Routing

active/active EVPN/MPLS with irb - need bgp session from both PE to CE.

  • 1.  active/active EVPN/MPLS with irb - need bgp session from both PE to CE.

    Posted 03-02-2021 11:45
    Hello everyone.
    I`m having troubles with setting up bgp session over evpn lag. I`ve got two PE`s and one CE switch with CE router connected to it:

    EVPN/MPLS routing instance looks similar on both PEs:
    instance-type evpn;
    vlan-id 404;
    interface ae0.404;
    routing-interface irb.404;
    vrf-target target:51780:404;
    protocols {
        evpn {
            default-gateway no-gateway-community;
        }
    }​
    irb interface on PE1:
    virtual-gateway-accept-data;
    family inet {
        address 172.20.5.253/24 {
            virtual-gateway-address 172.20.5.1;
        }
    }
    mac 00:22:22:22:04:04;
    virtual-gateway-v4-mac 00:00:00:00:04:04;​
    and on PE2:
    virtual-gateway-accept-data;
    family inet {
        address 172.20.5.254/24 {
            virtual-gateway-address 172.20.5.1;
        }
    }
    mac 00:22:22:22:04:04;
    virtual-gateway-v4-mac 00:00:00:00:04:04;​
    So what i`m trying to do - is to set up bgp sessions from PE1(172.20.5.253) to CE router and from PE2(172.20.5.254) to CE router.
    in L3VPN instance on both PEs i`ve configured bgp:
    PE1:
    instance-type vrf;
    interface irb.404;
    vrf-target target:65100:2000
    vrf-table-label;
    routing-options {
        auto-export;
    }
    protocols {
        bgp {
            group SRX {
                type external;
                local-address 172.20.5.253;
                passive;
                export SRX-EXPORT;
                peer-as 65101;
                neighbor 172.20.5.2;
            }
        }
    }​

    PE2:
    instance-type vrf;
    interface irb.404;
    vrf-target target:65100:2000
    vrf-table-label;
    routing-options {
        auto-export;
    }
    protocols {
        bgp {
            group SRX {
                type external;
                local-address 172.20.5.254;
                passive;
                export SRX-EXPORT;
                peer-as 65101;
                neighbor 172.20.5.2;
            }
        }
    }​

    The result is that i`ve got only one session established (from PE2). Session from PE1 is not establishing, but i can ping PE1(172.20.5.253) from CE router, so as PE2(172.20.5.254).
    All routes (172.20.5.253,172.20.5.254, 172.20.5.2) are in vrf instance. type 2 routes are in EVPN/MPLS instance on both PEs:
    PE1:
    2:10.0.0.2:20::404::00:11:11:11:04:04::172.20.5.253/304 MAC/IP        
    2:10.0.0.6:20::404::00:22:22:22:04:04::172.20.5.254/304 MAC/IP        
    2:10.0.0.6:20::404::00:50:56:86:52:2d::172.20.5.2/304 MAC/IP​


    PE2:

    2:10.0.0.2:20::404::00:11:11:11:04:04::172.20.5.253/304 MAC/IP        
    2:10.0.0.6:20::404::00:22:22:22:04:04::172.20.5.254/304 MAC/IP        
    2:10.0.0.6:20::404::00:50:56:86:52:2d::172.20.5.2/304 MAC/IP