This section explains the configuration process of network service.

Network service can be configured per VRF and Service Engine Group. IP routing can be enabled by configuring Network Service of routing_service service type.

You can configure the routing function per VRF basis. The existing functions of routing and its associated information such as enable_routing, floating_interface_ip, enable_vip_on_all_interfaces, and Mac masquerade under SE group are grouped under routing_service service type.

Note:

Network Service can be configured only using CLI. The Network Service will be in effect on Active SE only if an interface of the corresponding VRF is present on the Service Engine.

Configuring Network Service

The network service configuration is as follows:

configure networkservice NS-Default-Group-Global
    se_group_ref Default-Group
         cloud_ref [cloud name]
    vrf_ref global
    service_type routing_service
    routing_service
       enable_routing
       floating_intf_ip 10.10.10.11
       floating_intf_ip 10.10.40.11
       advertise_backend_networks
       enable_vip_on_all_interfaces
       floating_intf_ip_se_2 10.10.20.11
       floating_intf_ip_se_2 10.10.30.11
       nat_policy_ref nat-policy
   save
save

To disable any feature, use the no-form of the CLI as follows:

configure networkservice NS-Default-Group-Global
    se_group_ref Default-Group
    vrf_ref global
    service_type routing_service
    routing_service
        no enable_routing
    save
save

To configure network service for IPv6 addresses use the field floating_intf_ip6_addresses as shown below:

+---------------------------------------+-----------------------------+
| Field                                 | Value                       |
+---------------------------------------+-----------------------------+
| uuid                                  | networkservice-d4b10e1efe1  |
| name                                  | NS-Default-Group-Global     |
| se_group_ref                          | Default-Group               |
| vrf_ref                               | global                      |
| service_type                          | ROUTING_SERVICE             |
| routing_service                       |                             |
|   enable_routing                      | False                       |
|   routing_by_linux_ipstack            | False                       |
|   enable_vmac                         | False                       |
|   enable_vip_on_all_interfaces        | True                        |
|   advertise_backend_networks          | False                       |
|   graceful_restart                    | False                       |
|   enable_auto_gateway                 | False                       |
|   floating_intf_ip6_addresses[1]      | 2001:12:23::1               |
|   floating_intf_ip6_se_2_addresses[1] | 2001:12:23::2               |
| tenant_ref                            | admin                       |
| cloud_ref                             | Default-Cloud               |
+---------------------------------------+-----------------------------+

Routing Auto Gateway

The knob enable_auto_gateway helps in the routing service of network service configuration. This is used to enable the auto gateway functionality to the routing traffic. The knob is set to False by default.

On enabling the knob, flow-based routing is enabled for all the incoming traffic for all the interfaces in a VRF. The Service Engine caches the incoming route traffic mac and forwards the packet to the same next hop that it received the traffic from.

For more information on Routing GRO and TSO subject to environment capabilities, see TSO GRO RSS Features.

Supported Environments

The routing auto gateway functions are supported in the following environments:

  • Active/ Standby SE group in DPDK based environments

  • VMware Read/Write modes and Bare-metal clouds

Configure a network service corresponding to the SE group requires and set enable_auto_gateway to True for the corresponding network service catering to routing.

Configuring Routing Auto Gateway

Enabling auto gateway, routing, and NAT are currently supported only using CLI.

Log in to the Avi Load Balancer Controller CLI and execute the following commands:

configure networkservice NS-Default-Group-Global
    se_group_ref Default-Group
    cloud_ref [cloud name]
    vrf_ref   [vrf name]
    service_type routing_service
    routing_service
    enable_routing
    nat_policy_ref nat-policy
    enable_auto_gateway
    save
save

The network service configuration is as shown:

[admin:abd-ctrl-wildcard]: > show networkservice NS-Default-Group-Global
+--------------------------------+-----------------------------------------------------+
| Field                          | Value                                               |
+--------------------------------+-----------------------------------------------------+
| uuid                           | networkservice-1bcd0e3a-4c3d-4e3e-8d1a-619120f9d68f |
| name                           | NS-Default-Group-Global                             |                  
| se_group_ref                   | Default-Group                                       |
| vrf_ref                        | global                                              |
| service_type                   | ROUTING_SERVICE                                     |
| routing_service                |                                                     |
|   enable_routing               | True                                                |
|   enable_auto_gateway          | True                                                |
|   nat_policy_ref               | nat-policy                                          |
|                                |                                                     |
| tenant_ref                     | admin                                               |
| cloud_ref                      | Default-Cloud                                       |
+--------------------------------+-----------------------------------------------------+