云网扩容方案验证 —扩容Pod和新增Pod方案
1 扩容Pod方案
1.1 组网拓扑
1.2 验证流程
1.2.1 操作步骤
验证扩容前的组网:
完成Spine1、Leaf1、Leaf2的交换机配置,以及Server1、Server2的网络配置。
在Server1上,ping Overlay(172.16.1.0/24)网络的网关,有结果1.2.2-1。
在Server1上,ping Server2,有结果1.2.2-2。
验证扩容时和扩容后的组网:
完成Spine2、Leaf3,以及Server3的网络配置,让Spine1、Leaf1、Leaf2上与扩容设备Spine2、Leaf3的互联口先保持shutdown状态。在Server1上,长ping Server2。
在Server3上,分别ping Server1和Server2,有结果1.2.2-3。
然后,打开原Pod上被shutdown的互联口,完成Pod内扩容设备的正式接入。
在Server3上,分别ping Server1和Server2,有结果1.2.2-4。
观察接入时Server1长ping Server2的情况,有结果1.2.2-5。
1.2.2 结果
结果1.2.2-1:
Server1 172.16.1.11可以ping通Overlay(172.16.1.0/24)网络的网关172.16.1.1。
结果1.2.2-2:
Server1 172.16.1.11可以ping通Server2 172.16.1.12。
结果1.2.2-3:
Server3 172.16.1.13此时无法分别ping通Server1 172.16.1.11和Server2 172.16.1.12。
结果1.2.2-4:
no shutdown原Pod设备上的互联口,完成扩容设备的正式接入之后,Server3立即可以分别ping通Server1和Server2。
.png)
1.3 结论
对于扩容Pod方案,在扩容期间,原Pod的Overlay网络(172.16.1.0/24)下的接入设备的通信一切正常,不会受到影响。扩容完成后,新增设备可以和原有的接入设备正常互通。
2 新增Pod方案
2.1 组网拓扑
2.2 验证流程
2.2.1 操作步骤
验证扩容前的组网:
完成Spine1、Leaf1、Border的交换机配置,以及Server1、Server2的网络配置。
在Server1上,ping Overlay(172.16.1.0/24)网络的网关,有结果2.2.2-1。
在Server1上,通过172.16.1.0/24的IP ping Underlay(10.0.0.0/24)网络的网关,有结果2.2.2-2。
验证扩容时和扩容后的组网:
完成Superspine、Spine2、Leaf2,以及Server3的网络配置,让Superspine与Spine1之间的互联口先保持shutdown状态。在Server1上,长ping Server2。
在Server3上,分别ping Server1和Server2,有结果2.2.2-3。
然后,打开Superspine与Spine1之间的互联口,完成扩容Pod的正式接入。
在Server3上,分别ping Server1和Server2,有结果2.2.2-4。
观察接入时Server1长ping Server2的情况,有结果2.2.2-5。
2.2.2 结果
结果2.2.2-1:
Server1 172.16.1.11可以Ping通Overlay(172.16.1.0/24)网络的网关172.16.1.1。
结果2.2.2-2:
Server1 172.16.1.11可以ping通Server2 10.0.0.12,即Overlay网络(172.16.1.0/24)可以和Underlay网络(10.0.0.0/24)互访。
结果2.2.2-3:
Server3 172.16.1.13此时无法别ping通Server1和Server2。
结果2.2.2-4:
no shutdown Superspine与Spine1之间的互联口,完成扩容Pod的正式接入之后,Server3立即可以分别ping通Server1和Server2。
结果2.2.2-5:
在扩容接入新Pod期间,Server1长ping Server2的流量没有受到影响、没有丢包。
2.3 结论
新增Pod(共享Border)的扩容方案中,扩容期间,原Pod的Overlay网络(172.16.1.0/24)和Underlay网络(10.0.0.0/24)的通信一切正常,不会受到影响。扩容完成后,新增Pod的接入设备可以和原Pod的接入设备、Border正常互通。
3 交换机和服务器网络配置
3.1 扩容Pod方案
3.1.1 服务器
3.1.2 交换机
3.1.2.1 Leaf-01
leaf-01# show running-config
!
vrf 18
vni 10172
exit-vrf
!
vrf mgmt
!
vlan 18
vni 17216
!
interface ethernet 0/0
speed 10000
switchport access vlan 18
exit
!
interface ethernet 0/1
shutdown
speed 10000
exit
!
interface ethernet 0/20
exit
!
interface ethernet 0/22
exit
!
interface ethernet 0/48
shutdown
exit
!
interface ethernet 0/52
shutdown
exit
!
interface ethernet 0/56
shutdown
exit
!
interface ethernet 0/60
shutdown
exit
!
interface ethernet 0/64
ip address 11.2.3.1/30
exit
!
interface ethernet 0/72
ip address 11.2.3.17/30
exit
!
interface loopback 0
ip address 10.23.1.18/32
exit
!
interface vlan 18
arp proxy mode evpn
ip address 172.16.1.1/24
mac-address 00:11:22:33:44:55
vrf 18
exit
!
hostname leaf-01
!
evpn-overlay enable
!
interface mgmt 0
vrf mgmt
exit
!
interface vxlan 0
source 10.23.1.18
exit
!
lldp enable
!
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65501
bgp router-id 10.23.1.18
no bgp ebgp-requires-policy
neighbor 11.2.3.2 remote-as 65502
neighbor 11.2.3.18 remote-as 65504
!
address-family ipv4 unicast
redistribute connected
exit-address-family
!
address-family l2vpn evpn
neighbor 11.2.3.2 activate
neighbor 11.2.3.18 activate
advertise-all-vni
exit-address-family
exit
!
end
leaf-01# 3.1.2.2 Leaf-02
leaf-02# show running-config
!
vrf 19
vni 10172
exit-vrf
!
vrf mgmt
!
vlan 19
vni 17216
!
interface ethernet 0/0
shutdown
speed 10000
exit
!
interface ethernet 0/1
speed 10000
switchport
switchport access vlan 19
exit
!
interface ethernet 0/48
shutdown
exit
!
interface ethernet 0/52
shutdown
exit
!
interface ethernet 0/56
shutdown
exit
!
interface ethernet 0/60
shutdown
exit
!
interface ethernet 0/64
ip address 11.2.3.5/30
exit
!
interface ethernet 0/72
ip address 11.2.3.9/30
exit
!
interface loopback 0
ip address 10.23.1.19/32
exit
!
interface vlan 19
arp proxy mode evpn
ip address 172.16.1.1/24
mac-address 00:11:22:33:44:55
vrf 19
exit
!
hostname leaf-02
!
evpn-overlay enable
!
interface mgmt 0
vrf mgmt
exit
!
interface vxlan 0
source 10.23.1.19
exit
!
lldp enable
!
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65503
bgp router-id 10.23.1.19
no bgp ebgp-requires-policy
neighbor 11.2.3.6 remote-as 65502
neighbor 11.2.3.10 remote-as 65504
!
address-family ipv4 unicast
redistribute connected
exit-address-family
!
address-family l2vpn evpn
neighbor 11.2.3.6 activate
neighbor 11.2.3.10 activate
advertise-all-vni
exit-address-family
exit
!
end
leaf-02# 3.1.2.3 Leaf-03
leaf-03# show running-config
!
vrf 20
vni 10172
exit-vrf
!
vrf mgmt
!
vlan 20
vni 17216
!
access-list ab l3 ingress
bind interface ethernet 0/0
rule 100 source-ip 0.0.0.0/0 packet-action copy-to-cpu
!
interface ethernet 0/0
speed 10000
switchport access vlan 20
exit
!
interface ethernet 0/16
shutdown
exit
!
interface ethernet 0/48
shutdown
exit
!
interface ethernet 0/52
shutdown
exit
!
interface ethernet 0/56
shutdown
exit
!
interface ethernet 0/60
shutdown
exit
!
interface ethernet 0/64
shutdown
exit
!
interface ethernet 0/72
ip address 11.2.3.13/30
exit
!
interface ethernet 0/76
ip address 11.2.3.21/30
exit
!
interface loopback 0
ip address 10.23.1.20/32
exit
!
interface vlan 20
arp proxy mode evpn
ip address 172.16.1.1/24
mac-address 00:11:22:33:44:55
vrf 20
exit
!
hostname leaf-03
!
evpn-overlay enable
!
interface mgmt 0
vrf mgmt
exit
!
interface vxlan 0
source 10.23.1.20
exit
!
lldp enable
!
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65505
bgp router-id 10.23.1.20
no bgp ebgp-requires-policy
neighbor 11.2.3.14 remote-as 65504
neighbor 11.2.3.22 remote-as 65502
!
address-family ipv4 unicast
redistribute connected
exit-address-family
!
address-family l2vpn evpn
neighbor 11.2.3.14 activate
neighbor 11.2.3.22 activate
advertise-all-vni
exit-address-family
exit
!
end
leaf-03# 3.1.2.4 Spine-01
spine-01# show running-config
!
vrf mgmt
!
interface ethernet 0/0
ip address 11.2.3.22/30
exit
!
interface ethernet 0/40
ip address 11.2.3.2/30
exit
!
interface ethernet 0/44
ip address 11.2.3.6/30
exit
!
interface ethernet 0/48
exit
!
interface ethernet 0/80
ip address 11.2.3.17/30
exit
!
interface loopback 0
ip address 10.23.1.7/32
exit
!
hostname spine-01
!
interface mgmt 0
vrf mgmt
exit
!
lldp enable
!
ip route 0.0.0.0/0 11.2.3.18
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65502
bgp router-id 10.23.1.7
no bgp ebgp-requires-policy
neighbor 11.2.3.1 remote-as 65501
neighbor 11.2.3.5 remote-as 65503
neighbor 11.2.3.21 remote-as 65505
!
address-family l2vpn evpn
neighbor 11.2.3.1 activate
neighbor 11.2.3.5 activate
neighbor 11.2.3.21 activate
advertise-all-vni
exit-address-family
!
line vty
!
end
spine-01# 3.1.2.5 Spine-02
spine-02# show running-config
!
vrf mgmt
!
interface ethernet 0/0
ip address 11.2.3.18/30
exit
!
interface ethernet 0/40
ip address 11.2.3.14/30
exit
!
interface ethernet 0/44
ip address 11.2.3.10/30
exit
!
interface ethernet 0/80
ip address 11.2.3.21/30
exit
!
interface loopback 0
ip address 10.23.1.8/32
exit
!
hostname spine-02
!
interface mgmt 0
vrf mgmt
exit
!
ip route 0.0.0.0/0 11.2.3.22
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65504
bgp router-id 10.23.1.8
no bgp ebgp-requires-policy
neighbor 11.2.3.9 remote-as 65503
neighbor 11.2.3.13 remote-as 65505
neighbor 11.2.3.17 remote-as 65501
!
address-family l2vpn evpn
neighbor 11.2.3.9 activate
neighbor 11.2.3.13 activate
neighbor 11.2.3.17 activate
advertise-all-vni
exit-address-family
!
line vty
!
end
spine-02# 3.2 新增Pod方案
3.2.1 服务器
3.2.2 交换机
3.2.2.1 Leaf-01
leaf-01# show running-config
!
vrf 18
vni 10172
exit-vrf
!
vrf mgmt
!
vlan 18
vni 17216
!
interface ethernet 0/0
speed 10000
switchport access vlan 18
exit
!
interface ethernet 0/1
shutdown
speed 10000
exit
!
interface ethernet 0/20
exit
!
interface ethernet 0/22
exit
!
interface ethernet 0/48
shutdown
exit
!
interface ethernet 0/52
shutdown
exit
!
interface ethernet 0/56
shutdown
exit
!
interface ethernet 0/60
shutdown
exit
!
interface ethernet 0/64
ip address 11.2.3.1/30
exit
!
interface loopback 0
ip address 10.23.1.18/32
exit
!
interface vlan 18
arp proxy mode evpn
ip address 172.16.1.1/24
mac-address 00:11:22:33:44:55
vrf 18
exit
!
hostname leaf-01
!
evpn-overlay enable
!
interface mgmt 0
vrf mgmt
exit
!
interface vxlan 0
source 10.23.1.18
exit
!
lldp enable
!
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65501
bgp router-id 10.23.1.18
no bgp ebgp-requires-policy
neighbor 11.2.3.2 remote-as 65502
!
address-family ipv4 unicast
redistribute connected
exit-address-family
!
address-family l2vpn evpn
neighbor 11.2.3.2 activate
advertise-all-vni
exit-address-family
exit
!
end
leaf-01# 3.2.2.2 Leaf-02
leaf-02# show running-config
!
vrf 20
vni 10172
exit-vrf
!
vrf mgmt
!
vlan 20
vni 17216
!
access-list ab l3 ingress
bind interface ethernet 0/0
rule 100 source-ip 0.0.0.0/0 packet-action copy-to-cpu
!
interface ethernet 0/0
speed 10000
switchport access vlan 20
exit
!
interface ethernet 0/16
shutdown
exit
!
interface ethernet 0/48
shutdown
exit
!
interface ethernet 0/52
shutdown
exit
!
interface ethernet 0/56
shutdown
exit
!
interface ethernet 0/60
shutdown
exit
!
interface ethernet 0/64
shutdown
exit
!
interface ethernet 0/72
ip address 11.2.3.13/30
exit
!
interface loopback 0
ip address 10.23.1.20/32
exit
!
interface vlan 20
arp proxy mode evpn
ip address 172.16.1.1/24
mac-address 00:11:22:33:44:55
vrf 20
exit
!
hostname leaf-02
!
evpn-overlay enable
!
interface mgmt 0
vrf mgmt
exit
!
interface vxlan 0
source 10.23.1.20
exit
!
lldp enable
!
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65505
bgp router-id 10.23.1.20
no bgp ebgp-requires-policy
neighbor 11.2.3.14 remote-as 65504
!
address-family ipv4 unicast
redistribute connected
exit-address-family
!
address-family l2vpn evpn
neighbor 11.2.3.14 activate
advertise-all-vni
exit-address-family
exit
!
end
leaf-02# 3.2.2.3 Border
border# show running-config
!
vrf 17216
vni 10172
exit-vrf
!
vrf mgmt
!
vlan 1719
vni 17216
!
vlan 19
!
interface ethernet 0/0
shutdown
speed 10000
exit
!
interface ethernet 0/1
speed 10000
switchport
switchport access vlan 19
exit
!
interface ethernet 0/48
shutdown
exit
!
interface ethernet 0/52
shutdown
exit
!
interface ethernet 0/56
shutdown
exit
!
interface ethernet 0/60
shutdown
exit
!
interface ethernet 0/64
ip address 11.2.3.5/30
exit
!
interface ethernet 0/72
ip address 11.2.3.9/30
shutdown
exit
!
interface loopback 0
ip address 10.23.1.19/32
exit
!
interface vlan 1719
arp proxy mode evpn
ip address 172.16.1.1/24
mac-address 00:11:22:33:44:55
vrf 17216
exit
!
interface vlan 19
ip address 10.0.0.1/24
vrf 17216
exit
!
hostname border
!
interface mgmt 0
ip address 10.230.1.19/24 gw 10.230.1.1
vrf mgmt
exit
!
interface vxlan 0
source 10.23.1.19
exit
!
lldp enable
!
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65510
bgp router-id 10.23.1.19
no bgp ebgp-requires-policy
neighbor 11.2.3.6 remote-as 65502
!
address-family ipv4 unicast
redistribute connected
exit-address-family
!
address-family l2vpn evpn
neighbor 11.2.3.6 activate
advertise-all-vni
advertise ipv4 unicast
exit-address-family
exit
!
router bgp 65510 vrf 17216
!
address-family ipv4 unicast
redistribute connected
exit-address-family
!
address-family l2vpn evpn
advertise ipv4 unicast
exit-address-family
exit
!
end
border# 3.2.2.4 Spine-01
spine-01# show running-config
!
vrf mgmt
!
interface ethernet 0/40
ip address 11.2.3.2/30
exit
!
interface ethernet 0/44
ip address 11.2.3.6/30
exit
!
interface ethernet 0/80
ip address 11.2.3.17/30
exit
!
interface loopback 0
ip address 10.23.1.7/32
exit
!
hostname spine-01
!
interface mgmt 0
vrf mgmt
exit
!
lldp enable
!
ip route 0.0.0.0/0 11.2.3.18
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65502
bgp router-id 10.23.1.7
no bgp ebgp-requires-policy
neighbor 11.2.3.1 remote-as 65501
neighbor 11.2.3.5 remote-as 65510
neighbor 11.2.3.18 remote-as 65503
!
address-family l2vpn evpn
neighbor 11.2.3.1 activate
neighbor 11.2.3.5 activate
neighbor 11.2.3.18 activate
advertise-all-vni
exit-address-family
!
line vty
!
end
spine-01# 3.2.2.5 Spine-02
spine-02# show running-config
!
vrf mgmt
!
interface ethernet 0/40
ip address 11.2.3.14/30
exit
!
interface ethernet 0/44
ip address 11.2.3.10/30
shutdown
exit
!
interface ethernet 0/80
ip address 11.2.3.21/30
exit
!
interface loopback 0
ip address 10.23.1.8/32
exit
!
hostname spine-02
!
interface mgmt 0
vrf mgmt
exit
!
ip route 0.0.0.0/0 11.2.3.22
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65504
bgp router-id 10.23.1.8
no bgp ebgp-requires-policy
neighbor 11.2.3.13 remote-as 65505
neighbor 11.2.3.22 remote-as 65503
!
address-family l2vpn evpn
neighbor 11.2.3.13 activate
neighbor 11.2.3.22 activate
advertise-all-vni
exit-address-family
!
line vty
!
end
spine-02# 3.2.2.6 Superspine
superspine# show running-config
!
interface ethernet 0/0
shutdown
exit
!
interface ethernet 0/12
shutdown
exit
!
interface ethernet 0/32
ip address 11.2.3.18/30
exit
!
interface ethernet 0/36
ip address 11.2.3.22/30
exit
!
interface ethernet 0/4
shutdown
exit
!
interface ethernet 0/8
shutdown
exit
!
interface loopback 0
ip address 10.23.1.9/32
exit
!
hostname superspine
!
ip route 0.0.0.0/0 10.230.1.1 200
!
router bgp 65503
bgp router-id 10.23.1.9
no bgp ebgp-requires-policy
neighbor 11.2.3.17 remote-as 65502
neighbor 11.2.3.21 remote-as 65504
!
address-family l2vpn evpn
neighbor 11.2.3.17 activate
neighbor 11.2.3.21 activate
advertise-all-vni
exit-address-family
exit
!
end
superspine# 
