.168.23.2 host 192.168.13.1 eq 8472

monitor capture 1 buffer circular access-list CAPTURE interface g1 both

ASR1#show monitor capture 1 buffer brief
 -------------------------------------------------------------
 #   size   timestamp     source             destination   protocol
 -------------------------------------------------------------
   0  150    0.000000   192.168.13.1     ->  192.168.23.2     UDP
   1 1464    0.133040   192.168.23.2     ->  192.168.13.1     UDP
   2  110    0.907002   192.168.13.1     ->  192.168.23.2     UDP
   3 1464    1.300039   192.168.13.1     ->  192.168.23.2     UDP
   4 1464    4.041990   192.168.13.1     ->  192.168.23.2     UDP
   5 1464    7.110046   192.168.13.1     ->  192.168.23.2     UDP
   6  150    8.562019   192.168.13.1     ->  192.168.23.2     UDP
   7  110    9.149046   192.168.13.1     ->  192.168.23.2     UDP
   8 1464    9.670015   192.168.13.1     ->  192.168.23.2     UDP
   9 1464    9.773006   192.168.23.2     ->  192.168.13.1     UDP
  10 1464   12.425032   192.168.13.1     ->  192.168.23.2     UDP
  11 1464   15.151044   192.168.13.1     ->  192.168.23.2     UDP

Thanks

BR,
Mohammad Khalil
 		 	   		  


More information about the cisco-nsp mailing list