Contents

EVPN-DCI commands· 1

advertise evpn route· 1

advertise l3vpn route· 2

evpn edge group· 2

mapping vni 3

mapping-vni remove vpn-target 4

nexthop evpn-m-lag group-address· 5

peer advertise evpn-route suppress· 6

peer advertise original-route· 7

peer re-originated· 8

peer router-mac-local 9

peer suppress re-originated· 10

 

EVPN-DCI commands

advertise evpn route

Use advertise evpn route to enable BGP EVPN route advertisement for the BGP VPNv4 or VPNv6 address family.

Use undo advertise evpn route to disable BGP EVPN route advertisement for the BGP VPNv4 or VPNv6 address family.

Syntax

advertise evpn route [ replace-rt ][ advertise-policy policy-name ]

undo advertise evpn route

Default

BGP EVPN routes are not advertised through the BGP VPNv4 or VPNv6 address family.

Views

BGP VPNv4 address family

BGP VPNv6 address family

Predefined user roles

network-admin

Parameters

replace-rt: Replaces the route targets of BGP EVPN routes with the route targets of BGP VPNv4 or VPNv6 routes. If you do not specify this keyword, route targets of BGP EVPN routes are not modified.

advertise-policy policy-name: Specifies a routing policy to filter the BGP EVPN routes to be advertised to BGP VPNv4 or VPNv6 peers. The policy-name argument specifies the routing policy name, a case-sensitive string of 1 to 63 characters. If you do not specify this option, all BGP EVPN routes are advertised to BGP VPNv4 or VPNv6 peers.

Usage guidelines

To enable communication between data centers interconnected through an MPLS L3VPN or MPLS L3VPN over SRv6 network, you must configure the BGP EVPN address family and the BGP VPNv4 or VPNv6 address family to exchange routes on EDs.

After you execute this command, the device advertises IP prefix advertisement routes and MAC/IP advertisement routes that contain host route information through the BGP VPNv4 or VPNv6 address family.

Examples

# Enable BGP EVPN route advertisement for the BGP VPNv4 address family.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family vpnv4

[Sysname-bgp-default-vpnv4] advertise evpn route

advertise l3vpn route

Use advertise l3vpn route to enable BGP VPNv4 or VPNv6 route advertisement for the BGP EVPN address family.

Use undo advertise l3vpn route to disable BGP VPNv4 or VPNv6 route advertisement for the BGP EVPN address family.

Syntax

advertise l3vpn route [ replace-rt ][ advertise-policy policy-name ]

undo advertise l3vpn route

Default

BGP VPNv4 or VPNv6 routes are not advertised through the BGP EVPN address family.

Views

BGP EVPN address family view

Predefined user roles

network-admin

Parameters

replace-rt: Replaces the route targets of BGP VPNv4 or VPNv6 routes with the route targets of BGP EVPN routes. If you do not specify this keyword, route targets of BGP VPNv4 or VPNv6 routes are not modified.

advertise-policy policy-name: Specifies a routing policy to filter the BGP VPNv4 or VPNv6 routes to be advertised to BGP EVPN peers. The policy-name argument specifies the routing policy name, a case-sensitive string of 1 to 63 characters. If you do not specify this option, all BGP VPNv4 or VPNv6 routes are advertised to BGP EVPN peers.

Usage guidelines

To enable communication between data centers interconnected through an MPLS L3VPN or MPLS L3VPN over SRv6 network, you must configure the BGP EVPN address family and the BGP VPNv4 or VPNv6 address family to exchange routes on EDs.

After you execute this command, the device advertises BGP VPNv4 or VPNv6 routes as IP prefix advertisement routes through the BGP EVPN address family.

Examples

# Enable BGP VPNv4 or VPNv6 route advertisement for the BGP EVPN address family.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] advertise l3vpn route

evpn edge group

Use evpn edge group to configure a virtual ED address.

Use undo evpn edge group to restore the default.

Syntax

evpn edge group group-ip { group-ipv4 | group-ipv6 }

undo evpn edge group

Default

No virtual ED address is configured.

Views

System view

Predefined user roles

network-admin

Parameters

group-ipv4: Specifies the IPv4 virtual ED address.

group-ipv6: Specifies the IPv6 virtual ED address.

Usage guidelines

For high availability and load sharing, you can deploy two EDs at a data center. To virtualize the redundant EDs into one device, you must configure the same virtual ED address on them. The redundant EDs use the virtual ED address to establish tunnels with VTEPs and remote EDs.

Redundant EDs cannot provide access service for local VMs. They can act only as EDs. For correct communication, do not redistribute external routes on only one of the redundant EDs. However, you can redistribute the same external routes on both EDs.

On a redundant ED, the virtual ED address must be the IP address of a loopback interface, and it cannot be the BGP peer IP address of the ED.

EVPN-DCI dual-homing is mutually exclusive with EVPN M-LAG. Do not use the evpn edge group and evpn m-lag group commands together.

This command is applicable only to an EVPN-DCI network, and it cannot take effect on an EVPN L3VPN network.

Examples

# Configure 1.2.3.4 as the virtual ED address.

<Sysname> system-view

[Sysname] evpn edge group 1.2.3.4

Related commands

evpn m-lag group

mapping vni

Use mapping vni to map a local VXLAN to a remote VXLAN.

Use undo mapping vni to restore the default.

Syntax

mapping vni vxlan-id

undo mapping vni

Default

A local VXLAN is not mapped to any remote VXLAN.

Views

EVPN instance view

Predefined user roles

network-admin

Parameters

vxlan-id: Specifies a remote VXLAN ID in the range of 0 to 16777215.

Usage guidelines

The VXLAN mapping feature provides Layer 2 connectivity for a tenant subnet that uses different VXLAN IDs in multiple data centers.

VXLAN mapping includes the following types:

·     Non-intermediate VXLAN mapping—When two data centers use different VXLAN IDs for a subnet, map the local VXLAN to the remote VXLAN on the ED of one data center. For example, for VXLAN 10 of data center 1 to communicate with VXLAN 20 of data center 2, map VXLAN 10 to VXLAN 20 on the ED of data center 1.

·     Intermediate VXLAN mapping—When multiple data centers use different VXLAN IDs for a subnet, map the VXLANs to an intermediate VXLAN on all EDs. For example, data center 1 uses VXLAN 10, data center 2 uses VXLAN 20, and data center 3 uses VXLAN 30. To provide connectivity for the VXLANs, map them to intermediate VXLAN 500 on EDs of the data centers. You must use intermediate VXLAN mapping if more than two data centers use different VXLAN IDs. The intermediate VXLAN can be used only for VXLAN mapping, and it cannot be used for common VXLAN services.

You must create mapped remote VXLANs on the device, create an EVPN instance for each remote VXLAN, and configure RD and route target settings for the EVPN instances.

The mapped remote VXLAN ID cannot be any L3 VXLAN ID specified by using the l3-vni command or the reserved VXLAN ID specified by using the reserved vxlan command.

Examples

# Map local VXLAN 100 to remote VXLAN 200.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] vxlan 100

[Sysname-vsi-aaa-vxlan-100] quit

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] mapping vni 200

Related commands

reserved vxlan (VXLAN Command Reference)

mapping-vni remove vpn-target

Use mapping-vni remove vpn-target to remove the route targets of VPN instances from BGP EVPN routes for mapped remote VXLANs.

Use undo mapping-vni remove vpn-target to restore the default.

Syntax

mapping-vni remove vpn-target

undo mapping-vni remove vpn-target

Default

The device does not remove the route targets of VPN instances from BGP EVPN routes for mapped remote VXLANs.

Views

BGP EVPN address family view

Predefined user roles

network-admin

Usage guidelines

This command enables an EVPN-DCI ED to remove the route targets of the VPN instances with L3 VXLAN IDs associated from BGP EVPN routes when the ED performs VXLAN mapping. It prevents remote EDs from adding the BGP EVPN routes for mapped remote VXLANs to the routing tables of VPN instances. If only Layer 2 connectivity is required between data centers, use this command on the EDs of the data centers to disable Layer 3 forwarding.

If the peer re-originated and mapping vni commands are used together on an ED, the ED advertises both original and reoriginated BGP EVPN routes that carry different VXLAN IDs. To avoid forwarding failure, use the mapping-vni remove vpn-target command to remove the route targets of VPN instances from the original BGP EVPN routes. This allows remote EDs to add only the reoriginated BGP EVPN routes to the routing tables of VPN instances.

Examples

# Remove the route targets of VPN instances from BGP EVPN routes for mapped remote VXLANs.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] mapping-vni remove vpn-target

Related commands

mapping vni

peer re-originated

nexthop evpn-m-lag group-address

Use nexthop evpn-m-lag group-address to enable the device to replace the next hop in advertised BGP EVPN routes with the virtual VTEP address.

Use nexthop evpn-m-lag group-address to restore the default.

Syntax

nexthop evpn-m-lag group-address

undo nexthop evpn-m-lag group-address

Default

When advertising BGP EVPN routes to an EBGP peer or peer group, the device replaces the next hop with the IP address of the source interface used to establish BGP sessions. When advertising EBGP routes to an IBGP peer or peer group, the device does not modify the next hop.

Views

BGP EVPN address family view

Predefined user roles

network-admin

Usage guidelines

When you use M-LAG on EDs in an EVPN-DCI network, you must enable the EDs to replace the next hop in advertised BGP EVPN routes with the virtual VTEP address.

Examples

# Enable the device to replace the next hop in advertised BGP EVPN routes with the virtual VTEP address.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] nexthop evpn-m-lag group-address

peer advertise evpn-route suppress

Use peer advertise evpn-route suppress to suppress the advertisement of specific BGP EVPN routes to a peer or peer group.

Use undo peer advertise evpn-route suppress to restore the default.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } advertise evpn-route suppress { ip-prefix | mac-ip }

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } advertise evpn-route suppress { ip-prefix | mac-ip }

Default

Advertisement of BGP EVPN routes is not suppressed.

Views

BGP EVPN address family view

Predefined user roles

network-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

ip-prefix: Suppresses IP prefix advertisement routes.

mac-ip: Suppresses MAC/IP advertisement routes.

Usage guidelines

To reduce the number of BGP EVPN routes on EDs of an EVPN-DCI network, suppress the advertisement of specific BGP EVPN routes on the EDs.

If two VSI interfaces on EVPN gateways of different data centers use the same IP address, do not suppress the advertisement of MAC/IP advertisement routes on the EDs of the data centers. If you suppress the advertisement of these routes, the EDs cannot communicate with each other.

Examples

# Suppress the IP prefix advertisement routes advertised to peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 advertise evpn-route suppress ip-prefix

peer advertise original-route

Use peer advertise original-route to enable the device to advertise original BGP EVPN routes to a peer or peer group.

Use undo peer advertise original-route to disable the device from advertising original BGP EVPN routes to a peer or peer group.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } advertise original-route

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } advertise original-route

Default

The device advertises only reoriginated BGP EVPN routes to peers and peer groups after the peer re-originated command is executed.

Views

BGP EVPN address family view

Predefined user roles

network-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

Usage guidelines

For this command to take effect on an ED, first execute the peer re-originated command.

In an EVPN-DCI network, an ED configured with the peer re-originated command advertises only reoriginated BGP EVPN routes. For the ED to advertise both original and reoriginated BGP EVPN routes to a peer or peer group, execute the peer advertise original-route command on the ED.

Examples

# Enable the device to advertise original BGP EVPN routes to peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 advertise original-route

Related commands

peer re-originated

peer suppress re-originated

peer re-originated

Use peer re-originated to enable the device to reoriginate BGP EVPN routes based on the BGP EVPN routes received from a peer or peer group.

Use undo peer re-originated to disable the device from reoriginating BGP EVPN routes based on the BGP EVPN routes received from a peer or peer group.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } re-originated [ imet | ip-prefix | mac-ip ] [ replace-rt ]

peer { group-name | ipv4-address [ mask-length ] } re-originated [ s-pmsi | smet ] [ replace-rt ]

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } re-originated [ imet | ip-prefix | mac-ip ]

undo peer { group-name | ipv4-address [ mask-length ] } re-originated [ s-pmsi | smet ]

Default

The device does not reoriginate BGP EVPN routes based on received BGP EVPN routes.

Views

BGP EVPN address family view

Predefined user roles

network-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

imet: Specifies IMET routes.

ip-prefix: Specifies IP prefix advertisement routes.

mac-ip: Specifies MAC/IP advertisement routes.

s-pmsi: Specifies S-PMSI routes.

smet: Specifies SMET routes.

replace-rt: Replaces the L3 VXLAN ID, RD, and route targets of BGP EVPN routes with those of the matching local VPN instance. If you do not specify this keyword, only the L3 VXLAN ID and RD will be replaced.

Usage guidelines

In an EVPN-DCI network, use this command for the following purposes:

·     Hide the L3 VXLAN IDs of data centers.

·     Enable communication between data centers that use different L3 VXLAN IDs.

·     Enable communication over an EVPN L3VPN over SRv6 network between two data centers with EVPN VXLAN networks deployed. This command enables the border devices of the data centers to assign SRv6 SIDs to IP prefix advertisement routes that carry L3 VXLAN IDs and add L3 VXLAN IDs to IP prefix advertisement routes that carry SRv6 SIDs.

After you execute this command on an ED, the ED performs the following operations after receiving BGP EVPN routes from a VTEP or remote ED:

1.     Matches the route targets of the routes with the import route targets of local VPN instances.

2.     Replaces the L3 VXLAN ID and RD of the routes with those of the matching local VPN instance.

3.     Advertises the routes to a VTEP or remote ED.

After you execute this command, an ED advertises only reoriginated BGP EVPN routes. The original BGP EVPN routes are not advertised.

If the RD of a received BGP EVPN route is identical to the RD of the matching local VPN instance, an ED does not replace the L3 VXLAN ID of the route or reoriginate the route. As a result, the ED does not advertise the route. As a best practice, assign unique RDs to VPN instances on different EVPN gateways and EDs when you use this command.

If you do not specify a route type, this command applies to IP prefix advertisement routes.

Examples

# Replace the L3 VXLAN ID and RD of the BGP EVPN routes received from peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 re-originated

Related commands

peer advertise original-route

peer suppress re-originated

peer router-mac-local

Use peer router-mac-local to enable route router MAC replacement for a peer or peer group.

Use undo peer router-mac-local to cancel route router MAC replacement configuration for a peer or peer group.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } router-mac-local [ dci ]

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } router-mac-local

Default

The device does not modify the router MAC address of routes before advertising the routes.

Views

BGP EVPN address family view

Predefined user roles

network-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

dci: Establishes VXLAN-DCI tunnels with the peer or peer group. If you do not specify this keyword, VXLAN tunnels are established with the peer or peer group.

Usage guidelines

This command enables an ED to use its router MAC address to replace the router MAC address of routes received from and advertised to a peer or peer group in the local data center. The router MAC replacement process is as follows:

·     For routes received from the peer or peer group, the ED performs router MAC replacement and advertises the routes to remote EDs.

·     For routes received from a remote data center, the ED performs router MAC replacement and advertises the routes to the peer or peer group.

Examples

# In BGP EVPN address family view, enable route router MAC replacement for peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 router-mac-local

peer suppress re-originated

Use peer suppress re-originated to suppress advertisement of reoriginated BGP EVPN routes to a peer or peer group.

Use undo peer suppress re-originated to disable suppression of reoriginated BGP EVPN route advertisement to a peer or peer group.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } suppress re-originated { imet | ip-prefix | mac-ip }

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } suppress re-originated { imet | ip-prefix | mac-ip }

Default

The device advertises reoriginated BGP EVPN routes to peers and peer groups after the peer re-originated command is executed.

Views

BGP EVPN address family view

Predefined user roles

network-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

imet: Specifies IMET routes.

ip-prefix: Specifies IP prefix advertisement routes.

mac-ip: Specifies MAC/IP advertisement routes.

Usage guidelines

An ED configured with the peer re-originated and peer advertise original-route commands advertises both original and reoriginated BGP EVPN routes. For the ED to advertise only original BGP EVPN routes to a peer or peer group, execute the peer suppress re-originated command on the ED.

Examples

# Suppress advertisement of reoriginated IP prefix advertisement routes to peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 suppress re-originated ip-prefix

Related commands

peer advertise original-route

peer re-originated