Network Design with latest VPN Technologies
|
|
- Clement Briggs
- 5 years ago
- Views:
Transcription
1 Network Design with latest VPN Technologies Carsten Rossenhövel Managing Director
2 Which VPN type fits the purpose? SOHO Teleworkers Internet Branch Office Questions to identify: What are the business goals? Which applications will use the VPN? Central Office Mobile Workers What are the technical and security requirements? => Check list is required to select the best kind of VPN best fitting the requirements and purpose
3 VPN Business Goals Identify the primary business goals before selecting a VPN implementation! Reduce the budget for network connections? Enhance network security? Outsource IT infrastructure?
4 VPN Application Areas Important question: What will be the primary use of the VPN? MAN/WAN Intranet (Branch office connectivity) Extranet (SOHO / Business partner access) Remote Access (Teleworkers, SOHOs)
5 VPN Operations Who is going to operate the VPN network? Enterprise IT Department Service Provider (outsourced) Who owns the equipment? Provider Edge (PE) Different technology options: ÿ SPs usually work with MPS or layer 2 technologies ÿ Enterprises usually use IPsec Enterprise Office Customer Edge (CE) Service Provider Network
6 Applications used in the VPN IPDataonly? Voice over IP? ayer 2 data (Ethernet Non-IP protocols, Frame Relay, ATM)? ÿdifferent applications with different QoS requirements: Guaranteed bandwidth, latency, jitter
7 Applications used in the VPN (2) Source: Cisco Systems
8 Section II Introduction to VPNs with Multi Protocol abel Switching
9 VPN Wish ist Different sites of multiple enterprises are connected through a common provider backbone Use layer 3 backbone Overlapping address spaces Using private and public addresses VPN isolation Simple management Scalability Quality of Service Site 1 of enterprise 1 Site 1 of enterprise 2 Provider Network Site 2 of enterprise 2 Site 2 of enterprise 1
10 VPN Models ayer 2 VPN model ( overlay ) Well-known from ATM, Frame Relay carrier networks Customer interface at data link layer (ATM, Frame Relay, Ethernet) Private layer 2 trunks tunneled through MPS network ayer 3 VPN model ( peer ) Customer interface at IP layer VPN isolation by tunneling through backbone Backbone does not have information about customer IP networks
11 ayer 2 VPN Benefits ooks like legacy ATM, Frame Relay,... service to customers Transparent service for upper layers and private addresses ayer 3 multi-protocol support based on layer 2 service Overlay model isolates core from VPN routing No need to replace existing customer premises equipment (ATM, Frame Relay,...) ayer 2 over MPS / IP may use extended backbone facilities (fast reroute etc.), compared to pure layer 2 VPN services provided with ATM and Frame Relay
12 ayer 3 VPN Benefits Scalability for any-to-any connectivity Support for private address space Provides a fully routed IP network solution, while the VPN routes are separated from core backbone routing Meshing in the core network is the responsibility of the service provider (customer not involved) May use MPS / IP backbone facilities (fast reroute etc.)
13 MPS VPNs Standards status of Multi Protocol abel Switching: ayer 3 VPN RFC2547 (March 1999) widely used Informational RFC provided by Cisco Systems; NOT an IETF standard ayer 2 VPN : several competing IETF drafts; beta status; first implementations seen in interop tests Not ready for customer network implementation yet
14 Introduction to RFC2547 CE, PE and P devices Administrative policy is used for VPN construction Provider (P) device Provider Edge (PE) Site 1 of enterprise 1 Customer Edge (CE) Common Network Site 2 of enterprise 2 Site 2 of enterprise 1 Site 1 of enterprise 2 Site 3 of enterprise 1
15 Roles MPS Edge Router (PE device) Filters incoming user traffic, assigns to VPNs Collects and populates private network forwarding tables Establishes MPS paths across the core for each VPN edge-to-edge connectivity Establishes logically single-hop VPN connections between the VPN edges MPS Core Router (P device) Does not implement VPN routing; just switches packet streams according to their MPS labels enough information to transport data through the core
16 Per-site Forwarding Tables How to manage large amounts of customer IP addresses, potentially overlapping? CE1 Per-SiteForwardingTables: Provider Edge routers have multiple routing tables, one for each customer site Propagated by BGP routing inside the core VPNs are isolated from each other PE CE2 CE3 PE Routing tables CE1 CE2 CE3
17 VPN Route Distribution via BGP Problem: A BGP speaker can only install and distribute one route to a given address prefix. In MPS, there are different VPNs with overlapping address spaces Solution: Create a new address family, adding a route distinguisher to the IP address bytes Type Route Distinguisher (RD) Administrator Assigned Number IPv4 Address
18 The Target VPN Attribute Is it sufficient to keep routes inside a single VPN? Basically: Yes. In certain applications, routes need to be installed in selected foreign VPNs. Solution: Per-site forwarding tables are associated with one or more "Target VPN" attributes Allows selective route installation in appropriate PE forwarding tables only Target VPN attribute is carried in BGP
19 Target VPN Example Task: Distribute Site 1 route to Extranet VPN1 (sites 1, 4, 5) and to company-internal VPN2 (sites 2, 3) but not to VPN3 VPN 1 Site 1 IPv4 Route converts IPv4 Route into VPN-IPv4, adds Target VPN1 and Target VPN2 attributes Provider Network converts VPN-IPv4 into IPv4 route and distribute to Sites 3,4,5 because of Target attributes VPN 2 Site 3 VPN 3 Site 6 VPN 1 Site 4 distribute to Site 2 because of VPN2 Target attribute VPN 2 Site 2 VPN 3 Site 7 VPN 1 Site 5
20 VPN Route Distribution with BGP Provider Edge router are attached to a common AS (Autonomous System), running ibgp-mp Backbone routers (P devices) do not participate in BGP! Private Network AS Private Network MP-iBGP routing: exchanges 64 bit route distinguisher Private Network PE learns VPN routes and converts to VPN-IP address ibgp-mp = interior Border Gateway Protocol / Multi-Protocol Extensions
21 VPN Example abelling IP IP CE 1 PE1 IP IP IP P1 IP IP P2 IP IP IP PE2 CE 2 CE 3 IP MPS Network IP CE4 IP IP abel VPN A abel VPN B abel between PE1 and PE2
22 MPS ayer 2 VPNs Provide point-to-point connections through an MPS backbone ATM Customer Edge (CE) Provider Edge (PE) Site 1 of enterprise 1 Ethernet Customer Edge (CE) Common Network Site 2 of enterprise 2 Ethernet Customer Edge (CE) Site 1 of enterprise 2 ATM Customer Edge (CE) Site 3 of enterprise 1
23 MPS ayer 2 VPNs (continued) Encoding already defined: How to map ATM cells and Ethernet frames into IP packets Signalling not defined yet how to manage tunnels dynamically Point-to-multipoint / full mesh service not defined yet how to switch ATM or Ethernet packets inside the MPS network
24 Main VPN Features Checklist ayer 2 (ATM / FR) IPsec MPS ayer 2 VPNs MPS ayer 3 VPNs Provides security (VPN isolation) Interoperable with 3 rd party products ÿ ÿ Scale for many end points (meshed) ÿ ÿ Forwarding performance ÿ Available from many carriers ÿ Provides Quality of Service /ÿ arge-scale manageability ÿ ÿ Service + Equipment pricing ÿ Best suited for IP traffic ÿ ÿ Suited for non-ip traffic ÿ ÿ
25 Section III Service evels First step: Define Service evels ÿ Get in touch with company product managers to learn about their application requirements ÿ Inspect applications running in the network, derive typical requirements ÿ Verify budgets for network quality versus budgets for application enhancements (maybe it s cheaper to exchange the application than enhance the network)
26 Applications used in VPNs (revisited) Source: Cisco Systems
27 How to define Service evels Negotiate Classes of Service (CoS, DiffServ): V VoIP
28 Verify Service evel Agreements SAs should be monitored and verified regularly: Has the network been reliable? Has network usage / application behavior changed? Monitoring usually done by service provider in addition, monitoring by customer useful for proactive management PE Define SAs Verify SAs CE
29 Conclusion Different types of VPNs available on the market today Choose depending on application requirements Keep features and limitations of different alternatives in mind!
30 Thank you! Für mehr Informationen steht unser Webserver zur Verfügung:
MPLS VPN Carrier Supporting Carrier Using LDP and an IGP
MPLS VPN Carrier Supporting Carrier Using LDP and an IGP Multiprotocol Label Switching (MPLS) Virtual Private Network (VPN) Carrier Supporting Carrier (CSC) enables one MPLS VPN-based service provider
More informationSecurizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN
Platformă de e-learning și curriculă e-content pentru învățământul superior tehnic Securizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN MPLS VPN 5-ian-2010 What this lecture is about: IP
More informationMPLS VPN--Inter-AS Option AB
The feature combines the best functionality of an Inter-AS Option (10) A and Inter-AS Option (10) B network to allow a Multiprotocol Label Switching (MPLS) Virtual Private Network (VPN) service provider
More informationMPLS VPN Carrier Supporting Carrier Using LDP and an IGP
MPLS VPN Carrier Supporting Carrier Using LDP and an IGP Last Updated: December 14, 2011 Multiprotocol Label Switching (MPLS) Virtual Private Network (VPN) Carrier Supporting Carrier (CSC) enables one
More informationMPLS VPN Inter-AS Option AB
First Published: December 17, 2007 Last Updated: September 21, 2011 The feature combines the best functionality of an Inter-AS Option (10) A and Inter-AS Option (10) B network to allow a Multiprotocol
More informationMPLS VPN. 5 ian 2010
MPLS VPN 5 ian 2010 What this lecture is about: IP CEF MPLS architecture What is MPLS? MPLS labels Packet forwarding in MPLS MPLS VPNs 3 IP CEF & MPLS Overview How does a router forward packets? Process
More informationExamining the Practicality of Ethernet for Mobile Backhaul Through Interoperability Testing
Examining the Practicality of Ethernet for Mobile Backhaul Through Interoperability Testing Carsten Rossenhövel, Managing Director European Advanced Networking Test Center EANTC Introduction Providing
More informationCisco Group Encrypted Transport VPN
Cisco Group Encrypted Transport VPN Q. What is Cisco Group Encrypted Transport VPN? A. Cisco Group Encrypted Transport is a next-generation WAN VPN solution that defines a new category of VPN, one that
More informationMPLS in the DCN. Introduction CHAPTER
CHAPTER 5 First Published: January 3, 2008 Last Updated: January 3, 2008 Finding Support Information for Platforms and Cisco IOS and Catalyst OS Software Images Use Cisco Feature Navigator to find information
More informationMPLS VPN Carrier Supporting Carrier
MPLS VPN Carrier Supporting Carrier Feature History Release 12.0(14)ST 12.0(16)ST 12.2(8)T 12.0(21)ST 12.0(22)S 12.0(23)S Modification This feature was introduced in Cisco IOS Release 12.0(14)ST. Support
More informationMPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution
MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution This feature lets you configure your carrier supporting carrier network to enable Border Gateway Protocol (BGP) to transport routes and Multiprotocol
More informationConfiguring MPLS and EoMPLS
37 CHAPTER This chapter describes how to configure multiprotocol label switching (MPLS) and Ethernet over MPLS (EoMPLS) on the Catalyst 3750 Metro switch. MPLS is a packet-switching technology that integrates
More informationMPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution
MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution This feature enables you to configure your carrier supporting carrier network to enable Border Gateway Protocol (BGP) to transport routes
More informationImplementing MPLS Layer 3 VPNs
A Multiprotocol Label Switching (MPLS) Layer 3 Virtual Private Network (VPN) consists of a set of sites that are interconnected by means of an MPLS provider core network. At each customer site, one or
More informationMPLS VPN Multipath Support for Inter-AS VPNs
The feature supports Virtual Private Network (VPN)v4 multipath for Autonomous System Boundary Routers (ASBRs) in the interautonomous system (Inter-AS) Multiprotocol Label Switching (MPLS) VPN environment.
More informationMulti-VRF Support. Finding Feature Information. Prerequisites for Multi-VRF Support
The feature allows you to configure and maintain more than one instance of a routing and forwarding table within the same customer edge (CE) device. Finding Feature Information, page 1 Prerequisites for,
More informationInterAS Option B. Information About InterAS. InterAS and ASBR
This chapter explains the different InterAS option B configuration options. The available options are InterAS option B, InterAS option B (with RFC 3107), and InterAS option B lite. The InterAS option B
More informationBGP MPLS VPNs. Introduction
This chapter describes services that are supported for Border Gateway Protocol (BGP) Multi-Protocol Label Switching (MPLS) Virtual Private Networks (VPNs). MPLS is a licensed Cisco feature that requires
More informationGLOSSARY. See ACL. access control list.
GLOSSARY A access control list ACL API Application Programming Interface area AS ASN ATM autonomous system autonomous system number See ACL. access control list. application programming interface. APIs
More informationIPv6 Switching: Provider Edge Router over MPLS
Multiprotocol Label Switching (MPLS) is deployed by many service providers in their IPv4 networks. Service providers want to introduce IPv6 services to their customers, but changes to their existing IPv4
More informationThis document is not restricted to specific software and hardware versions.
Contents Introduction Prerequisites Requirements Components Used Background Information Configure Network Diagram Configuration DN Bit Verify Troubleshoot Related Cisco Support Community Discussions Introduction
More informationIBGP internals. BGP Advanced Topics. Agenda. BGP Continuity 1. L49 - BGP Advanced Topics. L49 - BGP Advanced Topics
IBGP internals BGP Advanced Topics main IBGP aspects inside an AS continuity all packets entering the AS that were not blocked by some policies should reach the proper exit BGP router all transit routers
More informationMultiprotocol BGP 1 MPLS VPN. Agenda. Multiprotocol BGP 2
Multiprotocol BGP 1 MPLS VPN Peer to Peer VPN s BGP-4 (RFC 1771) is capable of carrying routing information only for IPv4 The only three pieces of information carried by BGP-4 that are IPv4 specific are
More informationibgp Multipath Load Sharing
This feature module describes the feature. This feature enables the BGP speaking router to select multiple ibgp paths as the best paths to a destination. The best paths or multipaths are then installed
More informationMPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses
MPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses The Multiprotocol Label Switching (MPLS) VPN Inter-AS with Autonomous System Boundary Routers (ASBRs) Exchanging VPN-IPv4 Addresses feature allows
More informationMPLS Intro. Cosmin Dumitru March 14, University of Amsterdam System and Network Engineering Research Group ...
MPLS Intro Cosmin Dumitru c.dumitru@uva.nl University of Amsterdam System and Network Engineering Research Group March 14, 2011 Disclaimer Information presented in these slides may be slightly biased towards
More informationAlcatel-Lucent 4A Alcatel-Lucent Virtual Private Routed Networks. Download Full version :
Alcatel-Lucent 4A0-106 Alcatel-Lucent Virtual Private Routed Networks Download Full version : http://killexams.com/pass4sure/exam-detail/4a0-106 Answer: D QUESTION: 137 Which of the following about inter-as
More informationConfiguring MPLS L3VPN
Contents Configuring MPLS L3VPN 1 MPLS L3VPN overview 1 Introduction to MPLS L3VPN 1 MPLS L3VPN concepts 2 MPLS L3VPN packet forwarding 5 MPLS L3VPN networking schemes 5 MPLS L3VPN routing information
More informationTHE MPLS JOURNEY FROM CONNECTIVITY TO FULL SERVICE NETWORKS. Sangeeta Anand Vice President Product Management Cisco Systems.
THE MPLS JOURNEY FROM CONNECTIVITY TO FULL SERVICE NETWORKS Sangeeta Anand Vice President Product Management Cisco Systems October 20, 2003 1 Agenda Introducing the Full Service Network The MPLS Journey
More informationImplementing MPLS VPNs over IP Tunnels
The MPLS VPNs over IP Tunnels feature lets you deploy Layer 3 Virtual Private Network (L3VPN) services, over an IP core network, using L2TPv3 multipoint tunneling instead of MPLS. This allows L2TPv3 tunnels
More informationMPLS опорни мрежи MPLS core networks
MPLS опорни мрежи MPLS core networks Николай Милованов/Nikolay Milovanov http://niau.org Objectives Identify the drawbacks of traditional IP routing Describe basic MPLS concepts and LSR types. MPLS Labels
More informationCisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications
Cisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications Product Overview Cisco Dynamic Multipoint VPN (DMVPN) is a Cisco IOS Software-based security solution for building scalable
More informationMPLS over GRE. Finding Feature Information. Prerequisites for MPLS VPN L3VPN over GRE
The feature provides a mechanism for tunneling Multiprotocol Label Switching (MPLS) packets over a non-mpls network. This feature utilizes MPLS over generic routing encapsulation (MPLSoGRE) to encapsulate
More informationCisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications
Data Sheet Cisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications Product Overview Cisco Dynamic Multipoint VPN (DMVPN) is a Cisco IOS Software-based security solution for building
More informationConfiguring MPLS, MPLS VPN, MPLS OAM, and EoMPLS
CHAPTER 43 Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS This chapter describes how to configure multiprotocol label switching (MPLS) and Ethernet over MPLS (EoMPLS) on the Cisco ME 3800X and ME 3600X
More informationVPN. Virtual Private Network. Mario Baldi. Synchrodyne Networks, Inc. VPN - 1 M.
VPN Virtual Private Network Mario Baldi Synchrodyne Networks, Inc. http://www.synchrodyne.com/baldi VPN - 1 M. Baldi: see page 2 Nota di Copyright This set of transparencies, hereinafter referred to as
More informationLARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF
LARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF MODULE 07 - MPLS BASED LAYER 2 SERVICES 1 by Xantaro MPLS BASED LAYER 2 VPNS USING MPLS FOR POINT-TO-POINT LAYER 2 SERVICES 2 by Xantaro Why are Layer-2
More informationIPv6 Switching: Provider Edge Router over MPLS
Multiprotocol Label Switching (MPLS) is deployed by many service providers in their IPv4 networks. Service providers want to introduce IPv6 services to their customers, but changes to their existing IPv4
More informationMulti Protocol Label Switching (an introduction) Karst Koymans. Thursday, March 12, 2015
.. MPLS Multi Protocol Label Switching (an introduction) Karst Koymans Informatics Institute University of Amsterdam (version 4.3, 2015/03/09 13:07:57) Thursday, March 12, 2015 Karst Koymans (UvA) MPLS
More informationOperation Manual MCE H3C S3610&S5510 Series Ethernet Switches. Table of Contents
Table of Contents Table of Contents Chapter 1 MCE Overview... 1-1 1.1 MCE Overview... 1-1 1.1.1 Introduction to BGP/MPLS VPN... 1-1 1.1.2 BGP/MPLS VPN Concepts... 1-2 1.1.3 Introduction to MCE... 1-5 1.1.4
More informationMultiprotocol Label Switching (MPLS)
Multiprotocol Label Switching (MPLS) Petr Grygárek rek 1 Technology Basics Integrates label-based forwarding paradigm with network layer routing label forwarding + label swapping similar to ATM/FR switching
More informationIP & DCN Planning for Microwave Networks
IP & DCN Planning for Microwave Networks 2016 IP & DCN Planning for Microwave Networks To equip trainees with in-depth understandings and practical knowledge of IP / MPLS & DCN Planning and its Implementation
More informationCisco BGP Overview. Finding Feature Information. Prerequisites for Cisco BGP
Border Gateway Protocol (BGP) is an interdomain routing protocol designed to provide loop-free routing between separate routing domains that contain independent routing policies (autonomous systems). The
More informationDMVPN for R&S CCIE Candidates Johnny Bass CCIE #6458
DMVPN for R&S CCIE Candidates Johnny Bass CCIE #6458 BRKCCIE-3003 @CCIE6458 2015 Cisco and/or its affiliates. All rights reserved. Cisco Public About the Presenter Johnny Bass Networking industry since
More informationCisco Training - HD Telepresence MPLS: Implementing Cisco MPLS V3.0. Upcoming Dates. Course Description. Course Outline
Cisco Training - HD Telepresence MPLS: Implementing Cisco MPLS V3.0 From the technology basics to advanced VPN configuration. $3,995.00 5 Days Upcoming Dates Dec 10 - Dec 14 Mar 25 - Mar 29 Course Description
More informationMPLS: Layer 3 VPNs: Inter-AS and CSC Configuration Guide, Cisco IOS Release 15SY
MPLS: Layer 3 VPNs: Inter-AS and CSC Configuration Guide, Cisco IOS Release 15SY First Published: October 15, 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706
More informationMultiprotocol Label Switching (MPLS) on Cisco Routers
Multiprotocol Label Switching (MPLS) on Cisco Routers This document describes commands for configuring and monitoring Multiprotocol Label Switching (MPLS) functionality on Cisco routers and switches. This
More informationConcepts and Operation of MPLS VPNs. Francisco Bolanos
Concepts and Operation of MPLS VPNs Francisco Bolanos fbolanos@cisco.com 2001, Cisco Systems, Inc. All rights reserved. 1 Agenda MPLS Concepts Label Structure Label assignment and distribution RD, RT and
More informationBGP Event-Based VPN Import
The feature introduces a modification to the existing Border Gateway Protocol (BGP) path import process. The enhanced BGP path import is driven by events; when a BGP path changes, all of its imported copies
More informationMPLS Layer 3 VPNs Configuration Guide, Cisco IOS Release 12.4T
MPLS Layer 3 VPNs Configuration Guide, Cisco IOS Release 12.4T Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS
More informationHP FlexFabric 7900 Switch Series
HP FlexFabric 7900 Switch Series MCE Configuration Guide Part number: 5998-6188 Software version: Release 2117 and Release 2118 Document version: 6W100-20140805 Legal and notice information Copyright 2014
More informationConfiguring MPLS L3VPN
Contents Configuring MPLS L3VPN 1 MPLS L3VPN overview 1 MPLS L3VPN concepts 2 MPLS L3VPN packet forwarding 4 MPLS L3VPN networking schemes 5 MPLS L3VPN routing information advertisement 8 Inter-AS VPN
More informationHttp://www.passcert.com Exam : 642-889 Title : Implementing Cisco Service Provider Next-Generation Egde Network Services Version : DEMO 1 / 6 1.Which type of VPN requires a full mesh of virtual circuits
More informationTable of Contents Chapter 1 MPLS L3VPN Configuration
Table of Contents Table of Contents... 1-1 1.1 MPLS L3VPN Overview... 1-1 1.1.1 MPLS L3VPN Model... 1-2 1.1.2 MPLS L3VPN Implementation... 1-5 1.1.3 Nested MPLS L3VPN Implementation... 1-7 1.1.4 Hierarchical
More informationPASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year
PASS4TEST IT Certification Guaranteed, The Easy Way \ http://www.pass4test.com We offer free update service for one year Exam : 642-691 Title : CCIP BGP + MPLS Exam (BGP + MPLS) Vendors : Cisco Version
More informationHP 5920 & 5900 Switch Series
HP 5920 & 5900 Switch Series MCE Configuration Guide Part number: 5998-2896 Software version: Release2207 Document version: 6W100-20121130 Legal and notice information Copyright 2012 Hewlett-Packard Development
More informationBW Protection. 2002, Cisco Systems, Inc. All rights reserved.
BW Protection 2002, Cisco Systems, Inc. All rights reserved. 1 Cisco MPLS - Traffic Engineering for VPNs Amrit Hanspal Sr. Product Manager MPLS & QoS Internet Technologies Division 2 Agenda MPLS Fundamentals
More informationMultiprotocol Label Switching (MPLS) on Cisco Routers
Multiprotocol Label Switching (MPLS) on Cisco Routers Feature History Release 11.1CT 12.1(3)T 12.1(5)T 12.0(14)ST 12.0(21)ST 12.0(22)S Modification The document introduced MPLS and was titled Tag Switching
More informationCCIE R&S Techtorial MPLS
CCIE R&S Techtorial MPLS Ing. Tomáš Kelemen Partner Systems Engineer CCIE #24395 Ing. Peter Mesjar Systems Engineer CCIE #17428 2011 Cisco Systems, Inc. All rights reserved. 1 Agenda Introduction to MPLS
More information26 CHAPTER Virtual Private Networks (VPNs) provide a secure way for customers to share bandwidth over an ISP backbone network. A VPN is a collection of sites sharing a common routing table. A customer
More informationGÉANT L3VPN Service Description. Multi-point, VPN services for NRENs
GÉANT L3VPN Service Description Multi-point, VPN services for NRENs Issue Date: 1 November 2017 GÉANT L3VPN Overview The GÉANT L3VPN service offers the National Research and Education Networks (NRENs)
More informationWAN Edge MPLSoL2 Service
4 CHAPTER While Layer 3 VPN services are becoming increasing popular as a primary connection for the WAN, there are a much larger percentage of customers still using Layer 2 services such Frame-Relay (FR).
More informationManaging Site-to-Site VPNs: The Basics
CHAPTER 23 A virtual private network (VPN) consists of multiple remote peers transmitting private data securely to one another over an unsecured network, such as the Internet. Site-to-site VPNs use tunnels
More informationMulti-Protocol Label Switching (MPLS) Support
This chapter describes the system's support for BGP/MPLS VPN and explains how it is d. The product administration guides provide examples and procedures for configuration of basic services on specific
More informationHow Cisco IT Simplified Network Growth with EIGRP
Cisco IT Case Study May 2013 EIGRP Implementation How Cisco IT Simplified Network Growth with EIGRP EXECUTIVE SUMMARY CHALLENGE Simplify global expansion Add tens of thousands of home offices to network
More information4.1.2 NETWORK-BASED IP VIRTUAL PRIVATE NETWORK SERVICES (NBIP-VPNS) (L , C.2.7.3, M.2.1.2)
Networx Enterprise for Internet Protocol (IP)-Based Services 4.1.2 NETWORK-BASED IP VIRTUAL PRIVATE NETWORK SERVICES (NBIP-VPNS) (L.34.1.4, C.2.7.3, M.2.1.2) Qwest achieved an industry first with our Network-Based
More informationMPLS VPN Explicit Null Label Support with BGP. BGP IPv4 Label Session
MPLS VPN Explicit Null Label Support with BGP IPv4 Label Session The MPLS VPN Explicit Null Label Support with BGP IPv4 Label Session feature provides a method to advertise explicit null in a Border Gateway
More informationHP FlexFabric 5930 Switch Series
HP FlexFabric 5930 Switch Series MCE Configuration Guide Part number: 5998-4625 Software version: Release 2406 & Release 2407P01 Document version: 6W101-20140404 Legal and notice information Copyright
More informationAToM (Any Transport over MPLS)
I N D E X A AAL5 over MPLS operation, 459 460 configuration, 462 463 flowchart configuration, 461 PE router, 461 provider router, 461 verification, 463 465 AAL5 to VLAN Interworking, 515 517 AC (Attachment
More informationMPLS VPN Inter-AS IPv4 BGP Label Distribution
MPLS VPN Inter-AS IPv4 BGP Label Distribution This feature enables you to set up a Virtual Private Network (VPN) service provider network so that the autonomous system boundary routers (ASBRs) exchange
More informationBGP-MVPN SAFI 129 IPv6
Subsequent Address Family Identifier (SAFI) 129, known as VPN Multicast SAFI, provides the capability to support multicast routing in the service provider's core IPv6 network. Border Gateway Protocol (BGP)
More informationConfiguring Virtual Private LAN Services
Virtual Private LAN Services (VPLS) enables enterprises to link together their Ethernet-based LANs from multiple sites via the infrastructure provided by their service provider. This module explains VPLS
More informationMultiprotocol Label Switching Virtual Private Network
Anas Al-Selwi Multiprotocol Label Switching Virtual Private Network Helsinki Metropolia University of Applied Sciences Bachelor of Engineering Information Technology Thesis 08 May 2013 Abstract Author(s)
More informationMultiprotocol Label Switching (MPLS)
Multiprotocol Label Switching (MPLS) Petr Grygárek rek 1 Technology in Brief Inserts underlying label-based forwarding layer under traditional network layer routing label forwarding + label swapping similar
More informationvoice-enabling.book Page 72 Friday, August 23, :19 AM
voice-enabling.book Page 72 Friday, August 23, 2002 11:19 AM voice-enabling.book Page 73 Friday, August 23, 2002 11:19 AM C H A P T E R 4 Offering Bundled and Data Services Chapter 2, VoIP Network Architectures:
More informationUnifying the Distributed Enterprise with MPLS Mesh
Unifying the Distributed Enterprise with MPLS Mesh Technical Whitepaper January 2015 Copyright 2015 AireSpring Introduction Today s modern enterprises employ IT technologies that deliver higher value,
More informationMPLS Virtual Private Networks (VPNs)
MPLS Virtual Private Networks (VPNs) The IP Virtual Private Network (VPN) feature for Multiprotocol Label Switching (MPLS) allows a Cisco IOS network to deploy scalable IPv4 Layer 3 VPN backbone services.
More informationComputer Network Architectures and Multimedia. Guy Leduc. Chapter 2 MPLS networks. Chapter 2: MPLS
Computer Network Architectures and Multimedia Guy Leduc Chapter 2 MPLS networks Chapter based on Section 5.5 of Computer Networking: A Top Down Approach, 6 th edition. Jim Kurose, Keith Ross Addison-Wesley,
More informationOSPF Sham-Link Support for MPLS VPN
Feature History Release Modification 12.2(8)T This feature was introduced. This module describes how to configure and use a sham-link to connect Virtual Private Network (VPN) client sites that run the
More informationOperation Manual MPLS VLL. Table of Contents
Table of Contents Table of Contents... 1-1 1.1 MPLS VLL Overview... 1-2 1.1.1 Concepts in MPLS VLL... 1-2 1.1.2 Introduction to MPLS VLL... 1-2 1.1.3 Packet Forwarding... 1-3 1.1.4 Implementation... 1-4
More informationMPLS L3VPN. The MPLS L3VPN model consists of three kinds of devices: PE CE Site 2. Figure 1 Network diagram for MPLS L3VPN model
is a kind of PE-based L3VPN technology for service provider VPN solutions. It uses BGP to advertise VPN routes and uses to forward VPN packets on service provider backbones. provides flexible networking
More informationHands-On Metro Ethernet Carrier Class Networks
Hands-On Carrier Class Networks Course Description Carriers have offered connectivity services based on traditional TDM, Frame Relay and ATM for many years. However customers now use Ethernet as the interface
More informationTrafffic Engineering 2015/16 1
Traffic Engineering 2015/2016 Traffic Engineering: from ATM to MPLS fernando.silva@tecnico.ulisboa.pt Instituto Superior Técnico Trafffic Engineering 2015/16 1 Outline Traffic Engineering revisited Traffic
More informationMPLS design. Massimiliano Sbaraglia
MPLS design Massimiliano Sbaraglia - MPLS layer 2 VPN diagram flowchart - MPLS layer 2 VPN pseudowire VPWS diagram - MPLS layer 2 VPN VPLS diagram - MPLS layer 2 EVPN diagram - MPLS layer 3 VPN diagram
More informationVirtual Private Networks (VPNs)
CHAPTER 19 Virtual Private Networks (VPNs) Virtual private network is defined as customer connectivity deployed on a shared infrastructure with the same policies as a private network. The shared infrastructure
More informationNetwork Configuration Example
Network Configuration Example Interconnecting a Layer 2 Circuit with a Layer 3 VPN Modified: 2017-01-19 Juniper Networks, Inc. 1133 Innovation Way Sunnyvale, California 94089 USA 408-745-2000 www.juniper.net
More informationIntroduction to Multi-Protocol Label
Introduction to Multi-Protocol Label Switching (MPLS) Matthew Bocci, Alcatel-Lucent IP Division Agenda History of MPLS Standardisation MPLS Architecture Control Plane QoS and Traffic Engineering Protection
More informationThe safer, easier way to help you pass any IT exams. Exam : 4A Alcatel-Lucent Virtual Private Routed Networks.
http://www.51- pass.com Exam : 4A0-106 Title : Alcatel-Lucent Virtual Private Routed Networks Version : Demo 1 / 10 1.Click the exhibit. What is wrong with the VPRN configuration applied on this Alcatel-Lucent
More informationTopics. Transport of Voice over ATM with Adaptation Layer 2 ATM User Conference, Stuttgart ! Introduction EANTC
Transport of Voice over ATM with Adaptation Layer 2 ATM User Conference, Stuttgart 2001 Gabriele Schrenk Managing Director EANTC AG Topics! Introduction EANTC! AAL2 Technology and Applications! Current
More informationCisco Implementing Cisco IP Routing v2.0 (ROUTE)
Course Overview ROUTE v2.0, a five-day ILT course, includes major updates and follows an updated blueprint. (However, note that this course does not cover all items listed on the blueprint.) Some older
More informationMulti Protocol Label Switching Current State of Interoperability and Performance Testing. CeBIT, Network Information Center 2002
Multi Protocol Label Switching Current State of Interoperability and Performance Testing CeBIT, Network Information Center 2002 Gabriele Schrenk Managing Director EANTC AG Topics! Introduction to EANTC!
More informationSecure Extension of L3 VPN s over IP-Based Wide Area Networks
White Paper Secure Extension of L3 VPN s over IP-Based Wide Area Networks Abstract Authors This paper examines how recent network-based virtualization Mark Mitch Mitchiner technology innovation can be
More informationUpdate on IP VPN work in ITU-T
Update on IP VPN work in ITU-T Marco CARUGI France Télécom R&D marco.carugi@francetelecom.fr San Diego - December 2000 PPVPN-14.12.00-Carugi 1 ITU work on IP VPNs starts in Kyoto, March 00 Study Group
More informationCisco 5921 Embedded Services Router
Data Sheet Cisco 5921 Embedded Services Router The Cisco 5921 Embedded Services Router (ESR) is a Cisco IOS software router application. It is designed to operate on small, low-power, Linux-based platforms
More informationCisco BGP Overview. Finding Feature Information. Prerequisites for Cisco BGP. Last Updated: October 19, 2011
Cisco BGP Overview Last Updated: October 19, 2011 Border Gateway Protocol (BGP) is an interdomain routing protocol designed to provide loop-free routing between separate routing domains that contain independent
More informationImplementing MPLS Layer 3 VPNs
Implementing MPLS Layer 3 VPNs A Multiprotocol Label Switching (MPLS) Layer 3 Virtual Private Netwk (VPN) consists of a set of sites that are interconnected by means of an MPLS provider ce netwk. At each
More informationMPLS VPN Challenge. Ron Jubainville Director Sprint International Products. Copyright Sprint All rights reserved.
MPLS VPN Challenge Ron Jubainville Director Sprint International Products Copyright Sprint 2004. All rights reserved. November 1 st, 2004 MPLS VPN Challenge Agenda WAN Evolution to MPLS Key Challenge Key
More informationBGP Cost Community. Prerequisites for the BGP Cost Community Feature
The feature introduces the cost extended community attribute. The cost community is a non-transitive extended community attribute that is passed to internal BGP (ibgp) and confederation peers but not to
More informationCore of Multicast VPNs: Rationale for Using mldp in the MVPN Core
Core of Multicast VPNs: Rationale for Using mldp in the MVPN Core Exploring Suitability of Using mldp Versus P2MP RSVP-TE in the MVPN Core Multicast Virtual Private Network (MVPN) is a popular technology
More informationibgp Multipath Load Sharing
ibgp Multipath Load haring Feature History Release 12.2(2)T 12.2(14) Modification This feature was introduced. This feature was integrated into. This feature module describes the ibgp Multipath Load haring
More information