Got it

What is VxLan and comparison between Vlan and VxLan

Latest reply: Nov 10, 2019 13:19:49 1203 4 3 0

VXLAN is an NVO3 network virtualization technology that encapsulates data packets sent from original hosts into UDP packets and encapsulates IP and MAC addresses used on the physical network in outer headers before sending the packets over an IP network. The virtual tunnel endpoint (VTEP) then decapsulates the packets and sends the packets to the destination host.

By leveraging VXLAN, a virtual network can accommodate a large number of tenants. Tenants can plan their own virtual networks without being limited by physical network IP addresses or broadcast domains. This technology significantly simplifies network management, allows VMs to migrate over a large Layer 2 network, and isolates tenants in a data center.

Similar to a traditional VLAN, a VXLAN also allows for intra- and inter-VXLAN communication.

Comparison Between VXLAN and VLAN

The following table lists the differences between VXLAN and VLAN.

ConceptVirtual Local Area Network
Virtual Extensible Local Area Network
Implementation MethodA physical LAN is divided into multiple BDs logically to limit the network to a small geographic range
Layer 2 virtual networks are established between networks with reachable routes. Such networks are not subject to geographical restrictions and can deliver a large-scale scalability
Supported capacityVLAN is the most commonly used network isolation technology. The VLAN field in packets is only 12 bits in length, which means that only a maximum of 4096 VLANs can be used on a network. In public cloud or other cloud computing scenarios involving tens of thousands or even more tenants, VLAN technology can no longer meet network isolation requirements.
VXLAN is a new network isolation technology defined in IETF RFC. It has a 24-bit segment identifier (VNI) and can isolate up to 16M (about 16 million) tenants. This technology effectively enables isolation of mass tenants in cloud computing
Network division modeVLAN IDs are used to divide broadcast domains. Hosts within a BD can communicate at Layer 2.
BDs are used to divide broadcast domains. VMs within a BD can communicate at Layer 2
Encapsulation modeA VLAN tag is added to packets.
During VXLAN encapsulation, a VXLAN header, UDP header, IP header, and outer MAC header are added in sequence to an original packet
Network communication modeInter-VLAN communication is implemented by VLANIF interfaces. As Layer 3 logical interfaces, VLANIF interfaces enable Layer 3 communication between VLANs.

Communication between VLANs or between VXLANs and non-VXLANs is implemented by VBDIF interfaces.

VBDIF interfaces are configured on VXLAN Layer 3 gateways and are Layer 3 logical interfaces based on BDs.

Limits broadcast domains: A broadcast domain is limited in a VLAN, which saves bandwidth and improves network processing capabilities.

Enhances LAN security: Packets from different VLANs are separately transmitted. Hosts in a VLAN cannot directly communicate with hosts in another VLAN

Location-independent capability: Services can be deployed flexibly at any location, solving network expansion issues related to server virtualization.

Flexible network deployment: VXLANs are constructed over the traditional network. They are easy to deploy and highly scalable while preventing broadcast storms on a large Layer 2 network.

Cloud service adaptation: A VXLAN is able to isolate ten millions of tenants and support large-scale deployment of cloud services.

Technical advantage: VXLAN uses MAC-in-UDP encapsulation. Such encapsulation mode does not rely on MAC addresses of VMs, reducing the number of MAC address entries required on a large Layer 2 network.

For more details, please visit:

  • x
  • convention:

Created Nov 9, 2019 00:02:01 Helpful(1) Helpful(1)

Thanks for the info
View more
  • x
  • convention:

MVE Created Nov 9, 2019 15:24:33 Helpful(0) Helpful(0)

Good post, thanks for sharing. Can you clarify me what is NVO3 stand for?
View more
  • x
  • convention:

MVE Created Nov 10, 2019 03:50:20 Helpful(0) Helpful(0)

NVO3 stands for Network Virtualization Overlays. The purpose of the NVO3 Work Group is to develop a set of protocols and/or protocol extensions that enable network virtualization within a data center (DC) environment that assumes an IP-based underlay. An NVO3 solution provides layer 2 and/or layer 3 services for virtual networks enabling multi-tenancy and workload mobility, addressing the issues described in the problem statement (including management and security), and consistent with the framework previously produced by the NVO3 WG.
View more
  • x
  • convention:

MVE Created Nov 10, 2019 13:19:49 Helpful(0) Helpful(0)

Thank you very much again!
View more
  • x
  • convention:


You need to log in to comment to the post Login | Register

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."

My Followers

Login and enjoy all the member benefits


Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Please bind your phone number to obtain invitation bonus.