From 584e6e021e3bdbb3a173734b1da92a331128d84c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marek=20K=C3=BCthe?= Date: Tue, 3 Jan 2023 01:11:13 +0100 Subject: [PATCH] add vxlan docs MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Marek Küthe --- docs/tunneling/iptunnel.md | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/docs/tunneling/iptunnel.md b/docs/tunneling/iptunnel.md index 90539c3..366fab2 100644 --- a/docs/tunneling/iptunnel.md +++ b/docs/tunneling/iptunnel.md @@ -1,7 +1,7 @@ # IP tunnel -*Note:* IP tunnels (includes GRE, GRETAP and SIT) are unencrypted. +*Note:* IP tunnels (includes GRE, GRETAP, SIT and VXLAN) are unencrypted. ## Generic Routing Encapsulation (GRE) @@ -60,3 +60,12 @@ GRETAP tunnels operate on layer 2 of the ISO/OSI model. To use a GRETAP tunnel, ## Simple Internet Transition (SIT) SIT tunnels can be created in the same way as GRE tunnels. The difference is that you write `type sit` instead of `type gre`. SIT tunnels are designed to encapsulate IPv6 packets, so a SIT tunnel must be established over IPv4. + +## VXLAN + +For VXLAN the type is changed to `vxlan`. Furthermore there are two additional parameters: +``` +ip link add type vxlan id remote local dstport +``` +`` (**V**irtual Extensible LA**N** **ID** ) is the ID of the VLAN. This can range from 1 to 16777216 (2^24). It must be the same for both peers and must not already be used. +`` is the port which is used for the VXLAN connection. It must be open on UDP. The port must be the same for both peers. Officially VXLAN has port 4789, but for historical reasons Linux uses port default 8472. If you specify a 0 as port, the default port default 8472 is used. If you don't specify a port, you get a warning.