evpn and vcs Commands

next-hop resolution disabled

The next-hop resolution disabled command disables the next-hop resolution in routes received from BGP-evpn peers.

The no next-hop resolution disabled and the default next-hop resolution disabled commands enable the next-hop resolution in routes received from BGP-evpn peers.

Command Mode

Router-BGP Address-Family Configuration

Command Syntax

next-hop resolution disabled

Example

This command disables the next-hop resolution in routes received from BGP-evpn peers.

cvx(config)#router bgp 65002
cvx(config-router-bgp)#address-family evpn
cvx(config-router-bgp-af)#next-hop resolution disabled
cvx(config-router-bgp-af)#

redistribute bgp evpn vxlan

The redistribute bgp evpn vxlan command enables BGP-evpn routes to be redistributed to vcs which in turn advertises them to all VTEPs within the DC.

The no redistribute bgp evpn vxlan and the default redistribute bgp evpn vxlan commands disable the redistribution of BGP-evpn routes to vcs.

Command Mode

CVX-VXLAN Configuration

Command Syntax

redistribute bgp evpn vxlan

Example

This command enables redistribution of BGP-evpn routes to vcs.

cvx(config)#cvx
cvx(config-cvx)#no shutdown
cvx(config-cvx)#service vxlan
cvx(config-cvx-vxlan)#no shutdown
cvx(config-cvx-vxlan)#redistribute bgp evpn vxlan

redistribute service vxlan

The redistribute service vxlan command enables BGP to redistribute the Layer 2 bridging information received from vcs.

The no redistribute service vxlan and the default redistribute service vxlan commands disable the redistribution of the bridging information received from vcs.

Command Mode

Router-BGP VNI Configuration

Command Syntax

redistribute service vxlan

Example

This command enables redistribution of the Layer 2 bridging information received from vcs.

cvx(config)#router bgp 100
cvx(config-router-bgp)#vni-aware-bundle bundle1
cvx(config-macvrf-bundle1)#redistribute service vxlan

router general

The router general command configures a route-map to leak routes from one VRF to another VRF using a route-map named “RM1”.

The no router general and default router general commands disable the router general configuration from the running-config.

Command Mode

Router General Configuration

Command Syntax

router general

no router general

default router general

Examples

  • These commands configure a route-map to leak routes from “VRF1” to “VRF2” using a route-map “RM1”.

    switch(config)#router general
    switch(config-router-general)#vrf VRF2
    switch(config-router-general-vrf-VRF2)#leak routes source-vrf VRF1 subscribe-policy RM1
  • These commands configure a route-map with the prefix 10.0.0.0/8 and the administrative distance to 10 in the destination VRF.

    switch(config)#ip prefix-list PL1
    switch(config-ip-pfx)#permit 10.0.0.0/8 
    switch(config)#ip route-map RM1
    switch(config-route-map-RM1)#match ip address prefix-list PL1
    switch(config-route-map-RM1)#set distance 10

route-target export

The route-target export command allows the user to export routes from a VRF to the local VPN table using the route target extended community list.

The no route-target export and default route-target export commands remove the routes from the VPN table.

Command Mode

Router-BGP VNI Configuration

Syntax

route-target export [evpn | vpn-ipv4 | vpn-ipv6] <RT>

no route-target export

default route-target export

Parameters
  • evpn     evpn address family.
  • vpn-ipv4     MPLS L3 VPN IPv4 unicast address family.
  • vpn-ipv6     MPLS L3 VPN IPv6 unicast address family.
  • RT     route-target extended community.

Examples
  • These commands export routes from vrf-red to the VPN table.
    switch(config)#service routing protocols model multi-agent
    switch(config)#mpls ip
    switch(config)#router bgp 65001
    switch(config-router-bgp)#vrf vrf-red
    switch(config-router-bgp-vrf-vrf-red)#rd 1:1
    switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv4 10:10
    switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv6 10:20
  • These commands export routes from vrf-red to the evpn table.
    switch(config)#router bgp 65001
    switch(config-router-bgp)#vrf vrf-red
    switch(config-router-bgp-vrf-vrf-red)#rd 1:1
    switch(config-router-bgp-vrf-vrf-red)#route-target export evpn 10:1

route-target import

The route-target import command allows the user to import route target extended community lists from the local VPN table to the target VRF.

The no route-target import and default route-target import commands remove the routes from the VPN table.

Command Mode

Router-BGP VNI Configuration

Syntax

route-target import [evpn | vpn-ipv4 | vpn-ipv6] <RT>

no route-target import

default route-target import

Parameters

  • evpn     evpn address family.
  • vpn-ipv4     MPLS L3 VPN IPv4 unicast address family.
  • vpn-ipv6     MPLS L3 VPN IPv6 unicast address family.
  • RT     route-target extended community.

Examples
  • These commands import routes from the VPN table to vrf-blue.
    switch(config)#service routing protocols model multi-agent
    switch(config)#mpls ip
    switch(config)#router bgp 65001
    switch(config-router-bgp)#vrf vrf-blue
    switch(config-router-bgp-vrf-vrf-blue)#rd 2:2
    switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv4 10:10
    switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv6 10:20
  • These commands import routes from the evpn table to vrf-blue.
    switch(config)#router bgp 65001
    switch(config-router-bgp)#vrf vrf-blue
    switch(config-router-bgp-vrf-vrf-blue)#rd 2:2
    switch(config-router-bgp-vrf-vrf-blue)#route-target import evpn 10:1

route-target route-map

The route-target route-map command allows the user to export and import route target extended community lists from one VRF to another using route maps.

The no route-target route-map and default route-target route-map commands remove the routes from the VPN table.

Command Mode

Router-BGP VNI Configuration

Syntax

route-target {import | export} [evpn | vpn-ipv4 | vpn-ipv6] route-map RM

no route-target route-map

default route-target route-map

Parameters
  • evpn     evpn address family.
  • vpn-ipv4     MPLS L3 VPN IPv4 unicast address family.
  • vpn-ipv6     MPLS L3 VPN IPv6 unicast address family.
  • RM     route-map extended community.

Examples
  • These commands export routes from vrf-red to the VPN table.
    switch(config)#service routing protocols model multi-agent
    switch(config)#mpls ip
    switch(config)#router bgp 65001
    switch(config-router-bgp)#vrf vrf-red
    switch(config-router-bgp-vrf-vrf-red)#rd 1:1
    switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv4 10:10
    switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv6 10:20
    switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv4 route-map EXPORT_V4_ROUTES_T0_VPN_TABLE
    switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv6 route-map EXPORT_V6_ROUTES_T0_VPN_TABLE
  • These commands export routes from vrf-red to the evpn table.
    switch(config)#router bgp 65001
    switch(config-router-bgp)#vrf vrf-red
    switch(config-router-bgp-vrf-vrf-red)#rd 1:1
    switch(config-router-bgp-vrf-vrf-red)#route-target export evpn 10:1
    switch(config-router-bgp-vrf-vrf-red)#route-target export evpn route-map EXPORT_ROUTES_T0_evpn_TABLE
  • These commands import routes from the VPN table to vrf-blue.
    switch(config)#service routing protocols model multi-agent
    switch(config)#mpls ip
    switch(config)#router bgp 65001
    switch(config-router-bgp)#vrf vrf-blue
    switch(config-router-bgp-vrf-vrf-blue)#rd 1:1
    switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv4 10:10
    switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv6 10:20
    switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv4 route-map IMPORT_V4_ROUTES_VPN_TABLE
    switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv6 route-map IMPORT_V6_ROUTES_VPN_TABLE
  • These commands import routes from the evpn table to vrf-blue.
    switch(config)#router bgp 65001
    switch(config-router-bgp)#vrf vrf-blue
    switch(config-router-bgp-vrf-vrf-blue)#rd 2:2
    switch(config-router-bgp-vrf-vrf-blue)#route-target import evpn 10:1
    switch(config-router-bgp-vrf-vrf-blue)#route-target import evpn route-map IMPORT_ROUTES_FROM_evpn_TABLE

route-target

The route-target command configures a well-known extended community that is used by BGP-evpn to export routes from or import routes into MAC-VRF.

The no route-target and default route-target commands delete the route-target configuration.

Command Mode

Router-BGP VNI Configuration

Syntax

route-target {export | import | both} rt

no route-target

default route-target

Parameters
  • export     configures a well-known extended community that is attached to the routes exported by BGP-evpn.
  • import     configures a well known extended community that identifies the received routes that need to be imported into the MAC-VRF specified by the VNI bundle.
  • both     configures the same extended community for import and export of routes.
  • rt     route-target extended community.

    Example

This command configures a well-known extended community for import and export of routes.

cvx(config)#router bgp 100
cvx(config-router-bgp)#vni-aware-bundle bundle1
cvx(config-macvrf-bundle1)#route-target both 503:12
cvx(config-macvrf-bundle1)#

show bgp evpn

The show bgp evpn command displays information about the BGP-evpn routes of the switch.

Command Mode

Global Configuration

Command Syntax

show bgp evpn [community | detail | esi esid | extcommunity | host-flap | instance | large-community AS:nn:nn | next-hop | rt | admin:local-assignment | route-type | summary | vni vni_num]

Parameters

  • <no parameters>     displays all routes of the switch.
  • community     displays routes filtered by the specified community. Options include:

    • GSHUT     well known GSHUT community.
    • aa:nn    AS and network number, separated by colon. The value ranges from 1 to 4294967295.
    • internet     advertises route to the Internet community.
    • local-as     advertises route only to local peers.
    • no-advertise     does not advertise the route to any peer.
    • no-export     advertises route only within the BGP-evpn AS boundary
    • comm_num     community number. Values range from 1 to 4294967040.
  • detail     displays detailed information of routes.
  • esi esid     displays routes filtered by the specified Ethernet Segment Identifier (ESI).
  • extcommunity     displays routes that match with BGP or VPN extended community list. Options include:

    • esi-label esid    displays routes filtered by the specified value of ESI label. The value ranges from 0 to 16777215.
    • mac-mobility      displays routes filtered by the specified MAC mobility.
    • rt      displays routes filtered by the specified route target.
    • tunnel-encap vxlan     displays routes filtered by the VXLAN tunnel encapsulation.
    • router-mac H.H.H     displays routes filtered by the specified router MAC address.
  • host-flap     displays routes that contains MAC addresses that are blacklisted due to duplication.
  • instance     displays routes with evpn instances.
  • large-community AS:nn:nn     displays routes filtered by the specified large community.
  • next-hop     displays routes filtered by next-hop IPv4 or IPv6 addresses of remote VTEP.
  • rd admin:local-assignment     displays routes filtered by the specified Route Distinguisher (RD).
  • route-type     displays routes filtered by NLRI route type.
  • summary     displays summary of routes.
  • vni vni_num     displays routes filtered by the specified VXLAN Network Identifier (VNI). Value ranges from 1 to 4294967294.

Examples

  • This command displays BGP-evpn routes filtered by the VNI 3011.

    cvx(config-router-bgp-af)#show bgp evpn vni 3011
    BGP routing table information for VRF default
    Router identifier 2.0.2.2, local AS number 65002
    Route status codes: s - suppressed, * - valid, > - active, # - not installed, E - ECMP head, e - ECMP
    S - Stale, c - Contributing to ECMP, b - backup
    % - Pending BGP convergence
    Origin codes: i - IGP, e - EGP, ? - incomplete
    AS Path Attributes: Or-ID - Originator ID, C-LST - Cluster List, LL Nexthop - Link Local Nexthop
    
     NetworkNext HopMetricLocPref WeightPath
     * >Ec RD: 3.3.3.1:3011 auto-discovery 0 009a:f13b:53bb:8800:0000
    1.1.1.1 - 100 0 65999 65001 i
     *ec RD: 3.3.3.1:3011 auto-discovery 0 009a:f13b:53bb:8800:0000
    1.1.1.1 - 100 0 65999 65001 i
     * > RD: 3.3.3.2:3011 auto-discovery 0 009a:f13b:53bb:8800:0000
    - - - 0i
     * >Ec RD: 3.3.3.1:3011 imet 1.1.1.1
    1.1.1.1 - 100 0 65999 65001 i
     *ec RD: 3.3.3.1:3011 imet 1.1.1.1
    1.1.1.1 - 100 0 65999 65001 i
     * > RD: 3.3.3.2:3011 imet 1.1.1.2
    - - - 0i
    cvx(config-router-bgp-af)#
  • This command displays the prefixes that are exported to the respective VPN table, along with the route distinguisher.

    switch(config)#show bgp evpn
    BGP routing table information for VRF default
    Router identifier 1.1.1.1, local AS number 65001
    Route status codes: s - suppressed, * - valid, > - active, # - not installed, E - ECMP head, e - ECMP
    S - Stale, c - Contributing to ECMP, b - backup
    % - Pending BGP convergence
    Origin codes: i - IGP, e - EGP, ? - incomplete
    AS Path Attributes: Or-ID - Originator ID, C-LST - Cluster List, LL Nexthop - Link Local Nexthop
     NetworkNext HopMetricLocPref WeightPath
     * > RD: 400:1 ip-prefix 45.0.0.1/32
    - - - 0i
     * > RD: 400:1 ip-prefix 52.0.0.1/32
    - - - 0i
     * > RD: 400:1 ip-prefix 120.0.0.0/24
    - - - 0i
     * > RD: 400:1 ip-prefix 130.0.0.0/24
    - - - 0i
     * > RD: 400:1 ip-prefix 130.0.1.0/24

show ip bgp vrf

The show ip bgp vrf command displays the type of VPN from the imported route. It shows an indication that the IPv4 route has been leaked and source VRF information is displayed.

Command Mode

Global Configuration

Command Syntax

show ip bgp vrf {vrf_name | all | default}

Parameters

  • vrf_name     name of the VRF.
  • all     displays summary of all VRFs.
  • default     default virtual routing and forwarding instance.

Example

This command displays the leaked and source VRF information.
switch(config)#show ip bgp 13.0.0.0/24 vrf vrf-blue
BGP routing table information for VRF vrf-blue
Router identifier 5.0.0.2, local AS number 65001
BGP routing table entry for 130.110.61.0/24
 4.0.0.3 from 4.0.0.3 (52.0.0.1), imported evpn route, RD 400:1
Origin IGP, metric -, localpref 100, weight 0, valid, external,best
Extended Community: Route-Target-AS:4000:1 TunnelEncap:tunnelTypeVxlan 
evpnRouterMac:74:83:ef:0b:70:f3
Leaked from VRF vrf-red

show ip route vrf

The show ip route vrf command displays leaked prefixes with the label “ L” in the output that indicates that the IPv4 route has been leaked. It also displays information about the source VRF from which these prefixes have been leaked.

Command Mode

Global Configuration

Command Syntax

show ip route vrf {vrf_name | all}

Parameters
  • vrf_name     name of the VRF.
  • all     displays summary of all VRFs.

Example

These commands display the OSPF or OSPFV3 leaked routes as “redistribute ospf” and “redistribute ospfv3” are configured on the source VRF vrf-red.
switch(config)#show ip route vrf vrf-blue
VRF: vrf-blue
Codes: C - connected, S - static, K - kernel,
 O - OSPF, IA - OSPF inter area, E1 - OSPF external type 1,
 E2 - OSPF external type 2, N1 - OSPF NSSA external type 1,
 N2 - OSPF NSSA external type2, B I - iBGP, B E - eBGP,
 R - RIP, I L1 - IS-IS level 1, I L2 - IS-IS level 2,
 O3 - OSPFv3, A B - BGP Aggregate, A O - OSPF Summary,
 NG - Nexthop Group Static Route, V - VXLAN Control Service,
 DH - DHCP client installed default route, M - Martian,
 DP - Dynamic Policy Route, L - VRF Leaked
Gateway of last resort is not set
C 5.0.0.2/31 is directly connected, Ethernet14
B L57.0.0.3/32 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L45.0.0.1/32 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L52.0.0.1/32 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L120.0.0.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L130.0.0.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L130.0.1.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L130.0.2.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L130.0.3.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11

show ipv6 bgp vrf

The show ipv6 bgp vrf command displays the type of VPN from the imported route. It shows an indication that the IPv6 route has been leaked and source VRF information is displayed.

Command Mode

Global Configuration

Command Syntax

show ipv6 bgp vrf {vrf_name | all | default}

Parameters
  • vrf_name     name of the VRF.
  • all     displays summary of all VRFs.
  • default     default virtual routing and forwarding instance.

Example

This command displays the leaked and source VRF information.
switch(config)#show ipv6 bgp 2001:10:1:0::102/64 vrf default
BGP routing table information for VRF default
Router identifier 218.218.218.218, local AS number 34
Route status codes: s - suppressed, * - valid, > - active, # - not installed, E 
- ECMP head, e - ECMP
S - Stale, c - Contributing to ECMP, b - backup, L - 
labeled-unicast
% - Pending BGP convergence
Origin codes: i - IGP, e - EGP, ? - incomplete
AS Path Attributes: Or-ID - Originator ID, C-LST - Cluster List, LL Nexthop - 
Link Local Nexthop

 NetworkNext HopMetricLocPref WeightPath
 * > 2000:0:14:120::/64 2001:db8:1111:9000::- 100 109 i
 * 2000:0:14:120::/64 2001:db8:156:1010::2- 100 0 i
 * 2000:0:14:120::/64 2001:db8:152:1010::2- 100 0 i
 * 2000:0:14:120::/64 2001:db8:203:1010::2- 100 0 i

show ipv6 route vrf

The show ipv6 route vrf command displays leaked prefixes with the label “ L” in the output that indicates that the IPv6 route has been leaked. It also displays information about the source VRF from which these prefixes have been leaked.

Command Mode

Global Configuration

Command Syntax

show ipv6 route vrf{vrf_name | all}

Parameters

  • vrf_name     name of the VRF.
  • all     displays summary of all VRFs.

Example

These commands display the OSPF or OSPFV3 leaked routes as “redistribute ospf” and “redistribute ospfv3” are configured on the source VRF vrf-red.
switch(config)#show ipv6 route vrf vrf-blue
VRF: vrf-blue
Displaying 802 of 802 IPv6 routing table entries
Codes: C - connected, S - static, K - kernel, O3 - OSPFv3, B - BGP, R - RIP, A B - BGP Aggregate, I L1 - IS-IS level 1, I L2 - IS-IS level 2, DH - DHCP, NG - Nexthop Group Static Route, M - Martian, DP - Dynamic Policy Route, L - VRF Leaked
B L 18::1/128 [200/0] (source VRF vrf-red)
 via 4::3, Ethernet11
BL6::2/127 [200/0] (source VRF vrf-red)
 via fe80::7683:efff:fe0b:963d, Ethernet11
BL45::1/128 [200/0] (source VRF vrf-red)
 via fe80::7683:efff:fe0b:963d, Ethernet11
BL130::/64 [200/0] (source VRF vrf-red)
 via fe80::7683:efff:fe0b:963d, Ethernet11
BL130:0:0:1::/64 [200/0] (source VRF vrf-red)
 via fe80::7683:efff:fe0b:963d, Ethernet11
BL130:0:0:2::/64 [200/0] (source VRF vrf-red)
 via fe80::7683:efff:fe0b:963d, Ethernet11
BL130:0:0:3::/64 [200/0] (source VRF vrf-red)

show service vxlan address-table

The show service vxlan address-table command displays route entries in the MAC forwarding table that are added through the CVX.

Command Mode

CVX Global Configuration

Command Syntax

show service vxlan address-table {advertised | received}[address H.H.H | evpn | hsc | mss | switch [Word | all] | vni vnid | vtep A.B.C.D]

Parameters

  • advertised     displays the advertised route entries in the MAC forwarding table.
  • received     displays the received route entries in the MAC forwarding table.
  • address H.H.H     displays route entries that are filtered by the specified MAC addresses.
  • evpn     displays route entries filtered by BGP-evpn.
  • hsc     displays route entries filtered by Hardware Switch Controller (HSC).
  • mss     displays route entries filtered by Macro Segmentation Service (MSS).
  • switch     displays route entries that are filtered by the specified switch or all switches. Options include:

    • Word     Hostname, IP address or ID of the switch.
    • all     all switches
  • vni vnid     displays route entries filtered by the specified VXLAN Network Identifier (VNI). Value ranges from 1 to 4294967294.
  • vtep A.B.C.D     displays route entries filtered by the specified IP address of the remote Virtual Tunnel End Point (VTEP).

Examples

  • This command displays the route entries in MAC forwarding table advertised to BGP-evpn peers.

    cvx#show service vxlan address-table advertised evpn
    
     Advertised Mac Address Table
    ----------------------------------------------------------
    VNIMac AddressVTEP Moves
    ----------- ----------------- --------------- -----
    1000 02:01:62:01:00:00 10.0.0.1 1
    Total Mac Addresses for this criterion: 1
    
     Advertised Flood Table
    ---------------------------------------------------
    VNI Mac Address VTEP(s)
    ---------- ----------------- ------------------------------
    100000:00:00:00:00:0010.0.0.1 10.0.0.2
    Total Mac Addresses for this criterion: 1
    cvx#
  • This command displays the route entries in MAC forwarding table received from BGP-evpn peers.

    cvx#show service vxlan address-table received evpn
    
    Received Mac Address Table
    -------------------------------------------------------------
    SourceVNIMac AddressVTEP Moves
    ----------- -------- ----------------- ----------- -----
    evpn1000 02:01:62:02:00:0010.0.0.3 1
    Total Mac Addresses for this criterion: 1
    
    Received Flood Table
    --------------------------------------------------------------
    SourceVNIMac AddressVTEP
    ----------------- ----------- ----------------- --------------
    evpn1000 00:00:00:00:00:00 10.0.0.3
    evpn1000 00:00:00:00:00:00 10.0.0.4
    Total Mac Addresses for this criterion: 2
    cvx#

show vrf leak flapping

The show vrf leak flapping command displays the flapping prefixes of the routes leaked from one VRF to another VRF. Routes that are detected as “flapping” are blocked considering the future leaking policy execution.

Command Mode

EXEC

Command Syntax

show vrf leak flapping

Parameters

  • destination     displays flapping prefixes destined to a VRF.
  • prefix     displays flapping routes for a prefix.
  • source     displays flapping prefixes sourced from a VRF.
  • vrf     displays flapping prefixes associated with a VRF

Example

This command displays the flapping prefixes of the leaked routes.
switch#show vrf leak flapping

Age Source VRF Destination VRF PrefixCreated At 
-------- ---------------- --------------------- ----------------- ------------- 
141 VRF1 VRF210.0.2.0/243357281.40992 

vni-aware-bundle

The vni-aware-bundle command configures a BGP MAC-VRF containing Layer 2 routes from a group of VXLAN Network Identifiers (VNI).

Command Mode

Router BGP Configuration

Command Syntax

vni-aware-bundle vni_bundle_name

Parameter

vni_bundle_name    VNI bundle name.

Example

This command configures MAC-VRF BGP to support VNI bundle1.

cvx(config)#router bgp 100
cvx(config-router-bgp)#vni-aware-bundle bundle1
cvx(config-macvrf-bundle1)#