How i can create tunnel vlan inside vxlan

kitecn · October 28, 2022, 2:56am

i want set a vpn vxlan carry ethernet packet with vlan tags, the vxlan peer to peer running correct, can carry ethernet packets without vlan tags。but how to set tunnel carry vlan packet,calls "vlan inside vxlan"。 the hardware switch support untag,tags, vxlan mode，how to do with openwrt?

faruktezcan · March 16, 2023, 3:22pm

First of all, you have to create a link between two nodes using a 'vxlan' proto. If you can ping the other end then you can carry on for the rest of the setup. Here is my 22.03.3 setup and it does exactly what you want.

config interface 'loopback'
	option device 'lo'
	option proto 'static'
	option ipaddr '127.0.0.1'
	option netmask '255.0.0.0'

config globals 'globals'
	option ula_prefix 'fd60:d888:48eb::/48'

config device
	option type '8021q'
	option ifname 'eth0'
	option name 'eth0.10'
	option vid '10'

config device
	option type 'veth'
	option name 'veth'
	option mtu '2048'
	option ipv6 '0'
	option macaddr '68:FF:7B:00:FD:FF'

config device
	option type 'bridge'
	option name 'br-lan'
	option stp '1'
	option igmp_snooping '1'
	option promisc '1'
	option bridge_empty '1'
	list ports 'eth0'
	list ports 'vxlan100'

config device
	option type 'bridge'
	option name 'br-lan10'
	option stp '1'
	option igmp_snooping '1'
	option promisc '1'
	option bridge_empty '1'
	list ports 'eth0.10'
	list ports 'vxlan100.10'

config device
	option type 'bridge'
	option name 'br-vxlan'
	option bridge_empty '1'
	list ports 'veth'

config interface 'lan'
	option device 'br-lan'
	option proto 'static'
	option ipaddr '192.168.1.3'
	option netmask '255.255.255.0'
	option gateway '192.168.1.1'
	list dns '192.168.1.1'

config interface 'lan10'
	option device 'br-lan10'
	option proto 'static'
	option ipaddr '192.168.10.3'
	option netmask '255.255.255.0'
	option gateway '192.168.10.1'
	list dns '192.168.10.1'

config interface 'vxlan'
	option device 'br-vxlan'
	option proto 'static'
	option ipaddr '192.168.100.3'
	option netmask '255.255.255.248'
	option gateway '192.168.1.1'
	option mtu '2048'

config interface 'vxlan100'
	option proto 'vxlan'
	option vid '100'
	option tunlink 'vxlan'
	option peeraddr '192.168.100.4'
	option ipaddr '192.168.100.3'
	option peerdns '0'
	option delegate '0'

config device
	option type '8021q'
	option ifname 'vxlan100'
	option vid '10'
	option name 'vxlan100.10'

kitecn · March 17, 2023, 2:24am

thank you very much,in fact ,it runs on 22.03.3 very well 。the older version has some problem.....