Juniper EX/QFX vlan-id-list limitation

[Robin Williams]

Hi all,

Has anyone come across PR1395312 before?

“On ACX/EX/QFX platforms, if VLAN ID lists are configured under a single physical interface, Q-in-Q might stop working for certain VLAN ID lists”.

Very vague.

If our testing, if we go above 7 VLANs (even if it’s within the same vlan-id-list) on the same port, we see the following errors in the logs and the switch goes haywire or stops passing traffic;

fpc0 LBCM-L2,pfe_bcm_l2_ing_vlanid_list_xlat_program(),931:ING vlan-xlat hw-program failed for ifl idx(563),match-vid(4002:4002), vlan-token(3), error(Table full)

config example;

interfaces {
    xe-0/1/0 {
        flexible-vlan-tagging;
        encapsulation extended-vlan-bridge;
        unit 3104 {
            vlan-id-list [ 1102 1128 1150 1172 4000 4001 4002 4003];
            input-vlan-map push;
            output-vlan-map pop;
        }

(so, pushing a vlan-id-list into an outer tag - a fairly standard metro operation)

The docs page for ‘vlan-id-lists’ does mention:
https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/vlan-id-list-edit-bridge-domains.html

“WARNING On some EX and QFX Series switches, if VLAN identifier list (vlan-id-list) is used for Q-in-Q tunnelling, you can apply no more than eight VLAN identifier lists to a physical interface.”

Again, very vague “Some switches”.   “No more than eight”.     WHICH SWITCHES!

In my mind, the above configuration classes as a single vlan-id-list, but TAC say not - they are classing that as 8.  I can however do a range of say, 1-100 and that does only class as a single entry, strangely.  In my mind, the wording of the documentation is incorrect.

TAC are saying there is no plans for a fix, so I’m assuming it’s a hardware limitation of the units running ELS code or trident chips (as the older EX platforms could cope with it fine).

Has anyone else seen this before, or come up with a workaround?  Strangely version 15 isn't listed on the PR, but I assume that's just a mistake (yet to test).

Cheers,
Robin.


________________________________

The Networking People (TNP) Limited. Registered office: Network House, Caton Rd, Lancaster, LA1 3PE. Registered in England & Wales with company number: 07667393

This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited.