Cisco Cisco Nexus 5010 Switch Weißbuch
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 45 of 75
from OSPF into VRF-B
maximum-paths ibgp 2
vrf VRF-EXT
address-family ipv4 unicast
advertise l2vpn evpn
redistribute direct route-map FABRIC-RMAP-REDIST-SUBNET
redistribute ospf OSPF-10 route-map REDIST-DENY-DEFAULT
vrf VRF-EXT
address-family ipv4 unicast
advertise l2vpn evpn
redistribute direct route-map FABRIC-RMAP-REDIST-SUBNET
redistribute ospf OSPF-10 route-map REDIST-DENY-DEFAULT
## redistribute VRF-A and
VRF-B protected subnet prefixes from OSPF into VRF-EXT
maximum-paths ibgp 2
evpn
vni 33001 l2
rd auto
route-target import auto
route-target export auto
vni 33002 l2
rd auto
route-target import auto
route-target export auto
vni 33500 l2
rd auto
route-target import auto
route-target export auto
router ospf OSPF-10
evpn
vni 33001 l2
rd auto
route-target import auto
route-target export auto
vni 33002 l2
rd auto
route-target import auto
route-target export auto
vni 33500 l2
rd auto
route-target import auto
route-target export auto
router ospf OSPF-10
## configuring per-VRF ospf routing protocol
vrf VRF-A
redistribute bgp route-map REDIST-BGP-OSPF
redistribute bgp route-map REDIST-BGP-OSPF
## advertise VRF-A route prefixes to firewall
router-id 10.10.10.10
vrf VRF-B
redistribute bgp route-map REDIST-BGP-OSPF
vrf VRF-B
redistribute bgp route-map REDIST-BGP-OSPF
## advertise VRF-A route prefixes to firewall
router-id 10.10.10.10
vrf VRF-EXT
vrf VRF-EXT
redistribute bgp route-map REDIST-DEF-ROUTE
## advertise only default route to firewall
router-id 10.10.10.10
Configuration 9b: IPBD-Based Leaf Switch
install feature-set fabric
vdc leaf1 id 1
allow feature-set fabric
feature-set fabric
feature nv overlay
feature vni
feature ospf
## enable feature ospf
nv overlay evpn
route-map FABRIC-RMAP-REDIST-SUBNET permit 10
match tag 12345
ip access-list DEFAULT-ROUTE
20 permit ip 0.0.0.0/0 any
ip access-list DENY-DEFAULT