Table of Contents
config vlan COMMAND [ARGS]Parameter description:
add: Add VLAN.
del: Delete VLAN.
dhcp_relay: Configure DHCP_relay for a VLAN.
member: Configure members.
proxy_arp: Configure proxy ARP for a VLAN.config vlan { add | del } <vid>Parameter description:
add: Add VLAN.
del: Delete VLAN.
vid: VLAN ID.config vlan member { add | del } [OPTIONS] <vid> portParameter description:
add: Add VLAN.
del: Delete VLAN.
vid: VLAN ID.
port: A front port of portchannel.Options:
-u, --untagged: this flag will set the member in "untagged" mode.config vlan proxy_arp <vid> <mode>Parameter description:
vid: VLAN ID.
mode: enabled/disabled.config vlan dhcp_relay { add | del } <vid> DHCP_RELAY_DESTINATION_IPSParameter description:
add: Add a destination IP address to the VLAN's DHCP relay.
del: Remove a destination IP address from the VLAN's DHCP relay.
vid: VLAN ID.
DHCP_RELAY_DESTINATION_IPS: A list of space-separated IP addresses.config vlan add [OPTIONS] <vid>
admin@sonic:~$ sudo config vlan add 10
admin@sonic:~$ sudo config vlan add 11Add member interfaces to VLANs
config vlan member add [OPTIONS] <vid> port
admin@sonic:~$ sudo config vlan member add 10 Ethernet100
admin@sonic:~$ sudo config vlan member add -u 11 Ethernet104The -u option means “untagged” vlan member.
If an interface is a router port (has an IP address assigned), it will result in an error:
admin@sonic:~$ sudo config vlan member add 10 Ethernet40
Usage: config vlan member add [OPTIONS] <vid> port
Try "config vlan member add -h" for help.
Error: Ethernet40 is a router interface!In that case the IP address should be removed before joining.
Verify that VLANs are created:
admin@sonic:~$ show vlan brief
+-----------+--------------+-------------+----------------+-----------------------+-------------+
| VLAN ID | IP Address | Ports | Port Tagging | DHCP Helper Address | Proxy ARP |
+===========+==============+=============+================+=======================+=============+
| 10 | | Ethernet100 | tagged | | disabled |
+-----------+--------------+-------------+----------------+-----------------------+-------------+
| 11 | | Ethernet104 | untagged | | disabled |
+-----------+--------------+-------------+----------------+-----------------------+-------------+
admin@sonic:~$ show vlan config
Name VID Member Mode
------ ----- ----------- --------
Vlan1 10 Ethernet100 tagged
Vlan2 11 Ethernet104 untaggedNote that the capital V – it’s the interface name and must start with a capital letter.
Enable or disable proxy ARP for a VLAN interface (optional):
admin@sonic:~$ sudo config vlan proxy_arp 1 enabled
This command will enable proxy ARP for the interface 'Vlan1'Save the config
admin@sonic:~$ sudo config save -yCheck VLAN configuration from Linux perspective:
admin@sonic:~$ sudo bridge vlan
port vlan ids
docker0 1 PVID Egress Untagged
Ethernet104 11 PVID Egress Untagged
Ethernet100 10 PVID Egress Untagged
Bridge 10
11
dummy 1 PVID Egress UntaggedModify the VLAN hierarchy statements in the /etc/sonic/config_db.json file.
"VLAN": {
"Vlan1": {
"vlanid": "10"
},
"Vlan2": {
"vlanid": "11"
}
},
"VLAN_MEMBER": {
"Vlan10|Ethernet100": {
"tagging_mode": "untagged"
},
"Vlan11|Ethernet104": {
"tagging_mode": "untagged"
}
},A layer 3 interface that serves to route traffic from a switch on one VLAN to another switch on another VLAN is called a “switch virtual interface”.
Bridges can be part of a routing topology after being assigned an IP address. The IP address of the bridge is typically from the same subnet as the member hosts of the bridge. This . enables hosts within the bridge to communicate with other hosts outside of the bridge through a switch virtual interface (SVI), which provides layer 3 routing.
Assign IP addresses to the VLANs on the switch – it’s necessary to route between the VLANs.
admin@sonic:~$ sudo config interface ip add Vlan10 192.168.10.1/24
admin@sonic:~$ sudo config interface ip add Vlan11 192.168.11.1/24Check the result:
admin@sonic:~$ show vlan brief
+-----------+-----------------+-------------+----------------+-----------------------+-------------+
| VLAN ID | IP Address | Ports | Port Tagging | DHCP Helper Address | Proxy ARP |
+===========+=================+=============+================+=======================+=============+
| 10 | 192.168.10.1/24 | Ethernet100 | untagged | | disabled |
+-----------+-----------------+-------------+----------------+-----------------------+-------------+
| 11 | 192.168.11.1/24 | Ethernet104 | untagged | | disabled |
+-----------+-----------------+-------------+----------------+-----------------------+-------------+admin@sonic:~$ show ip interfaces
Interface Master IPv4 address/mask Admin/Oper BGP Neighbor Neighbor IP
----------- -------- ------------------- ------------ -------------- -------------
Loopback0 10.1.0.1/32 up/up N/A N/A
Vlan10 192.168.10.1/24 up/up N/A N/A
Vlan11 192.168.11.1/24 up/up N/A N/A
docker0 240.127.1.1/24 up/down N/A N/A
eth0 192.168.0.126/24 up/up N/A N/A
lo 127.0.0.1/16 up/up N/A N/ACheck the routing table:
admin@sonic:~$ show ip route
Codes: K - kernel route, C - connected, S - static, R - RIP,
O - OSPF, I - IS-IS, B - BGP, E - EIGRP, N - NHRP,
T - Table, v - VNC, V - VNC-Direct, A - Babel, D - SHARP,
F - PBR, f - OpenFabric,
> - selected route, * - FIB route, q - queued, r - rejected, b - backupK>* 0.0.0.0/0 [0/0] via 192.168.0.1, eth0, 00:46:57
C>* 10.1.0.1/32 is directly connected, Loopback0, 00:06:09
C>* 192.168.0.0/24 is directly connected, eth0, 00:46:57
C>* 192.168.10.0/24 is directly connected, Vlan10, 00:00:17
C>* 192.168.11.0/24 is directly connected, Vlan11, 00:00:17As you can see, handling VLANs in SONiC is simple and effective.
Modify the VLAN hierarchy statements in the /etc/sonic/config_db.json file to achieve the same result.
"VLAN": {
"Vlan10": {
"vlanid": "10"
},
"Vlan11": {
"vlanid": "11"
}
},
"VLAN_INTERFACE": {
"Vlan10": {},
"Vlan10|192.168.10.1/24": {},
"Vlan11": {},
"Vlan11|192.168.11.1/24": {}
},
"VLAN_MEMBER": {
"Vlan10|Ethernet100": {
"tagging_mode": "untagged"
},
"Vlan11|Ethernet104": {
"tagging_mode": "untagged"
}
},Taoyuan, Taiwan, 29th of April 2025. The latest release of SONiC 202411.n0 – an enterprise distribution of SONiC by Netberg – introduces new features and enhancements tailored to improve performance in data center, edge, and campus environments.
Taoyuan, Taiwan, 20th of January 2025. Netberg, the leading provider of open networking solutions, announces support of Ubuntu 24.04 Noble Numbat on its Broadcom-enabled portfolio.
Taoyuan city, Taiwan, 24th of June 2024. Netberg announced the new Aurora 721 100G and Aurora 421 10G switches, which feature programmable pipelines powered by Broadcom StrataXGS® Trident3 Ethernet switch chips.
Taoyuan city, Taiwan, January 24th, 2024. Netberg announced the release of two new models powered by the Broadcom StrataXGS® Trident3 series , the Netberg Aurora 221 1G switch and Aurora 621 25G switch.
Effective January 12, 2024: The following products are now End of Life (EOL) - Aurora 720 and Aurora 620.
Taoyuan city, Taiwan, December 20th, 2023. Netberg updates its Netberg SONiC distribution to release 2022.11 on Aurora 610, Aurora 710, and Aurora 750 P4-Programmable Intel Tofino IFP systems.