L3VPN WG2012-Jul-301 MVPN Extranet First, a little background: MVPN Effort that began in 2004 culminated in the set of RFCs 6511-6517 in 2012! (Well, really.

Slides:



Advertisements
Similar presentations
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 BGP based Virtual Private Multicast Service Auto-Discovery and Signaling.
Advertisements

March 2010IETF 77, MPLS WG1 Carrying PIM-SM in ASM mode Trees over P2MP mLDP LSPs draft-rekhter-pim-sm-over-mldp-01.txt Y. Rekhter, Juniper Networks R.
MPLS VPN.
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Multicast in BGP/MPLS VPNs and VPLS draft-raggarwa-l3vpn-mvpn-vpls-mcast-
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Point-to-Multipoint Pseudowire Signaling and Auto-Discovery in Layer.
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Multicast in BGP/MPLS VPNs draft-ietf-l3vpn-2547bis-mcast-00.txt.
L3VPN WG2012-Jul-301 MVPN/BGP Support for Customers That Use mLDP RFCs 6513/6514: support Multicast VPN Service for customers that use PIM provide extensive.
CS Summer 2003 Lecture 14. CS Summer 2003 MPLS VPN Architecture MPLS VPN is a collection of sites interconnected over MPLS core network. MPLS.
Slide Set 15: IP Multicast. In this set What is multicasting ? Issues related to IP Multicast Section 4.4.
Multicast VPN using BIER IETF 91, Honolulu ietf
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
Network based IP VPN Architecture using Virtual Routers Jessica Yu CoSine Communications, Inc. Feb. 19 th, 2001.
Multicast in L3VPNs Bruce Davie 1 draft-ietf-l3vpn-2547bis-mcast-03.txt 1. Not a draft co-author, or a multicast expert.
L3VPN WG2013-Nov-71 Global Table Multicast (GTM) Based on MVPN Protocols and Procedures draft-zzhang-l3vpn-mvpn-global-table-mcast-01.txt Service providers.
L3VPN WG2013-Nov-71 Ingress Replication P-Tunnels in MVPN I ngress Replication has always been one of the P-tunnel technologies supported by MVPN But there’s.
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP AS AN MVPN PE-CE Protocol draft-keyupate-l3vpn-mvpn-pe-ce-00 Keyur Patel,
March 7, 2005MOBIKE WG, IETF 621 Mobility Protocol Options for IKEv2 (MOPO-IKE) Pasi Eronen.
Multicast Routing Protocols NETE0514 Presented by Dr.Apichan Kanjanavapastit.
61st IETF Washington DC November 2004 BGP/MPLS IP Multicast VPNs draft-yasukawa-l3vpn-p2mp-mcast-00.txt Seisho Yasukawa (NTT) Shankar Karuna (Motorola)
BESS WG2015-Mar-251 MVPN Explicit Tracking and S-PMSI Wildcards RFCs 6513/6514 provide explicit tracking mechanism, to be optionally used when sending.
Commercial Peering Service Community Attribute Use in Internet2 CPS Caren Litvanyi lead network engineer peering team Internet2 NOC GigaPoP Geeks BOF January.
L3VPN WG2014-Jul-221 Ingress Replication P-Tunnels in MVPN I ngress Replication (IR) is one of the MVPN P-tunnel technologies But there’s a lot of confusing.
Interdomain IPv6 multicast Stig Venaas UNINETT. PIM-SM and Rendezvous Points Interdomain multicast routing is usually done with a protocol called PIM-SM.
March 21, 2006L3VPN WG 1 MVPN Update New version of “bgp encoding” draft –BGP update syntax and semantics reworked to reflect current thinking –Inter-AS.
8/5/04L3VPN WG1 Multicast in BGP/MPLS IP VPNs Finally added to charter! Base specification: draft-rosen-vpn-mcast –Four years old, with few changes –Basis.
Inter AS option D (draft-mapathak-interas-option-d-00) Manu Pathak Keyur Patel Arjun Sreekantiah November 2012.
1MPLS QOS 10/00 © 2000, Cisco Systems, Inc. rfc2547bis VPN Alvaro Retana Alvaro Retana
Base Specification for Multicast in BGP/MPLS VPNs draft-raggarwa-l3vpn-2547-mvpn-00.txt Rahul Aggarwal Juniper Networks.
Support for RSVP in Layer 3 VPNs draft-davie-tsvwg-rsvp-l3vpn-01.txt Bruce Davie François le Faucheur Ashok Narayanan Cisco Systems.
Congestion Issues Stewart Bryant
MPLS WG1 Targeted mLDP Base mLDP spec didn’t consider use of LDP multipoint extensions over Targeted mLDP sessions LDP speaker must choose “upstream LSR”,
July 24, 2007IETF 69, L3VPN WG1 Progress on Arch Doc draft-ietf-l3vpn-mcast-2547bis-mcast-05 Areas of new work: –Clarification of upstream multicast hop.
Nov. 8, 2006IDR WG Meeting1 IPv6 Next Hop for IPv4 Prefix In BGP Updates, NH not necessarily of same address family as NLRI Currently deployed examples:
Spring 2006CS 3321 Multicast Outline Link-state Multicast Distance-vector Multicast Protocol Independent Multicast.
1 ipv6-node-02.PPT/ 18 November 2002 / John Loughney IETF 55 IPv6 Working Group IPv6 Node Requirements draft-ietf-ipv6-node-requirements-02.txt John Loughney.
Support C-Bidir with Ingress Replication draft-ietf-l3vpn-mvpn-bidir-ingress-replication Jeffrey Zhang Yakov Rekhter Andrew Dolganow 89 th IETF, London.
Global Table Multicast with BGP-MVPN draft-zzhang-l3vpn-mvpn-global-table-mcast London, 89 th IETF L3VPN WG2013-Nov-71.
Protecting Multicast- Enabled Networks Matthew Davy Indiana University Matthew Davy Indiana University.
December 5, 2007IETF 70 L3VPN WG1 MVPN Profiles Why do we need “profiles”? –By design, architecture provides many choices: PE-PE C-multicast routing info.
1 Copyright © 2009 Juniper Networks, Inc. E-VPN for NVO Use of Ethernet Virtual Private Network (E-VPN) as the carrier-grade control plane.
L3VPN WG mLDP Recursive FEC Using mLDP through a Backbone where there is no Route to the Root draft-wijnands-mpls-mldp-recurs-fec Name changed.
VS (Virtual Subnet) draft-xu-virtual-subnet-03 Xiaohu Xu IETF 79, Beijing.
Covering Prefixes Outbound Route Filter for BGP-4 draft-bonica-l3vpn-orf-covering-prefixes-01 H. Jeng, l. Jalil, R. Bonica, Y. Rekhter, K. Patel, L. Yong.
L3VPN WG2012-Jul-301 Bidirectional P-tunnels in MVPN Bidirectional P-tunnel: MP2MP LSP per RFC 6388 PIM MDT per RFC 5015, GRE Encapsulation Accommodated.
MBGP and Customer Routes
MVPN/EVPN C-Multicast/SMET Route Enhancements Zhaohui Zhang, Robert Kebler Wen Lin, Eric Rosen Juniper Networks 96 th IETF, Berlin.
Global Table Multicast with BGP-MVPN Protocol
Multicast in BGP/MPLS VPN
MVPN Update Continued work on both architecture draft and BGP-MVPN draft Seeing “light at end of tunnel” ☺ Progress since last time: Carrier’s carrier.
(How the routers’ tables are filled in)
Multicast VPN using BIER
Huajin Jeng, Jeffrey Haas, Yakov Rekhter, Jeffrey Zhang
V4-over-v6 MVPNs.
Multicast geo-distribution control draft-rekhter-geo-distribution-control-00 Huajin Jeng – AT&T Jeffrey Haas, Yakov Rekhter, Jeffrey Zhang – Juniper IETF.
Support C-Bidir with Ingress Replication draft-zzhang-l3vpn-mvpn-bidir-ingress-replication Jeffrey Zhang Yakov Rekhter Andrew Dolganow 87th IETF, Berlin.
Multicast Signaling using BGP
Time to Start New Work Items
draft-wijnands-mpls-mldp-vpn-in-band-signaling-00
Loop Protection in EVPN Networks draft-snr-bess-evpn-loop-protect-00
EVPN Interworking with IPVPN
Update on draft-ietf-bess-mvpn-expl-track A. Dolganow J. Kotalwar E
EVPN Inter-subnet Multicast Forwarding
Implementing Multicast
PIM Backup DR Mankamana Mishra IETF-102
Virtual Hub-and-Spoke in BGP EVPNs
Inter-AS MVPN: Multihoming Considerations
Multicast in L3VPN Signaled by EVPN Type-5 Routes
BGP Signaled Multicast
MVPN/EVPN-BUM Segmented Forwarding
MVPN/MSDP SA Interoperation
Presentation transcript:

L3VPN WG2012-Jul-301 MVPN Extranet First, a little background: MVPN Effort that began in 2004 culminated in the set of RFCs in 2012! (Well, really finished in 2010, mostly) Left a few loose ends, including “wild cards” and “extranet” Wild cards spec’ed in RFC 6625 ( ) Extranet is last of the big missing pieces Two individual extranet drafts have existed for awhile Draft-rosen-l3vpn-mvpn-extranet, covering only PIM C-multicast, 2010, based on text that appeared in 2008 Draft-raggarwa-l3vpn-bgp-mvpn-extranet, covering only BGP C-multicast, 2009 Editors have been working (on and off) over past year to merge these two drafts Almost done, didn’t quite make the pre-Vancouver deadline

L3VPN WG2012-Jul-302 What Took So Long? Sorry about the delay Merge turned out to be fairly intricate: not due to any technical disagreement, due to complexity of the subject matter, and hard-to-please editors MVPN Extranet is actually a fairly complex feature Base L3VPN mechanisms isolate VPNs from each other, but: enable holes to be punched through the isolation mechanisms to allow some inter-VPN traffic, assuming that Inter-VPN traffic must use unambiguous addressing in the face per-VPN overlapping address spaces MVPN adds further complexity: multicast considerations wildcard mechanisms need to accommodate multiple functional models

L3VPN WG2012-Jul-303 Purpose of This Presentation Briefly outline some of the fundamental issues Briefly outline the solutions Whet the WG’s curiousity so that folks will read the draft when it comes out!

L3VPN WG2012-Jul-304 Some Basic Concepts Extranet C-source: transmitter allowed to send multicast data to (multiple) other VPNs Extranet C-group: ASM group address whose transmitter(s) is(are) not necessarily in same VPN as receivers; receivers can be in different VPNs too Extranet C-flow: (C-S,C-G) multicast data stream with receivers not necessarily in same VPN as transmitter(s) Extranet C-RP: rendezvous point for extranet C-group, not necessarily in same VPN as transmitters and/or receivers

L3VPN WG2012-Jul-305 Some Basic Assumptions Certain sources/RPs are designated by the VPN customer as extranet C-sources; customer communicates this information to SP Extranet C-sources do not also transmit non-extranet C- flows If a receiver can get any C-flow from a given source, it can get all the C-flows from that sources If a receiver can get any traffic to a given ASM multicast group, it can get all the traffic to that group, regardless of sources

L3VPN WG2012-Jul-306 UMH-Eligible Extranet C-S/C-RP Routes RFC 6513 defines notion of route that is eligible for use in determining Upstream Multicast Hop of a given C-S/C-RP Either unicast VPN-IP routes or SAFI-129 routes Use of SAFI-129 prevents unicast extranet traffic from being sent to an extranet multicast source Route to extranet C-RP must be VPN-IP route, since PIM Registers are unicast packets Extranet requires extra RT provisioning: If C-S in VPN A is to transmit to C-R in VPN B, then A must export route to C-S with an RT that is an import RT of B Usually don’t want all routes from A to be exported to B, so some careful RT choices must be made

L3VPN WG2012-Jul-307 RTs on MCAST-VPN Routes If an extranet C-source from VPN A is exported to VPN B, RTs must be assigned to MCAST-VPN routes to ensure: B imports I-PMSI A-D route from A If S-PMSI A-D route advertises tunnel that may carry extranet C- flow (C-S,C-G), for some C-G, route must be imported by B VPN with receivers for an extranet C-group must import: x-PMSI A-D routes advertising tunnels carrying flows in that group, Source Active A-D routes advertising C-sources of that group In some cases, VPNs with receivers must originate I-PMSI A-D routes to be imported by VPNs with transmitters RT assignment rules of RFC6514 still apply, but additional rules are added

L3VPN WG2012-Jul-308 Additional RT Assignment Constraints on MCAST-VPN Routes More restrictive rules are added Will not cover details in presentation, see draft But the restrictions are the following sort of thing: except in certain defined circumstances, if a P-tunnel is not to be used to carry traffic from a given extranet C-sources, it must not be advertised in a PMSI A-D route that carries an RT in common with the route to that C-source The more restrictive rules are used to implement a strategy of “discard packets from the wrong tunnel”, which is needed under specified circumstances Note that this is not the same as “discard packets from wrong upstream PE”, as specified in RFC 6513, because in extranet, the wrong tunnel can come from the right PE Needed because of some address ambiguity issues

L3VPN WG2012-Jul-309 Extranet and Address Ambiguity This is really the key technical problem We impose certain address uniqueness requirements that are assumed to be met: If C-S in VPN A sends a flow to C-R1 in VPN B and C- R2 in VPN C, then C-S must have an address that is unique in VPNs A,B,C If C-G is the group address of that flow, and C-G is an ASM address, C-G must be a unique address in VPNs A, B, C, and its C-RP must have a similarly unique address But this does not prevent all address ambiguity problems!

L3VPN WG2012-Jul-3010 Example of Extranet Address Ambiguity PE2 PE1 S2 and S2 are different systems (i.e., ambiguous address between VPNs A and B) The address uniqueness rules are not violated as long as S2 is not imported by D and S2 is not imported by C But suppose a tunnel from A carries both (S1,G) and (S2,G) Then C must import A-D route from A announcing that tunnel C must also import A-D route from B announcing the other tunnel

L3VPN WG2012-Jul-3011 Example of Extranet Address Ambiguity VRF C gets both (S2,G) and (S2,G) VRF C MUST discard (S2,G), or R1 will get the both streams, and R1 will have no way distinguish them. PE2 PE1

L3VPN WG2012-Jul-3012 Solutions? Provision a policy that prevents this from happening E.g., no more than one source (or one ASM group) per tunne l or Make sure that: the UMH-eligible route matching S2 has no RT in common with the A-D route that advertises the tunnel from B the UMH-eligible route matching S2 has no RT in common with the A-D route that advertises the tunnel from A Now C control plane can infer that traffic from S2 shouldn’t come from B’s tunnel Data plane at C is then set up to discard (S2,G) traffic from B’s tunnel PE2 PE1

L3VPN WG2012-Jul-3013 Functional Models Extranet Separation or not? Option for ensuring that no tunnel contains both extranet C-flows and non-extranet C-flows (e.g., different I-PMSIs for each) Differing opinions on whether this is worthwhile Spec’d only for BGP PE-PE C-multicast Is it ever desirable for ingress PE to transmit a single flow on multiple PMSIs? Differing opinions on whether this is worthwhile Multiple transmission spec’ed only for PIM PE-PE We have not tried to provide every possible combination, in absence of demonstrated interest

L3VPN WG2012-Jul-3014 Wild Card Issues RFC 6625 contains elaborate set of rules for determining whether to expect (C-S,C-G) and/or (C-*,C-G) traffic on a particular P-tunnel, depending upon whether the P-tunnel is advertised in an I-PMSI, (C-S,C-*) S-PMSI, (C-*,C-G) S-PMSI, (C-*,C-*) S-PMSI, or (C-S,C-G) S-PMSI A-D route These rules are augmented, in certain specific cases, to require that a C-flow is expected from a given P-tunnel only if that P-tunnel is advertised in an x-PMSI A-D route that has an RT in common with the installed UMH-eligible route to the C-S or C-RP. This is important for determining the right tunnel when wild cards are used

L3VPN WG2012-Jul-3015 Stuff Specific to PE-PE PIM PE-PE PIM requires tunnels to be grouped into emulated LANs, and Joins are send over those “e-lans”. A VRF that is part of an extranet is on multiple “e-lans” In one model, must be able to receive from multiple e-lans In another model, must be able to send on multiple e-lans Or both … Rules are given for performing the grouping of tunnels into e-lans Basically, x-PMSI A-D routes advertising P-tunnels that are part of the same e-lan must carry an RT in common, and this RT must not be carried by any other x-PMSI A-D routes In some cases, multiple I-PMSI A-D routes must be originated by a given VRF, this is spec’ed out in detail

L3VPN WG2012-Jul-3016 PIM-specific vs. BGP-specific Rules For PIM, once tunnels are properly grouped into e-lans, rules for specifying which tunnel to send a join on, which tunnel to expect a flow from, etc., can be inferred from “ordinary” PIM procedures For BGP, we don’t have this “level of indirection”, all procedures must be explicitly spelled out in terms of the BGP routes and their attributes Thus the draft has PIM-specific and BGP-specific sections As already mentioned, some functional models have not been spec’ed for both

L3VPN WG2012-Jul-3017 Next Steps Finish and post the draft (hopefully this August) Ask for acceptance as WG draft Critical examination and review by WG members

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.