2025/06/16:CXスイッチの設定について追記、訂正しました。
本投稿では、CXシリーズスイッチでのVXLANの基本設定についてまとめています。
本投稿(2025年06月)時点では、CXシリーズスイッチのうち、5420, 6200, 6300, 6400, 8100,8325/8325P/8325H, 8360, 8400, 9300, 10000シリーズでサポートされています。
シリーズごとの制限などは、各バージョンのコンフィグレーションガイド、リリースノートを確認してください。
【参考】
* AOS-CX 10.15.xxxx EVPN VXLAN Guide
https://arubanetworking.hpe.com/techdocs/AOS-CX/10.15/PDF/vxlan.pdf
【検証構成】
【CXスイッチ設定】
- アンダーレイの設定
CX1、CX2、CX3の各スイッチにループバックインタフェースとIPアドレスを設定し、OSPFでアドバタイズさせます。
[CX3-Leaf]
!
interface 1/1/1
no shutdown
mtu 9198
ip address 192.168.1.3/24
ip ospf 1 area 0.0.0.0
no ip ospf passive
ip ospf network point-to-point
interface 1/1/2
no shutdown
mtu 9198
ip address 192.168.2.3/24
ip ospf 1 area 0.0.0.0
no ip ospf passive
ip ospf network point-to-point
interface loopback 0
ip address 10.1.1.3/32
ip ospf 1 area 0.0.0.0
!
router ospf 1
router-id 10.1.1.3
passive-interface default
area 0.0.0.0
!
[CX1-Leaf]
!
interface 1/1/1
no shutdown
mtu 9198
ip address 192.168.1.1/24
ip ospf 1 area 0.0.0.0
no ip ospf passive
ip ospf network point-to-point
interface loopback 0
ip address 10.1.1.1/32
ip ospf 1 area 0.0.0.0
!
router ospf 1
router-id 10.1.1.1
passive-interface default
area 0.0.0.0
!
[CX2-Leaf]
!
interface 1/1/2
no shutdown
mtu 9198
ip address 192.168.2.2/24
ip ospf 1 area 0.0.0.0
no ip ospf passive
ip ospf network point-to-point
interface loopback 0
ip address 10.1.1.2/32
ip ospf 1 area 0.0.0.0
!
router ospf 1
router-id 10.1.1.2
passive-interface default
area 0.0.0.0
!
- ホストに関する設定
ホストが接続されるセグメントに利用するVLAN、インタフェースの設定をします。
[CX1-Leaf]
!
vlan 100
!
interface 1/1/4
no shutdown
no routing
vlan access 100
!
[CX2-Leaf]
!
vlan 100
!
interface 1/1/5
no shutdown
no routing
vlan access 100
!
- VXLANの設定
L2 VNIを設定して、VLANとVXLANトンネルインタフェースを関連づけします。
今回の設定では、vtep-peerは、それぞれ対向のVTEPが持つループバックアドレスを指定しています。
[CX1-Leaf]
!
interface vxlan 1
source ip 10.1.1.1
no shutdown
vni 100
vlan 100
vtep-peer 10.1.1.2
!
[CX2-Leaf]
!
interface vxlan 1
source ip 10.1.1.2
no shutdown
vni 100
vlan 100
vtep-peer 10.1.1.1
!
- CX4とCX5の設定
CX4とCX5を通信確認用にIPアドレスを設定します。
[CX4]
!
vlan 100
!
interface 1/1/4
no shutdown
no routing
vlan access 100
interface vlan 100
ip address 172.16.100.4/24
!
[CX5]
!
vlan 100
!
interface 1/1/5
no shutdown
no routing
vlan access 100
interface vlan 100
ip address 172.16.100.5/24
!
【動作・状態の確認】
[CX1]
CX1# show interface vxlan 1
Interface vxlan1 is up
Admin state is up
Description:
Underlay VRF: default
Destination UDP port: 4789
VTEP source IPv4 address: 10.1.1.1
VNI Routing VLAN VRF VTEP Peers Origin
---------- ------------ ------ ------------ ----------------- --------
100 disabled 100 -- 10.1.1.2 static
CX1# show interface vxlan vteps
Source Destination Origin Status VNI Routing VLAN VRF
---------------- ---------------- ------------ --------------------- --------- --------- ----- ----------
10.1.1.1 10.1.1.2 static operational 100 disabled 100 --
CX1# show interface vxlan vteps detail
Destination : 10.1.1.2
Source : 10.1.1.1
Origin : static
VRF : default
Status : operational
Nexthops
========
IP-ADDRESS INTERFACE NEXTHOP-MAC
--------------- ---------- --------------------
192.168.1.3 1/1/1 08:00:09:1a:89:72
CX1# show mac-address-table dynamic
MAC age-time : 300 seconds
Number of MAC addresses : 3
MAC Address VLAN Type Port
--------------------------------------------------------------
08:00:09:a1:a1:ef 100 dynamic 1/1/4
08:00:09:67:5f:9b 100 dynamic vxlan1(10.1.1.2)
08:00:09:a1:a1:a9 100 dynamic 1/1/4
CX1#
[CX2]
CX2# show interface vxlan 1
Interface vxlan1 is up
Admin state is up
Description:
Underlay VRF: default
Destination UDP port: 4789
VTEP source IPv4 address: 10.1.1.2
VNI Routing VLAN VRF VTEP Peers Origin
---------- ------------ ------ ------------ ----------------- --------
100 disabled 100 -- 10.1.1.1 static
CX2# show interface vxlan vteps
Source Destination Origin Status VNI Routing VLAN VRF
---------------- ---------------- ------------ --------------------- --------- --------- ----- ----------
10.1.1.2 10.1.1.1 static operational 100 disabled 100 --
CX2# show interface vxlan vteps detail
Destination : 10.1.1.1
Source : 10.1.1.2
Origin : static
VRF : default
Status : operational
Nexthops
========
IP-ADDRESS INTERFACE NEXTHOP-MAC
--------------- ---------- --------------------
192.168.2.3 1/1/2 08:00:09:1a:89:72
CX2# show mac-address-table dynamic
MAC age-time : 300 seconds
Number of MAC addresses : 3
MAC Address VLAN Type Port
--------------------------------------------------------------
08:00:09:a1:a1:a9 100 dynamic vxlan1(10.1.1.1)
08:00:09:67:5f:9b 100 dynamic 1/1/5
08:00:09:67:5f:e0 100 dynamic 1/1/5
CX2#
【疎通確認】
*CX4とCX5をPC端末やサーバの代用としています。
[CX4側]
CX4# ping 172.16.100.5 source 172.16.100.4 repetitions 5
PING 172.16.100.5 (172.16.100.5) from 172.16.100.4 : 100(128) bytes of data.
108 bytes from 172.16.100.5: icmp_seq=1 ttl=64 time=9.27 ms
108 bytes from 172.16.100.5: icmp_seq=2 ttl=64 time=5.81 ms
108 bytes from 172.16.100.5: icmp_seq=3 ttl=64 time=16.2 ms
108 bytes from 172.16.100.5: icmp_seq=4 ttl=64 time=5.54 ms
108 bytes from 172.16.100.5: icmp_seq=5 ttl=64 time=24.6 ms
--- 172.16.100.5 ping statistics ---
5 packets transmitted, 5 received, 0% packet loss, time 4010ms
rtt min/avg/max/mdev = 5.538/12.286/24.639/7.271 ms
CX4#
[CX5側]
CX5# ping 172.16.100.4 source 172.16.100.5 repetitions 5
PING 172.16.100.4 (172.16.100.4) from 172.16.100.5 : 100(128) bytes of data.
108 bytes from 172.16.100.4: icmp_seq=1 ttl=64 time=5.31 ms
108 bytes from 172.16.100.4: icmp_seq=2 ttl=64 time=3.97 ms
108 bytes from 172.16.100.4: icmp_seq=3 ttl=64 time=4.77 ms
108 bytes from 172.16.100.4: icmp_seq=4 ttl=64 time=3.82 ms
108 bytes from 172.16.100.4: icmp_seq=5 ttl=64 time=3.51 ms
--- 172.16.100.4 ping statistics ---
5 packets transmitted, 5 received, 0% packet loss, time 4006ms
rtt min/avg/max/mdev = 3.508/4.275/5.312/0.665 ms
CX5#
#Blog #Wired