VXLAN Gateway VyOS 1.4

lboaventura · April 25, 2023, 2:11am

Hi,

I need to know if the VyOS support VXLAN Gateway, for example, on RFC 7348

“One deployment scenario is where the tunnel termination point is a
physical server that understands VXLAN. An alternate scenario is
where nodes on a VXLAN overlay network need to communicate with nodes
on legacy networks that could be VLAN based. These nodes may be
physical nodes or virtual machines. To enable this communication, a
network can include VXLAN gateways (see Figure 4 below with a switch
acting as a VXLAN gateway) that forward traffic between VXLAN and
non-VXLAN environments.”

c-po · April 25, 2023, 4:22am

Hi,

you can configure VyOS to bridge VXLAN encapsulated traffic to the real world using a standard bridge interfave connecting vxlan0 and eth0

lboaventura · April 26, 2023, 2:48am

Hi c-po,

Thanks for your reply. I tried to configure the bridge VXLAN, but it was not work, follow my configuration. Using monitor traffic, I see traffic incoming interface eth7 with tagged 254, but the VyOS could not forward the packet through vxlan254

VTEP with non-vxlan host with tagged vlan 254

interfaces {
bridge br254 {
enable-vlan
member {
interface eth7 {
allowed-vlan 254
}
interface vxlan254 {
allowed-vlan 254
}
}
}
…

vxlan vxlan254 {
parameters {
nolearning
}
port 4789
source-address 172.29.0.1
vni 254
}
}

VTEP with untagged interface

interfaces {
bridge br254 {
enable-vlan
member {
interface eth2 {
native-vlan 254
}
interface vxlan254 {
allowed-vlan 254
}
}
}

vxlan vxlan254 {
    parameters {
        nolearning
    }
    port 4789
    source-address 172.29.0.3
    vni 254
}

}

c-po · May 1, 2023, 2:34pm

You are missing vif 254 on your br254 device. Seems you are mixing bridge and vlan aware bridge syntax