Ads 468x60px

Wednesday, July 13, 2011

E-LAN services using QinQ-Maipu

In this section, I will share one testing report. This will help you to configure E-LAN services over Maipu Metro Ethernet switch network.

In this scenario, We are using Maipu 3400 switches and enabled QinQ technology in all switches to achieve ELAN and make reachable all connected routers. There is one more way of configuration using evc commands. But I feel this is easy to configure.

So I prefer this way.
Here is topology:

Topology


VLAN200 is used as outer vlan (ISP inside VLAN)in the backbone network. We are using QinQ tunnel technology to achieve ELAN services.

Objective - The requirement is Router-B can communicate with Router-A, Router-C can communicate with Router-A, and Router-B can’t communicate with Router-C.

Configurations:

Switch-A:

hostname SW-A

vlan 1      
 exit

vlan 100
 description ###control_VLAN###
 exit

vlan 200
 description ###outer_tag###
 exit

!slot_0_SM3400-24FET4GEFA
!slot 0
port 0/0
 port-type nni
 port mode trunk
 port trunk allowed vlan all
 port trunk pvid vlan 1
 no spanning-tree enable
 exit
port 0/1
 port-type nni
 port mode trunk
 port trunk allowed vlan all
 port trunk pvid vlan 1
 no spanning-tree enable
 exit
port 0/2
 port-type nni
 port mode hybrid
 port hybrid untagged vlan 1,200
 port hybrid pvid vlan 1
 vlan dot1q-tunnel enable
 vlan dot1q-tunnel drop
 vlan dot1q-tunnel 20,30 200
 exit

interface vlan1
 ip address 1.1.1.1 255.255.255.0
 exit

eips ring 1 master segment
 control vlan 100
 instance 0
 primary port 0/0
 secondary port 0/1
 eips start
 exit

Switch-B:

hostname SW-B

vlan 1      
 exit

vlan 100
 description ###control_VLAN###
 exit

vlan 200
 description ###outer_tag###
 exit

!slot_0_SM3400-24FET4GEFA
!slot 0
port 0/0
 port-type nni
 port mode trunk
 port trunk allowed vlan all
 port trunk pvid vlan 1
 no spanning-tree enable
 exit
port 0/1
 port-type nni
 port mode trunk
 port trunk allowed vlan all
 port trunk pvid vlan 1
 no spanning-tree enable
 exit
port 0/2
 port-type nni
 port mode hybrid
 port hybrid untagged vlan 1,200
 port hybrid pvid vlan 1
 vlan dot1q-tunnel enable
 vlan dot1q-tunnel drop
 vlan dot1q-tunnel 20 200
 exit

interface vlan1
 ip address 1.1.1.2 255.255.255.0
 exit

eips ring 1 transit segment
 control vlan 100
 instance 0
 primary port 0/0
 secondary port 0/1
 eips start
 exit

Switch-C:

hostname SW-C

vlan 1      
 exit

vlan 100
 description ###control_VLAN###
 exit

vlan 200
 description ###outer_tag###
 exit

!slot_0_SM3400-24FET4GEFA
!slot 0
port 0/0
 port-type nni
 port mode trunk
 port trunk allowed vlan all
 port trunk pvid vlan 1
 no spanning-tree enable
 exit
port 0/1
 port-type nni
 port mode trunk
 port trunk allowed vlan all
 port trunk pvid vlan 1
 no spanning-tree enable
 exit
port 0/2
 port-type nni
 port mode hybrid
 port hybrid untagged vlan 1,200
 port hybrid pvid vlan 1
 vlan dot1q-tunnel enable
 vlan dot1q-tunnel drop
 vlan dot1q-tunnel 30 200
 exit

interface vlan1
 ip address 1.1.1.3 255.255.255.0
 exit

eips ring 1 transit segment
 control vlan 100
 instance 0
 primary port 0/0
 secondary port 0/1
 eips start
 exit

Router-A:

interface fastethernet0.20
 ip address 20.1.1.1 255.255.255.0
 encapsulation dot1q 20
 exit

interface fastethernet0.30
 ip address 30.1.1.1 255.255.255.0
 encapsulation dot1q 30
 exit

Router-B:

interface fastethernet0.20
 ip address 20.1.1.2 255.255.255.0
 encapsulation dot1q 20
 exit

Router-C:

interface fastethernet0.30
 ip address 30.1.1.2 255.255.255.0
 encapsulation dot1q 30
 exit

Result:

On the router A, router A can ping to router B and router C both


But router B can’t communicate with Router-C because they are in different VLAN:



Check the switch:



IOS version:

sp1-g-6.2.19.pck
size: 7979128bytes




Hope this configuration will help you in deployment of ELAN.
For any queries and feedback, Plz comment with your Name and mail id, you can use NAME/URL option.
  

Posted by Uttamkumar at 9:52 PM 14 comments
Labels: , , ,

Monday, July 11, 2011

VLAN Technology - 2

In this section, we will discuss about remaining VLAN types in continuation in last post VLAN technology.

MAC-based VLAN

The MAC-based VLAN divides VLAN ID for packets according to the source MAC address of the received packets. The untag packets received in the port are process as follows according to different configuration:
  • If the source MAC and the MAC address of MAC-based VLAN are consistent, and the In port of the packets is allocated to the VLAN of the corresponding VLAN ID, the packet is allocated to the VLAN ID corresponding to the MAC VLAN.
  • If the packets have no MAC set by the matched MAC VLAN, the packets are divided to the default VLAN ID of the port.


IP subnet-based VLAN

The IP subnet-based VLAN divides VLAN ID for packets according to the source IP address of the received packets. The untag packets received in the port are process as follows according to different configuration:

  • If the source IP address is in the network segment of IP subnet-based VLAN, and the In port of the packets is allocated to the VLAN of the corresponding VLAN ID, the packet is allocated to the VLAN ID corresponding to the network segment.
  • If the packets have no network segment set by the matched IP subnet VLAN, the packets are divided to the default VLAN ID of the port.


Protocol-based VLAN

The protocol-based VLAN divides VLAN ID for packets according to the encapsulation format and protocol type of the received packets. The protocol VLAN defines the protocol template. The protocol template is composed of the frame encapsulation format and the protocol type. The same port can be configured with multiple protocol templates. When the protocol VLAN is enabled in the port, the port is configured with protocol template, the protocol VLAN process the received untag packets as follows according to different configuration.

  • If the packet matches the protocol template, and the In port of the packet is allocated to the VLAN of the corresponding VLAN ID, the packet is allocated to VLAN ID corresponding to the port configuration protocol template.
  • If the packets have no matched protocol template, the packets are divided to the default VLAN ID of the port. 
Till now we have seen, types of VLANs. Now we will have a example for each type of VLAN configuration. 


Port-Based VLAN Example

Configuring VLAN for Access Port

Command
Description
switch#configure terminal
Users enter the global configuration mode from the privilege user mode .
switch(config)#port 0/1
Enter port 0/1 configuration status
switch(config-port-0/1)#port mode access
Configure the type of a port as Access
(The default type is Access)
switch(config-port-0/1)#port access vlan 10
Add the port into VLAN 10.

 Configuring VLAN of a Trunk Port

Command
Description
switch#configure terminal
Users enter the global configuration mode from the privilege user mode
switch(config)#port 0/1
Enter port 0/1 configuration status
switch(config-port-0/1)#port mode trunk
Configure the type of the port as Trunk
switch(config-port-0/1)#port trunk allowed vlan 10 - 20
The port permits VLAN 10–20 to pass
switch(config-port-0/1)#port trunk pvid vlan 30
Configure the default VLAN of the port
switch(config-port-0/1)#vlan dot1q tag pvid
Configure the default VLAN packets of a Trunk port to be sent with Tag

Configuring VLAN of Hyrbid Port

Command
Description
switch#configure terminal
Users enter the global configuration mode from the privilege user mode
switch(config)#port 0/1
Enter port 0/1 configuration status
switch(config-port-0/1)#port mode hybrid
Configure the type of the port as Hybrid.
switch(config-port-0/1)# port hybrid untagged vlan 10
The port is added to VLAN 10. The VLAN packets are sent without tag
switch(config-port-0/1)#port hybrid tagged  vlan 30
The port is added to VLAN30. The VLAN packets are sent with tag.
switch(config-port-0/1)# port hybrid pvid vlan 20
Configure the default VLAN of the port

MAC-Based VLAN Example

Command
Description
switch#configure terminal
Users enter the global configuration mode from the privilege user mode
switch(config)# mac-vlan mac-address 1.1.1 vlan 10
Configure the items in the MAC VLAN table, to assign the Untagged of the corresponding MAC into the VLAN.
switch(config)#port 0/1
Enter port 0/1 configuration status
switch(config-port-0/1)# mac-vlan enable
Configure the port to enable the MAC VLAN function

IP Subnet-Based VLAN Example

Command
Description
switch#configure terminal
Users enter the global configuration mode from the privilege user mode
switch(config)# ip-subnet-vlan ipv4 100.100.100.100 mask 255.255.255.0 vlan 10
Configure the items in IP subnet VLAN table, to assign the Untagged of the corresponding network segment to the VLAN.
switch(config)#port 0/1
Enter port 0/1 configuration status
switch(config-port-0/1)# ip-subnet-vlan enable
Configure the port enabling IP subnet VLAN function

Protocol-Based VLAN Example

Command
Description
switch#configure terminal
Users enter the global configuration mode from the privilege user mode
switch(config)#protocol-vlan profile 1 frame-type ETHERII ether-type 0x8200
Configure the protocol template
switch(config)#port 0/1
Enter port 0/1 configuration status
switch(config-port-0/1)# protocol-vlan enable
Configure the port to enable the protocol VLAN function
switch(config-port-0/1)#protocol-vlan profile 1 vlan 10
Configure the port to match the corresponding VLAN of the protocol template

Hope this post can help you with better understanding of VLAN technology and types of VLAN and related configuration. 
This configuration is tested on Maipu switches.

For any feedback, Plz comment with Name and Mail Id. New users can use Name/URL option.
Posted by Uttamkumar at 10:49 AM 11 comments
Labels: , ,
Subscribe to: Posts (Atom)
Related Posts Plugin for WordPress, Blogger...