BPDU Tunneling Configuration

Owned by Tracy Yang
May 24, 2024
4 min read

Introduction

As a Layer 2 tunneling technology, BPDU tunneling enables Layer 2 protocol packets from geographically dispersed customer networks to be transparently transmitted over a BPDU tunnel on the ISP (Internet Service Provider) network.

 


Figure 1 Transparent Transmission of Layer 2 Protocol Packets through BPDU Tunnel

PicOS currently supports Layer 2 protocol packets of STP and LACP that can be transmitted through BPDU tunneling. Transparent transmission of Layer 2 protocol packets through BPDU tunnel is based on the following processes:

1. On the BPDU tunnel ingress switch SW-A, destination multicast MAC address of the received Layer 2 protocol packet is replaced with a specified destination multicast MAC address.

2. Layer 2 protocol packets are transparently transmitted through the ISP network.

3. When the packet arrives at the BPDU tunnel egress switch SW-B, the destination multicast MAC address is checked and the packet is considered as a tunneled packet. Then the destination multicast MAC address of the packet is restored to standard destination multicast MAC address on the BPDU tunnel egress interface, and the packet is further processed and forwarded.

 

Configuration Notes

 

  • BPDU Tunneling cannot be configured on a LAG port or a physical port that belongs to a LAG. When we need to configure BPDU tunneling on the physical port that belongs to a LAG, we must first remove the physical port from the LAG port before configuration. 
  • When configuring BPDU tunneling destination multicast MAC address, the following       multicast MAC addresses cannot be used: 

           01:80:C2:00:00:00 to 01:80:C2:00:00:2f. 

  • The destination multicast MAC address configured on the tunnel ingress switch and the egress switch must be the same value.

Configuring BPDU Tunneling

Procedure

Step1          Configure VLAN.

                    a) Configure VLAN ID.

  set vlans <vlan-id>

            b) Configure the interface to VLAN.

  set interface gigabit-ethernet <port-id> family ethernet-switching vlan members <vlan-id>

Step2          Enable the BPDU tunneling function of the Layer 2 protocol.

     set interface gigabit-ethernet <port-id> family ethernet-switching bpdu-tunneling protocol <protocol-type>

Step3          Configure the BPDU tunneling destination multicast MAC address to replace the original  destination multicast MAC address.

     set interface bpdu-tunneling destination-mac <destination-mac>

Configuration Example

Network Requirements

  1.  Private networks of User A and User B are located on two sides of the ISP network, as shown in Figure 2, SwitchA1, SwitchA2, SwitchB1 and SwitchB2 are the edge devices of the user network, SW-A and SW-B are the edge   devices  of the ISP network.
  2.  The User A network belongs to VLAN 100 and the User B network belongs to VLAN 200.
  3.  The BPDU tunneling function of the STP protocol is enabled so that Layer 2 protocol packets of User A and User B can cross the ISP network to complete the spanning tree calculation.

Figure 2 Networking Diagram for Configuring Transparent Transmission of Layer 2 Protocol Packets through BPDU Tunnel

Procedure

Step1          Enable STP function on SwitchA1, SwitchA2, SwitchB1 and SwitchB2.

    # Configure SwitchA1           

admin@XorPlus# set vlans vlan-id 100
admin@XorPlus# set interface gigabit-ethernet ge-1/1/3 family ethernet-switching vlan members 100
admin@XorPlus# set protocols spanning-tree enable true


   # Configure SwitchA2

admin@XorPlus# set vlans vlan-id 200
admin@XorPlus# set interface gigabit-ethernet ge-1/1/4 family ethernet-switching vlan members 200
admin@XorPlus# set protocols spanning-tree enable true


   # Configure SwitchB1           

admin@XorPlus# set vlans vlan-id 100
admin@XorPlus# set interface gigabit-ethernet ge-1/1/3 family ethernet-switching vlan  members 100
admin@XorPlus# set protocols spanning-tree enable true


   # Configure SwitchB2

admin@XorPlus# set vlans vlan-id 200
admin@XorPlus# set interface gigabit-ethernet ge-1/1/4 family ethernet-switching vlan members 200
admin@XorPlus# set protocols spanning-tree enable true

 

Step2        Configure VLAN on SW-A and SW-B.

  # Configure SW-A                 

admin@XorPlus# set vlans vlan-id 100
admin@XorPlus# set vlans vlan-id 200
admin@XorPlus# set interface gigabit-ethernet ge-1/1/1 family ethernet-switching vlan members 100
admin@XorPlus# set interface gigabit-ethernet ge-1/1/2 family ethernet-switching vlan members 200
admin@XorPlus# set interface gigabit-ethernet te-1/1/49 family ethernet-switching port-mode trunk
admin@XorPlus# set interface gigabit-ethernet te-1/1/49 family ethernet-switching vlan members 100
admin@XorPlus# set interface gigabit-ethernet te-1/1/49 family ethernet-switching vlan members 200

 

  # Configure SW-B               

 admin@XorPlus# set vlans vlan-id 100
 admin@XorPlus# set vlans vlan-id 200
 admin@XorPlus# set interface gigabit-ethernet ge-1/1/1 family ethernet-switching vlan members 100
 admin@XorPlus# set interface gigabit-ethernet ge-1/1/2 family ethernet-switching vlan members 200
 admin@XorPlus# set interface gigabit-ethernet te-1/1/50 family ethernet-switching port- mode trunk
 admin@XorPlus# set interface gigabit-ethernet te-1/1/50 family ethernet-switching vlan members 100
 admin@XorPlus# set interface gigabit-ethernet te-1/1/50 family ethernet-switching vlan members 200

 

Step3       Enable the BPDU tunneling function of STP on SW-A and SW-B of different inbound interface.

                 # Configure SW-A               

admin@XorPlus# set interface gigabit-ethernet ge-1/1/1 family ethernet-switching bpdu-tunneling protocol stp
admin@XorPlus# set interface gigabit-ethernet ge-1/1/2 family Ethernet-switching bpdu-tunneling protocol stp

 

                # Configure SW-B               

admin@XorPlus# set interface gigabit-ethernet ge-1/1/1 family ethernet-switching bpdu-tunneling protocol stp
admin@XorPlus# set interface gigabit-ethernet ge-1/1/2 family ethernet-switching bpdu-tunneling protocol stp

 

Step4      Configure the BPDU tunneling destination multicast MAC address to replace the original destination multicast MAC address.

                 # Configure SW-A

admin@XorPlus# set interface bpdu-tunneling destination-mac 01:90:00:00:00:1a

                # Configure SW-B

admin@XorPlus# set interface bpdu-tunneling destination-mac 01:90:00:00:00:1a       

NOTE:

The destination multicast MAC address configured on the tunnel ingress switch and the egress switch must be the same value.

 

Configuring Flex Links Preemption Delay

User can configure two physical ports or two LAGs as Flex Links or configure one physical port and one LAG as Flex Links.

admin@XorPlus# set interface gigabit-ethernet ge-1/1/1 backup-port interface ae1
admin@XorPlus# commit
Waiting for merging configuration.
Commit OK.
Save done.
admin@XorPlus# set interface gigabit-ethernet ge-1/1/1 backup-port delay 10 
admin@XorPlus# commit
Waiting for merging configuration.
Commit OK.
Save done.
admin@XorPlus# set interface aggregate-ethernet ae2 backup-port interface ae3
admin@XorPlus# commit
Waiting for merging configuration.
Commit OK.
Save done.

Configuring the Preemption Mode

By default, the preemption mode is set, and the active interface is preferred. Beyond that, user can configure the "bandwidth" or "off" mode. The "bandwidth" mode calls for a higher bandwidth interface, and the "off" mode turns off preemption.

admin@XorPlus# set interface gigabit-ethernet ge-1/1/1 backup-port mode bandwidth 
admin@XorPlus# commit
Waiting for merging configuration.
Commit OK.
Save done.
admin@XorPlus#

Showing Flex Links on All Interfaces

User can view the state of user's Flex Links interfaces:

admin@XorPlus# run show interface flexlink 
Active Interface Backup Interface Mode Delay(seconds)
----------------- ----------------- --------- --------------
ge-1/1/1(up) ge-1/1/2(standby) bandwidth 10
admin@XorPlus#

Copyright © 2024 Pica8 Inc. All Rights Reserved.