Inter AS option D (draft-mapathak-interas-option-d-00) Manu Pathak Keyur Patel Arjun Sreekantiah November 2012.

Slides:



Advertisements
Similar presentations
1 Analysis of VPLS Deployment R. Gu, J. Dong, M. Chen, Q. Zeng (Huawei) Z. Liu (China Telecom) IETF80 L2VPN Mar Prague draft-gu-l2vpn-vpls-analysis-00.
Advertisements

MPLS VPN.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing the MPLS VPN Routing Model.
Draft-mackie-sfc-using-virtual-networking-02 S. Mackie, B. Rijsman, Juniper Networks M. Napierala, AT&T D. Daino, Telecom Italia D.R. Lopez, Telefonica.
Deployment of MPLS VPN in Large ISP Networks
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP Diverse Paths draft-ietf-grow-diverse-bgp-paths-dist-02 Keyur Patel.
All Rights Reserved © Alcatel-Lucent 2006, ##### Scalability of IP/MPLS networks Lieven Levrau 30 th April, 2008 France Telecom, Cisco Systems, uawei Technologies,
Technical Aspects of Peering Session 4. Overview Peering checklist/requirements Peering step by step Peering arrangements and options Exercises.
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Multicast in BGP/MPLS VPNs draft-ietf-l3vpn-2547bis-mcast-00.txt.
1 Copyright  1999, Cisco Systems, Inc. Module10.ppt10/7/1999 8:27 AM BGP — Border Gateway Protocol Routing Protocol used between AS’s Currently Version.
© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public Deploying MPLS L3VPN Nurul Islam Roman 1.
MPLS-VPN/BGP Approach Hari Rakotoranto Technical Marketing Engineer
BGP Extensions for BIER draft-xu-idr-bier-extensions-01 Xiaohu Xu (Huawei) Mach Chen (Huawei) Keyur Patel (Cisco) IJsbrand Wijnands (Cisco)
Best Practices for ISPs
CS Summer 2003 Lecture 14. CS Summer 2003 MPLS VPN Architecture MPLS VPN is a collection of sites interconnected over MPLS core network. MPLS.
MPLS / VPN Connectivity between VPNs JET 2004/03/15.
Routing and Routing Protocols
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.
© 2009 Cisco Systems, Inc. All rights reserved.ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Configuring and Verifying Basic BGP Operations.
Seamless MPLS for Mobile Backhaul draft-li-mpls-seamless-mpls-mbh-00
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
Draft-ni-l3vpn-pm-bgp-ext-00IETF 87 L3VPN1 BGP Extension For L3VPN PM draft-ni-l3vpn-pm-bgp-ext-00 Hui Ni, Shunwan Zhuan, Zhenbin Li Huawei Technologies.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring Small-Scale Routing Protocols Between PE and CE Routers.
SMUCSE 8344 MPLS Virtual Private Networks (VPNs).
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Forwarding MPLS VPN Packets.
Ietf-64 draft-kulmala-l3vpn-interas-option-d-01.txt Additional Inter AS option for BGP/MPLS IP VPN IETF-64 draft-kulmala-l3vpn-interas-option-d-01.txt.
BGP L3VPN Virtual PE draft-fang-l3vpn-data-center-interconnect-01 L. Fang R. Fernando D. Rao S. Boutros IETF 88, Vancouver, Nov
Draft-ni-l3vpn-bgp-ext-sd-co-lsp-00IETF 87 L3VPN1 BGP Extensions for Setup Service-Driven Co-Routed LSP in L3VPN draft-ni-l3vpn-bgp-ext-sd-co-lsp-00 Hui.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Using MPLS VPN Mechanisms of Cisco IOS Platforms.
1 © 2003 Cisco Systems, Inc. All rights reserved. MPLS VPN Inter-AS, 12/03 INTER-AUTONOMOUS SYSTEM MPLS VPN December 2003.
Ietf-65 draft-kulmala-l3vpn-interas-option-d-02.txt ASBR VRF Context for BGP/MPLS IP VPN IETF-65 draft-kulmala-l3vpn-interas-option-d-02.txt Marko Kulmala.
1 © 1999, Cisco Systems, Inc _05F9_c2 1 NW’99 Vienna © 1999, Cisco Systems, Inc. MPLS VPNs Peter Tomsu Senior Consultant EMEA
1 © 2003 Cisco Systems, Inc. All rights reserved. MPLS VPN Inter-AS, 12/03 INTER-AUTONOMOUS SYSTEM MPLS VPN: CONFIGURATION AND TROUBLESHOOTING DECEMBER.
MPLS VPN Configurations Khalid Raza
Draft-boutros-bess-evpn-vpws-service-edge-gateway-00 Sami Boutros Ali Sajassi Patrice Brissette [Cisco Systems] Daniel Voyer [Bell Canada] IETF 92,
Virtual Subnet: A Scalable Cloud Data Center Interconnect Solution draft-xu-virtual-subnet-06 Xiaohu Xu IETF82, TAIWAN.
BGP-MPLS VPN extension for IPv4/IPv6 Hybrid Network Defeng Li Huawei Technologies.
Virtual Topologies for Service Chaining in BGP IP/MPLS VPNs draft-rfernando-bess-service-chaining-00 (previously draft-rfernando-l3vpn-service-chaining-04)
Border Gateway Protocol (BGP) W.lilakiatsakun. BGP Basics (1) BGP is the protocol which is used to make core routing decisions on the Internet It involves.
VXLAN Nexus 9000 Module 6 – MP-BGP EVPN - Design
March 21, 2006L3VPN WG 1 MVPN Update New version of “bgp encoding” draft –BGP update syntax and semantics reworked to reflect current thinking –Inter-AS.
Using BGP between PE and CE in EVPN draft-li-l2vpn-evpn-pe-ce-01 Zhenbin Li, Junlin Zhuang, Shunwan Zhuang (Huawei Technologies) IETF 90, Toronto, Canada.
1MPLS QOS 10/00 © 2000, Cisco Systems, Inc. rfc2547bis VPN Alvaro Retana Alvaro Retana
MPLS VPNs by Richard Bannister. The Topology The next two slides display both the physical and logical topology of our simple example network –Please.
Support for RSVP in Layer 3 VPNs draft-davie-tsvwg-rsvp-l3vpn-01.txt Bruce Davie François le Faucheur Ashok Narayanan Cisco Systems.
IP Traffic Engineering RSP draft-shen-ip-te-rsp-01.txt Naiming Shen Albert Tian Jun Zhuang
Inter-AS Options for NVO3 and BGP/MPLS VPN Weiguo Hao, Lucy Yong, Sue Hares, Robert Raszuk Luyuan Fang, Osama Zia, Shahram Davari, Andrew Qu March 2015.
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 draft-sajassi-l2vpn-pbb-evpn-02.txt Ali Sajassi (Cisco), Nabil Bitar.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—2-1 BGP Transit Autonomous Systems Forwarding Packets in a Transit AS.
1 Copyright © 2009 Juniper Networks, Inc. E-VPN for NVO Use of Ethernet Virtual Private Network (E-VPN) as the carrier-grade control plane.
VS (Virtual Subnet) draft-xu-virtual-subnet-03 Xiaohu Xu IETF 79, Beijing.
Inter-AS Option C between NVO3 and BGP/MPLS IP VPN network draft-hao-bess-inter-nvo3-vpn-optionc-00 Weiguo Hao Lucy Yong Susan Hares Nov, 2014 Honolulu.
BGP L3VPN Virtual PE draft-fang-l3vpn-data-center-interconnect-01 L. Fang R. Fernando D. Rao S. Boutros Cisco IETF 86, Orlando, FL, 3/16/2013.
Tunnel SAFI draft-nalawade-kapoor-tunnel- safi-03.txt SSA Attribute draft-kapoor-nalawade-idr- bgp-ssa-01.txt.
 Killtest offers real Huawei H ENU exam questions, which contain the real and original questions and answers. With the actual exam guide, you can.
Global Table Multicast with BGP-MVPN Protocol
MPLS Virtual Private Networks (VPNs)
Connecting an Enterprise Network to an ISP Network
Virtual Hub & Spoke with BGP EVPNs
draft-patel-raszuk-bgp-vector-routing-01
BGP 1. BGP Overview 2. Multihoming 3. Configuring BGP.
MPLS VPN Implementation
Virtual Aggregation (VA)
Yimin Shen (Juniper) Rahul Aggarwal (Arktan Inc)
Multi-domain MPLS Deployment Enhancement
Requirements for supporting Customer RSVP and RSVP-TE over a BGP/MPLS IP-VPN draft-ietf-l3vpn-e2e-rsvp-te-reqts-01.txt Kenji Kumaki KDDI R&D Labs,
INTER-AUTONOMOUS SYSTEM MPLS VPN: CONFIGURATION AND TROUBLESHOOTING
EVPN Interworking with IPVPN
Satya Mohanty, Arjun Sreekantiah, Dhananjaya Rao, Cisco Systems
Inter-AS MVPN: Multihoming Considerations
Presentation transcript:

Inter AS option D (draft-mapathak-interas-option-d-00) Manu Pathak Keyur Patel Arjun Sreekantiah November 2012

Problem Statement Address scalability and security concerns of option A and option B in a new VPN InterAS option (option D) option A provides for per VRF isolation, security and IP QoS scalability concerns - requires a bgp session per VRF does not scale well as the number of VRFs increase. option B single bgp session for VPN prefixes- scalable for a large number of VRFs lacks per VRF isolation, security and IP QoS

InterAS option D New InterAS Option D Hybrid model combining benefits of option A and B Still retains VRF configuration from option A but does not require a BGP session per VRF. Single MP-BGP session is used to signal VPN prefixes, similar to option B. Thus, there is no need to run BGP sessions on every sub-interface. Forwarding connections are still maintained on a per-VRF basis, similar to option A, so separation of VPN traffic is possible. Provides for per VRF isolation, security and IP QoS while being scalable as the number of VRFs increase.

Option D operation VRFs configured on ASBR but no per VRF session required. ASBR performs import operation on VPN routes received from PEs ASBR sets self to nexthop and advertises the imported route (with modified RD and RT)with an allocated local label to ebgp ASBR peer Advertisement of received route (with unmodified RD) suppressed on ASBR

Option D operation Receiving ASBR also performs local import based on RT config present On receiving ASBR while processing the VPN route, Nexthop for imported routes on receiving ASBR resolves in context of the VRF interface (either the VRF interface IP address is configured to be the same as that of the ASBR local address on both ASBRs or explicit config mechanism to rewrite the nexthop inbound). The route is installed in the VRF RIB with a per VRF nexthop. Label information is not installed in FIB. Imported route advertised out to IBGP peers.

InterAS option D operation ASBR2 PE1 ASBR1 CE1 Receivng ASBR also performs local import based on RT config present On receiving ASBR, - Nexthop for imported routes on receiving ASBR resolves in context of the VRF (explicit config mechanism to rewrite the nexthop inbound) The route is installed to the RIB with per VRF nexthop - Label information not installed in FIB. Imported route advertised out to ibgp peers. VRFs configured on ASBR but no per VRF session required. ASBR performs import operation on VPN routes received from PEs ASBR sets self to nexthop and advertises the imported route (with modified RD and RT) to ebgp ASBR peer advertisement of remote RD route suppressed on ASBR

InterAS option D forwarding Forwarding proceeds similar to option A CE sends a packet destined for N to the PE. PE encapsulates the packet with the VPN label allocated by ASBR and the IGP label (if any) needed to tunnel the packet to ASBR. The packet arrives on ASBR with the VPN Label, ASBR pops the VPN Label and sends the packet as IP to remote ASBR on the VRF interface. The IP packet arrives at remote ASBR on the VRF interface. Remote ASBR then encapsulates the packet with the VPN Label allocated by remote PE and the IGP label needed to tunnel the packet to remote PE. The packet arrives on remote PE with the VPN label; remote PE disposes the VPN label and forwards the IP packet to remote CE.

Option D: Other Considerations The draft also provides for a shared interface forwarding mode in which forwarding is similar to option B, but with local import for RD and RT rewrite. More details in the draft. Deployment of Option D is simplified if VRF next-hop is same as global next-hop, but this is not required. Route-targets need to be properly configured on PEs and ASBRs, and local import operation in option D can provide for application of per VRF policies at ASBRs.