[ovs-discuss] using OVS with FRR within eVPN environment

Lee Wilson lee.wilson at transversal.com
Thu Jul 4 07:30:25 UTC 2019

Hi All,

Container > openvswitch vlan500 > vxlan 1000 FRR > BGP eVPN

I am using openvswitch to connect containers within a gentoo host, though I have been struggling to get the macs within the fdb used by FRR installed on the same host for propagation into a BGP eVPN network.

The only way i have seen it done is as per below example.. This is a script i found on this forum which creates a veth between the kernel bridge and the ovs-switch.

(VXLAN VNI=1000 VLAN=500)

# kernel bridge, bring it up without spanning tree
brctl addbr br1000
ip link set dev br1000 up
brctl stp br1000 off
# create vxlan interface, where VNI is tied to vni in FRR, lo is a loopback or main interface
ip link add vx1000 type vxlan id 1000 dstport 4789 local ${lo} nolearning
# add the vxlan interface to kernel bridge, bring it up
brctl addif br1000 vx1000
ip link set dev vx1000 up
# add a veth to tie kernel bridge to ovs
ip link add vo1000 type veth peer name vb1000
# add veth to kernel bridge
brctl addif br1000 vb1000
# add veth to ovs bridge
ovs-vsctl --if-exists del-port br-int vo1000
ovs-vsctl add-port br-int vo1000 tag=500
# bring up both ends of veth
ip link set dev vo1000 up
ip link set dev vb1000 up

This works, though using veth seems like a bit of a hack.. Is there a better way to do this? Is anyone else using ovs with frr and evpn?


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.openvswitch.org/pipermail/ovs-discuss/attachments/20190704/fce30e5b/attachment.html>

More information about the discuss mailing list