Scribd
Upload
122 views19 pages

Cisco VXLAN

VXLAN is a tunneling protocol that allows layer 2 networks to be extended across layer 3 boundaries by encapsulating layer 2 frames in UDP packets with VXLAN headers. This solves issues with traditional layer 2 networks like limited VLAN IDs and lack of equal-cost multi-path routing. VXLAN uses VXLAN Network Identifiers and VXLAN Tunnel End Points to segment traffic and encapsulate/decapsulate frames. Control planes using multicast or BGP EVPN distribute MAC/IP table entries between VTEPs to enable forwarding.

Uploaded by

Malik Salahuddin
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
122 views19 pages

Cisco VXLAN

VXLAN is a tunneling protocol that allows layer 2 networks to be extended across layer 3 boundaries by encapsulating layer 2 frames in UDP packets with VXLAN headers. This solves issues with traditional layer 2 networks like limited VLAN IDs and lack of equal-cost multi-path routing. VXLAN uses VXLAN Network Identifiers and VXLAN Tunnel End Points to segment traffic and encapsulate/decapsulate frames. Control planes using multicast or BGP EVPN distribute MAC/IP table entries between VTEPs to enable forwarding.

Uploaded by

Malik Salahuddin
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 19

VXLAN

Malik Salahuddin Nasir


Consultant Network & Security Msnetconsult
What is VXLAN ?

VXLAN (Virtual Extensible LAN) is an encapsulation method that tunnels a Layer 2 network over a Layer 3
underlay network. With the rapid increase of server virtualization over the last decade, the high demand has
led to multiple problems with our traditional Layer 2 networks. VXLAN uses destination UDP port 4789. The
Virtual Extensible LAN protocol supports the virtualization of the data center network and also solves
problems such as:

•A limited number of VLANs (only 12-bit VLAN ID)


•STP or Spanning-Tree Protocol
•ECMP or load balancing is not supported
•Large MAC address tables

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
Terminology

 VNI – The VNI (VXLAN Network Identifier) identifies the VXLAN and has a similar function as
the VLAN ID for regular VLANs. We use 24 bits for the VNI, which means we can create
16,777,215 ( ~16 million) VXLANs.
 VTEP – The VTEP (VXLAN tunnel endpoint) is the device that’s responsible for encapsulating
and de-encapsulating layer 2 traffic. This device is the connection between the overlay and the
underlay network.
 UNDERLAY – The underlay network is simple; its only job is to get packets from A to B. We
don’t use any layer 2 here, only layer 3. When we use layer 3, we can use an IGP like OSPF or
EIGRP and load balance traffic on redundant links.
 OVERLAY – An overlay network is a virtual network that runs on top of a physical underlay
network. Even if you never heard about this terminology before, you have probably seen it. A
GRE tunnel is a simple example of an overlay network. The GRE tunnel runs on top of a
physical underlay network.

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Overlay & Underlay

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
Overlay & Underlay(Cont)

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
VXLAN Header

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
VXLAN Packet

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
VXLAN Control Plane

Two types of VXLAN Control Planes:

Floor-and-Learn
• Multicast Control plane
• IGMP/Multicasting dependant
• Data driven flood & learning

EVPN MP-BGP
• EVPN as Control plane
• VTEPs exchange L2/L3 host and subnet reachability through EVPN control
plane
• Routing protocol for both L2 and L3 forwarding

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
VXLAN Flood and Learn Multicast-Based Control Plane
Learning

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
VXLAN EVPN MP-BGP Control Plane Learning for L2

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
VXLAN EVPN MP-BGP Control Plane Learning for L2 (Cont)

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
VXLAN EVPN MP-BGP Control Plane Learning for L3

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
VXLAN EVPN MP-BGP Control Plane Learning for L3 (Cont)

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 13
VXLAN Distributed IP anycast Gateway

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
VXLAN Distributed IP anycast Gateway (Cont)

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
VXLAN Packet flow for same VNI L2

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
VXLAN Packet flow for different VNI L3

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
VXLAN Packet flow

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
Thank you

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 19

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy