[ovs-discuss] Q-in-Q tagging

Tim Weippert weiti at weiti.org
Wed Jul 17 07:38:04 UTC 2019


but with your config on eth0, dot1q-tunnel will remove vlan tag 500 on egress. I don't think this
is what you want.

My proposal was to configure eth1 as dot1q-tunnel port to add/remove s-vlan tag on ingress/egress
and configure eth0 as "normal" port in vlan 500.


On Tue, Jul 16, 2019 at 07:00:16PM +0000, Heim, Dennis wrote:
> Yes, that is what I want. Packet from vlan 10 arrive at e1.  S-vlan tag 500 added and sent via e0. That does not work. However, packets arriving via e0 with 2 vlan tags, are routed to e1 after stripping the s-vlan (500) tag.
> However, the inverse, I am not seeing any traffic. Pac
> Dennis Heim | Domain Architect (Collaboration Labs)
> World Wide Technology, Inc. | +1 314-212-1814
> "The most powerful person in the world is the story teller. The storyteller sets the vision, values and agenda of an entire generation that is to come" - Steve Jobs
> "Leadership isn't a different maker. It is the difference maker" - Tim Kight
> "Leaders who don't listen will eventually be surrounded by people who have nothing to say" --- Andy Stanley
> "Worry less about who you might offend, and more about who you might inspire" -- Tim Allen
> "Imagination is more important than knowledge."  -- Albert Einstein
> "If you can raise the level of effort and performance in those around you, you are officially a leader" - Urban Meyer
> "The greatest danger for most of us is not that our aim is too high and we miss it, but that it is too low and we reach it." -- Michelangelo Buonarroti
> "Mediocore managers play checkers (assuming everyone is the same). Great managers play chess (acknowledging that everyone is unique)" - Marcus Buckingham
> "If you're not failing every now and again, it's a sign you're not doing anything very innovative" - Woody Allen
> Click here to join me in my Collaboration Meeting Room
> -----Original Message-----
> From: Tim Weippert <weiti at weiti.org> 
> Sent: Tuesday, July 16, 2019 1:53 PM
> To: Heim, Dennis <Dennis.Heim at wwt.com>
> Cc: ovs-discuss at openvswitch.org
> Subject: Re: [ovs-discuss] Q-in-Q tagging
> Hi Dennis, 
> On Tue, Jul 16, 2019 at 02:19:40PM +0000, Heim, Dennis wrote:
> > I have 2 ports on this vSwitch:
> > ->eth0 (dot1q trunk) that faces the services provider. Service 
> > ->VLAN=500. Tunnel-Mode=dot1q-tunnel
> > ->eth1 (dot1q trunk) that faces the customer LAN. Traffic is arriving this interface with VLAN 10 tagged. 
> And the Customer LAN (VLAN10) tagged traffic should be carried with 500,10 through the Service Provider network?
> So you get pakets from eth0 tagged with 500 from the Service Provider?
> Why you would like to remove the tag 500 on Port 500?
> I think you want to encapsulate any tagged traffic (or maybe only vlan 10 tagged traffic) on port eth1 with dot1q-tunnel port and (s)vlan 500. And transport these douple tagged pakets out of port eth0?
> Or did i misunderstand something?
> If i'm correct, i think you want the following config:
> ovs-vsctl set port eth1 tag=500 vlan_mode=dot1q-tunnel ovs-vsctl set port eth0 tag=500 
> All ingress tagged traffic on eth1 will be double tagged and egress on port eth0 (double-tagged). Each paket tagged with vlan 500 (and maybe some inner tag) will be carried through eth1 and outer vlan tag will be removed (500). 
> HTH,
> tim
> --
> Tim Weippert
> http://weiti.org - weiti at weiti.org
> GPG Fingerprint - E704 7303 6FF0 8393 ADB1  398E 67F2 94AE 5995 7DD8

Tim Weippert
http://weiti.org - weiti at weiti.org
GPG Fingerprint - E704 7303 6FF0 8393 ADB1  398E 67F2 94AE 5995 7DD8

More information about the discuss mailing list