MPLS VPN Architecture Scaling

Size: px
Start display at page:

Download "MPLS VPN Architecture Scaling"

Transcription

1 MPLS VPN Architecture Scaling Section , Cisco Systems, Inc. All rights reserved. 1 Agenda MPLS VPN Single Backbone Architecture MPLS VPN Scalability Elements Sizing Provider Edge () Routers Memory Sizing Design Guidelines Router Throughput Considerations Internal and External Routing Protocol Sizing MPLS VPN Convergence Tuning Summary 2001, Cisco Systems, Inc. All rights reserved. 2

2 MPLS VPN Single Backbone Architecture 2001, Cisco Systems, Inc. All rights reserved. 3 Virtual Network Models Virtual Networks Virtual Private Networks Virtual Dial-Up Networks Virtual LANs Overlay VPN Peer-to-Peer VPN Layer-2 VPN Layer-3 VPN Access Lists (Shared Router) Split Routing (Dedicated Router) MPLS/VPN X.25 F/R ATM GRE IPSec VR 2001, Cisco Systems, Inc. All rights reserved. 4

3 Overlay VPN Model Layer-3 Routing Adjacency Virtual Circuit C (CE) Device VPN Site Provider Edge () Device Provider Edge () Device Service Provider Network C (CE) Device VPN Site How to Size Inter-Site Circuit Capacity? Duplicate IP Addressing Capability Full Circuit Mesh Requirement for Optimal Routing Complete Isolation Between Customers Layer-3 C Routing Adjacencies between Sites Secure VPN Service 2001, Cisco Systems, Inc. All rights reserved. 5 Peer-to-Peer VPN Model Layer-3 Routing Adjacency C (CE) Device VPN Site Provider Edge () Device Provider Edge () Device Service Provider Network C (CE) Device VPN Site All VPN Routes Carried in SP IGP Routing between Sites Is Optimal Duplicate IP Addressing Is Not an Option Circuit Sizing between Sites No Longer Such an Issue Complex Filters or Dedicated Devices Simple Routing Scheme for Customers No Overlay Mesh 2001, Cisco Systems, Inc. All rights reserved. 6

4 VPN MPLS/VPN Model Combine benefits of overlay and peer-to-peer models Overlay (security and isolation between customers) Peer-to-peer (simplified customer routing) routers only hold routes for attached VPNs Reduces size of routing information Proportional to number of VPNs attached MPLS used to forward packets (not routing) Full routing within backbone no longer required 2001, Cisco Systems, Inc. All rights reserved. 7 MPLS/VPN Model Combined Benefits of Overlay and Peer-to-Peer VPN Models P Router C (CE) Device Router Router C (CE) Device VPN Site Service Provider Network VPN Site Routing between Sites Is Optimal Duplicate IP Addressing Capability Secure Service Routers Hold Only Relevant VPN Routes Complete Isolation between Customers No Complex Filters or Dedicated Routers 2001, Cisco Systems, Inc. All rights reserved. 8

5 VPN Routing and Forwarding Instance (VRF) routers maintain separate routing tables Global routing table Contains all and P routes (perhaps BGP) Populated by the VPN backbone IGP VRF (VPN routing and forwarding) Routing and forwarding table associated with one or more directly connected sites (CE routers) VRF is associated with any type of interface, whether logical or physical (e.g. sub/virtual/tunnel) Interfaces may share the same VRF if the connected sites share the same routing information 2001, Cisco Systems, Inc. All rights reserved. 9 VPN Routing and Forwarding Instance (VRF) VPN-A Paris VPN-A London VPN-B CE CE CE VRF for VPN-A VRF for VPN-B VPN Routing Table IGP/BGP Munich Global Routing Table Multiple Routing and Forwarding Instances (VRFs) Provide the Separation 2001, Cisco Systems, Inc. All rights reserved. 10

6 VRF Route Population VRF is populated locallythrough and CE routing protocol exchange RIP version 2, OSPF, BGP-4 and static routing Separate routing context for each VRF Routing protocol context (BGP-4 and RIP v2) Separate process (OSPF) CE CE Site-1 EBGP,OSPF, RIPv2,Static Site , Cisco Systems, Inc. All rights reserved. 11 VRF and Multiple Routing Instances Routing processes run within specific routing contexts Populate specific VPN routing table and FIBs (VRF) Interfaces are assigned to VRFs to CE Routing Processes Routing Contexts VRF Routing Tables VRF Forwarding Tables BGP RIP Static 2001, Cisco Systems, Inc. All rights reserved. 12

7 VRF Population of MP-BGP CE-1 BGP, OSPF, RIPv2 Update /24, NH=CE-1-1 VPN-v4 Update: RD:1:27: /24, Next-hop=-1 SOO=Paris, RT=VPN-A, Label=(28) Service Provider Network -2 CE routers translate into VPN-V4 route Assigns an RD, SOO, and RT based on configuration Re-writes next-hop attribute (to loop back) Assigns a label based on VRF and/or interface Sends MP-BGP update to all neighbors 2001, Cisco Systems, Inc. All rights reserved. 13 VRF Population of MP-BGP CE-1-1 VPNv4 Update is translated into IPv4 address and put into VRF VPN-A (based on RT) and optionally advertised to any attached sites -2 CE BGP, OSPF, RIPv2 Update /24, NH=CE-1 VPN-v4 Update: RD:1:27: /24, Next-hop=-1 SOO=Paris, RT=VPN-A, Label=(28) Service Provider Network Receiving routers translate to IPv4 Insert the route into the VRF identified by the RT attribute (based on configuration) The label associated to the VPN-V4 address will be set on packets forwarded towards the destination 2001, Cisco Systems, Inc. All rights reserved. 14

8 MPLS/VPN Packet Forwarding In Label VPN-A VRF /24, NH=Paris FEC Out Label 28(V) /24 - In Label FEC Out Label /32 POP VPN-A VRF /24, NH= Label=(28) Paris /24 London Packet Forwarding Based on Stack of Labels 2001, Cisco Systems, Inc. All rights reserved. 15 MPLS VPN Scalability Elements 2001, Cisco Systems, Inc. All rights reserved. 16

9 Elements in Sizing an MPLS/VPN Network BGP Design to Reflection Site-to-Site and Backbone Convergence Route Reflector (Optional) IGP/LDP IGP/LDP C (CE) Device VPN Site Provider Edge () Device Provider Edge () Device Service Provider Network C (CE) Device VPN Site IGP and LDP Provider Edge () Routers 2001, Cisco Systems, Inc. All rights reserved. 17 Elements in Sizing an MPLS/VPN Network Provider Edge () routers How many do I need, how many can I have, what will affect these numbers, when should I add more? Interior gateway and label distribution protocols ibgp How do they interact, how large can they grow, what factors will increase the network deployment size? How many sessions can I have, do I need RRs, Should I confederate? Convergence How quickly can I detect failure, how quickly can I detect new routes? 2001, Cisco Systems, Inc. All rights reserved. 18

10 Elements in Sizing an MPLS/VPN Network CPU, memory, and QoS requirements drives number of s Number of s helps determine IGP and BGP design Increase in Routers Drives IGP, LDP and BGP Design C (CE) Device IGP/LDP Provider Edge () Device Route Reflector Increase in VPN Routes Drives Convergence Times Increase in CE Routers Drives Memory/CPU/QoS Requirements on Routers 2001, Cisco Systems, Inc. All rights reserved. 19 MPLS VPN Sizing Provider Edge () Routers 2001, Cisco Systems, Inc. All rights reserved. 20

11 Sizing Provider Edge () Routers CPU Considerations Number/Type -CE Connections Memory Considerations Throughput Considerations 2001, Cisco Systems, Inc. All rights reserved. 21 Sizing Provider Edge () CPU Considerations Amount of Provisioned QoS to CE Connectivity Type BGP BGP -4-4 Number of Provisioned VRFs OSPF STATIC Number of VPN Clients/Routes Number of Backbone BGP Peers Packet Forwarding (CEF vs. Process) Several Factors Determine CPU Usage 2001, Cisco Systems, Inc. All rights reserved. 22

12 Baseline CPU Comparison CPU % 80 N225 N300 N400 RSP N MHz N MHz N MHz RSP8 250 MHz Sec Intervals 2001, Cisco Systems, Inc. All rights reserved. 23 Sizing Provider Edge () OSPF Considerations Neighbour adjacency Maintenance OSPF OSPF Process OSPF OSPF OSPF VRFs LSA Generation/Reception OSPF Process BGP Table OSPF Process/VRF Maintenance LSA Generation into BGP through redistribution 2001, Cisco Systems, Inc. All rights reserved. 24

13 CPU Usage with OSPF OSPF Processes 1 11 OSPF Processes OSPF Processes TOTAL Number of Routes Per VRF Total Number of Routes 22,000 60,000 10,000 92,000 VPN routes 2001, Cisco Systems, Inc. All rights reserved. 25 Sizing Provider Edge () BGP-4 Considerations BGP-4 Peer Session Maintenance BGP-4 BGP-4 BGP-4 BGP-4 VRFs VRF and BGP Table Maintenance BGP Address-Family (Routing Context) BGP Address-Family (Routing Context) BGP Table Backbone Internal BGP Session Maintenance 2001, Cisco Systems, Inc. All rights reserved. 26

14 CPU Usage with BGP-4 BGP Routing Context TOTAL Number of Routes Per VRF 500 Total Number of Routes 250, ,000 VPN routes 2001, Cisco Systems, Inc. All rights reserved. 27 Sizing Provider Edge () Static Routing Considerations Per-VRF Static Route Maintenance Static Static Static Static VRFs VRF and BGP Table Maintenance BGP Table Backbone Internal BGP Session Maintenance 2001, Cisco Systems, Inc. All rights reserved. 28

15 CPU Usage with Static Routing VRFs Number of Routes Per VRF 10 Total Number of Routes 12,500 TOTAL 12,500 VPN routes 2001, Cisco Systems, Inc. All rights reserved. 29 Sizing Provider Edge () Memory Considerations Number of Local VPN Routes BGP BGP -4-4 Number of Provisioned VRFs Number of Backbone BGP Peers (Paths) Number of Neighbors and Type of Connectivity Spread of IP Addressing Structure OSPF STATIC Multiple RIP/OSPF databases) Unique or Non-Unique RD Allocation Several Factors Determine Memory Usage Number of Remote VPN Routes 2001, Cisco Systems, Inc. All rights reserved. 30

16 Sizing Provider Edge () Table Population FIB FIB populated by VRF & used during label imposition VRF LFIB LFIB populated by VRF with locally learnt & connected routes used during label disposition VRF populated by -CE routing context or process & by import from BGP table MP-BGP BGP table populated by redistribution from VRF and receipt of MP-BGP updates 2001, Cisco Systems, Inc. All rights reserved. 31 Sizing Provider Edge () Memory Considerations BGP Memory Routing Table MPLS CEF IDB Routing Process Overhead Several Areas of Memory Usage 2001, Cisco Systems, Inc. All rights reserved. 32

17 Sizing Provider Edge () BGP Memory BGP Memory ndc-brighton# show ip bgp vpnv4 all summary BGP router identifier , local AS number 2 BGP table version is 21, main routing table version 21 1 network entries and 2 paths using 248 bytes of memory 2 BGP path attribute entries using 120 bytes of memory 2 BGP AS-PATH entries using 48 bytes of memory 1 BGP extended community entries using 24 bytes of memory 0 BGP route-map cache entries using 0 bytes of memory 0 BGP filter-list cache entries using 0 bytes of memory BGP activity 8/58 prefixes, 8/6 paths, scan interval 15 secs Mp = (N*128) + (Np*60) + (P*60) + (Pa * 24) + (Ec * 24) Mp = Total memory used for BGP table by in Bytes N = Number of BGP network entries Np = Number of BGP path entries P = Number of path attribute entries Pa = Number of AS_PATH entries Ec = Number of Extended Community entries 2001, Cisco Systems, Inc. All rights reserved. 33 Sizing Provider Edge () Routing Table Memory Routing Table Memory ndc-brighton# show memory summary include IP: Control Block 0x60567BB IP: Control Block ndc-brighton# show ip route vrf testing summary IP routing table name is testing(1) Source Networks Subnets Overhead Memory (bytes) connected External: 0 Internal: 0 Local: 0 internal Total Each VRF Consumes : 1 IP control block -> 33,184 Bytes 1 Network Descriptor Block (NDB) Per Route (64 Bytes) 1 Routing Descriptor Block (RDB) Per Path (144 Bytes) 2001, Cisco Systems, Inc. All rights reserved. 34

18 Sizing Provider Edge () CEF Memory fibcblk /16 mtrie node / > > / mtrie root.1 /24.2 / > , Cisco Systems, Inc. All rights reserved. 35 /24 Sizing Provider Edge () CEF Memory It Is Difficult to Predict Exactly How Much Memory Will Be Consumed by the FIB As It Depends on How Scattered the Prefix Information Is Example: Calculation for 10.1/16, 10.2/16, /24 and 11.1/16. DECISION FLOW 1k for the Root (First Byte) 1k More If the Route Is a /16 (and No Other Route Shares the Same First Byte) 1k More for a /24 (If No Other Route Shares the First Two Bytes) 1k More If > /24 CALCULATION 1k Root Plus 10.1/16, 10.2/16: 1k for 2nd Level Entry for /24: 1k for 3rd Level Entry /16: 1k for 2nd Level Entry for 11 Total of Approximately 4k for These Routes 2001, Cisco Systems, Inc. All rights reserved. 36

19 Sizing Provider Edge () MPLS Memory MPLS Memory ndc-brighton# show memory allocating-process total include TFIB tag_ 0x60DC5D TFIB tag_rewrite chunk 0x60DC5DB TFIB tag_info chunk 0x60DC5DA TFIB tag_info chunk 0x60DC5D TFIB tag_rewrite chunk ndc-brighton# show memory allocating-process total include TIB 0x60FC7E TIB entry MPLS Forwarding Memory (LFIB) consumes one taginfo (64 Bytes) per route, plus one Forwarding Entry (104 Bytes) for each path 2001, Cisco Systems, Inc. All rights reserved. 37 Sizing Provider Edge () IDB Memory IDB Memory Software IDB ndc-brighton# show memory summary include IDB 0x602F88E *Hardware IDB* 0x602F *Software IDB* Hardware IDB Interface Description Block Hardware IDB: 4692 Bytes (One Per Physical Interface) Software IDB: 2576 Bytes (One Per Interface and Per Sub-Interface) Note: The amount of memory required will differ from platform to platform 2001, Cisco Systems, Inc. All rights reserved. 38

20 Sizing Provider Edge () OSPF Protocol Memory OSPF Memory ndc-brighton# show memory allocating-process total inc OSPF 0x60988CC OSPF lsdb 0x60988C OSPF redist RI 0x60988CEC OSPF sum-lsa 0x60988D OSPF ex-lsa 0x60988D OSPF path 0x60988C OSPF redist P OSPF Protocol Memory ~ 168K per process (additional memory requirements for database population) 2001, Cisco Systems, Inc. All rights reserved. 39 Sizing Provider Edge () RIP Protocol Memory RIP Memory ndc-brighton# show memory allocating-process total inc RIP 0x609871DC RIP: ip Cblk-table 0x609813F RIP pdb 0x C RIP pdb info 0x RIP: per-ribdb data RIP Protocol Memory ~ 47K for the RIP process plus ~250 bytes per ndb/rdb combination and ~400 bytes per routing context (address-family) 2001, Cisco Systems, Inc. All rights reserved. 40

21 MPLS VPN Memory Sizing Design Guidelines 2001, Cisco Systems, Inc. All rights reserved. 41 VRF Memory Sizing No VPN Routes Base Memory Free Memory Free Used Memory 8,187,968 MB Used Memory 56,243,216 MB Used Memory 69,631,904 MB Base 1000 Vrf Only 1000 Subifs and BGP Address Family 2001, Cisco Systems, Inc. All rights reserved. 42

22 VPN Memory Comparison Memory Used Memory Comparison (12.1(5)T) 500 Routes Per VRF, 2 ibgp Paths Base 25 V 50 VRF 100 VRF 200 VRF Number of VRFs 2001, Cisco Systems, Inc. All rights reserved. 43 Memory Sizing Design Rules ~60 70K per VRF 32K for base VRF control block, other memory such as CEF, TFIB overhead, IDBs and so on ~ bytes per route (Includes CEF, TFIB, and RIB memory in BGP) Remember Cisco IOS uses memory Remember Routing Protocol memory Remember Internet routes! Remember to leave transient memory Recommended to leave ~20MB free 2001, Cisco Systems, Inc. All rights reserved. 44

23 Memory Sizing Design Observations 128 Mb platforms are limited (N 225, 3640 may NOT be suitable for full Internet table and VPNs!!!) 256 Mb minimum recommended on devices (if possible) Limit the number of Route Distinguishers per VRF in the same VPN Unless you require ibgp load balancing with RRs 2001, Cisco Systems, Inc. All rights reserved. 45 VRF and Route Limits Summary VRF limits Constrained mainly by CPU Between 500 and 1000 VRFs for static routing (depending on platform 10 routes per VRF) Between 250 and 500 VRFs if using EBGP or RIPv2 (depending on platform 500 routes per VRF) VPN and global route limits Constrained mainly by available memory With 256 Mb, 200,000 routes total (IPv4 and VPNv4) If Internet table is present, this reduces the memory available for VPNs (current calculations are near 65 Mb for 100K Internet routes with tightly packed attributes) 2001, Cisco Systems, Inc. All rights reserved. 46

24 MPLS VPN Router Throughput Considerations 2001, Cisco Systems, Inc. All rights reserved. 47 Router Throughput Considerations BGP -4 How much total bidirectional bandwidth available on? How many CE connections? OSPF STATIC How much bandwidth for each CE connection? How much uplink bandwidth is available? Does this network need to support any SLAs? Several Factors Determine Router Throughput 2001, Cisco Systems, Inc. All rights reserved. 48

25 Basic Throughput Analysis: 7200VXR We know 7200 VXR is capable of 300 Megabits bi-directional throughput With 2 OC-3 uplinks in use, that leaves us with ~290 Mbps (600- (2 * OC-3)) left for CE connections (assuming no I/O FE) Average CE connection speeds can be computed by taking 290 Mbps / # CE connections ATM OC3 Uplink Interface POS OC3 ATM OC3 Uplink Interface POS OC3 ~300 Mbps Aggregate Input ~300 Mbps Aggregate Uplink 2001, Cisco Systems, Inc. All rights reserved. 49 Basic Throughput Analysis: 7200VXR Typically, there will be several customers with differing bandwidth requirements In this example, on average, this works out to 100 CE connections across ATM OC-3 interface at T1 rates ~100 customers per ATM interface -> total 200 -CE connections for the box ATM OC3 ATM OC3 Uplink Interface Uplink Interface POS OC3 POS OC3 Conclusions: Easily within the VRF limits. The same throughput analysis can be repeated for sizing any platform 2001, Cisco Systems, Inc. All rights reserved. 50

26 Considerations when designing for Quality of Service Failure of an uplink may cause bus congestion or over-subscription of the backup uplink interface Non-distributed load balancing may also provide a variance in uplink bandwidth usage SLA requirements (gold/silver/bronze classes of service) obviate the need for Qos Applying Qos on the addresses SLA requirements, but may limit the overall throughput, depending on the features and platforms configured 2001, Cisco Systems, Inc. All rights reserved. 51 Considerations when designing for Quality of Service Performance testing of customer specific Qos feature sets is highly desirable! Can the Qos function be pushed to the CE router? Such as CAR marking & traffic shaping Remember that in general Qos kicks in only when there is congestion present CBWFQ for scheduling on uplinks 2001, Cisco Systems, Inc. All rights reserved. 52

27 Internal and External Routing Protocol Sizing 2001, Cisco Systems, Inc. All rights reserved. 53 IGP Scaling Evolution Flat Topology Link flaps are topology wide Full SPF (OSPF), partial IS-IS (if only prefix/metric change loop back will ALWAYS be full SPF!) Good for TE Good if stable links Confederated AS Different IGP per sub-region addresses restricted to sub-region Next-hop re-written at sub-region boundary Area Topology Link flaps restricted to area Change in type-3 (or type-5) -> partial SPF for all type-3 s which announce the prefix Requires area filtering (OSPF) or route leaking (IS-IS) for /32 loop backs More complex for TE 2001, Cisco Systems, Inc. All rights reserved. 54

28 OSPF Vs. IS-IS Convergence Average Network Convergence for IS-IS & OSPF Time (second) Number of Routers IS-IS OSPF Convergence Time = First Adjacency to Last SPF Execution 2001, Cisco Systems, Inc. All rights reserved. 55 IGP Scalability Task Convergence is not the ONLY consideration Flooding, CPU usage, link flapping and so on Task: Design an IGP backbone to support one million VPN sites Quick math: 2000 devices * 500 VRF forwarding interfaces This breaks the (theoretical) IGP rules for number of routers in a single area Assumes multiple areas or even confederations 2001, Cisco Systems, Inc. All rights reserved. 56

29 Area Topology Considerations IS-IS OSPF Partial SPF As Only Prefix Information Change Partial SPF for All Type -3 LSAs That Announce the Prefix That Has Changed L1/L2 L1/L2 Topology Change -> FULL SPF Within Area LSP for ALL Area Routes Prefix Information Only No Area Topology Info Exchange Single LSA for Prefix Change 2001, Cisco Systems, Inc. All rights reserved. 57 ABR Topology/prefix Change -> FULL SPF Within Area Area Topology Provides Separation and Stability Area Topology Considerations IS-IS OSPF L1/L2 LSP -1, -2 & -3 Type-3-1 Type-3-2 Type-3-3 L1/L Single LSP Vs. Multiple LSA s , Cisco Systems, Inc. All rights reserved. 58

30 Sizing the IGP Area Topology Backbone area sizing issues Number of routers Number of links and topology Leaking of loop back addresses Large MPLS networks = lots of s potentially! Maximum allocated labels Defaults to 100K labels including IGP and VPN Can be changed mpls label range command 2001, Cisco Systems, Inc. All rights reserved. 59 IGP Scaling Using Confederations Confederation AS # 4 AS65001 OSPF EIGRP AS65003 IS-IS AS , Cisco Systems, Inc. All rights reserved. 60

31 Confederated MPLS VPN Operation MP-iBGP for VPNv4 Routes Border -ASBR MP-eBGP for VPNv4 Routes Border -ASBR MP-iBGP for VPNv4 Routes VPN Service Sub-AS Sub-AS VPN Service /CE IPv4 Protocol Exchange VPN Customer CE VPN Customer A /CE IPv4 Protocol Exchange VPN Customer CE VPN Customer A 2001, Cisco Systems, Inc. All rights reserved. 61 MP-BGP Deployment Requirements Full ibgp mesh requirement between s that require same VPN information Could partition to break up the mesh mini ibgp cluster Route Reflector Remember only needs routes for attached VPNs No full mesh requirement one session to each route reflector Could partition to break up the topology and reduce processing overhead on routers MP-BGP Used to Distribute VPN Prefix Information 2001, Cisco Systems, Inc. All rights reserved. 62

32 Peer-Group Concepts for RR Clients Same set of updates sent to group of neighbors using peer-group concept Results in lower CPU and I/O memory consumption Dramatic improvement observed in convergence using peer-group over non-peer group 250K prefixes with 500K paths 100 core and 32 clients With peer-group -> 12 minutes, 29 seconds Without peer-group -> 56 minutes, 6 seconds Use Redundant Route Reflectors WITH Peer-Groups 2001, Cisco Systems, Inc. All rights reserved. 63 RR Tuning and Recommendations Keep RRs separate for IPv4 and VPNv4 Better stability, faster convergence Meets SLA requirements (with high number of routes) Use route reflector server model Dedicated for RR function not in forwarding path Conserve CPU and memory for faster convergence Recommended RR for VPN is N-400 Highest CPU power Availability of large DRAM memory 512 MB 2001, Cisco Systems, Inc. All rights reserved. 64

33 RR Tuning and Recommendations Route Reflector TCP MSS TCP Window-Size ip tcp window-size <bytes> ip tcp mss <bytes> Input/Output Hold-Queue Route Reflector Clients On RR, increase input hold-queue and window-size Window size/(mss) * number of peers = hold-queue size hold-queue <packets> in ip tcp window-size <bytes> Prevent input drops -> decrease convergence times Use ip tcp path-mtu-discovery The packet rate will drop substantially; default MSS size is 536 bytes 2001, Cisco Systems, Inc. All rights reserved. 65 RR Core Design Option 1 Scale for 250 thousand VPN sites 500 VRF interfaces per device 500 routers in total 50 POP topology 10 routers per POP Centralized route reflection topology Split routers into groups and use specific route reflector RT values 2001, Cisco Systems, Inc. All rights reserved. 66

34 RR-Group Route Reflector Partitioning RT 9176: RT 9176: RT 9176: RT 9176: RT 9176: RT 9176: RT 9176: RT 9176:1022 Export RT 9176:1015 Export RT 9176:1016 Export RT 9176:1017 Export RT 9176:1018 Export RT 9176:1015 Export RT 9176:1019 Export RT 9176:1020 Export RT 9176:1021 Export RT 9176:1022 POP Routers 1 5 POP Routers 6 10 Export RT 9176:1019 RR-Group Based on Route Reflector RT Value 2001, Cisco Systems, Inc. All rights reserved. 67 RR-Group Route Reflector Partitioning Clients of Core RRs Accept Routes With STD Community ALL RRs Clients of 2 nd Tier RRs RT 9176: RT 9176: RT 9176: RT 9176:1020 Peering Sessions With Core RRs Configured to Accept Routes ONLY With STD Community ALL RRs Export RT 9176:1015 Export RT 9176:1016 Export RT 9176:1015 Export RT 9176:1019 Export RT 9176:1020 Export RT 9176:1019 Export Cross Partition Routes With STD Community ALL RRs Export Cross Partition Routes With STD Community ALL RRs Cross Partition Pollination Via 2 nd Tier RRs 2001, Cisco Systems, Inc. All rights reserved. 68

35 RR-Group Route Reflector Partitioning address-family vpnv4 neighbor activate neighbor send-community both neighbor route-map filter out exit-address-family! ip extcommunity-list 1 permit rt 100:1! route-map filter permit 10 match extcommunity 1 set community 3! route-map filter permit 20 VPN-v4 update: RD:1:27: /24 RT=100:1 9176:1015 STD=3 Label=(28) RT 9176:1015 Accept Routes With STD Community 3 VPN-v4 update RD:1:27: /24 RT=100:1 9176:1015 STD=3 Label=(28) RT 9176:1020 VPN-v4 update: RD:1:27: /24 RT=100:1 9176:1015 STD=3 Label=(28) VPN-v4 update RD:1:27: /24 RT=100:1 9176:1015 STD=3 Label=(28) Export RT 9176:1015 Import RT 100:1 Clear ip bgp vpnv4 unicast out 2001, Cisco Systems, Inc. All rights reserved. 69 RR Core Design Option 2 Scale for 250 thousand VPN sites 500 VRF interfaces per device 500 routers in total 50 POP topology 10 routers per POP Distributed route reflection topology All knowing distributed route reflectors Core RRs fully meshed clients 2001, Cisco Systems, Inc. All rights reserved. 70

36 Distributed Route Reflection POP Routers POP Sites POP Routers nd Tier RRs 1 st Tier RRs 2 nd Tier RRs 2 nd Tier RRs 2 nd Tier RRs RR-Group POP Sites POP Routers 1 10 POP Routers , Cisco Systems, Inc. All rights reserved. 71 MPLS VPN Convergence Tuning 2001, Cisco Systems, Inc. All rights reserved. 72

37 Routing Convergence Convergence needs to be assessed in two main areas Convergence within the MPLS/VPN backbone Convergence between VPN client sites And with two separate scenarios Convergence on platform/network failure down convergence Convergence on new routing information up convergence 2001, Cisco Systems, Inc. All rights reserved. 73 End-to-End Routing Convergence Site-to-Site Convergence on Failure Up Convergence VPN Client A New VPN Route Propagated Across MP-IBGP Session VPN Client A New VPN Route Advertised Advertisement of New VPN Route to Relevant VPN Sites Down Convergence If Link Fails, MPLS/VPN Backbone IGP Converges on New Path to BGP Next-Hop New VPN Route Imported Into Relevant VRFs Site-to-Site and MPLS/VPN Backbone IGP Convergence Are Independent 2001, Cisco Systems, Inc. All rights reserved. 74

38 Convergence across Backbone Convergence of MPLS/VPN backbone IGP will not affect client-to-client route convergence Unless BGP next-hop becomes unavailable; but will affect client-to-client traffic while backbone converges Backbone may be router-only based or based on ATM switches Convergence will be different for the MPLS forwarding plane cell-mode or frame-mode implementation? 2001, Cisco Systems, Inc. All rights reserved. 75 Convergence Router-Based Backbone Unsolicited downstream Bindings advertised as soon as route within the routing table Liberal label retention If multiple neighbors, next-hop change causes new label to be used for forwarding Immediate notification of routing table change Whenever a route changes (addition/deletion) MPLS process informed immediately 2001, Cisco Systems, Inc. All rights reserved. 76

39 Convergence Router Based Backbone VPN Client A If P-1 to -2 Link Fails, -1 Next-Hop to Destinations Reachable Via /32 (-2 Loop Back) Will Change to P-3; As Label Exists (41) Convergence Is As Quick As the IGP Use Label 23 for Destination /32 Use Label POP for Destination /32 VPN Client A -1 Use Label 41 for Destination /32 P-3 Use Label 25 for Destination /32 P-1 P-2-2 Use Label POP for Destination /32 MPLS and IGP Backbone Convergence Equivalent 2001, Cisco Systems, Inc. All rights reserved. 77 Convergence ATM Backbone Downstream-on-demand Convergence affecting, as LSR must signal for downstream label binding Conservative label retention Convergence affecting, as LSR must signal for downstream label binding if one does not exist Next-hop change will cause label request Two stage convergence: IGP: Converge around topology changes MPLS: Re-establish label mappings 2001, Cisco Systems, Inc. All rights reserved. 78

40 Convergence ATM-Based Backbone VPN Client A If P-1 to -2 Link Fails, -1 Next-Hop to Destinations Reachable Via /32 (-2 Loop Back) Will Change to P-3; As Label Does Not Exist, -1 Must Signal the Next-Hop Downstream ATM-LSR Use Label 1/239 for Use Label 1/321 for Destination /32 Destination /32 VPN Client A Label Request for Destination /32-1 P-3 Label Request for Destination /32 P-1 P-2-2 Label Request for Destination /32 MPLS LSR Must Re-Converge on IGP Change AND Re-Signal for Label Mapping to Downstream Next-Hop 2001, Cisco Systems, Inc. All rights reserved. 79 Site-to-Site Convergence Four main convergence areas Advertisement of routes from CE to and placement into VRF (T1 and T2) Propagation of routes across the MPLS/VPN backbone (T3 and T4) Import process of these routes into relevant VRFs (T5) Advertisement of VRF routes to attached VPN sites (T6) 2001, Cisco Systems, Inc. All rights reserved. 80

41 Site-to-Site Convergence VPN Client A RR-1 RR-2 T1 T2 T3 T4-1 T4 T4 T4-2 T4 T5 T5 T6 T6 VPN Client A -3 Site-to-Site Convergence Points 2001, Cisco Systems, Inc. All rights reserved. 81 Backbone Route Propagation Change are not propagated to other BGP speakers immediately Batched together and sent at advertisement-interval Default is every 5 seconds for ibgp, 30 for ebgp Can be tweaked using the neighbor advertisementinterval command Needs to be changed for both backbone and CE routers if BGP between and CE 2001, Cisco Systems, Inc. All rights reserved. 82

42 Scanner Process Scanner process will also have an affect on convergence Used to check next-hop reachability and to process any network commands within the BGP process Invoked every 60 seconds by default for IPv4 and VPNv4 prefixes Can be tuned with BGP scan-time command Large BGP table and small scan-time can be verycpu intensive beware! 2001, Cisco Systems, Inc. All rights reserved. 83 Import Process Import process uses a separate invocation of the scanner process Every 15 seconds by default Can be tuned using the BGP scan-time import command Could take up to 15 seconds for a route to be placed into a receiving VRF And then potentially a further 30 seconds to be advertised to CE if ebgp is in operation! 2001, Cisco Systems, Inc. All rights reserved. 84

43 Site-to-Site Theoretical Maximum UP Convergence T1_max BGP-4 RIP V2 30 (Default Adv Int) 30 (0 with Triggered) OSPF Variable (Time for LSA Propagation) T2_max T3_max T4_max T5_max 10 ((n+1) * Adv Int) 10 ((n+1) * Adv Int) 10 ((n+1) * Adv Int) Total T6_max 30 (Default Adv Int) 30 (0 with Triggered) ~70 Seconds ~85 Seconds or ~25 Seconds (with Triggered) Variable (Time for LSA Prop and SPF) ~35 Seconds 2001, Cisco Systems, Inc. All rights reserved. 85 Summary 2001, Cisco Systems, Inc. All rights reserved. 86

44 Summary MPLS/VPN best of both worlds Advantages of peer-to-peer and overlay models but without the previous scaling issues Optimal routing between sites routes hold only relevant routing information No complex filters or dedicated routers But We Still Have to Scale This Architecture 2001, Cisco Systems, Inc. All rights reserved. 87 Summary MPLS/VPN backbone scalability elements BGP, IGP/LDP, routers router sizing QoS, memory, CPU Border Gateway Protocol (BGP) sizing Route reflection design TCP tuning IGP/LDP sizing Flat or area topology 2001, Cisco Systems, Inc. All rights reserved. 88

MPLS VPN--Inter-AS Option AB

MPLS VPN--Inter-AS Option AB The feature combines the best functionality of an Inter-AS Option (10) A and Inter-AS Option (10) B network to allow a Multiprotocol Label Switching (MPLS) Virtual Private Network (VPN) service provider

More information

MPLS VPN Inter-AS Option AB

MPLS VPN Inter-AS Option AB First Published: December 17, 2007 Last Updated: September 21, 2011 The feature combines the best functionality of an Inter-AS Option (10) A and Inter-AS Option (10) B network to allow a Multiprotocol

More information

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP MPLS VPN Carrier Supporting Carrier Using LDP and an IGP Multiprotocol Label Switching (MPLS) Virtual Private Network (VPN) Carrier Supporting Carrier (CSC) enables one MPLS VPN-based service provider

More information

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP MPLS VPN Carrier Supporting Carrier Using LDP and an IGP Last Updated: December 14, 2011 Multiprotocol Label Switching (MPLS) Virtual Private Network (VPN) Carrier Supporting Carrier (CSC) enables one

More information

Securizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN

Securizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN Platformă de e-learning și curriculă e-content pentru învățământul superior tehnic Securizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN MPLS VPN 5-ian-2010 What this lecture is about: IP

More information

MPLS VPN Multipath Support for Inter-AS VPNs

MPLS VPN Multipath Support for Inter-AS VPNs The feature supports Virtual Private Network (VPN)v4 multipath for Autonomous System Boundary Routers (ASBRs) in the interautonomous system (Inter-AS) Multiprotocol Label Switching (MPLS) VPN environment.

More information

Cisco Training - HD Telepresence MPLS: Implementing Cisco MPLS V3.0. Upcoming Dates. Course Description. Course Outline

Cisco Training - HD Telepresence MPLS: Implementing Cisco MPLS V3.0. Upcoming Dates. Course Description. Course Outline Cisco Training - HD Telepresence MPLS: Implementing Cisco MPLS V3.0 From the technology basics to advanced VPN configuration. $3,995.00 5 Days Upcoming Dates Dec 10 - Dec 14 Mar 25 - Mar 29 Course Description

More information

MPLS VPN. 5 ian 2010

MPLS VPN. 5 ian 2010 MPLS VPN 5 ian 2010 What this lecture is about: IP CEF MPLS architecture What is MPLS? MPLS labels Packet forwarding in MPLS MPLS VPNs 3 IP CEF & MPLS Overview How does a router forward packets? Process

More information

Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS

Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS CHAPTER 43 Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS This chapter describes how to configure multiprotocol label switching (MPLS) and Ethernet over MPLS (EoMPLS) on the Cisco ME 3800X and ME 3600X

More information

Implementing MPLS Layer 3 VPNs

Implementing MPLS Layer 3 VPNs A Multiprotocol Label Switching (MPLS) Layer 3 Virtual Private Network (VPN) consists of a set of sites that are interconnected by means of an MPLS provider core network. At each customer site, one or

More information

MPLS VPN C H A P T E R S U P P L E M E N T. BGP Advertising IPv4 Prefixes with a Label

MPLS VPN C H A P T E R S U P P L E M E N T. BGP Advertising IPv4 Prefixes with a Label 7 C H A P T E R S U P P L E M E N T This online supplement of Chapter 7 focuses on two important developments. The first one is Inter-Autonomous. Inter-Autonomous is a concept whereby two service provider

More information

MPLS VPN Carrier Supporting Carrier

MPLS VPN Carrier Supporting Carrier MPLS VPN Carrier Supporting Carrier Feature History Release 12.0(14)ST 12.0(16)ST 12.2(8)T 12.0(21)ST 12.0(22)S 12.0(23)S Modification This feature was introduced in Cisco IOS Release 12.0(14)ST. Support

More information

MPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses

MPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses MPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses The Multiprotocol Label Switching (MPLS) VPN Inter-AS with Autonomous System Boundary Routers (ASBRs) Exchanging VPN-IPv4 Addresses feature allows

More information

AToM (Any Transport over MPLS)

AToM (Any Transport over MPLS) I N D E X A AAL5 over MPLS operation, 459 460 configuration, 462 463 flowchart configuration, 461 PE router, 461 provider router, 461 verification, 463 465 AAL5 to VLAN Interworking, 515 517 AC (Attachment

More information

MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution

MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution This feature lets you configure your carrier supporting carrier network to enable Border Gateway Protocol (BGP) to transport routes and Multiprotocol

More information

Deploying MPLS-VPN. Session RST Copyright 2003, Cisco Systems, Inc. All rights reserved. Printed in USA. 8181_05_2003_c2 RST-2061

Deploying MPLS-VPN. Session RST Copyright 2003, Cisco Systems, Inc. All rights reserved. Printed in USA. 8181_05_2003_c2 RST-2061 Deploying MPLS-VPN Session 2 Copyright Printed in USA. Agenda Prerequisites Background Theory Practice Route Reflectors Carrier s Carrier Inter-AS Import/Export Maps 3 Prerequisites Must understand basic

More information

Concepts and Operation of MPLS VPNs. Francisco Bolanos

Concepts and Operation of MPLS VPNs. Francisco Bolanos Concepts and Operation of MPLS VPNs Francisco Bolanos fbolanos@cisco.com 2001, Cisco Systems, Inc. All rights reserved. 1 Agenda MPLS Concepts Label Structure Label assignment and distribution RD, RT and

More information

MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution

MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution This feature enables you to configure your carrier supporting carrier network to enable Border Gateway Protocol (BGP) to transport routes

More information

CCIE R&S Techtorial MPLS

CCIE R&S Techtorial MPLS CCIE R&S Techtorial MPLS Ing. Tomáš Kelemen Partner Systems Engineer CCIE #24395 Ing. Peter Mesjar Systems Engineer CCIE #17428 2011 Cisco Systems, Inc. All rights reserved. 1 Agenda Introduction to MPLS

More information

Multiprotocol BGP 1 MPLS VPN. Agenda. Multiprotocol BGP 2

Multiprotocol BGP 1 MPLS VPN. Agenda. Multiprotocol BGP 2 Multiprotocol BGP 1 MPLS VPN Peer to Peer VPN s BGP-4 (RFC 1771) is capable of carrying routing information only for IPv4 The only three pieces of information carried by BGP-4 that are IPv4 specific are

More information

InterAS Option B. Information About InterAS. InterAS and ASBR

InterAS Option B. Information About InterAS. InterAS and ASBR This chapter explains the different InterAS option B configuration options. The available options are InterAS option B, InterAS option B (with RFC 3107), and InterAS option B lite. The InterAS option B

More information

Multiprotocol Label Switching Virtual Private Network

Multiprotocol Label Switching Virtual Private Network Anas Al-Selwi Multiprotocol Label Switching Virtual Private Network Helsinki Metropolia University of Applied Sciences Bachelor of Engineering Information Technology Thesis 08 May 2013 Abstract Author(s)

More information

Exam : Title : BGP + MPLS Exam (BGP + MPLS)

Exam : Title : BGP + MPLS Exam (BGP + MPLS) Exam : 642-691 Title : BGP + MPLS Exam (BGP + MPLS) Ver : 09-19-2008 QUESTION 1: Every time a flap occurs on a route, the route receives A. 750 per-flap penalty points which are user configurable B. 1500

More information

Configuring MPLS L3VPN

Configuring MPLS L3VPN Contents Configuring MPLS L3VPN 1 MPLS L3VPN overview 1 Introduction to MPLS L3VPN 1 MPLS L3VPN concepts 2 MPLS L3VPN packet forwarding 5 MPLS L3VPN networking schemes 5 MPLS L3VPN routing information

More information

MPLS VPN Inter-AS IPv4 BGP Label Distribution

MPLS VPN Inter-AS IPv4 BGP Label Distribution MPLS VPN Inter-AS IPv4 BGP Label Distribution This feature enables you to set up a Virtual Private Network (VPN) service provider network so that the autonomous system boundary routers (ASBRs) exchange

More information

MPLS design. Massimiliano Sbaraglia

MPLS design. Massimiliano Sbaraglia MPLS design Massimiliano Sbaraglia - MPLS layer 2 VPN diagram flowchart - MPLS layer 2 VPN pseudowire VPWS diagram - MPLS layer 2 VPN VPLS diagram - MPLS layer 2 EVPN diagram - MPLS layer 3 VPN diagram

More information

HP A5820X & A5800 Switch Series MPLS. Configuration Guide. Abstract

HP A5820X & A5800 Switch Series MPLS. Configuration Guide. Abstract HP A5820X & A5800 Switch Series MPLS Configuration Guide Abstract This document describes the software features for the HP 5820X & 5800 Series products and guides you through the software configuration

More information

MPLS L3VPN. The MPLS L3VPN model consists of three kinds of devices: PE CE Site 2. Figure 1 Network diagram for MPLS L3VPN model

MPLS L3VPN. The MPLS L3VPN model consists of three kinds of devices: PE CE Site 2. Figure 1 Network diagram for MPLS L3VPN model is a kind of PE-based L3VPN technology for service provider VPN solutions. It uses BGP to advertise VPN routes and uses to forward VPN packets on service provider backbones. provides flexible networking

More information

MPLS Introduction. (C) Herbert Haas 2005/03/11

MPLS Introduction. (C) Herbert Haas 2005/03/11 MPLS Introduction MPLS (C) Herbert Haas 2005/03/11 Terminology LSR LER FEC LSP FIB LIB LFIB TIB PHP LDP TDP RSVP CR-LDP Label Switch Router Label Edge Router Forwarding Equivalent Class Label Switched

More information

MPLS VPN Route Target Rewrite

MPLS VPN Route Target Rewrite The feature allows the replacement of route targets on incoming and outgoing Border Gateway Protocol (BGP) updates Typically, Autonomous System Border Routers (ASBRs) perform the replacement of route targets

More information

Configuring MPLS L3VPN

Configuring MPLS L3VPN Contents Configuring MPLS L3VPN 1 MPLS L3VPN overview 1 MPLS L3VPN concepts 2 MPLS L3VPN packet forwarding 4 MPLS L3VPN networking schemes 5 MPLS L3VPN routing information advertisement 8 Inter-AS VPN

More information

WORKSHOP MPLS.

WORKSHOP MPLS. WORKSHOP MPLS fbolanos@cisco.com 2001, Cisco Systems, Inc. All rights reserved. 1 MPLS Concepts Label Structure Label assignment and distribution ATM LSRs Loop prevention RD, RT and VRF instances Service

More information

HP FlexFabric 7900 Switch Series

HP FlexFabric 7900 Switch Series HP FlexFabric 7900 Switch Series MCE Configuration Guide Part number: 5998-6188 Software version: Release 2117 and Release 2118 Document version: 6W100-20140805 Legal and notice information Copyright 2014

More information

WAN Edge MPLSoL2 Service

WAN Edge MPLSoL2 Service 4 CHAPTER While Layer 3 VPN services are becoming increasing popular as a primary connection for the WAN, there are a much larger percentage of customers still using Layer 2 services such Frame-Relay (FR).

More information

MPLS опорни мрежи MPLS core networks

MPLS опорни мрежи MPLS core networks MPLS опорни мрежи MPLS core networks Николай Милованов/Nikolay Milovanov http://niau.org Objectives Identify the drawbacks of traditional IP routing Describe basic MPLS concepts and LSR types. MPLS Labels

More information

UNDERSTANDING CONVERGENCE IN MPLS VPN NETWORKS. Mukhtiar A. Shaikh Moiz Moizuddin

UNDERSTANDING CONVERGENCE IN MPLS VPN NETWORKS. Mukhtiar A. Shaikh Moiz Moizuddin UNDERSTANDING CONVERGENCE IN MPLS VPN NETWORKS Mukhtiar A. Shaikh (mshaikh@cisco.com) Moiz Moizuddin (mmoizudd@cisco.com) 1 Agenda Introduction Convergence Definition Expected (Theoretical) Convergence

More information

Deploy MPLS L3 VPN. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by:

Deploy MPLS L3 VPN. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by: Deploy MPLS L3 VPN APNIC Technical Workshop October 23 to 25, 2017. Selangor, Malaysia Hosted by: Issue Date: [201609] Revision: [01] Acknowledgement Cisco Systems Course Outline MPLS L3 VPN Models L3

More information

HP FlexFabric 5930 Switch Series

HP FlexFabric 5930 Switch Series HP FlexFabric 5930 Switch Series MCE Configuration Guide Part number: 5998-4625 Software version: Release 2406 & Release 2407P01 Document version: 6W101-20140404 Legal and notice information Copyright

More information

L3VPN Configuration. L3VPN Overview. Introduction to L3VPN

L3VPN Configuration. L3VPN Overview. Introduction to L3VPN Table of Contents L3VPN Configuration 1 L3VPN Overview 1 Introduction to L3VPN 1 L3VPN Concepts 2 L3VPN Networking Schemes 3 OSPF VPN Extension 6 L3VPN Configuration Task List 8 Configuring VPN Instances

More information

VRF, MPLS and MP-BGP Fundamentals

VRF, MPLS and MP-BGP Fundamentals VRF, MPLS and MP-BGP Fundamentals Jason Gooley, CCIEx2 (RS, SP) #38759 Twitter: @ccie38759 LinkedIn: http://www.linkedin.com/in/jgooley Agenda Introduction to Virtualization VRF-Lite MPLS & BGP Free Core

More information

IBGP internals. BGP Advanced Topics. Agenda. BGP Continuity 1. L49 - BGP Advanced Topics. L49 - BGP Advanced Topics

IBGP internals. BGP Advanced Topics. Agenda. BGP Continuity 1. L49 - BGP Advanced Topics. L49 - BGP Advanced Topics IBGP internals BGP Advanced Topics main IBGP aspects inside an AS continuity all packets entering the AS that were not blocked by some policies should reach the proper exit BGP router all transit routers

More information

Technology Overview MPLS. MPLS Layer 3 VPNs CHAPTER

Technology Overview MPLS. MPLS Layer 3 VPNs CHAPTER CHAPTER 2 MPLS MPLS was viewed until recently as a service provider routing technology. Next generation enterprise networks relying on intelligent network infrastructure for solutions such as IP telephony,

More information

HP 5920 & 5900 Switch Series

HP 5920 & 5900 Switch Series HP 5920 & 5900 Switch Series MCE Configuration Guide Part number: 5998-2896 Software version: Release2207 Document version: 6W100-20121130 Legal and notice information Copyright 2012 Hewlett-Packard Development

More information

Configuring BGP community 43 Configuring a BGP route reflector 44 Configuring a BGP confederation 44 Configuring BGP GR 45 Enabling Guard route

Configuring BGP community 43 Configuring a BGP route reflector 44 Configuring a BGP confederation 44 Configuring BGP GR 45 Enabling Guard route Contents Configuring BGP 1 Overview 1 BGP speaker and BGP peer 1 BGP message types 1 BGP path attributes 2 BGP route selection 6 BGP route advertisement rules 6 BGP load balancing 6 Settlements for problems

More information

Protecting an EBGP peer when memory usage reaches level 2 threshold 66 Configuring a large-scale BGP network 67 Configuring BGP community 67

Protecting an EBGP peer when memory usage reaches level 2 threshold 66 Configuring a large-scale BGP network 67 Configuring BGP community 67 Contents Configuring BGP 1 Overview 1 BGP speaker and BGP peer 1 BGP message types 1 BGP path attributes 2 BGP route selection 6 BGP route advertisement rules 6 BGP load balancing 6 Settlements for problems

More information

MPLS LDP. Agenda. LDP Overview LDP Protocol Details LDP Configuration and Monitoring 9/27/16. Nurul Islam Roman

MPLS LDP. Agenda. LDP Overview LDP Protocol Details LDP Configuration and Monitoring 9/27/16. Nurul Islam Roman MPLS LDP Nurul Islam Roman (nurul@apnic.net) 1 Agenda LDP Overview LDP Protocol Details LDP Configuration and Monitoring 1 Label Distribution Protocol Overview MPLS nodes need to exchange label information

More information

Configuring MPLS and EoMPLS

Configuring MPLS and EoMPLS 37 CHAPTER This chapter describes how to configure multiprotocol label switching (MPLS) and Ethernet over MPLS (EoMPLS) on the Catalyst 3750 Metro switch. MPLS is a packet-switching technology that integrates

More information

Operation Manual MCE H3C S3610&S5510 Series Ethernet Switches. Table of Contents

Operation Manual MCE H3C S3610&S5510 Series Ethernet Switches. Table of Contents Table of Contents Table of Contents Chapter 1 MCE Overview... 1-1 1.1 MCE Overview... 1-1 1.1.1 Introduction to BGP/MPLS VPN... 1-1 1.1.2 BGP/MPLS VPN Concepts... 1-2 1.1.3 Introduction to MCE... 1-5 1.1.4

More information

Troubleshooting High CPU Caused by the BGP Scanner or BGP Router Process

Troubleshooting High CPU Caused by the BGP Scanner or BGP Router Process Troubleshooting High CPU Caused by the BGP Scanner or BGP Router Process Document ID: 107615 Contents Introduction Before You Begin Conventions Prerequisites Components Used Understanding BGP Processes

More information

ibgp Multipath Load Sharing

ibgp Multipath Load Sharing This feature module describes the feature. This feature enables the BGP speaking router to select multiple ibgp paths as the best paths to a destination. The best paths or multipaths are then installed

More information

Troubleshooting LSP Failure in MPLS VPN

Troubleshooting LSP Failure in MPLS VPN Troubleshooting LSP Failure in MPLS VPN Document ID: 23565 Contents Introduction Prerequisites Requirements Components Used Conventions Network Diagram Router Configurations Problem Cause of the LSP Failure

More information

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

PASS4TEST. IT Certification Guaranteed, The Easy Way!   We offer free update service for one year PASS4TEST IT Certification Guaranteed, The Easy Way \ http://www.pass4test.com We offer free update service for one year Exam : 642-691 Title : CCIP BGP + MPLS Exam (BGP + MPLS) Vendors : Cisco Version

More information

LARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF

LARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF LARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF MODULE 05 MULTIPROTOCOL LABEL SWITCHING (MPLS) AND LABEL DISTRIBUTION PROTOCOL (LDP) 1 by Xantaro IP Routing In IP networks, each router makes an independent

More information

Multiprotocol Label Switching (MPLS)

Multiprotocol Label Switching (MPLS) Multiprotocol Label Switching (MPLS) Petr Grygárek rek 1 Technology Basics Integrates label-based forwarding paradigm with network layer routing label forwarding + label swapping similar to ATM/FR switching

More information

IPv6 Switching: Provider Edge Router over MPLS

IPv6 Switching: Provider Edge Router over MPLS Multiprotocol Label Switching (MPLS) is deployed by many service providers in their IPv4 networks. Service providers want to introduce IPv6 services to their customers, but changes to their existing IPv4

More information

Table of Contents Chapter 1 MPLS L3VPN Configuration

Table of Contents Chapter 1 MPLS L3VPN Configuration Table of Contents Table of Contents... 1-1 1.1 MPLS L3VPN Overview... 1-1 1.1.1 MPLS L3VPN Model... 1-2 1.1.2 MPLS L3VPN Implementation... 1-5 1.1.3 Nested MPLS L3VPN Implementation... 1-7 1.1.4 Hierarchical

More information

Label Distribution Protocol and Basic MPLS Configuration. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by:

Label Distribution Protocol and Basic MPLS Configuration. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by: Label Distribution Protocol and Basic MPLS Configuration APNIC Technical Workshop October 23 to 25, 2017. Selangor, Malaysia Hosted by: Issue Date: [201609] Revision: [01] Label Distribution Protocol 2

More information

Route Leaking in MPLS/VPN Networks

Route Leaking in MPLS/VPN Networks Route Leaking in MPLS/VPN Networks Document ID: 47807 Contents Introduction Prerequisites Requirements Components Used Conventions Configure Route Leaking from a Global Routing Table into a VRF and Route

More information

OSPF Sham-Link Support for MPLS VPN

OSPF Sham-Link Support for MPLS VPN Feature History Release Modification 12.2(8)T This feature was introduced. This module describes how to configure and use a sham-link to connect Virtual Private Network (VPN) client sites that run the

More information

MPLS: Layer 3 VPNs: Inter-AS and CSC Configuration Guide, Cisco IOS Release 15SY

MPLS: Layer 3 VPNs: Inter-AS and CSC Configuration Guide, Cisco IOS Release 15SY MPLS: Layer 3 VPNs: Inter-AS and CSC Configuration Guide, Cisco IOS Release 15SY First Published: October 15, 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706

More information

Multiprotocol Label Switching Overview

Multiprotocol Label Switching Overview This chapter describes the Multiprotocol Label Switching (MPLS) distribution protocol. MPLS is a high-performance packet forwarding technology that integrates the performance and traffic management capabilities

More information

Deploying MPLS L3VPN. Apricot Cisco and/or its affiliates. All rights reserved. Cisco Public

Deploying MPLS L3VPN. Apricot Cisco and/or its affiliates. All rights reserved. Cisco Public Deploying MPLS L3VPN 1 Abstract This session describes the implementation of IP Virtual Private Networks (IP VPNs) using MPLS. It is the most common Layer 3 VPN technology, as standardized by IETF RFC2547/4364,

More information

MPLS Core Networks Николай Милованов/Nikolay Milovanov

MPLS Core Networks Николай Милованов/Nikolay Milovanov Label Assignment and Distribution Николай Милованов/Nikolay Milovanov Contents Label Assignment and Distribution Typical Label Distribution in Packet-mode MPLS Convergence in Packet-mode MPLS MPLS Label

More information

BGP Commands: M through N

BGP Commands: M through N match additional-paths advertise-set, on page 3 match as-path, on page 6 match community, on page 8 match extcommunity, on page 10 match local-preference, on page 12 match policy-list, on page 14 match

More information

ibgp Multipath Load Sharing

ibgp Multipath Load Sharing ibgp Multipath Load haring Feature History Release 12.2(2)T 12.2(14) Modification This feature was introduced. This feature was integrated into. This feature module describes the ibgp Multipath Load haring

More information

MPLS in the DCN. Introduction CHAPTER

MPLS in the DCN. Introduction CHAPTER CHAPTER 5 First Published: January 3, 2008 Last Updated: January 3, 2008 Finding Support Information for Platforms and Cisco IOS and Catalyst OS Software Images Use Cisco Feature Navigator to find information

More information

Применение MPLS в сетях связи. (Часть 2)

Применение MPLS в сетях связи. (Часть 2) Применение MPLS в сетях связи. (Часть 2) Дополнительные главы Компьютерных сетей и телекоммуникаций. Васин В.В. CCIE, ECE, CCSI MPLS VPN Technology Introducing VPNs Traditional Router-Based Networks Traditional

More information

BGP Cost Community. Prerequisites for the BGP Cost Community Feature

BGP Cost Community. Prerequisites for the BGP Cost Community Feature The feature introduces the cost extended community attribute. The cost community is a non-transitive extended community attribute that is passed to internal BGP (ibgp) and confederation peers but not to

More information

Operation Manual IPv4 Routing H3C S3610&S5510 Series Ethernet Switches. Table of Contents

Operation Manual IPv4 Routing H3C S3610&S5510 Series Ethernet Switches. Table of Contents Table of Contents Table of Contents Chapter 1 Static Routing Configuration... 1-1 1.1 Introduction... 1-1 1.1.1 Static Route... 1-1 1.1.2 Default Route... 1-1 1.1.3 Application Environment of Static Routing...

More information

Internet Engineering Task Force (IETF)

Internet Engineering Task Force (IETF) Internet Engineering Task Force (IETF) Request for Comments: 7032 Category: Standards Track ISSN: 2070-1721 T. Beckhaus, Ed. Deutsche Telekom AG B. Decraene Orange K. Tiruveedhula Juniper Networks M. Konstantynowicz,

More information

BGP Best External. Finding Feature Information

BGP Best External. Finding Feature Information The feature provides the network with a backup external route to avoid loss of connectivity of the primary external route. The feature advertises the most preferred route among those received from external

More information

Configuring multicast VPN

Configuring multicast VPN Contents Configuring multicast VPN 1 Multicast VPN overview 1 Multicast VPN overview 1 MD-VPN overview 3 Protocols and standards 6 How MD-VPN works 6 Share-MDT establishment 6 Share-MDT-based delivery

More information

Connecting to a Service Provider Using External BGP

Connecting to a Service Provider Using External BGP Connecting to a Service Provider Using External BGP First Published: May 2, 2005 Last Updated: August 21, 2007 This module describes configuration tasks that will enable your Border Gateway Protocol (BGP)

More information

Configuration prerequisites 45 Configuring BGP community 45 Configuring a BGP route reflector 46 Configuring a BGP confederation 46 Configuring BGP

Configuration prerequisites 45 Configuring BGP community 45 Configuring a BGP route reflector 46 Configuring a BGP confederation 46 Configuring BGP Contents Configuring BGP 1 Overview 1 BGP speaker and BGP peer 1 BGP message types 1 BGP path attributes 2 BGP route selection 6 BGP route advertisement rules 6 BGP load balancing 6 Settlements for problems

More information

Computer Network Architectures and Multimedia. Guy Leduc. Chapter 2 MPLS networks. Chapter 2: MPLS

Computer Network Architectures and Multimedia. Guy Leduc. Chapter 2 MPLS networks. Chapter 2: MPLS Computer Network Architectures and Multimedia Guy Leduc Chapter 2 MPLS networks Chapter based on Section 5.5 of Computer Networking: A Top Down Approach, 6 th edition. Jim Kurose, Keith Ross Addison-Wesley,

More information

Configuring BGP: RT Constrained Route Distribution

Configuring BGP: RT Constrained Route Distribution Configuring BGP: RT Constrained Route Distribution BGP: RT Constrained Route Distribution is a feature that can be used by service providers in Multiprotocol Label Switching (MPLS) Layer 3 VPNs to reduce

More information

VRF, MPLS and MP-BGP Fundamentals

VRF, MPLS and MP-BGP Fundamentals , MPLS and MP-BGP Fundamentals Jason Gooley, CCIEx2 (RS, SP) #38759 Twitter: @Jason_Gooley LinkedIn: http://www.linkedin.com/in/jgooley Agenda Introduction to Virtualization -Lite MPLS & BGP Free Core

More information

Configuring Multicast VPN Inter-AS Support

Configuring Multicast VPN Inter-AS Support Configuring Multicast VPN Inter-AS Support Last Updated: December 23, 2011 The Multicast VPN Inter-AS Support feature enables Multicast Distribution Trees (MDTs) used for Multicast VPNs (MVPNs) to span

More information

Multi-VRF Support. Finding Feature Information. Prerequisites for Multi-VRF Support

Multi-VRF Support. Finding Feature Information. Prerequisites for Multi-VRF Support The feature allows you to configure and maintain more than one instance of a routing and forwarding table within the same customer edge (CE) device. Finding Feature Information, page 1 Prerequisites for,

More information

Deploying MPLS-based IP VPNs

Deploying MPLS-based IP VPNs Deploying MPLS-based IP VPNs Rajiv Asati, Distinguished Engineer, Cisco Rajiv_cisco BRKMPL-2102 Abstract This session describes the implementation of IP Virtual Private Networks (IP VPNs) using MPLS. It

More information

BGP Commands. Network Protocols Command Reference, Part 1 P1R-355

BGP Commands. Network Protocols Command Reference, Part 1 P1R-355 BGP Commands Use the commands in this chapter to configure and monitor Border Gateway Protocol (BGP). For BGP configuration information and examples, refer to the Configuring BGP chapter of the Network

More information

Introduction to Segment Routing

Introduction to Segment Routing Segment Routing (SR) is a flexible, scalable way of doing source routing. Overview of Segment Routing, page 1 How Segment Routing Works, page 2 Examples for Segment Routing, page 3 Benefits of Segment

More information

RFC2547 Convergence Characterization and Optimization

RFC2547 Convergence Characterization and Optimization RFC2547 Convergence Characterization and Optimization Clarence Filsfils cf@cisco.com Session Number 1 RFC2547 Convergence - Requirement 90%: Typical requirement:

More information

BGP Diverse Path Using a Diverse-Path Route Reflector

BGP Diverse Path Using a Diverse-Path Route Reflector BGP Diverse Path Using a Diverse-Path Route Reflector The feature allows Border Gateway Protocol (BGP) to distribute an alternative path other than the best path between BGP speakers when route reflectors

More information

IPv6 Switching: Provider Edge Router over MPLS

IPv6 Switching: Provider Edge Router over MPLS Multiprotocol Label Switching (MPLS) is deployed by many service providers in their IPv4 networks. Service providers want to introduce IPv6 services to their customers, but changes to their existing IPv4

More information

Feature Information for BGP Control Plane, page 1 BGP Control Plane Setup, page 1. Feature Information for BGP Control Plane

Feature Information for BGP Control Plane, page 1 BGP Control Plane Setup, page 1. Feature Information for BGP Control Plane Feature Information for, page 1 Setup, page 1 Feature Information for Table 1: Feature Information for Feature Releases Feature Information PoAP diagnostics 7.2(0)N1(1) Included a new section on POAP Diagnostics.

More information

BGP Event-Based VPN Import

BGP Event-Based VPN Import The feature introduces a modification to the existing Border Gateway Protocol (BGP) path import process. The enhanced BGP path import is driven by events; when a BGP path changes, all of its imported copies

More information

BGP Route Reflector Commands

BGP Route Reflector Commands This chapter provides details of the commands used for configuring Border Gateway Protocol (BGP) Route Reflector (RR). address-family (BGP), on page 2 keychain, on page 5 neighbor (BGP), on page 7 remote-as

More information

This appendix contains supplementary Border Gateway Protocol (BGP) information and covers the following topics:

This appendix contains supplementary Border Gateway Protocol (BGP) information and covers the following topics: Appendix C BGP Supplement This appendix contains supplementary Border Gateway Protocol (BGP) information and covers the following topics: BGP Route Summarization Redistribution with IGPs Communities Route

More information

Multiprotocol Label Switching (MPLS)

Multiprotocol Label Switching (MPLS) Multiprotocol Label Switching (MPLS) Petr Grygárek rek 1 Technology in Brief Inserts underlying label-based forwarding layer under traditional network layer routing label forwarding + label swapping similar

More information

This document is not restricted to specific software and hardware versions.

This document is not restricted to specific software and hardware versions. Contents Introduction Prerequisites Requirements Components Used Background Information Configure Network Diagram Configuration DN Bit Verify Troubleshoot Related Cisco Support Community Discussions Introduction

More information

Fast IP Convergence. Section 4. Period from when a topology change occurs, to the moment when all the routers have a consistent view of the network.

Fast IP Convergence. Section 4. Period from when a topology change occurs, to the moment when all the routers have a consistent view of the network. Fast IP Convergence Section 4 2899_05_2001_c1 2001, Cisco Systems, Inc. All rights reserved. 1 IP Convergence Convergence Time Period from when a topology change occurs, to the moment when all the routers

More information

H3C S10500 Switch Series

H3C S10500 Switch Series H3C S10500 Switch Series MPLS Configuration Guide Hangzhou H3C Technologies Co., Ltd. http://www.h3c.com Software version: Release 1126 and Later Document version: 20111130-C-1.01 Copyright 2011, Hangzhou

More information

Configuring BGP. Cisco s BGP Implementation

Configuring BGP. Cisco s BGP Implementation Configuring BGP This chapter describes how to configure Border Gateway Protocol (BGP). For a complete description of the BGP commands in this chapter, refer to the BGP s chapter of the Network Protocols

More information

MPLS Layer 3 VPNs Configuration Guide, Cisco IOS Release 12.4T

MPLS Layer 3 VPNs Configuration Guide, Cisco IOS Release 12.4T MPLS Layer 3 VPNs Configuration Guide, Cisco IOS Release 12.4T Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS

More information

HPE FlexFabric 5940 Switch Series

HPE FlexFabric 5940 Switch Series HPE FlexFabric 5940 Switch Series MCE Configuration Guide Part number: 5200-1024b Software version: Release 25xx Document version: 6W102-20170830 Copyright 2017 Hewlett Packard Enterprise Development LP

More information

Command Manual IPv4 Routing H3C S3610&S5510 Series Ethernet Switches. Table of Contents

Command Manual IPv4 Routing H3C S3610&S5510 Series Ethernet Switches. Table of Contents Table of Contents Table of Contents Chapter 1 Static Routing Configuration Commands... 1-1 1.1 Static Routing Configuration Commands... 1-1 1.1.1 delete static-routes all... 1-1 1.1.2 ip route-static...

More information

Configuring IPv6 Provider Edge over MPLS (6PE)

Configuring IPv6 Provider Edge over MPLS (6PE) Finding Feature Information, page 1 Configuring 6PE, page 1 Finding Feature Information Your software release may not support all the features documented in this module. For the latest caveats and feature

More information

UniNets MPLS LAB MANUAL MPLS. UNiNets Multiprotocol label Switching MPLS LAB MANUAL. UniNets MPLS LAB MANUAL

UniNets MPLS LAB MANUAL MPLS. UNiNets Multiprotocol label Switching MPLS LAB MANUAL. UniNets MPLS LAB MANUAL MPLS UNiNets Multiprotocol label Switching MPLS LAB MANUAL CCNP TOPOLOGY Lab: OSPF Routing VPN Topology: Task1: Perform the basic Configuration to provide the reachability as per diagram. SW1 Configuration

More information

Implementing MPLS Layer 3 VPNs

Implementing MPLS Layer 3 VPNs Implementing MPLS Layer 3 VPNs A Multiprotocol Label Switching (MPLS) Layer 3 Virtual Private Netwk (VPN) consists of a set of sites that are interconnected by means of an MPLS provider ce netwk. At each

More information