Junos
Highlighted
Junos

Routing issue from Static/irb to evpn/vxlan on EX9251

‎01-22-2020 09:44 AM

Hi,

 

I have an urgent routing issue on an EX9251. Here is the topology:

 

SegA Router --> Bridge (VLAN14) --> xe-0/0/1(Bridge->irb114) EX9251 (irb.214<-Bridge) xe-0/0/5 <-- Bridge (VLAN14) <-- SegB Router

 

VLAN14 is a VX lan that incorporates both segments.

SegA router has the following Interface addressing:

xe-0/0/1 - 192.20.14.5/24

xe-0/1/1 - 192.20.21.1/24

Gateway is irb.114 on the EX 192.20.14.1/24

 

SegB is configured the same (VXLAN) except it is irb.214

 

On the EX irb.114 and irb.214 are configured almost like HSRP where 192.20.14.1 is the VIP.

 

From the config below you will see the irb set up.

 

Here is the issue: With the VXLAN, when I power off segB, I expect the 192.20.14.5 address to move to SegA, and it does. If I place no routing on the EX for the 192.20.21.0/24 network it works fine, but that is no good.

When I place a static route in the inet.0 routing table as follows:

set routing-options static route 192.20.21.0/24 next-hop 192.20.14.5

I then power off SegA, I see the 192.20.14.5 address move to irb.214 for segB in the routing table and arp table but I cannot ping it. This is because, I think, the network 192.20.21.0 is still showing as on irb.114 (segA which is shutdown).

 

I cannot seem to get this route to follow the next-hop address of 192.20.14.5 within the VXLAN and so cannot get the switchover for the end client to work. It is like it is taking over as the preferred route.

 

Here is the very basic config with the static route (qualified in this to try and set the precedence lower):

set chassis fpc 0 pic 0 interface-type ge
set interfaces ge-0/0/0 flexible-vlan-tagging
set interfaces ge-0/0/0 encapsulation flexible-ethernet-services
set interfaces ge-0/0/0 unit 14 encapsulation vlan-bridge
set interfaces ge-0/0/0 unit 14 vlan-id 14
set interfaces ge-0/0/1 flexible-vlan-tagging
set interfaces ge-0/0/1 encapsulation flexible-ethernet-services
set interfaces ge-0/0/1 unit 14 encapsulation vlan-bridge
set interfaces ge-0/0/1 unit 14 vlan-id 14
set interfaces irb unit 114 virtual-gateway-accept-data
set interfaces irb unit 114 family inet address 192.20.14.3/24 preferred
set interfaces irb unit 114 family inet address 192.20.14.3/24 virtual-gateway-address 192.20.14.1
set interfaces irb unit 214 virtual-gateway-accept-data
set interfaces irb unit 214 family inet address 192.20.14.2/24 preferred
set interfaces irb unit 214 family inet address 192.20.14.2/24 virtual-gateway-address 192.20.14.1
set interfaces lo0 unit 0 family inet address 192.20.255.1/32
set routing-options static route 192.20.21.0/24 next-hop 192.20.14.5
set routing-options router-id 192.20.255.1
set routing-options autonomous-system 65111
set routing-instances bw_tn_wap_sega vtep-source-interface lo0.0
set routing-instances bw_tn_wap_sega instance-type virtual-switch
set routing-instances bw_tn_wap_sega route-distinguisher 192.20.255.1:11
set routing-instances bw_tn_wap_sega vrf-target target:65111:14
set routing-instances bw_tn_wap_sega protocols evpn encapsulation vxlan
set routing-instances bw_tn_wap_sega protocols evpn extended-vni-list 10010
set routing-instances bw_tn_wap_sega protocols evpn multicast-mode ingress-replication
set routing-instances bw_tn_wap_sega protocols evpn default-gateway no-gateway-community
set routing-instances bw_tn_wap_sega bridge-domains bw_tn_wap_sega vlan-id 14
set routing-instances bw_tn_wap_sega bridge-domains bw_tn_wap_sega interface ge-0/0/0.14
set routing-instances bw_tn_wap_sega bridge-domains bw_tn_wap_sega routing-interface irb.114
set routing-instances bw_tn_wap_sega bridge-domains bw_tn_wap_sega vxlan vni 10010
set routing-instances bw_tn_wap_sega bridge-domains bw_tn_wap_sega vxlan ingress-node-replication
set routing-instances bw_tn_wap_segb vtep-source-interface lo0.0
set routing-instances bw_tn_wap_segb instance-type virtual-switch
set routing-instances bw_tn_wap_segb route-distinguisher 192.20.255.1:21
set routing-instances bw_tn_wap_segb vrf-target target:65111:14
set routing-instances bw_tn_wap_segb protocols evpn encapsulation vxlan
set routing-instances bw_tn_wap_segb protocols evpn extended-vni-list 20010
set routing-instances bw_tn_wap_segb protocols evpn multicast-mode ingress-replication
set routing-instances bw_tn_wap_segb protocols evpn default-gateway no-gateway-community
set routing-instances bw_tn_wap_segb bridge-domains bw_tn_wap_segb vlan-id 14
set routing-instances bw_tn_wap_segb bridge-domains bw_tn_wap_segb interface ge-0/0/1.14
set routing-instances bw_tn_wap_segb bridge-domains bw_tn_wap_segb routing-interface irb.214
set routing-instances bw_tn_wap_segb bridge-domains bw_tn_wap_segb vxlan vni 20010
set routing-instances bw_tn_wap_segb bridge-domains bw_tn_wap_segb vxlan ingress-node-replication

 

As mentioned, when I am on SegA, it all works perfectly. It is only when the next-hop address moves to SegB that everything breaks because of the end client address being on the worng irb still. Although this does still not explain why I cannot even ping 192.20.14.5 when the static route is in place.

 

Any help urgently would be very gratefully received.

Feedback