Cisco Configuration Generator Cisco VXLAN/EVPN Configuration Generator melih can altan Temmuz 2, 2025 3 min read Post Views: 91 Cisco VXLAN/EVPN Configuration Generator Cisco VXLAN/EVPN Configuration Generator Virtual Extensible LAN with Ethernet VPN Control Plane VXLAN/EVPN Nedir? VXLAN/EVPN Fabric Architecture Modern Data Center Network Design SPINE LAYER (IP CORE) SPINE-01 AS: 65001 RR • Lo0: 10.0.0.11 SPINE-02 AS: 65001 RR • Lo0: 10.0.0.12 IP UNDERLAY (OSPF/ISIS/BGP) LEAF LAYER (VTEP) LEAF-01 VTEP: 10.1.1.1 Pod-1 ToR LEAF-02 VTEP: 10.1.1.2 Pod-1 ToR LEAF-03 VTEP: 10.1.1.3 Pod-2 ToR BORDER-01 VTEP: 10.1.1.4 L3 Out • DCI VXLAN TUNNEL (L2VNI: 10010) VXLAN TUNNEL (L3VNI: 50001) Server-1 VLAN 10 Server-2 VLAN 20 Server-3 VLAN 10 WAN/Internet External MP-BGP EVPN CONTROL PLANE 1 Distributed Anycast Gateway • Same IP/MAC on all VTEPs • Optimal L3 routing 2 16M Virtual Networks • 24-bit VNI space • Multi-tenancy scale 3 Control Plane Learning • BGP EVPN Type 2/3/5 • No flooding 4 All-Active Design • No blocked links • ECMP everywhere VXLAN MP-BGP EVPN Spine-Leaf Underlay Overlay Konsept Açıklama Geleneksel Karşılığı VXLAN Layer 2 over Layer 3 encapsulation teknolojisi VLAN (4K limit yerine 16M) EVPN MP-BGP based control plane, MAC/IP dağıtımı Flood & Learn VTEP VXLAN tünellerinin başlangıç/bitiş noktası Access switch VNI VXLAN Network ID (24-bit) VLAN ID (12-bit) NVE Network Virtualization Edge interface SVI interface Anycast Gateway Her VTEP'te aynı IP/MAC HSRP/VRRP Deployment Senaryosu Deployment Tipi:* -- Seçiniz -- Greenfield (Yeni Kurulum) Brownfield (Mevcut Ağdan Geçiş) Campus Fabric Multi-Site Greenfield: Sıfırdan kurulum. Brownfield: Mevcut L2/L3 networkten geçiş. Fabric Boyutu: Small (2 Spine, 4 Leaf) Medium (4 Spine, 8 Leaf) Large (4+ Spine, 16+ Leaf) Switch Rolü Seçimi Spine Switch Route Reflector • IP routing only • No VTEP function • BGP route reflector • High performance Leaf Switch VTEP • VXLAN VTEP • Host connections • Anycast gateway • Local switching Border Leaf L3 Out • VTEP + Border • External routing • VRF-Lite/MPLS • Firewall connection Spine Switch Configuration Basic Settings Hostname:* Management IP: Router ID:* Unique router ID, genelde loopback IP kullanılır. Underlay Settings Underlay Protocol: OSPF IS-IS BGP (eBGP Underlay) OSPF en yaygın. ISIS daha scalable. BGP full BGP design için. BGP ASN:* Spine ASN. eBGP underlay için her spine farklı ASN. Route Reflector: BGP Route Reflector olarak yapılandır Leaf Switch (VTEP) Configuration Basic Settings Hostname:* Management IP: Router ID:* VTEP Loopback IP:* NVE source interface IP. Her VTEP için unique. VTEP Settings NVE Interface ID: BGP ASN:* iBGP design için tüm leaf'ler aynı ASN. eBGP için farklı. Anycast Gateway: Distributed anycast gateway aktif et Her VTEP'te aynı gateway IP/MAC. Optimal routing sağlar. Anycast Gateway MAC: Tüm VTEP'lerde aynı olmalı! Border Leaf Configuration Border Leaf Özellikleri: • Normal VTEP fonksiyonları + External routing • VRF-Lite veya MPLS L3VPN bağlantısı • Firewall veya external services bağlantısı • Route leaking between VRFs Border Functions: VRF-Lite Hand-off MPLS L3VPN Integration DCI (Data Center Interconnect) Firewall Integration EVPN Configuration EVPN Settings EVPN Mode: Symmetric IRB Asymmetric IRB L2 Only Symmetric: Ingress/Egress VTEP routing. Asymmetric: Ingress VTEP only routing. Route Target Mode: Auto (Type 1) Manual ARP Suppression: Enable ARP suppression VTEP'te ARP cache. ARP flooding'i azaltır. Tenant/VNI Configuration Add L2VNI L2VNI ID: Layer 2 VNI. Best practice: VLAN ID + 10000 VLAN ID: Name/Description: Subnet (SVI): Anycast gateway IP adresi. L2VNI Ekle Configured VNIs Henüz VNI eklenmedi. L3VNI Configuration L3VNI (Tenant VRF): Enable L3VNI for inter-VNI routing L3VNI ID: Tenant VRF Name: VXLAN/EVPN Best Practices ✅ Design Best Practices: IP Addressing: /32 loopbacks for VTEP, /31 for P2P links MTU: Minimum 9216 (VXLAN overhead = 50 bytes) BGP Design: iBGP with RR or eBGP (preferred for scale) BFD: Enable on all underlay links PIM: Use PIM-SM with Anycast RP for BUM traffic ECMP: 4-way or 8-way ECMP for load balancing VNI Numbering: L2VNI = VLAN + 10000, L3VNI = 50000+ ❌ Common Mistakes: MTU Mismatch: Underlay MTU < 9216 causes packet drops Wrong RD/RT: Manual RT config errors break EVPN Missing Features: Forgetting "nv overlay evpn" command STP: Don't run STP in VXLAN fabric Duplicate IPs: VTEP loopback IPs must be unique PIM RP: Missing RP config for multicast BUM ⚠️ Migration Dikkat: • Brownfield migration'da önce underlay'i test edin • VLAN'ları fazlar halinde migrate edin • Her fazda connectivity test yapın • Rollback planı hazırlayın VXLAN/EVPN Konfigürasyonu Oluştur About the Author melih can altan Administrator View All Posts Post navigation Previous: Cisco vPC Configuration GeneratorNext: Cisco SPAN/RSPAN Configuration Generator Bir yanıt yazın Yanıtı iptal etE-posta adresiniz yayınlanmayacak. Gerekli alanlar * ile işaretlenmişlerdirYorum * Ad * E-posta * İnternet sitesi Daha sonraki yorumlarımda kullanılması için adım, e-posta adresim ve site adresim bu tarayıcıya kaydedilsin. Related Stories 4 min read Cisco Configuration Generator Cisco SPAN/RSPAN Configuration Generator melih can altan Temmuz 3, 2025 3 min read Cisco Configuration Generator Haberler Cisco vPC Configuration Generator melih can altan Temmuz 2, 2025 3 min read Cisco Configuration Generator Haberler Cisco IPSec VPN Configuration Generator melih can altan Temmuz 1, 2025
