evpn and vcs Commands
Router BGP Configuration Mode
vcs Commands
Display Commands
next-hop resolution disabled
The next-hop resolution disabled command disables the next-hop resolution in routes received from BGP-evpn peers.
The no next-hop resolution disabled and the default next-hop resolution disabled commands enable the next-hop resolution in routes received from BGP-evpn peers.
Command Mode
Router-BGP Address-Family Configuration
Command Syntax
next-hop resolution disabled
Example
This command disables the next-hop resolution in routes received from BGP-evpn peers.
cvx(config)#router bgp 65002
cvx(config-router-bgp)#address-family evpn
cvx(config-router-bgp-af)#next-hop resolution disabled
cvx(config-router-bgp-af)#
redistribute bgp evpn vxlan
The redistribute bgp evpn vxlan command enables BGP-evpn routes to be redistributed to vcs which in turn advertises them to all VTEPs within the DC.
The no redistribute bgp evpn vxlan and the default redistribute bgp evpn vxlan commands disable the redistribution of BGP-evpn routes to vcs.
Command Mode
CVX-VXLAN Configuration
Command Syntax
redistribute bgp evpn vxlan
Example
This command enables redistribution of BGP-evpn routes to vcs.
cvx(config)#cvx
cvx(config-cvx)#no shutdown
cvx(config-cvx)#service vxlan
cvx(config-cvx-vxlan)#no shutdown
cvx(config-cvx-vxlan)#redistribute bgp evpn vxlan
redistribute service vxlan
The redistribute service vxlan command enables BGP to redistribute the Layer 2 bridging information received from vcs.
The no redistribute service vxlan and the default redistribute service vxlan commands disable the redistribution of the bridging information received from vcs.
Command Mode
Router-BGP VNI Configuration
Command Syntax
redistribute service vxlan
Example
This command enables redistribution of the Layer 2 bridging information received from vcs.
cvx(config)#router bgp 100
cvx(config-router-bgp)#vni-aware-bundle bundle1
cvx(config-macvrf-bundle1)#redistribute service vxlan
router general
The router general command configures a route-map to leak routes from one VRF to another VRF using a route-map named “RM1”.
The no router general and default router general commands disable the router general configuration from the running-config.
Command Mode
Router General Configuration
Command Syntax
router general
no router general
default router general
Examples
-
These commands configure a route-map to leak routes from “VRF1” to “VRF2” using a route-map “RM1”.
switch(config)#router general switch(config-router-general)#vrf VRF2 switch(config-router-general-vrf-VRF2)#leak routes source-vrf VRF1 subscribe-policy RM1
-
These commands configure a route-map with the prefix 10.0.0.0/8 and the administrative distance to 10 in the destination VRF.
switch(config)#ip prefix-list PL1 switch(config-ip-pfx)#permit 10.0.0.0/8 switch(config)#ip route-map RM1 switch(config-route-map-RM1)#match ip address prefix-list PL1 switch(config-route-map-RM1)#set distance 10
route-target export
The route-target export command allows the user to export routes from a VRF to the local VPN table using the route target extended community list.
The no route-target export and default route-target export commands remove the routes from the VPN table.
Command Mode
Router-BGP VNI Configuration
Syntax
route-target export [evpn | vpn-ipv4 | vpn-ipv6] <RT>
no route-target export
default route-target export
- evpn evpn address family.
- vpn-ipv4 MPLS L3 VPN IPv4 unicast address family.
- vpn-ipv6 MPLS L3 VPN IPv6 unicast address family.
-
RT route-target extended community.
-
These commands export routes from vrf-red to the VPN table.
switch(config)#service routing protocols model multi-agent switch(config)#mpls ip switch(config)#router bgp 65001 switch(config-router-bgp)#vrf vrf-red switch(config-router-bgp-vrf-vrf-red)#rd 1:1 switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv4 10:10 switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv6 10:20
-
These commands export routes from vrf-red to the evpn table.
switch(config)#router bgp 65001 switch(config-router-bgp)#vrf vrf-red switch(config-router-bgp-vrf-vrf-red)#rd 1:1 switch(config-router-bgp-vrf-vrf-red)#route-target export evpn 10:1
route-target import
The route-target import command allows the user to import route target extended community lists from the local VPN table to the target VRF.
The no route-target import and default route-target import commands remove the routes from the VPN table.
Command Mode
Router-BGP VNI Configuration
Syntax
route-target import [evpn | vpn-ipv4 | vpn-ipv6] <RT>
no route-target import
default route-target import
Parameters
- evpn evpn address family.
- vpn-ipv4 MPLS L3 VPN IPv4 unicast address family.
- vpn-ipv6 MPLS L3 VPN IPv6 unicast address family.
-
RT route-target extended community.
-
These commands import routes from the VPN table to vrf-blue.
switch(config)#service routing protocols model multi-agent switch(config)#mpls ip switch(config)#router bgp 65001 switch(config-router-bgp)#vrf vrf-blue switch(config-router-bgp-vrf-vrf-blue)#rd 2:2 switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv4 10:10 switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv6 10:20
-
These commands import routes from the evpn table to vrf-blue.
switch(config)#router bgp 65001 switch(config-router-bgp)#vrf vrf-blue switch(config-router-bgp-vrf-vrf-blue)#rd 2:2 switch(config-router-bgp-vrf-vrf-blue)#route-target import evpn 10:1
route-target route-map
The route-target route-map command allows the user to export and import route target extended community lists from one VRF to another using route maps.
The no route-target route-map and default route-target route-map commands remove the routes from the VPN table.
Command Mode
Router-BGP VNI Configuration
Syntax
route-target {import | export} [evpn | vpn-ipv4 | vpn-ipv6] route-map RM
no route-target route-map
default route-target route-map
- evpn evpn address family.
- vpn-ipv4 MPLS L3 VPN IPv4 unicast address family.
- vpn-ipv6 MPLS L3 VPN IPv6 unicast address family.
-
RM route-map extended community.
-
These commands export routes from vrf-red to the VPN table.
switch(config)#service routing protocols model multi-agent switch(config)#mpls ip switch(config)#router bgp 65001 switch(config-router-bgp)#vrf vrf-red switch(config-router-bgp-vrf-vrf-red)#rd 1:1 switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv4 10:10 switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv6 10:20 switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv4 route-map EXPORT_V4_ROUTES_T0_VPN_TABLE switch(config-router-bgp-vrf-vrf-red)#route-target export vpn-ipv6 route-map EXPORT_V6_ROUTES_T0_VPN_TABLE
-
These commands export routes from vrf-red to the evpn table.
switch(config)#router bgp 65001 switch(config-router-bgp)#vrf vrf-red switch(config-router-bgp-vrf-vrf-red)#rd 1:1 switch(config-router-bgp-vrf-vrf-red)#route-target export evpn 10:1 switch(config-router-bgp-vrf-vrf-red)#route-target export evpn route-map EXPORT_ROUTES_T0_evpn_TABLE
-
These commands import routes from the VPN table to vrf-blue.
switch(config)#service routing protocols model multi-agent switch(config)#mpls ip switch(config)#router bgp 65001 switch(config-router-bgp)#vrf vrf-blue switch(config-router-bgp-vrf-vrf-blue)#rd 1:1 switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv4 10:10 switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv6 10:20 switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv4 route-map IMPORT_V4_ROUTES_VPN_TABLE switch(config-router-bgp-vrf-vrf-blue)#route-target import vpn-ipv6 route-map IMPORT_V6_ROUTES_VPN_TABLE
-
These commands import routes from the evpn table to vrf-blue.
switch(config)#router bgp 65001 switch(config-router-bgp)#vrf vrf-blue switch(config-router-bgp-vrf-vrf-blue)#rd 2:2 switch(config-router-bgp-vrf-vrf-blue)#route-target import evpn 10:1 switch(config-router-bgp-vrf-vrf-blue)#route-target import evpn route-map IMPORT_ROUTES_FROM_evpn_TABLE
route-target
The route-target command configures a well-known extended community that is used by BGP-evpn to export routes from or import routes into MAC-VRF.
The no route-target and default route-target commands delete the route-target configuration.
Command Mode
Router-BGP VNI Configuration
Syntax
route-target {export | import | both} rt
no route-target
default route-target
- export configures a well-known extended community that is attached to the routes exported by BGP-evpn.
- import configures a well known extended community that identifies the received routes that need to be imported into the MAC-VRF specified by the VNI bundle.
- both configures the same extended community for import and export of routes.
-
rt route-target extended community.
Example
This command configures a well-known extended community for import and export of routes.
cvx(config)#router bgp 100
cvx(config-router-bgp)#vni-aware-bundle bundle1
cvx(config-macvrf-bundle1)#route-target both 503:12
cvx(config-macvrf-bundle1)#
show bgp evpn
The show bgp evpn command displays information about the BGP-evpn routes of the switch.
Command Mode
Global Configuration
Command Syntax
show bgp evpn [community | detail | esi esid | extcommunity | host-flap | instance | large-community AS:nn:nn | next-hop | rt | admin:local-assignment | route-type | summary | vni vni_num]
Parameters
- <no parameters> displays all routes of the switch.
-
community displays routes filtered by the specified community. Options include:
- GSHUT well known GSHUT community.
- aa:nn AS and network number, separated by colon. The value ranges from 1 to 4294967295.
- internet advertises route to the Internet community.
- local-as advertises route only to local peers.
- no-advertise does not advertise the route to any peer.
- no-export advertises route only within the BGP-evpn AS boundary
- comm_num community number. Values range from 1 to 4294967040.
- detail displays detailed information of routes.
- esi esid displays routes filtered by the specified Ethernet Segment Identifier (ESI).
-
extcommunity displays routes that match with BGP or VPN extended community list. Options include:
- esi-label esid displays routes filtered by the specified value of ESI label. The value ranges from 0 to 16777215.
- mac-mobility displays routes filtered by the specified MAC mobility.
- rt displays routes filtered by the specified route target.
- tunnel-encap vxlan displays routes filtered by the VXLAN tunnel encapsulation.
- router-mac H.H.H displays routes filtered by the specified router MAC address.
- host-flap displays routes that contains MAC addresses that are blacklisted due to duplication.
- instance displays routes with evpn instances.
- large-community AS:nn:nn displays routes filtered by the specified large community.
- next-hop displays routes filtered by next-hop IPv4 or IPv6 addresses of remote VTEP.
- rd admin:local-assignment displays routes filtered by the specified Route Distinguisher (RD).
- route-type displays routes filtered by NLRI route type.
- summary displays summary of routes.
- vni vni_num displays routes filtered by the specified VXLAN Network Identifier (VNI). Value ranges from 1 to 4294967294.
Examples
-
This command displays BGP-evpn routes filtered by the VNI 3011.
cvx(config-router-bgp-af)#show bgp evpn vni 3011 BGP routing table information for VRF default Router identifier 2.0.2.2, local AS number 65002 Route status codes: s - suppressed, * - valid, > - active, # - not installed, E - ECMP head, e - ECMP S - Stale, c - Contributing to ECMP, b - backup % - Pending BGP convergence Origin codes: i - IGP, e - EGP, ? - incomplete AS Path Attributes: Or-ID - Originator ID, C-LST - Cluster List, LL Nexthop - Link Local Nexthop NetworkNext HopMetricLocPref WeightPath * >Ec RD: 3.3.3.1:3011 auto-discovery 0 009a:f13b:53bb:8800:0000 1.1.1.1 - 100 0 65999 65001 i *ec RD: 3.3.3.1:3011 auto-discovery 0 009a:f13b:53bb:8800:0000 1.1.1.1 - 100 0 65999 65001 i * > RD: 3.3.3.2:3011 auto-discovery 0 009a:f13b:53bb:8800:0000 - - - 0i * >Ec RD: 3.3.3.1:3011 imet 1.1.1.1 1.1.1.1 - 100 0 65999 65001 i *ec RD: 3.3.3.1:3011 imet 1.1.1.1 1.1.1.1 - 100 0 65999 65001 i * > RD: 3.3.3.2:3011 imet 1.1.1.2 - - - 0i cvx(config-router-bgp-af)#
-
This command displays the prefixes that are exported to the respective VPN table, along with the route distinguisher.
switch(config)#show bgp evpn BGP routing table information for VRF default Router identifier 1.1.1.1, local AS number 65001 Route status codes: s - suppressed, * - valid, > - active, # - not installed, E - ECMP head, e - ECMP S - Stale, c - Contributing to ECMP, b - backup % - Pending BGP convergence Origin codes: i - IGP, e - EGP, ? - incomplete AS Path Attributes: Or-ID - Originator ID, C-LST - Cluster List, LL Nexthop - Link Local Nexthop NetworkNext HopMetricLocPref WeightPath * > RD: 400:1 ip-prefix 45.0.0.1/32 - - - 0i * > RD: 400:1 ip-prefix 52.0.0.1/32 - - - 0i * > RD: 400:1 ip-prefix 120.0.0.0/24 - - - 0i * > RD: 400:1 ip-prefix 130.0.0.0/24 - - - 0i * > RD: 400:1 ip-prefix 130.0.1.0/24
show ip bgp vrf
The show ip bgp vrf command displays the type of VPN from the imported route. It shows an indication that the IPv4 route has been leaked and source VRF information is displayed.
Command Mode
Global Configuration
Command Syntax
show ip bgp vrf {vrf_name | all | default}
Parameters
- vrf_name name of the VRF.
- all displays summary of all VRFs.
-
default default virtual routing and forwarding instance.
Example
switch(config)#show ip bgp 13.0.0.0/24 vrf vrf-blue
BGP routing table information for VRF vrf-blue
Router identifier 5.0.0.2, local AS number 65001
BGP routing table entry for 130.110.61.0/24
4.0.0.3 from 4.0.0.3 (52.0.0.1), imported evpn route, RD 400:1
Origin IGP, metric -, localpref 100, weight 0, valid, external,best
Extended Community: Route-Target-AS:4000:1 TunnelEncap:tunnelTypeVxlan
evpnRouterMac:74:83:ef:0b:70:f3
Leaked from VRF vrf-red
show ip route vrf
The show ip route vrf command displays leaked prefixes with the label “ L” in the output that indicates that the IPv4 route has been leaked. It also displays information about the source VRF from which these prefixes have been leaked.
Command Mode
Global Configuration
Command Syntax
show ip route vrf {vrf_name | all}
- vrf_name name of the VRF.
-
all displays summary of all VRFs.
Example
switch(config)#show ip route vrf vrf-blue
VRF: vrf-blue
Codes: C - connected, S - static, K - kernel,
O - OSPF, IA - OSPF inter area, E1 - OSPF external type 1,
E2 - OSPF external type 2, N1 - OSPF NSSA external type 1,
N2 - OSPF NSSA external type2, B I - iBGP, B E - eBGP,
R - RIP, I L1 - IS-IS level 1, I L2 - IS-IS level 2,
O3 - OSPFv3, A B - BGP Aggregate, A O - OSPF Summary,
NG - Nexthop Group Static Route, V - VXLAN Control Service,
DH - DHCP client installed default route, M - Martian,
DP - Dynamic Policy Route, L - VRF Leaked
Gateway of last resort is not set
C 5.0.0.2/31 is directly connected, Ethernet14
B L57.0.0.3/32 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L45.0.0.1/32 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L52.0.0.1/32 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L120.0.0.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L130.0.0.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L130.0.1.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L130.0.2.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
B L130.0.3.0/24 [200/0] (source VRF vrf-red) via 4.0.0.3, Ethernet11
show ipv6 bgp vrf
The show ipv6 bgp vrf command displays the type of VPN from the imported route. It shows an indication that the IPv6 route has been leaked and source VRF information is displayed.
Command Mode
Global Configuration
Command Syntax
show ipv6 bgp vrf {vrf_name | all | default}
- vrf_name name of the VRF.
- all displays summary of all VRFs.
-
default default virtual routing and forwarding instance.
Example
switch(config)#show ipv6 bgp 2001:10:1:0::102/64 vrf default
BGP routing table information for VRF default
Router identifier 218.218.218.218, local AS number 34
Route status codes: s - suppressed, * - valid, > - active, # - not installed, E
- ECMP head, e - ECMP
S - Stale, c - Contributing to ECMP, b - backup, L -
labeled-unicast
% - Pending BGP convergence
Origin codes: i - IGP, e - EGP, ? - incomplete
AS Path Attributes: Or-ID - Originator ID, C-LST - Cluster List, LL Nexthop -
Link Local Nexthop
NetworkNext HopMetricLocPref WeightPath
* > 2000:0:14:120::/64 2001:db8:1111:9000::- 100 109 i
* 2000:0:14:120::/64 2001:db8:156:1010::2- 100 0 i
* 2000:0:14:120::/64 2001:db8:152:1010::2- 100 0 i
* 2000:0:14:120::/64 2001:db8:203:1010::2- 100 0 i
show ipv6 route vrf
The show ipv6 route vrf command displays leaked prefixes with the label “ L” in the output that indicates that the IPv6 route has been leaked. It also displays information about the source VRF from which these prefixes have been leaked.
Command Mode
Global Configuration
Command Syntax
show ipv6 route vrf{vrf_name | all}
Parameters
- vrf_name name of the VRF.
-
all displays summary of all VRFs.
Example
switch(config)#show ipv6 route vrf vrf-blue
VRF: vrf-blue
Displaying 802 of 802 IPv6 routing table entries
Codes: C - connected, S - static, K - kernel, O3 - OSPFv3, B - BGP, R - RIP, A B - BGP Aggregate, I L1 - IS-IS level 1, I L2 - IS-IS level 2, DH - DHCP, NG - Nexthop Group Static Route, M - Martian, DP - Dynamic Policy Route, L - VRF Leaked
B L 18::1/128 [200/0] (source VRF vrf-red)
via 4::3, Ethernet11
BL6::2/127 [200/0] (source VRF vrf-red)
via fe80::7683:efff:fe0b:963d, Ethernet11
BL45::1/128 [200/0] (source VRF vrf-red)
via fe80::7683:efff:fe0b:963d, Ethernet11
BL130::/64 [200/0] (source VRF vrf-red)
via fe80::7683:efff:fe0b:963d, Ethernet11
BL130:0:0:1::/64 [200/0] (source VRF vrf-red)
via fe80::7683:efff:fe0b:963d, Ethernet11
BL130:0:0:2::/64 [200/0] (source VRF vrf-red)
via fe80::7683:efff:fe0b:963d, Ethernet11
BL130:0:0:3::/64 [200/0] (source VRF vrf-red)
show service vxlan address-table
The show service vxlan address-table command displays route entries in the MAC forwarding table that are added through the CVX.
Command Mode
CVX Global Configuration
Command Syntax
show service vxlan address-table {advertised | received}[address H.H.H | evpn | hsc | mss | switch [Word | all] | vni vnid | vtep A.B.C.D]
Parameters
- advertised displays the advertised route entries in the MAC forwarding table.
- received displays the received route entries in the MAC forwarding table.
- address H.H.H displays route entries that are filtered by the specified MAC addresses.
- evpn displays route entries filtered by BGP-evpn.
- hsc displays route entries filtered by Hardware Switch Controller (HSC).
- mss displays route entries filtered by Macro Segmentation Service (MSS).
-
switch displays route entries that are filtered by the specified switch or all switches. Options include:
- Word Hostname, IP address or ID of the switch.
- all all switches
- vni vnid displays route entries filtered by the specified VXLAN Network Identifier (VNI). Value ranges from 1 to 4294967294.
- vtep A.B.C.D displays route entries filtered by the specified IP address of the remote Virtual Tunnel End Point (VTEP).
Examples
-
This command displays the route entries in MAC forwarding table advertised to BGP-evpn peers.
cvx#show service vxlan address-table advertised evpn Advertised Mac Address Table ---------------------------------------------------------- VNIMac AddressVTEP Moves ----------- ----------------- --------------- ----- 1000 02:01:62:01:00:00 10.0.0.1 1 Total Mac Addresses for this criterion: 1 Advertised Flood Table --------------------------------------------------- VNI Mac Address VTEP(s) ---------- ----------------- ------------------------------ 100000:00:00:00:00:0010.0.0.1 10.0.0.2 Total Mac Addresses for this criterion: 1 cvx#
-
This command displays the route entries in MAC forwarding table received from BGP-evpn peers.
cvx#show service vxlan address-table received evpn Received Mac Address Table ------------------------------------------------------------- SourceVNIMac AddressVTEP Moves ----------- -------- ----------------- ----------- ----- evpn1000 02:01:62:02:00:0010.0.0.3 1 Total Mac Addresses for this criterion: 1 Received Flood Table -------------------------------------------------------------- SourceVNIMac AddressVTEP ----------------- ----------- ----------------- -------------- evpn1000 00:00:00:00:00:00 10.0.0.3 evpn1000 00:00:00:00:00:00 10.0.0.4 Total Mac Addresses for this criterion: 2 cvx#
show vrf leak flapping
The show vrf leak flapping command displays the flapping prefixes of the routes leaked from one VRF to another VRF. Routes that are detected as “flapping” are blocked considering the future leaking policy execution.
Command Mode
EXEC
Command Syntax
show vrf leak flapping
Parameters
- destination displays flapping prefixes destined to a VRF.
- prefix displays flapping routes for a prefix.
- source displays flapping prefixes sourced from a VRF.
-
vrf displays flapping prefixes associated with a VRF
Example
switch#show vrf leak flapping
Age Source VRF Destination VRF PrefixCreated At
-------- ---------------- --------------------- ----------------- -------------
141 VRF1 VRF210.0.2.0/243357281.40992
vni-aware-bundle
The vni-aware-bundle command configures a BGP MAC-VRF containing Layer 2 routes from a group of VXLAN Network Identifiers (VNI).
Command Mode
Router BGP Configuration
Command Syntax
vni-aware-bundle vni_bundle_name
Parameter
vni_bundle_name VNI bundle name.
Example
This command configures MAC-VRF BGP to support VNI bundle1.
cvx(config)#router bgp 100
cvx(config-router-bgp)#vni-aware-bundle bundle1
cvx(config-macvrf-bundle1)#