[ovs-discuss] Q-in-Q tagging

Heim, Dennis Dennis.Heim at wwt.com
Tue Jul 16 14:19:40 UTC 2019


I have 2 ports on this vSwitch:
->eth0 (dot1q trunk) that faces the services provider. Service VLAN=500. Tunnel-Mode=dot1q-tunnel
->eth1 (dot1q trunk) that faces the customer LAN. Traffic is arriving this interface with VLAN 10 tagged. 

>From the packet traces when I do "ovs-vsctl set port eth0 vlan_mode=dot1q-tunnel", I stop seeing any of the traffic from vlan10.

[root at ovs01 wwt]# ovs-vsctl list Open_vSwitch
_uuid               : 574f5a37-0da3-4020-a0a6-6094e198e746
bridges             : [579db8cf-ef60-4046-9ba5-a0cafb15d31f]
cur_cfg             : 50
datapath_types      : [netdev, system]
db_version          : "7.16.1"
dpdk_initialized    : false
dpdk_version        : none
external_ids        : {hostname="ovs01", rundir="/usr/local/var/run/openvswitch", system-id="df122b55-a8a3-4999-9372-6ab02be2d015"}
iface_types         : [erspan, geneve, gre, internal, "ip6erspan", "ip6gre", lisp, patch, stt, system, tap, vxlan]
manager_options     : []
next_cfg            : 50
other_config        : {vlan-limit="2"}
ovs_version         : "2.11.1"
ssl                 : []
statistics          : {}
system_type         : unknown
system_version      : unknown
[root at ovs01 wwt]#

[root at ovs01 wwt]# ovs-vsctl show
574f5a37-0da3-4020-a0a6-6094e198e746
    Bridge data
        Port "eth1"
            Interface "eth1"
        Port "eth0"
            tag: 500
            Interface "eth0"
        Port data
            Interface data
                type: internal
    ovs_version: "2.11.1"
[root at ovs01 wwt]#

_uuid               : cccbf003-5603-4557-bdab-468fcafd1b41
bond_active_slave   : []
bond_downdelay      : 0
bond_fake_iface     : false
bond_mode           : []
bond_updelay        : 0
cvlans              : []
external_ids        : {}
fake_bridge         : false
interfaces          : [6ff79ea0-df38-4444-bfd1-baff78f58e91]
lacp                : []
mac                 : []
name                : "eth0"
other_config        : {}
protected           : false
qos                 : []
rstp_statistics     : {}
rstp_status         : {}
statistics          : {stp_error_count=0, stp_rx_count=1, stp_tx_count=90}
status              : {stp_port_id="32769", stp_role=designated, stp_sec_in_state="151", stp_state=forwarding}
tag                 : 500
trunks              : []
vlan_mode           : "dot1q-tunnel"

_uuid               : 73cdfb43-a609-48c8-9df3-ecebee91706a
bond_active_slave   : []
bond_downdelay      : 0
bond_fake_iface     : false
bond_mode           : []
bond_updelay        : 0
cvlans              : []
external_ids        : {}
fake_bridge         : false
interfaces          : [347dde41-9b77-4ece-b90b-3ac1d10ddb2f]
lacp                : []
mac                 : []
name                : "eth1"
other_config        : {}
protected           : false
qos                 : []
rstp_statistics     : {}
rstp_status         : {}
statistics          : {stp_error_count=0, stp_rx_count=0, stp_tx_count=89}
status              : {stp_port_id="32770", stp_role=designated, stp_sec_in_state="151", stp_state=forwarding}
tag                 : []
trunks              : []
vlan_mode           : []


Dennis Heim | Domain Architect (Collaboration Labs)
World Wide Technology, Inc. | +1 314-212-1814



"The most powerful person in the world is the story teller. The storyteller sets the vision, values and agenda of an entire generation that is to come" - Steve Jobs
"Leadership isn't a different maker. It is the difference maker" - Tim Kight
"Leaders who don't listen will eventually be surrounded by people who have nothing to say" --- Andy Stanley
"Worry less about who you might offend, and more about who you might inspire" -- Tim Allen
"Imagination is more important than knowledge."  -- Albert Einstein
"If you can raise the level of effort and performance in those around you, you are officially a leader" - Urban Meyer
"The greatest danger for most of us is not that our aim is too high and we miss it, but that it is too low and we reach it." -- Michelangelo Buonarroti
"Mediocore managers play checkers (assuming everyone is the same). Great managers play chess (acknowledging that everyone is unique)" - Marcus Buckingham
"If you're not failing every now and again, it's a sign you're not doing anything very innovative" - Woody Allen

Click here to join me in my Collaboration Meeting Room

-----Original Message-----
From: ovs-discuss-bounces at openvswitch.org <ovs-discuss-bounces at openvswitch.org> On Behalf Of Tim Weippert
Sent: Tuesday, July 16, 2019 3:26 AM
To: ovs-discuss at openvswitch.org
Subject: Re: [ovs-discuss] Q-in-Q tagging

Hi, 

maybe you forgot to set:

ovs-vsctl set Open_Vswitch . other_config:vlan-limit=2

I use both variants openflow manual and dot1q-tunnel and they work both as expected.

regards,
tim

On Tue, Jul 16, 2019 at 05:24:45AM +0000, Heim, Dennis wrote:
> Looking into this via packet sniffing..
> 
> When I configure the port that connected to the Service Provider, with this command:
> 	ovs-vsctl add-port data eth0 tag=500 vlan_mode=dot1q-tunnel
> 
> After doing that, I do not see any traffic going through that interface. If I add the port as a regular port (vlan10), I am able to see the packets and they are tagged with the first vlan.  As soon as I change the vlan_mode, and set a tag, I do not see any traffic.
> 	add-port data eth0
> 
> By building a manual flow rule, I was able to get it to work ovs-ofctl 
> add-flow data in_port=13,action=pop_vlan,output:1
> ovs-ofctl --protocols=OpenFlow11 add-flow data 
> in_port=1,actions=push_vlan:0x8100,mod_vlan_vid=500,output:13
> 
> Does anyone have dot-1Q tunneling working, if so what version of OvS are you running?
> 
> Thanks,
> 
> Dennis Heim | Domain Architect (Collaboration Labs) World Wide 
> Technology, Inc. | +1 314-212-1814
> 
> 
> 
> "The most powerful person in the world is the story teller. The 
> storyteller sets the vision, values and agenda of an entire generation 
> that is to come" - Steve Jobs "Leadership isn't a different maker. It 
> is the difference maker" - Tim Kight "Leaders who don't listen will 
> eventually be surrounded by people who have nothing to say" --- Andy 
> Stanley "Worry less about who you might offend, and more about who you 
> might inspire" -- Tim Allen "Imagination is more important than 
> knowledge."  -- Albert Einstein "If you can raise the level of effort 
> and performance in those around you, you are officially a leader" - 
> Urban Meyer "The greatest danger for most of us is not that our aim is 
> too high and we miss it, but that it is too low and we reach it." -- 
> Michelangelo Buonarroti "Mediocore managers play checkers (assuming 
> everyone is the same). Great managers play chess (acknowledging that 
> everyone is unique)" - Marcus Buckingham "If you're not failing every 
> now and again, it's a sign you're not doing anything very innovative" 
> - Woody Allen
> 
> Click here to join me in my Collaboration Meeting Room
> 
> -----Original Message-----
> From: ovs-discuss-bounces at openvswitch.org 
> <ovs-discuss-bounces at openvswitch.org> On Behalf Of Nitin Katiyar
> Sent: Monday, July 15, 2019 4:29 AM
> To: ovs-discuss at openvswitch.org
> Subject: Re: [ovs-discuss] Q-in-Q tagging
> 
> 
> 
> > -----Original Message-----
> > From: ovs-discuss-bounces at openvswitch.org [mailto:ovs-discuss- 
> > bounces at openvswitch.org] On Behalf Of ovs-discuss- 
> > request at openvswitch.org
> > Sent: Monday, July 15, 2019 1:13 PM
> > To: ovs-discuss at openvswitch.org
> > Subject: discuss Digest, Vol 121, Issue 21
> > 
> > Send discuss mailing list submissions to
> > 	ovs-discuss at openvswitch.org
> > 
> > To subscribe or unsubscribe via the World Wide Web, visit
> > 	https://protect2.fireeye.com/url?k=4581f52d-19085ae4-4581b5b6-
> > 0cc47ad93e1c-
> > 901503fe25c589ba&q=1&u=https%3A%2F%2Fmail.openvswitch.org%2Fmail
> > man%2Flistinfo%2Fovs-discuss
> > or, via email, send a message with subject or body 'help' to
> > 	ovs-discuss-request at openvswitch.org
> > 
> > You can reach the person managing the list at
> > 	ovs-discuss-owner at openvswitch.org
> > 
> > When replying, please edit your Subject line so it is more specific than "Re:
> > Contents of discuss digest..."
> > 
> > 
> > Today's Topics:
> > 
> >    1. Q-in-Q tagging (Heim, Dennis)
> > 
> > 
> > --------------------------------------------------------------------
> > --
> > 
> > Message: 1
> > Date: Mon, 15 Jul 2019 07:42:40 +0000
> > From: "Heim, Dennis" <Dennis.Heim at wwt.com>
> > To: "ovs-discuss at openvswitch.org" <ovs-discuss at openvswitch.org>
> > Subject: [ovs-discuss] Q-in-Q tagging
> > Message-ID:
> > 	<MN2PR19MB2464C53673500AF585026363FDCF0 at MN2PR19MB2
> > 464.namprd19.prod.outlook.com>
> > 
> > Content-Type: text/plain; charset="us-ascii"
> > 
> > I upgraded to OvS 2.9.5 to get Q-in-Q (VLAN in VLAN support). I am 
> > trying to get it working to a Cisco router. Has anyone conquered this beast already?
> > With the VLAN_MODE=dot1-tunnel, do you know what ethertype it is 
> > expecting to be used?
> > 
> Hi,
> Default is ETH_TYPE_VLAN_8021AD (0x88a8) but you can change it using following command:
> ovs-vsctl set Port <PORT NAME> vlan_mode=dot1q-tunnel 
> other-config:qinq-ethtype=802.1q
> 
> regards,
> Nitin
> > Dennis Heim | Domain Architect (Collaboration Labs) World Wide 
> > Technology, Inc. | +1 314-212-1814 
> > [cid:image001.png at 01D10DD2.7FC81F90]<https://twitter.com/CollabSense
> > i
> > >
> > [cid:image002.png at 01D10DD2.7FC81F90]<xmpp:dennis.heim at wwt.com>[ci
> > d:image003.png at 01D10DD2.7FC81F90]<tel:+13142121814>[cid:image004.
> > png at 01D10DD2.7FC81F90]<sip:dennis.heim at wwtatc.com>
> > 
> > "The most powerful person in the world is the story teller. The 
> > storyteller sets the vision, values and agenda of an entire 
> > generation that is to come" - Steve Jobs "Leadership isn't a 
> > different maker. It is the difference maker" - Tim Kight "Leaders 
> > who don't listen will eventually be surrounded by people who have 
> > nothing to say" --- Andy Stanley "Worry less about who you might 
> > offend, and more about who you might inspire" -- Tim Allen 
> > "Imagination is more important than knowledge."  -- Albert Einstein 
> > "If you can raise the level of effort and performance in those 
> > around you, you are officially a leader" - Urban Meyer "The greatest 
> > danger for most of us is not that our aim is too high and we miss 
> > it, but that it is too low and we reach it." -- Michelangelo 
> > Buonarroti "Mediocore managers play checkers (assuming everyone is 
> > the same). Great managers play chess (acknowledging that everyone is 
> > unique)" - Marcus Buckingham "If you're not failing every now and again, it's a sign you're not doing anything very innovative"
> > - Woody Allen
> > 
> > Click here to join me in my Collaboration Meeting 
> > Room<https://wwt.webex.com/meet/dennis.heim>
> > 
> > -------------- next part -------------- An HTML attachment was 
> > scrubbed...
> > URL: <https://protect2.fireeye.com/url?k=516eb6ff-0de71936-516ef664-
> > 0cc47ad93e1c-
> > f6d0d04dea2bef6e&q=1&u=http%3A%2F%2Fmail.openvswitch.org%2Fpiper
> > mail%2Fovs-
> > discuss%2Fattachments%2F20190715%2F14e263b8%2Fattachment.html>
> > -------------- next part -------------- A non-text attachment was 
> > scrubbed...
> > Name: image001.gif
> > Type: image/gif
> > Size: 4226 bytes
> > Desc: image001.gif
> > URL: <https://protect2.fireeye.com/url?k=a977418a-f5feee43-a9770111-
> > 0cc47ad93e1c-
> > 37bcd0192d7760ea&q=1&u=http%3A%2F%2Fmail.openvswitch.org%2Fpiper
> > mail%2Fovs-
> > discuss%2Fattachments%2F20190715%2F14e263b8%2Fattachment.gif>
> > -------------- next part -------------- A non-text attachment was 
> > scrubbed...
> > Name: image002.gif
> > Type: image/gif
> > Size: 2017 bytes
> > Desc: image002.gif
> > URL: <https://protect2.fireeye.com/url?k=d1240723-8dada8ea-d12447b8-
> > 0cc47ad93e1c-
> > 90f9ceeb75d17822&q=1&u=http%3A%2F%2Fmail.openvswitch.org%2Fpiper
> > mail%2Fovs-
> > discuss%2Fattachments%2F20190715%2F14e263b8%2Fattachment-0001.gif>
> > -------------- next part -------------- A non-text attachment was 
> > scrubbed...
> > Name: image003.gif
> > Type: image/gif
> > Size: 2014 bytes
> > Desc: image003.gif
> > URL: <https://protect2.fireeye.com/url?k=a25da280-fed40d49-a25de21b-
> > 0cc47ad93e1c-
> > d7901ec89d03dada&q=1&u=http%3A%2F%2Fmail.openvswitch.org%2Fpiper
> > mail%2Fovs-
> > discuss%2Fattachments%2F20190715%2F14e263b8%2Fattachment-0002.gif>
> > -------------- next part -------------- A non-text attachment was 
> > scrubbed...
> > Name: image004.gif
> > Type: image/gif
> > Size: 1939 bytes
> > Desc: image004.gif
> > URL: <https://protect2.fireeye.com/url?k=f4425078-a8cbffb1-f44210e3-
> > 0cc47ad93e1c-
> > 16e6c54216c63616&q=1&u=http%3A%2F%2Fmail.openvswitch.org%2Fpiper
> > mail%2Fovs-
> > discuss%2Fattachments%2F20190715%2F14e263b8%2Fattachment-0003.gif>
> > 
> > ------------------------------
> > 
> > _______________________________________________
> > discuss mailing list
> > discuss at openvswitch.org
> > https://protect2.fireeye.com/url?k=47f71283-1b7ebd4a-47f75218-
> > 0cc47ad93e1c-
> > 317591c297305056&q=1&u=https%3A%2F%2Fmail.openvswitch.org%2Fmail
> > man%2Flistinfo%2Fovs-discuss
> > 
> > 
> > End of discuss Digest, Vol 121, Issue 21
> > ****************************************
> _______________________________________________
> discuss mailing list
> discuss at openvswitch.org
> https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
> _______________________________________________
> discuss mailing list
> discuss at openvswitch.org
> https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
_______________________________________________
discuss mailing list
discuss at openvswitch.org
https://mail.openvswitch.org/mailman/listinfo/ovs-discuss


More information about the discuss mailing list