My initial learning of VPLS was gained while working with Cisco equipment. Forgive me if some of this is different in Juniper, and I would like to know where it differs. I have setup manual (static) and bgp-auto (dynamic) vpls routing instances in my network using Juniper ACX5048's, but don't know of all the fowarding behaviors and options
VPLS has concepts of root and leaf connections
Leaf being the auto-pseudowires that are created with BGP Auto Discovery, and also manual pw's under a vfi
Root being the local AC's (attachment circuits, usually physical or logical unit subinterfaces), or a pw above/outside of a vfi (which may be known as H-VPLS)
For traffic forwarding, BUM handling, loop prevention, and security using Hub-Spoke architecture creating MEF E-Tree EVC, is leaf to leaf communications is *not* allowed
You have to know what is considered to be a leaf
Within Cisco, particularly the ASR9000 (IOS-XR), there's a VFI concept (virtual forwarding interface) as mentioned above. pw's under/within a vfi are *leafs* and mac addresses learned on vfi-pw's cannot communicate with other mac addresses learned on other vfi-pw's.
Forwarding is allowed...
root--->leaf
leaf--->root
root--->root
Forwarding is not allowed...
leaf--->leaf
however, leaf to leaf *is* allowed if you configure one of the leafs in a different split horizon group
I would like to read about these concepts in Juniper documents
UPDATE 4/18/2023 - i did find a few links to help understand some of the ways to allow/disallow forwarding , some of these links may/may not apply to all platforms, as I read ACX and EX in these links
EVPN-ETREE Overview
Juniper |
remove preview |
|
EVPN-ETREE Overview |
The EVPN-ETREE service is a VPN service where each attachment circuit is designated as either root or leaf. The EVPN E-Tree feature implements E-Tree service as defined by the Metro Ethernet Forum (MEF) in draft-sajassi-l2vpn-evpn-etree-03. The E-Tree service is a rooted-multipoint service that is supported only with EVPN over MPLS in the core. |
View this on Juniper > |
|
|
no-local-switching
Juniper |
remove preview |
|
no-local-switching |
Specify that access ports in this VLAN domain do not forward packets to each other. You use this statement with primary VLANs and isolated secondary VLANs. You can also disable local switching on both customer edge (CE) and VPLS edge (VE) mesh-groups. Access and core-facing interfaces are included in the system-generated CE mesh-group and VE mesh-group, respectively. |
View this on Juniper > |
|
|
------------------------------
- Aaron
------------------------------
Original Message:
Sent: 04-13-2023 14:35
From: andrei_C
Subject: VPLS BUM packet handling
Hello Community,
I am looking to find some information in regards to BUM packet handling in VPLS.
I am more or less understand on how it works, but looking to have some "documentation" that can prove my understanding.
I sow some topics around unicast packet flow, and this more or less good described, but did not found any details about the BUM.
Some confusion is around "split horizon" rules and principals... and how the L2 loop can damage the full mash (multi tenant instance) due to Broadcast.
Thank you for any feedback and information.
BR,
Andrei