MPLS-VPN/BGP Approach Hari Rakotoranto Technical Marketing Engineer

Slides:

Advertisements

Similar presentations

Virtual Links: VLANs and Tunneling

Advertisements

APNOMS03 1 A Resilient Path Management for BGP/MPLS VPN Jong T. Park School of Electrical Eng. And Computer Science Kyungpook National University

Identifying MPLS Applications

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing the MPLS VPN Routing Model.

Deployment of MPLS VPN in Large ISP Networks

Internetworking II: MPLS, Security, and Traffic Engineering

Juniper Networks, Inc. Copyright © L2 MPLS VPNs Hector Avalos Technical Director-Southern Europe

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 Module Summary The VRF table is a virtual routing and forwarding instance separating sites.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Introducing VPNs.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—2-1 Label Assignment and Distribution Introducing Typical Label Distribution in Frame-Mode MPLS.

© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Deploying MPLS L3VPN Nurul Islam Roman 1.

© 2001, Cisco Systems, Inc. Ethernet over Multiprotocol Label Switching.

Introducing MPLS Labels and Label Stacks

CS Summer 2003 Lecture 14. CS Summer 2003 MPLS VPN Architecture MPLS VPN is a collection of sites interconnected over MPLS core network. MPLS.

MPLS / VPN Connectivity between VPNs JET 2004/03/15.

MPLS H/W update Brief description of the lab What it is? Why do we need it? Mechanisms and Protocols.

CS Summer 2003 Lecture 13. CS Summer 2003 MP_REACH_NLRI Attribute The MP_REACH_NLRI attribute is encoded as shown below:

© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.

MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5#-1 MPLS VPN Implementation Configuring OSPF as the Routing Protocol Between PE and CE Routers.

© 2009 Cisco Systems, Inc. All rights reserved.ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Planning the Enterprise-to-ISP Connection.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring Small-Scale Routing Protocols Between PE and CE Routers.

SMUCSE 8344 MPLS Virtual Private Networks (VPNs).

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Forwarding MPLS VPN Packets.

Ietf-64 draft-kulmala-l3vpn-interas-option-d-01.txt Additional Inter AS option for BGP/MPLS IP VPN IETF-64 draft-kulmala-l3vpn-interas-option-d-01.txt.

Network based IP VPN Architecture using Virtual Routers Jessica Yu CoSine Communications, Inc. Feb. 19 th, 2001.

MPLS VPN Security assessment

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Using MPLS VPN Mechanisms of Cisco IOS Platforms.

V1.1 VPLS Principle. Objectives Understand the basics of mpls layer 2 VPN Understand VPLS principle.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—3-1 Frame-Mode MPLS Implementation on Cisco IOS Platforms Configuring Frame-Mode MPLS on Cisco.

1 © 2003 Cisco Systems, Inc. All rights reserved. MPLS VPN Inter-AS, 12/03 INTER-AUTONOMOUS SYSTEM MPLS VPN December 2003.

1 © 1999, Cisco Systems, Inc _05F9_c2 1 NW’99 Vienna © 1999, Cisco Systems, Inc. MPLS VPNs Peter Tomsu Senior Consultant EMEA

1 Copyright © 2012, Elsevier Inc. All rights Reserved Chapter 4 Advanced Internetworking Computer Networks, 5th Edition.

1 MPLS Bootcamp © 2000, Cisco Systems, Inc. Cisco Confidential MPLS Bootcamp MPLS VPN Khalid Raza, Kyle Bearden, & Munther Antoun March, 2001 Version 0.1.

MPLS VPN Configurations Khalid Raza

27 th of SeptemberAgnes PouelePage 1 MPLS Next Generation Networking September 2000 TF-TANT MPLS TESTING.

1 © 2001, Cisco Systems. MPLS Architecture Overview Jay Kumarasamy Adopted from Stefano Previdi’s presentation.

MultiProtocol Label Switching (MPLS) July 29, 2000TECON 2000 Pramoda Nallur Alcatel Internetworking Division.

BGP-MPLS VPN extension for IPv4/IPv6 Hybrid Network Defeng Li Huawei Technologies.

CS 540 Computer Networks II Sandy Wang

© 2006 Cisco Systems, Inc. All rights reserved. FRAME MODE MPLS IMPLEMENTATION.

MPLS and VPNs (David Andersen) (Nick Feamster) February 18, 2008.

Inter AS option D (draft-mapathak-interas-option-d-00) Manu Pathak Keyur Patel Arjun Sreekantiah November 2012.

1MPLS QOS 10/00 © 2000, Cisco Systems, Inc. rfc2547bis VPN Alvaro Retana Alvaro Retana

Copyright © 2004 Juniper Networks, Inc. 1 Operational Aspects of Virtual Private LAN Service Kireeti Kompella.

MPLS VPNs by Richard Bannister. The Topology The next two slides display both the physical and logical topology of our simple example network –Please.

MULTI-PROTOCOL LABEL SWITCHING Brandon Wagner. Lecture Outline  Precursor to MPLS  MPLS Definitions  The Forwarding Process  MPLS VPN  MPLS Traffic.

Module 2 MPLS Concepts.

© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—6-1 Scaling Service Provider Networks Scaling IGP and BGP in Service Provider Networks.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—1 MPLS Lab Physical Connection Diagram.

Internet Traffic Engineering Motivation: –The Fish problem, congested links. –Two properties of IP routing Destination based Local optimization TE: optimizing.

MULTI-PROTOCOL LABEL SWITCHING By: By: YASHWANT.V YASHWANT.V ROLL NO:20 ROLL NO:20.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—1 MPLS Lab Physical Connection Diagram.

1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID MPLS Introduction.

Multiprotocol Label Switching (MPLS) Routing algorithms provide support for performance goals – Distributed and dynamic React to congestion Load balance.

1 Overview of VPN. 2 Private Networks Leased Lines Organization A Site 1 Organization A Site 2 Organization A Site 3 Organization B Site 1 Organization.

MBGP and Customer Routes

MPLS Introduction Computer Networks 2007 Week 9 Lecture 1 by Donald Neal.

MPLS Virtual Private Networks (VPNs)

Advanced Computer Networks

MPLS VPN Implementation

Hector Avalos Technical Director-Southern Europe

Using MPLS/VPN for Policy Routing

MPLS Basics 2 2.

MPLS - How does it work ?.

MPLS VPNs by Richard Bannister.

Kireeti Kompella Juniper Networks

Experiences with Implementing MPLS/VPN Services

Presentation transcript:

MPLS-VPN/BGP Approach Hari Rakotoranto Technical Marketing Engineer

Agenda MPLS Business Perspective VPN Concept MPLS VPN

Virtual Private Networking: A $24B Opportunity 1998 VPN Service Distribution WW VPN Service Revenues ($B) Source: CIMI Corp. Barriers? VPNs Opportunity

Business Perspective Businesses are building on IP Businesses need private IP services Customers Suppliers Partners Telecommuters Mobile Users Remote Offices IP Intranet IP Extranet

Agenda MPLS Business Perspective VPN Concept MPLS VPN

Virtual Private Networks Concepts 6 © 2000, Cisco Systems, Inc. NW’00 Paris

Virtual Private Networks A network infrastructure delivering private network services over a public infrastructure Certainly not a new concept

Service Provider Network Provider Edge (PE) device VPN Site VPN - Overlay Model CPE (CE) Device Virtual Circuit Layer-3 Routing Adjacency

VPN - Overlay Model Private trunks across a telco/SP shared infrastructure leased/dialup lines FR/ATM virtual circuits IP(GRE) tunnelling Point-to-point solution between customer sites how to size inter-site circuit capacities ? full mesh requirement for optimal routing CPE routing adjacencies between sites

Service Provider Network Provider Edge (PE) Router VPN Site CPE (CE) Router Layer-3 Routing Adjacency VPN - Peer-to-Peer Model

Provider edge (PE) device exchanges routing information with CPE all customer routes carried within SP IGP simple routing scheme for VPN customer routing between sites is optimal circuit sizing no longer an issue Private addressing is not an option Addition of new site is simpler no overlay mesh to contend with

The Solution: MPLS A new paradigm that delivers the best of both worlds: Privacy of ATM, Frame Relay flexibility and scalability of IP IP business servicesFoundation for IP business services flexible grouping of users and value-added services Low cost managed IP servicesLow cost managed IP services scales to large and small private networks Based on RFC2547bis.

Agenda MPLS Business Perspective VPN Concept MPLS VPN

P Router MPLS/VPN Backbone VPN A SITE-2 Site-1 routes Site-2 routes Site-3 routes Site-4 routes MP-iBGP Basic Intranet Model Site-3 & Site-4 routes RT=VPN-A Site-1 & Site-2 routes RT=VPN-A Site-1 routes Site-2 routes Site-3 routes Site-4 routes SITE-1SITE-3 SITE-4

MPLS VPN mechanisms VRF and Multiple Routing Instances Site-1Site-2Site-3Site-4 Logical view Routing view VRF for site-1 Site-1 routes Site-2 routes VRF for site-4 Site-3 routes Site-4 routes VRF for site-2 Site-1 routes Site-2 routes Site-3 routes VRF for site-3 Site-2 routes Site-3 routes Site-4 routes Site-1 Site-3 Site-4 Site-2 VPN-A VPN-C VPN-B PE PP Multihop MP-iBGP

MPLS VPN Connection Model PE-1 VPN Backbone IGP PE-2 P P P P PE routers receive IPv4 updates (EBGP, RIPv2, OSPF, Static) PE routers translate into VPN-IPv4 Assign a SOO and RT based on configuration Re-write Next-Hop attribute Assign a label based on VRF and/or interface Send MP-iBGP update to all PE neighbors BGP,RIPv2 update for Net1,Next-Hop=CE-1 VPN-IPv4 update: RD:Net1, Next-hop=PE-1 SOO=Site1, RT=Green, Label=(intCE1) CE-1 Site-2 VPN-IPv4 update is translated into IPv4 address (Net1) put into VRF green since RT=Green and advertised to CE-2 Site-1 CE-2

MPLS VPN Connection Model Receiving PEs translate to IPv4 Insert the route into the VRF identified by the RT attribute (based on PE configuration) The label associated to the VPN-IPv4 address will be set on packet forwarded towards the destination PE-1 VPN Backbone IGP PE-2 P P P P BGP,RIPv2 update for Net1,Next-Hop=CE-1 VPN-IPv4 update: RD:Net1, Next-hop=PE-1 SOO=Site1, RT=Green, Label=(intCE1) CE-1 Site-2 VPN-IPv4 update is translated into IPv4 address (Net1) put into VRF green since RT=Green and advertised to CE-2 Site-1 CE-2

MPLS/VPN Packet Forwarding

P router In Label FEC Out Label /32 - In Label FEC Out Label /32 POP In Label FEC Out Label /32 41 MPLS/VPN Packet Forwarding Paris Use label implicit-null for destination /32 Use label 41 for destination /24 VPN-v4 update: RD:1:27: /24, NH= SOO=Paris, RT=VPN-A, Label=(28) PE-1 London PE and P routers have BGP next-hop reachability through the backbone IGP Labels are distributed through LDP corresponding to BGP Next- Hops or RSVP with Traffic Engineering /24

In Label FEC Out Label /32 41 MPLS/VPN Packet Forwarding Paris PE-1 London /24 Ingress PE receives normal IP packets PE router performs IP Longest Match from VPN FIB, finds iBGP next-hop and imposes a stack of labels VPN-A VRF /24, NH= Label=(28)

In Label FEC Out Label /32 POP MPLS/VPN Packet Forwarding Paris PE-1 London / VPN-A VRF /24, NH= Label=(28) In Label FEC Out Label 28(V) /24 - VPN-A VRF /24, NH=Paris Penultimate PE router removes the IGP label Penultimate Hop Popping procedures (implicit-null label) Egress PE router uses the VPN label to select which VPN/CE to forward the packet to VPN label is removed and the packet is routed toward the VPN site

22 © 2000, Cisco Systems, Inc. NW’00 Paris