Route Leaking in MPLS/VPN Networks

Similar documents
GRE Tunnel with VRF Configuration Example

This document is not restricted to specific software and hardware versions.

BGP-MVPN SAFI 129 IPv6

BGP Best External. Finding Feature Information

Troubleshooting LSP Failure in MPLS VPN

ibgp Multipath Load Sharing

Layer3 VPN with OSPF Protocol between CE-PE

BGP Support for the L2VPN Address Family

UniNets MPLS LAB MANUAL MPLS. UNiNets Multiprotocol label Switching MPLS LAB MANUAL. UniNets MPLS LAB MANUAL

MPLS VPN--Inter-AS Option AB

MPLS VPN Multipath Support for Inter-AS VPNs

BGP mvpn BGP safi IPv4

BGP Event-Based VPN Import

MPLS VPN Inter-AS Option AB

Contents. Introduction. Prerequisites. Requirements. Components Used

BGP Support for the L2VPN Address Family

ibgp Multipath Load Sharing

Layer3 VPN with RIP protocol between CE-PE

Deploy MPLS L3 VPN. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by:

Contents. Introduction. Prerequisites. Configure. Requirements. Components Used

Troubleshooting Cisco Express Forwarding Routing Loops

Configuring Multicast VPN Inter-AS Support

MPLS VPN Route Target Rewrite

BGP Support for Next-Hop Address Tracking

BGP Event-Based VPN Import

Multi-VRF Support. Finding Feature Information. Prerequisites for Multi-VRF Support

MPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP

Multiprotocol BGP Extensions for IP Multicast Commands

IPv6 Tunnel through an IPv4 Network

Configuring Redundant Routing on the VPN 3000 Concentrator

IOS Implementation of the ibgp PE CE Feature

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP

Implementing DCI VXLAN Layer 3 Gateway

BGP Support for 4-byte ASN

Configuring IPv6 Provider Edge over MPLS (6PE)

BGP Support for Next-Hop Address Tracking

MPLS over GRE. Finding Feature Information. Prerequisites for MPLS VPN L3VPN over GRE

MPLS VPN Carrier Supporting Carrier

BGP Support for IP Prefix Export from a VRF Table into the Global Table

BGP Link Bandwidth. Finding Feature Information. Prerequisites for BGP Link Bandwidth


Configuring BGP: RT Constrained Route Distribution

Configure the IPv6 BGP Local Preference Feature

BGP Diverse Path Using a Diverse-Path Route Reflector

MPLS Virtual Private Networks (VPNs)

BGP Link Bandwidth. Finding Feature Information. Prerequisites for BGP Link Bandwidth

LAB1: BGP IPv4. BGP: Initial Config. Disclaimer

MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution

Configuring Basic MPLS Using OSPF

Configuring Easy Virtual Network Shared Services

Use NAT to Hide the Real IP Address of CTC to Establish a Session with ONS 15454

BGP Persistence. Restrictions for BGP Persistence. Information About BGP Persistence

MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution

Easy Virtual Network Configuration Example

NAT Support for Multiple Pools Using Route Maps

IP Routing: BGP Command Reference, Cisco IOS XE Release 3SE (Catalyst 3850 Switches)

InterAS Option B. Information About InterAS. InterAS and ASBR

BGP Attributes and Path Selection

Failover with EIGRP Using VRF Configuration Example

MPLS VPN Half-Duplex VRF

BGP FlowSpec Route-reflector Support

Configure L2VPN Autodiscovery and Signaling

address-family ipv4 vrf vrf-name - Selects a per-vrf instance of a routing protocol.

OSPF Routers Connected by a Point to Multipoint Link

Configuring Scalable Hub-and-Spoke MPLS VPNs

Implementing Static Routes

BGP Next Hop Unchanged

Step 1: IP Configuration: On R1: On R2: On R3: R1(config)#int s1/2 R1(config-if)#ip addr R1(config-if)#no shu

MPLS VPN--Show Running VRF

OSPF Sham-Link Support for MPLS VPN

How BGP Routers Use the Multi Exit Discriminator for Best Path Selection

OSPF Support for Multi-VRF on CE Routers

Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS

Troubleshooting High CPU Caused by the BGP Scanner or BGP Router Process

Implementing MPLS Forwarding

MPLS VPN Inter-AS IPv4 BGP Label Distribution

Configuring MPLS Egress NetFlow Accounting and Analysis

MPLS VPN over mgre. Finding Feature Information. Last Updated: November 1, 2012

BGP Cost Community. Prerequisites for the BGP Cost Community Feature

IPv6 Switching: Provider Edge Router over MPLS

OSPFv2 Local RIB. Finding Feature Information

MPLS VPN C H A P T E R S U P P L E M E N T. BGP Advertising IPv4 Prefixes with a Label

Configuring BGP community 43 Configuring a BGP route reflector 44 Configuring a BGP confederation 44 Configuring BGP GR 45 Enabling Guard route

APNIC elearning: MPLS L3 VPN

Configuring MPLS and EoMPLS

Cisco BGP Overview. Finding Feature Information. Prerequisites for Cisco BGP

Implement Static Routes for IPv6 Configuration Example

Chapter 7 Lab 7-1, Configuring BGP with Default Routing

RHI on the Content Switching Module Configuration Example

Securizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN

Configuring Multicast VPN Extranet Support

Configuring IPv6 VPN Provider Edge over MPLS (6VPE)

IPv6 Switching: Provider Edge Router over MPLS

Chapter 7 Lab 7-2, Using the AS_PATH Attribute

MPLS: Layer 3 VPNs: Inter-AS and CSC Configuration Guide, Cisco IOS Release 15SY

MPLS VPN: VRF Selection Based on Source IP Address

The information in this document is based on Cisco IOS Software Release 15.4 version.

Adjust Administrative Distance for Route Selection in Cisco IOS Routers Configuration Example

Multiprotocol BGP 1 MPLS VPN. Agenda. Multiprotocol BGP 2

Transcription:

Route Leaking in MPLS/VPN Networks Document ID: 47807 Contents Introduction Prerequisites Requirements Components Used Conventions Configure Route Leaking from a Global Routing Table into a VRF and Route Leaking from a VRF into a Global Routing Table Route Leaking Between Different VRFs Troubleshoot Related Information Introduction This document provides sample configurations for route leaking in an MPLS/VPN environment. Prerequisites Requirements There are no specific requirements for this document. Components Used This document is not restricted to specific software and hardware versions. The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command. Conventions For more information on document conventions, refer to the Cisco Technical Tips Conventions. Configure This sections contains these two configuration examples: Route leaking from a global routing table into a VPN routing/forwarding instance (VRF) and route leaking from a VRF into a global routing table Route leaking between different VRFs Note: To find additional information about the commands in this document, use the Command Lookup Tool (registered customers only).

Route Leaking from a Global Routing Table into a VRF and Route Leaking from a VRF into a Global Routing Table This configuration describes route leaking from a global routing table into a VRF and route leaking from a VRF into a global routing table. Network Diagram This configuration uses this network setup: Configuration In this example, a Network Management System (NMS) station located in a VRF is accessed from the global routing table. The provider edge (PE) routers and provider (P) routers have to export the netflow information to an NMS station (10.0.2.2) in a VRF. 10.0.2.2 is reachable via a VRF interface on PE 4. To access 10.0.2.0/30 from the global table, a static route to 10.0.2.0/30 that points out of the VRF interface is introduced on the PE 4. This static route is then redistributed via Interior Gateway Protocol (IGP) to all PE and P routers. This ensures that all PE and P routers can reach 10.0.2.0/30 via PE 4. A static VRF route is also added. The static VRF route points to the subnet in the global network that sends the traffic to this NMS station. Without this addition, the PE 4 drops traffic, from the NMS station, that is received on the VRF interface; and the PE 4 sends the ICMP: host unreachable rcv message to the NMS station. This section uses this configuration: PE 4 PE 4 ip cef ip vrf vpn2 rd 200:1 route target export 200:1 interface Serial1/0 ip address 10.1.2.5 255.255.255.252 interface Serial2/0 ip vrf forwarding vpn2 ip address 10.0.2.1 255.255.255.0 ip classless ip route 10.0.2.0 255.255.255.252 Serial2/0 ip route vrf vpn2 10.1.2.4 255.255.255.252 Serial1/0

The static routes can now be redistributed into any IGP to be announced network wide. The same applies if the VRF interface is a LAN interface (for example, Ethernet). The exact configuration command for that is: ip route 10.0.2.0 255.255.255.252 Ethernet2/0 10.0.2.2 Note: The IP address configured after the interface name is only used by Address Resolution Protocol (ARP), to know what address to resolve. Note: For 4500 series switches, you must configure static ARP entries in the VRF tables for the respective next hop addresses. Note: By default, Cisco IOS software accepts static VRF routes as configured. This might compromise security because it might introduce route leaking between different VRFs. You can use the no ip route static inter vrf command to prevent the installation of such static VRF routes. Refer to MPLS Virtual Private Networks (VPNs) for more information on the no ip route static inter vrf command. Verify This section provides information to confirm that your configuration is working properly. Certain show commands are supported by the Output Interpreter Tool (registered customers only), which allows you to view an analysis of show command output. show ip route 10.0.2.0Displays a specified IP address routing entry. show ip route vrf vpn2 10.1.2.4Displays a specified IP address VRF routing entry. PE 4# show ip route 10.0.2.0 Routing entry for 10.0.2.0/30 Known via "static", distance 1, metric 0 (connected) Routing Descriptor Blocks: * directly connected, via Serial2/0 Route metric is 0, traffic share count is 1 PE 4# show ip route vrf vpn2 10.1.2.4 Routing entry for 10.1.2.4/30 Known via "static", distance 1, metric 0 (connected) Redistributing via bgp 1 Advertised by bgp 1 Routing Descriptor Blocks: * directly connected, via Serial1/0 Route metric is 0, traffic share count is 1 Route Leaking Between Different VRFs This configuration describes route leaking between different VRFs. Network Diagram This configuration uses this network diagram:

Configuration You can not configure two static routes to advertise each prefix between the VRFs, because this method is not supportedpackets will not be routed by the router. To achieve route leaking between VRFs, you must use the import functionality of route target and enable Border Gateway Protocol (BGP) on the router. No BGP neighbor is required. This section uses this configuration: PE 4 PE 4 ip vrf vpn1 rd 100:1 route target export 100:1 route target import 100:1 ip vrf vpn2 rd 200:1 route target export 200:1 route target import 100:1 interface Serial1/0 ip vrf forwarding vpn1 ip address 10.1.2.5 255.255.255.252 interface Serial2/0 ip vrf forwarding vpn2 ip address 10.0.2.1 255.255.255.0 router bgp 1 address family ipv4 vrf vpn2 redistribute connected address family ipv4 vrf vpn1 redistribute connected Verify This section provides information to troubleshoot your configuration. Certain show commands are supported by the Output Interpreter Tool (registered customers only), which allows you to view an analysis of show command output. show ip bgp vpnv4 alldisplays all VPNv4 prefixes that are learned via BGP.

PE 4# show ip bgp vpnv4 all BGP table version is 13, local router ID is 7.0.0.4 Status codes: s suppressed, d damped, h history, * valid, > best, i internal, r RIB failure, S Stale Origin codes: i IGP, e EGP,? incomplete Network Next Hop Metric LocPrf Weight Path Route Distinguisher: 100:1 (default for vrf vpn1) *> 10.0.2.0/24 0.0.0.0 0 32768? *> 10.1.2.4/30 0.0.0.0 0 32768? Route Distinguisher: 200:1 (default for vrf vpn2) *> 10.0.2.0/24 0.0.0.0 0 32768? *> 10.1.2.4/30 0.0.0.0 0 32768? Note: The other way of leaking routes between VRFs is to connect together two Ethernet interfaces on the PE 4 router and associate each Ethernet interface with one of the VRFs. You also must configure static ARP entries in the VRF tables for the respective next hop addresses. However, this is not a recommended solution for route leaking between VRFs; the previously described BGP technique is the recommended solution. Troubleshoot There is currently no specific troubleshooting information available for this configuration. Related Information MPLS Support Page Technical Support and Documentation Cisco Systems Contacts & Feedback Help Site Map 2014 2015 Cisco Systems, Inc. All rights reserved. Terms & Conditions Privacy Statement Cookie Policy Trademarks of Cisco Systems, Inc. Updated: Aug 10, 2005 Document ID: 47807

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback