Juniper l2circuit服务是否支持不匹配的封装类型?
Juniper l2circuit服务是否支持不匹配的封装类型?
提问于 2021-12-21 19:26:58
我正在EX4500和MX204之间建立一个MX204(草稿-马提尼)。
问题是,我需要在任何一方都有不匹配的l2circuit encapsulation-type。
l2circuit服务的东海岸EX4550-32F (Junos: 15.1R7-S11.1,l2circuit)侧配置了encapsulation-type ethernet,如下所示:
root@SWITCH01-T.RF> show configuration | display set | match xe-0/0/14
set interfaces xe-0/0/14 enable
set interfaces xe-0/0/14 encapsulation ethernet-ccc
set interfaces xe-0/0/14 unit 0 family ccc
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 virtual-circuit-id 2
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 no-control-word
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 mtu 1522
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 encapsulation-type ethernet
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 ignore-encapsulation-mismatch
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 ignore-mtu-mismatch
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 pseudowire-status-tlv
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 connection-protection
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 oam bfd-liveness-detection minimum-receive-interval 1000
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 oam bfd-liveness-detection multiplier 5
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 oam bfd-liveness-detection transmit-interval minimum-interval 1000
{master:0}西海岸MX204 (Junos: 19.4R3-S6.1,lo0.0: 10.8.224.187)侧的l2circuit服务配置为encapsulation-type ethernet-vlan,如下所示:
set interfaces et-0/0/0 enable
set interfaces et-0/0/0 vlan-tagging
set interfaces et-0/0/0 encapsulation extended-vlan-ccc
set interfaces et-0/0/0 unit 0 vlan-id-list 3113
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 virtual-circuit-id 2
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 no-control-word
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 mtu 1522
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 encapsulation-type ethernet-vlan
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 ignore-encapsulation-mismatch
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 ignore-mtu-mismatch
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 pseudowire-status-tlv
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 connection-protection
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 oam bfd-liveness-detection minimum-receive-interval 1000
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 oam bfd-liveness-detection multiplier 5
set protocols l2circuit neighbor 10.8.224.191 interface et-0/0/0.0 oam bfd-liveness-detection transmit-interval minimum-interval 1000控制平面位于此配置中:
root@SWITCH01-T.RF> show l2circuit connections
Layer-2 Circuit Connections:
...
Legend for interface status
Up -- operational
Dn -- down
Neighbor: 10.8.224.187
Interface Type St Time last up # Up trans
xe-0/0/14.0(vc 2) rmt Up Dec 21 17:41:51 2021 1
Remote PE: 10.8.224.187, Negotiated control-word: No Encapsulation: VLAN
Incoming label: 300016, Outgoing label: 104
Negotiated PW status TLV: Yes
local PW status code: 0x00000000, Neighbor PW status code: 0x00000000
Connection protection: Yes
Local interface: xe-0/0/14.0, Status: Up, Encapsulation: ETHERNET
Flow Label Transmit: No, Flow Label Receive: No
{master:0}
root@SWITCH01-T.RF> 在西海岸:
Neighbor: 10.8.224.191
Interface Type St Time last up # Up trans
et-0/0/0.0(vc 2) rmt Up Dec 21 18:42:37 2021 1
Remote PE: 10.8.224.191, Negotiated control-word: No Encapsulation: ETHERNET
Incoming label: 104, Outgoing label: 300016
Negotiated PW status TLV: Yes
local PW status code: 0x00000000, Neighbor PW status code: 0x00000000
Connection protection: Yes
Local interface: et-0/0/0.0, Status: Up, Encapsulation: VLAN
Flow Label Transmit: No, Flow Label Receive: No
root@rf-rtr1-l>LDP和RSVP在所有过境接口和回送上都启用。
东海岸自民党信息:
root@SWITCH01-T.RF> show ldp session detail
Address: 10.8.224.187, State: Operational, Connection: Open, Hold time: 22
Session ID: 10.8.224.191:0--10.8.224.187:0
Next keepalive in 2 seconds
Active, Maximum PDU: 4096, Hold time: 30, Neighbor count: 2
Neighbor types: discovered configured-layer2
Keepalive interval: 10, Connect retry interval: 1
Local address: 10.8.224.191, Remote address: 10.8.224.187
Up for 02:25:59
Capabilities advertised: none
Capabilities received: none
Protection: disabled
Session flags: none
Local - Restart: disabled, Helper mode: enabled
Remote - Restart: disabled, Helper mode: enabled
Local maximum neighbor reconnect time: 120000 msec
Local maximum neighbor recovery time: 240000 msec
Local Label Advertisement mode: Downstream unsolicited
Remote Label Advertisement mode: Downstream unsolicited
Negotiated Label Advertisement mode: Downstream unsolicited
MTU discovery: enabled
Nonstop routing state: Not in sync
Next-hop addresses received:
10.8.224.187
10.8.224.176
gr-0/0/27.202
{master:0}
root@SWITCH01-T.RF> 西海岸自民党信息:
root@rf-rtr1-l> show ldp session detail
Address: 10.8.224.191, State: Operational, Connection: Open, Hold time: 23
Session ID: 10.8.224.187:0--10.8.224.191:0
Next keepalive in 3 seconds
Passive, Maximum PDU: 4096, Hold time: 30, Neighbor count: 2
Neighbor types: discovered configured-layer2
Keepalive interval: 10, Connect retry interval: 1
Local address: 10.8.224.187, Remote address: 10.8.224.191
Up for 02:24:49
Capabilities advertised: none
Capabilities received: none
Protection: disabled
Session flags: none
Local - Restart: disabled, Helper mode: enabled
Remote - Restart: disabled, Helper mode: enabled
Local maximum neighbor reconnect time: 120000 msec
Local maximum neighbor recovery time: 240000 msec
Local Label Advertisement mode: Downstream unsolicited
Remote Label Advertisement mode: Downstream unsolicited
Negotiated Label Advertisement mode: Downstream unsolicited
MTU discovery: enabled
Nonstop routing state: Not in sync
Next-hop addresses received:
10.8.224.177
10.8.224.188
10.8.224.191
gr-0/0/0.202
root@rf-rtr1-l>但是,我还不能跨服务(192.168.150.0/24所附的两个客户端)。
问题:
- juniper是否支持不匹配的l2circuit封装类型?
- 如果是的话,我需要做些什么来解决这个问题?
Update 2021-12-24.
在用以下方法重新配置我的实验室后,我仍然显示马提尼控制平面已经启动,数据平面被破坏了.
这是我用的西海岸马提尼PE mx204配置.
root@rf-rtr1-l> show configuration | display set | match et-0/0/0
set interfaces et-0/0/0 enable
set interfaces et-0/0/0 vlan-tagging
set interfaces et-0/0/0 encapsulation flexible-ethernet-services
set interfaces et-0/0/0 unit 0 encapsulation vlan-ccc
set interfaces et-0/0/0 unit 0 vlan-id 3113
set interfaces et-0/0/0 unit 0 input-vlan-map pop
set interfaces et-0/0/0 unit 0 output-vlan-map push
set protocols l2circuit neighbor 10.8.224.190 interface et-0/0/0.0 virtual-circuit-id 3
set protocols l2circuit neighbor 10.8.224.190 interface et-0/0/0.0 no-control-word
root@rf-rtr1-l>这是我正在使用的东海岸马提尼配置(现在在qfx Model: qfx5200-48y,Junos: 18.4R2-S9.2上).
root@switch02-t> show configuration | display set | match xe-0/0/14
set interfaces xe-0/0/14 enable
set interfaces xe-0/0/14 encapsulation ethernet-ccc
set interfaces xe-0/0/14 unit 0 family ccc
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 virtual-circuit-id 3
set protocols l2circuit neighbor 10.8.224.187 interface xe-0/0/14.0 no-control-word
{master:0}
root@switch02-t>西岸show l2circuit connections extensive..。
Neighbor: 10.8.224.190
Interface Type St Time last up # Up trans
et-0/0/0.0(vc 3) rmt Up Dec 24 07:18:33 2021 1
Remote PE: 10.8.224.190, Negotiated control-word: No
Incoming label: 118, Outgoing label: 26
Negotiated PW status TLV: No
Local interface: et-0/0/0.0, Status: Up, Encapsulation: ETHERNET
Flow Label Transmit: No, Flow Label Receive: No
Connection History:
Dec 24 07:18:33 2021 PE route changed
Dec 24 07:18:33 2021 Out lbl Update 26
Dec 24 07:18:33 2021 In lbl Update 118
Dec 24 07:18:33 2021 loc intf up et-0/0/0.0
root@rf-rtr1-l>东海岸的QFX交换机.
Neighbor: 10.8.224.187
Interface Type St Time last up # Up trans
xe-0/0/14.0(vc 3) rmt Up Dec 22 22:18:44 2021 1
Remote PE: 10.8.224.187, Negotiated control-word: No
Incoming label: 26, Outgoing label: 118
Negotiated PW status TLV: No
Local interface: xe-0/0/14.0, Status: Up, Encapsulation: ETHERNET
Flow Label Transmit: No, Flow Label Receive: No
Connection History:
Dec 22 22:18:44 2021 status update timer
Dec 22 22:18:43 2021 PE route changed
Dec 22 22:18:43 2021 Out lbl Update 118
Dec 22 22:18:43 2021 In lbl Update 26
Dec 22 22:18:43 2021 loc intf up xe-0/0/14.0
{master:0}
root@switch02-t>我检查了两边的路由表,push / pop条目看起来很好(这是单跳拓扑结构,因此这些服务上没有IGP标记)。
回答 1
Network Engineering用户
回答已采纳
发布于 2021-12-23 16:00:41
Juniper确实支持不匹配的封装,但从技术上讲,这并不是您要完成的任务所需要的。坦率地说,Juniper对不同封装类型的术语以及它们如何与不同的L2服务交互是不直观的。这件事已经让我沮丧了十多年了。
我离题了,这是你应该做的事。
拓扑
CE1 <== ETHERNET ==> PE1 <== LDP ==> PE2 <== VLAN ==> CE2我正在使用Spirent来模拟CEs,它们都在运行EBGP和一对用于PEs的MX204s。
CE1
192.85.1.2
AS1111
UntaggedCE2
192.85.1.1
AS2222
Tagged with VLAN 3113PE1 (CE接口)
set interfaces xe-0/1/0 encapsulation ethernet-ccc
set interfaces xe-0/1/0 unit 0 family cccPE1 (L2CKT)
set protocols l2circuit neighbor 2.2.2.2 interface xe-0/1/0.0 virtual-circuit-id 2
set protocols l2circuit neighbor 2.2.2.2 interface xe-0/1/0.0 no-control-wordPE2 (L2CKT)
set protocols l2circuit neighbor 1.1.1.1 interface xe-0/1/0.0 virtual-circuit-id 2
set protocols l2circuit neighbor 1.1.1.1 interface xe-0/1/0.0 no-control-wordPE2 (CE接口)
set interfaces xe-0/1/0 enable
set interfaces xe-0/1/0 vlan-tagging
set interfaces xe-0/1/0 encapsulation flexible-ethernet-services
set interfaces xe-0/1/0 unit 0 encapsulation vlan-ccc
set interfaces xe-0/1/0 unit 0 vlan-id 3113
set interfaces xe-0/1/0 unit 0 input-vlan-map pop
set interfaces xe-0/1/0 unit 0 output-vlan-map push您将注意到与您的配置有几个不同之处,我将突出说明主要的差异。我怀疑你看到的是单向交通,这是因为由于缺乏VLAN标签,其中一个CEs没有收到预期的结果。
- 使用
vlan-id而不是vlan-id-list更简单,如果您需要终止多个VLAN,我建议每个VLAN使用一个子接口/单元,类似于这种配置方式。 input-vlan-map pop意味着远程端是ethernet-ccc,应该接收未标记的数据包,因此它会在入口(从CE)弹出标记。output-vlan-map push意味着本地PE正在接收来自远程PE的无标记分组,并且应该在向CE发送流量之前强制配置VLAN标记(3113)。
A常见皮损
set interfaces xe-0/1/0 unit 0 output-vlan-map push vlan-id 3113与
set interfaces xe-0/1/0 unit 0 vlan-id 3113事实上,如果你将两者结合起来,你将双推3113,尽管它不是那么明显。
我离题了,这是最后的结果。
PE1
Neighbor: 2.2.2.2
Interface Type St Time last up # Up trans
xe-0/1/0.0(vc 2) rmt Up Dec 23 14:37:01 2021 1
Remote PE: 2.2.2.2, Negotiated control-word: No
Incoming label: 17, Outgoing label: 17
Negotiated PW status TLV: No
Local interface: xe-0/1/0.0, Status: Up, Encapsulation: ETHERNET
Flow Label Transmit: No, Flow Label Receive: NoPE2
Neighbor: 1.1.1.1
Interface Type St Time last up # Up trans
xe-0/1/0.0(vc 2) rmt Up Dec 23 14:37:01 2021 1
Remote PE: 1.1.1.1, Negotiated control-word: No
Incoming label: 17, Outgoing label: 17
Negotiated PW status TLV: No
Local interface: xe-0/1/0.0, Status: Up, Encapsulation: ETHERNET
Flow Label Transmit: No, Flow Label Receive: No尽管有明显的VLAN标记/操作,但封装是匹配的。这是属于“不那么直观”的东西之一。
最后,这是结果转发平面显示与BGP会话之间的螺旋端口建立。
页面原文内容由Network Engineering提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://networkengineering.stackexchange.com/questions/77387
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号