一、基础网络架构图
该拓扑图主要采用Spine-Leaf物理架构。Underlay采用OSPF协议,Overlay采用VXLAN协议。VXLAN网络中承载三个业务区,分别是10.0.0.0/24、20.0.0.0/24、30.0.0.0/24,所属的VLAN分别是VLAN10、VLAN20、VLAN30,VLAN到VNI的映射如图表格所示。网关设计采用较为简单的集中式网关部署,网关坐落在Border Leaf 1201-1202上,1201-1202将部署vPC和优化型FHRP。Server Leaf 1303-1304也将部署vPC,作为VXLAN with vPC模型实践,为V10-PC4和V20-PC2提供二层服务。Border Leaf 1201-1202连接外部网络,是VXLAN内部网络和外部通信的边界设备。基础网络构建的主要操作目标为打通二层网络以及三层网络,具体细节在后续章节。
二、基础网络规划
1、设备信息
Spine-Leaf物理架构要求规定至少配备一台Spine和一台Leaf。考虑到更加贴合现网的常规部署,案例设计了两台Spine、两台Server Leaf、两台Border Leaf。Spine和Leaf均由Nexus数据中心交换机担任,采用的系统版本为NX-OS 9.3.10。案例中设计模拟七台PC,为了降低资源消耗V10-PC1、V10-PC2、V10-PC3、V20-PC1、V30-PC1由desktop-simulator一并担任,V10-PC4和V20-PC2则分别由两台交换机模拟担任。External-Router作为VXLAN外部网络存在,后续测试需要用到。
2、接口规划
接口规划主要细化设备之间的互联情况。Leaf采用双上联到两台Spine,接口速率为10Gbps,每一台Leaf的E1/63连接至Spine 1101,每一台Leaf的E1/64连接至Spine 1102。两台Border Leaf额外全互联到External-Router。V10-PC1、V10-PC2、V10-PC3、V20-PC1、V30-PC1由desktop-simulator一并担任,通过VRF Lite技术将desktop-simulator分裂为五台PC,VRF Lite命名如下表VRF Lit列。V10-PC4和V20-PC2分别双上联到Server Leaf 1303和1304,并构建跨设备聚合链路(即vPC)。
vPC设备线路规划:涉及到vPC的设备主要是Server Leaf 1303、1304以及Border Leaf 1201、1202。设计E1/60作为vPC Pair的Keepalive链路,E1/61-62作为vPC Pair的Peer-Link链路。
3、地址规划
Underlay和Overlay的地址规划分别为Loopback和互联地址规划。所有的Spine、Leaf以及External-Router都拥有一个Loopback0,Loopback0用于Underlay OSPF Router-id。所有的Leaf都拥有一个Loopback1,关联到NVE接口,NVE作为VTEP地址。vPC Pair根据要求Loopback1需要配置Primary和Secondary地址,其中Secondary地址用于组播和单播流量的封装。vPC Peer-Link被关闭或故障后,NVE地址Primary IP用于VXLAN中的组播和单播流量封装。
互联地址分别Spine-Leaf互联和Border Leaf至External-Router互联。互联地址均采用30位子网掩码。互联地址的设计以序号1举例,11.31.1.1/30,第一个点分十进制11表示Spine的Node id即1101中的百位和个位;第二个点分十进制31表示Leaf的Node id即1301中的百位和个位;第三个点分十进制默认为1;第四个点分十进制1表示Spine端,2表示Leaf端;/30表示子网掩码为255.255.255.252。Border Leaf和External-Router互联,在第一个点分十进制和第二个点分十进制上有些区别。以201.1.1.1/30为例,第一个点分十进制201表示Border Leaf Node id即1201中的百位、十位、个位;第二个点分十进制默认为1;第四个点分十进制1表示Leaf端,2表示External-Router端。
4、业务规划
VXLAN网络中承载三个业务区,分别是10.0.0.0/24、20.0.0.0/24、30.0.0.0/24。对应VLAN ID为10、20、30,映射到VXLAN VNID为10010、10020、10030。三个网络的网关部署在Border Leaf 1201-1202上,网关分别为10.0.0.254(SVI 10)、20.0.0.254(SVI 20)、30.0.0.254(SVI 30)。由于Border Leaf 1201-1202为vPC Pair,根据集中式网关最佳实践部署HSRP,Border Leaf 1201的SVI 10、SVI 20、SVI30的实地址10.0.0.252、20.0.0.252、30.0.0.252,Border Leaf 1202的SVI 10、SVI 20、SVI30的实地址10.0.0.253、20.0.0.253、30.0.0.253。
三、配置脚本
1、业务终端配置
desktop-simulator#
hostname desktop-simulator
ip vrf V10-PC1
exit
ip vrf V10-PC2
exit
ip vrf V10-PC3
exit
ip vrf V20-PC1
exit
ip vrf V30-PC1
exit
interface G0/1
description To_X-VXLAN-SL-1301_E1/1
ip vrf forwarding V10-PC1
ip address 10.0.0.1 255.255.255.0
no shutdown
ip route vrf V10-PC1 0.0.0.0 0.0.0.0 10.0.0.254
interface G0/2
description To_X-VXLAN-SL-1301_E1/2
ip vrf forwarding V10-PC2
ip address 10.0.0.2 255.255.255.0
no shutdown
ip route vrf V10-PC2 0.0.0.0 0.0.0.0 10.0.0.254
interface G0/3
description To_X-VXLAN-SL-1302_E1/1
ip vrf forwarding V10-PC3
ip address 10.0.0.3 255.255.255.0
no shutdown
ip route vrf V10-PC3 0.0.0.0 0.0.0.0 10.0.0.254
interface G0/4
description To_X-VXLAN-SL-1302_E1/2
ip vrf forwarding V20-PC1
ip address 20.0.0.1 255.255.255.0
no shutdown
ip route vrf V20-PC1 0.0.0.0 0.0.0.0 20.0.0.254
interface G0/5
description To_X-VXLAN-SL-1302_E1/3
ip vrf forwarding V30-PC1
ip address 30.0.0.1 255.255.255.0
no shutdown
ip route vrf V30-PC1 0.0.0.0 0.0.0.0 30.0.0.254 V10-PC4#
hostname V10-PC4
vlan 10
name 10.0.0.0/24
exit
interface range G0/0-1
channel-protocol lacp
channel-group 10 mode active
no shutdown
interface port-channel 10
switchport mode access
switchport access vlan 10
no shutdown
interface vlan 10
ip address 10.0.0.4 255.255.255.0
no shutdown
ip route 0.0.0.0 0.0.0.0 10.0.0.254V20-PC2#
hostname V20-PC2
vlan 20
name 20.0.0.0/24
exit
interface range G0/0-1
channel-protocol lacp
channel-group 20 mode active
no shutdown
interface port-channel 20
switchport mode access
switchport access vlan 20
no shutdown
interface vlan 20
ip address 20.0.0.2 255.255.255.0
no shutdown
ip route 0.0.0.0 0.0.0.0 20.0.0.2542、VXLAN矩阵Underlay配置&检查
1)Underlay配置
为了符合安全性原则,VXLAN Fabric线路需要进行加密,以保障合法安全的OSPF邻居相互传递路由。加密方式MD5、加密密码Cisco@123。为了建立更加高效的邻居建立和信息传递,OSPF网络链路类型更改为P2P。Underlay整体处于OSPF AREA 0。Underlay不配置组播。
X-VXLAN-SP-1101#
hostname X-VXLAN-SP-1101
feature ospf
interface loopback0
ip address 11.11.11.11/32
router ospf Underlay
router-id 11.11.11.11
passive-interface default
interface E1/1
no switchport
ip address 11.31.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/2
no switchport
ip address 11.32.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/3
no switchport
ip address 11.33.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/4
no switchport
ip address 11.34.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/5
no switchport
ip address 11.21.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/6
no switchport
ip address 11.22.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface loopback0
ip router ospf Underlay area 0X-VXLAN-SP-1102#
hostname X-VXLAN-SP-1102
feature ospf
interface loopback0
ip address 12.12.12.12/32
router ospf Underlay
router-id 12.12.12.12
passive-interface default
interface E1/1
no switchport
ip address 12.31.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/2
no switchport
ip address 12.32.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/3
no switchport
ip address 12.33.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/4
no switchport
ip address 12.34.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/5
no switchport
ip address 12.21.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/6
no switchport
ip address 12.22.1.1/30
ip router ospf Underlay area 0
no ip ospf passive-interface
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface loopback0
ip router ospf Underlay area 0X-VXLAN-SL-1301#
hostname X-VXLAN-SL-1301
feature ospf
interface loopback0
ip address 31.31.31.31/32
router ospf Underlay
router-id 31.31.31.31
passive-interface default
interface E1/63
no switchport
ip address 11.31.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/64
no switchport
ip address 12.31.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface loopback0
ip router ospf Underlay area 0
interface loopback1
description NVE
ip address 31.31.1.1/32
ip router ospf Underlay area 0X-VXLAN-SL-1302#
hostname X-VXLAN-SL-1302
feature ospf
interface loopback0
ip address 32.32.32.32/32
router ospf Underlay
router-id 32.32.32.32
passive-interface default
interface E1/63
no switchport
ip address 11.32.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/64
no switchport
ip address 12.32.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface loopback0
ip router ospf Underlay area 0
interface loopback1
description NVE
ip address 32.32.1.1/32
ip router ospf Underlay area 0X-VXLAN-SL-1303#
hostname X-VXLAN-SL-1303
feature ospf
interface loopback0
ip address 33.33.33.33/32
router ospf Underlay
router-id 33.33.33.33
passive-interface default
interface E1/63
no switchport
ip address 11.33.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/64
no switchport
ip address 12.33.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface loopback0
ip router ospf Underlay area 0
interface loopback1
description NVE
ip address 33.33.1.1/32
ip address 33.33.34.34/32 secondary
ip router ospf Underlay area 0X-VXLAN-SL-1304#
hostname X-VXLAN-SL-1304
feature ospf
interface loopback0
ip address 34.34.34.34/32
router ospf Underlay
router-id 34.34.34.34
passive-interface default
interface E1/63
no switchport
ip address 11.34.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/64
no switchport
ip address 12.34.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface loopback0
ip router ospf Underlay area 0
interface loopback1
description NVE
ip address 34.34.1.1/32
ip address 33.33.34.34/32 secondary
ip router ospf Underlay area 0X-VXLAN-BL-1201#
hostname X-VXLAN-BL-1201
feature ospf
interface loopback0
ip address 21.21.21.21/32
router ospf Underlay
router-id 21.21.21.21
passive-interface default
interface E1/63
no switchport
ip address 11.21.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/64
no switchport
ip address 12.21.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface loopback0
ip router ospf Underlay area 0
interface loopback1
description NVE
ip address 21.21.1.1/32
ip address 21.21.22.22/32 secondary
ip router ospf Underlay area 0X-VXLAN-BL-1202#
hostname X-VXLAN-BL-1202
feature ospf
interface loopback0
ip address 22.22.22.22/32
router ospf Underlay
router-id 22.22.22.22
passive-interface default
interface E1/63
no switchport
ip address 11.22.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface E1/64
no switchport
ip address 12.22.1.2/30
no ip ospf passive-interface
ip router ospf Underlay area 0
ip ospf network point-to-point
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 0 Cisco@123
no shutdown
interface loopback0
ip router ospf Underlay area 0
interface loopback1
description NVE
ip address 22.22.1.1/32
ip address 21.21.22.22/32 secondary
ip router ospf Underlay area 02)状态检查
配置完成后,对所有Spine和Leaf的接口状态、接口IP、OSPF邻居以及路由学习情况进行检查。
X-VXLAN-SP-1101# show ip route ospf
IP Route Table for VRF "default"
'*' denotes best ucast next-hop
'**' denotes best mcast next-hop
'[x/y]' denotes [preference/metric]
'%<string>' in via output denotes VRF <string>
12.12.12.12/32, ubest/mbest: 6/0
*via 11.21.1.2, Eth1/5, [110/81], 00:19:17, ospf-Underlay, intra
*via 11.22.1.2, Eth1/6, [110/81], 00:18:46, ospf-Underlay, intra
*via 11.31.1.2, Eth1/1, [110/81], 00:20:01, ospf-Underlay, intra
*via 11.32.1.2, Eth1/2, [110/81], 01:15:46, ospf-Underlay, intra
*via 11.33.1.2, Eth1/3, [110/81], 01:07:41, ospf-Underlay, intra
*via 11.34.1.2, Eth1/4, [110/81], 01:08:14, ospf-Underlay, intra
12.21.1.0/30, ubest/mbest: 1/0
*via 11.21.1.2, Eth1/5, [110/80], 00:19:17, ospf-Underlay, intra
12.22.1.0/30, ubest/mbest: 1/0
*via 11.22.1.2, Eth1/6, [110/80], 00:18:46, ospf-Underlay, intra
12.31.1.0/30, ubest/mbest: 1/0
*via 11.31.1.2, Eth1/1, [110/80], 00:20:01, ospf-Underlay, intra
12.32.1.0/30, ubest/mbest: 1/0
*via 11.32.1.2, Eth1/2, [110/80], 01:15:47, ospf-Underlay, intra
12.33.1.0/30, ubest/mbest: 1/0
*via 11.33.1.2, Eth1/3, [110/80], 01:07:41, ospf-Underlay, intra
12.34.1.0/30, ubest/mbest: 1/0
*via 11.34.1.2, Eth1/4, [110/80], 01:08:14, ospf-Underlay, intra
21.21.1.1/32, ubest/mbest: 1/0
*via 11.21.1.2, Eth1/5, [110/41], 00:05:11, ospf-Underlay, intra
21.21.21.21/32, ubest/mbest: 1/0
*via 11.21.1.2, Eth1/5, [110/41], 00:19:17, ospf-Underlay, intra
21.21.22.22/32, ubest/mbest: 2/0
*via 11.21.1.2, Eth1/5, [110/41], 00:05:11, ospf-Underlay, intra
*via 11.22.1.2, Eth1/6, [110/41], 00:05:08, ospf-Underlay, intra
22.22.1.1/32, ubest/mbest: 1/0
*via 11.22.1.2, Eth1/6, [110/41], 00:05:08, ospf-Underlay, intra
22.22.22.22/32, ubest/mbest: 1/0
*via 11.22.1.2, Eth1/6, [110/41], 00:18:46, ospf-Underlay, intra
31.31.1.1/32, ubest/mbest: 1/0
*via 11.31.1.2, Eth1/1, [110/41], 00:20:01, ospf-Underlay, intra
31.31.31.31/32, ubest/mbest: 1/0
*via 11.31.1.2, Eth1/1, [110/41], 00:20:01, ospf-Underlay, intra
32.32.1.1/32, ubest/mbest: 1/0
*via 11.32.1.2, Eth1/2, [110/41], 01:15:47, ospf-Underlay, intra
32.32.32.32/32, ubest/mbest: 1/0
*via 11.32.1.2, Eth1/2, [110/41], 01:15:47, ospf-Underlay, intra
33.33.1.1/32, ubest/mbest: 1/0
*via 11.33.1.2, Eth1/3, [110/41], 01:04:39, ospf-Underlay, intra
33.33.33.33/32, ubest/mbest: 1/0
*via 11.33.1.2, Eth1/3, [110/41], 01:07:41, ospf-Underlay, intra
33.33.34.34/32, ubest/mbest: 2/0
*via 11.33.1.2, Eth1/3, [110/41], 01:04:39, ospf-Underlay, intra
*via 11.34.1.2, Eth1/4, [110/41], 01:04:39, ospf-Underlay, intra
34.34.1.1/32, ubest/mbest: 1/0
*via 11.34.1.2, Eth1/4, [110/41], 01:04:39, ospf-Underlay, intra
34.34.34.34/32, ubest/mbest: 1/0
*via 11.34.1.2, Eth1/4, [110/41], 01:08:14, ospf-Underlay, intra
X-VXLAN-SP-1102# show ip route ospf
IP Route Table for VRF "default"
'*' denotes best ucast next-hop
'**' denotes best mcast next-hop
'[x/y]' denotes [preference/metric]
'%<string>' in via output denotes VRF <string>
11.11.11.11/32, ubest/mbest: 6/0
*via 12.21.1.2, Eth1/5, [110/81], 00:21:46, ospf-Underlay, intra
*via 12.22.1.2, Eth1/6, [110/81], 00:21:19, ospf-Underlay, intra
*via 12.31.1.2, Eth1/1, [110/81], 00:22:34, ospf-Underlay, intra
*via 12.32.1.2, Eth1/2, [110/81], 01:18:19, ospf-Underlay, intra
*via 12.33.1.2, Eth1/3, [110/81], 01:10:14, ospf-Underlay, intra
*via 12.34.1.2, Eth1/4, [110/81], 01:10:48, ospf-Underlay, intra
11.21.1.0/30, ubest/mbest: 1/0
*via 12.21.1.2, Eth1/5, [110/80], 00:21:51, ospf-Underlay, intra
11.22.1.0/30, ubest/mbest: 1/0
*via 12.22.1.2, Eth1/6, [110/80], 00:21:19, ospf-Underlay, intra
11.31.1.0/30, ubest/mbest: 1/0
*via 12.31.1.2, Eth1/1, [110/80], 00:22:34, ospf-Underlay, intra
11.32.1.0/30, ubest/mbest: 1/0
*via 12.32.1.2, Eth1/2, [110/80], 01:18:20, ospf-Underlay, intra
11.33.1.0/30, ubest/mbest: 1/0
*via 12.33.1.2, Eth1/3, [110/80], 01:10:14, ospf-Underlay, intra
11.34.1.0/30, ubest/mbest: 1/0
*via 12.34.1.2, Eth1/4, [110/80], 01:10:48, ospf-Underlay, intra
21.21.1.1/32, ubest/mbest: 1/0
*via 12.21.1.2, Eth1/5, [110/41], 00:07:45, ospf-Underlay, intra
21.21.21.21/32, ubest/mbest: 1/0
*via 12.21.1.2, Eth1/5, [110/41], 00:21:51, ospf-Underlay, intra
21.21.22.22/32, ubest/mbest: 2/0
*via 12.21.1.2, Eth1/5, [110/41], 00:07:45, ospf-Underlay, intra
*via 12.22.1.2, Eth1/6, [110/41], 00:07:41, ospf-Underlay, intra
22.22.1.1/32, ubest/mbest: 1/0
*via 12.22.1.2, Eth1/6, [110/41], 00:07:41, ospf-Underlay, intra
22.22.22.22/32, ubest/mbest: 1/0
*via 12.22.1.2, Eth1/6, [110/41], 00:21:19, ospf-Underlay, intra
31.31.1.1/32, ubest/mbest: 1/0
*via 12.31.1.2, Eth1/1, [110/41], 00:22:34, ospf-Underlay, intra
31.31.31.31/32, ubest/mbest: 1/0
*via 12.31.1.2, Eth1/1, [110/41], 00:22:34, ospf-Underlay, intra
32.32.1.1/32, ubest/mbest: 1/0
*via 12.32.1.2, Eth1/2, [110/41], 01:18:20, ospf-Underlay, intra
32.32.32.32/32, ubest/mbest: 1/0
*via 12.32.1.2, Eth1/2, [110/41], 01:18:20, ospf-Underlay, intra
33.33.1.1/32, ubest/mbest: 1/0
*via 12.33.1.2, Eth1/3, [110/41], 01:07:12, ospf-Underlay, intra
33.33.33.33/32, ubest/mbest: 1/0
*via 12.33.1.2, Eth1/3, [110/41], 01:10:14, ospf-Underlay, intra
33.33.34.34/32, ubest/mbest: 2/0
*via 12.33.1.2, Eth1/3, [110/41], 01:07:12, ospf-Underlay, intra
*via 12.34.1.2, Eth1/4, [110/41], 01:07:12, ospf-Underlay, intra
34.34.1.1/32, ubest/mbest: 1/0
*via 12.34.1.2, Eth1/4, [110/41], 01:07:12, ospf-Underlay, intra
34.34.34.34/32, ubest/mbest: 1/0
*via 12.34.1.2, Eth1/4, [110/41], 01:10:48, ospf-Underlay, intra3、VXLAN矩阵Overlay配置&检查
1)Overlay配置
VXLAN作为Overlay协议,具有在三层网络之上扩展二层网络的职责,本章节主要构建静态VXLAN。要配置VXLAN,需要先激活两个特性即vn-segment-vlan-based和nv overlay。作为Server Leaf,对上构建VXLAN,对下构建Ethernet,并对VID和VNID进行一比一映射。对下构建Ethernet和传统网络无异,对上构建VXLAN需要配置NVE接口。由于构建的是静态VXLAN,因此NVE接口的主要参数为关联Loopback1、配置VNI、配置对等VTEP。构建vPC Pair的配置稍有差异,Loopback1需要配置Primary和Secondary地址,否则vPC状态会出现问题!
X-VXLAN-SL-1301#
feature vn-segment-vlan-based
feature nv overlay
vlan 10
vn-segment 10010
interface E1/1
switchport mode access
switchport access vlan 10
no shutdown
interface E1/2
switchport mode access
switchport access vlan 10
no shutdown
interface nve1
no shutdown
source-interface loopback1
member vni 10010
ingress-replication protocol static
peer-ip 32.32.1.1
peer-ip 33.33.34.34
peer-ip 21.21.22.22X-VXLAN-SL-1302#
feature vn-segment-vlan-based
feature nv overlay
vlan 10
vn-segment 10010
vlan 20
vn-segment 10020
vlan 30
vn-segment 10030
interface E1/1
switchport mode access
switchport access vlan 10
no shutdown
interface E1/2
switchport mode access
switchport access vlan 20
no shutdown
interface E1/3
switchport mode access
switchport access vlan 30
no shutdown
interface nve1
no shutdown
source-interface loopback1
member vni 10010
ingress-replication protocol static
peer-ip 31.31.1.1
peer-ip 33.33.34.34
peer-ip 21.21.22.22
member vni 10020
ingress-replication protocol static
peer-ip 33.33.34.34
peer-ip 21.21.22.22
member vni 10030
ingress-replication protocol static
peer-ip 21.21.22.22X-VXLAN-SL-1303#
feature vn-segment-vlan-based
feature nv overlay
feature lacp
feature vpc
vlan 10
vn-segment 10010
vlan 20
vn-segment 10020
vrf context vPC_Keepalive
exit
vpc domain 10
role priority 100
peer-keepalive destination 1.1.1.2 source 1.1.1.1 vrf vPC_Keepalive
peer-switch
peer-gateway
end
interface E1/60
no switchport
vrf member vPC_Keepalive
ip address 1.1.1.1/30
no shutdown
interface E1/61
channel-group 1 mode active
no shutdown
interface E1/62
channel-group 1 mode active
no shutdown
interface port-channel 1
switchport
switchport mode trunk
switchport trunk allowed vlan 10,20
vpc peer-link
no shutdown
interface E1/1
channel-group 10 mode active
no shutdown
interface port-channel 10
switchport
switchport mode access
switchport access vlan 10
vpc 10
no shutdown
interface E1/2
channel-group 20 mode active
no shutdown
interface port-channel 20
switchport
switchport mode access
switchport access vlan 20
vpc 20
no shutdown
#状态检查脚本
show int status
show ip interface brief vrf vPC_Keepalive
ping 1.1.1.2 vrf vPC_Keepalive
show run vpc
show port-channel summary
show vpc
show vpc consistency-parameters global
show vpc role
show vpc peer-keepalive
#
interface nve1
no shutdown
source-interface loopback1
member vni 10010
ingress-replication protocol static
peer-ip 31.31.1.1
peer-ip 32.32.1.1
peer-ip 21.21.22.22
member vni 10020
ingress-replication protocol static
peer-ip 32.32.1.1
peer-ip 21.21.22.22X-VXLAN-SL-1304#
feature vn-segment-vlan-based
feature nv overlay
feature lacp
feature vpc
vlan 10
vn-segment 10010
vlan 20
vn-segment 10020
vrf context vPC_Keepalive
exit
vpc domain 10
role priority 110
peer-keepalive destination 1.1.1.1 source 1.1.1.2 vrf vPC_Keepalive
peer-switch
peer-gateway
end
interface E1/60
no switchport
vrf member vPC_Keepalive
ip address 1.1.1.2/30
no shutdown
interface E1/61
channel-group 1 mode active
no shutdown
interface E1/62
channel-group 1 mode active
no shutdown
interface port-channel 1
switchport
switchport mode trunk
switchport trunk allowed vlan 10,20
vpc peer-link
no shutdown
interface E1/1
channel-group 10 mode active
no shutdown
interface port-channel 10
switchport
switchport mode access
switchport access vlan 10
vpc 10
no shutdown
interface E1/2
channel-group 20 mode active
no shutdown
interface port-channel 20
switchport
switchport mode access
switchport access vlan 20
vpc 20
no shutdown
show int status
show ip interface brief vrf vPC_Keepalive
ping 1.1.1.1 vrf vPC_Keepalive
show run vpc
show port-channel summary
show vpc
show vpc consistency-parameters global
show vpc role
show vpc peer-keepalive
interface nve1
no shutdown
source-interface loopback1
member vni 10010
ingress-replication protocol static
peer-ip 31.31.1.1
peer-ip 32.32.1.1
peer-ip 21.21.22.22
member vni 10020
ingress-replication protocol static
peer-ip 32.32.1.1
peer-ip 21.21.22.22X-VXLAN-BL-1201#
feature vn-segment-vlan-based
feature nv overlay
feature lacp
feature vpc
vlan 10
vn-segment 10010
vlan 20
vn-segment 10020
vlan 30
vn-segment 10030
vrf context vPC_Keepalive
vpc domain 10
role priority 100
peer-keepalive destination 1.1.1.2 source 1.1.1.1 vrf vPC_Keepalive
peer-switch
peer-gateway
interface E1/60
no switchport
vrf member vPC_Keepalive
ip address 1.1.1.1/30
no shutdown
interface E1/61
channel-group 1 mode active
no shutdown
interface E1/62
channel-group 1 mode active
no shutdown
interface port-channel 1
switchport
switchport mode trunk
switchport trunk allowed vlan 10,20,30
vpc peer-link
no shutdown
show int status
show ip interface brief vrf vPC_Keepalive
ping 1.1.1.2 vrf vPC_Keepalive
show run vpc
show port-channel summary
show vpc
show vpc consistency-parameters global
show vpc role
show vpc peer-keepalive
interface nve1
no shutdown
source-interface loopback1
member vni 10010
ingress-replication protocol static
peer-ip 31.31.1.1
peer-ip 32.32.1.1
peer-ip 33.33.34.34
member vni 10020
ingress-replication protocol static
peer-ip 32.32.1.1
peer-ip 33.33.34.34
member vni 10020
ingress-replication protocol static
peer-ip 32.32.1.1
feature interface-vlan
feature hsrp
int vlan 10
description VXLAN-10010
ip address 10.0.0.252/24
hsrp version 2
hsrp 10
priority 120
ip 10.0.0.254
preempt delay minimum 60
no shutdown
int vlan 20
description VXLAN-10020
ip address 20.0.0.252/24
hsrp version 2
hsrp 20
priority 120
ip 20.0.0.254
preempt delay minimum 60
no shutdown
int vlan 30
description VXLAN-10030
ip address 30.0.0.252/24
hsrp version 2
hsrp 30
priority 120
ip 30.0.0.254
preempt delay minimum 60
no shutdown
show vlan brief
show ip interface brief
show hsrp brief
show nve peers
show nve vniX-VXLAN-BL-1202#
feature vn-segment-vlan-based
feature nv overlay
feature lacp
feature vpc
vlan 10
vn-segment 10010
vlan 20
vn-segment 10020
vlan 30
vn-segment 10030
vrf context vPC_Keepalive
vpc domain 10
role priority 110
peer-keepalive destination 1.1.1.1 source 1.1.1.2 vrf vPC_Keepalive
peer-switch
peer-gateway
interface E1/60
no switchport
vrf member vPC_Keepalive
ip address 1.1.1.2/30
no shutdown
interface E1/61
channel-group 1 mode active
no shutdown
interface E1/62
channel-group 1 mode active
no shutdown
interface port-channel 1
switchport
switchport mode trunk
switchport trunk allowed vlan 10,20,30
vpc peer-link
no shutdown
show int status
show ip interface brief vrf vPC_Keepalive
ping 1.1.1.1 vrf vPC_Keepalive
show run vpc
show port-channel summary
show vpc
show vpc consistency-parameters global
show vpc role
show vpc peer-keepalive
interface nve1
no shutdown
source-interface loopback1
member vni 10010
ingress-replication protocol static
peer-ip 31.31.1.1
peer-ip 32.32.1.1
peer-ip 33.33.34.34
member vni 10020
ingress-replication protocol static
peer-ip 32.32.1.1
peer-ip 33.33.34.34
member vni 10020
ingress-replication protocol static
peer-ip 32.32.1.1
feature interface-vlan
feature hsrp
int vlan 10
description VXLAN-10010
ip address 10.0.0.253/24
hsrp version 2
hsrp 10
priority 100
ip 10.0.0.254
preempt
no shutdown
int vlan 20
description VXLAN-10020
ip address 20.0.0.253/24
hsrp version 2
hsrp 20
priority 100
ip 20.0.0.254
preempt
no shutdown
int vlan 30
description VXLAN-10030
ip address 30.0.0.253/24
hsrp version 2
hsrp 30
priority 100
ip 30.0.0.254
preempt
no shutdown
show vlan brief
show ip interface brief
show hsrp brief
show nve peers
show nve vni2)状态检查
针对1303-1304、1201-1202进行如下额外检查:检查vPC Keepalive情况、检查vPC配置、检查链路聚合情况、检查vPC状态、检查vPC一致性检查参数。
show ip interface brief vrf vPC_Keepalive
ping 1.1.1.x vrf vPC_Keepalive
show run vpc
show port-channel summary
show vpc
show vpc consistency-parameters global
show vpc role
show vpc peer-keepalive
状态检查应当包括:检查接口状态、检查接口IP配置、检查NVE对等体状态、检查NVE关联的VNI情况、检查NVE接口状态。
show int status
show ip int brief
show nve peers
show nve vni
show nve interface
X-VXLAN-BL-1201# show vpc
Legend:
(*) - local vPC is down, forwarding via vPC peer-link
vPC domain id : 10
Peer status : peer adjacency formed ok
vPC keep-alive status : peer is alive
Configuration consistency status : success
Per-vlan consistency status : success
Type-2 consistency status : success
vPC role : primary
Number of vPCs configured : 0
Peer Gateway : Enabled
Dual-active excluded VLANs : -
Graceful Consistency Check : Enabled
Auto-recovery status : Disabled
Delay-restore status : Timer is off.(timeout = 30s)
Delay-restore SVI status : Timer is off.(timeout = 10s)
Operational Layer3 Peer-router : Disabled
Virtual-peerlink mode : Disabled
vPC Peer-link status
---------------------------------------------------------------------
id Port Status Active vlans
-- ---- ------ -------------------------------------------------
1 Po1 up 10,20,30
X-VXLAN-BL-1201# show port-channel summary
Flags: D - Down P - Up in port-channel (members)
I - Individual H - Hot-standby (LACP only)
s - Suspended r - Module-removed
b - BFD Session Wait
S - Switched R - Routed
U - Up (port-channel)
p - Up in delay-lacp mode (member)
M - Not in use. Min-links not met
--------------------------------------------------------------------------------
Group Port- Type Protocol Member Ports
Channel
--------------------------------------------------------------------------------
1 Po1(SU) Eth LACP Eth1/61(P) Eth1/62(P) X-VXLAN-BL-1202# show vpc
Legend:
(*) - local vPC is down, forwarding via vPC peer-link
vPC domain id : 10
Peer status : peer adjacency formed ok
vPC keep-alive status : peer is alive
Configuration consistency status : success
Per-vlan consistency status : success
Type-2 consistency status : success
vPC role : secondary
Number of vPCs configured : 0
Peer Gateway : Enabled
Dual-active excluded VLANs : -
Graceful Consistency Check : Enabled
Auto-recovery status : Disabled
Delay-restore status : Timer is off.(timeout = 30s)
Delay-restore SVI status : Timer is off.(timeout = 10s)
Operational Layer3 Peer-router : Disabled
Virtual-peerlink mode : Disabled
vPC Peer-link status
---------------------------------------------------------------------
id Port Status Active vlans
-- ---- ------ -------------------------------------------------
1 Po1 up 10,20,30
X-VXLAN-BL-1202# show port-channel summary
Flags: D - Down P - Up in port-channel (members)
I - Individual H - Hot-standby (LACP only)
s - Suspended r - Module-removed
b - BFD Session Wait
S - Switched R - Routed
U - Up (port-channel)
p - Up in delay-lacp mode (member)
M - Not in use. Min-links not met
--------------------------------------------------------------------------------
Group Port- Type Protocol Member Ports
Channel
--------------------------------------------------------------------------------
1 Po1(SU) Eth LACP Eth1/61(P) Eth1/62(P) X-VXLAN-SL-1303# show vpc
Legend:
(*) - local vPC is down, forwarding via vPC peer-link
vPC domain id : 10
Peer status : peer adjacency formed ok
vPC keep-alive status : peer is alive
Configuration consistency status : success
Per-vlan consistency status : success
Type-2 consistency status : success
vPC role :
Number of vPCs configured : 2
Peer Gateway : Enabled
Dual-active excluded VLANs : -
Graceful Consistency Check : Enabled
Auto-recovery status : Disabled
Delay-restore status : Timer is off.(timeout = 30s)
Delay-restore SVI status : Timer is off.(timeout = 10s)
Operational Layer3 Peer-router : Disabled
Virtual-peerlink mode : Disabled
vPC Peer-link status
---------------------------------------------------------------------
id Port Status Active vlans
-- ---- ------ -------------------------------------------------
1 Po1 up 10,20
vPC status
----------------------------------------------------------------------------
Id Port Status Consistency Reason Active vlans
-- ------------ ------ ----------- ------ ---------------
10 Po10 up success success 10
20 Po20 up success success 20
Please check "show vpc consistency-parameters vpc <vpc-num>" for the
consistency reason of down vpc and for type-2 consistency reasons for
any vpc.
X-VXLAN-SL-1303# show port-channel summary
Flags: D - Down P - Up in port-channel (members)
I - Individual H - Hot-standby (LACP only)
s - Suspended r - Module-removed
b - BFD Session Wait
S - Switched R - Routed
U - Up (port-channel)
p - Up in delay-lacp mode (member)
M - Not in use. Min-links not met
--------------------------------------------------------------------------------
Group Port- Type Protocol Member Ports
Channel
--------------------------------------------------------------------------------
1 Po1(SU) Eth LACP Eth1/61(P) Eth1/62(P)
10 Po10(SU) Eth LACP Eth1/1(P)
20 Po20(SU) Eth LACP Eth1/2(P) X-VXLAN-SL-1304# show vpc
Legend:
(*) - local vPC is down, forwarding via vPC peer-link
vPC domain id : 10
Peer status : peer adjacency formed ok
vPC keep-alive status : peer is alive
Configuration consistency status : success
Per-vlan consistency status : success
Type-2 consistency status : success
vPC role : se
Number of vPCs configured : 2
Peer Gateway : Enabled
Dual-active excluded VLANs : -
Graceful Consistency Check : Enabled
Auto-recovery status : Disabled
Delay-restore status : Timer is off.(timeout = 30s)
Delay-restore SVI status : Timer is off.(timeout = 10s)
Operational Layer3 Peer-router : Disabled
Virtual-peerlink mode : Disabled
vPC Peer-link status
---------------------------------------------------------------------
id Port Status Active vlans
-- ---- ------ -------------------------------------------------
1 Po1 up 10,20
vPC status
----------------------------------------------------------------------------
Id Port Status Consistency Reason Active vlans
-- ------------ ------ ----------- ------ ---------------
10 Po10 up success success 10
20 Po20 up success success 20
Please check "show vpc consistency-parameters vpc <vpc-num>" for the
consistency reason of down vpc and for type-2 consistency reasons for
any vpc.
X-VXLAN-SL-1304# show port-channel summary
Flags: D - Down P - Up in port-channel (members)
I - Individual H - Hot-standby (LACP only)
s - Suspended r - Module-removed
b - BFD Session Wait
S - Switched R - Routed
U - Up (port-channel)
p - Up in delay-lacp mode (member)
M - Not in use. Min-links not met
--------------------------------------------------------------------------------
Group Port- Type Protocol Member Ports
Channel
--------------------------------------------------------------------------------
1 Po1(SU) Eth LACP Eth1/61(P) Eth1/62(P)
10 Po10(SU) Eth LACP Eth1/1(P)
20 Po20(SU) Eth LACP Eth1/2(P) 单台VTEP NVE状态回显字段中VPC Capability后显示VPC-VIP-Only [not-notified],vPC VTEP NVE状态回显字段中VPC Capability后显示VPC-VIP-Only [notified]。
X-VXLAN-SL-1301# show nve peers
Interface Peer-IP State LearnType Uptime Route
r-Mac
--------- -------------------------------------- ----- --------- -------- -----
------------
nve1 21.21.22.22 Up DP 00:13:10 n/a
nve1 32.32.1.1 Up DP 00:28:03 n/a
nve1 33.33.34.34 Up DP 00:28:03 n/a
X-VXLAN-SL-1301# show nve vni
Codes: CP - Control Plane DP - Data Plane
UC - Unconfigured SA - Suppress ARP
SU - Suppress Unknown Unicast
Xconn - Crossconnect
MS-IR - Multisite Ingress Replication
Interface VNI Multicast-group State Mode Type [BD/VRF] Flags
--------- -------- ----------------- ----- ---- ------------------ -----
nve1 10010 UnicastStatic Up DP L2 [10]
X-VXLAN-SL-1301# show nve interface
Interface: nve1, State: Up, encapsulation: VXLAN
VPC Capability: VPC-VIP-Only [not-notified]
Local Router MAC: 5211.706d.1b08
Host Learning Mode: Data-Plane
Source-Interface: loopback1 (primary: 31.31.1.1, secondary: 0.0.0.0)X-VXLAN-SL-1302# show nve peers
Interface Peer-IP State LearnType Uptime Route
r-Mac
--------- -------------------------------------- ----- --------- -------- -----
------------
nve1 21.21.22.22 Up DP 00:14:38 n/a
nve1 31.31.1.1 Up DP 00:29:28 n/a
nve1 33.33.34.34 Up DP 01:14:06 n/a
X-VXLAN-SL-1302# show nve vni
Codes: CP - Control Plane DP - Data Plane
UC - Unconfigured SA - Suppress ARP
SU - Suppress Unknown Unicast
Xconn - Crossconnect
MS-IR - Multisite Ingress Replication
Interface VNI Multicast-group State Mode Type [BD/VRF] Flags
--------- -------- ----------------- ----- ---- ------------------ -----
nve1 10010 UnicastStatic Up DP L2 [10]
nve1 10020 UnicastStatic Up DP L2 [20]
nve1 10030 UnicastStatic Up DP L2 [30]
X-VXLAN-SL-1302# show nve interface
Interface: nve1, State: Up, encapsulation: VXLAN
VPC Capability: VPC-VIP-Only [not-notified]
Local Router MAC: 5206.5b57.1b08
Host Learning Mode: Data-Plane
Source-Interface: loopback1 (primary: 32.32.1.1, secondary: 0.0.0.0) X-VXLAN-SL-1303# show nve peers
Interface Peer-IP State LearnType Uptime Route
r-Mac
--------- -------------------------------------- ----- --------- -------- -----
------------
nve1 21.21.22.22 Up DP 00:15:18 n/a
nve1 31.31.1.1 Up DP 00:30:08 n/a
nve1 32.32.1.1 Up DP 01:17:51 n/a
X-VXLAN-SL-1303# show nve vni
Codes: CP - Control Plane DP - Data Plane
UC - Unconfigured SA - Suppress ARP
SU - Suppress Unknown Unicast
Xconn - Crossconnect
MS-IR - Multisite Ingress Replication
Interface VNI Multicast-group State Mode Type [BD/VRF] Flags
--------- -------- ----------------- ----- ---- ------------------ -----
nve1 10010 UnicastStatic Up DP L2 [10]
nve1 10020 UnicastStatic Up DP L2 [20]
X-VXLAN-SL-1303# show nve interface
Interface: nve1, State: Up, encapsulation: VXLAN
VPC Capability: VPC-VIP-Only [notified]
Local Router MAC: 52fd.cf88.1b08
Host Learning Mode: Data-Plane
Source-Interface: loopback1 (primary: 33.33.1.1, secondary: 33.33.34.34)X-VXLAN-SL-1304# show nve peers
Interface Peer-IP State LearnType Uptime Route
r-Mac
--------- -------------------------------------- ----- --------- -------- -----
------------
nve1 21.21.22.22 Up DP 00:17:06 n/a
nve1 31.31.1.1 Up DP 00:31:56 n/a
nve1 32.32.1.1 Up DP 01:19:34 n/a
X-VXLAN-SL-1304# show nve vni
Codes: CP - Control Plane DP - Data Plane
UC - Unconfigured SA - Suppress ARP
SU - Suppress Unknown Unicast
Xconn - Crossconnect
MS-IR - Multisite Ingress Replication
Interface VNI Multicast-group State Mode Type [BD/VRF] Flags
--------- -------- ----------------- ----- ---- ------------------ -----
nve1 10010 UnicastStatic Up DP L2 [10]
nve1 10020 UnicastStatic Up DP L2 [20]
X-VXLAN-SL-1304# show nve interface
Interface: nve1, State: Up, encapsulation: VXLAN
VPC Capability: VPC-VIP-Only [notified]
Local Router MAC: 5248.621d.1b08
Host Learning Mode: Data-Plane
Source-Interface: loopback1 (primary: 34.34.1.1, secondary: 33.33.34.34)X-VXLAN-BL-1201# show nve peers
Interface Peer-IP State LearnType Uptime Route
r-Mac
--------- -------------------------------------- ----- --------- -------- -----
------------
nve1 31.31.1.1 Up DP 00:18:12 n/a
nve1 32.32.1.1 Up DP 00:18:12 n/a
nve1 33.33.34.34 Up DP 00:18:12 n/a
X-VXLAN-BL-1201# show nve vni
Codes: CP - Control Plane DP - Data Plane
UC - Unconfigured SA - Suppress ARP
SU - Suppress Unknown Unicast
Xconn - Crossconnect
MS-IR - Multisite Ingress Replication
Interface VNI Multicast-group State Mode Type [BD/VRF] Flags
--------- -------- ----------------- ----- ---- ------------------ -----
nve1 10010 UnicastStatic Up DP L2 [10]
nve1 10020 UnicastStatic Up DP L2 [20]
X-VXLAN-BL-1201# show nve interface
Interface: nve1, State: Up, encapsulation: VXLAN
VPC Capability: VPC-VIP-Only [notified]
Local Router MAC: 524d.19bd.1b08
Host Learning Mode: Data-Plane
Source-Interface: loopback1 (primary: 21.21.1.1, secondary: 21.21.22.22)X-VXLAN-BL-1202# show nve peers
Interface Peer-IP State LearnType Uptime Route
r-Mac
--------- -------------------------------------- ----- --------- -------- -----
------------
nve1 31.31.1.1 Up DP 00:27:19 n/a
nve1 32.32.1.1 Up DP 00:27:19 n/a
nve1 33.33.34.34 Up DP 00:27:19 n/a
X-VXLAN-BL-1202# show nve vni
Codes: CP - Control Plane DP - Data Plane
UC - Unconfigured SA - Suppress ARP
SU - Suppress Unknown Unicast
Xconn - Crossconnect
MS-IR - Multisite Ingress Replication
Interface VNI Multicast-group State Mode Type [BD/VRF] Flags
--------- -------- ----------------- ----- ---- ------------------ -----
nve1 10010 UnicastStatic Up DP L2 [10]
nve1 10020 UnicastStatic Up DP L2 [20]
X-VXLAN-BL-1202# show nve interface
Interface: nve1, State: Up, encapsulation: VXLAN
VPC Capability: VPC-VIP-Only [notified]
Local Router MAC: 5284.5089.1b08
Host Learning Mode: Data-Plane
Source-Interface: loopback1 (primary: 22.22.1.1, secondary: 21.21.22.22)4、业务连通性测试
业务连通性测试包括业务网关ping测试、同网段主机ping测试(包括跨交换机以及本地交换)、跨网段主机ping测试。
1)业务网关ping测试
desktop-simulator#ping vrf V10-PC1 10.0.0.254 source 10.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.254, timeout is 2 seconds:
Packet sent with a source address of 10.0.0.1
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 10/13/16 ms
desktop-simulator#ping vrf V20-PC1 20.0.0.254 source 20.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 20.0.0.254, timeout is 2 seconds:
Packet sent with a source address of 20.0.0.1
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/14/17 ms
desktop-simulator#ping vrf V30-PC1 30.0.0.254 source 30.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 30.0.0.254, timeout is 2 seconds:
Packet sent with a source address of 30.0.0.1
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 10/12/18 ms2)同网段主机ping测试
desktop-simulator#ping vrf V10-PC1 10.0.0.2 source 10.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.2, timeout is 2 seconds:
Packet sent with a source address of 10.0.0.1
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 5/6/8 ms
desktop-simulator#ping vrf V10-PC1 10.0.0.4 source 10.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.4, timeout is 2 seconds:
Packet sent with a source address of 10.0.0.1
.!!!!
Success rate is 80 percent (4/5), round-trip min/avg/max = 11/12/13 ms
desktop-simulator#ping vrf V20-PC1 20.0.0.2 source 20.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 20.0.0.2, timeout is 2 seconds:
Packet sent with a source address of 20.0.0.1
.!!!!
Success rate is 80 percent (4/5), round-trip min/avg/max = 11/11/12 ms3)跨网段主机ping测试
desktop-simulator#ping vrf V10-PC1 20.0.0.1 source 10.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 20.0.0.1, timeout is 2 seconds:
Packet sent with a source address of 10.0.0.1
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 23/23/25 ms
desktop-simulator#ping vrf V10-PC1 20.0.0.2 source 10.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 20.0.0.2, timeout is 2 seconds:
Packet sent with a source address of 10.0.0.1
..!!!
Success rate is 60 percent (3/5), round-trip min/avg/max = 20/21/23 ms
desktop-simulator#ping vrf V10-PC1 30.0.0.1 source 10.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 30.0.0.1, timeout is 2 seconds:
Packet sent with a source address of 10.0.0.1
...!!
Success rate is 40 percent (2/5), round-trip min/avg/max = 24/25/26 ms至此简单VXLAN网络构建完成!
评论