Bridge-domain bridging allows Layer 2 switching across multiple sub-interfaces. Each sub-interface, configured with encapsulation dot1q, becomes part of a common bridge-domain. This setup enables an Ethernet LAN (ELAN)-like service across sub-interfaces.

The following steps outline how to configure Layer 2 sub-interfaces, encapsulation types, rewrite operations, and bridge domains on OcNOS for various L2 service scenarios.

Create sub-interface xe1.100 and define a VLAN range (100 to 200) using 802.1Q encapsulation. This enables the interface to handle multiple VLAN-tagged traffic.

Apply 802.1ad (Q-in-Q) encapsulation to the sub-interface for VLANs 100 to 200, allowing service provider-style tunneling with S-tags.

Set up double VLAN tagging (both outer and inner VLAN 10) on xe1.100 using dot1q encapsulation. This prepares the interface to handle nested VLAN tags.

Configure sub-interface xe1.200 with outer tag 20 (dot1ad) and inner tag 20 (dot1q), enabling Q-in-Q double tagging.

Assign the default encapsulation type to the interface, which allows any traffic not matched by specific sub-interfaces.

Configure the interface to accept untagged traffic. This is typical for access ports connected to hosts or customers.

Configure xe1.1 to add VLAN 100 (with TPID 0x8100) to incoming traffic that matches VLAN 10. On xe2.2, configure double-tagged encapsulation to match the pushed frame.

Set xe1.1 to translate VLAN 200 to 100 using TPID 0x9100. This is useful for interoperability between customer and provider VLAN schemes.

Configure xe1.1 to remove the VLAN tag from incoming frames. On xe2.2, accept the resulting untagged traffic.

Remove all sub-interfaces configured under xe1.

In a bridge-domain, static MAC addresses can be configured on specific sub-interfaces to control traffic flow precisely. This setup supports Layer 2 switching between sub-interfaces, whether they reside on the same or different physical ports.

The bridge-domain uses 802.1Q VLAN tagging to identify and separate traffic. Broadcast, unknown Unicast, and Multicast (BUM) traffic is flooded within the bridge-domain, ensuring delivery even in the absence of MAC learning. For known unicast traffic, forwarding decisions are based on the Layer 2 forwarding database (FDB).

When a destination MAC address is statically configured on a sub-interface, all matching traffic will egress only via that sub-interface, eliminating unnecessary flooding. This deterministic forwarding improves efficiency and enhances control over traffic paths.

Confirm that static MAC entries and sub-interfaces are correctly attached to bridge-domain 1.

Observe traffic flow patterns on each sub-interface to validate unicast forwarding based on the static MACs.

Verify that the static MAC entries are configured correctly and are active in the bridge-domain.

The following new commands are introduced as part of the static MAC support enhancement; for more details, refer to the Layer 2 Sub-interface Commands section.

MAC not learning: Ensure correct VLAN tags and that sub-interfaces are operational.

Flooding despite known MAC: Check for missing static entries or bridge-domain misconfiguration.

No traffic flow: Use the show interface counters rate command to verify Transmit (TX) and Receive (RX) interface activity.

The following provides definitions for key terms or abbreviations and their meanings used throughout this document: