H3C SR6600 Vxlan Command Reference
Hide thumbs
Also See for SR6600:
- Command reference manual (265 pages) ,
- Fundamentals configuration manual (184 pages) ,
- Configuration manual (145 pages)
Related Manuals for H3C SR6600
Summary of Contents for H3C SR6600
- Page 1 H3C SR6600[SR6600-X] Routers VXLAN Command Reference New H3C Technologies Co., Ltd. http://www.h3c.com Software version: SR6600_SR6600X-CMW710-R7740 Document version: 6W200-20190827...
- Page 2 The information in this document is subject to change without notice. All contents in this document, including statements, information, and recommendations, are believed to be accurate, but they are presented without warranty of any kind, express or implied. H3C shall not be liable for technical or editorial errors or omissions contained herein.
- Page 3 Preface This command reference describes the commands for configuring VXLAN. This preface includes the following topics about the documentation: • Audience. • Conventions. • Documentation feedback. Audience This documentation is intended for: • Network planners. • Field technical support and servicing engineers. •...
- Page 4 Symbols Convention Description An alert that calls attention to important information that if not understood or followed WARNING! can result in personal injury. An alert that calls attention to important information that if not understood or followed CAUTION: can result in data loss, data corruption, or damage to hardware or software. An alert that calls attention to essential information.
- Page 5 Documentation feedback You can e-mail your comments about product documentation to info@h3c.com. We appreciate your comments.
-
Page 6: Table Of Contents
Contents VXLAN commands ·························································································· 1 Basic VXLAN commands ··································································································································· 1 arp suppression enable ······························································································································ 1 description ·················································································································································· 1 display arp suppression vsi ························································································································ 2 display l2vpn interface ································································································································ 3 display l2vpn mac-address ························································································································· 5 display l2vpn vsi ········································································································································· 6 display vxlan tunnel ···································································································································· 9 flooding disable ········································································································································... -
Page 7: Vxlan Commands
VXLAN commands Basic VXLAN commands arp suppression enable Use arp suppression enable to enable ARP flood suppression. Use undo arp suppression enable to disable ARP flood suppression. Syntax arp suppression enable undo arp suppression enable Default ARP flood suppression is disabled. Views VSI view Predefined user roles... -
Page 8: Display Arp Suppression Vsi
Default A VSI does not have a description. Views VSI view Predefined user roles network-admin mdc-admin Parameters text : Specifies a description, a case-sensitive string of 1 to 80 characters. Examples # Configure a description for VSI vpn1. <Sysname> system-view [Sysname] vsi vpn1 [Sysname-vsi-vpn1] description vsi for vpn1 Related commands... -
Page 9: Display L2Vpn Interface
count : Displays the number of ARP flood suppression entries that match the command. Examples # Display ARP flood suppression entries. <Sysname> display arp suppression vsi IP address MAC address Vsi Name Link ID Aging 1.1.1.2 000f-e201-0101 vsi1 0x5000000 1.1.1.3 000f-e201-0202 vsi1 0x5000001 1.1.1.4... - Page 10 Usage guidelines If you do not specify any parameters, this command displays brief L2VPN information for all Layer 3 interfaces that are mapped to VSIs. Examples # Display brief L2VPN information for all Layer 3 interfaces that are mapped to VSIs. <Sysname>...
-
Page 11: Display L2Vpn Mac-Address
display l2vpn mac-address Use display l2vpn mac-address to display MAC address entries for VSIs. Syntax display l2vpn mac-address [ vsi vsi-name ] [ dynamic ] [ count ] Views Any view Predefined user roles network-admin network-operator mdc-admin mdc-operator Parameters vsi vsi-name : Specifies a VSI name, a case-sensitive string of 1 to 31 characters. If you do not specify a VSI, this command displays MAC address entries for all VSIs. -
Page 12: Display L2Vpn Vsi
Field Description OpenFlow. For a local MAC address, this field displays the AC's link ID on the VSI. Link ID/Name For a remote MAC address, this field displays the tunnel interface name. Entry aging state: • Aging Aging. • NotAging. Related commands reset l2vpn mac-address display l2vpn vsi... - Page 13 # Display detailed information about all VSIs. <Sysname> display l2vpn vsi verbose VSI Name: vpna VSI Index VSI State : Up : 1500 Bandwidth Broadcast Restrain : 5120 kbps Multicast Restrain Unknown Unicast Restrain: 5120 kbps MAC Learning : Enabled MAC Table Limit Drop Unknown : Disabled...
- Page 14 Field Description MAC address entry learning rate of the VSI. If this field is not supported in the MAC Learning Rate current software version, a hyphen (-) is displayed. Action on source MAC-unknown frames received after the maximum number of Drop Unknown MAC entries is reached.
-
Page 15: Display Vxlan Tunnel
display vxlan tunnel Use display vxlan tunnel to display VXLAN tunnel information for VXLANs. Syntax display vxlan tunnel [ vxlan-id vxlan-id [ tunnel tunnel-number ] ] Views Any view Predefined user roles network-admin network-operator mdc-admin mdc-operator Parameters vxlan-id : Specifies a VXLAN ID in the range of 0 to 16777215. If you do not specify a VXLAN, this command displays VXLAN tunnel information for all VXLANs. -
Page 16: Flooding Disable
Packets: 15539 Output statistics: Octets : 0 Packets: 0 Table 7 Command output Field Description Link ID Tunnel's link ID in the VXLAN. Tunnel state: • Up—The tunnel is operating correctly. • Blocked—The tunnel is a backup proxy tunnel. Its tunnel interface is up, but the State tunnel is blocked because the primary proxy tunnel is operating correctly. -
Page 17: L2Vpn Enable
undo flooding disable Default Flooding is enabled for a VSI. Views VSI view Predefined user roles network-admin mdc-admin Usage guidelines By default, the device floods unknown unicast frames received from the local site to the following interfaces in the frame's VXLAN: •... -
Page 18: L2Vpn Statistics Interval
[Sysname] l2vpn enable l2vpn statistics interval Use l2vpn statistics interval to set the VXLAN statistics collection interval. Use undo l2vpn statistics interval to restore the default. Syntax l2vpn statistics interval interval undo l2vpn statistics interval Default The VXLAN statistics collection interval is 15 minutes. Views System view Predefined user roles... -
Page 19: Mtu
Parameters mac - address : Specifies a MAC address in H-H-H format. Do not specify a multicast MAC address, all-zeros MAC address, or all-Fs MAC address. You can omit the consecutive zeros at the beginning of each segment. For example, you can enter f-e2-1 for 000f-00e2-0001. interface tunnel tunnel-number : Specifies a VXLAN tunnel interface by its tunnel interface number. -
Page 20: Reserved Vxlan
Predefined user roles network-admin mdc-admin Parameters size : Specifies an MTU value. The value range for this argument is 300 to 65535. Usage guidelines The MTU set by using this command limits the maximum length of the packets that a VSI receives from ACs and forwards through VXLAN tunnels. -
Page 21: Reset Arp Suppression Vsi
Examples # Specify VXLAN 10000 as the reserved VXLAN. <Sysname> system-view [Sysname] reserved vxlan 10000 Related commands mapping vni (EVPN Command Reference) reset arp suppression vsi Use reset arp suppression vsi to clear ARP flood suppression entries on VSIs. Syntax reset arp suppression vsi [ name vsi-name ] Views User view... -
Page 22: Reset L2Vpn Statistics Tunnel
Usage guidelines Use this command when the number of dynamic MAC address entries reaches the limit or the device learns incorrect MAC addresses. Examples # Clear the dynamic MAC address entries on VSI vpn1. <Sysname> reset l2vpn mac-address vsi vpn1 Related commands display l2vpn mac-address vsi reset l2vpn statistics tunnel... -
Page 23: Shutdown
mdc-admin Parameters mac-address : Specifies a MAC address. The MAC address cannot be all Fs. Usage guidelines This command excludes a remote MAC address from the flood suppression done by using the flooding disable command. The VTEP will flood the frames destined for the specified MAC address to remote sites when unknown-unicast floods are confined to the local site. -
Page 24: Tunnel
tunnel Use tunnel to assign a VXLAN tunnel to a VXLAN. Use undo tunnel to remove a VXLAN tunnel from a VXLAN. Syntax tunnel tunnel-number [ flooding-proxy ] undo tunnel tunnel-number Default A VXLAN does not contain VXLAN tunnels. Views VXLAN view Predefined user roles network-admin... -
Page 25: Tunnel Global Source-Address
tunnel global source-address Use tunnel global source-address to specify a global source address for VXLAN tunnels. Use undo tunnel global source-address to restore the default. Syntax tunnel global source-address ip-address undo tunnel global source-address Default No global source address is specified for VXLAN tunnels. Views System view Predefined user roles... -
Page 26: Vsi
Usage guidelines This command enables packet statistics only for VXLAN tunnels. It does not take effect on VXLAN-DCI tunnels. Examples # Enable packet statistics for all VXLAN tunnels associated with VSI vpna. <Sysname> system-view [Sysname] vsi vpna [Sysname-vsi-vpna] tunnel statistics enable Related commands display vxlan tunnel Use vsi to create a VSI and enter its view, or enter the view of an existing VSI. -
Page 27: Vxlan
vxlan Use vxlan to create a VXLAN and enter its view, or enter the view of an existing VXLAN. Use undo vxlan to restore the default. Syntax vxlan vxlan-id undo vxlan Default No VXLANs exist. Views VSI view Predefined user roles network-admin mdc-admin Parameters... -
Page 28: Vxlan Invalid-Udp-Checksum Discard
mdc-admin Usage guidelines VXLAN fast forwarding enables the device to bypass QoS and security services when the device forwards data traffic over VXLAN tunnels based on the software. As a best practice, enable this feature to improve forwarding speed only when QoS and security services are not configured on the following interfaces: •... -
Page 29: Vxlan Local-Mac Report
vxlan local-mac report Use vxlan local-mac report to enable local-MAC logging. Use undo vxlan local-mac report to disable local-MAC logging. Syntax vxlan local-mac report undo vxlan local-mac report Default Local-MAC logging is disabled. Views System view Predefined user roles network-admin mdc-admin Usage guidelines When the local-MAC logging feature is enabled, the VXLAN module immediately sends a log... -
Page 30: Vxlan Udp-Port
Usage guidelines When network attacks occur, use this command to prevent the device from learning incorrect remote MAC addresses in the data plane. Examples # Disable remote-MAC address learning. <Sysname> system-view [Sysname] vxlan tunnel mac-learning disable vxlan udp-port Use vxlan udp-port to set the destination UDP port number for VXLAN packets. Use undo vxlan udp-port to restore the default. - Page 31 Views Interface view Predefined user roles network-admin mdc-admin Parameters vsi-name : Specifies the VSI name, a case-sensitive string of 1 to 31 characters. access-mode : Specifies an access mode. If the AC is a Layer 3 subinterface, you can specify this keyword.
-
Page 32: Vxlan Ip Gateway Commands
[Sysname-vsi-vpn1] quit [Sysname] interface gigabitethernet 2/0/1 [Sysname-GigabitEthernet2/0/1] xconnect vsi vpn1 Related commands display l2vpn interface VXLAN IP gateway commands arp distributed-gateway dynamic-entry synchronize Use arp distributed-gateway dynamic-entry synchronize to enable dynamic ARP entry synchronization for distributed VXLAN IP gateways. Use undo arp distributed-gateway dynamic-entry synchronize to disable dynamic ARP entry synchronization for distributed VXLAN IP gateways. -
Page 33: Bandwidth
bandwidth Use bandwidth to set the expected bandwidth for a VSI interface. Use undo bandwidth to restore the default. Syntax bandwidth bandwidth-value undo bandwidth Default The expected bandwidth (in kbps) equals the interface baudrate divided by 1000. Views VSI interface view Predefined user roles network-admin mdc-admin... -
Page 34: Description
This command might fail to restore the default settings for some commands for reasons such as command dependencies and system restrictions. To resolve this problem: Use the display this command in interface view to identify these commands. Use their undo forms or follow the command reference to restore their default settings. If the restoration attempt still fails, follow the error message instructions to resolve the problem. - Page 35 Views Any view Predefined user roles network-admin network-operator mdc-admin mdc-operator Parameters vsi-interface [ vsi-interface-id ] : Specifies a VSI interface by its number. Make sure the specified VSI interface has been created on the device. If you do not specify the vsi-interface [ vsi-interface-id ] option, this command displays information about all interfaces except for VA interfaces.
- Page 36 Field Description state is down. • UP—The interface is both administratively and physically up. Data link layer state of the interface: • UP—The data link layer protocol is up. • Line protocol state UP(spoofing)—The data link layer protocol is up, but the link is an on-demand link or does not exist.
- Page 37 Field Description Last 300 seconds output rate Average output rate for the last 300 seconds. Incoming traffic statistics on the interface: • Number of incoming packets. Input: 0 packets, 0 bytes, 0 drops • Number of incoming bytes. • Number of dropped incoming packets. Outgoing traffic statistics on the interface: •...
-
Page 38: Distributed-Gateway Local
Field Description is an on-demand link or does not exist. The (s) attribute represents the spoofing flag. • DOWN—The data link layer protocol of the interface is down. Primary IP address of the interface. This field displays two hyphens (--) if Primary IP the interface does not have an IP address. -
Page 39: Gateway Vsi-Interface
Use undo gateway subnet to remove a subnet from a VSI. Syntax gateway subnet ipv4-address wildcard-mask ipv6-address prefix-length } undo gateway subnet { ipv4-address wildcard-mask ipv6-address prefix-length } Default No subnet is assigned to a VSI. Views VSI view Predefined user roles network-admin mdc-admin Parameters... -
Page 40: Interface Vsi-Interface
Default No gateway interface is specified for a VSI. Views VSI view Predefined user roles network-admin mdc-admin Parameters vsi-interface-id : Specifies an existing VSI interface by its number. The value range for this argument is 0 to 8191. You can create a maximum of 1024 VSI interfaces. Usage guidelines A VSI can have only one gateway interface. -
Page 41: Mac-Address
Examples # Create VSI-interface 100 and enter VSI interface view. <Sysname> system-view [Sysname] interface vsi-interface 100 [Sysname-Vsi-interface100] Related commands gateway vsi-interface mac-address Use mac-address to assign a MAC address to a VSI interface. Use undo mac-address to restore the default. Syntax mac-address mac-address undo mac-address... -
Page 42: Reset Counters Interface Vsi-Interface
Views VSI interface view Predefined user roles network-admin mdc-admin Parameters size : Specifies an MTU value in the range of 46 to 9600 bytes. Examples # Set the MTU to 1430 bytes for VSI-interface 100. <Sysname> system-view [Sysname] interface vsi-interface 100 [Sysname-Vsi-interface100] mtu 1430 reset counters interface vsi-interface Use reset counters interface vsi-interface to clear packet statistics on VSI interfaces. -
Page 43: Vtep Group Member Local
Syntax shutdown undo shutdown Default A VSI interface is not manually shut down. Views VSI interface view Predefined user roles network-admin mdc-admin Examples # Shut down VSI-interface 100. <Sysname> system-view [Sysname] interface vsi-interface 100 [Sysname-Vsi-interface100] shutdown vtep group member local Use vtep group member local to assign the local VTEP to a VTEP group. -
Page 44: Vtep Group Member Remote
[Sysname] vtep group 1.1.1.1 member local 2.2.2.2 Related commands vtep group member remote vtep group member remote Use vtep group member remote to specify a VTEP group and its member VTEPs. Use undo vtep group member remote to remove a VTEP group and its member VTEPs. Syntax vtep group group-ip member remote member-ip&<1-8>... - Page 45 Predefined user roles network-admin mdc-admin Usage guidelines By default, the device learns ARP information of remote VMs from packets received on VXLAN tunnel interfaces. To save resources on VTEPs in an SDN transport network, you can temporarily disable remote ARP learning when the controller and VTEPs are synchronizing entries. After the entry synchronization is completed, use the undo vxlan tunnel arp-learning disable command to enable remote ARP learning.