Step 1
|
enable
|
Enables privileged EXEC mode.
Enter your password, if prompted.
|
Step 2
|
configure
terminal
Device# configure terminal
|
Enters global configuration mode.
|
Step 3
|
router lisp
Device(config)# router lisp
|
Enters LISP configuration mode.
|
Step 4
|
locator-table default
Device(config-router-lisp)# locator-table default
|
Selects the default (global) routing table for association with the routing locator address space.
|
Step 5
|
service { ipv4| ipv6}
Device(config-router-lisp)# service ipv4
Device(config-router-lisp)# service ipv6
|
Enables network services for the default instance.
service ipv4 : Enables Layer 3 network services for the IPv4 address family.
service ipv6 : Enables Layer 3 network services for the IPv6 address family.
|
Step 6
|
encapsulation vxlan
Device(config-router-lisp-serv-ipv4)# encapsulation vxlan
Device(config-router-lisp-serv-ipv6)# encapsulation vxlan
|
Specifies VXLAN-based encapsulation for the configured IP address family.
|
Step 7
|
sgt
Device(config-router-lisp-serv-ipv4)# sgt
Device(config-router-lisp-serv-ipv6)# sgt
|
(Optional) Enables the Security Group Tag (SGT) function for SGT tag propagation, for the configured IP address family. Configure
this command only if you need SGT propagation in your fabric network.
|
Step 8
|
map-server
Device(config-router-lisp-serv-ipv4)# map-server
Device(config-router-lisp-serv-ipv6)# map-server
|
Configures a LISP map server (MS).
|
Step 9
|
map-resolver
Device(config-router-lisp-serv-ipv4)# map-resolver
Device(config-router-lisp-serv-ipv6)# map-resolver
|
Configures a LISP map resolver (MR).
|
Step 10
|
Do one of the following:
- exit-service-ipv4
- exit-service-ipv6
Device(config-router-lisp-serv-ipv4)# exit-service-ipv4
Device(config-router-lisp-serv-ipv6)# exit-service-ipv6
|
Exits service configuration mode, and enters LISP configuration mode.
Use the appropriate command, depending on which service mode you are exiting from (IPv4 or IPv6 service mode).
|
Step 11
|
service ethernet
Device(config-router-lisp)# service ethernet
|
Enables Layer 2 network services.
|
Step 12
|
map-server
Device(config-router-lisp-serv-eth)# map-server
|
Configures a LISP map server (MS).
|
Step 13
|
map-resolver
Device(config-router-lisp-serv-eth)# map-resolver
|
Configures a LISP map resolver (MR).
|
Step 14
|
exit-service-ethernet
Device(config-router-lisp-serv-eth)# exit-service-ethernet
|
Exits service configuration mode, and enters LISP configuration mode.
|
Step 15
|
site site-name
Device(config-router-lisp)# site site_uci
|
Specifies a LISP site and enters LISP site configuration mode.
A LISP site name is locally significant to the map server on which it is configured. It has no relevance anywhere else. This
name is used solely as an administrative means of associating one or more EID prefixes with an authentication key and other
site-related mechanisms.
|
Step 16
|
description
description
Device(config-router-lisp-site)# description map-server
|
Provides a description for the LISP site.
|
Step 17
|
authentication-key { key-type} authentication-key
Device(config-router-lisp-site)# authentication-key some-key
|
Configures the password used to create the Hashed Message Authentication Code (HMAC) Secure Hash Algorithm (SHA-1) hash for
authenticating the map-register messages sent by edge nodes when registering with the control plane node.
Use the following values for key-type, depending on the type of authentication desired:
-
0: Specifies that an unencrypted password follows
-
6: Specifies that an encrypted (AES) password follows
-
7: Specifies that an encrypted (weak) password follows
-
<any word>: the unencrypted (cleartext) password
Note
|
Ensure that you have the same authentication key configured on all the fabric nodes in your network.
|
|
Step 18
|
eid-record instance-id instance-id[ eid-prefix] [ accept-more-specifics]
Device(config-router-lisp-site)# eid-record instance-id 4099 10.50.1.0/24 accept-more-specifics
Device(config-router-lisp-site)# eid-record instance-id 8197 any-mac
|
Configures EID prefixes that are associated with this LISP instance ID. A LISP instance ID is a unique identifier for LISP
instance and is associated with a routing table (VRF) or a switching table (VLAN).
eid-prefix can be IPv4 or IPv6 or MAC EID prefixes.
accept-more-specifics allows the site to accept registrations for more EID prefixes
Use this command to configure the EID prefixes that are allowed in a map-register message sent by the edge device when registering
with the control plane node. Configure 0.0.0.0/0 as eid-prefix for a default instance, if you have to import unregistered prefixes into the LISP database.
|
Step 19
|
allow-locator-default-etr instance-id
instance-id {ipv4 | ipv6}
Device(config-router-lisp-site)# allow-locator-default-etr instance-id 4099 ipv4
Device(config-router-lisp-site)# allow-locator-default-etr instance-id 4099 ipv6
|
Configures the LISP site to accept default egress tunnel router (ETR) registrations for a particular instance-id and a given
service level (IPv4 or IPv6) within that instance-id.
A default ETR handles the unknown EID prefixes, which are the EID prefixes that are not present in the control plane database.
A border node that registers with the control plane node as a default ETR tracks the unknown EID prefixes in each of their
VRF tables (a given service level within an instance ID).
|
Step 20
|
exit-site
Device(config-router-lisp-site)# exit-site
|
Exits the LISP Site configuration mode, and enters LISP configuration mode.
|
Step 21
|
ipv4 source-locator Loopback
loopback-interface-number
Device(config-router-lisp)# ipv4 source-locator Loopback0
|
Specifies the interface whose IPv4 address should be used as the source locator address for outbound LISP encapsulated packets.
|
Step 22
|
exit-router-lisp
Device(config-router-lisp)# exit-router-lisp
|
Exits LISP configuration mode, and enters global configuration mode.
|
Step 23
|
end
|
Returns to privileged EXEC mode.
|