EPG: Network Property Description

The EPG (endpoint group) Network Property Description enables you to configure “description” per EFA tenant ctag which gets configured on the SLX as VLAN or BD description.

The default value of “description” is provided in the following table:

Network Type Description
L2 Extension Tenant L2 Extended VLAN or BD
L3 Extension Tenant L3 Extended VLAN or BD
L3 Handoff Tenant L3 Hand-off VLAN or BD
L3 Extension EVPN IRB Tenant L3 Extended IRB BD

You can provide the EPG network “description” during EPG create and EPG update (ctag-range-add) operations.

Upgrade EFA 2.3.2 to 2.4.0 and above

During the upgrade from EFA 2.3.2 to EFA 2.4.x and above, for all the EPG networks, the default “description” is determined and the app-state is set to “cfg-refreshed” so that the user triggers DRC (in EFA 2.4.x and above) to push the derived network “description” on to the SLX.

EPG Create

efa tenant epg create --name <epg-name> --tenant string <tenant-name> --port <list-of-phy> --po <list-of-po> 
               --switchport-mode <access |trunk | trunk-no-default-native> 
               --ctag-range string <ctag-range> --ctag-description <ctag:description>

EPG Update

efa tenant epg update --name <epg-name> --tenant <tenant-name> --operation <ctag-range-add> 
                --ctag-range <ctag-range> --ctag-description <ctag:description>

Example

efa tenant show
+----------+---------+------------+-------------+-------------+-----------+-----------+-----------------------+
|   Name   |  Type   | VLAN Range | L2VNI Range | L3VNI Range | VRF Count | Enable BD |         Ports         |
+----------+---------+------------+-------------+-------------+-----------+-----------+-----------------------+
|  bdTen1  | private |   21-30    |             |             |    10     |   true    | 10.20.246.15[0/11-20] |
|          |         |            |             |             |           |           | 10.20.246.16[0/11-20] |
+----------+---------+------------+-------------+-------------+-----------+-----------+-----------------------+
| vlanTen1 | private |   11-20    |             |             |    10     |   false   | 10.20.246.16[0/1-10]  |
|          |         |            |             |             |           |           | 10.20.246.15[0/1-10]  |
+----------+---------+------------+-------------+-------------+-----------+-----------+-----------------------+
efa tenant vrf create –name ten1vrf1 –tenant vlanTen1

efa tenant vrf create –name ten2vrf2 –tenant bdTen1

VLAN Based L2 Extension EPG

efa tenant epg create --name ten1epg1 --tenant vlanTen1 --port 10.20.246.15[0/1],10.20.246.16[0/1] 
--switchport-mode trunk --ctag-range 11-12 --ctag-description 12:Ten1VLANNW1

VLAN Based L3 Extension EPG

efa tenant epg create --name ten1epg2 --tenant vlanTen1 --port 10.20.246.15[0/1],10.20.246.16[0/1] 
--switchport-mode trunk --ctag-range 13-14 --ctag-description 14:Ten1VLANNW2 --anycast-ip 
13:10.0.13.1/24 --anycast-ip 14:10.0.14.1/24 --vrf ten1vrf1
VLAN Based L3 Handoff EPG
efa tenant epg create --name ten1epg3 --tenant vlanTen1 --type l3-hand-off 
--port 10.20.246.15[0/1],10.20.246.16[0/1] --switchport-mode trunk --ctag-range 15-16 --ctag-description 16:Ten1VLANNW3
BD Based L2 Extension EPG
efa tenant epg create --name ten2epg1 --tenant bdTen1 --port 10.20.246.15[0/11],10.20.246.16[0/11] 
--switchport-mode trunk --ctag-range 21-22 --ctag-description 22:Ten2BDNW1

BD Based L3 Extension EPG

efa tenant epg create --name ten2epg2 --tenant bdTen1 --port 10.20.246.15[0/11],10.20.246.16[0/11] 
--switchport-mode trunk --ctag-range 23-24 --ctag-description 24:Ten2BDNW2 --anycast-ip 
23:10.0.23.1/24 --anycast-ip 24:10.0.24.1/24 --vrf ten2vrf

efa tenant epg show --detail

--np-mac-acl-in 360:ext-mac-permit-any-mirror-acl --np-ip-acl-in 360:ext-ip-permit-any-mirror-acl  

efa tenant epg show --detail
=============================================================================================================================================================
Name          : epg2 
Tenant        : t1 
Type          : extension 
State         : epg-with-port-group-and-ctag-range 
Description   : 

Ports         : 10.20.246.15[0/35] 
POs           : 
Port Property : SwitchPort Mode               : trunk 
              : Native Vlan Tagging           : false 
              : Single-Homed BFD Session Type : auto 

NW Policy     : Ctag Range                    : 360 
              : VRF                           : VRF11 
              : L3Vni                         : 15191 

+------------+-------------+-----------+------------+-------------+ 
| MAC ACL IN | MAC ACL OUT | IP ACL IN | IP ACL OUT | IPv6 ACL IN | 
+------------+-------------+-----------+------------+-------------+ 
Port Property ACLs 

+--------------------+-------------+-------------+ 
|        Port        |  Dev State  |  App State  | 
+--------------------+-------------+-------------+ 
| 10.20.246.15[0/35] | provisioned | cfg-in-sync | 
+--------------------+-------------+-------------+ 
Port Property States 

+-----+------------------------+-------+----+-----------+-------+---------+---------------------+----+-------+--------------+------------+------------+-----------+ 
|Ctag |         Ctag           | L2Vni |BD  |Anycast    |Anycast| Suppress|      Local IP       | IP | IPv6  |   IPv6 ND    |  IPv6 ND   | Dev State  | App State | 
|     |      Description       |       |Name|IPv4       |IPv6   |  ARP/ND |[Device-IP->Local-IP]| MTU| ND MTU|Managed Config|Other Config|            |           | 
+-----+------------------------+-------+----+-----------+-------+---------+---------------------+----+-------+--------------+------------+------------+-----------+ 
|360  |Tenant L3 Extended VLAN | 11003 |    |36.1.1.1/24|       |   T/F   |                     |    |       |    false     |   false    |provisioned |cfg-in-sync| 
+-----+------------------------+-------+----+-----------+-------+---------+---------------------+----+-------+--------------+------------+------------+-----------+ 
Network Property [Flags : * - Native Vlan]  

+------+----------------+--------------+----------------+--------------------+-------------+ 
| Ctag | IPv6 ND Prefix | No Advertise | Valid Lifetime | Preferred Lifetime | Config Type | 
+------+----------------+--------------+----------------+--------------------+-------------+ 
IPv6 ND Prefix Flags 

+------+------------------------------+------------+-----------------------------+-----------+------------+ 
| Ctag |         MAC ACL IN           |MAC ACL OUT |         IP ACL IN           |IP ACL OUT |IPv6 ACL IN | 
+------+------------------------------+------------+-----------------------------+-----------+------------+ 
| 360  |ext-mac-permit-any-mirror-acl |            |ext-ip-permit-any-mirror-acl |           |            | 
+------+------------------------------+------------+-----------------------------+-----------+------------+ 
Network Property ACLs 

Switch Config

Rack1-Device1# show running-
config bridge-domain
bridge-omain 1 p2mp
 description Tenant L2 Extended BD
 pw-profile default
 logical-interface ethernet 0/11.21
 bpdu-drop-enable
 local-switching
!
bridge-domain 2 p2mp
 description Ten2BDNW1
 pw-profile default
 logical-interface ethernet 0/11.22
 bpdu-drop-enable
 local-switching
!
bridge-domain 3 p2mp
 description Tenant L3 Extended BD
 pw-profile Tenant-profile
 router-interface Ve 4099
 !
 logical-interface ethernet 0/11.23
 bpdu-drop-enable
 local-switching
 suppress-arp
!
bridge-domain 4 p2mp
 description Ten2BDNW2
 pw-profile Tenant-profile
 router-interface Ve 4100
 !
 logical-interface ethernet 0/11.24
 bpdu-drop-enable
 local-switching
 suppress-arp
!
bridge-domain 4093 p2mp
 description Tenant L3 Extended IRB BD
 pw-profile Tenant-profile
 router-interface Ve 8189
 !
 bpdu-drop-enable
 local-switching
!
bridge-domain 4094 p2mp
 description Tenant L3 Extended IRB BD
 pw-profile Tenant-profile
 router-interface Ve 8190
 !
 bpdu-drop-enable
 local-switching
!
Rack1-Device2# show running-
config bridge-domain
bridge-domain 1 p2mp
 description Tenant L2 Extended BD
 pw-profile default
 logical-interface ethernet 0/11.21
 bpdu-drop-enable
 local-switching
!
bridge-domain 2 p2mp
 description Ten2BDNW1
 pw-profile default
 logical-interface ethernet 0/11.22
 bpdu-drop-enable
 local-switching
!
bridge-domain 3 p2mp
 description Tenant L3 Extended BD
 pw-profile Tenant-profile
 router-interface Ve 4099
 !
 logical-interface ethernet 0/11.23
 bpdu-drop-enable
 local-switching
 suppress-arp
!
bridge-domain 4 p2mp
 description Ten2BDNW2
 pw-profile Tenant-profile
 router-interface Ve 4100
 !
 logical-interface ethernet 0/11.24
 bpdu-drop-enable
 local-switching
 suppress-arp
!
bridge-domain 4093 p2mp
 description Tenant L3 Extended IRB BD
 pw-profile Tenant-profile
 router-interface Ve 8189
 !
 bpdu-drop-enable
 local-switching
!
bridge-domain 4094 p2mp
 description Tenant L3 Extended IRB BD
 pw-profile Tenant-profile
 router-interface Ve 8190
 !
 bpdu-drop-enable
 local-switching
!
Rack1-Device1#show running-config vlan
vlan 11
 description Tenant L2 Extended VLAN
!
vlan 12
 description Ten1VLANNW1
!
vlan 13
 router-interface Ve 13
 suppress-arp
 description Tenant L3 Extended VLAN
!
vlan 14
 router-interface Ve 14
 suppress-arp
 description Ten1VLANNW2
!
vlan 15
 description Tenant L3 Hand-off VLAN
!
vlan 16
 description Ten1VLANNW3
!

Rack1-Device1#
Rack1-Device2# show running-config vlan 
vlan 11
 description Tenant L2 Extended VLAN
!
vlan 12
 description Ten1VLANNW1
!
vlan 13
 router-interface Ve 13
 suppress-arp
 description Tenant L3 Extended VLAN
!
vlan 14
 router-interface Ve 14
 suppress-arp
 description Ten1VLANNW2
!
vlan 15
 description Tenant L3 Hand-off VLAN
!
vlan 16
 description Ten1VLANNW3
!
Rack1-Device2#