¡ The default access mode is VLAN if the frame match criterion is configured by using the encapsulation c-vid vlan-id or encapsulation s-vid vlan-id command.

¡ The default access mode is Ethernet if the frame match criterion is configured by using one of the following commands:

- encapsulation c-vid vlan-id-list.

- encapsulation s-vid vlan-id-list.

- encapsulation s-vid vlan-id c-vid { vlan-id-list | all }.

- encapsulation { default | tagged | untagged }.

The vlan-id-list argument specifies multiple VLAN IDs.

¡ The default access mode is VLAN if the frame match criterion is configured by using the encapsulation s-vid vlan-id c-vid vlan-id command.

ethernet: Specifies the Ethernet access mode.

vlan: Specifies the VLAN access mode.

track track-entry-number&<1-3>: Specifies a space-separated list of up to three track entry numbers in the range of 1 to 1024. The AC is up only if a minimum of one associated track entry is in positive state.

Usage guidelines

After you execute this command, packets received from the mapped Layer 3 interface or Ethernet service instance are forwarded to the PW or another AC bound to the cross-connect.

The device supports only Ethernet service instance ACs.

To configure this command for an Ethernet service instance, you must first use the encapsulation command to configure a frame match criterion for the Ethernet service instance.

The access mode determines how the PE treats the VLAN tag in Ethernet frames received from the AC. It also determines how the PE forwards Ethernet frames out of the AC.

· VLAN access mode—Ethernet frames received from the AC must carry a VLAN tag in the Ethernet header. The VLAN tag is called a P-tag, which is assigned by the service provider. Ethernet frames sent out of the AC must also carry the P-tag.

· Ethernet access mode—If Ethernet frames from the AC have a VLAN tag in the header, the VLAN tag is called a U-tag, and the PE ignores it. Ethernet frames sent out of the AC do not carry the P-tag.

Examples

# Map Ethernet service instance 200 that matches traffic of VLAN 200 on Ten-GigabitEthernet 1/0/1 to cross-connect actopw in cross-connect group vpn1.

<Sysname> system-view

[Sysname] interface ten-gigabitethernet 1/0/1

[Sysname-Ten-GigabitEthernet1/0/1] service-instance 200

[Sysname-Ten-GigabitEthernet1/0/1-srv200] encapsulation s-vid 200

[Sysname-Ten-GigabitEthernet1/0/1-srv200] quit

[Sysname-Ten-GigabitEthernet1/0/1] quit

[Sysname] xconnect-group vpn1

[Sysname-xcg-vpn1] connection actopw

[Sysname-xcg-vpn1-actopw] ac interface ten-gigabitethernet 1/0/1 service-instance 200

Related commands

connection (MPLS Command Reference)

display l2vpn interface (MPLS Command Reference)

display l2vpn service-instance (MPLS Command Reference)

encapsulation (MPLS Command Reference)

pw-type (MPLS Command Reference)

address-family evpn (public instance view)

Use address-family evpn to enter public instance EVPN view.

Use undo address-family evpn to delete all settings in public instance EVPN view.

Syntax

address-family evpn

undo address-family evpn

Views

Public instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

You can configure EVPN settings such as route targets in public instance EVPN view.

Examples

# Enter public instance EVPN view.

<Sysname> system-view

[Sysname] ip public-instance

[Sysname-public-instance] address-family evpn

[Sysname-public-instance-evpn]

address-family evpn (VPN instance view)

Use address-family evpn to enter VPN instance EVPN view.

Use undo address-family evpn to delete all settings in VPN instance EVPN view.

Syntax

address-family evpn

undo address-family evpn

Views

VPN instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

You can configure EVPN settings such as route targets and routing policies in VPN instance EVPN view.

Examples

# Enter EVPN view of VPN instance tenant.

<Sysname> system-view

[Sysname] ip vpn-instance tenant

[Sysname-vpn-instance-tenant] address-family evpn

[Sysname-vpn-evpn-tenant]

address-family l2vpn evpn

Use address-family l2vpn evpn to create the BGP EVPN address family and enter its view, or enter the view of the existing BGP EVPN address family.

Use undo address-family l2vpn evpn to delete the BGP EVPN address family and all settings in BGP EVPN address family view.

Syntax

address-family l2vpn evpn

undo address-family l2vpn evpn

Default

The BGP EVPN address family does not exist.

Views

BGP instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

Configuration made in BGP EVPN address family view takes effect only on routes and peers of the BGP EVPN address family that are on the public network.

Examples

# Create the BGP EVPN address family and enter its view.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn]

advertise evpn route

Use advertise evpn route to enable BGP EVPN route advertisement for the BGP VPNv4 or VPNv6 address family.

Use undo advertise evpn route to disable BGP EVPN route advertisement for the BGP VPNv4 or VPNv6 address family.

Syntax

advertise evpn route [ replace-rt ][ advertise-policy policy-name ]

undo advertise evpn route

Default

BGP EVPN routes are not advertised through the BGP VPNv4 or VPNv6 address family.

Views

BGP VPNv4 address family

BGP VPNv6 address family

Predefined user roles

network-admin

mdc-admin

Parameters

replace-rt: Replaces the route targets of BGP EVPN routes with the route targets of BGP VPNv4 or VPNv6 routes. If you do not specify this keyword, route targets of BGP EVPN routes are not modified.

advertise-policy policy-name: Specifies a routing policy to filter the BGP EVPN routes to be advertised to BGP VPNv4 or VPNv6 peers. The policy-name argument specifies the routing policy name, a case-sensitive string of 1 to 63 characters. If you do not specify this option, all BGP EVPN routes are advertised to BGP VPNv4 or VPNv6 peers.

Usage guidelines

To enable communication between data centers interconnected through an MPLS L3VPN network, you must configure the BGP EVPN address family and the BGP VPNv4 or VPNv6 address family to exchange routes on EDs.

After you execute this command, the device advertises IP prefix advertisement routes and MAC/IP advertisement routes that contain host route information through the BGP VPNv4 or VPNv6 address family.

Examples

# Enable BGP EVPN route advertisement for the BGP VPNv4 address family.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family vpnv4

[Sysname-bgp-default-vpnv4] advertise evpn route

advertise l2vpn evpn

Use advertise l2vpn evpn to enable BGP EVPN route advertisement to the local site.

Use undo advertise l2vpn evpn to disable BGP EVPN route advertisement to the local site.

Syntax

advertise l2vpn evpn

undo advertise l2vpn evpn

Default

BGP EVPN route advertisement to the local site is enabled.

Views

BGP-VPN IPv4 unicast address family view

BGP-VPN IPv6 unicast address family view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

This command enables the device to advertise BGP EVPN routes to the local site after the device adds the routes to the routing table of a VPN instance. The BGP EVPN routes here are IP prefix advertisement routes and MAC/IP advertisement routes that contain ARP or ND information.

Examples

# Enable BGP EVPN route advertisement to the local site for VPN instance vpn1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] ip vpn-instance vpn1

[Sysname-bgp-default-vpn1] address-family ipv4

[Sysname-bgp-default-ipv4-vpn1] advertise l2vpn evpn

advertise l3vpn route

Use advertise l3vpn route to enable BGP VPNv4 or VPNv6 route advertisement for the BGP EVPN address family.

Use undo advertise l3vpn route to disable BGP VPNv4 or VPNv6 route advertisement for the BGP EVPN address family.

Syntax

advertise l3vpn route [ replace-rt ][ advertise-policy policy-name ]

undo advertise l3vpn route

Default

BGP VPNv4 or VPNv6 routes are not advertised through the BGP EVPN address family.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

replace-rt: Replaces the route targets of BGP VPNv4 or VPNv6 routes with the route targets of BGP EVPN routes. If you do not specify this keyword, route targets of BGP VPNv4 or VPNv6 routes are not modified.

advertise-policy policy-name: Specifies a routing policy to filter the BGP VPNv4 or VPNv6 routes to be advertised to BGP EVPN peers. The policy-name argument specifies the routing policy name, a case-sensitive string of 1 to 63 characters. If you do not specify this option, all BGP VPNv4 or VPNv6 routes are advertised to BGP EVPN peers.

Usage guidelines

After you execute this command, the device advertises BGP VPNv4 or VPNv6 routes as IP prefix advertisement routes through the BGP EVPN address family.

Examples

# Enable BGP VPNv4 or VPNv6 route advertisement for the BGP EVPN address family.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] advertise l3vpn route

arp mac-learning disable

Use arp mac-learning disable to disable a VSI EVPN instance from learning MAC addresses from ARP information.

Use undo arp mac-learning disable to restore the default.

Syntax

arp mac-learning disable

undo arp mac-learning disable

Default

An EVPN instance learns MAC addresses from ARP information.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

The MAC information and ARP information advertised by a remote VTEP or PE overlap. To avoid duplication, use this command to disable the learning of MAC addresses from ARP information. EVPN will learn remote MAC addresses only from the MAC information advertised from remote sites.

Examples

# Disable a VSI EVPN instance from learning MAC addresses from ARP information.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] arp mac-learning disable

arp proxy-send enable

Use arp proxy-send enable to enable ARP request proxy.

Use undo arp proxy-send enable to disable ARP request proxy.

Syntax

arp proxy-send enable

undo arp proxy-send enable

Default

ARP request proxy is disabled on VSI interfaces.

Views

VSI interface view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

ARP request proxy allows a VSI interface to send an ARP request sourced from itself when the VTEP forwards an ARP request. This feature helps resolve certain communication issues.

In an EVPN VXLAN network, VM 1 and VM 2 are attached to VTEP 1 and VTEP 2, respectively, and the VMs are in the same subnet. The gateway interfaces of VM 1 and VM 2 are VSI-interface 1 on VTEP 1 and VSI-interface 2 on VTEP 2, respectively. The following conditions exist on the VTEPs:

· The VTEPs have established BGP EVPN neighbor relationships.

· EVPN is disabled from learning MAC addresses from ARP information.

· MAC address advertisement is disabled, and advertised MAC addresses are withdrawn.

· Remote-MAC address learning is disabled.

· Local proxy ARP is enabled on the VSI interfaces.

· The VSI interfaces use different IP addresses and MAC addresses.

In this network, when VM 1 attempts to communicate with VM 2, the following procedure occurs:

1. VM 1 sends an ARP request.

2. VTEP 1 learns the MAC address of VM 1 from the ARP request, replies to VM 1 on behalf of VM 2, and sends an ARP request to obtain the MAC address of VM 2.

3. VTEP 2 forwards the ARP request, and VM 2 replies to VTEP 1.

4. VTEP 2 forwards the ARP reply sent by VM 2 without learning the MAC address of VM 2 because EVPN is disabled from learning MAC addresses from ARP information.

5. VTEP 1 does not learn the MAC address of VM 2 because remote-MAC address learning is disabled.

As a result, VM 1 fails to communicate with VM 2.

For VM 1 to communicate with VM 2, enable ARP request proxy on VSI-interface 2 of VTEP 2. When receiving the ARP request sent by VTEP 1, VTEP 2 forwards it and sends an ARP request sourced from VSI-interface 2 simultaneously, and VM 2 replies to both ARP requests. Then, VTEP 2 learns the MAC address of VM 2 from the ARP reply sent to VSI-interface 2 and advertises the MAC address to VTEP 1 through BGP EVPN routes. In this way, VTEP 1 obtains the MAC address of VM 2, and VM 1 and VM 2 can communicate.

Examples

# Enable ARP request proxy on VSI-interface 100.

<Sysname> system-view

[Sysname] interface vsi-interface 100

[Sysname-vsi-interface100] arp proxy-send enable

Related commands

local-proxy-arp enable (Layer 3—IP Services Command Reference)

arp-advertising disable

Use arp-advertising disable to disable ARP information advertisement for a VSI EVPN instance.

Use undo arp-advertising disable to restore the default.

Syntax

arp-advertising disable

undo arp-advertising disable

Default

ARP information advertisement is enabled for a VSI EVPN instance.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

In an EVPN network with distributed gateways, you can disable ARP information advertisement for a VXLAN to save resources if all its user terminals use the same EVPN gateway device. The EVPN instance of the VXLAN will stop advertising ARP information through MAC/IP advertisement routes and withdraw advertised ARP information. When ARP information advertisement is disabled, user terminals in other VXLANs still can communicate with that VXLAN through IP prefix advertisement routes.

Examples

# Disable ARP information advertisement for a VSI EVPN instance.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] arp-advertising disable

dci enable

Use dci enable to enable DCI on an interface.

Use undo dci enable to disable DCI on an interface.

Syntax

dci enable

undo dci enable

Default

DCI is disabled on an interface.

Views

Interface view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

For EDs to automatically establish VXLAN-DCI tunnels, you must enable DCI on the Layer 3 interfaces that interconnect the EDs.

Subinterfaces of a DCI-enabled interface inherit configuration of the interface.

Examples

# Enable DCI on VLAN-interface 10.

<Sysname> system-view

[Sysname] interface vlan-interface 10

[Sysname-Vlan-interface10] dci enable

display arp filter source service-instance

Use display arp filter source service-instance to display ARP gateway protection configuration for Ethernet service instances.

Syntax

In standalone mode:

display arp filter source service-instance [ interface interface-type interface-number [ service-instance instance-id ] ] [ slot slot-number [ cpu cpu-number ] ]

In IRF mode:

display arp filter source service-instance [ interface interface-type interface-number [ service-instance instance-id ] ] [ chassis chassis-number slot slot-number [ cpu cpu-number ] ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

interface interface-type interface-number: Specifies an interface by its type and number. If you do not specify an interface, this command displays ARP gateway protection configuration for Ethernet service instances on all interfaces.

service-instance instance-id: Specifies an Ethernet service instance by its ID in the range of 1 to 4096. If you do not specify an Ethernet service instance, this command displays ARP gateway protection configuration for all Ethernet service instances on the specified interface.

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays ARP gateway protection configuration on the active MPU. (In standalone mode.)

chassis chassis-number slot slot-number: Specifies a card on an IRF member device. The chassis-number argument represents the member ID of the IRF member device. The slot-number argument represents the slot number of the card. If you do not specify a card, this command displays ARP gateway protection configuration on the global active MPU. (In IRF mode.)

Usage guidelines

After you enable ARP gateway protection in Ethernet service instance view, use this command to view the ARP gateway protection configuration for Ethernet service instances.

Examples

# (In standalone mode.) Display ARP gateway protection configuration for all Ethernet service instances on Ten-GigabitEthernet 1/0/1 of slot 1.

<Sysname> display arp filter source service-instance interface ten-gigabitethernet 1/0/1 slot 1

Interface: ten-gigabitethernet 1/0/1

Service instance: 1

IPv4 address: 192.168.56.1

Drop count: 10

Service instance: 2

IPv4 address: 192.168.56.2

Drop count: 10

# (In standalone mode.) Display ARP gateway protection configuration for Ethernet service instance 1 on Ten-GigabitEthernet 1/0/1 of slot 1.

<Sysname> display arp filter source service-instance interface ten-gigabitethernet 1/0/1 instance 1 slot 1

Interface: ten-gigabitethernet 1/0/1

Service instance: 1

IPv4 address: 192.168.56.1

Drop count: 10

# (In standalone mode.) Display ARP gateway protection configuration for Ethernet service instances on all interfaces of slot 1.

<Sysname> display arp filter source service-instance slot 1

Interface: ten-gigabitethernet 1/0/1

Service instance: 1

IPv4 address: 192.168.56.1

Drop count: 10

Service instance: 2

IPv4 address: 192.168.56.2

Drop count: 10

Interface: ten-gigabitethernet 1/0/2

Service instance: 2

IPv4 address: 192.168.56.2

Drop count: 10

Table 1 Command output

Field	Description
Service instance	Ethernet service instance ID.
IPv4 address	Protected gateway IP address.
Drop count	Number of packets dropped due to gateway protection.

Related commands

arp filter source

display bgp l2vpn evpn

Use display bgp l2vpn evpn to display BGP EVPN routes.

Syntax

display bgp [ instance instance-name ] l2vpn evpn [ peer { ipv4-address | ipv6-address } { advertised-routes | received-routes } [ statistics ] | [ route-distinguisher route-distinguisher | route-type { auto-discovery | es | igmp-ls | igmp-js | imet | ip-prefix | mac-ip | s-pmsi | smet } ] * [ { evpn-route route-length | evpn-prefix } [ advertise-info | as-path | cluster-list | community | ext-community ] | { ipv4-address | ipv6-address | mac-address } [ verbose ] ] | statistics ]

display bgp [ instance instance-name ] l2vpn evpn [ route-distinguisher route-distinguisher ] [ statistics ] community [ community-number&<1-32> | aa:nn&<1-32> ] [ internet | no-advertise | no-export | no-export-subconfed ] [ whole-match ]

display bgp [ instance instance-name ] l2vpn evpn [ route-distinguisher route-distinguisher ] [ statistics ] community-list { basic-community-list-number | adv-community-list-number | comm-list-name } [ whole-match ]

display bgp [ instance instance-name ] l2vpn evpn [ route-distinguisher route-distinguisher ] [ statistics ] ext-community [ bandwidth link-bandwidth-value | rt route-target | soo site-of-origin]&<1-32> [ whole-match ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

instance instance-name: Specifies a BGP instance by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command displays BGP EVPN routes for the default BGP instance.

peer { ipv4-address | ipv6-address }: Specifies a peer by its IPv4 address or IPv6 address.

advertised-routes: Specifies the routes advertised to the specified peer.

received-routes: Specifies the routes received from the specified peer.

statistics: Displays BGP EVPN route statistics.

route-distinguisher route-distinguisher: Specifies a route distinguisher (RD), a string of 3 to 21 characters. The RD can use one of the following formats:

· 16-bit AS number:32-bit user-defined number. For example, 101:3.

· 32-bit IP address:16-bit user-defined number. For example, 192.168.122.15:1.

· 32-bit AS number:16-bit user-defined number. For example, 65536:1. The AS number must be equal to or greater than 65536.

route-type: Specifies a route type.

auto-discovery: Specifies Ethernet auto-discovery routes.

es: Specifies Ethernet segment (ES) routes.

igmp-ls: Specifies IGMP leave synch routes.

igmp-js: Specifies IGMP join synch routes.

imet: Specifies inclusive multicast Ethernet tag (IMET) routes.

ip-prefix: Specifies IP prefix advertisement routes.

mac-ip: Specifies MAC/IP advertisement routes.

s-pmsi: Specifies Selective Provider Multicast Service Interface (S-PMSI) routes.

smet: Specifies selective multicast Ethernet tag (SMET) routes.

evpn-route: Specifies a BGP EVPN route, a case-insensitive string of 1 to 512 characters.

route-length: Specifies the route length in bits, in the range of 0 to 65535.

evpn-prefix: Specifies a BGP EVPN route in the format of evpn-route/route-length, a case-insensitive string of 1 to 512 characters.

advertise-info: Displays advertisement information for BGP EVPN routes.

as-path: Specifies the AS path attribute.

cluster-list: Specifies the cluster list attribute.

community: Specifies the community attribute.

ext-community: Specifies the extended community attribute.

ipv4-address: Specifies an IPv4 address.

ipv6-address: Specifies an IPv6 address.

mac-address: Specifies a MAC address in MAC/IP advertisement routes. If you specify the route-type keyword, to use this argument, you must also specify the mac-ip keyword.

verbose: Displays detailed BGP EVPN route information. If you do not specify this keyword, the command displays brief BGP EVPN route information.

community-number&<1-32>: Specifies a community sequence number. The value range for the community-number argument is 1 to 4294967295. &<1-32> indicates that a maximum of 32 numbers can be specified.

aa:nn&<1-32>: Specifies a community number. Both aa and nn are in the range of 0 to 65535. &<1-32> indicates that a maximum of 32 numbers can be specified.

internet: Specifies the INTERNET community attribute. Routes with this attribute can be advertised to all BGP peers. By default, all routes have this attribute.

no-advertise: Specifies the NO_ADVERTISE community attribute. Routes with this attribute cannot be advertised to any BGP peers.

no-export: Specifies the NO_EXPORT community attribute. Routes with this attribute cannot be advertised outside the local AS or confederation, but can be advertised to other sub-ASs in the confederation.

no-export-subconfed: Specifies the NO_EXPORT_SUBCONFED community attribute. Routes with this attribute cannot be advertised outside the local AS or to other sub-ASs in the confederation.

whole-match: Displays BGP EVPN routes that exactly match the specified community list, community numbers, or extended community attribute. If you do not specify this keyword, the command displays BGP EVPN routes that include the specified community list, community numbers, or extended community attribute.

community-list: Specifies a community list to match BGP EVPN unicast routes.

basic-community-list-number: Specifies a basic community list by its number in the range of 1 to 99.

comm-list-name: Specifies a community list by its name, a case-sensitive string of 1 to 63 characters.

adv-community-list-number: Specifies an advanced community list by its number in the range of 100 to 199.

bandwidth link-bandwidth-value: Specifies the link bandwidth attribute value. The link-bandwidth-value value is a string of 3 to 16 characters in the 16-bit autonomous system number:32-bit user-defined number format, for example: 100:3. The range of values for the autonomous system number is 0 to 65535, and the value range of the user-defined number is 0 to 4294967295.

rt route-target: Specifies a route target, a string of 3 to 24 characters.

soo site-of-origin: Specifies the Site of Origin (SoO) extended community attribute, a string of 3 to 24 characters.

A route target or SoO attribute has the following forms:

· 16-bit AS number:32-bit self-defined number. For example, 101:3. The value range is 0 to 65535 for an AS number and 0 to 4294967295 for a self-defined number.

· 32-bit IP address:16-bit self-defined number. For example, 192.168.122.15:1. The value range is 0 to 65535 for a self-defined number.

· 32-bit AS number:16-bit self-defined number. For example, 70000:3. The value range is 65536 to 4294967295 for an AS number and 0 to 65535 for a self-defined number.

· 32-bit IP address/IPv4 address mask length:16-bit user-defined number. For example, 192.168.122.15/24:1.

· 32-bit AS number in dotted format:16-bit user-defined number. For example, 65535.65535:1.

&<1-32>: Specifies a maximum of 32 items.

Usage guidelines

If you do not specify any parameter, this command displays brief information about all BGP EVPN routes.

This command displays BGP EVPN routes that carry any community attribute and the whole-match keyword does not take effect if you do not specify the following parameters:

· community-number

· aa:nn

· internet

· no-advertise

· no-export

· no-export-subconfed

This command displays BGP EVPN routes that carry any extended community attribute and the whole-match keyword does not take effect if you do not specify the following parameters:

· rt

· soo

Examples

# Display brief information about all BGP EVPN routes.

<Sysname> display bgp l2vpn evpn

BGP local router ID is 8.8.8.8

Status codes: * - valid, > - best, d - dampened, h - history,

s - suppressed, S - stale, i - internal, e - external

a - additional-path

Origin: i - IGP, e - EGP, ? - incomplete

Total number of routes from all PEs: 3

Route distinguisher: 1:1

Total number of routes: 2

* >e Network : [2][0][48][0011-0022-0033][32][11.22.33.55]/136

NextHop : 1.1.1.2 LocPrf : 100

PrefVal : 0 OutLabel : NULL

MED : 0

Path/Ogn: 20i

Route distinguisher of public instance: 1:15

Total number of routes: 1

* >i Network : [2][0][48][7010-0000-0001][0][0.0.0.0]/104

NextHop : 1.1.1.4 LocPrf : 100

PrefVal : 0 OutLabel : NULL

MED : 0

Path/Ogn: 20i

# Display all BGP EVPN routes that carry community attributes.

<Sysname> display bgp l2vpn evpn community

BGP local router ID is 1.1.1.9

Status codes: * - valid, > - best, d - dampened, h - history,

s - suppressed, S - stale, i - internal, e - external

a – additional-path

Origin: i - IGP, e - EGP, ? - incomplete

Total number of routes from all PEs: 6

Route distinguisher: 100:1

Total number of routes: 3

Network NextHop MED LocPrf PrefVal Path/Ogn Community

* > [2][0][48][00aa.00bb.00cc][4][0.0.0.0]/136

10.1.1.2 0 32768 ? <2:3>

* e 10.1.1.1 0 0 65410? <2:3>

* > [3][300][16][::ffff:1.1.1.1]/176

127.0.0.1 0 32768 ? <3:4>

# Display all BGP EVPN routes that carry extended community attributes.

<Sysname> display bgp l2vpn evpn ext-community

BGP local router ID is 1.1.1.9

Status codes: * - valid, > - best, d - dampened, h - history,

s - suppressed, S - stale, i - internal, e - external

a – additional-path

Origin: i - IGP, e - EGP, ? - incomplete

Total number of routes from all PEs: 6

Route distinguisher: 100:1

Total number of routes: 3

Network NextHop MED LocPrf PrefVal Path/Ogn Ext-Community

* > [2][0][48][00aa.00bb.00cc][4][0.0.0.0]/136

10.1.1.2 0 32768 ? <RT 2:3>

* e 10.1.1.1 0 0 65410? <RT 2:3>

* > [3][300][16][::ffff:1.1.1.1]/176

127.0.0.1 0 32768 ? <RT 3:4>

Table 2 Command output

Field	Description
Status codes	Route status codes: · * - valid—Valid route. · > - best—Optimal route. · d - dampened—Dampened route. · h - history—History route. · i - internal—Internal route. · e - external—External route. · s - suppressed—Suppressed route. · S - stale—Stale route. · a - additional-path—Add-Path optimal route.
Origin	Origin of the route: · i – IGP—Originated in the AS. The origin of routes advertised by using the network command is IGP. · e – EGP—Learned through EGP. · ? – incomplete—Unknown origin. The origin of routes redistributed from IGP protocols is incomplete.
Network	BGP EVPN route/route length. For example, in the entry [2][0][48][1485-247c-0506][32][10.1.2.20]/136, [2][0][48][1485-247c-0506][32][10.1.2.20] is the route, and 136 is the route length in bytes. BGP EVPN routes are as follows: · [1][ESI][EthernetTagID] ¡ 1—Ethernet auto-discovery route. ¡ ESI—Ethernet segment identifier (ESI). ¡ EthernetTagID—Ethernet tag ID. · [2][EthernetTagID][MACLength][MAC][IPAddressLength][IPAddress] ¡ 2—MAC/IP advertisement route. ¡ EthernetTagID—Ethernet tag ID. ¡ MACLength—MAC address length. ¡ MAC—MAC address. ¡ IPAddressLength—IP address length. ¡ IPAddress—IP address. · [3][EthernetTagID][IPAddressLength][IPAddress] ¡ 3—IMET route. ¡ IPAddressLength—IP address length. ¡ IPAddress—IP address of the originating router. · [4][ESI][IPAddressLength][IPAddress] ¡ 4—ES route. ¡ ESI—ESI. ¡ IPAddressLength—IP address length. ¡ IPAddress—IP address of the originating router. · [5][EthernetTagID][IPAddressLength][IPAddress] ¡ 5—IP prefix advertisement route. ¡ EthernetTagID—Ethernet tag ID. ¡ IPAddressLength—IP address length. ¡ IPAddress—IP address of the originating router. · [6][EthernetTagID][Source Len][Source IP][Group Len][Group IP][Originator Len][Originator IP] ¡ 6—Selective multicast Ethernet tag route. ¡ EthernetTagID—Ethernet tag ID. ¡ Source Len—Length of the multicast source address. This field displays 0 if the multicast source is any (, G). ¡ Source IP—Source IP address of IGMP membership reports. This field is not displayed if the multicast source is any (, G). ¡ Group Len—Length of the multicast group address. ¡ Group IP—Multicast group address of IGMP membership reports. ¡ Originator Len—Length of the originating router's IP address. ¡ Originator IP—IP address of the originating router. · [7][ESI][EthernetTagID][Source Len][Source IP][Group Len][Group IP][Originator Len][Originator IP] ¡ 7—IGMP join synch route. ¡ ESI—ESI. ¡ EthernetTagID—Ethernet tag ID. ¡ Source Len—Length of the multicast source address. This field displays 0 if the multicast source is any (, G). ¡ Source IP—Source IP address of IGMP membership reports. This field is not displayed if the multicast source is any (, G). ¡ Group Len—Length of the multicast group address. ¡ Group IP—Multicast group address of IGMP membership reports. ¡ Originator Len—Length of the originating router's IP address. ¡ Originator IP—IP address of the originating router. · [8][ESI][EthernetTagID] [Source Len][Source IP][Group Len][Group IP][Originator Len][Originator IP][ [LeaveGroup Synchronization] ¡ 8—IGMP leave synch route. ¡ ESI—ESI. ¡ EthernetTagID—Ethernet tag ID. ¡ Source Len—Length of the multicast source address. This field displays 0 if the multicast source is any (, G). ¡ Source IP—Source IP address of IGMP membership reports. This field is not displayed if the multicast source is any (, G). ¡ Group Len—Length of the multicast group address. ¡ Group IP—Multicast group address of IGMP membership reports. ¡ Originator Len—Length of the originating router's IP address. ¡ Originator IP—IP address of the originating router. ¡ LeaveGroup Synchronization—Leave group synchronization sequence number. · [10]EthernetTagID][Source Len][Source IP][Group Len][Group IP]][Originator Len][Originator IP] ¡ 10—Selective provider multicast service interface route. ¡ EthernetTagID—Ethernet tag ID. ¡ Source Len—Length of the multicast source IP address. This field displays 0 if the multicast source is any (, G). ¡ Source IP—Multicast source IP address. This field is not displayed if the multicast source is any (, G). ¡ Group Len—Length of the multicast group IP address. ¡ Group IP—Multicast group IP address. ¡ Originator Len—Length of the originating router's IP address. ¡ Originator IP—IP address of the originating router.
NextHop	Next hop IP address.
MED	Multi-Exit Discriminator (MED) attribute.
LocPrf	Local precedence.
OutLabel	Outgoing label.
PrefVal	Preferred value.
Path/Ogn	AS_PATH and ORIGIN attributes of the route.
Community	Community attribute.
Ext-Community	Extended community attribute.

# Display detailed information about BGP EVPN route [1][0001.0203.0405.0607.0809][5]/120 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [1][0001.0203.0405.0607.0809][5] 120

BGP local router ID: 172.16.250.133

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [1][0001.0203.0405.0607.0809][5]/120:

From : 10.1.1.2 (192.168.56.17)

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <Encapsulation Type: MPLS >, <ESI Label: Flag 0,

Label 1>, <EVPN Layer 2 Attributes: MTU 1500, Control Flags 0x2>

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0, pref-val 0

State : valid, external, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : Ethernet auto-discovery route

ESI : 0001.0203.0405.0607.0809

Ethernet tag ID : 5

MPLS label : 10

Table 3 Command output

Field	Description
Paths	Number of routes: · available—Number of valid routes. · best—Number of optimal routes.
From	IP address of the BGP peer that advertised the route.
Rely nexthop	Next hop after route recursion. If no next hop is found, this field displays not resolved.
Original nexthop	Original next hop of the route. If the route was obtained from a BGP update message, the original next hop is the next hop IP address in the message.
OutLabel	Outgoing label of the route.
Ext-Community	Extended community attributes: · RT. · Encapsulation Type. · ESI Label. · EVPN Layer 2 Attributes.
RxPathID	Add-Path ID value of the received route. This field is not supported by the BGP EVPN address family.
TxPathID	Add-Path ID value of the sent route. This field is not supported by the BGP EVPN address family.
AS-path	AS_PATH attribute of the route. This attribute records the ASs the route has passed and avoids routing loops.
Origin	Origin of the route: · igp—Originated in the AS. The origin of routes advertised by using the network command is IGP. · egp—Learned through EGP. · incomplete—Unknown origin. The origin of routes redistributed from IGP protocols is incomplete.
Attribute value	Attributes of the route: · MED—MED value for the destination network. · localpref—Local preference value. · pref-val—Preferred value. · pre—Route preference value.
State	Current state of the route: · valid. · internal. · external. · local. · synchronize. · best. · localredist—The route is redistributed from a local VPN instance or public instance. · bgp-rib-only—The route will not be flushed to the routing table. This field is displayed only in the detailed command output. · not preferred for reason—Reason why the route is not preferred. See Table 4 for the reason.
IP precedence	IP precedence in the range of 0 to 7. N/A indicates that the IP precedence is invalid.
QoS local ID	QoS local ID in the range of 1 to 4095. N/A indicates that the QoS local ID is invalid.
Traffic index	Traffic index in the range of 1 to 64. N/A indicates that the traffic index is invalid.
MPLS label	MPLS label. The current software version does not support this field.

‌

Table 4 Reason why a route is not preferred

Reason	Description
preferred-value	Routes with larger preferred values exist.
local-preference	Routes with larger local preference values exist.
local-origin-route	There are routes whose local-origin-route attribute has a higher priority. BGP selects the optimal route from local routes in this order: route generated by the network command, route redistributed by the import-route command, and summary route.
as-path	Routes with smaller AS_PATH attribute values exist.
origin	There are routes whose origin has a higher priority. The route origins are IGP, EGP, and INCOMPLETE in descending order of priority.
med	Routes with smaller MED values exist.
remote-route	There are routes whose remote-route attribute has a higher priority. BGP selects the optimal route from remote routes in this order: · Route learned from an EBGP peer. · Route learned from a confederation EBGP peer. · Route learned from a confederation IBGP peer. · Route learned from an IBGP peer.
igp-cost	Routes with smaller IGP metrics exist.
relydepth	Routes with smaller recursion depth values exist.
rfc5004	A route received from an EBGP peer is the current optimal route. BGP does not change the optimal route when it receives routes from other EBGP peers.
router-id	Routes with smaller router IDs exist. If one of the routes is advertised by a route reflector, BGP compares the ORIGINATOR_ID of the route with the router IDs of other routes. Then, BGP selects the route with the smallest ID as the optimal route.
cluster-list	Routes with smaller CLUSTER_LIST attribute values exist.
peer-address	Routes advertised by peers with lower IP addresses exist.
redist-route	Routes of the current VPN instance exist.
rpki	Routes with higher RPKI validation state preferences exist.
received	Earlier learned routes exist.
evpn-macip-mobile	There are EVPN MAC/IP advertisement routes carrying the MAC mobility extended community attribute.
evpn-macip-mobile-static	There are EVPN MAC/IP advertisement routes whose static flag in the MAC mobility extended community attribute is set.
evpn-macip-mobile-seq	There are EVPN MAC/IP advertisement routes carrying a larger sequence number in the MAC mobility extended community attribute.
evpn-macip-mobile-routerid	There are EVPN MAC/IP advertisement routes carrying a smaller router ID in the MAC mobility extended community attribute.

‌

# Display detailed information about BGP EVPN route [2][5][48][0001-0203-0405][32][4.5.5.5]/136 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [2][5][48][0001-0203-0405][32][5.5.5.5] 136

BGP local router ID: 172.16.250.133

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [2][5][48][0001-0203-0405][32][5.5.5.5]/136:

From : 10.1.1.2 (192.168.56.17)

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <RT: 1:3>, <RT: 1:4>, <RT: 1:5>, <RT: 1:6>, <RT: 1:7

>, <Encapsulation Type: VXLAN>, <Router's Mac: 0006-0708-0910

>, <MAC Mobility: Flag 0, SeqNum 2>, <Default GateWay>

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0, pref-val 0

State : valid, external, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : MAC/IP advertisement route

ESI : 0001.0203.0405.0607.0809

Ethernet tag ID : 5

MAC address : 0001-0203-0405

IP address : 5.5.5.5/32

MPLS label1 : 10

MPLS label2 : 100

Re-origination : Enable

Route distinguisher: 2.2.2.2:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [2][5][48][0001-0203-0405][32][5.5.5.5]/136:

From : 10.1.1.2 (192.168.56.17)

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : 0

Ext-Community : <RT: 1:2>, <RT: 1:3>, <RT: 1:4>, <RT: 1:5>, <RT: 1:6>, <RT: 1:7

>, <Encapsulation Type: VXLAN>, <Router's Mac: 0006-0708-0910

>, <MAC Mobility: Flag 0, SeqNum 2>, <Default GateWay>

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0, pref-val 0

State : valid, external, best, reoriginated, remoteredist

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : MAC/IP advertisement route

ESI : 0001.0203.0405.0607.0809

Ethernet tag ID : 5

MAC address : 0001-0203-0405

IP address : 5.5.5.5/32

MPLS label1 : 200

MPLS label2 : 300

Table 5 Command output

Field	Description
Paths	Number of routes: · available—Number of valid routes. · best—Number of optimal routes.
From	IP address of the BGP peer that advertised the route.
Rely nexthop	Next hop after route recursion. If no next hop is found, this field displays not resolved.
Original nexthop	Original next hop of the route. If the route was obtained from a BGP update message, the original next hop is the next hop IP address in the message.
OutLabel	Outgoing label of the route.
Ext-Community	Extended community attributes: · RT. · Encapsulation Type. · Router's Mac. · MAC Mobility—MAC mobility. ¡ Flag—Indicates whether the MAC address can move. A value of 1 indicates that the MAC address cannot move, and a value of 0 indicates that the MAC address can move. ¡ SeqNum—Identifies the most recent move of the MAC address. · Default GateWay—Route for the default gateway. · MicroSegment-id—Microsegment ID attribute: ¡ Type—Microsegment ID type. ¡ ID—Microsegment ID.
State	Current state of the route: · valid. · internal. · external. · local. · synchronize. · best. · reoriginated—Reoriginated route. · remoteredist—MAC/IP advertisement route generated based on a remote route. · not preferred for reason—Reason why the route is not preferred. See Table 4 for the reason.
MPLS label1	VXLAN ID used for Layer 2 forwarding.
MPLS label2	L3 VXLAN ID used for Layer 3 forwarding.
Re-origination	State of route reorigination: · Enable. · Disable.

‌

# Display detailed information about BGP EVPN route [3][0][32][5.5.5.5]/80 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [3][0][32][4.5.5.5] 80

BGP local router ID: 172.16.250.133

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [3][0][32][4.5.5.5]/80:

From : 10.1.1.2 (192.168.56.17)

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <Encapsulation Type: VXLAN>

RxPathID : 0x0

TxPathID : 0x0

PMSI tunnel : Flag 0, TunnelType 6, Label 10, EndPointAddress 10.1.1.2

AS-path : 200

Origin : igp

Attribute value : MED 0,pref-val 0

State : valid, external, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : Inclusive multicast Ethernet tag route

Ethernet tag ID : 0

Origin address : 5.5.5.5/32

Re-origination : Enable

Route distinguisher: 2.2.2.2:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [3][0][32][4.5.5.5]/80:

From : 10.1.1.2 (192.168.56.17)

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <Encapsulation Type: VXLAN>

RxPathID : 0x0

TxPathID : 0x0

PMSI tunnel : Flag 0, TunnelType 6, Label 10, EndPointAddress 10.1.1.2

AS-path : 200

Origin : igp

Attribute value : MED 0,pref-val 0

State : valid, external, best, reoriginated, remoteredist

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : Inclusive multicast Ethernet tag route

Ethernet tag ID : 0

Origin address : 5.5.5.5/32

Table 6 Command output

Field	Description
Ext-Community	Extended community attributes: · RT. · Encapsulation Type.
State	Route state: · valid—Valid route. · internal—Internal route. · external—External route. · local—Locally originated route. · synchronize—Synchronized route. · best—Optimal route. · reoriginated—Reoriginated route. · remoteredist—IMET route originated based on a remote route. · not preferred for reason—Reason why the route is not preferred. See Table 4 for the reason.
PMSI tunnel	P-Multicast Service Interface (PMSI) tunnel information: · Flag—This field is fixed at 0 in the current software version. · TunnelType—This field is fixed at 6 in the current software version, which represents a head-end replication tunnel. · Label—VXLAN ID. · EndPointAddress—Tunnel destination address.
Origin address	IP address of the originating router.
Re-origination	Status of route reorigination: · Enable. · Disable.

# Display detailed information about BGP EVPN route [4][0000.0000.0000.0000.000a][32][4.5.5.5]/128 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [4][0000.0000.0000.0000.000a][32][4.5.5.5] 128

BGP local router ID: 172.16.250.133

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [4][0000.0000.0000.0000.000a][32][4.5.5.5]/128:

From : 10.1.1.2 (192.168.56.17)

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <Encapsulation Type: VXLAN>, <ES-Import RT: 1:1>

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0,pref-val 0

State : valid, external, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : Ethernet segment route

ESI : 0000.0000.0000.0000.000a

Origin address : 4.5.5.5/32

Table 7 Command output

Field	Description
Ext-Community	Extended community attributes: · RT. · Encapsulation Type. · ES-Import RT.
Origin address	IP address of the originating router.

Field

Description

Ext-Community

Extended community attributes:

· RT.

· Encapsulation Type.

· ES-Import RT.

Origin address

IP address of the originating router.

# Display detailed information about BGP EVPN route [5][10][32][4.5.5.5]/80 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [5][10][32][4.5.5.5] 80

BGP local router ID: 172.16.250.133

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [5][10][32][4.5.5.5]/80:

From : 10.1.1.2 (192.168.56.17)

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <Encapsulation Type: VXLAN>, <Router's Mac:

0006-0708-0910>

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0,pref-val 0

State : valid, external, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : IP prefix advertisement route

ESI : 0000.0000.0000.0000.000a

Ethernet tag ID : 10

IP address : 4.5.5.5/32

Gateway address : 0.0.0.0

MPLS Label : 1

Re-origination : Enable

Route distinguisher: 2.2.2.2:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [5][10][32][4.5.5.5]/80:

From : 10.1.1.2 (192.168.56.17)

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : 0

Ext-Community : <RT: 1:2>, <Encapsulation Type: VXLAN>, <Router's Mac:

0006-0708-0910>

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0,pref-val 0

State : valid, external, best, reoriginated, remoteredist

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : IP prefix advertisement route

ESI : 0000.0000.0000.0000.000a

Ethernet tag ID : 10

IP address : 4.5.5.5/32

Gateway address : 0.0.0.0

MPLS Label : 20

Table 8 Command output

Field	Description
Ext-Community	Extended community attributes: · RT. · Encapsulation Type. · Router's Mac.
State	Current state of the route: · valid. · internal. · external. · local. · synchronize. · best. · reoriginated—Reoriginated route. · localredist—IP prefix advertisement route generated based on a local route. · remoteredist—IP prefix advertisement route generated based on a remote route. · not preferred for reason—Reason why the route is not preferred. See Table 4 for the reason.
IP address	IP address and prefix length.
MPLS Label	L3 VXLAN ID used for Layer 3 forwarding.
Re-origination	State of route reorigination: · Enable. · Disable.

‌

# Display detailed information about BGP EVPN route [6][0][32][10.1.1.1][32][224.224.224.224][32][192.168.3.1]/160 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [6][0][32][10.1.1.1][32][224.224.224.224][32][192.168.3.1] 160

BGP local router ID: 172.16.250.133

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [6][0][32][10.1.1.1][32][224.224.224.224][32][192.168.3.1]/160:

From : 10.1.1.2

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <Encapsulation Type: VXLAN>,

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0,pref-val 0

State : valid, external, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : Selective multicast Ethernet tag route

Ethernet tag ID : 0

Source length : 32

Source address : 10.1.1.1

Group length : 32

Group address : 224.224.224.224

Origin address : 192.168.3.1

IGMP flags : v3, include

Table 9 Command output

Field	Description
Ext-Community	Extended community attributes: · RT. · Encapsulation Type.
Source length	Length of the multicast source address.
Source address	Multicast source address.
Group length	Length of the multicast group address.
Group address	Multicast group address.
Origin address	IP address of the originating router.

# Display detailed information about BGP EVPN route [7][00:00:00:00:00:00:00:00:00][0][32][10.1.1.1][32][224.224.224.224][32][192.168.3.1]/240 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [7][0000.0000.0000.0000.0000][0][32][10.1.1.1][16][224.224.224.224][32][192.168.3.1] 240

BGP local router ID: 172.16.250.133

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [7][0000.0000.0000.0000.0000][0][32][10.1.1.1][32][224.224.224.224][32][192.168.3.1]/240:

From : 10.1.1.2

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <Encapsulation Type: VXLAN>, < ESI-RT: 0:0>

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0,pref-val 0

State : valid, external, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : IGMP join synch route

ESI : 0000.0000.0000.0000.0000

Ethernet tag ID : 0

Source length : 32

Source address : 10.1.1.1

Group length : 32

Group address : 224.224.224.224

Origin address : 192.168.3.1

IGMP flags : v3, include

Table 10 Command output

Field	Description
Ext-Community	Extended community attributes: · RT. · Encapsulation Type. · EVI-RT—Route target associated with EVI.
Source length	Length of the multicast source address.
Source address	Multicast source address.
Group length	Length of the multicast group address.
Group address	Multicast group address.
Origin address	IP address of the originating router.

# Display detailed information about BGP EVPN route [8][ 00:00:00:00:00:00:00:00:00][0][32][10.1.1.1][32][224.224.224.224][32][192.168.3.1][0]/272 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [8][0000.0000.0000.0000.0000][0][32][10.1.1.1][32][224.224.224.224][32][192.168.3.1][0] 272

BGP local router ID: 172.16.250.133

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [8][0000.0000.0000.0000.0000] [0][32][10.1.1.1][32][224.224.224.224][32][192.168.3.1][0]/272:

From : 10.1.1.2

Rely nexthop : 10.1.1.2

Original nexthop: 10.1.1.2

OutLabel : NULL

Ext-Community : <RT: 1:2>, <Encapsulation Type: VXLAN>, < ESI-RT: 1:200>

RxPathID : 0x0

TxPathID : 0x0

AS-path : 200

Origin : igp

Attribute value : MED 0,pref-val 0

State : valid, external, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : IGMP leave synch route

ESI : 0000.0000.0000.0000.0000

Ethernet tag ID : 0

Source length : 32

Source address : 10.1.1.1

Group length : 32

Group address : 224.224.224.224

Origin address : 192.168.3.1

Leave group sync: 0

Max ResponseTime: 2500ms

Max ResponseCode: 25

IGMP flags : v3, include

Table 11 Command output

Field	Description
Ext-Community	Extended community attributes: · RT. · Encapsulation Type. · ESI-RT—Route target associated with the ESI.
Source length	Length of the multicast source address.
Source address	Multicast source address.
Group length	Length of the multicast group address.
Group address	Multicast group address.
Origin address	IP address of the originating router.
Leave group sync	Leave group synchronization sequence number.
Max ResponseTime	Maximum response time in milliseconds.
Max ResponseCode	Maximum response time in the received packet, in deciseconds.

‌

# Display detailed information about BGP EVPN route [10][0][32][7.21.0.7][32][225.0.0.0][32][2.2.2.2]/160 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [10][0][32][7.21.0.7][32][225.0.0.0][32][2.2.2.2]/160

BGP local router ID: 2.2.2.2

Local AS number: 200

Route distinguisher: 1.1.1.1:100(vpna)

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [10][0][32][7.21.0.7][32][225.0.0.0][32][2.2.2.2]/160:

From : 1.1.1.1 (1.1.1.1)

Rely nexthop : 12.1.1.1

Original nexthop: 0.0.0.0

OutLabel : NULL

Ext-Community : <RT: 1:1>, <Encapsulation Type: VXLAN>

RxPathID : 0x0

TxPathID : 0x0

Org-validation : Valid

PMSI tunnel : Flag 0, TunnelType 3, Label 1000, Reserved 0, SenderAddr 2.2.2.2,

PGroupAddr 232.0.0.0

AS-path : (null)

Origin : igp

Attribute value : MED 0, localpref 100, pref-val 32768

State : valid, local, best

IP precedence : N/A

QoS local ID : N/A

Traffic index : N/A

EVPN route type : S-PMSI A-D route

Ethernet tag ID : 0

Source length : 32

Source address : 7.21.0.7

Group length : 32

Group address : 225.0.0.0

Origin address : 2.2.2.2

Table 12 Command output

Field	Description
Ext-Community	Extended community attributes: · RT. · Encapsulation Type.
EVPN route type	S-PMSI (selective provider multicast service interface) route.
Org-validation	RPKI source AS check result: · Valid. · Not found. · Invalid.
PMSI tunnel	PMSI tunnel information: · Flag—Flag, which is fixed at 0 in the current software version. · TunnelType—Tunnel type, which is fixed at 6 (head-end replication tunnel) in the current software version. · Label—VXLAN ID. · Reserved—Reserved field. The value is fixed at 0 in the current software version. · SenderAddr—Sender address. · PgroupAddr—Multicast group address of the service provider.
Source length	Length of the multicast source address.
Source address	Multicast source address.
Group length	Length of the multicast group address.
Group address	Multicast group address.
Origin address	IP address of the originating router.

‌

# Display community attribute information about BGP EVPN route [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5]/128 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5] 128 community

BGP local router ID: 1.1.1.9

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5]/128:

Community: no-export

# Display extended community attribute information about BGP EVPN route [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5]/128 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5] 128 ext-community

BGP local router ID: 1.1.1.9

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5]/128:

Ext-Community: <RT 1:1>

# Display the AS path attribute of BGP EVPN route [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5]/128 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5] 128 as-path

BGP local router ID: 1.1.1.9

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5]/128:

As-path: 80

# Display the cluster ID list attribute of BGP EVPN route [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5]/128 with RD 1.1.1.1:100.

<Sysname> display bgp l2vpn evpn route-distinguisher 1.1.1.1:100 [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5] 128 cluster-list

BGP local router ID: 1.1.1.9

Local AS number: 100

Route distinguisher: 1.1.1.1:100

Total number of routes: 1

Paths: 1 available, 1 best

BGP routing table information of [4][00:00:00:00:00:00:00:00:00:0a][32][4.5.5.5]/128:

Cluster list: 80

Table 13 Command output

Field	Description
Paths	Numbers of available routes and optimal routes.
Community	Community attribute.
Ext-Community	Extended community attribute.
As-path	AS path attribute.
Cluster-list	Cluster ID list attribute.

# Display statistics about the BGP EVPN routes with community attributes.

<Sysname> display bgp l2vpn evpn statistics community

Total number of routes from all PEs: 1

Route distinguisher: 100:1(vpn1)

Total number of routes: 4

display evpn auto-discovery

Use display evpn auto-discovery to display information about IPv4 peers that are automatically discovered through BGP.

Syntax

display evpn auto-discovery { { imet | mac-ip } [ mpls | vxlan ] [ peer ip-address] [ vsi vsi-name ] | macip-prefix [ nexthop next-hop ] [ count ] }

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

imet: Specifies IPv4 peers discovered through IMET routes.

mac-ip: Specifies IPv4 peers discovered through MAC/IP advertisement routes that do not carry L3 VXLAN IDs.

mpls: Specifies the EVPN VPLS network.

vxlan: Specifies the EVPN VXLAN network.

peer ip-address: Specifies a peer by its IPv4 address. If you do not specify this option, the command displays information about all automatically discovered IPv4 peers.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command displays IPv4 peer information for all VSIs.

macip-prefix: Specifies IPv4 peers discovered through MAC/IP advertisement routes that carry L3 VXLAN IDs or IP prefix advertisement routes that carry L3 VXLAN IDs.

nexthop next-hop: Specifies a next hop. If you do not specify this option, the command displays IPv4 peer information for all next hops.

count: Displays the number of IPv4 peers. If you do not specify this keyword, the command displays detailed IPv4 peer information.

Examples

# Display information about IPv4 peers discovered through IMET routes.

<Sysname> display evpn auto-discovery imet

Total number of automatically discovered peers: 2

VSI name: vpna

RD PE_address Tunnel_address Tunnel mode VXLAN ID

1:10 2.2.2.2 2.2.2.2 VXLAN 10

2:100 3.3.3.3 3.3.3.3 VXLAN 10

Table 14 Command output

Field	Description
PE_address	Identifier of the remote VTEP or PE on the VSI.
Tunnel_address	Tunnel destination IP address.
Tunnel mode	Tunnel mode: · VXLAN. · VXLAN-DCI. · PW.
In/Out label	Incoming and outgoing labels for the PW. If the labels are invalid, this field displays a hyphen (-).

# Display information about IPv4 peers discovered through MAC/IP advertisement routes that do not carry L3 VXLAN IDs.

<Sysname> display evpn auto-discovery mac-ip

Total number of automatically discovered peers: 1

VSI name: vpna

Destination IP Source IP VXLAN ID Tunnel mode Tunnel name

6.6.6.6 1.1.1.9 100 VXLAN Tunnel1

Table 15 Command output

Field	Description
Destination IP	Tunnel destination IP address.
Source IP	Tunnel source IP address.
Tunnel mode	Tunnel mode: · VXLAN. · PW.
In/Out label	Incoming and outgoing labels for the PW. If the labels are invalid, this field displays a hyphen (-).

# Display information about IPv4 peers discovered through MAC/IP advertisement routes that carry L3 VXLAN IDs or IP prefix advertisement routes that carry L3 VXLAN IDs.

<Sysname> display evpn auto-discovery macip-prefix

Destination IP Source IP L3VNI Tunnel mode Outgoing interface

1.1.1.1 3.3.3.3 200 VXLAN Vsi-interface3

2.2.2.2 3.3.3.3 200 VXLAN Vsi-interface3

# Display the total number of IPv4 peers discovered through MAC/IP advertisement routes that carry L3 VXLAN IDs or IP prefix advertisement routes that carry L3 VXLAN IDs.

<Sysname> display evpn auto-discovery macip-prefix count

Total number of entries: 2

Table 16 Command output

Field	Description
Destination IP	Tunnel destination IP address.
Source IP	Tunnel source IP address.
L3VNI	L3 VXLAN ID used for Layer 3 forwarding.
Tunnel mode	VXLAN tunnel mode: · VXLAN. · VXLAN-DCI.
Outgoing interface	VSI interface associated with the L3 VXLAN ID.

‌

display evpn instance vxlan

Use display evpn instance vxlan to display EVPN instance information.

Syntax

display evpn instance [ name instance-name | vsi vsi-name ] vxlan

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

name instance-name: Specifies an EVPN instance by its name, a case-sensitive string of 1 to 31 characters.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters.

Usage guidelines

This command is supported only by EVPN VXLAN.

If you do not specify any parameters, this command displays information about all EVPN instances.

Examples

# Display information about all EVPN instances.

<Sysname> display evpn instance vxlan

EVPN instance : evpn1

Route distinguisher : 1:1

Export VPN targets : 1:1

Import VPN targets : 1:1

ARP-based MAC learning : Disabled

ND-based MAC learning : Disabled

ARP advertising : Disabled

MAC advertising : Disabled

ND advertising : Disabled

VSI binding list:

VSI name VSI tag ID

vpna 3

vpnb 5

EVPN instance : - (created on VSI vpnc)

Route distinguisher : 1:1

Export VPN targets : 1:1

Import VPN targets : 1:1

ARP-based MAC learning : Disabled

ND-based MAC learning : Disabled

ARP advertising : Disabled

MAC advertising : Disabled

ND advertising : Disabled

Table 17 Command output

Field	Description
EVPN instance	EVPN instance name in one of the following formats: · instance-name—Name of an EVPN instance created in system view. · - (created on VSI vsi-name)—Name of an EVPN instance created on a VSI.
ARP-based MAC learning	Whether EVPN is enabled to learn MAC addresses from ARP information: · Enabled. · Disabled.
ND-based MAC learning	Whether EVPN is enabled to learn MAC addresses from ND information: · Enabled. · Disabled.
ARP advertising	Whether ARP information advertisement is enabled: · Enabled. · Disabled.
MAC advertising	Whether MAC address advertisement is enabled: · Enabled. · Disabled.
ND advertising	Whether ND information advertisement is enabled: · Enabled. · Disabled.
VSI binding list	VSIs bound to the EVPN instance.

display evpn ipv6 auto-discovery

Use display evpn ipv6 auto-discovery to display information about IPv6 peers that are automatically discovered through BGP.

Syntax

display evpn ipv6 auto-discovery { imet [ peer ipv6-address ] [ vsi vsi-name ] | mac-ip | macip-prefix [ nexthop next-hop ] [ count ] }

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

imet: Specifies IPv6 peers discovered through IMET routes.

peer ipv6-address: Specifies a peer by its IPv6 address. If you do not specify this option, the command displays information about all automatically discovered IPv6 peers.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command displays IPv6 peer information for all VSIs.

mac-ip: Specifies IPv6 peers discovered through MAC/IP advertisement routes that do not carry L3 VXLAN IDs.

macip-prefix: Specifies IPv6 peers discovered through MAC/IP advertisement routes that carry L3 VXLAN IDs or IP prefix advertisement routes that carry L3 VXLAN IDs.

nexthop next-hop: Specifies a next hop. If you do not specify this option, the command displays IPv6 peer information for all next hops.

count: Displays the number of IPv6 peers. If you do not specify this keyword, the command displays detailed IPv6 peer information.

Examples

# Display information about IPv6 peers discovered through IMET routes.

<Sysname> display evpn ipv6 auto-discovery imet

Total number of automatically discovered peers: 2

VSI name: vpna

RD : 1:10

PE address : 11::8

Tunnel address : 11::8

Tunnel mode : VXLAN

VXLAN ID : 10

RD : 2:100

PE address : 12::8

Tunnel address : 12::8

Tunnel mode : VXLAN

VXLAN ID : 10

Table 18 Command output

Field	Description
PE address	Identifier of the remote VTEP on the VSI.
Tunnel address	Tunnel destination IP address.
Tunnel mode	Tunnel mode: · VXLAN. · VXLAN-DCI.

# Display information about IPv6 peers discovered through MAC/IP advertisement routes that do not carry L3 VXLAN IDs.

<Sysname> display evpn ipv6 auto-discovery mac-ip

Total number of automatically discovered peers: 1

VSI name: vpna

Destination IP : 6:6::6:8

Source IP : 1:1::1:7

VXLAN ID : 100

Tunnel mode : VXLAN

Tunnel name : Tunnel1

Table 19 Command output

Field	Description
Destination IP	Tunnel destination IP address.
Source IP	Tunnel source IP address.
Tunnel mode	Tunnel mode. VXLAN represents a VXLAN tunnel.

# Display information about IPv6 peers discovered through MAC/IP advertisement routes that carry L3 VXLAN IDs or IP prefix advertisement routes that carry L3 VXLAN IDs.

<Sysname> display evpn ipv6 auto-discovery macip-prefix

Destination IP : 6:6::6:8

Source IP : 1:1::1:7

L3VNI : 100

Tunnel mode : VXLAN

OutInterface : Vsi-interface3

# Display the total number of IPv6 peers discovered through MAC/IP advertisement routes that carry L3 VXLAN IDs or IP prefix advertisement routes that carry L3 VXLAN IDs.

<Sysname> display evpn ipv6 auto-discovery macip-prefix count

Total number of entries: 1

Table 20 Command output

Field	Description
Destination IP	Tunnel destination IP address.
Source IP	Tunnel source IP address.
L3VNI	L3 VXLAN ID used for Layer 3 forwarding.
Tunnel mode	Tunnel mode: · VXLAN. · VXLAN-DCI.
OutInterface	VSI interface associated with the L3 VXLAN ID.

display evpn ipv6 route mac

Use display evpn ipv6 route mac to display IPv6 EVPN MAC address entries.

Syntax

display evpn ipv6 route mac [ local | remote ] [ vsi vsi-name ] [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

local: Specifies local MAC address entries.

remote: Specifies remote MAC address entries.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command displays MAC address entries for all VSIs.

count: Displays the number of MAC address entries. If you do not specify this keyword, the command displays detailed information about MAC address entries.

Usage guidelines

If you do not specify the local or remote keyword, this command displays both local and remote IPv6 EVPN MAC address entries.

Examples

# Display all IPv6 EVPN MAC address entries.

<Sysname> display evpn ipv6 route mac

Flags: D - Dynamic B - BGP L - Local active

G - Gateway S - Static M - Mapping I - Invalid

A - MAC-authentication

VSI name: vpna

MAC address Link ID/Name Flags Nexthop

0000-0000-000a 1 DL -

0000-0000-0009 Tunnel1 B 1::2

0001-2000-4000 - BI 1::3

# Display the total number of IPv6 EVPN MAC address entries.

<Sysname> display evpn ipv6 route mac count

Total number of entries: 3

Table 21 Command output

Field	Description
Link ID/Name	For a local MAC address, this field displays the AC's link ID on the VSI. For a remote MAC address, this field displays the tunnel interface name.
Flags	MAC address entry type: · D—The entry is dynamically learned. · B—The entry is learned from BGP EVPN routes. · L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active. · G—The entry for the gateway is active. · S—The static entry is active. · M—The entry from a remote VXLAN mapped to a local VXLAN is active. · I—The entry is invalid. Possible reasons: ¡ The VSI has been administratively shut down by using the shutdown command. ¡ The outgoing tunnel interface does not exist. · A—The entry was learned by MAC authentication.
Nexthop	IP address of the remote VTEP. If the MAC address entry is a local entry, a hyphen (-) is displayed.

display evpn mpls statistics inbound

Use display evpn mpls statistics inbound to display incoming packet statistics about PWs of EVPN VPLS.

Syntax

display evpn mpls statistics inbound [ vsi vsi-name ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify a VSI, this command displays incoming packet statistics about all PWs.

Usage guidelines

This command displays the total number of packets received by PWs. It does not display incoming packet statistics about a specific PW.

To view outgoing packet statistics about PWs, use the display l2vpn pw command.

Examples

# Display incoming packet statistics about the PWs of the EVPN instance created on VSI aaa.

<Sysname> display evpn mpls statistics inbound vsi aaa

VSI name : aaa

Input statistics:

Octets : 10600

Packets : 100

Errors : 0

Discards: 0

Table 22 Command output

Field	Description
Input statistics	Incoming packet statistics: · Octets—Number of incoming bytes. · Packets—Number of incoming packets. · Errors—Number of incoming error packets. · Discards—Number of dropped incoming packets.

Field

Description

Input statistics

Incoming packet statistics:

· Octets—Number of incoming bytes.

· Packets—Number of incoming packets.

· Errors—Number of incoming error packets.

· Discards—Number of dropped incoming packets.

Related commands

display l2vpn pw (MPLS Command Reference)

reset l2vpn statistics pw (MPLS Command Reference)

statistics enable (VSI EVPN instance view)

display evpn route arp

Use display evpn route arp to display EVPN ARP entries.

Syntax

display evpn route arp [ local | remote ] [ public-instance | vpn-instance vpn-instance-name ] [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

local: Specifies local ARP entries.

remote: Specifies remote ARP entries.

public-instance: Specifies the public instance.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters.

count: Displays the number of ARP entries. If you do not specify this keyword, the command displays detailed information about ARP entries.

Usage guidelines

If you do not specify the local or remote keyword, this command displays both local and remote EVPN ARP entries.

If you do not specify the public-instance keyword or the vpn-instance vpn-instance-name option, this command displays EVPN ARP entries for the public instance and all VPN instances.

Examples

# Display all EVPN ARP entries.

<Sysname> display evpn route arp

Flags: D - Dynamic B - BGP L - Local active

G - Gateway S - Static M - Mapping I - Invalid

VPN instance: vpn1 Interface: Vsi-interface1

IP address MAC address Router MAC VSI index Flags

10.1.1.1 0003-0003-0003 a0ce-7e40-0400 0 GL

10.1.1.11 0001-0001-0001 a0ce-7e40-0400 0 DL

10.1.1.12 0001-0001-0011 a0ce-7e41-0401 0 B

10.1.1.13 0001-0001-0021 a0ce-7e42-0402 0 B

10.1.1.101 0001-0011-0101 a0ce-7e40-0400 0 SL

10.1.1.102 0001-0011-0102 0011-9999-0000 0 BS

Public instance Interface: Vsi-interface2

IP address MAC address Router MAC VSI index Flags

11.1.1.1 0033-0033-0033 a0ce-7e40-0400 0 GL

11.1.1.11 0011-0011-0011 a0ce-7e40-0400 0 DL

# Display the total number of EVPN ARP entries.

<Sysname> display evpn route arp count

Total number of entries: 8

Table 23 Command output

Field	Description
Interface	VSI interface.
Flags	ARP entry type: · D—The entry is dynamically learned. · B—The entry is learned from BGP EVPN routes. · L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active. · G—The entry for the gateway is active. · S—The static entry is active. · M—The entry from a remote VXLAN mapped to a local VXLAN is active. · I—The entry is invalid. Possible reasons: ¡ The VSI has been administratively shut down by using the shutdown command. ¡ The outgoing tunnel interface does not exist.

Field

Description

Interface

VSI interface.

Flags

ARP entry type:

· D—The entry is dynamically learned.

· B—The entry is learned from BGP EVPN routes.

· L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active.

· G—The entry for the gateway is active.

· S—The static entry is active.

· M—The entry from a remote VXLAN mapped to a local VXLAN is active.

· I—The entry is invalid. Possible reasons:

¡ The VSI has been administratively shut down by using the shutdown command.

¡ The outgoing tunnel interface does not exist.

display evpn route arp suppression

Use display evpn route arp suppression to display EVPN ARP flood suppression entries.

Syntax

display evpn route arp suppression [ mpls | vxlan ] [ local | remote ] [ vsi vsi-name ] [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

mpls: Specifies the EVPN VPLS network.

vxlan: Specifies the EVPN VXLAN network.

local: Specifies local ARP flood suppression entries.

remote: Specifies remote ARP flood suppression entries.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command displays ARP flood suppression entries for all VSIs.

count: Displays the number of ARP flood suppression entries. If you do not specify this keyword, the command displays detailed information about ARP flood suppression entries.

Usage guidelines

If you do not specify the local or remote keyword, this command displays both local and remote EVPN ARP flood suppression entries.

Examples

# Display all EVPN ARP flood suppression entries.

<Sysname> display evpn route arp suppression

Flags: D - Dynamic B - BGP L - Local active

G - Gateway S - Static M - Mapping I - Invalid

VSI name: vpna

IP address MAC address Flags Encap

10.1.1.12 0002-0002-0002 B VXLAN

10.1.1.13 0002-0002-0002 BI VXLAN

10.1.1.101 0001-0011-0101 BS VXLAN

10.1.1.102 0001-0011-0102 DL VXLAN

# Display the total number of ARP flood suppression entries.

<Sysname> display evpn route arp suppression count

Total number of entries: 4

Table 24 Command output

Field	Description
Flags	ARP flood suppression entry type: · D—The entry is dynamically learned. · B—The entry is learned from BGP EVPN routes. · L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active. · G—The entry for the gateway is active. · S—The static entry is active. · M—The entry from a remote VXLAN mapped to a local VXLAN is active. · I—The entry is invalid. Possible reasons: ¡ The VSI has been administratively shut down by using the shutdown command. ¡ The outgoing tunnel interface does not exist.
Encap	Packet encapsulation type: · MPLS. · VXLAN.

Field

Description

Flags

ARP flood suppression entry type:

· D—The entry is dynamically learned.

· B—The entry is learned from BGP EVPN routes.

· L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active.

· G—The entry for the gateway is active.

· S—The static entry is active.

· M—The entry from a remote VXLAN mapped to a local VXLAN is active.

· I—The entry is invalid. Possible reasons:

¡ The VSI has been administratively shut down by using the shutdown command.

¡ The outgoing tunnel interface does not exist.

Encap

Packet encapsulation type:

· MPLS.

· VXLAN.

display evpn route arp-mobility

Use display evpn route arp-mobility to display EVPN ARP mobility information.

Syntax

display evpn route arp-mobility [ public-instance | vpn-instance vpn-instance-name ] [ ip ip-address ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

public-instance: Specifies the public instance.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters.

ip ip-address: Specifies an IPv4 address in dotted decimal notation. If you do not specify an IP address, this command displays ARP mobility information about all IP addresses of the public instance or MPLS L3VPN instance.

Usage guidelines

If you do not specify any parameters, this command displays ARP mobility information about the public instance and all VPN instances.

Examples

# Display EVPN ARP mobility information about the public instance and all VPN instances.

<Sysname> display evpn route arp-mobility

Flags: S - Suppressed, N - Not suppressed

Suppression threshold: 5

Detection cycle : 180s

Suppression time : Permanent

VPN instance : vpn1

Interface : Vsi-interface1

IP address Move count Moved from Flags Suppressed at

192.168.156.120 5 XGE1/0/1 S 17:24:33 2018/04/01

192.168.56.20 - - N -

Public instance

Interface : Vsi-interface2

IP address Move count Moved from Flags Suppressed at

192.168.156.120 5 XGE1/0/2 S 17:24:33 2018/04/01

192.168.56.20 5 2.2.2.2 S 17:24:33 2018/04/01

Table 25 Command output

Field	Description
Suppression threshold	ARP mobility suppression threshold, which is the number of ARP moves from the local site to a remote site. If ARP mobility suppression is disabled, this field displays a hyphen (-).
Detection cycle	ARP mobility detection cycle in seconds. If ARP mobility suppression is disabled, this field displays a hyphen (-).
Suppression time	Suppression time in seconds. If this field displays Permanent, ARP moves are suppressed permanently. If ARP mobility suppression is disabled, this field displays a hyphen (-).
Move count	Number of ARP moves from the interface to other interfaces.
Moved from	Source interface or source VTEP/PE IP address for the ARP move.
Flags	Whether the ARP move was suppressed: · S—Suppressed. · N—Not suppressed.
Suppressed at	Time when the ARP move was suppressed.

Related commands

evpn route arp-mobility suppression

display evpn route { igmp-js | igmp-ls | smet }

Use display evpn route { igmp-js | igmp-ls | smet } to display EVPN multicast routes.

Syntax

display evpn route { igmp-js | igmp-ls | smet } [ local | remote ] [ vsi vsi-name ] [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

igmp-js: Specifies IGMP join synch routes.

igmp-ls: Specifies IGMP leave synch routes.

smet: Specifies SMET routes.

local: Specifies local multicast routes.

remote: Specifies remote multicast routes.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command displays multicast routes for all VSIs.

count: Displays the number of multicast routes. If you do not specify this keyword, the command displays detailed information about multicast routes.

Usage guidelines

If you do not specify the local or remote keyword, this command displays both local and remote multicast routes.

Examples

# Display all SMET routes.

<Sysname> display evpn route smet

R: re-originate to other vsi

VSI name: bbb

Source address : 192.164.1.1

Group address : 226.1.1.1

Local version : v3(I)

Re-originate : From vsi 1 to vsi 2

Peers :

Nexthop Tunnel name Link ID Remote version ReOrig flag

1.1.1.1 Tunnel0 0x5000000 v3(E) R

ACs :

AC Link ID Flags

XGE1/0/1 srv1 0 Sync

Table 26 Command output

Field	Description
Source address	Multicast source IP address.
Group address	Multicast group IP address.
Local version	Local IGMP version. IGMPv3 includes the v3(I) and v3(E) subversions.
Re-originate	Reoriginated local SMET route from VSI vsi-index1 to VSI vsi-index2.
Peers	Remote peers in SMET routes.
Nexthop	Remote VTEP IP address.
Tunnel name	Remote tunnel interface name.
Link ID	Link ID of the VXLAN tunnel.
Remote version	Remote IGMP version. IGMPv3 includes the v3(I) and v3(E) subversions.
ReOrig flag	Reoriginated remote SMET route flag: · R—The remote SMET route is reoriginated. · -—The remote SMET route is not reoriginated.
ACs	Local ACs.
AC	AC name. This field displays a Layer 3 interface name or a Layer 2 interface name and an Ethernet service instance name.
Link ID	The AC's link ID.
Flags	Flags: · Local—Local AC. · Sync—AC synchronized from another VTEP.

# Display all local and remote IGMP join synch routes.

<Sysname> display evpn route igmp-js

VSI name: aaa

Source address : 192.164.1.1

Group address : 227.1.1.1

Local version : -

Remote version : v3(I)

ESI : 0000.0002.0003.0004.0005

Ethernet tag ID : 20

AC : XGE1/0/1 srv2

Peers : 156.1.1.2, 156.1.1.3, 156.1.1.4

VSI name: bbb

Source address : 192.164.1.3

Group address : 227.1.1.2

Local version : v2

Remote version : v3(I)

ESI : 0000.0002.0003.0004.0005

Ethernet tag ID : 20

AC : XGE1/0/1 srv2

Peers : 156.1.1.2, 156.1.1.3, 156.1.1.4

Table 27 Command output

Field	Description
Source address	Multicast source IP address.
Group address	Multicast group IP address.
Local version	Local IGMP version. IGMPv3 includes the v3(I) and v3(E) subversions.
Remote version	Remote IGMP version. IGMPv3 includes the v3(I) and v3(E) subversions.
Peers	Remote VTEP IP addresses.

# Display all local and remote IGMP leave synch routes.

<Sysname> display evpn route igmp-ls

VSI name: aaa

Source address : 192.164.1.1

Group address : 228.1.1.1

Local version : -

Remote version : v3(I)

ESI : 0000.0002.0003.0004.0003

Ethernet tag ID : 10

AC : XGE1/0/1 srv3

Peers : 156.1.1.6, 156.1.1.3, 156.1.1.2

Table 28 Command output

Field	Description
Source address	Multicast source IP address.
Group address	Multicast group IP address.
Local version	Local IGMP version. IGMPv3 includes the v3(I) and v3(E) subversions.
Remote version	Remote IGMP version. IGMPv3 includes the v3(I) and v3(E) subversions.
Peers	Remote VTEP IP addresses.

# Display the total number of IGMP join synch routes.

<Sysname> display evpn route igmp-js count

Total number of entries: 2

display evpn route mac

Use display evpn route mac to display IPv4 EVPN MAC address entries.

Syntax

display evpn route mac [ mpls | vxlan ] [ local | remote ] [ vsi vsi-name ] [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

mpls: Specifies the EVPN VPLS network.

vxlan: Specifies the EVPN VXLAN network.

local: Specifies local MAC address entries.

remote: Specifies remote MAC address entries.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command displays MAC address entries for all VSIs.

count: Displays the number of MAC address entries. If you do not specify this keyword, the command displays detailed information about MAC address entries.

Usage guidelines

If you do not specify the mpls or vxlan keyword, this command displays IPv4 EVPN MAC address entries for both EVPN VPLS and EVPN VXLAN.

If you do not specify the local or remote keyword, this command displays both local and remote IPv4 EVPN MAC address entries.

Examples

# Display all IPv4 EVPN MAC address entries.

<Sysname> display evpn route mac

Flags: D - Dynamic B - BGP L - Local active

G - Gateway S - Static M - Mapping I - Invalid

A - MAC-authentication P – Multiport/Multicast

VSI name: bbb

MAC address Link ID/Name Flags Encap Next hop

0000-0000-000a 1 DL VXLAN -

0000-0000-0009 Tunnel1 B VXLAN 2.2.2.2

0001-2000-4000 - BI VXLAN 3.3.3.3

# Display the total number of IPv4 EVPN MAC address entries.

<Sysname> display evpn route mac count

Total number of entries: 3

Table 29 Command output

Field	Description
Link ID/Name	For a local MAC address, this field displays the AC's link ID on the VSI. For a remote MAC address, this field displays the tunnel interface name.
Flags	MAC address entry type: · D—The entry is dynamically learned. · B—The entry is learned from BGP EVPN routes. · L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active. · G—The entry for the gateway is active. · S—The static entry is active. · M—The entry from a remote VXLAN mapped to a local VXLAN is active. · I—The entry is invalid. Possible reasons: ¡ The VSI has been administratively shut down by using the shutdown command. ¡ The outgoing tunnel interface does not exist. · A—The entry was learned by MAC authentication. · P—The entry is a multiport MAC address entry or multicast MAC address entry.
Encap	Packet encapsulation type: · MPLS. · VXLAN.
Next hop	IP address of the remote VTEP or PE. If the MAC address entry is a local entry, a hyphen (-) is displayed.

display evpn route mac-mobility

Use display evpn route mac-mobility to display EVPN MAC mobility information.

Syntax

display evpn [ ipv6 ] route mac-mobility [ vsi vsi-name ] [ mac-address mac-address ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

ipv6: Specifies IPv6 EVPN MAC mobility information. If you do not specify this keyword, the command displays IPv4 EVPN MAC mobility information.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify a VSI, this command displays MAC mobility information about all VSIs.

mac-address mac-address: Specifies a MAC address in the format of H-H-H. You can omit the consecutive zeros at the beginning of each segment. For example, you can enter f-e2-1 for 000f-00e2-0001. If you do not specify a MAC address, this command displays MAC mobility information about all MAC addresses in the specified VSI or all VSIs.

Usage guidelines

If you do not specify any parameters, this command displays IPv4 EVPN MAC mobility information about all VSIs.

Examples

# Display IPv4 EVPN MAC mobility information about all VSIs.

<Sysname> display evpn route mac-mobility

Flags: S - Suppressed, N - Not suppressed

Suppression threshold: 5

Detection cycle : 180s

Suppression time : Permanent

VSI name : vsia

EVPN instance : -

MAC address Move count Moved from Flags Suppressed at

1000-0000-0000 10 XGE1/0/1 S 15:30:30 2018/03/30

1000-0000-0001 - - N -

VSI name : vsib

EVPN instance : -

MAC address Move count Moved from Flags Suppressed at

1000-0000-0003 2 XGE1/0/2 N -

1000-0000-0005 10 5.5.5.5 S 17:24:33 2018/04/01

# Display IPv6 EVPN MAC mobility information about all VSIs.

<Sysname> display evpn ipv6 route mac-mobility

Flags: S - Suppressed, N - Not suppressed

Suppression threshold: 5

Detection cycle : 180s

Suppression time : Permanent

VSI name : vpna

EVPN instance : -

MAC address : 1000-1000-1000

Move count : 5

Moved from : XGE1/0/1

Flags : S

Suppressed at : 15:30:30 2018/03/30

VSI name : vpnb

EVPN instance : -

MAC address : 1000-1000-1001

Move count : 5

Moved from : 1::1

Flags : S

Suppressed at : 15:30:30 2018/03/30

Table 30 Command output

Field	Description
Suppression threshold	MAC mobility suppression threshold, which is the number of MAC moves from the local site to a remote site. If MAC mobility suppression is disabled, this field displays a hyphen (-).
Detection cycle	MAC mobility detection cycle in seconds. If MAC mobility suppression is disabled, this field displays a hyphen (-).
Suppression time	Suppression time in seconds. If this field displays Permanent, MAC moves are suppressed permanently. If MAC mobility suppression is disabled, this field displays a hyphen (-).
EVPN instance	EVPN instance name. If the EVPN instance is created on a VSI, this field displays a hyphen (-). This field is supported only by EVPN VXLAN.
Move count	Number of MAC moves from the interface to other interfaces.
Moved from	Source interface or source VTEP/PE IP address for the MAC move.
Flags	Whether the MAC move was suppressed: · S—Suppressed. · N—Not suppressed.
Suppressed at	Time when the MAC move was suppressed.

Related commands

evpn route mac-mobility suppression

display evpn route nd

Use display evpn route nd to display EVPN ND entries.

Syntax

display evpn route nd [ local | remote ] [ public-instance | vpn-instance vpn-instance-name ] [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

local: Specifies local ND entries.

remote: Specifies remote ND entries.

public-instance: Specifies the public instance.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters.

count: Displays the number of ND entries. If you do not specify this keyword, the command displays detailed information about ND entries.

Usage guidelines

If you do not specify the local or remote keyword, this command displays both local and remote EVPN ND entries.

If you do not specify the public-instance keyword or the vpn-instance vpn-instance-name option, this command displays EVPN ND entries for the public instance and all VPN instances.

Examples

# Display all EVPN ND entries.

<Sysname> display evpn route nd

Flags: D - Dynamic B - BGP L - Local active

G - Gateway S - Static M - Mapping I - Invalid

VPN instance: vpn1 Interface: Vsi-interface1

IPv6 address : AD80:0300:1000:0050:0200:0300:0100:0012

MAC address : 0001-0001-0001 Router MAC : a0ce-7e40-0400

VSI index : 0 Flags : GL

IPv6 address : AD10:0300:1000:0020:0200:0300:0100:0022

MAC address : 0001-0001-0002 Router MAC : a0ce-7e40-0411

VSI index : 0 Flags : GL

Public instance Interface: Vsi-interface1

IPv6 address : BC80:0300:1000:0050:0200:0300:0100:0033

MAC address : 0002-0002-0001 Router MAC : a0ce-7e40-0422

VSI index : 0 Flags : GL

IPv6 address : BC10:0300:1000:0020:0200:0300:0100:0034

MAC address : 0002-0002-0002 Router MAC : a0ce-7e40-0433

VSI index : 0 Flags : GL

# Display the total number of EVPN ND entries.

<Sysname>display evpn route nd count

Total number of entries: 2

Table 31 Command output

Field	Description
Interface	VSI interface.
Flags	ND entry type: · D—The entry is dynamically learned. · B—The entry is learned from BGP EVPN routes. · L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active. · G—The entry for the gateway is active. · S—The static entry is active. This type is not supported in the current software version. · M—The entry from a remote VXLAN mapped to a local VXLAN is active. · I—The entry is invalid. Possible reasons: ¡ The VSI has been administratively shut down by using the shutdown command. ¡ The outgoing tunnel interface does not exist.

Field

Description

Interface

VSI interface.

Flags

ND entry type:

· D—The entry is dynamically learned.

· B—The entry is learned from BGP EVPN routes.

· L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active.

· G—The entry for the gateway is active.

· S—The static entry is active. This type is not supported in the current software version.

· M—The entry from a remote VXLAN mapped to a local VXLAN is active.

· I—The entry is invalid. Possible reasons:

¡ The VSI has been administratively shut down by using the shutdown command.

¡ The outgoing tunnel interface does not exist.

display evpn route nd suppression

Use display evpn route nd suppression to display EVPN ND flood suppression entries.

Syntax

display evpn route nd suppression [ local | remote ] [ vsi vsi-name ] [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

local: Specifies local ND flood suppression entries.

remote: Specifies remote ND flood suppression entries.

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command displays ND flood suppression entries for all VSIs.

count: Displays the number of ND flood suppression entries. If you do not specify this keyword, the command displays detailed information about ND flood suppression entries.

Usage guidelines

If you do not specify the local or remote keyword, this command displays both local and remote EVPN ND flood suppression entries.

Examples

# Display all EVPN ND flood suppression entries.

<Sysname> display evpn route nd suppression

Flags: D - Dynamic B - BGP L - Local active

G - Gateway S - Static M - Mapping I - Invalid

VSI name: vpna

IPv6 address MAC address Flags

11::8 72cb-ce9b-0a06 DL

11::9 0001-0001-0001 B

# Display the total number of ND flood suppression entries.

<Sysname> display evpn route nd suppression count

Total number of entries: 2

Table 32 Command output

Field	Description
Flags	ARP flood suppression entry type: · D—The entry is dynamically learned. · B—The entry is learned from BGP EVPN routes. · L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active. · G—The entry for the gateway is active. · S—The static entry is active. · M—The entry from a remote VXLAN mapped to a local VXLAN is active. · I—The entry is invalid. Possible reasons: ¡ The VSI has been administratively shut down by using the shutdown command. ¡ The outgoing tunnel interface does not exist.

Field

Description

Flags

ARP flood suppression entry type:

· D—The entry is dynamically learned.

· B—The entry is learned from BGP EVPN routes.

· L—The local entry is active. If this flag is not set and the B flag is set, the entry learned from BGP EVPN routes is active.

· G—The entry for the gateway is active.

· S—The static entry is active.

· M—The entry from a remote VXLAN mapped to a local VXLAN is active.

· I—The entry is invalid. Possible reasons:

¡ The VSI has been administratively shut down by using the shutdown command.

¡ The outgoing tunnel interface does not exist.

display evpn route nd-mobility

Use display evpn route nd-mobility to display EVPN ND mobility information.

Syntax

display evpn route nd-mobility [ public-instance | vpn-instance vpn-instance-name ] [ ip ipv6-address ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

public-instance: Specifies the public instance.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters.

ip ipv6-address: Specifies an IPv6 address. If you do not specify an IPv6 address, this command displays ND mobility information about all IPv6 addresses of the public instance or MPLS L3VPN instance.

Usage guidelines

If you do not specify any parameters, this command displays ND mobility information about the public instance and all VPN instances.

Examples

# Display EVPN ND mobility information about the public instance and all VPN instances.

<Sysname> display evpn route nd-mobility

Flags: S - Suppressed, N - Not suppressed

Suppression threshold: 5

Detection cycle : 180s

Suppression time : Permanent

VPN instance : vpn1

Interface : Vsi-interface1

IPv6 address : 1::1

Move count : 5

Moved from : XGE1/0/1

Flags : S

Suppressed at : 15:30:30 2020/03/30

Public instance

Interface : Vsi-interface2

IPv6 address : 2::2

Move count : 5

Moved from : 20::20

Flags : S

Suppressed at : 17:24:33 2020/04/01

Table 33 Command output

Field	Description
Suppression threshold	ND mobility suppression threshold, which is the number of ND moves from the local site to a remote site. If ND mobility suppression is disabled, this field displays a hyphen (-).
Detection cycle	ND mobility detection cycle in seconds. If ND mobility suppression is disabled, this field displays a hyphen (-).
Suppression time	Suppression time in seconds. If this field displays Permanent, ND moves are suppressed permanently. If ND mobility suppression is disabled, this field displays a hyphen (-).
Move count	Number of ND moves from the interface to other interfaces.
Moved from	Source interface or source VTEP/PE IP address for the ND move.
Flags	Whether the ND move was suppressed: · S—Suppressed. · N—Not suppressed.
Suppressed at	Time when the ND move was suppressed.

Related commands

evpn route nd-mobility suppression

display evpn routing-table

Use display evpn routing-table to display the EVPN routing table for a VPN instance.

Syntax

display evpn routing-table [ ipv6 ] { public-instance | vpn-instance vpn-instance-name } [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

ipv6: Specifies IPv6 information. If you do not specify this keyword, the command displays IPv4 information.

public-instance: Specifies the public instance.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters.

count: Displays the number of entries in the routing table. If you do not specify this keyword, the command displays detailed information about the routing table.

Examples

# Display the EVPN IPv4 routing table for VPN instance vpn1.

<Sysname> display evpn routing-table vpn-instance vpn1

Flags: E - with valid ESI A – A-D ready L - Local ES exists

VPN instance name: vpn1 Local L3VNI: 7

IP address Nexthop Outgoing interface NibID Flags

10.1.1.11 1.1.1.1 Vsi-interface3 0x18000000 EAL

10.1.1.12 2.2.2.2 Vsi-interface3 0x18000001 EA

# Display the EVPN IPv4 routing table for the public instance.

<Sysname> display evpn routing-table public-instance

Flags: E - with valid ESI A – A-D ready L - Local ES exists

Public instance Local L3VNI: 3900

IP address Nexthop Outgoing interface NibID Flags

10.1.1.11 1.1.1.1 Vsi-interface3 0x18000000 EAL

10.1.1.12 2.2.2.2 Vsi-interface3 0x18000001 EA

# Display the number of EVPN route entries in the IPv4 routing table for VPN instance vpn1.

<Sysname> display evpn routing-table vpn-instance vpn1 count

Total number of entries: 2

# Display the EVPN IPv6 routing table for VPN instance vpna.

<Sysname> display evpn routing-table ipv6 vpn-instance vpna

VPN instance: vpna Local L3VNI: 7

IPv6 address : BC10:0300:1000:0020:0200:0300:0100:0034

Next hop : 1.1.1.1

Outgoing interface : Vsi-interface3

NibID : 0x18000000

IPv6 address : BC10:0300:1000:0020:0200:0300:0100:0035

Next hop : 2.2.2.2

Outgoing interface : Vsi-interface3

NibID : 0x18000001

Table 34 Command output

Field	Description
Local L3VNI	L3 VXLAN ID associated with the VPN instance or the public instance.
NibID	Next hop ID.
Flags	Flags of the route: · E—The route carries a valid ESI. · A—All Ethernet auto-discovery routes are received. The ECMP routes for the next hop can be issued. · L—An active local ESI exists. Remote routes are not issued. · -—The MAC/IP advertisement route does not have a valid ESI. ECMP routes are not supported.

display evpn xconnect-group

Use display evpn xconnect-group to display EVPN information about cross-connects.

Syntax

display evpn xconnect-group [ name group-name [ connection connection-name ] ] [ count ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

name group-name: Specifies a cross-connect group by its name, a case-sensitive string of 1 to 31 characters. If you do not specify a cross-connect group, this command displays EVPN information about all cross-connect groups.

connection connection-name: Specifies a cross-connect by its name, a case-sensitive string of 1 to 20 characters excluding hyphens (-). If you do not specify a cross-connect, this command displays EVPN information about all cross-connects in the specified cross-connect group.

count: Displays the number of EVPN cross-connects. If you do not specify this keyword, the command displays detailed EVPN information.

Usage guidelines

If you do not specify any parameters, this command displays detailed EVPN information about all cross-connects.

Examples

# Display detailed EVPN information about all cross-connects.

<Sysname> display evpn xconnect-group

Flags: P - Primary, B - Backup, C - Control word

Xconnect group name: aa

Connection name: aaa

ESI : 0001.0002.0002.0002.0002

Local service ID : 16777215

Remote service ID : 16777214

Control word : Enabled

In label : 502

Local MTU : 1500

AC state : Up

PW type : VLAN

Nexthop ESI Out label Flags MTU State

192.123.123.123 0001.0002.0002.0002.0001 1299 PC 1500 Up

192.1.1.1 0001.0002.0002.0002.0001 1026 B 1500 Down

Connection name: aab

ESI : 0000.0000.0000.0000.0000

Local service ID : 1

Remote service ID : 2

Control word : Disabled

In label : 323

Local MTU : 1500

AC state : Up

PW type : VLAN

Nexthop ESI Out label Flags MTU State

192.1.1.1 0002.0002.0002.0002.0001 1234 P 1500 Up

192.2.1.2 0002.0002.0002.0002.0001 603 P 1500 Up

Connection name: aac

ESI : 0000.0000.0000.0000.0000

Local service ID : 3

Remote service ID : 4

Control word : Enabled

In label : -

Local MTU : 1500

AC state : Up

PW type : Ethernet

Nexthop ESI Out label Flags MTU State

192.1.1.3 0000.0000.0000.0000.0000 555 P 1500 Up

# Display the total number of EVPN cross-connects.

<Sysname> display evpn xconnect-group count

Total number of entries: 2

Table 35 Command output

Field	Description
Xconnect group name	Cross-connect group name.
Connection name	Cross-connect name.
In label	PW incoming label.
Local MTU	Local MTU in bytes.
AC state	AC state: · Up. · Down. This field displays a hyphen (-) if no AC is configured.
PW type	PW data encapsulation type: · Ethernet. · VLAN.
Nexthop	Remote PE address.
Out label	PW outgoing label.
Flags	PW attribute flags: · P—The received route has the primary flag. A primary PW needs to be set up. · B—The received route has the backup flag. A backup PW needs to be set up. · C—The received route has the control word flag, which indicates that control word is enabled on the peer. For the EVPN PWs to come up, you must enable control word on the local device.
MTU	MTU in the received route, in bytes.
State	EVPN PW state: · Up. · Down. · Idle—The incoming or outgoing label is not available.

evpn m-lag group

Use evpn m-lag group to enable EVPN M-LAG and specify the virtual VTEP address.

Use undo evpn m-lag group to restore the default.

Syntax

evpn m-lag group { virtual-vtep-ipv4 | virtual-vtep-ipv6 }

undo evpn m-lag group

Default

EVPN M-LAG is disabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

virtual-vtep-ipv4: Specifies the virtual IPv4 VTEP address.

virtual-vtep-ipv6: Specifies the virtual IPv6 VTEP address.

Usage guidelines

EVPN M-LAG virtualizes two VTEPs, EDs, or EVPN gateways into one M-LAG system to avoid single points of failure. The VTEPs, EDs, or EVPN gateways use a virtual VTEP address to establish VXLAN or VXLAN-DCI tunnels to remote devices.

For the device to re-establish VXLAN tunnels, you must execute the address-family l2vpn evpn command in BGP instance view after you enable or disable EVPN M-LAG.

To modify the virtual VTEP address, you must first delete the original virtual VTEP address.

EVPN M-LAG is mutually exclusive with EVPN-DCI dual-homing. Do not use the evpn edge group and evpn m-lag group commands together.

The evpn m-lag group and evpn m-lag local commands must specify three IPv4 or IPv6 addresses. Mixed use of IPv4 and IPv6 addresses is not allowed.

Examples

# Enable EVPN M-LAG and specify the virtual VTEP address as 1.1.1.1.

<Sysname> system-view

[Sysname] evpn m-lag group 1.1.1.1

Related commands

evpn edge group

evpn m-lag local

Use evpn m-lag local to specify the IP addresses of the VTEPs in an M-LAG system.

Use undo evpn m-lag local to restore the default.

Syntax

evpn m-lag local { local-ipv4-address remote remote-ipv4-address | local-ipv6-address remote remote-ipv6-address }

undo evpn m-lag local

Default

The IP addresses of the VTEPs in an M-LAG system are not specified.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

local-ipv4-address: Specifies the IPv4 address of the local VTEP.

local-ipv6-address: Specifies the IPv6 address of the local VTEP.

remote remote-ip: Specifies the IP address of the peer VTEP.

remote-ipv4-address: Specifies the IPv4 address of the peer VTEP.

remote-ipv6-address: Specifies the IPv6 address of the peer VTEP.

Usage guidelines

An AC that is attached to only one of the VTEPs in an M-LAG system is called a single-armed AC. After you configure this command, each VTEP in an M-LAG system changes the next hop of the routes for single-armed ACs to its local VTEP IP address when advertising the routes. This ensures that the traffic of a single-armed AC is forwarded to its attached VTEP. When a VTEP receives BGP EVPN routes from the peer VTEP IP address specified by using this command, it does not set up a VXLAN tunnel to the peer VTEP.

You must execute this command if single-armed ACs are attached to an M-LAG system that uses a direct peer link. You do not need to execute this command on an M-LAG system that uses a VXLAN tunnel as the peer link. In such an M-LAG system, a VTEP uses the source IP address of the peer link as the next hop of routes for single-armed ACs to ensure correct traffic forwarding.

When you execute this command, make sure the IP address of the local VTEP belongs to a local interface. Make sure the local VTEP IP address and peer VTEP IP address are reversed on the VTEPs in an M-LAG system.

The evpn m-lag group and evpn m-lag local commands must specify three IPv4 or IPv6 addresses. Mixed use of IPv4 and IPv6 addresses is not allowed.

Examples

# Specify the IP addresses of the local and peer VTEPs in the M-LAG system as 2.2.2.2 and 3.3.3.3, respectively.

<Sysname> system-view

[Sysname] evpn m-lag local 2.2.2.2 remote 3.3.3.3

evpn m-lag local mac-ip

Use evpn m-lag local mac-ip to allow only MAC/IP advertisement routes to carry the local VTEP address.

Use undo m-lag local mac-ip to restore the default.

Syntax

evpn m-lag local mac-ip

undo evpn m-lag local mac-ip

Default

IMET routes, MAC/IP advertisement routes, and IP prefix advertisement routes carry the local VTEP address.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

If you specify the local VTEP address for EVPN M-LAG, the device advertises the following BGP EVPN routes.

· IMET route in which the originator IP address is the local VTEP address.

· IP prefix advertisement route in which the next hop is the local VTEP address.

· MAC/IP advertisement route in which the next hop is the local VTEP address. This route is advertised for each MAC address entry or ARP entry learned on a local interface attached to a singlehomed peer device.

The device also advertises BGP EVPN routes that carry the virtual VTEP address of the M-LAG system. As a result, a peer VTEP sets up the following VXLAN tunnels with the device:

· A VXLAN tunnel sourced from the IP address of the peer VTEP and destined for the local VTEP address of the device. This tunnel is used to forward broadcast, unknown-unicast, and multicast (BUM) traffic and known unicast traffic for which the outgoing interface is an AC-attached interface facing a singlehomed device.

· A VXLAN tunnel sourced from the IP address of the peer VTEP and destined for the virtual VTEP address. This tunnel is used to forward BUM traffic and known unicast traffic for which the outgoing interface is an M-LAG interface.

If no peer device is singlehomed to an AC-attached interface of the M-LAG system, the VXLAN tunnel set up with the local VTEP address does not forward service traffic. To save tunnel resources, allow only MAC/IP advertisement routes to carry the local VTEP address. Then, the IMET routes and IP prefix advertisement routes advertised by the device will not carry the local VTEP address. If the device does not learn a MAC address entry or ARP entry on a local interface attached to a singlehomed peer device, it will not advertise a MAC/IP advertisement route in which the next hop is the local VTEP address. As a result, a peer VTEP will not set up a VXLAN tunnel with the local VTEP address.

Examples

# Allow only MAC/IP advertisement routes to carry the local VTEP address for VXLAN M-LAG.

<Sysname> system-view

[Sysname] evpn m-lag local mac-ip

Related commands

evpn m-lag local

evpn edge group

Use evpn edge group to configure a virtual ED address.

Use undo evpn edge group to restore the default.

Syntax

evpn edge group group-ip { group-ipv4 | group-ipv6 }

undo evpn edge group

Default

No virtual ED address is configured.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

group-ipv4: Specifies the IPv4 virtual ED address.

group-ipv6: Specifies the IPv6 virtual ED address.

Usage guidelines

For high availability and load sharing, you can deploy two EDs at a data center. To virtualize the redundant EDs into one device, you must configure the same virtual ED address on them. The redundant EDs use the virtual ED address to establish tunnels with VTEPs and remote EDs.

Redundant EDs cannot provide access service for local VMs. They can act only as EDs. For correct communication, do not redistribute external routes on only one of the redundant EDs. However, you can redistribute the same external routes on both EDs.

On a redundant ED, the virtual ED address must be the IP address of a loopback interface, and it cannot be the BGP peer IP address of the ED.

EVPN-DCI dual-homing is mutually exclusive with EVPN M-LAG. Do not use the evpn edge group and evpn m-lag group commands together.

If you execute the undo bgp command to disable the BGP instance of the EVPN address family, the evpn edge group setting will also be deleted. Make sure you are fully aware of the impact of the undo bgp command when you use it on a live network.

Examples

# Configure 1.2.3.4 as the virtual ED address.

<Sysname> system-view

[Sysname] evpn edge group 1.2.3.4

Related commands

evpn m-lag group

evpn encapsulation

Use evpn encapsulation to create an EVPN instance on a VSI or cross-connect group and enter its view, or enter the view of the existing EVPN instance on a VSI or cross-connect group.

Use undo evpn encapsulation to restore the default.

Syntax

In VSI view:

evpn encapsulation { mpls | vxlan }

undo evpn encapsulation

In cross-connect group view:

evpn encapsulation mpls

undo evpn encapsulation

Default

No EVPN instance exists.

Views

VSI view

Cross-connect group view

Predefined user roles

network-admin

mdc-admin

Parameters

mpls: Specifies MPLS encapsulation.

vxlan: Specifies VXLAN encapsulation.

Usage guidelines

Before you can configure EVPN settings, you must create an EVPN instance.

Examples

# Create an EVPN instance on VSI aaa and enter its view.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan]

evpn global-mac

Use evpn global-mac to configure the EVPN global MAC address.

Use undo evpn global-mac to restore the default.

Syntax

evpn global-mac mac-address

undo evpn global-mac

Default

No EVPN global MAC address is configured.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

mac-address: Specifies a MAC address in H-H-H format. Do not specify a multicast MAC address, broadcast MAC address, or all-zeros MAC address.

Usage guidelines

The EVPN global MAC address is used only by VSI interfaces associated with an L3 VXLAN ID.

For a VSI interface associated with an L3 VXLAN ID, the MAC address assigned to it by using the mac-address command takes precedence over the EVPN global MAC address.

Do not use a reserved MAC address as the EVPN global MAC address. The reserved MAC address range is from the bridge MAC address to bridge MAC address + (9 × the total number of default, and non-default MDCs).

Examples

# Configure the EVPN global MAC address as 0001-0001-0001.

<Sysname> system-view

[Sysname] evpn global-mac 1-1-1

evpn irb asymmetric

Use evpn irb asymmetric to enable asymmetric IRB for EVPN VXLAN.

Use undo evpn irb asymmetric to restore the default.

Syntax

evpn irb asymmetric [ route-policy route-policy-name ]

undo evpn irb asymmetric

Default

Symmetric IRB is enabled for EVPN VXLAN.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

route-policy route-policy-name: Specifies a routing policy by its name, a case-sensitive string of 1 to 63 characters. The device will perform asymmetric IRB forwarding for the traffic that matches the routing policy. If you do not specify a routing policy or the specified routing policy does not exist, the device performs asymmetric IRB forwarding for all traffic.

Usage guidelines

Use this command to set the IRB mode for EVPN VXLAN.

Examples

# Enable asymmetric IRB for EVPN VXLAN.

<Sysname> system-view

[Sysname] evpn irb asymmetric

evpn local-service-id remote-service-id

Use evpn local-service-id remote-service-id to create an EVPN PW and enter its view, or enter the view of an existing EVPN PW.

Use undo evpn local-service-id remote-service-id to delete an EVPN PW.

Syntax

evpn local-service-id local-service-id remote-service-id remote-service-id [ tunnel-policy tunnel-policy-name ] [ pw-class class-name ]

undo evpn local-service-id local-service-id remote-service-id remote-service-id

Default

No EVPN PWs exist.

Views

Cross-connect view

Predefined user roles

network-admin

mdc-admin

Parameters

local-service-id: Specifies a local service ID in the range of 1 to 16777215.

remote-service-id: Specifies a remote service ID in the range of 1 to 16777215.

tunnel-policy tunnel-policy-name: Specifies a tunnel policy by its name, a case-sensitive string of 1 to 19 characters. If you do not specify a tunnel policy, the PW uses the default tunnel policy.

pw-class class-name: Specifies a PW class by its name, a case-sensitive string of 1 to 19 characters. You can specify a PW class to configure the PW data encapsulation type and control word for the PW. If you do not specify a PW class, the PW data encapsulation type is determined by the link type of the interface. The control word feature is not supported for PW data encapsulation types that do not require using control word.

Usage guidelines

You can use the evpn local-service-id remote-service-id command to concatenate two EVPN PWs on the same cross-connect.

To modify an EVPN PW, first use the undo evpn local-service-id remote-service-id command to delete the original EVPN PW.

You cannot use this command and the peer command together in cross-connect view.

Examples

# Create an EVPN PW, and specify tunnel policy aaa and PW class bbb for it.

<Sysname> system-view

[Sysname] xconnect-group aaa

[Sysname-xcg-aaa] connection ac2pw

[Sysname-xcg-aaa- ac2pw] evpn local-service-id 2 remote-service-id 4 tunnel-policy aaa pw-class bbb

[Sysname-xcg-aaa-ac2pw-2-4]

evpn mac-ip advertise distributed-gateway

Use evpn mac-ip advertise distributed-gateway to enable the device to advertise ARP information for the distributed EVPN gateway interfaces through MAC/IP advertisement routes.

Use undo evpn mac-ip advertise distributed-gateway to disable the device from advertising ARP information for the distributed EVPN gateway interfaces through MAC/IP advertisement routes.

Syntax

evpn mac-ip advertise distributed-gateway

undo evpn mac-ip advertise distributed-gateway

Default

By default, the device does not advertise ARP information for the distributed EVPN gateway interfaces through MAC/IP advertisement routes.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

If a distributed EVPN gateway has downstream VTEPs attached, the gateway advertises ARP information for gateway interfaces through IP prefix advertisement routes. Because the VTEPs do not have gateway configuration, they cannot learn the ARP information for the gateway interfaces or forward traffic to the gateway. For the VTEPs to learn ARP information for the gateway interfaces, enable the distributed EVPN gateway to advertise ARP information for the gateway interfaces through MAC/IP advertisement routes.

Examples

# Enable the device to advertise ARP information for the distributed EVPN gateway interfaces through MAC/IP advertisement routes.

<Sysname> system-view

[Sysname] evpn mac-ip advertise distributed-gateway

evpn mac-ip preference

Use evpn mac-ip preference to set the preference of MAC/IP advertisement routes redistributed to the BGP-VPN unicast address families.

Use undo evpn mac-ip preference to restore the default.

Syntax

evpn mac-ip preference { external-preference internal-preference | route-policy route-policy-name }

undo evpn mac-ip preference

Default

The preference of both EBGP and IBGP routes is 255.

Views

BGP-VPN IPv4 unicast address family view

BGP-VPN IPv6 unicast address family view

Predefined user roles

network-admin

mdc-admin

Parameters

external-preference: Sets the preference of EBGP routes learned from EBGP peers to a value in the range of 1 to 255.

internal-preference: Sets the preference of IBGP routes learned from IBGP peers to a value in the range of 1 to 255.

route-policy-name: Specifies a routing policy by its name, a case-sensitive string of 1 to 63 characters. The preference of routes matching the routing policy will be set based on the routing policy. Routes that do not match the routing policy will use the default preference.

Usage guidelines

Application scenarios

Different routing protocols, direct routes, and static routes might discover different routes for the same destination in the IP routing table, but not all of these routes are optimal. To determine the optimal route, each routing protocol, direct route, and static route is assigned a preference, and the route discovered by the routing protocol with higher preference will become the optimal route.

Set the preference of MAC/IP advertisement routes redistributed to the BGP-VPN unicast address families for the routes to become the optimal routes in the IP routing table of a VPN instance.

Restrictions and guidelines

To use a routing policy for preference configuration, first use the apply preference command to set the preference of matching routes for the routing policy. If you do not set the preference of matching routes, the matching routes will use the default preference.

Examples

# In BGP-VPN IPv4 unicast address family view, set the preference to 20 for the MAC/IP advertisement routes learned from EBGP and IBGP peers.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] ip vpn-instance vpn1

[Sysname-bgp-default-vpn1] address-family ipv4 unicast

[Sysname-bgp-default-ipv4-vpn1] evpn mac-ip preference 20 20

evpn route arp-mobility suppression

Use evpn route arp-mobility suppression to enable ARP mobility event suppression.

Use undo evpn route arp-mobility suppression to disable ARP mobility event suppression.

Syntax

evpn route arp-mobility suppression [ detect-cycle detect-time | detect-threshold move-times | suppression-time [ suppression-time | permanent ] ] *

undo evpn route arp-mobility suppression

Default

ARP mobility event suppression is disabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

detect-cycle detect-time: Specifies the ARP mobility detection cycle in seconds. The value range for the detect-time argument is 60 to 900, and the default is 180.

detect-threshold move-times: Specifies the ARP mobility suppression threshold, which is the number of ARP moves from the local site to a remote site. The value range for the move-times argument is 3 to 10, and the default is 5.

suppression-time: Specifies the length of time that an ARP entry is suppressed. After the suppression time expires, the ARP entry can move again. The default suppression time is permanent.

suppression-time: Specifies the suppression time in seconds. The value range for this argument is 120 to 3600.

permanent: Suppresses ARP moves permanently.

Usage guidelines

On an EVPN VXLAN network, misconfiguration of IP addresses might cause two sites to contain the same IP address. In this condition, VTEPs at the two sites constantly synchronize and update EVPN ARP entries and determine that ARP mobility events occur. As a result, an inter-site loop might occur, and the bandwidth is occupied by ARP entry synchronization traffic. To eliminate loops and suppress those ARP mobility events, enable ARP mobility event suppression on the VTEPs. This feature allows an IP address to move a specified number of times (the ARP mobility suppression threshold) from a site within an ARP mobility detection cycle. If an IP address moves more than the ARP mobility suppression threshold, the VTEP at the site will suppress the last ARP move to the local site and will not advertise ARP information for the IP address.

After you execute the undo evpn route arp-mobility suppression command or the suppression time expires, a VTEP acts as follows:

· Advertises ARP information immediately for the suppressed ARP entries that have not aged out.

· Relearns ARP information for the suppressed ARP entries that have aged out and advertises the ARP information.

ARP mobility event suppression takes effect only on an EVPN VXLAN network configured with distributed VXLAN IP gateways.

Examples

# Enable ARP mobility event suppression.

<Sysname> system-view

[Sysname] evpn route arp-mobility suppression

Related commands

display evpn route arp-mobility

evpn route gateway-mac unmovable

Use evpn route gateway-mac unmovable to set the static flag for the MAC addresses of centralized gateway interfaces.

Use undo evpn route gateway-mac unmovable to restore the default.

Syntax

evpn route gateway-mac unmovable

undo evpn route gateway-mac unmovable

Default

The static flag is not set for the MAC addresses of centralized gateway interfaces.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

In a network with a centralized EVPN gateway deployed, a VTEP considers a MAC address move occurs if an endpoint uses a MAC address identical to that of a centralized gateway interface. As a result, the VTEP overwrites the MAC address entry created for the centralized gateway interface with that created for the endpoint, and errors will occur in traffic forwarding.

To resolve this issue, set the static flag for the MAC addresses of centralized gateway interfaces on the centralized EVPN gateway. When advertising those MAC addresses through MAC/IP advertisement routes, the centralized EVPN gateway will set the static flag bit to 1 in the MAC mobility extended community. If an endpoint accesses the network with a MAC address identical to that of a centralized gateway interface, the endpoint's MAC address entry will not overwrite the entry for the centralized gateway interface.

Examples

# Set the static flag for the MAC addresses of centralized gateway interfaces.

<Sysname> system-view

[Sysname] evpn route gateway-mac unmovable

evpn route mac-mobility suppression

Use evpn route mac-mobility suppression to enable MAC mobility event suppression.

Use undo evpn route mac-mobility suppression to disable MAC mobility event suppression.

Syntax

evpn route mac-mobility suppression [ detect-cycle detect-time | detect-threshold move-times | suppression-time [ suppression-time | permanent ] ] *

undo evpn route mac-mobility suppression

Default

MAC mobility event suppression is disabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

detect-cycle detect-time: Specifies the MAC mobility detection cycle in seconds. The value range for the detect-time argument is 60 to 900, and the default is 180.

detect-threshold move-times: Specifies the MAC mobility suppression threshold, which is the number of MAC moves from the local site to a remote site. The value range for the move-times argument is 3 to 10, and the default is 5.

suppression-time: Specifies the length of time that a MAC address entry is suppressed. After the suppression time expires, the MAC address entry can move again. The default suppression time is permanent.

suppression-time: Specifies the suppression time in seconds. The value range for this argument is 120 to 3600.

permanent: Suppresses MAC moves permanently.

Usage guidelines

On an EVPN VXLAN or EVPN VPLS network, misconfiguration of MAC addresses might cause two sites to contain the same MAC address. In this condition, VTEPs or PEs at the two sites constantly synchronize and update EVPN MAC entries and determine that MAC mobility events occur. As a result, an inter-site loop might occur, and the bandwidth is occupied by MAC entry synchronization traffic. To eliminate loops and suppress those MAC mobility events, enable MAC mobility event suppression on the VTEPs or PEs. This feature allows a MAC address to move a specified number of times (the MAC mobility suppression threshold) from a site within a MAC mobility detection cycle. If a MAC address moves more than the MAC mobility suppression threshold, the VTEP or PE at the site will suppress the last MAC move to the local site and will not advertise information about the MAC address.

After you execute the undo evpn route mac-mobility suppression command or the suppression time expires, a VTEP or PE acts as follows:

· Advertises MAC address entries immediately for the suppressed MAC address entries that have not aged out.

· Relearns the MAC addresses for the suppressed MAC address entries that have aged out and advertises the MAC address entries.

Examples

# Enable MAC mobility event suppression.

<Sysname> system-view

[Sysname] evpn route mac-mobility suppression

Related commands

display evpn route mac-mobility

evpn route nd-mobility suppression

Use evpn route nd-mobility suppression to enable ND mobility event suppression.

Use undo evpn route nd-mobility suppression to disable ND mobility event suppression.

Syntax

evpn route nd-mobility suppression [ detect-cycle detect-time | detect-threshold move-times | suppression-time [ suppression-time | permanent ] ] *

undo evpn route nd-mobility suppression

Default

ND mobility event suppression is disabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

detect-cycle detect-time: Specifies the ND mobility detection cycle in seconds. The value range for the detect-time argument is 60 to 900, and the default is 180.

detect-threshold move-times: Specifies the ND mobility suppression threshold, which is the number of ND moves from the local site to a remote site. The value range for the move-times argument is 3 to 10, and the default is 5.

suppression-time: Specifies the length of time that an ND entry is suppressed. After the suppression time expires, the ND entry can move again. The default suppression time is permanent.

suppression-time: Specifies the suppression time in seconds. The value range for this argument is 120 to 3600.

permanent: Suppresses ND moves permanently.

Usage guidelines

On an EVPN VXLAN network, misconfiguration of IP addresses might cause two sites to contain the same IP address. In this condition, VTEPs at the two sites constantly synchronize and update EVPN ND entries and determine that ND mobility events occur. As a result, an inter-site loop might occur, and the bandwidth is occupied by ND entry synchronization traffic. To eliminate loops and suppress those ND mobility events, enable ND mobility event suppression on the VTEPs. This feature allows an IP address to move a specified number of times (the ND mobility suppression threshold) from a site within an ND mobility detection cycle. If an IP address moves more than the ND mobility suppression threshold, the VTEP at the site will suppress the last ND move to the local site and will not advertise ND information for the IP address.

After you execute the undo evpn route nd-mobility suppression command or the suppression time expires, a VTEP acts as follows:

· Advertises ND information immediately for the suppressed ND entries that have not aged out.

· Relearns ND information for the suppressed ND entries that have aged out and advertises the ND information.

ND mobility event suppression takes effect only on the following networks:

· EVPN VXLAN network enabled with ND flood suppression.

· EVPN VXLAN network configured with distributed VXLAN IP gateways.

Examples

# Enable ND mobility event suppression.

<Sysname> system-view

[Sysname] evpn route nd-mobility suppression

Related commands

display evpn route nd-mobility

evpn span-segment disable

Use evpn span-segment disable to disable a VSI interface from learning ARP or ND information that does not belong to its subnet from MAC/IP advertisement routes.

Use undo evpn span-segment disable to restore the default.

Syntax

evpn span-segment { arp-learning | nd-learning } disable

undo evpn span-segment { arp-learning | nd-learning } disable

Default

On a centralized EVPN gateway, a VSI interface can learn the ARP or ND information that does not belong to its subnet from MAC/IP advertisement routes.

Views

VSI interface view

Predefined user roles

network-admin

mdc-admin

Parameters

arp-learning: Disables ARP learning.

nd-learning: Disables ND learning.

Usage guidelines

On an EVPN VXLAN network deployed with a centralized EVPN gateway, VM 1 and VM 2 belong to the same VXLAN in subnet 10.1.1.0/24. The gateway interface is VSI-interface 1 and the gateway is connected to external Layer 3 network 10.1.2.0/24. The VTEP to which VM 2 is attached is configured with ARP or ND flood suppression. The IP address of VM 2 is mistakenly configured as an IP address in subnet 10.1.2.0/24 (for example, 10.1.2.2). In this situation, the VTEP connected to VM 2 advertises MAC/IP advertisement routes that contain ARP or ND information to the gateway. The IP address and MAC address in the routes are the IP address and MAC address of VM 2, respectively. The gateway learns the ARP or ND information and issues the information to the forwarding table. When VM 1 visits 10.1.2.2 in the external network, the gateway will forward the traffic to VM 2. As a result, VM 1 cannot visit 10.1.2.2.

To resolve the above issue, perform this task on the VSI interface to disable the VSI interface from learning ARP or ND information across subnets from MAC/IP advertisement routes.

Examples

# Disable a VSI-interface 1 from learning ARP or ND information that does not belong to its subnet from MAC/IP advertisement routes.

<Sysname> system-view

[Sysname] interface vsi-interface 1

[Sysname-Vsi-interface1] evpn span-segment arp-learning disable

export route-policy

Use export route-policy to apply an export routing policy to EVPN on a VPN instance.

Use undo export route-policy to restore the default.

Syntax

export route-policy route-policy

undo export route-policy

Default

No export routing policy is applied to EVPN on a VPN instance.

Views

VPN instance EVPN view

Predefined user roles

network-admin

mdc-admin

Parameters

route-policy: Specifies a routing policy by its name, a case-sensitive string of 1 to 63 characters.

Usage guidelines

You can specify an export routing policy to filter advertised BGP EVPN routes or modify their route attributes for a VPN instance.

If you execute this command multiple times, the most recent configuration takes effect.

EVPN can use an export routing policy specified in VPN instance view or in VPN instance EVPN view. Export routing policy configuration in VPN instance EVPN view takes precedence over that in VPN instance view.

Examples

# Apply export routing policy poly-1 to EVPN on VPN instance vpn1.

<Sysname> system-view

[Sysname] ip vpn-instance vpn1

[Sysname-vpn-instance-vpn1] address-family evpn

[Sysname-vpn-evpn-vpn1] export route-policy poly-1

Related commands

route-policy (Layer 3—IP Routing Command Reference)

igp-metric inherit

Use igp-metric inherit to set the metric of a BGP EVPN route added to a VPN instance's routing table to the metric of the IGP route pointing to the next hop in the original BGP EVPN route.

Use undo igp-metric inherit to restore the default.

Syntax

igp-metric inherit

undo igp-metric inherit

Default

The device sets the metric to 0 when adding BGP EVPN routes a VPN instance's routing table.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

After you execute this command, the device sets the metric of a BGP EVPN route added to a VPN instance's routing table to the metric of the IGP route pointing to the next hop in the original BGP EVPN route.

Examples

# Set the metric of a BGP EVPN route added to a VPN instance's routing table to the metric of the IGP route pointing to the next hop in the original BGP EVPN route.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] igp-metric inherit

import evpn mac-ip

Use import evpn mac-ip to enable the device to redistribute received MAC/IP advertisement routes that contain ARP or ND information into a BGP unicast routing table.

Use undo import evpn mac-ip to disable the device from redistributing received MAC/IP advertisement routes that contain ARP or ND information into a BGP unicast routing table.

Syntax

import evpn mac-ip

undo import evpn mac-ip

Default

MAC/IP advertisement routes that contain ARP or ND information are not redistributed into any BGP unicast routing table.

Views

BGP IPv4 unicast address family view

BGP IPv6 unicast address family view

BGP-VPN IPv4 unicast address family view

BGP-VPN IPv6 unicast address family view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

This command enables the device to redistribute received MAC/IP advertisement routes that contain ARP or ND information into a BGP unicast routing table.

· If you use this command in BGP IPv4 or IPv6 unicast address family view, the device will redistribute the routes into the BGP IPv4 or IPv6 unicast routing table. In addition, the device will advertise the routes to the local site.

· If you use this command in BGP-VPN IPv4 or IPv6 unicast address family view, the device will redistribute the routes into the BGP-VPN IPv4 or IPv6 unicast routing table of the corresponding VPN instance. To advertise the routes to the local site, you must configure the advertise l2vpn evpn command.

Examples

# Redistribute received MAC/IP advertisement routes into the BGP-VPN IPv4 unicast routing table of VPN instance vpna.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] ip vpn-instance vpna

[Sysname-bgp-default-vpna] address-family ipv4

[Sysname-bgp-default-ipv4-vpna] import evpn mac-ip

Related commands

advertise l2vpn evpn

import route-policy

Use import route-policy to apply an import routing policy to EVPN on a VPN instance.

Use undo import route-policy to restore the default.

Syntax

import route-policy route-policy

undo import route-policy

Default

No import routing policy is applied to EVPN on a VPN instance. The VPN instance accepts a route when the export route targets of the route match local import route targets.

Views

VPN instance EVPN view

Predefined user roles

network-admin

mdc-admin

Parameters

route-policy: Specifies a routing policy by its name, a case-sensitive string of 1 to 63 characters.

Usage guidelines

You can specify an import routing policy to filter redistributed BGP EVPN routes or modify their route attributes for a VPN instance.

If you execute this command multiple times, the most recent configuration takes effect.

EVPN can use an import routing policy specified in VPN instance view or in VPN instance EVPN view. Import routing policy configuration in VPN instance EVPN view takes precedence over that in VPN instance view.

Examples

# Apply import routing policy poly-1 to EVPN on VPN instance vpn1.

<Sysname> system-view

[Sysname] ip vpn-instance vpn1

[Sysname-vpn-instance-vpn1] address-family evpn

[Sysname-vpn-evpn-vpn1] import route-policy poly-1

Related commands

route-policy (Layer 3—IP Routing Command Reference)

ip forwarding-conversational-learning

Use ip forwarding-conversational-learning to enable conversational learning for host route FIB entries.

Use undo ip forwarding-conversational-learning to disable conversational learning for host route FIB entries.

Syntax

ip forwarding-conversational-learning [ aging aging-time ]

undo ip forwarding-conversational-learning

Default

Conversational learning is disabled for host route FIB entries.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

aging aging-time: Specifies an aging timer in minutes for host route FIB entries, in the range of 60 to 1440. The default value is 60.

Usage guidelines

Use this command only on an EVPN network.

By default, the device issues a host route FIB entry to the hardware after the entry is generated. This feature enables the device to issue a host route FIB entry to the hardware only when the entry is required for packet forwarding. This feature saves hardware resources on the device.

Set an appropriate aging timer for host route FIB entries according to your network. A much longer or shorter aging timer will degrade the device performance.

· If the aging timer is too long, the device will save many outdated host route FIB entries and fail to accommodate the most recent network changes. These entries cannot be used for correct packet forwarding and exhaust FIB resources.

· If the aging timer is too short, the device will delete the valid host route FIB entries that can still be effective for packet forwarding. As a result, FIB entry flapping will occur, and the device performance will be affected.

Examples

# Enable conversational learning for host route FIB entries.

<Sysname> system-view

[Sysname] ip forwarding-conversational-learning

ip-prefix-route generate disable

Use ip-prefix-route generate disable to disable generation of IP prefix advertisement routes for the subnets of a VSI interface.

Use undo ip-prefix-route generate disable to enable generation of IP prefix advertisement routes for the subnets of a VSI interface.

Syntax

ip-prefix-route generate disable

undo ip-prefix-route generate disable

Default

The device only generates MAC/IP advertisement routes for a VSI interface that provides centralized VXLAN IP gateway service. The device generates IP prefix advertisement routes for the subnets of a VSI interface that provides distributed VXLAN IP gateway service.

Views

VSI interface view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

This command takes effect only on a VSI interface that provides distributed VXLAN IP gateway service (configured by using the distributed-gateway local command). It does not take effect on VSI interfaces that provide centralized VXLAN IP gateway service.

Examples

# Disable generation of IP prefix advertisement routes for the subnets of VSI-interface 1.

<Sysname> system-view

[Sysname] interface vsi-interface 1

[Sysname-Vsi-interface1] ip-prefix-route generate disable

ipv6 forwarding-conversational-learning

Use ipv6 forwarding-conversational-learning to enable conversational learning for IPv6 host route FIB entries.

Use undo ipv6 forwarding-conversational-learning to disable conversational learning for IPv6 host route FIB entries.

Syntax

ipv6 forwarding-conversational-learning [ aging aging-time ]

undo ipv6 forwarding-conversational-learning

Default

Conversational learning is disabled for IPv6 host route FIB entries.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

aging aging-time: Sets an aging timer in minutes for IPv6 host route FIB entries, in the range of 60 to 1440. The default value is 60.

Usage guidelines

Use this command only on an EVPN network.

By default, the device issues an IPv6 host route FIB entry to the hardware after the entry is generated. This feature enables the device to issue an IPv6 host route FIB entry to the hardware only when the entry is required for packet forwarding. This feature saves hardware resources on the device.

Set an appropriate aging timer for IPv6 host route FIB entries according to your network. A much longer or shorter aging timer will degrade the device performance.

· If the aging timer is too long, the device will save many outdated IPv6 host route FIB entries and fail to accommodate the most recent network changes. These entries cannot be used for correct packet forwarding and exhaust FIB resources.

· If the aging timer is too short, the device will delete the valid IPv6 host route FIB entries that can still be effective for packet forwarding. As a result, FIB entry flapping will occur, and the device performance will be affected.

Examples

# Enable conversational learning for IPv6 host route FIB entries and set the entry aging timer to 80 minutes.

<Sysname> system-view

[Sysname] ipv6 forwarding-conversational-learning aging 80

ipv6 nd proxy-send enable

Use ipv6 nd proxy-send enable to enable ND request proxy.

Use undo ipv6 nd proxy-send enable to disable ND request proxy.

Syntax

ipv6 nd proxy-send enable

undo ipv6 nd proxy-send enable

Default

ND request proxy is disabled on VSI interfaces.

Views

VSI interface view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

ND request proxy allows a VSI interface to send an ND request sourced from itself when the VTEP forwards an ND request. This feature helps resolve certain communication issues.

· The VTEPs have established BGP EVPN neighbor relationships.

· EVPN is disabled from learning MAC addresses from ND information.

· MAC address advertisement is disabled, and advertised MAC addresses are withdrawn.

· Remote-MAC address learning is disabled.

· Local proxy ND is enabled on the VSI interfaces.

· The VSI interfaces use different IP addresses and MAC addresses.

In this network, when VM 1 attempts to communicate with VM 2, the following process occurs:

1. VM 1 sends an NS packet.

2. VTEP 1 learns the MAC address of VM 1 from the NS packet, replies to VM 1 on behalf of VM 2, and sends an NS packet to obtain the MAC address of VM 2.

3. VTEP 2 forwards the NS packet, and VM 2 replies to VTEP 1.

4. VTEP 2 forwards the NA packet sent by VM 2 without learning the MAC address of VM 2 because EVPN is disabled from learning MAC addresses from ND information.

5. VTEP 1 does not learn the MAC address of VM 2 because remote-MAC address learning is disabled.

As a result, VM 1 fails to communicate with VM 2.

For VM 1 to communicate with VM 2, enable NS packet proxy on VSI-interface 2 of VTEP 2. When receiving the NS packet sent by VTEP 1, VTEP 2 forwards it and sends an NS packet sourced from VSI-interface 2 simultaneously, and VM 2 replies to both NS packets. Then, VTEP 2 learns the MAC address of VM 2 from the NA packet sent to VSI-interface 2 and advertises the MAC address to VTEP 1 through BGP EVPN routes. In this way, VTEP 1 obtains the MAC address of VM 2, and VM 1 and VM 2 can communicate.

Examples

# Enable ND request proxy on VSI-interface 100.

<Sysname> system-view

[Sysname] interface vsi-interface 100

[Sysname-vsi-interface100] ipv6 nd proxy-send enable

Related commands

local-proxy-nd enable (Layer 3—IP Services Command Reference)

ipv6 nd ra tunnel-broadcast enable

Use ipv6 nd ra tunnel-broadcast enable to enable a VSI interface to send RA messages over VXLAN tunnels.

Use undo ipv6 nd ra tunnel-broadcast enable to disable a VSI interface from sending RA messages over VXLAN tunnels.

Syntax

ipv6 nd ra tunnel-broadcast enable

undo ipv6 nd ra tunnel-broadcast enable

Default

A VSI interface uses the global RA message tunneling configuration.

Views

VSI interface view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

By default, a distributed EVPN gateway drops the RS messages received from VXLAN tunnels and periodically advertises RA messages only to the local site. As a result, a distributed EVPN gateway does not send RA messages over VXLAN tunnels, and remote gateways cannot update information about the gateway based on RA messages. To resolve the issue, use this command to enable distributed EVPN gateways to reply to remote RS messages with RA messages and periodically advertise RA messages over VXLAN tunnels.

Examples

# Enable VSI-interface 100 to send RA messages over VXLAN tunnels.

<Sysname> system-view

[Sysname] interface vsi-interface 100

[Sysname-Vsi-interface100] ipv6 nd ra tunnel-broadcast enable

Related commands

ipv6 nd ra interval

ipv6 nd ra tunnel-broadcast global enable

Use ipv6 nd ra tunnel-broadcast global enable to globally enable VSI interfaces to send RA messages over VXLAN tunnels.

Use undo ipv6 nd ra tunnel-broadcast global enable to globally disable VSI interfaces from sending RA messages over VXLAN tunnels.

Syntax

ipv6 nd ra tunnel-broadcast global enable

undo ipv6 nd ra tunnel-broadcast global enable

Default

VSI interfaces do not send RA messages over VXLAN tunnels.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

You can configure RA message tunneling for VSI interfaces globally or on a per-VSI interface basis. The global configuration takes effect on all VSI interfaces. The interface-specific configuration takes precedence over the global configuration on a VSI interface.

Examples

# Globally enable VSI interfaces to send RA messages over VXLAN tunnels.

<Sysname> system-view

[Sysname] ipv6 nd ra tunnel-broadcast global enable

Related commands

ipv6 nd ra interval

ipv6 nd ra tunnel-broadcast enable

l2vpn m-lag peer-link ac-match-rule vxlan-mapping

Use l2vpn m-lag peer-link ac-match-rule vxlan-mapping to enable the device to create frame match criteria based on VXLAN IDs for the dynamic ACs on the direct peer link.

Use undo l2vpn m-lag peer-link ac-match-rule vxlan-mapping to restore the default.

Syntax

l2vpn m-lag peer-link ac-match-rule vxlan-mapping

undo l2vpn m-lag peer-link ac-match-rule vxlan-mapping

Default

On an M-LAG system that uses a direct peer link, dynamic ACs on the peer link use frame match criteria that are identical to those of site-facing ACs.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

By default, if an M-LAG system uses a direct peer link, each M-LAG member device creates a dynamic AC on the peer link when an AC is configured on a site-facing interface. The dynamic AC and the site-facing AC have the same frame match criteria and VSI mapping. If two site-facing ACs on different interfaces have the same frame match criteria but different VSI mappings, the dynamic ACs created for the site-facing ACs will conflict with each other. To prevent this issue, enable the M-LAG member devices to create frame match criteria based on VXLAN IDs for the dynamic ACs on the peer link.

With this command configured, an M-LAG member device creates dynamic ACs on the peer link and maps them to the VSIs of VXLANs after the VXLANs are created. The matching VLAN IDs in frame match criteria are calculated for the dynamic ACs according to the following rules:

· Outer VLAN ID = VXLAN ID / 4094 + 1.

· Inner VLAN ID = VXLAN ID % 4094 + 1.

· If the calculated outer VLAN ID of a dynamic AC is the PVID of the peer-link interface, the device uses the calculated inner VLAN ID as the outer VLAN ID. The device does not add a matching inner VLAN ID to the frame match criterion of the dynamic AC.

After you execute this command, do not create VXLANs with IDs larger than 16000000.

This command deletes existing dynamic ACs from peer-link interfaces and takes effect on all VXLANs.

As a best practice, set the PVID to 4094 on the peer-link interfaces. If you fail to do so, an M-LAG member device might set the outer VLAN ID matched by an AC to the PVID of its peer-link interface. This error will affect forwarding of the underlay traffic whose VLAN ID is VXLAN ID%4094 + 1.

Examples

# Enable the device to create frame match criteria based on VXLAN IDs for the dynamic ACs on the Ethernet aggregate link peer link.

<Sysname> system-view

[Sysname] l2vpn m-lag peer-link ac-match-rule vxlan-mapping

l2vpn statistics vsi l3-vni

Use l2vpn statistics vsi l3-vni to enable traffic statistics for the VSIs that are automatically created for L3 VXLAN IDs.

Use undo l2vpn l3-vni vsi statistics to disable traffic statistics for the VSIs that are automatically created for L3 VXLAN IDs.

Syntax

l2vpn statistics vsi l3-vni

undo l2vpn statistics vsi l3-vni

Default

The traffic statistics feature is disabled for the VSIs that are automatically created for L3 VXLAN IDs.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

If you configure an L3 VXLAN ID on a distributed EVPN gateway, the gateway automatically creates a VSI for the L3 VXLAN ID. You cannot enter the view of such a VSI to configure settings on it.

This command enables the device to collect incoming and outgoing traffic statistics for the automatically created VSIs. You can use the display l2vpn vsi verbose command to view the traffic statistics and use the reset l2vpn statistics vsi command to clear the traffic statistics.

Examples

# Enable traffic statistics for the VSIs that are automatically created for L3 VXLAN IDs.

<Sysname> system-view

[Sysname] l2vpn statistics vsi l3-vni

Related commands

display l2vpn vsi verbose (VXLAN Command Reference)

reset l2vpn statistics vsi (VXLAN Command Reference)

l3-vni

Use l3-vni to configure an L3 VXLAN ID for a VSI interface or for the public instance.

Use undo l3-vni to remove the L3 VXLAN ID for a VSI interface or for the public instance.

Syntax

In VSI interface view:

l3-vni vxlan-id

undo l3-vni

In public instance view:

l3-vni vxlan-id

undo l3-vni

Default

No L3 VXLAN ID is configured for a VSI interface or for the public instance.

Views

VSI interface view

Public instance view

Predefined user roles

network-admin

mdc-admin

Parameters

vxlan-id: Specifies a VXLAN ID. The value range for this argument is 0 to 16777215.

Usage guidelines

On distributed EVPN gateways, you must configure L3 VXLAN IDs for the gateways to differentiate traffic of different VPN instances.

To forward Layer 3 traffic of a VPN instance, you must assign an L3 VXLAN ID to the VSI interface of the VPN instance. To forward Layer 3 traffic of the public network, you must assign the same L3 VXLAN ID to the public instance and the VSI interface of the public instance.

To modify the L3 VXLAN ID for the public instance, you must first delete the original L3 VXLAN ID.

The L3 VXLAN ID specified by using this command cannot be the same as any VXLAN ID specified by using the mapping vni command.

Examples

# Configure the L3 VXLAN ID as 1000 for VSI-interface 100.

<Sysname> system-view

[Sysname] interface vsi-interface 100

[Sysname-Vsi-interface100] l3-vni 1000

mac-address forwarding-conversational-learning

Use mac-address forwarding-conversational-learning to enable conversational learning for remote MAC address entries.

Use undo mac-address forwarding-conversational-learning to disable conversational learning for remote MAC address entries.

Syntax

mac-address forwarding-conversational-learning

undo mac-address forwarding-conversational-learning

Default

Conversational learning is disabled for remote MAC address entries.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

Use this command only on an EVPN network.

By default, the device issues a remote MAC address entry to the hardware after the remote MAC address is advertised to the local site by BGP EVPN routes. This feature enables the device to issue a remote MAC address entry to the hardware only when the entry is required for packet forwarding. This feature saves hardware resources on the device.

With this feature enabled, the device generates a blackhole MAC address entry for an unknown MAC address if receiving 50 frames destined for that MAC address within the MAC aging time. Those blackhole MAC address entries age out when the MAC aging timer expires. After a blackhole MAC address entry ages out, the device can forward the traffic destined for the MAC address. For more information about the MAC aging time and blackhole MAC address entries, see MAC address table configuration in Layer 2—LAN Switching Configuration Guide.

Examples

# Enable conversational learning for remote MAC address entries.

<Sysname> system-view

[Sysname] mac-address forwarding-conversational-learning

mac-advertising disable

Use mac-advertising disable to disable MAC address advertisement and withdraw advertised MAC addresses.

Use undo mac-advertising disable to restore the default.

Syntax

mac-advertising disable

undo mac-advertising disable

Default

MAC address advertisement is enabled.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

The MAC information and ARP information advertised by the VTEP or PE overlap. To avoid duplication, use this command to disable MAC address advertisement and withdraw the MAC addresses advertised to remote VTEPs or PEs.

Examples

# Disable MAC address advertisement and withdraw advertised MAC addresses for a VSI EVPN instance.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] mac-advertising disable

mapping vni

Use mapping vni to map a local VXLAN to a remote VXLAN.

Use undo mapping vni to restore the default.

Syntax

mapping vni vxlan-id

undo mapping vni

Default

A local VXLAN is not mapped to any remote VXLAN.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Parameters

vxlan-id: Specifies a remote VXLAN ID. The value range for this argument is 0 to 16777215.

Usage guidelines

This command is supported only by EVPN instances that use VXLAN encapsulation.

The VXLAN mapping feature provides Layer 2 connectivity for a tenant subnet that uses different VXLAN IDs in multiple data centers.

VXLAN mapping includes the following types:

· Non-intermediate VXLAN mapping—When two data centers use different VXLAN IDs for a subnet, map the local VXLAN to the remote VXLAN on the ED of one data center. For example, for VXLAN 10 of data center 1 to communicate with VXLAN 20 of data center 2, map VXLAN 10 to VXLAN 20 on the ED of data center 1.

· Intermediate VXLAN mapping—When multiple data centers use different VXLAN IDs for a subnet, map the VXLANs to an intermediate VXLAN on all EDs. For example, data center 1 uses VXLAN 10, data center 2 uses VXLAN 20, and data center 3 uses VXLAN 30. To provide connectivity for the VXLANs, map them to intermediate VXLAN 500 on EDs of the data centers. You must use intermediate VXLAN mapping if more than two data centers use different VXLAN IDs. The intermediate VXLAN can be used only for VXLAN mapping, and it cannot be used for common VXLAN services.

You must create mapped remote VXLANs on the device, create an EVPN instance for each remote VXLAN, and configure RD and route target settings for the EVPN instances.

The mapped remote VXLAN ID cannot be any L3 VXLAN ID specified by using the l3-vni command or the reserved VXLAN ID specified by using the reserved vxlan command.

Examples

# Map local VXLAN 100 to remote VXLAN 200.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] vxlan 100

[Sysname-vsi-aaa-vxlan-100] quit

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] mapping vni 200

Related commands

reserved vxlan (VXLAN Command Reference)

mapping-vni-based smet

mapping-vni remove vpn-target

Use mapping-vni remove vpn-target to remove the route targets of VPN instances from BGP EVPN routes for mapped remote VXLANs.

Use undo mapping-vni remove vpn-target to restore the default.

Syntax

mapping-vni remove vpn-target

undo mapping-vni remove vpn-target

Default

The device does not remove the route targets of VPN instances from BGP EVPN routes for mapped remote VXLANs.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

This command enables an EVPN-DCI ED to remove the route targets of the VPN instances with L3 VXLAN IDs associated from BGP EVPN routes when the ED performs VXLAN mapping. It prevents remote EDs from adding the BGP EVPN routes for mapped remote VXLANs to the routing tables of VPN instances. If only Layer 2 connectivity is required between data centers, use this command on the EDs of the data centers to disable Layer 3 forwarding.

If the peer re-originated and mapping vni commands are used together on an ED, the ED advertises both original and reoriginated BGP EVPN routes that carry different VXLAN IDs. To avoid forwarding failure, use the mapping-vni remove vpn-target command to remove the route targets of VPN instances from the original BGP EVPN routes. This allows remote EDs to add only the reoriginated BGP EVPN routes to the routing tables of VPN instances.

Examples

# Remove the route targets of VPN instances from BGP EVPN routes for mapped remote VXLANs.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] mapping-vni remove vpn-target

Related commands

mapping vni

peer re-originated

mapping-vni-based smet

Use mapping-vni-based smet to enable SMET route reorigination based on the remote VXLAN IDs in VXLAN mappings.

Use undo mapping-vni-based smet to restore the default.

Syntax

mapping-vni-based smet

undo mapping-vni-based smet

Default

The device does not reoriginate SMET routes based on mapped remote VXLAN IDs.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

This command enables Layer 2 multicast between two data centers that use different VXLAN IDs.

After you execute this command and the mapping vni command on an ED in an EVPN-DCI network, the ED performs the following operations:

1. Verifies that the route targets in a SMET route received from a remote ED or local VTEP match the import route targets of the local EVPN instance.

2. Replaces the route targets in the SMET route with those of the EVPN instance that uses the remote VXLAN ID mapped to the local VXLAN ID.

3. Advertises the SMET route to remote EDs or local VTEPs.

Examples

# Map local VXLAN 100 to remote VXLAN 200, and enable SMET route reorigination based on the remote VXLAN ID.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] vxlan 100

[Sysname-vsi-aaa-vxlan-100] quit

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] mapping vni 200

[Sysname-vsi-aaa-evpn-vxlan] mapping-vni-based smet

Related commands

mapping vni

nd-advertising enable

Use nd-advertising enable to enable ND information advertisement.

Use undo nd-advertising enable to disable ND information advertisement and withdraw advertised ND information.

Syntax

nd-advertising enable

undo nd-advertising enable

Default

ND information advertisement is enabled.

Views

EVPN instance view

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

In an EVPN network with distributed gateways, you can disable ND information advertisement for a VXLAN to save resources if all its user terminals use the same EVPN gateway device. The EVPN instance of the VXLAN will stop advertising ND information through MAC/IP advertisement routes and withdraw advertised ND information. When ND information advertisement is disabled, user terminals in other VXLANs still can communicate with that VXLAN through IP prefix advertisement routes.

Examples

# Disable ND information advertisement for a VSI EVPN instance.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] undo nd-advertising enable

nd mac-learning disable

Use nd mac-learning disable to disable a VSI EVPN instance from learning MAC addresses from ND information.

Use undo nd mac-learning disable to restore the default.

Syntax

nd mac-learning disable

undo nd mac-learning disable

Default

A VSI EVPN instance learns MAC addresses from ND information.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

The MAC information and ND information advertised by a remote VTEP overlap. To avoid duplication, use this command to disable the learning of MAC addresses from ND information. EVPN will learn remote MAC addresses only from the MAC information advertised from remote sites.

Examples

# Disable a VSI EVPN instance from learning MAC addresses from ND information.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] nd mac-learning disable

nexthop evpn-m-lag group-address

Use nexthop evpn-m-lag group-address to enable the device to replace the next hop in advertised BGP EVPN routes with the virtual VTEP address.

Use nexthop evpn-m-lag group-address to restore the default.

Syntax

nexthop evpn-m-lag group-address

undo nexthop evpn-m-lag group-address

Default

When advertising BGP EVPN routes to an EBGP peer or peer group, the device replaces the next hop with the IP address of the source interface used to establish BGP sessions. When advertising EBGP routes to an IBGP peer or peer group, the device does not modify the next hop.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

When you use M-LAG on EDs in an EVPN-DCI network, you must enable the EDs to replace the next hop in advertised BGP EVPN routes with the virtual VTEP address.

Examples

# Enable the device to replace the next hop in advertised BGP EVPN routes with the virtual VTEP address.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] nexthop evpn-m-lag group-address

nexthop recursive-lookup default-route ignore

Use nexthop recursive-lookup default-route ignore to enable the device to ignore default routes in route recursion.

Use undo nexthop recursive-lookup default-route ignore to restore the default.

Syntax

nexthop recursive-lookup default-route ignore [ route-policy route-policy-name ]

undo nexthop recursive-lookup default-route ignore

Default

The device can select a default route for forwarding after performing route recursion.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

route-policy route-policy-name: Specifies a routing policy by its name, a case-sensitive string of 1 to 63 characters. The device will ignore default routes when performing route recursion for the routes that match the if-match interface criterion in the routing policy. If you do not specify a routing policy or the specified routing policy does not exist, the device ignores default routes when performing route recursion for all received BGP routes.

Usage guidelines

CAUTION:

After you execute this command, VXLAN tunnels might be reestablished, and transient VXLAN traffic loss might occur. As a best practice, enable BGP EVPN route reception and advertisement again after you execute this command.

By default, the device selects a default route to forward traffic if only the default route is obtained after BGP route recursion. If the default route does not point to the desired next hop, traffic forwarding will fail.

To resolve this issue, enable the device to ignore default routes in route recursion. If only the default route is obtained after route recursion is performed for a BGP route, that BGP route becomes invalid, and other BGP routes with the same prefix are selected for forwarding.

Enable this feature if multiple links exist between the device and a destination IP address. If one of the links fail, traffic will be switched to the other available links instead of being incorrectly forwarded based on a default route.

Examples

# Enable the device to ignore default routes when it performs route recursion for the BGP EVPN routes that match routing policy policy1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] nexthop recursive-lookup default-route ignore route-policy policy1

Related commands

if-match interface (Layer 3—IP Routing Command Reference)

peer advertise evpn-route suppress

Use peer advertise evpn-route suppress to suppress the advertisement of specific BGP EVPN routes to a peer or peer group.

Use undo peer advertise evpn-route suppress to restore the default.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } advertise evpn-route suppress { ip-prefix | mac-ip }

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } advertise evpn-route suppress { ip-prefix | mac-ip }

Default

Advertisement of BGP EVPN routes is not suppressed.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

ip-prefix: Suppresses IP prefix advertisement routes.

mac-ip: Suppresses MAC/IP advertisement routes.

Usage guidelines

To reduce the number of BGP EVPN routes on EDs of an EVPN-DCI network, suppress the advertisement of specific BGP EVPN routes on the EDs.

If two VSI interfaces on EVPN gateways of different data centers use the same IP address, do not suppress the advertisement of MAC/IP advertisement routes on the EDs of the data centers. If you suppress the advertisement of these routes, the EDs cannot communicate with each other.

Examples

# Suppress the IP prefix advertisement routes advertised to peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 advertise evpn-route suppress ip-prefix

peer advertise original-route

Use peer advertise original-route to enable the device to advertise original BGP EVPN routes to a peer or peer group.

Use undo peer advertise original-route to disable the device from advertising original BGP EVPN routes to a peer or peer group.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } advertise original-route

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } advertise original-route

Default

The device advertises only reoriginated BGP EVPN routes to peers and peer groups after the peer re-originated command is executed.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

Usage guidelines

For this command to take effect on an ED, first execute the peer re-originated command.

In an EVPN-DCI network, an ED configured with the peer re-originated command advertises only reoriginated BGP EVPN routes. For the ED to advertise both original and reoriginated BGP EVPN routes to a peer or peer group, execute the peer advertise original-route command on the ED.

Examples

# Enable the device to advertise original BGP EVPN routes to peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 advertise original-route

Related commands

peer re-originated

peer suppress re-originated

peer advertise vpn-reoriginate ibgp

Use peer advertise vpn-reoriginate ibgp to enable advertising the IP prefix advertisement routes reoriginated for a VPN instance to an IBGP peer or peer group.

Use undo peer advertise vpn-reoriginate ibgp to restore the default.

Syntax

peer { group-name | ipv4-address [ mask-length ] } advertise vpn-reoriginate ibgp

undo { group-name | ipv4-address [ mask-length ] } peer advertise vpn-reoriginate ibgp

Default

The device does not advertise the IP prefix advertisement routes reoriginated for a VPN instance to IBGP peers or peer groups.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

Usage guidelines

For this command to take effect, you must also execute the advertise route-reoriginate command.

This command enables the device to advertise the IP prefix advertisement routes reoriginated for VPN instances to IBGP peers after the advertise route-reoriginate command is executed for the VPN instances.

Examples

# Enable advertising the IP prefix advertisement routes reoriginated for VPN instances to IBGP peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 advertise vpn-reoriginate ibgp

Related commands

advertise route-reoriginate (MPLS Command Reference)

peer default-gateway no-advertise

Use peer default-gateway no-advertise to remove the default-gateway extended community attribute from the EVPN gateway routes advertised to a peer or peer group.

Use undo peer default-gateway no-advertise to restore the default.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } default-gateway no-advertise

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } default-gateway no-advertise

Default

EVPN gateway routes advertised to peers and peer groups contain the default-gateway extended community attribute.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

Usage guidelines

An EVPN gateway route is the route for the IP address of a VSI interface on an EVPN gateway. By default, the EVPN gateway routes advertised by an EVPN gateway contain the default-gateway extended community attribute. The EVPN gateway routes with that attribute cannot be used as ECMP routes. You can use this command to remove the default-gateway extended community attribute from EVPN gateway routes for the routes to be used for load sharing.

Examples

# Remove the default-gateway extended community attribute from the EVPN gateway routes advertised to peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 default-gateway no-advertise

peer next-hop-invariable

Use peer next-hop-invariable to configure the device to not change the next hop of routes advertised to an EBGP peer or peer group.

Use undo peer next-hop-invariable to configure the device to use its address as the next hop of routes advertised to an EBGP peer or peer group.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } next-hop-invariable

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } next-hop-invariable

Default

The device uses its address as the next hop of routes advertised to EBGP peers or peer groups.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters.

ipv4-address: Specifies a peer by its IPv4 address.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

Usage guidelines

When you use this command and the peer next-hop-local command, follow these restrictions:

· The peer next-hop-invariable command is exclusive with the peer next-hop-local command. You can execute only one of these commands for a peer or peer group.

· If you have executed the peer next-hop-invariable command for a peer group, you cannot execute the peer next-hop-local command for any peer in the peer group.

· When you execute the peer next-hop-local command for a peer group whose members already have the peer next-hop-invariable setting, the peer next-hop-local command overwrites that setting.

The next hop in BGP EVPN routes is the IP address of the originating VTEP. By default, the device replaces the next hop of IBGP routes with its address when advertising the routes to an EBGP peer. If the device is a transport network device, it will modify the next hop of BGP EVPN routes. For VTEPs to learn one another's IP address, you must configure the device to not change the next hop of routes advertised to EBGP peers.

Examples

# Configure the device to not change the next hop of routes advertised to EBGP peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 next-hop-invariable

Related commands

peer next-hop-local (Layer 3—IP Routing Command Reference)

peer re-originated

Use peer re-originated to modify the information in received BGP EVPN routes.

Use undo peer re-originated to restore the default.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } re-originated [ imet | ip-prefix | mac-ip ] [ replace-rt ]

peer { group-name | ipv4-address [ mask-length ] } re-originated [ s-pmsi | smet ] [ replace-rt ]

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } re-originated [ imet | ip-prefix | mac-ip ]

undo peer { group-name | ipv4-address [ mask-length ] } re-originated [ s-pmsi | smet ] [ replace-rt ]

Default

The device does not modify the BGP EVPN routes that are received from peers or peer groups.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

imet: Specifies IMET routes.

ip-prefix: Specifies IP prefix advertisement routes.

mac-ip: Specifies MAC/IP advertisement routes.

s-pmsi: Specifies S-PMSI routes.

smet: Specifies SMET routes.

replace-rt: Replaces the L3 VXLAN ID, RD, and route targets of BGP EVPN routes with those of the matching local VPN instance. If you do not specify this keyword, only the L3 VXLAN ID and RD will be replaced.

Usage guidelines

In an EVPN-DCI network, use this command to hide the L3 VXLAN IDs of data centers or enable communication between data centers that use different L3 VXLAN IDs or route targets.

After you execute this command on an ED, the ED performs the following operations after receiving BGP EVPN routes:

1. Matches the route targets of the routes with the import route targets of local VPN instances.

2. Replaces the L3 VXLAN ID, RD, and route targets of the routes with those of the matching local VPN instance.

3. Advertises the routes to a VTEP or remote ED.

After you execute this command, an ED advertises only modified BGP EVPN routes. The original BGP EVPN routes are not advertised. To advertise the original BGP EVPN routes, use the peer advertise original-route command.

If the RD of a received BGP EVPN route is identical to the RD of the matching local VPN instance, an ED does not replace the L3 VXLAN ID and route targets of the route or regenerate the route. As a result, the ED does not advertise the route. As a best practice, assign unique RDs to VPN instances on different EVPN gateways and EDs if you use the peer re-originated command.

If you do not specify a route type, this command applies to IP prefix advertisement routes.

Examples

# Replace the L3 VXLAN ID, RD, and route targets of received IP prefix advertisement routes.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 re-originated replace-rt

Related commands

peer advertise original-route

peer suppress re-originated

peer router-mac-local

Use peer router-mac-local to enable route router MAC replacement for a peer or peer group.

Use undo peer router-mac-local to cancel route router MAC replacement configuration for a peer or peer group.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } router-mac-local [ dci ]

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } router-mac-local

Default

The device does not modify the router MAC address of routes before advertising the routes.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

dci: Establishes VXLAN-DCI tunnels with the peer or peer group. If you do not specify this keyword, whether the device establishes VXLAN-DCI tunnels with the peer or peer group depends on the dci enable command configuration in interface view.

Usage guidelines

This command enables an ED to use its router MAC address to replace the router MAC address of routes received from and advertised to a peer or peer group in the local data center. The router MAC replacement process is as follows:

· For routes received from the peer or peer group, the ED performs router MAC replacement and advertises the routes to remote EDs.

· For routes received from a remote data center, the ED performs router MAC replacement and advertises the routes to the peer or peer group.

Examples

# In BGP EVPN address family view, enable route router MAC replacement for peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 router-mac-local

peer suppress re-originated

Use peer suppress re-originated to suppress advertisement of reoriginated BGP EVPN routes to a peer or peer group.

Use undo peer suppress re-originated to disable suppression of reoriginated BGP EVPN route advertisement to a peer or peer group.

Syntax

peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } suppress re-originated { imet | ip-prefix | mac-ip }

undo peer { group-name | ipv4-address [ mask-length ] | ipv6-address [ prefix-length ] } suppress re-originated { imet | ip-prefix | mac-ip }

Default

The device advertises reoriginated BGP EVPN routes to peers and peer groups after the peer re-originated command is executed.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

group-name: Specifies a peer group by its name, a case-sensitive string of 1 to 47 characters. The peer group must exist.

ipv4-address: Specifies a peer by its IPv4 address. The peer must exist.

mask-length: Specifies a mask length in the range of 0 to 32. To specify a subnet, you must specify both the ipv4-address and mask-length arguments.

ipv6-address: Specifies a peer by its IPv6 address. The peer must exist.

prefix-length: Specifies a prefix length in the range of 0 to 128. To specify a subnet, you must specify both the ipv6-address and prefix-length arguments.

imet: Specifies IMET routes.

ip-prefix: Specifies IP prefix advertisement routes.

mac-ip: Specifies MAC/IP advertisement routes.

Usage guidelines

An ED configured with the peer re-originated and peer advertise original-route commands advertises both original and reoriginated BGP EVPN routes. For the ED to advertise only original BGP EVPN routes to a peer or peer group, execute the peer suppress re-originated command on the ED.

Examples

# Suppress advertisement of reoriginated IP prefix advertisement routes to peer 1.1.1.1.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] peer 1.1.1.1 suppress re-originated ip-prefix

Related commands

peer advertise original-route

peer re-originated

ping evpn

Use ping evpn to test the reachability of a remote PE in an EVPN VPLS network.

Syntax

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

vsi vsi-name: Specifies a VSI name, a case-sensitive string of 1 to 31 characters.

mac mac-address: Specifies a VM attached to a remote PE by its MAC address in H-H-H format. Do not specify a broadcast MAC address, multicast MAC address, or all-zeros MAC address.

-a source-ip: Specifies the source IP address of EVPN MAC echo requests. If you do not specify a source IP address, the primary IP address of the traffic outgoing interface is used as the source IP address of EVPN MAC echo requests.

-c count: Specifies the number of EVPN MAC echo requests to be sent. The value range for the count argument is 1 to 4294967295, and the default value is 5.

-exp exp-value: Specifies the EXP value of EVPN MAC echo requests. The value range for the exp-value argument is 0 to 7, and the default value is 0.

-h ttl-value: Specifies the TTL value of EVPN MAC echo requests. The value range for the ttl-value argument is 1 to 255, and the default value is 255.

-m wait-time: Specifies the interval for sending EVPN MAC echo requests, in milliseconds. The value range for the wait-time argument is 1 to 10000, and the default value is 200.

-r reply-mode: Specifies the reply mode used by the receiver to reply to EVPN MAC echo requests. The value of the reply-mode argument can be 1 or 2, and the default value is 2. The value 1 represents no reply, and the value 2 represents replying with UDP packets.

-rtos tos-value: Specifies the ToS value in the IP header of EVPN MAC echo replies. The value range for the tos-value argument is 0 to 7, and the default value is 6.

-s packet-size: Specifies the length of EVPN MAC echo requests, in bytes. The value range for the packet-size argument is 81 to 8100, and the default value is 100. The specified packet length does not include the IP header and UDP header length.

-t time-out: Specifies the timeout time of EVPN MAC echo replies, in milliseconds. The value range for the time-out argument is 0 to 65535, and the default value is 2000. If the device does not receive an EVPN MAC echo reply within the timeout time after sending an EVPN MAC echo request, it determines the EVPN MAC echo reply times out.

-v: Displays detailed reply information. If you do not specify this keyword, the command displays brief reply information.

Usage guidelines

You can use this command to detect connectivity of the PWs to remote PEs when traffic loss or interruption occurs in an EVPN VPLS network.

After you execute this command, the device sends EVPN MAC echo requests encapsulated with the PW labels of the corresponding VSI to the specified destination. When receiving these requests, the remote PE looks up the routing table and replies to the source IP address of the requests with EVPN MAC echo replies. Then, the device outputs traffic statistics based on the EVPN MAC echo replies it receives.

Examples

# Ping the remote VM with MAC address 2-2-2 in an EVPN VPLS network.

<System> ping evpn vsi vpna mac 2-2-2

Ping remote PE with MAC 0002-0002-0002: 100 data bytes.

Press CTRL_C to break.

100 bytes from 50.1.1.12: Sequence=1 time=1 ms

100 bytes from 50.1.1.12: Sequence=2 time=2 ms

100 bytes from 50.1.1.12: Sequence=3 time=1 ms

100 bytes from 50.1.1.12: Sequence=4 time=2 ms

100 bytes from 50.1.1.12: Sequence=5 time=1 ms

--- Ping statistics for mac 0002-0002-0002 ---

5 packets transmitted, 5 packets received, 0.0% packet loss

Round-trip min/avg/max = 1/1/2 ms

policy vpn-target

Use policy vpn-target to enable route target filtering for BGP EVPN routes.

Use undo policy vpn-target to disable route target filtering for BGP EVPN routes.

Syntax

policy vpn-target

undo policy vpn-target

Default

Route target filtering is enabled for BGP EVPN routes.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

When route target filtering is enabled for BGP EVPN routes, the EVPN routing table accepts only BGP EVPN routes of which the export route targets match the local import route targets. If the device must save all BGP EVPN routes, use the undo policy vpn-target command to disable route target filtering for BGP EVPN routes.

Examples

# Disable route target filtering for BGP EVPN routes.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] undo policy vpn-target

pw-class

Use pw-class to specify a PW class for a VSI EVPN instance.

Use undo pw-class to restore the default.

Syntax

pw-class class-name

undo pw-class

Default

No PW class is specified for a VSI EVPN instance.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Parameters

class-name: Specifies a PW class by its name, a case-sensitive string of 1 to 19 characters.

Usage guidelines

This command is supported only by EVPN instances that use MPLS encapsulation.

The specified PW class will be used to establish all PWs on the VSI EVPN instance.

If you execute this command multiple times, the most recent configuration takes effect.

Examples

# Specify PW class pw100 for the EVPN instance on VSI vpna.

<Sysname> system-view

[Sysname] vsi vpna

[Sysname-vsi-aa] evpn encapsulation mpls

[Sysname-vsi-aa-evpn-mpls] pw-class pw100

reset evpn route arp-mobility suppression

Use reset evpn route arp-mobility suppression to cancel ARP mobility event suppression.

Syntax

reset evpn route arp-mobility suppression [ public-instance | vpn-instance vpn-instance-name [ ip ip-address ] ]

Views

User view

Predefined user roles

network-admin

mdc-admin

Parameters

public-instance: Specifies the public instance.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters.

ip ip-address: Specifies an IPv4 address in dotted decimal notation. If you do not specify an IPv4 address, this command cancels the suppression done on all ARP entries of the public instance or specified MPLS L3VPN instance.

Usage guidelines

Use this command to cancel the ARP mobility event suppression done on IPv4 addresses. After you cancel suppression for an IPv4 address, the IPv4 address can move between sites, and the device advertises ARP information for the IPv4 address. The device still suppresses the IPv4 address if the suppression criteria are met.

If you do not specify the public instance or an MPLS L3VPN instance, this command cancels ARP mobility event suppression for the public instance and all MPLS L3VPN instances.

Examples

# Cancel the ARP mobility event suppression done on 1.1.1.1 of VPN instance vpna.

<Sysname> reset evpn route arp-mobility suppression vpn-instance vpna ip 1.1.1.1

Related commands

display evpn route arp-mobility

reset evpn route mac-mobility suppression

Use reset evpn route mac-mobility suppression to cancel MAC mobility event suppression.

Syntax

reset evpn route mac-mobility suppression [ vsi vsi-name [ mac mac-address ] ]

Views

User view

Predefined user roles

network-admin

mdc-admin

Parameters

vsi vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify this option, the command cancels suppression on MAC addresses for all VSIs.

mac mac-address: Specifies a MAC address in the format of H-H-H. You can omit the consecutive zeros at the beginning of each segment. For example, you can enter f-e2-1 for 000f-00e2-0001. If you do not specify a MAC address, this command cancels suppression all MAC addresses of the specified VSI.

Usage guidelines

Use this command to cancel the MAC mobility event suppression done on MAC addresses. After you cancel suppression for a MAC address, the MAC address can move between sites, and the device advertises the MAC address entry. The device still suppresses the MAC address if the suppression criteria are met.

Examples

# Cancel the MAC mobility event suppression done on 1-1-1 of VSI vpna.

<Sysname> reset evpn route mac-mobility suppression vsi vpna mac 1-1-1

Related commands

display evpn route mac-mobility

reset evpn route nd-mobility suppression

Use reset evpn route nd-mobility suppression to cancel ND mobility event suppression.

Syntax

reset evpn route nd-mobility suppression [ public-instance | vpn-instance vpn-instance-name [ ip ipv6-address ] ]

Views

User view

Predefined user roles

network-admin

mdc-admin

Parameters

public-instance: Specifies the public instance.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters.

ip ipv6-address: Specifies an IPv6 address. If you do not specify an IPv6 address, this command cancels suppression on all ND entries of the public instance or specified MPLS L3VPN instance.

Usage guidelines

Use this command to cancel the ND mobility event suppression done on IPv6 addresses. After you cancel suppression for an IPv6 address, the IPv6 address can move between sites, and the device advertises ND information for the IPv6 address. The device still suppresses the IPv6 address if the suppression criteria are met.

If you do not specify the public instance or an MPLS L3VPN instance, this command cancels ND mobility event suppression for the public instance and all MPLS L3VPN instances.

Examples

# Cancel the ND mobility event suppression done on 1::1 of VPN instance vpna.

<Sysname> reset evpn route nd-mobility suppression vpn-instance vpna ip 1::1

Related commands

display evpn route nd-mobility

route-distinguisher

Use route-distinguisher to configure an RD for an EVPN instance or the public instance.

Use undo route-distinguisher to restore the default.

Syntax

In public instance view:

route-distinguisher route-distinguisher

undo route-distinguisher

In VSI EVPN instance view or cross-connect group EVPN instance view:

route-distinguisher { route-distinguisher | auto [ router-id ] }

undo route-distinguisher

Default

No RD is configured for an EVPN instance or the public instance.

Views

Public instance view

Cross-connect group EVPN instance view

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Parameters

route-distinguisher: Specifies an RD, a string of 3 to 21 characters. The RD cannot be all zeros and can use one of the following formats:

· 16-bit AS number:32-bit user-defined number. For example, 101:3.

· 32-bit IP address:16-bit user-defined number. For example, 192.168.122.15:1.

· 32-bit AS number:16-bit user-defined number. For example, 65536:1. The AS number must be equal to or greater than 65536.

auto: Automatically generates an RD in the N:VXLAN ID format. The initial value of N is 1. If N:VXLAN ID is already in use, the system increases the value of N by 1 until the RD is available.

router-id: Automatically generates an RD based on the router ID in the Router ID:N format. The initial value of N is 1. If Router ID:N is already in use, the system increases the value of N by 1 until the RD is available. If you do not specify this keyword with the auto keyword, the system automatically generates an RD based on the VXLAN ID in the N:VXLAN ID format.

Usage guidelines

EVPN uses MP-BGP to advertise BGP EVPN routes for automatic VTEP or PE discovery, MAC reachability information advertisement, and host route advertisement. MP-BGP uses the RD to differentiate BGP EVPN routes of different EVPN instances.

To modify the RD of an EVPN instance or the public instance, first execute the undo route-distinguisher command to remove the original RD.

Examples

# Configure 22:1 as the RD of the EVPN instance on VSI aaa.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] route-distinguisher 22:1

rr-filter

Use rr-filter to create a route reflector (RR) reflection policy.

Use undo rr-filter to restore the default.

Syntax

rr-filter ext-comm-list-number

undo rr-filter

Default

An RR does not filter reflected BGP EVPN routes.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Parameters

ext-comm-list-number: Specifies an extended community attribute list by its number in the range of 1 to 65535.

Usage guidelines

This command enables an RR to reflect only received BGP EVPN routes that match the attributes in the specified extended community attribute list.

If a cluster contains multiple RRs, you can configure different reflection policies on the RRs for load sharing among the RRs.

For more information about the extended community attribute list, see Layer 3—IP Routing Configuration Guide.

Examples

# Configure a reflection policy for the device to reflect BGP EVPN routes that match extended community attribute list 10.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] rr-filter 10

Related commands

ip extcommunity-list (Layer 3—IP Routing Command Reference)

snmp-agent trap enable evpn

Use snmp-agent trap enable evpn to enable SNMP notifications for EVPN.

Syntax

snmp-agent trap enable evpn [ mac-mobility-suppression ]

undo snmp-agent trap enable evpn [ mac-mobility-suppression ]

Views

System view

Default

SNMP notifications are disabled for EVPN.

Predefined user roles

network-admin

mdc-admin

Parameters

mac-mobility-suppression: Specifies the MAC mobility suppression notification.

Usage guidelines

If SNMP notifications are enabled for EVPN, a MAC mobility suppression notification is sent to SNMP module after the MAC mobility suppression threshold is reached. For SNMP notifications to be sent correctly, you must also configure SNMP on the device. For more information about SNMP configuration, see Network Management and Monitoring Configuration Guide.

If you do not specify any parameter, all EVPN notifications are enabled or disabled.

Examples

# Enable SNMP notifications for EVPN.

<Sysname> system-view

[Sysname] snmp-agent trap enable evpn

statistics enable (EVPN PW view)

Use statistics enable to enable packet statistics for an EVPN PW.

Use undo statistics enable to disable packet statistics for an EVPN PW.

Syntax

statistics enable

undo statistics enable

Default

The packet statistics feature is disabled for EVPN PWs.

Views

EVPN PW view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

Use this command on an EVPN VPWS network.

To display packet statistics for EVPN PWs, use the display l2vpn pw command.

To clear packet statistics for EVPN PWs, use the reset l2vpn statistics pw command.

Examples

# Enable packet statistics for an EVPN PW.

<Sysname> system-view

[Sysname] xconnect-group vpws

[Sysname-xcg-vpws] connection aa

[Sysname-xcg-vpws-aa] evpn local-service-id 2 remote-service-id 4

[Sysname-xcg-vpws-aa-2-4] statistics enable

Related commands

display l2vpn pw (MPLS Command Reference)

reset l2vpn statistics pw (MPLS Command Reference)

statistics enable (VSI EVPN instance view)

Use statistics enable to enable packet statistics for all PWs on a VSI EVPN instance.

Use undo statistics enable to disable packet statistics for all PWs on a VSI EVPN instance.

Syntax

statistics enable

undo statistics enable

Default

The packet statistics feature is disabled for all PWs on a VSI EVPN instance.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

Use this command in an EVPN VPLS network.

To display the total number of packets received by PWs, use the display evpn mpls statistics inbound command. This command does not display incoming packet statistics about a specific PW.

To display outgoing packet statistics about PWs, use the display l2vpn pw command.

To clear packet statistics for PWs, use the reset l2vpn statistics pw command.

Examples

# Enable packet statistics for all PWs on the EVPN instance of VSI vpna in an EVPN VPLS network.

<Sysname> system-view

[Sysname] vsi vpna

[Sysname-vsi-vpna] evpn encapsulation mpls

[Sysname-vsi-vpna-evpn-mpls] statistics enable

Related commands

display evpn mpls statistic inbound

display l2vpn pw (MPLS Command Reference)

reset l2vpn statistics pw (MPLS Command Reference)

tunnel-policy

Use tunnel-policy to specify a tunnel policy for a VSI EVPN instance.

Use undo tunnel-policy to restore the default.

Syntax

tunnel-policy tunnel-policy-name

undo tunnel-policy

Default

No tunnel policy is specified for a VSI EVPN instance.

Views

VSI EVPN instance view

Predefined user roles

network-admin

mdc-admin

Parameters

tunnel-policy-name: Specifies a tunnel policy by its name, a case-sensitive string of 1 to 19 characters.

Usage guidelines

This command is supported only by EVPN instances that use MPLS encapsulation.

The PWs of the VSI EVPN instance use the specified tunnel policy to select public tunnels.

If you do not specify a tunnel policy or specify a nonexistent tunnel policy, the default tunnel policy applies. The default tunnel policy selects only one public tunnel for a PW in this order: LSP tunnel, GRE tunnel, CRLSP tunnel, and SRLSP tunnel.

If you execute this command multiple times, the most recent configuration takes effect.

Examples

# Specify tunnel policy policy1 for the EVPN instance on VSI aa.

<Sysname> system-view

[Sysname] vsi aa

[Sysname-vsi-aa] evpn encapsulation mpls

[Sysname-vsi-aa-evpn-mpls] tunnel-policy policy1

vpn-route cross multipath

Use vpn-route cross multipath to enable ECMP VPN route redistribution.

Use undo vpn-route cross multipath to disable ECMP VPN route redistribution.

Syntax

vpn-route cross multipath

undo vpn-route cross multipath

Default

ECMP VPN route redistribution is disabled. If multiple routes have the same prefix and RD, BGP only imports the optimal route into the EVPN routing table.

Views

BGP EVPN address family view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

ECMP VPN route redistribution enables BGP to import all routes that have the same prefix and RD into the EVPN routing table.

Examples

# Enable ECMP VPN route redistribution.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp-default] address-family l2vpn evpn

[Sysname-bgp-default-evpn] vpn-route cross multipath

vpn-target

Use vpn-target to configure route targets for EVPN.

Use undo vpn-target to delete route targets for EVPN.

Syntax

In VSI EVPN instance view:

vpn-target { vpn-target&<1-8> | auto } * [ both | export-extcommunity | import-extcommunity ]

undo vpn-target { vpn-target&<1-8> | auto | all } [ both | export-extcommunity | import-extcommunity ]

VPN instance EVPN view, public instance view, public instance IPv4 address family view, public instance IPv6 address family view, cross-connect group EVPN instance view, or public instance EVPN view:

vpn-target vpn-target&<1-8> [ both | export-extcommunity | import-extcommunity ]

undo vpn-target { all | vpn-target&<1-8> [ both | export-extcommunity | import-extcommunity ] }

Default

EVPN does not have route targets.

Views

VSI EVPN instance view

VPN instance EVPN view

Public instance view

Public instance EVPN view

Public instance IPv4 address family view

Public instance IPv6 address family view

Cross-connect group EVPN instance view

Predefined user roles

network-admin

mdc-admin

Parameters

vpn-target&<1-8>: Specifies a space-separated list of up to eight route targets. Each route target is a string of 3 to 21 characters in one of the following formats:

· 16-bit AS number:32-bit user-defined number. For example, 101:3.

· 32-bit IP address:16-bit user-defined number. For example, 192.168.122.15:1.

· 32-bit AS number:16-bit user-defined number. For example, 65536:1. The AS number must be equal to or greater than 65536.

auto: Automatically generates a route target in the format of BGP AS number:VXLAN ID.

both: Uses the specified route targets as both import and export targets. If you do not specify the both, export-extcommunity, or import-extcommunity keyword, the both keyword applies.

export-extcommunity: Uses the specified route targets as export targets.

import-extcommunity: Uses the specified route targets as import targets.

all: Specifies all route targets.

Usage guidelines

EVPN uses MP-BGP to advertise BGP EVPN routes for automatic VTEP or PE discovery, MAC reachability information advertisement, and host route advertisement. MP-BGP uses route targets to control the advertisement and acceptance of BGP EVPN routes.

A VTEP or PE sets the export targets for BGP EVPN routes before advertising the routes to remote VTEPs or PEs. The VTEP or PE checks the export targets of BGP EVPN routes from remote VTEPs or PEs and imports only BGP EVPN routes of which the export targets match the local import targets.

If you execute this command multiple times, all configured route targets take effect.

In an EVPN VPLS network, configure unique route targets for the EVPN instances on the same PE for the EVPN instances to receive routes and set up PWs correctly.

Examples

# Configure import route targets 10:1, 100:1, and 1000:1 for the EVPN instance on VSI aaa.

<Sysname> system-view

[Sysname] vsi aaa

[Sysname-vsi-aaa] evpn encapsulation vxlan

[Sysname-vsi-aaa-evpn-vxlan] vpn-target 10:1 100:1 1000:1 import-extcommunity

19-EVPN Command Reference

EVPN commands

address-family evpn (VPN instance view)

display evpn instance vxlan

display evpn ipv6 auto-discovery

display evpn mpls statistics inbound

display evpn route { igmp-js | igmp-ls | smet }

evpn encapsulation

evpn global-mac

evpn mac-ip advertise distributed-gateway

Application scenarios

Restrictions and guidelines

nd mac-learning disable

nexthop recursive-lookup default-route ignore

rr-filter

Intelligent Terminal Products

Product Support Services

Technical Service Solutions

Resource Center

Policy

Online Help

Become a Partner

Partner Policy & Program

Global Learning

Partner Sales Resources

Service Business

News & Events

Contact Us