Compare Products

Hide

Clear All

VS

Time: September 6th, 2023

What is VXLAN? VXLAN stands for Virtual Extensible LAN and is a widely used network virtualization technology in large Layer 2 networks. It was developed to address a series of issues in virtualization during the era of cloud computing.

What is VXLAN?

A logical VXLAN tunnel is established between the source and destination network devices using MAC in UDP (User Datagram Protocol) encapsulation. In other words, the original Ethernet packet sent by a virtual machine is encapsulated within a UDP packet, and then the outer layer is encapsulated with the IP packet header and Ethernet packet header of the physical network. This way, the encapsulated packet behaves like a normal IP packet and can be forwarded through the routing network. It's like giving virtual machines in the Layer 2 network the wings of routing, allowing them to break free from the structural limitations of Layer 2 and Layer 3 networks. 

Why is VXLAN needed?

This is closely related to the virtualization trend on the server side of data centers. On the one hand, server virtualization introduced dynamic VM migration, which requires a network that provides seamless access.

On the other hand, data centers have grown in scale with a significant increase in the number of tenants, necessitating a network that can isolate a massive number of tenants. VXLAN can meet these two key requirements.

The VXLAN network introduces the following new elements compared to traditional networks:

1. VTEP (VXLAN Tunnel Endpoints): These are the edge devices in the VXLAN network and serve as the starting and ending points of VXLAN tunnels. All related processing of VXLAN packets is performed on VTEPs. In summary, VTEP is an essential component in the VXLAN network. It can be either a standalone network device (such as Huawei's CE series switches) or a server hosting virtual machines. Its role will be revealed shortly.

2. VNI (VXLAN Network Identifier): As mentioned earlier, VLANs in Ethernet frames occupy only 12 bits, which limits their isolation capability in data center networks. The introduction of VNI specifically addresses this problem. VNI is a user identifier similar to VLAN ID, where each VNI represents a tenant and virtual machines with different VNI values cannot directly communicate at Layer 2. When encapsulating VXLAN packets, sufficient space is allocated to VNI to support the isolation of a massive number of tenants. The detailed implementation will be explained later in the document.

3. VXLAN Tunnel: "Tunnel" is a logical concept that is not new, such as the well-known Generic Routing Encapsulation (GRE). In simple terms, it transforms the original packet by encapsulating it, enabling it to be transmitted over a transport network (such as an IP network). From the perspective of the host, it appears as if there is a direct link between the source and destination of the original packet. This seemingly direct link is the "tunnel." As the name suggests, a "VXLAN tunnel" is used to transport VXLAN encapsulated packets and represents a virtual channel established between two VTEPs.

What are the differences between VLAN and VXLAN?

What is VXLAN? VLAN (Virtual LAN) and VXLAN (Virtual Extensible LAN) are network virtualization technologies used in Layer 2 networks. While both serve the purpose of network segmentation and isolation, they differ in several key aspects.

Aspect

VLAN (Virtual LAN)

VXLAN (Virtual Extensible LAN)

Network Layer

Layer 2 (Data Link Layer)

Layer 2 (Data Link Layer)

Scalability

Limited scalability due to the 12-bit VLAN ID, allowing a maximum of 4,096 VLANs.

Highly scalable with a 24-bit VXLAN Network Identifier (VNI), enabling 16 million VNIs.

Addressing

VLAN uses VLAN IDs to identify and separate broadcast domains.

VXLAN uses VXLAN Network Identifiers (VNIs) to isolate tenants and provide segmentation.

Spanning Domains

VLANs are confined to a single Layer 2 domain (single broadcast domain).

VXLAN allows stretching Layer 2 networks across Layer 3 domains (across IP networks).

Network Isolation

VLANs provide isolation within a Layer 2 domain, allowing different broadcast domains.

VXLAN enables network isolation across Layer 3 domains, supporting tenant separation.

Encapsulation

VLAN tags (802.1Q) are added to Ethernet frames, modifying the frame header.

VXLAN encapsulates entire Ethernet frames within UDP packets, preserving the original frame headers.

Multicast

VLANs rely on multicast or broadcast for communication within the same VLAN.

VXLAN uses unicast communication, reducing the reliance on multicast or broadcast.

Hardware Support

VLANs are supported by traditional network switches that understand VLAN tagging.

VXLAN requires specialized hardware or software gateways that support VXLAN encapsulation and decapsulation.

Network Overhead

VLANs add a 4-byte VLAN tag to Ethernet frames, resulting in a slight increase in overhead.

VXLAN adds a 50-byte VXLAN header and an 8-byte UDP header, increasing the overall packet size.

Ruijie Networks websites use cookies to deliver and improve the website experience.

See our cookie policy for further details on how we use cookies and how to change your cookie settings.

Cookie Manager

When you visit any website, the website will store or retrieve the information on your browser. This process is mostly in the form of cookies. Such information may involve your personal information, preferences or equipment, and is mainly used to enable the website to provide services in accordance with your expectations. Such information usually does not directly identify your personal information, but it can provide you with a more personalized network experience. We fully respect your privacy, so you can choose not to allow certain types of cookies. You only need to click on the names of different cookie categories to learn more and change the default settings. However, blocking certain types of cookies may affect your website experience and the services we can provide you.

  • Performance cookies

    Through this type of cookie, we can count website visits and traffic sources in order to evaluate and improve the performance of our website. This type of cookie can also help us understand the popularity of the page and the activity of visitors on the site. All information collected by such cookies will be aggregated to ensure the anonymity of the information. If you do not allow such cookies, we will have no way of knowing when you visited our website, and we will not be able to monitor website performance.

  • Essential cookies

    This type of cookie is necessary for the normal operation of the website and cannot be turned off in our system. Usually, they are only set for the actions you do, which are equivalent to service requests, such as setting your privacy preferences, logging in, or filling out forms. You can set your browser to block or remind you of such cookies, but certain functions of the website will not be available. Such cookies do not store any personally identifiable information.

Accept All

View Cookie Policy Details

Contact Us

Contact Us

How can we help you?

Contact Us

Get an Order help

Contact Us

Get a tech support

2024 Ruijie Networks Brand Awareness Survey

Your opinions and feelings are crucial for our improvement.

Fill in the survey