Presentation is loading. Please wait.

Presentation is loading. Please wait.

Kireeti Kompella Juniper Networks

Published byJasper Page Modified over 6 years ago

Similar presentations

Presentation on theme: "Kireeti Kompella Juniper Networks"— Presentation transcript:

1 Kireeti Kompella Juniper Networks
MPLS-based Layer 2 VPNs Kireeti Kompella Juniper Networks

2 Juniper Networks, Inc. Copyright © 2000
Agenda Introduction Traditional Layer 2 VPNs MPLS-based Layer 2 VPNs Layer 3 VPNs Details Provisioning Signaling Topology Future work 12/2/2018 Juniper Networks, Inc. Copyright © 2000

3 Traditional (Layer 2) VPNs
Router Frame Relay/ ATM Switch 12/2/2018 Juniper Networks, Inc. Copyright © 2000

4 Traditional (Layer 2) VPNs
Provider network technology dictated by VPN services Frame switches? ATM switches? Provisioning – complex for provider Topology dictated by cost rather than traffic patterns Multiple networks – adds to provider’s administrative burden 12/2/2018 Juniper Networks, Inc. Copyright © 2000

5 Juniper Networks, Inc. Copyright © 2000
Question Can we Decouple edge (customer-facing) technology from core technology? Have a single network infrastructure for all desired services? Simplify provisioning? Appropriate signaling mechanisms? 12/2/2018 Juniper Networks, Inc. Copyright © 2000

6 Juniper Networks, Inc. Copyright © 2000
Answer MPLS is layer 2 agnostic POS in the core MPLS offers several services One infrastructure does it all MPLS has signaling RSVP, LDP, BGP work great, and are extensible MPLS has label stacking Provision once, and use same LSP for multiple purposes 12/2/2018 Juniper Networks, Inc. Copyright © 2000

7 Juniper Networks, Inc. Copyright © 2000
MPLS-Based Layer 2 VPNs Traditional Layer 2 VPN from customer’s point-of-view Layer 3 independent Provider not responsible for routing MPLS transport in provider network Decouples edge and core technologies Auto-provisioning VPN Single network architecture for both Internet traffic and VPN traffic 12/2/2018 Juniper Networks, Inc. Copyright © 2000

8 Juniper Networks, Inc. Copyright © 2000
MPLS-Based Layer 2 VPNs CE G CE B CE A CE E CE D CE C CE F PE 1 PE 2 PE 3 PE 4 12/2/2018 Juniper Networks, Inc. Copyright © 2000

9 Juniper Networks, Inc. Copyright © 2000
Layer 3 VPNs SP participates in customers’ routing Out-sourced routing Added SP responsibilities Value-added service ~ cost structure BGP MPLS VPNs – mature technology QoS/CoS, Carrier of Carriers, inter-SP VPNs Virtual routers Migration may take some work 12/2/2018 Juniper Networks, Inc. Copyright © 2000

10 Juniper Networks, Inc. Copyright © 2000
Provisioning CE G CE B CE A CE E CE D CE C CE F PE 1 PE 2 PE 3 PE 4 12/2/2018 Juniper Networks, Inc. Copyright © 2000

11 Provisioning the Network
PE-to-PE MPLS LSPs Key: signaling LDP LSPs RSVP-TE LSPs LDP over RSVP tunneling Fully-meshed Traffic Engineered core Edge-to-edge LDP LSPs Used for many services – IP, L2 VPNs, L3 VPNs, differentiated services Provisioned independent of Layer 2 VPNs! 12/2/2018 Juniper Networks, Inc. Copyright © 2000

12 Juniper Networks, Inc. Copyright © 2000
Provisioning a VPN Key: signaling Auto-discovery of members, auto-assignment of inter-member circuits Flexible VPN topology Signaling using LDP or BGP O(N) configuration for the whole VPN Could be more for complex topologies O(1) configuration to add a site “Overprovision” DLCIs at customer sites 12/2/2018 Juniper Networks, Inc. Copyright © 2000

13 Provisioning Customer Sites
List of DLCIs, one for each other site, some spare (over-provisioning) DLCIs independently numbered at each site LMI, inverse ARP and/or routing protocols for auto-discovery and learning addresses No changes as VPN membership changes (until over-provisioning runs out) 12/2/2018 Juniper Networks, Inc. Copyright © 2000

14 Juniper Networks, Inc. Copyright © 2000
VPN Signaling Signaling through either BGP or LDP Compact representation of mapping of layer 2 address to inner label PE says: “CE k is in Blue VPN; label base 1000” This info sent to all members of Blue VPN CE # 0 uses label to reach CE k CE # 1 uses label to reach CE k Etc. 12/2/2018 Juniper Networks, Inc. Copyright © 2000

15 Juniper Networks, Inc. Copyright © 2000
Information Signaled Compact representation means one “routing entry” per CE per VPN in BGP/LDP Same info sent to each peer One “route” per CE per VPN in each PE’s forwarding table 200 CEs per PE, 500 PEs in network means total VPN routes in entire network Can easily be held by a single route reflector 12/2/2018 Juniper Networks, Inc. Copyright © 2000

16 Juniper Networks, Inc. Copyright © 2000
VPN Topologies Arbitrary topologies possible; common ones such as full mesh and hub-and-spoke easy to configure BGP communities used to configure arbitrary topologies in BGP signaling “Connectivity” parameter serves similar purpose in LDP signaling 12/2/2018 Juniper Networks, Inc. Copyright © 2000

17 Juniper Networks, Inc. Copyright © 2000
Future Work Layer 2 technologies VLANs MPLS as layer 2 to CE Decouples access technology Carrier of carriers model, inter-SP VPNs, QoS/CoS support Reduce dependency on “over-provisioning” Security 12/2/2018 Juniper Networks, Inc. Copyright © 2000

18 Juniper Networks, Inc. Copyright © 2000
Summary Benefits to customer MPLS-based Layer 2 VPNs identical to Layer 2 VPNs from customers’ perspective Familiar paradigm Easy to migrate OSPF handled naturally Rely on SP only for connectivity 12/2/2018 Juniper Networks, Inc. Copyright © 2000

19 Juniper Networks, Inc. Copyright © 2000
Summary Benefits to SP Single network infrastructure for all services: L2 VPNs, L3 VPNs, Traffic Engineering, DiffServ Auto-provisioning: VPN members discover each other, signal required DLCIs Layer 3 and routing independent Good scaling characteristics 12/2/2018 Juniper Networks, Inc. Copyright © 2000

20 Thank you!

Download ppt "Kireeti Kompella Juniper Networks"

Similar presentations

Virtual Links: VLANs and Tunneling

Virtual Links: VLANs and Tunneling
MPLS VPN.

MPLS VPN.
Traffic Engineering over MPLS

Traffic Engineering over MPLS
Identifying MPLS Applications

Identifying MPLS Applications
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Multicast in BGP/MPLS VPNs and VPLS draft-raggarwa-l3vpn-mvpn-vpls-mcast-

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Multicast in BGP/MPLS VPNs and VPLS draft-raggarwa-l3vpn-mvpn-vpls-mcast-
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal
Deployment of MPLS VPN in Large ISP Networks

Deployment of MPLS VPN in Large ISP Networks
Juniper Networks, Inc. Copyright © 2000 1 L2 MPLS VPNs Hector Avalos Technical Director-Southern Europe

Juniper Networks, Inc. Copyright © L2 MPLS VPNs Hector Avalos Technical Director-Southern Europe
Leading Edge Routing MPLS Enhancements to Support Layer 2 Transport Services Jeremy Brayley

Leading Edge Routing MPLS Enhancements to Support Layer 2 Transport Services Jeremy Brayley
All Rights Reserved © Alcatel-Lucent 2006, ##### Scalability of IP/MPLS networks Lieven Levrau 30 th April, 2008 France Telecom, Cisco Systems, uawei Technologies,

All Rights Reserved © Alcatel-Lucent 2006, ##### Scalability of IP/MPLS networks Lieven Levrau 30 th April, 2008 France Telecom, Cisco Systems, uawei Technologies,
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Introducing VPNs.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Introducing VPNs.
MPLS-VPN/BGP Approach Hari Rakotoranto Technical Marketing Engineer

MPLS-VPN/BGP Approach Hari Rakotoranto Technical Marketing Engineer
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Provider Opportunities for Enterprise MPLS APRICOT 2006, Perth Matt.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Provider Opportunities for Enterprise MPLS APRICOT 2006, Perth Matt.
CS 672 1 Summer 2003 Lecture 13. CS 672 2 Summer 2003 MP_REACH_NLRI Attribute The MP_REACH_NLRI attribute is encoded as shown below: +---------------------------------------------------------+

CS Summer 2003 Lecture 13. CS Summer 2003 MP_REACH_NLRI Attribute The MP_REACH_NLRI attribute is encoded as shown below:
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.

© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.

© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.
Multi-Protocol Label Switching

Multi-Protocol Label Switching
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,

MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
SMUCSE 8344 MPLS Virtual Private Networks (VPNs).

SMUCSE 8344 MPLS Virtual Private Networks (VPNs).
MPLS And The Data Center Adrian Farrel Old Dog Consulting / Juniper Networks

MPLS And The Data Center Adrian Farrel Old Dog Consulting / Juniper Networks

Similar presentations

Ads by Google