Looking to Enable IPv4 IGMP Snooping and IPv6 MLD on “native/untagged” VLAN 1


Hi, I'm looking to do the equivalent of the below using Cumulus Linux OS and was hoping for a bit of guidance from the community as I'm very new to Cumulus. Any help is appreciated! Thanks!

Traditional switch with CLI (Command Line Interface):

Configuring the Management VLAN interface, which will be using the switches default Native VLAN ID:
interface vlan 1
Then enter the VLAN name using the command:
name
For the Management VLAN, you also need to enable IPv4 IGMP snooping, IPv6 MLD snooping, and the snooping queriers. Enter the following commands:
ip igmp snooping enable
ip igmp snooping querier enable
ipv6 mld snooping enable
ipv6 mld snooping querier enable
Enter the command: exit

I've been reading through the documentation and see that I have to do something along these lines (and I don't want to use VLAN aware bridging)

# Bridge for "VLAN 1" (i.e. untagged)
auto br-vlan1
iface br-vlan1 inet static
address 10.252.64.103/23
bridge-ports eth0
bridge-vlan-aware no
bridge-mcquerier 1
bridge-mcqifaddr 1


7 replies

Userlevel 4
Were you using NCLU?
Sean Cavanaugh wrote:

Were you using NCLU?

Hi , actually no, the reference code was from a 3rd party NOS CLI. But, thank you! I heard that Cumulus had come out with a CLI interface but I've never used it. I'm going to try it out now and according to the documentation, it looks like I can then kick out a traditional Cumulus config file. Much appreciated!
Sean Cavanaugh wrote:

Were you using NCLU?

Okay, so I gave NCLU a try and am a bit stuck. Maybe someone can help guide me?

I did the following commands:

First,

~$ net add vlan 1

which would add the following:

~$ net pending +auto bridge
+iface bridge
+ bridge-vids 1
+ bridge-vlan-aware yes
+

Then, I did,
~$ net add interface mgmt bridge-access 1

which would add:
:~$ net pending

--- /etc/network/interfaces 2017-01-26 19:02:35.767368351 +0000
+++ /var/run/nclu/iface/interfaces.tmp 2017-01-30 19:07:46.212140756 +0000
@@ -7,23 +7,30 @@
auto lo
iface lo inet loopback

# The primary network interface
auto eth0
iface eth0
address 10.252.64.103/23
gateway 10.252.65.254
vrf mgmt

+auto bridge
+iface bridge
+ bridge-ports mgmt
+ bridge-vids 1
+ bridge-vlan-aware yes
+
auto mgmt
iface mgmt
address 127.0.0.1/8
+ bridge-access 1
vrf-table auto

But then I was trying to find the NCLU equivalent for the rest of the "CLI" commands, i.e.
ip igmp snooping enable

ip igmp snooping querier enable
ipv6 mld snooping enable
ipv6 mld snooping querier enable

So, I tried...

cumulus@cumulus:mgmt-vrf:~$ net add interface mgmt ip igmp

join : PIM interface join information
query-interval : IGMP host query interval
query-max-response-time : IGMP max query response value (seconds)

cumulus@cumulus:mgmt-vrf:~$ net add interface mgmt ip igmp

hitting TAB I don't see any option for "snooping enable" or "snooping querier enable", or for the "ipv6 mld " equivalent commands.

Maybe NCLU doesn't have it? Or maybe I'm doing it wrong?

Any help is appreciated!
Thanks!

Userlevel 4
Sean Cavanaugh wrote:

Were you using NCLU?

I think the commands you want are here:
cumulus@dc1-testserver:mgmt-vrf:~$ net add bridge bridge-mc     bridge-mcquerier  :  set multicast querier     bridge-mcsnoop    :  set multicast snooping
Sean Cavanaugh wrote:

Were you using NCLU?

Thank you very much! That should hopefully do the trick. My config "looks good" but we'll see if it actually works 🙂

Sean Cavanaugh wrote:

Were you using NCLU?

Okay, I think I'm almost there but I'm stuck on one more thing...

Right now I have:

root@cumulus:mgmt-vrf:~# ifquery -a | moreauto lo
iface lo inet loopback

auto eth0
iface eth0
address 10.252.64.103/23
gateway 10.252.65.254
vrf mgmt

auto bridge
iface bridge
bridge-mcquerier yes
bridge-mcsnoop yes
bridge-vids 1
bridge-vlan-aware yes

auto mgmt
iface mgmt
address 127.0.0.1/8
vrf-table auto

But, I try to do the following:

root@cumulus:mgmt-vrf:~# net add interface mgmt bridge-access 1

But get the following error

root@cumulus:mgmt-vrf:~# net pending
--- /etc/network/interfaces 2017-02-01 15:22:00.880960216 +0000
+++ /var/run/nclu/iface/interfaces.tmp 2017-02-01 15:25:20.229857967 +0000
@@ -11,26 +11,28 @@
auto eth0
iface eth0
address 10.252.64.103/23
gateway 10.252.65.254
vrf mgmt

auto bridge
iface bridge
bridge-mcquerier yes
bridge-mcsnoop yes
+ bridge-ports mgmt
bridge-vids 1
bridge-vlan-aware yes

auto mgmt
iface mgmt
address 127.0.0.1/8
+ bridge-access 1
vrf-table auto

ERROR: pending changes will introduce the following error(s) in /etc/network/interfaces

warning: mgmt: ignoring ip address. Assigning an IP address is not allowed on enslaved interfaces. mgmt is enslaved to bridge

net add/del commands since the last 'net commit'
================================================

User Timestamp Command
------ -------------------------- --------------------------------------
root 2017-02-01 15:25:16.322721 net add interface mgmt bridge-access 1
root@cumulus:mgmt-vrf:~#

Do I even need this command? Thanks again for any comments!

Userlevel 4
Sean Cavanaugh wrote:

Were you using NCLU?

Why are you trying to touch the mgmt VRF? What is the goal here? 99/100 times you don't want to cross data-plane and control-plane traffic, eth0 is literally the out of band management port on the box which is not ASIC powered (SW powered)

Reply