Arista swicth configuration for Proxmox SDN EVPN.

K

kemeris

Member
Nov 23, 2021
15
0
6
45
I have three Proxmox nodes with SDN working fine. I just purchased a used Arista 7060CX and have no experience with it so far. Is anyone willing to share their Arista configuration?

As I understand it, the Proxmox EVPN controller is unable to control Arista switches, so I will need to create all EVPN zones (vrf, vxlan, etc...) on the Arista manually, correct?
 
Last edited:
It's depends on your needs. The "Proxmox EVPN controller" is abstraction for detailed FRR configuration that's applied to all (selected) nodes in cluster.
As long as you need to look "inside" L2VPN traffic, you don't have to anything on your switch. Also all this configuration do is running BGP peering in cluster.
 
Thank you for reply vatican_psycho, I wasn’t very clear in my question. I need to provide SNAT in arista switch for proxmox VNet's .
At the moment there is iptables SNAT rules in POSTROUTING/PREROUTING chains on host, traffic originating from VirtualMachine (10.0.0.3) in VNET:
Code: 
10.0.20.3 -> anycast gateway (10.0.20.1) -> node's gateway (5.135.66.1)

Let's say I will configure iBGP (AS 65000) peer on arista, add this peer to proxmox evpn controller and will define arista as exit-node for proxmox SND zone. Do I need to setup arista to act as VTEP to provide SNAT for proxmox VNet's. I suspect I do and will need to do it manually?
 

Attachments

  • 1744548874057.png
    1744548874057.png
    79.8 KB · Views: 5
Last edited:
kemeris said:
Thank you for reply vatican_psycho, I wasn’t very clear in my question. I need to provide SNAT in arista switch for proxmox VNet's .
At the moment there is iptables SNAT rules in POSTROUTING/PREROUTING chains on host, traffic originating from VirtualMachine (10.0.0.3) in VNET:
Code: 
10.0.20.3 -> anycast gateway (10.0.20.1) -> node's gateway (5.135.66.1)

Let's say I will configure iBGP (AS 65000) peer on arista, add this peer to proxmox evpn controller and will define arista as exit-node for proxmox SND zone. Do I need to setup arista to act as VTEP to provide SNAT for proxmox VNet's. I suspect I do and will need to do it manually?
Click to expand...
Could you provide more detailed diagram of your network? Why not leave Arista be switch and route traffic via border router?
Yo can setup overlay network using EVPN and add to every node it's own BGP controller that will talk with router?
 
vatican_psycho said:
Could you provide more detailed diagram of your network? Why not leave Arista be switch and route traffic via border router?
Yo can setup overlay network using EVPN and add to every node it's own BGP controller that will talk with router?
Click to expand...
I don't have router yet. As my network is small, arista could act as router. My network current state is on the left, what I am planing is on the right side:
1744610256605.png
 
You must log in or register to reply here.
Top Bottom