SDN announce VXLAN networks on external edge bgp router : how to ?

R

rustine22

New Member
Jun 9, 2024
10
0
1
Hi,
i hav successfully setup VXLAN network and evpn on nodes. Now i would like to announce this VXLAN network on several external BGP routers directly connected to nodes.

I hav tried create a "BGP controler" on proxmox and established a BGP session between administrative network IP of node and external BGP router, but VXLAN network isn't announced. Is it the right way to do ?

Thanks
 
BGP controller is for IPv4/6 unicast - so for exchanging routes of the nodes. If you want to exchange EVPN routes, you need to create an EVPN controller.
 
Thanks for reply. External BGP routers, in default configuration, only deals with ipv4 unicast. Is it possible to say EVPN controller on exit proxmox nodes to announce IPv4 prefixes to external BGP routers instead of evpn prefixes ?
 
You have to use both controllers at the same time to achieve that.
 
It's OK thanks :)

Now last thing, how to tell Proxmox FRR to create a BGP neighbor on the vrf in PVE for VLXAN prefix (in my case vrf_HEB2), and not in global routing table ?

Because i want my external BGP neighbor to announce default route in vrf vrf_HEB2, not in the global table of the PVE node..

Here the autogenerated FRR PVE SDN configuration :

Code: 
vrf vrf_HEB2
 vni 102
exit-vrf
!
router bgp 65000
 bgp router-id 192.168.1.253
 no bgp default ipv4-unicast
 coalesce-time 1000
 neighbor BGP peer-group
 neighbor BGP remote-as 65000
 neighbor BGP bfd
 neighbor VTEP peer-group
 neighbor VTEP remote-as 65000
 neighbor VTEP bfd
 neighbor 192.168.1.163 peer-group BGP
 !
 address-family ipv4 unicast
  neighbor BGP activate
  neighbor BGP soft-reconfiguration inbound
  import vrf vrf_HEB2
 exit-address-family
 !
 address-family ipv6 unicast
  import vrf vrf_HEB2
 exit-address-family
 !
 address-family l2vpn evpn
  neighbor VTEP activate
  neighbor VTEP route-map MAP_VTEP_IN in
  neighbor VTEP route-map MAP_VTEP_OUT out
  advertise-all-vni
 exit-address-family
exit
!
router bgp 65000 vrf vrf_HEB2
 bgp router-id 192.168.1.253
 no bgp hard-administrative-reset
 no bgp graceful-restart notification
 !
 address-family ipv4 unicast
  redistribute connected
 exit-address-family
 !
 address-family ipv6 unicast
  redistribute connected
 exit-address-family
 !
 address-family l2vpn evpn
  default-originate ipv4
  default-originate ipv6
 exit-address-family
exit
 
Is .163 the external device? You want to announce a default route in the overlay network, do I understand correctly?

You should be already able to do this by announcing a EVPN type 5 route for 0.0.0.0/0
 
Last edited:
yes you understand well.

.163 is the external BGP router : this external BGP device basically only deals with ipv4 unicast so evpn type 5 announce by this external equipment is not possible. So i tried to announce 0.0.0.0/0 from .163 to pve node but route was installed directly in FIB of pve without vrf (very dangerous !)

vrf config for external BGP neighbor is also important on the following case : 2 pve vxlan subnet of 2 differents customers would have the same ip subnet exemple 192.168.100.0/24 for the 2 customers.
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back