© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5#-1 MPLS VPN Implementation Configuring OSPF as the Routing Protocol Between PE and CE Routers.

Slides:



Advertisements
Similar presentations
MPLS VPN.
Advertisements

Identifying MPLS Applications
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing the MPLS VPN Routing Model.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing MPLS VPN Architecture.
BGP Overview Processing BGP Routes.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring BGP as the Routing Protocol Between PE and CE Routers.
Multi-Area OSPF Multi-area OSPF networks can be difficult to design, and typically demand more administrative attention than any other popular interior.
Lonnie Decker Multiarea OSPF for CCNA Department Chair, Networking/Information Assurance Davenport University, Michigan August 2013 Elaine Horn Cisco Academy.
1 © 2000, Cisco Systems, Inc. Integrated-ISIS Route Leaking.
Designing OSPF Networks
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 Module Summary The VRF table is a virtual routing and forwarding instance separating sites.
Chapter 9: Access Control Lists
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 6: Multiarea OSPF Scaling Networks.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring VRF Tables.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—2-1 Label Assignment and Distribution Introducing Typical Label Distribution in Frame-Mode MPLS.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Troubleshooting MPLS VPNs.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Routing Working at a Small-to-Medium Business or ISP – Chapter 6.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—3-1 Determining IP Routes Introducing Routing.
CS Summer 2003 Lecture 14. CS Summer 2003 MPLS VPN Architecture MPLS VPN is a collection of sites interconnected over MPLS core network. MPLS.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 BSCI Module 4 Lesson 3 The IS-IS Protocol BSCI Module 4 Lesson 3 Configuring Basic Integrated.
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—4-1 Implement an IPv4-Based Redistribution Solution Operating a Network Using Multiple IP Routing.
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—3-1 Implementing a Scalable Multiarea Network OSPF- Based Solution Configuring and Verifying.
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—7-1 Integrating Internet Access with MPLS VPNs Implementing Internet Access as a Separate VPN.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring Small-Scale Routing Protocols Between PE and CE Routers.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Forwarding MPLS VPN Packets.
Objectives After completing this chapter you will be able to: Describe hierarchical routing in OSPF Describe the 3 protocols in OSPF, the Hello, Exchange.
1 Semester 2 Module 6 Routing and Routing Protocols YuDa college of business James Chen
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Using MPLS VPN Mechanisms of Cisco IOS Platforms.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—3-1 Frame-Mode MPLS Implementation on Cisco IOS Platforms Configuring Frame-Mode MPLS on Cisco.
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—4-1 Implement an IPv4-Based Redistribution Solution Configuring and Verifying Route Redistribution.
Routing and Routing Protocols Routing Protocols Overview.
Code : STM#520-1 Samsung Electronics Co., Ltd. OfficeServ7400 Router Operation Distribution EnglishED01.
Chapter 9. Implementing Scalability Features in Your Internetwork.
© 2002, Cisco Systems, Inc. All rights reserved. 1 Determining IP Routes.
© 2001, Cisco Systems, Inc. A_BGP_Confed BGP Confederations.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 2 Single-Area OSPF.
7400 Samsung Confidential & Proprietary Information Copyright 2006, All Rights Reserved. -0/35- OfficeServ 7x00 Enterprise IP Solutions Quick Install Guide.
OSPFv3 as a PE-CE Routing Protocol
© 2003, Cisco Systems, Inc. All rights reserved..
© 2002, Cisco Systems, Inc. All rights reserved..
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—6-1 Scaling Service Provider Networks Scaling IGP and BGP in Service Provider Networks.
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—3-1 Implementing a Scalable Multiarea Network OSPF-Based Solution Planning Routing Implementations.
1 © 2004, Cisco Systems, Inc. All rights reserved. CCNA 1 Module 10 Routing Fundamentals and Subnets.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—5-1 Customer-to-Provider Connectivity with BGP Connecting a Multihomed Customer to a Single Service.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—3-1 Route Selection Using Policy Controls Applying Route-Maps as BGP Filters.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—2-1 BGP Transit Autonomous Systems Forwarding Packets in a Transit AS.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—1-1 BGP Overview Understanding BGP Path Attributes.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—3-1 Route Selection Using Policy Controls Using Multihomed BGP Networks.
BGP Transit Autonomous System
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—3-1 Implementing a Scalable Multiarea Network OSPF- Based Solution Configuring and Verifying.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—5-1 Customer-to-Provider Connectivity with BGP Connecting a Multihomed Customer to Multiple Service.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—6-1 Scaling Service Provider Networks Introducing Confederations.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Routing Working at a Small-to-Medium Business or ISP – Chapter 6.
Instructor Materials Chapter 7: EIGRP Tuning and Troubleshooting
Optimizing Routing 1. Using Multiple Routing Protocols
Working at a Small-to-Medium Business or ISP – Chapter 6
BGP 1. BGP Overview 2. Multihoming 3. Configuring BGP.
Link State Routing protocol
Routing and Routing Protocols: Routing Static
© 2002, Cisco Systems, Inc. All rights reserved.
© 2002, Cisco Systems, Inc. All rights reserved.
Chapter 3: Dynamic Routing
Chapter 9: Multiarea OSPF
Chapter 2: Static Routing
Chapter 9: Multiarea OSPF
Working at a Small-to-Medium Business or ISP – Chapter 6
Chapter 9: Multiarea OSPF
© 2002, Cisco Systems, Inc. All rights reserved.
Presentation transcript:

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5#-1 MPLS VPN Implementation Configuring OSPF as the Routing Protocol Between PE and CE Routers

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-2 Outline Overview What Is the Enhanced OSPF Hierarchical Model? Propagating OSPF Customer Routes Implementing MPLS VPN as an OPSPF Superbackbone Configuring OSPF PE-CE Routing Using the OSPF Down Bit Optimizing Packet Forwarding Across the MPLS VPN Backbone Using the OSPF Tag Field What Is a Sham Link? Configuring a Sham Link Summary

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-3 OSPF Hierarchical Model OSPF divides a network into areas, all of them linked through the backbone (Area 0). Areas could correspond to individual sites from an MPLS VPN perspective.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-4 OSPF in an MPLS VPN Routing Model From the customer perspective, an MPLS VPN-based network has a BGP backbone with IGP running at customer sites. Redistribution between IGP and BGP is performed to propagate customer routes across the MPLS VPN backbone.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-5 OSPF in an MPLS VPN Routing Model: OSPF-BGP Redistribution Issue

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-6 OSPF in an MPLS VPN Routing Model: Classic OSPF-BGP Redistribution OSPF route type is not preserved when the OSPF route is redistributed into BGP. All OSPF routes from a site are inserted as external (type 5 LSA) routes into other sites. Result: OSPF route summarization and stub areas are hard to implement. Conclusion: MPLS VPN must extend the classic OSPF-BGP routing model.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-7 OSPF Superbackbone: OSPF-BGP Hierarchy Issue OSPF Area 0 might extend into individual sites. The MPLS VPN backbone has to become a superbackbone for OSPF.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-8 OSPF in MPLS VPNs: Goals OSPF between sites shall not use normal OSPF-BGP redistribution. OSPF continuity must be provided across the MPLS VPN backbone: –Internal OSPF routes should remain internal OSPF routes. –External routes should remain external routes. –OSPF metrics should be preserved. CE routers run standard OSPF software.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-9 OSPF Superbackbone: Route Propagation Example

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-10 OSPF Superbackbone: Rules OSPF superbackbone behaves exactly like Area 0 in regular OSPF: PE routers are advertised as Area Border Routers. Routes redistributed from BGP into OSPF appear as interarea summary routes or as external routes (based on their original LSA type) in other areas. Routes from Area 0 at one site appear as interarea routes in Area 0 at another site.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-11 OSPF Superbackbone: Implementation Extended BGP communities are used to propagate OSPF route type across BGP backbone. OSPF cost is copied into MED attribute.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-12 OSPF Superbackbone: Implementation (Cont.) OSPF route type is copied into extended BGP community on redistribution into BGP. Egress PE router performs interarea transformation.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-13 External OSPF routes are propagated in the same way as internal OSPF routes across the superbackbone. External metric and route type are preserved. OSPF Superbackbone: External Routes

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-14 Routes from the MP-BGP backbone that did not originate in OSPF are still subject to standard redistribution behavior when inserted into OSPF. OSPF Superbackbone: Mixing Routing Protocols

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-15 Configuring PE-CE OSPF Routing Follow these steps to configure OSPF as the PE-CE routing protocol: Configure per-VRF copy of OSPF. Configure redistribution of MP-BGP into OSPF. Configure redistribution of OSPF into MP-BGP.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-16 router ospf process-id vrf vrf-name... Standard OSPF parameters... router(config)# This command starts the per-VRF OSPF routing process. The total number of routing processes per router is limited to 32. redistribute bgp as-number subnets router(config-router)# This command redistributes MP-BGP routes into OSPF. The subnets keyword is mandatory for proper operation. Configuring PE-CE OSPF Routing (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-17 router bgp as-number address-family ipv4 vrf vrf-name redistribute ospf process-id [match [internal] [external-1] [external-2]] router(config)# OSPF-BGP route redistribution is configured with the redistribute command under the proper address-family command. Without the OSPF match keyword specified, only internal OSPF routes are redistributed into OSPF. Configuring PE-CE OSPF Routing (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-18 OSPF Down Bit: Routing Loops between MP-BGP and OSPF

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-19 OSPF Down Bit: Loop Prevention An additional bit (down bit) has been introduced in the options field of the OSPF LSA header. PE routers set the down bit when redistributing routes from MP-BGP into OSPF. PE routers never redistribute OSPF routes with the down bit set into MP-BGP.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-20 OSPF Down Bit: Loop Prevention (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-21 Optimizing of Packet Forwarding Across the MPLS VPN Backbone

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-22 The PE routers ignore OSPF routes with the down bit set for routing purposes: –These routes originated at other sites; therefore, the traffic toward them should go via the MP-BGP backbone. The routing bit is not set on OSPF routes with the down bit set: –These routes do not enter the IP routing table, even when they are selected as the best routes using the SPF algorithm. Optimizing of Packet Forwarding Across the MPLS VPN Backbone (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-23 Optimizing of Packet Forwarding Across the MPLS VPN Backbone (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-24 OSPF Tag Field: Routing Loops Across OSPF Domains

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-25 OSPF Tag Field: Operation The tag field in external OSPF routes is used to detect cross-domain routing loops. PE routers set the tag field to the BGP AS number when redistributing non-OSPF routes from MP-BGP into OSPF. The tag field is propagated between OSPF domains when the external OSPF routes are redistributed between OSPF domains. PE routers filter external OSPF routes to MP-BGP with OSPF tag field AS numbers matching BGP AS numbers.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-26 OSPF Tag Field: Usage Guidelines Internal OSPF routes have no tag field. This technique does not detect cross-domain routing information loops for routes inserted as internal OSPF routes by the PE routers. The tag field can be set manually on the router, redistributing routes between OSPF domains with the redistribute ospf source-process-id tag value command. Alternatively, only the internal OSPF routes can be redistributed into MP-BGP on the PE routers.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-27 OSPF Tag Field: Routing Loop Prevention

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-28 Sham Link OSPF prefers intra-area paths to interarea paths. The path over a backdoor link will always be selected.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-29 Sham Link (Cont.) A logical intra-area link. Carried by the superbackbone. A sham link is required only between two VPN sites that belong to the same area and have a backdoor link for backup purposes. OSPF adjacency is established across the sham link. LSA flooding occurs across the sham link.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-30 Sham Link (Cont.) When a sham-link route is preferred by OSPF: The OSPF route is not redistributed to MP-BGP. Instead, the router on the other end of the sham link performs the redistribution. The forwarding information from the MP-BGP route is used.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-31 Sham Link (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-32 Sham Link (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-33 Configuring a Sham Link A separate /32 address space is required in each PE router for each sham link. This /32 address space: –Is required so that OSPF packets can be sent over the VPN backbone to the remote end of the sham link –Must belong to the VRF –Must not be advertised by OSPF –Must be advertised by BGP

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-34 area area-id sham-link source-address destination-address cost number router(config-router)# This command was introduced in Cisco IOS Release 12.2(8)T. The sham link belongs to the specified area. Sham-link packets sent across the MPLS VPN backbone will have the specified source and destination addresses. When the SPF algorithm is executed, the sham link will have the specified cost. Configuring a Sham Link (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-35 Sample Sham-Link Configuration

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-36 OSPF areas connect to a common backbone area in a two-tier hierarchical model. Basic OSPF across an MPLS VPN includes a BGP backbone. OSPF is run at each site, while MP-BGP is used to propagate routes between each site. A better option implements the MP-BGP backbone as a new transparent OSPF superbackbone above existing areas. OSPF PE-CE routing is implemented as a separate routing process. (One routing process per VRF.) Summary

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-37 A sham link is the OSPF down bit prevents routing loops. A sham link is the OSPF tag field is also used to prevent routing loops. Packet forwarding is optimized across the MPLS VPN using the OSPF routing bit A sham link is required between any two VPN sites that belong to the same OSPF area and share an OSPF backdoor link. The area sham-link cost command is used to configure a sham link across a MPLS VPN backbone. Summary (Cont.)