Table of Contents
config vlan COMMAND [ARGS]Parameter description:
add: Add VLAN.
del: Delete VLAN.
dhcp_relay: Configure DHCP_relay for a VLAN.
member: Configure members.
proxy_arp: Configure proxy ARP for a VLAN.config vlan { add | del } <vid>Parameter description:
add: Add VLAN.
del: Delete VLAN.
vid: VLAN ID.config vlan member { add | del } [OPTIONS] <vid> portParameter description:
add: Add VLAN.
del: Delete VLAN.
vid: VLAN ID.
port: A front port of portchannel.Options:
-u, --untagged: this flag will set the member in "untagged" mode.config vlan proxy_arp <vid> <mode>Parameter description:
vid: VLAN ID.
mode: enabled/disabled.config vlan dhcp_relay { add | del } <vid> DHCP_RELAY_DESTINATION_IPSParameter description:
add: Add a destination IP address to the VLAN's DHCP relay.
del: Remove a destination IP address from the VLAN's DHCP relay.
vid: VLAN ID.
DHCP_RELAY_DESTINATION_IPS: A list of space-separated IP addresses.config vlan add [OPTIONS] <vid>
admin@sonic:~$ sudo config vlan add 10
admin@sonic:~$ sudo config vlan add 11Add member interfaces to VLANs
config vlan member add [OPTIONS] <vid> port
admin@sonic:~$ sudo config vlan member add 10 Ethernet100
admin@sonic:~$ sudo config vlan member add -u 11 Ethernet104The -u option means “untagged” vlan member.
If an interface is a router port (has an IP address assigned), it will result in an error:
admin@sonic:~$ sudo config vlan member add 10 Ethernet40
Usage: config vlan member add [OPTIONS] <vid> port
Try "config vlan member add -h" for help.
Error: Ethernet40 is a router interface!In that case the IP address should be removed before joining.
Verify that VLANs are created:
admin@sonic:~$ show vlan brief
+-----------+--------------+-------------+----------------+-----------------------+-------------+
| VLAN ID | IP Address | Ports | Port Tagging | DHCP Helper Address | Proxy ARP |
+===========+==============+=============+================+=======================+=============+
| 10 | | Ethernet100 | tagged | | disabled |
+-----------+--------------+-------------+----------------+-----------------------+-------------+
| 11 | | Ethernet104 | untagged | | disabled |
+-----------+--------------+-------------+----------------+-----------------------+-------------+
admin@sonic:~$ show vlan config
Name VID Member Mode
------ ----- ----------- --------
Vlan1 10 Ethernet100 tagged
Vlan2 11 Ethernet104 untaggedNote that the capital V – it’s the interface name and must start with a capital letter.
Enable or disable proxy ARP for a VLAN interface (optional):
admin@sonic:~$ sudo config vlan proxy_arp 1 enabled
This command will enable proxy ARP for the interface 'Vlan1'Save the config
admin@sonic:~$ sudo config save -yCheck VLAN configuration from Linux perspective:
admin@sonic:~$ sudo bridge vlan
port vlan ids
docker0 1 PVID Egress Untagged
Ethernet104 11 PVID Egress Untagged
Ethernet100 10 PVID Egress Untagged
Bridge 10
11
dummy 1 PVID Egress UntaggedModify the VLAN hierarchy statements in the /etc/sonic/config_db.json file.
"VLAN": {
"Vlan1": {
"vlanid": "10"
},
"Vlan2": {
"vlanid": "11"
}
},
"VLAN_MEMBER": {
"Vlan10|Ethernet100": {
"tagging_mode": "untagged"
},
"Vlan11|Ethernet104": {
"tagging_mode": "untagged"
}
},A layer 3 interface that serves to route traffic from a switch on one VLAN to another switch on another VLAN is called a “switch virtual interface”.
Bridges can be part of a routing topology after being assigned an IP address. The IP address of the bridge is typically from the same subnet as the member hosts of the bridge. This . enables hosts within the bridge to communicate with other hosts outside of the bridge through a switch virtual interface (SVI), which provides layer 3 routing.
Assign IP addresses to the VLANs on the switch – it’s necessary to route between the VLANs.
admin@sonic:~$ sudo config interface ip add Vlan10 192.168.10.1/24
admin@sonic:~$ sudo config interface ip add Vlan11 192.168.11.1/24Check the result:
admin@sonic:~$ show vlan brief
+-----------+-----------------+-------------+----------------+-----------------------+-------------+
| VLAN ID | IP Address | Ports | Port Tagging | DHCP Helper Address | Proxy ARP |
+===========+=================+=============+================+=======================+=============+
| 10 | 192.168.10.1/24 | Ethernet100 | untagged | | disabled |
+-----------+-----------------+-------------+----------------+-----------------------+-------------+
| 11 | 192.168.11.1/24 | Ethernet104 | untagged | | disabled |
+-----------+-----------------+-------------+----------------+-----------------------+-------------+admin@sonic:~$ show ip interfaces
Interface Master IPv4 address/mask Admin/Oper BGP Neighbor Neighbor IP
----------- -------- ------------------- ------------ -------------- -------------
Loopback0 10.1.0.1/32 up/up N/A N/A
Vlan10 192.168.10.1/24 up/up N/A N/A
Vlan11 192.168.11.1/24 up/up N/A N/A
docker0 240.127.1.1/24 up/down N/A N/A
eth0 192.168.0.126/24 up/up N/A N/A
lo 127.0.0.1/16 up/up N/A N/ACheck the routing table:
admin@sonic:~$ show ip route
Codes: K - kernel route, C - connected, S - static, R - RIP,
O - OSPF, I - IS-IS, B - BGP, E - EIGRP, N - NHRP,
T - Table, v - VNC, V - VNC-Direct, A - Babel, D - SHARP,
F - PBR, f - OpenFabric,
> - selected route, * - FIB route, q - queued, r - rejected, b - backupK>* 0.0.0.0/0 [0/0] via 192.168.0.1, eth0, 00:46:57
C>* 10.1.0.1/32 is directly connected, Loopback0, 00:06:09
C>* 192.168.0.0/24 is directly connected, eth0, 00:46:57
C>* 192.168.10.0/24 is directly connected, Vlan10, 00:00:17
C>* 192.168.11.0/24 is directly connected, Vlan11, 00:00:17As you can see, handling VLANs in SONiC is simple and effective.
Modify the VLAN hierarchy statements in the /etc/sonic/config_db.json file to achieve the same result.
"VLAN": {
"Vlan10": {
"vlanid": "10"
},
"Vlan11": {
"vlanid": "11"
}
},
"VLAN_INTERFACE": {
"Vlan10": {},
"Vlan10|192.168.10.1/24": {},
"Vlan11": {},
"Vlan11|192.168.11.1/24": {}
},
"VLAN_MEMBER": {
"Vlan10|Ethernet100": {
"tagging_mode": "untagged"
},
"Vlan11|Ethernet104": {
"tagging_mode": "untagged"
}
},Taoyuan, Taiwan, 20th of January 2025. Netberg, the leading provider of open networking solutions, announces support of Ubuntu 24.04 Noble Numbat on its Broadcom-enabled portfolio.
Taoyuan city, Taiwan, 24th of June 2024. Netberg announced the new Aurora 721 100G and Aurora 421 10G switches, which feature programmable pipelines powered by Broadcom StrataXGS® Trident3 Ethernet switch chips.
Taoyuan city, Taiwan, January 24th, 2024. Netberg announced the release of two new models powered by the Broadcom StrataXGS® Trident3 series , the Netberg Aurora 221 1G switch and Aurora 621 25G switch.
Effective January 12, 2024: The following products are now End of Life (EOL) - Aurora 720 and Aurora 620.
Taoyuan city, Taiwan, December 20th, 2023. Netberg updates its Netberg SONiC distribution to release 2022.11 on Aurora 610, Aurora 710, and Aurora 750 P4-Programmable Intel Tofino IFP systems.
Taipei, Taiwan, 14th of November 2022. Netberg announced the new Aurora 810 400G model programmable switch with Intel Tofino 2 Intelligent Fabric Processors (IFPs) at its heart. The new platform has 32x 400G QSFP-DD Ethernet ports and a 12.8Tbps switching capacity.