Avaya 8800, 8600 Technical Configuration Manual

VRF-Lite for Ethernet Routing Switch

8600 / 8800 Technical Configuration
Guide

Avaya Data Solutions

Document Date: April 2011
Document Number: NN48500-570
Document Version: 2.0

Ethernet Routing Switch
8600 / 8800

Engineering

2

April 2011

avaya.com

© 2010 Avaya Inc.
All Rights Reserved.

Notices

While reasonable efforts have been made to ensure that the information in this document is complete and accurate at the time of printing,
Avaya assumes no liability for any errors. Avaya reserves the right to make changes and corrections to the information in this document
without the obligation to notify any person or organization of such changes.

Documentation disclaimer

Avaya shall not be responsible for any modifications, additions, or deletions to the original published version of this documentation unless
such modifications, additions, or deletions were performed by Avaya. End User agree to indemnify and hold harmless Avaya, Avaya‟s
agents, servants and employees against all claims, lawsuits, demands and judgments arising out of, or in connection with, subsequent
modifications, additions or deletions to this documentation, to the extent made by End User.

Link disclaimer

Avaya is not responsible for the contents or reliability of any linked Web sites referenced within this site or documentation(s) provided by
Avaya. Avaya is not responsible for the accuracy of any information, statement or content provided on these sites and does not necessarily
endorse the products, services, or information described or offered within them. Avaya does not guarantee that these links will work all the
time and has no control over the availability of the linked pages.

Warranty

Avaya provides a limited warranty on this product. Refer to your sales agreement to establish the terms of the limited warranty. In addition,
Avaya‟s standard warranty language, as well as information regarding support for this product, while under warranty, is available to Avaya
customers and other parties through the Avaya Support Web site: http://www.avaya.com/support

Please note that if you acquired the product from an authorized reseller, the warranty is provided to you by said reseller and not by Avaya.

Licenses

THE SOFTWARE LICENSE TERMS AVAILABLE ON THE AVAYA WEBSITE, HTTP://SUPPORT.AVAYA.COM/LICENSEINFO/ ARE
APPLICABLE TO ANYONE WHO DOWNLOADS, USES AND/OR INSTALLS AVAYA SOFTWARE, PURCHASED FROM AVAYA INC.,
ANY AVAYA AFFILIATE, OR AN AUTHORIZED AVAYA RESELLER (AS APPLICABLE) UNDER A COMMERCIAL AGREEMENT WITH
AVAYA OR AN AUTHORIZED AVAYA RESELLER. UNLESS OTHERWISE AGREED TO BY AVAYA IN WRITING, AVAYA DOES NOT
EXTEND THIS LICENSE IF THE SOFTWARE WAS OBTAINED FROM ANYONE OTHER THAN AVAYA, AN AVAYA AFFILIATE OR AN
AVAYA AUTHORIZED RESELLER, AND AVAYA RESERVES THE RIGHT TO TAKE LEGAL ACTION AGAINST YOU AND ANYONE ELSE
USING OR SELLING THE SOFTWARE WITHOUT A LICENSE. BY INSTALLING, DOWNLOADING OR USING THE SOFTWARE, OR
AUTHORIZING OTHERS TO DO SO, YOU, ON BEHALF OF YOURSELF AND THE ENTITY FOR WHOM YOU ARE INSTALLING,
DOWNLOADING OR USING THE SOFTWARE (HEREINAFTER REFERRED TO INTERCHANGEABLY AS "YOU" AND "END USER"),
AGREE TO THESE TERMS AND CONDITIONS AND CREATE A BINDING CONTRACT BETWEEN YOU AND AVAYA INC. OR THE
APPLICABLE AVAYA AFFILIATE ("AVAYA").

Copyright

Except where expressly stated otherwise, no use should be made of the Documentation(s) and Product(s) provided by Avaya. All content in
this documentation(s) and the product(s) provided by Avaya including the selection, arrangement and design of the content is owned either
by Avaya or its licensors and is protected by copyright and other intellectual property laws including the sui generis rights relating to the
protection of databases. You may not modify, copy, reproduce, republish, upload, post, transmit or distribute in any way any content, in
whole or in part, including any code and software. Unauthorized reproduction, transmission, dissemination, storage, and or use without the
express written consent of Avaya can be a criminal, as well as a civil offense under the applicable law.

Third Party Components

Certain software programs or portions thereof included in the Product may contain software distributed under third party agreements ("Third
Party Components"), which may contain terms that expand or limit rights to use certain portions of the Product ("Third Party Terms").
Information regarding distributed Linux OS source code (for those Products that have distributed the Linux OS source code), and identifying
the copyright holders of the Third Party Components and the Third Party Terms that apply to them is available on the Avaya Support Web
site: http://support.avaya.com/Copyright.

Trademarks

The trademarks, logos and service marks ("Marks") displayed in this site, the documentation(s) and product(s) provided by Avaya are the
registered or unregistered Marks of Avaya, its affiliates, or other third parties. Users are not permitted to use such Marks without prior written
consent from Avaya or such third party which may own the Mark. Nothing contained in this site, the documentation(s) and product(s) should
be construed as granting, by implication, estoppel, or otherwise, any license or right in and to the Marks without the express written
permission of Avaya or the applicable third party. Avaya is a registered trademark of Avaya Inc. All non-Avaya trademarks are the property of
their respective owners.

Downloading documents

For the most current versions of documentation, see the Avaya Support. Web site: http://www.avaya.com/support

Contact Avaya Support

Avaya provides a telephone number for you to use to report problems or to ask questions about your product. The support telephone number
is 1-800-242-2121 in the United States. For additional support telephone numbers, see the Avaya Web site: http://www.avaya.com/support

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

3

April 2011

avaya.com

Abstract

This Technical Configuration Guide provides a brief summary for the configuration of VRF-Lite for the
Avaya Ethernet Routing Switch 8600/8800.

Acronym Key

AS : Autonomous System
EDM : Enterprise Device Manager
GRT : Global Route Table
IPVPN : IP Virtual Private Network
IST : Inter Switch Trunk (Avaya SMLT Clustering)
JDM : Java Device Manager
LACP : Link Aggregation Control Protocol
LLDP : Link Layer Discovery Protocol; IEEE 802.1AB
LSDB : Link State Data Base
MAC : Media Access Control
MLT : Multi Link Trunk
MPLS : Multiprotocol Label Switching
MVR : Multicast VLAN Registration
PIM : Protocol Independent Multicast
PIM-SM : Protocol Independent Multicast – Sparse Mode
PIM-SSM : Protocol Independent Multicast – Source Specfic Multicast
SNMP : Simple Network Management Protocol
SMLT : Split MLT (Avaya Clustering)
SPB : Shortest Path Bridging
SPBM : Shortest Path Bridging MAC
VID : VLAN identifier
VLACP : Virtual LACP
VLAN : Virtual LAN
VPN : Virtual Private Network
VRF : Virtual Routing and Forwarding

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

4

April 2011

avaya.com

No

Date

Version

Revised by

Remarks

1

1/23/2008

1.0

JVE

Initial release

2

7/4/2008

1.1

JVE

Updates

3

4/28/2011

2.0

PRMGT

Updates

Revision Control

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

5

April 2011

avaya.com

Table of Contents

Figures ......................................................................................................................................................... 6

Document Updates ..................................................................................................................................... 7

Conventions ................................................................................................................................................ 7

1. Overview: VRF-Lite ............................................................................................................................. 8

2. Base Scenario: .................................................................................................................................. 16

2.1 Assumptions: ............................................................................................................................... 16

2.2 VRF-Lite Configuration ................................................................................................................ 16

2.3 Basic VRF-Lite Configuration Steps ........................................................................................... 17

3. VRF-Lite Configuration Example ..................................................................................................... 27

3.1 Configuration – Adding VRF Instance ......................................................................................... 28

3.2 Verification ................................................................................................................................... 40

4. Routing between VRF’s .................................................................................................................... 47

4.1 Configuration – Leaking Routes between VRF Instances .......................................................... 47

5. Software Baseline: ............................................................................................................................ 52

6. Reference Documentation: .............................................................................................................. 52

7. Customer service .............................................................................................................................. 53

7.1 Getting technical documentation ................................................................................................. 53

7.2 Getting product training ............................................................................................................... 53

7.3 Getting help from a distributor or reseller .................................................................................... 53

7.4 Getting technical support from the Avaya Web site .................................................................... 53

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

6

April 2011

avaya.com

Figures

Figure 1: VRF-Lite Overview ......................................................................................................................... 8

Figure 2: IP-VPN VRF between Switches ................................................................................................... 11

Figure 3: VRRP and VRF in SMLT topology ............................................................................................... 11

Figure 4: Router Redundacy for multiple routing instances (RSMLT) ........................................................ 12

Figure 5: MPLS IP-VPN PE Combined with IP-VRF .................................................................................. 12

Figure 6: IP-VPN VRF-Lite Interactions ...................................................................................................... 13

Figure 7: SPBM L3 VSN ............................................................................................................................. 13

Figure 8: Internal Multicast Virtualization for VRF-Lite ............................................................................... 14

Figure 9: MVR for VRF-Lite......................................................................................................................... 15

Figure 10: VF-Lite Configuration Example .................................................................................................. 27

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

7

April 2011

avaya.com



Tip – Highlights a configuration or technical tip.



Note – Highlights important information to the reader.



Warning – Highlights important information about an action that may result in equipment
damage, configuration or data loss.

Bold text indicates emphasis.

Italic text in a Courier New font indicates text the user must enter or select in a menu item, button
or command:

ERS8600:5# show config

Output examples from Avaya devices are displayed in a Lucida Console font:

ERS8600:5# show config

Preparing to Display Configuration...

#

# WED JAN 23 12:15:28 2008 UTC

# box type : ERS-8006

Document Updates

April 2011

Conventions

This section describes the text, image, and command conventions used in this document.

Symbols

Text

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

8

April 2011

avaya.com

VLAN01

IP01

IP03

IP02

VLAN03

VLAN02

RIP0

OSPF0

VRF

0

VLAN11

IP11

IP13

IP12

VLAN13

VLAN12

RIP1

OSPF1

VRF

1

Global Routing Table
/ VRF 0

Second Routing Instance
/ VRF 1

IP04

…

IP04

IPv6

R

Third Routing Instance
/ VRF 2

1. Overview: VRF-Lite

VRF-light provides multiple independent IPv4 routing and forwarding instances within the Ethernet
Routing Switch 8600/8800. In addition to the global routing table (VRF0), up to 255 virtual route
forwarding (VRF) instances are supported.

Each VRF-Lite instance supports the following features:

 256 VPNs for each system
 VRF routing protocols (OSPF, RIP, or BGP)
 IPv4 only
 Filtering support
 VRRP, ARP, and DHCP Relay
 Overlapping address space
 Inter-VRF forwarding policies
 SMLT and RSMLT support for VRFs
 IEEE 802.3ad and MLT support
 SMLT and RSMLT for CE connectivity
 ECMP
 VRF-based ping and traceroute
 Interoperability with RFC2547/4364 layer 3 VPNs
 256K total routes per switch; 256K routes in one VRF or spread among all VRF‟s
 32K ARP table size shared between global route table and VRF

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

Figure 1: VRF-Lite Overview

9

April 2011

avaya.com

 Virtualized SNMP Management – restrict access at a VRF-Lite level using either SNMPv1/2 or

SNMPv3 – applies to release 5.x

 Starting in release 7.0, Enterprise Device Manager (EDM) can be used to configure VRF-Lite

VRF-Lite Multicast Support (software release ≥ 5.1):

 PIM-SM, PIM-SSM, IGMPv1,v2,v3 protocols are virtualized and can be configure in non-zero

VRF

 PIM-SM / PIM-SSM support upto 64 instances
 Max number of OSPF and RIP v1/v2 instances have also been increased to 64 in this release.
 Virtualized multicast features support on MLT/SMLT/RSMLT related topologies
 Partial HA support for virtualized multicast functionalities
 The following multicast features are not virtualized:

o PIM-DM
o IGAP
o DVMRP
o PGM
o PIM-MBR

 Virtualization is supported only on R/RS modules and on 8692 CPU card
 Multicast Virtualization is available only in „Premier‟ license

Multicast VLAN registration (software release ≥ 7.0)

 Multicast VLAN Registration (MVR) allows the single multicast VLAN to be shared in the network

while subscribers remain in separate VLANs

 MVR is based upon IGMP Snoop, but these 2 features can work independently of each other
 When a multicast data stream is received to MVR vlan, it will be replicated to all receiver vlan

associated/bind to MVR vlan

 MVR functionality is virtualized, it means each vrf can have its own MVR vlan
 Only one vlan can be configured as MVR vlan in a vrf
 When a Report/Leave is received, it will be forwarded to mrouter port

IP-VPN‟s can be connected together in several ways across a core network using any of the following
methods:

 VRF

o Multiple VRF instances are used between ERS 8600/8800 switches as shown in figure 2,

3, and 4 below showing VRF support between switches, VRRP, RSMLT, and SMLT
support

o For each VRF, a separate VLAN must be created between ERS 8600/8800 switches
o VLAN tagging can be used between

 MPLS

o MPLS network is used as a transport for IP-VPN‟s using RFC 4364 as shown in figure 5

below

 IP VPN-Lite

o IP VPN-Lite can be used to build IP-VPN‟s across any routed IP core using MP-iBGP for

VPN exchange as shown in figure 6 below

o Please refer to Technical Brief titled “Technical Brief for IP VPN-Lite for Ethernet Routing

Switch 8600” for more details

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

10

April 2011

avaya.com

 SPBM

o SPB L3 VSNs can be used to build IP-VPN‟s across an SPBM core using IPVSN

Reachability TLV 184 to distribution IPVSN reachability between IS-IS peers as shown in
figure 7 below

o A Backbone Service Instance Identifier (I-SID) is assigned at a Virtual Router (VRF) level

 All VRFs that share the same I-SID can participate in the same VSN

o Please refer to Technical Configuration Guide titled “ Shortest Path Bridging (802.1aq) for

ERS 8600 / 8800 Technical Configuration Guide” for more details

 Multicast

o Multicast virtualization for VRF-Lite is supported and shown in figure 8 below in addition

to support for MVR as illustrated in figure 9

Requirement for VRF support include the following:

 Software release 5.0 or higher for VRF support
 Software release 5.1 or higher for VRF multicast support
 Software release 7.0 or higher for MVR support
 R or RS Modules
 8692SF with Super Mezzaine daughter card or an 8895SF
 Premier software license

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

11

April 2011

avaya.com

Figure 2: IP-VPN VRF between Switches

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

Figure 3: VRRP and VRF in SMLT topology

12

April 2011

avaya.com

Figure 4: Router Redundacy for multiple routing instances (RSMLT)

Figure 5: MPLS IP-VPN PE Combined with IP-VRF

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

13

April 2011

avaya.com

IP VPN-Lite

RIP/OSPF/Static

VLAN

SMLT/RSMLT/VRRP/
DHCP relay

VLAN

VRF-Lite (CE)

VRF-Lite (CE)

P

L2

VVVVVVVVVVV

V

SMLT/RSMLT/VRRP/
DHCP relay

Figure 6: IP-VPN VRF-Lite Interactions

Figure 7: SPBM L3 VSN

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

14

April 2011

avaya.com

Figure 8: Internal Multicast Virtualization for VRF-Lite

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

15

April 2011

avaya.com

Figure 9: MVR for VRF-Lite

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide

16

April 2011

avaya.com

2. Base Scenario:

This technical brief covers configuration examples only pertaining to VRF-light for the ERS 8600/8800.

2.1 Assumptions:

It is assumed that general knowledge of routing and SMLT on Avaya switches is understood.

2.2 VRF-Lite Configuration

In the 5.0 software release or latter, the concept of global routing table and virtual routing table(s) is
introduced. The global route table (GRT) is also referred to as VRF0 and refers to the main global routing
table. For each virtual routing instance, it will be referred to by the instance number you assign to the
VRF; for example VRF1 refers to virtual router instance 1. Overall, there is only one global routing table
(VRF0) and up to 255 virtual routing tables (VRF1 up to VRF255). The VRF instance can be created
using either CLI, SNMP (5.x), or EDM (≥7.0).

For each VRF-Lite instance that you create, you will need to specify the routing protocol or protocols that
you wish to enable for this VRF instance. This can include OSPF, RIP, and/or BGP. As an option, you
can also limit the number of routes allowed per VRF instance.

The order of VRF-Lite configuration is as follows:

1. Create VRF instance(s)

2. Enable IGP routing protocol you wish to enable per VRF, i.e. enable OSPF, RIP, and/or BGP per
VRF instance

3. As an option, configure the number of routes allowed for each VRF

4. Create the VRF VLAN(s) and add port members

5. If using JDM

a. At this stage, only if using Java Device Manager (JDM) for software release 5.x, you must

select the VRF instance to further configure the VRF if you are a JDM Super User.

b. If you are a JDM VRF user, you must logon to the switch with the appropriate credentials

(community string if SNMPv1/2 or USM user if SNMPv3).

c. Please see section titled JDM : VRF-Lite SNMP Access for ERS 8600 software release

5.x below for more details.

6. If using EDM,

a. If using software release 7.0, you can select the VRF context at the EDM login screen
b. If using software level 7.1 or higher, after loggin in via the global user credentials, you

can select the VRF context available via the left navigation plane VRF Context view

c. Please see section titled EDM: VRF-Lite http Access for ERS 8800 software release 7.x

for more details

7. Add IP address and routing protocol(s) at a VLAN level for each VRF instance.

8. Add optional route policies if required. You can also use route policies if you wish to leak routes
between VRF instances or to the global route table.

VRF-Lite for Ethernet Routing Switch 8600 Technical Configuration Guide