The BVI is a virtual interface within the router that acts like a normal routed interface. The BVI does not support bridging itself, but acts as a gateway for the corresponding bridge-domain to a routed interface within the router.

Aside from supporting a configurable MAC address, a BVI supports only Layer 3 attributes, and has the following characteristics:

• Uses a MAC address taken from the local chassis MAC address pool, unless overridden at the BVI interface.

• Is configured as an interface type using the interface bvi command and uses an IPv4 address that is in the same subnet as the hosts on the segments of the bridged domain. The BVI also supports secondary addresses.

• The BVI identifier is independent of the bridge-domain identifier. These identifiers do not need to correlate like they do in Cisco IOS software.

• Is associated to a bridge group using the routed interface bvi command.

Support for Layer 2 (L2) sub-interfaces to work with BVI interface in a bridge domain has been added in the Cisco IOS XR Software Release 6.3.1. The L2 sub-interfaces must have a rewrite configuration to pop the outer tag in Ingress direction and push the outer tag on the packet in egress direction. The outer tag that is to be pushed in egress direction is based on the interface encapsulation. The support is added only for single tag sub-interfaces. Double tagged sub-interfaces that work with BVI interface in a bridge domain are not supported.

• These interface commands are supported on a BVI:

  • arp purge-delay

  • arp timeout

  • bandwidth (The default is 10 Gbps and is used as the cost metric for routing protocols for the BVI)

  • ipv4

  • ipv6

  • mac-address

  • mtu (The default is 1500 bytes)

  • shutdown

• The BVI supports IP helper addressing and secondary IP addressing.

Like typical interface states on the router, a BVI has both an Interface and Line Protocol state.

• The BVI interface state is Up when the following occurs:

  • The BVI interface is created.

  • The bridge-domain that is configured with the routed interface bvi command has at least one available active bridge port .

• These characteristics determine when the the BVI line protocol state is up:

  • The bridge-domain is in Up state.

  • The BVI IP address is not in conflict with any other IP address on another active interface in the router.

You must be in a user group associated with a task group that includes the proper task IDs. The command reference guides include the task IDs required for each command. If you suspect user group assignment is preventing you from using a command, contact your AAA administrator for assistance.

Before configuring IRB, be sure that these tasks and conditions are met:

• Know the IP addressing and other Layer 3 information to be configured on the bridge virtual interface (BVI).

• Complete MAC address planning if you decide to override the common global MAC address for all BVIs.

• Be sure that the BVI network address is being advertised by running static or dynamic routing on the BVI interface.

Before configuring IRB, consider these restrictions:

• Only one BVI can be configured in any bridge domain.

• The same BVI can not be configured in multiple bridge domains.

• The following areas are not supported on the Layer2 bridging (with BVI):

  • Access Control Lists (ACLs). However, Layer 2 ACLs can be configured on each Layer 2 port of the bridge domain.

  • Static mac entry configuration in Bridge.

  • Mac ageing configuration at global config mode.

  • MAC Learning Disable.

  • Port-channel sub-interface as bridge member.

  • Physical sub-interface as bridge member.

  • Vlan rewrite.

• QOS configuration on BVI interface is not supported.

• VRF on BVI interface is not supported.

This figure shows a simplified functional diagram of an IRB implementation to describe different packet flows between Host A, B, and C. In this example, Host C is on a network with a connection to the same router. In reality, another router could be between Host C and the router shown.

When IRB is configured on a router, the following processing happens:

• ARP requests are resolved between the hosts and BVI that are part of the bridge domain.

• All packets from a host on a bridged interface go to the BVI if the destination MAC address matches the BVI MAC address. Otherwise, the packets are bridged.

• For packets destined for a host on a routed network, the BVI forwards the packets to the routing engine before sending them out a routed interface.

• All packets either from or destined to a host on a bridged interface go to the BVI first (unless the packet is destined for a host on the bridge domain).

• For packets that are destined for a host on a segment in the bridge domain that come in to the router on a routed interface, the BVI forwards the packet to the bridging engine, which forwards it through the appropriate bridged interface.