1、VxLAN帧结构
二层数据封装
2、VxLAN头部封装
3、VxLAN关键技术术语
- VNI【Virtual Network Instance|虚拟网络实例】:类似于 VLAN 实例,表征着一种服务(Service)
- VNID【虚拟网络标识符】: 类似于 VLAN ID
- NVE【网络虚拟边界】: 起 VxLAN 隧道的设备称之为 NVE 设备
- VTEP【VxLAN 隧道终点】:VxLAN 网络中的 NVE 以 VTEP 来进行标识的,使用 IP 地址进行表示;两个 VTEP 可以确定一条 VxLAN 隧道,VTEP 间的这条VxLAN 隧道将被两个 NVE 间的所有 VNI所公有
4、VxLAN网络架构
5、配置实例
配置:CE1
[ce1]display current-configuration
!Software Version V200R005C10SPC607B607
!Last configuration was updated at 2024-08-05 19:25:31+00:00
#
sysname ce1
#
device board 17 board-type CE-MPUB
device board 1 board-type CE-LPUE
#
bridge-domain 10
vxlan vni 5000
#
aaa
#
authentication-scheme default
#
authorization-scheme default
#
accounting-scheme default
#
domain default
#
domain default_admin
#
interface MEth0/0/0
undo shutdown
#
interface GE1/0/0
undo shutdown
#
interface GE1/0/0.1 mode l2
encapsulation dot1q vid 10
bridge-domain 10
#
interface GE1/0/1
undo portswitch
undo shutdown
ip address 20.1.1.1 255.255.255.0
#
interface GE1/0/2
shutdown
#
interface GE1/0/3
shutdown
#
interface GE1/0/4
shutdown
#
interface GE1/0/5
shutdown
#
interface GE1/0/6
shutdown
#
interface GE1/0/7
shutdown
#
interface GE1/0/8
shutdown
#
interface GE1/0/9
shutdown
#
interface LoopBack0
ip address 1.1.1.1 255.255.255.255
#
interface Nve1
source 1.1.1.1
vni 5000 head-end peer-list 3.3.3.3
#
interface NULL0
#
ospf 100 router-id 1.1.1.1
area 0.0.0.0
network 1.1.1.1 0.0.0.0
network 20.1.1.0 0.0.0.255
#
ssh authorization-type default aaa
#
ssh server cipher aes256_gcm aes128_gcm aes256_ctr aes192_ctr aes128_ctr aes256_
cbc aes128_cbc 3des_cbc
#
ssh server dh-exchange min-len 1024
#
ssh client cipher aes256_gcm aes128_gcm aes256_ctr aes192_ctr aes128_ctr aes256_
cbc aes128_cbc 3des_cbc
#
user-interface con 0
#
vm-manager
#
return
[ce1]
CE3:
[ce3]display current-configuration
!Software Version V200R005C10SPC607B607
!Last configuration was updated at 2024-08-05 19:26:20+00:00
#
sysname ce3
#
device board 17 board-type CE-MPUB
device board 1 board-type CE-LPUE
#
bridge-domain 10
vxlan vni 5000
#
aaa
#
authentication-scheme default
#
authorization-scheme default
#
accounting-scheme default
#
domain default
#
domain default_admin
#
interface MEth0/0/0
undo shutdown
#
interface GE1/0/0
undo shutdown
#
interface GE1/0/0.1 mode l2
encapsulation dot1q vid 20
bridge-domain 10
#
interface GE1/0/1
undo portswitch
undo shutdown
ip address 30.1.1.1 255.255.255.0
#
interface GE1/0/2
shutdown
#
interface GE1/0/3
shutdown
#
interface GE1/0/4
shutdown
#
interface GE1/0/5
shutdown
#
interface GE1/0/6
shutdown
#
interface GE1/0/7
shutdown
#
interface GE1/0/8
shutdown
#
interface GE1/0/9
shutdown
#
interface LoopBack0
ip address 3.3.3.3 255.255.255.255
#
interface Nve1
source 3.3.3.3
vni 5000 head-end peer-list 1.1.1.1
#
interface NULL0
#
ospf 100 router-id 3.3.3.3
area 0.0.0.0
network 3.3.3.3 0.0.0.0
network 30.1.1.0 0.0.0.255
#
ssh authorization-type default aaa
#
ssh server cipher aes256_gcm aes128_gcm aes256_ctr aes192_ctr aes128_ctr aes256_
cbc aes128_cbc 3des_cbc
#
ssh server dh-exchange min-len 1024
#
ssh client cipher aes256_gcm aes128_gcm aes256_ctr aes192_ctr aes128_ctr aes256_
cbc aes128_cbc 3des_cbc
#
user-interface con 0
#
vm-manager
#
return
[ce3]