VRF, MPLS and MP-BGP Fundamentals

Similar documents
VRF, MPLS and MP-BGP Fundamentals

The CCIE Candidate s Introduction to MPLS L3VPN Networks

MPLS VPN--Inter-AS Option AB


Securizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN

MPLS VPN. 5 ian 2010

MPLS VPN Inter-AS Option AB

Intelligent WAN (IWAN) Design and Deployment

Multi-VRF Support. Finding Feature Information. Prerequisites for Multi-VRF Support

The CCIE Candidate s Introduction to MPLS L3VPN Networks

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP

Configuring MPLS and EoMPLS

Configuring VRF-lite CHAPTER

CCIE R&S Techtorial MPLS

MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution

UniNets MPLS LAB MANUAL MPLS. UNiNets Multiprotocol label Switching MPLS LAB MANUAL. UniNets MPLS LAB MANUAL

Multiprotocol Label Switching Virtual Private Network

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP

Deploy MPLS L3 VPN. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by:

MPLS VPN Carrier Supporting Carrier IPv4 BGP Label Distribution

IPv6 Switching: Provider Edge Router over MPLS

IPv6 Switching: Provider Edge Router over MPLS

Cisco Training - HD Telepresence MPLS: Implementing Cisco MPLS V3.0. Upcoming Dates. Course Description. Course Outline

Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS

CCIE ROUTING & SWITCHING V5.0

Table of Contents 1 Multicast VPN Configuration 1-1

WAN Edge MPLSoL2 Service

MPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses

WORKSHOP MPLS.

BGP Best External. Finding Feature Information

InterAS Option B. Information About InterAS. InterAS and ASBR

Implementing MPLS Layer 3 VPNs

MPLS for R&S CCIE Candidates

MPLS VPN C H A P T E R S U P P L E M E N T. BGP Advertising IPv4 Prefixes with a Label

BGP mvpn BGP safi IPv4

MPLS VPN Multipath Support for Inter-AS VPNs

Configuring MPLS Multi-VRF (VRF-lite)

BGP-MVPN SAFI 129 IPv6

CCIE Routing & Switching

Применение MPLS в сетях связи. (Часть 2)

Cisco. Maintaining Cisco Service Provider VPNs and MPLS Networks (MSPVM)

MPLS VPN Carrier Supporting Carrier

Lab 1: Static MPLS LSP-RTX4-RTX1 LSP-RTX1-RTX4 LSP-RTX3-RTX2 LSP-RTX2-RTX3

Deploying MPLS-based IP VPNs

BGP in the Enterprise for Fun and (fake) Profit: A Hands-On Lab

Hands-On ROUTE Implementing Cisco IP Routing CCNP Course 1

CCNP R&S. Plan, implement, secure, maintain, and troubleshoot converged enterprise networks. Prepare for Cisco CCNP Routing & Switching certification

Concepts and Operation of MPLS VPNs. Francisco Bolanos

GRE Tunnel with VRF Configuration Example

LARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

Lab Guide CIERS1. Overview. Outline

MPLS over GRE. Finding Feature Information. Prerequisites for MPLS VPN L3VPN over GRE

MPLS design. Massimiliano Sbaraglia

MPLS Introduction. (C) Herbert Haas 2005/03/11

This document is not restricted to specific software and hardware versions.

What You Will Learn By the end of this appendix, you should know and be able to explain the following:

BGP MPLS VPNs. Introduction

Introduction to External Connectivity

Cisco CCNP ROUTE: Implementing Cisco IP Routing (ROUTE) 2.0. Upcoming Dates. Course Description. Course Outline

Configuring Virtual Private LAN Services

MPLS VPN over mgre. Finding Feature Information. Last Updated: November 1, 2012

DOiT-200v6 VOLUME II I2 R2 4 N1. DOiT-200v6 Lab 16 Multi-Topic CCIE-Level Scenario. For CCIE Candidates

MPLS Virtual Private Networks (VPNs)

MPLS VPN Inter-AS IPv4 BGP Label Distribution

Table of Contents Chapter 1 MPLS L3VPN Configuration

Deploying MPLS L3VPN. Apricot Cisco and/or its affiliates. All rights reserved. Cisco Public

Deploying MPLS-based IP VPNs

Next Generation MULTICAST In-band Signaling (VRF MLDP: Profile 6)

MPLS VPN Half-Duplex VRF

Zero To Hero CCIE CCNP

Implementing MPLS VPNs over IP Tunnels

Multiprotocol BGP 1 MPLS VPN. Agenda. Multiprotocol BGP 2

Alcatel-Lucent 4A Alcatel-Lucent Services Architecture.

NXOS in the Real World Using NX-API REST

Configuring multicast VPN

Configuring IPv6 Provider Edge over MPLS (6PE)

Implementing Cisco IP Routing (ROUTE)

Configuring VRF-lite. Information About VRF-lite

Multiprotocol Label Switching (MPLS)

Network Configuration Example

Contents. Introduction. Prerequisites. Configure. Requirements. Components Used

Design, Deployment and Troubleshooting Scalable MPLS Architecture (Platform : IOS-XR, IOS-XE)

HP FlexFabric 7900 Switch Series

Course Outline. Pearson Cisco: CCNA - Cisco Certified Network Associate (CCNA )

Course Outline. Pearson Cisco: CCNA Routing and Switching (ICND ) Official Cert Guide. 28 Jun 2018

Course Outline. Pearson Cisco: CCNA - Cisco Certified Network Associate (CCNA )

MPLS VPN: VRF Selection Based on Source IP Address

Layer3 VPN with OSPF Protocol between CE-PE

Introduction to Segment Routing

Remote Access MPLS-VPNs

Multi Protocol Label Switching (an introduction) Karst Koymans. Thursday, March 12, 2015

Cisco Certified Network Associate ( )

Computer Network Architectures and Multimedia. Guy Leduc. Chapter 2 MPLS networks. Chapter 2: MPLS

"Charting the Course... Interconnecting Cisco Networking Devices Accelerated 3.0 (CCNAX) Course Summary

Configuring Multicast VPN Inter-AS Support

MPLS VPN Explicit Null Label Support with BGP. BGP IPv4 Label Session

Multiprotocol Label Switching (MPLS)

DMVPN for R&S CCIE Candidates Johnny Bass CCIE #6458

DOiT-200v6 VOLUME II. DOiT-200v6 Lab 3 Multi-Topic CCIE-Level Scenario. For CCIE Candidates

Transcription:

, MPLS and MP-BGP Fundamentals Jason Gooley, CCIEx2 (RS, SP) #38759 Twitter: @Jason_Gooley LinkedIn: http://www.linkedin.com/in/jgooley

Agenda Introduction to Virtualization -Lite MPLS & BGP Free Core Multiprotocol BGP (MP-BGP) Conclusion Q & A

Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the Cisco Live Mobile App 2. Click Join the Discussion 3. Install Spark or go directly to the space 4. Enter messages/questions in the space cs.co/ciscolivebot#

3 networks walk into a 5

What is a? 6

Enterprise Network Virtualization Key Building Blocks Device Partitioning Virtualized Interconnect Si Global Virtualizing the Routing and Forwarding of the Device Extending and Maintaining the Virtualized Devices/Pools over Any Media 7

Device Partioning Layer 2 vs. Layer 3 Virtualization VLAN Virtual LAN Virtualize at Layer 2 forwarding Associates to one or more L2 interfaces on switch Has its own MAC forwarding table and spanning-tree instance per VLAN Interconnect options? VLANs are extended via a physical cable or virtual 802.1q trunk Global Virtual Routing and Forwarding Virtualize at Layer 3 forwarding Associates to one or more Layer 3 interfaces on router/switch Each has its own Forwarding table (CEF) Routing process (RIP, EIGRP, OSPF, BGP) Interconnect options (-Lite)? 802.1q, GRE, sub-interfaces, physical cables, signaling 8

Path Isolation Functional Components Device virtualization Control plane virtualization Data plane virtualization Services virtualization Data path virtualization Per : Virtual Routing Table Virtual Forwarding Table Global Hop-by-Hop - -Lite End-to-End Multi-Hop - -Lite GRE MPLS-VPN MPLS VPN over IP 802.1q IP/MPLS MPLS VPN over DMVPN MPLS VPN o GRE/mGRE 9

-Lite

What is -Lite? Functional Components Per : Virtual Routing Table Virtual Forwarding Table WAN/Campus 802.1q, GRE, DLCI A supports it s own Routing Information Base (RIB) and Forwarding Information Base (FIB) Leverages Virtual encapsulation for separation: Ethernet/802.1Q, GRE, Frame Relay Routing protocols are aware RIP/v2, EIGRP, OSPF, BGP, static (per ) Layer 3 interfaces can only belong to a single 11

-Lite Things to Remember End-to-End segmentation is done on a per and per hop basis MP-BGP or control plane signaling is not required Labels are not required (i.e. MPLS) Scaling should be limited to a small number of s IGPs VLAN 11 VLAN 21 VLAN 13 VLAN 23 VLAN 15 VLAN 25 VLAN 10 VLAN 20 VLAN 12 VLAN 22 VLAN 14 VLAN 24 VLAN 16 VLAN 26 12

VLAN 14 VLAN 114 VLAN 214 VLAN 23 VLAN 123 VLAN 223 -Lite Sub-interface Example Per : Virtual Routing Table Virtual Forwarding Table Locally Significant Lo1 R1.1.2 R2 Lo1 1.1.1.1 VLAN 12 Lo2 -R VLAN 112 -R -E -E Lo2 2.2.2.2 -O VLAN 212 -O Lo3 Lo1.1.4 F0/0.X VLAN X 10.1.X.0/24 Sub-interface/VLAN/ Mapping.2.3 Lo3 Lo1 IGPs: -R = RIP -E = EIGRP -O = OSPF 4.4.4.4 Lo2 Lo3 -R -E -O R4.4 VLAN 34 VLAN 134 VLAN 234.3 -R -E -O R3 Lo3 Lo2 3.3.3.3 13

-Lite Sub-interface Configuration Command Line Interface (CLI) Review ip vrf -R rd 1:1 interface FastEthernet0/0.12 ip vrf forwarding -R interface Loopback1 ip vrf forwarding -R ip vrf -E rd 2:2 interface FastEthernet0/0.112 ip vrf forwarding -E interface Loopback2 ip vrf forwarding -E ip vrf -O rd 3:3 interface FastEthernet0/0.212 ip vrf forwarding -O interface Loopback3 ip vrf forwarding -O 14

-Lite Sub-interface Configuration Command Line Interface (CLI) Review Definition Example vrf definition -R rd 1:1 address-family ipv4 interface FastEthernet0/0.12 vrf forwarding -R interface Loopback1 vrf forwarding -R vrf definition -O rd 3:3 address-family ipv4 interface FastEthernet0/0.212 vrf forwarding -O interface Loopback3 vrf forwarding -O 15

Multiprotocol Conversion Configuration Command Line Interface (CLI) Review vrf upgrade-cli multi-af-mode {common-policies non-common-policies} [vrf vrf-name] PE1(config)#vrf upgrade-cli multi-af-mode common-policies You are about to upgrade to the multi-af syntax commands. You will lose any IPv6 addresses configured on interfaces belonging to upgraded s. Are you sure? [yes]: Number of s upgraded: 1 interface Ethernet0/1 vrf forwarding ip address 10.1.78.7 255.255.255.0 PE1(config)#do sh run se vrf vrf definition rd 7:1 route-target export 7:1 route-target import 5:1 16

Aware RIP Configuration Command Line Interface (CLI) Review Leverage what you already know! router rip version 2 network 1.0.0.0 network 10.0.0.0 no auto-summary router rip! address-family ipv4 vrf -R network 1.0.0.0 network 10.0.0.0 no auto-summary version 2 exit-address-family RIP leverages address-family ipv4 vrf 17

Aware EIGRP Configuration Command Line Interface (CLI) Review Leverage what you already know! router eigrp 10 network 1.1.1.1 0.0.0.0 network 10.1.112.0 0.0.0.255 no auto-summary router eigrp 10 (AS can be the same or different as one of the s!!!) auto-summary! address-family ipv4 vrf -E network 1.1.1.1 0.0.0.0 network 10.1.112.0 0.0.0.255 no auto-summary autonomous-system 10 exit-address-family EIGRP leverages address-family ipv4 vrf Set unique autonomous system number per 18

Aware OSPF Configuration Command Line Interface (CLI) Review Leverage what you already know! router ospf 1 log-adjacency-changes network 1.1.1.1 0.0.0.0 area 1 network 10.1.212.0 0.0.0.255 area 0 router ospf 2 vrf -O log-adjacency-changes network 1.1.1.1 0.0.0.0 area 1 network 10.1.212.0 0.0.0.255 area 0 OSPF leverages vrf after the unique process number 19

Live Exploration

Tunnel 14 Tunnel 114 Tunnel 214 Tunnel 23 Tunnel 123 Tunnel 223 1.1.1.1 No Sub-interface Support? No Problem! GRE Example Lo11 Lo12 R1.1.2 Tunnel 12 -R Tunnel 112 -E Tunnel 212 -O R2 -Lite can also leverage GRE tunnels as a segmentation technology -R -E -O Lo1 Each uses a unique GRE tunnel GRE tunnel interface is aware Lo13.1 Tunnel X 10.1.X.0/24.2 Lo13 Lo11.4 Tunnel/ Mapping.3 Lo11 4.4.4.4 Lo12 Lo13 -R -E -O R4.4 Tunnel 34 Tunnel 134 Tunnel 234.3 -R -E -O R3 Lo13 Lo12 3.3.3.3 Configuration Note: Each GRE Tunnel Could Require Unique Source/Destination IP (Platform Dependent) 21

-Lite Tunnel Configuration Command Line Interface (CLI) Review ip vrf -S rd 11:11 interface Loopback101 ip address 11.11.11.11 255.255.255.255 (Global Routing Table) Leverage what you already know! ip route vrf -S 2.2.2.2 255.255.255.255 10.1.12.2 interface Tunnel12 ip vrf forwarding -S ip address 10.1.12.1 255.255.255.0 tunnel source Loopback101 tunnel destination 22.22.22.22 ip vrf -S rd 22:22 interface Loopback102 ip address 22.22.22.22 255.255.255.255 (Global Routing Table) interface Tunnel12 ip vrf forwarding -S ip address 10.1.12.2 255.255.255.0 tunnel source Loopback102 tunnel destination 11.11.11.11 ip route vrf -S 1.1.1.1 255.255.255.255 10.1.12.1 22

Serial1/1.14 Serial1/1.114 Serial1/1.214 Serial1/1.23 Serial1/1.123 Serial1/1.223 Layer 2 Serial Link? No Problem? Back-to-Back Frame Relay Example Lo111 R1 R2.1.2 -Lite can also leverage Frame Relay Sub-interfaces as a segmentation Lo1 technology 1.1.1.1 Lo112 Lo113.1 -R -E -O Serial1/0.12 Serial1/0.112 Serial1/0.212 Serial1/0.X Serial1/1.X 10.1.X.0/24 -R -E Each uses a unique Frame-Relay -O sub-interface and DLCI.2 Lo3 Frame Relay sub-interface is aware Lo111.4 FR VC/ Mapping.3 Lo111 4.4.4.4 Lo112 Lo113 -R -E -O R4.4 Serial1/0.34 Serial1/0.134 Serial1/0.234.3 -R -E -O R3 Lo113 Lo112 3.3.3.3 Configuration Note: Leveraging Back-to-Back Frame-Relay Configuration 23

-Lite Back-to-Back Frame Relay Configuration Command Line Interface (CLI) Review ip vrf -B rd 111:111 interface Serial1/0 encapsulation frame-relay no keepalive Interface Serial1/0.12 point-to-point ip vrf forwarding -B ip address 10.1.12.1 255.255.255.0 frame-relay interface-dlci 201 ip vrf -B rd 222:222 Leverage what you already know! router bgp 1 address-family ipv4 vrf -B neighbor 10.1.12.2 remote-as 2 neighbor 10.1.12.2 activate no synchronization network 1.1.1.1 mask 255.255.255.255 exit-address-family interface Serial1/0 encapsulation frame-relay no keepalive Interface Serial1/0.12 point-to-point ip vrf forwarding -B ip address 10.1.12.2 255.255.255.0 frame-relay interface-dlci 201 router bgp 2 address-family ipv4 vrf -B neighbor 10.1.12.1 remote-as 1 neighbor 10.1.12.1 activate no synchronization network 2.2.2.2 mask 255.255.255.255 exit-address-family 24

Live Exploration

-Lite Summary Create a in router for RIB/FIB and interface segmentation No MPLS, LDP, or MP-BGP required Optimal solution when count is small (~ <8) Supports multicast and QoS solutions Leverage current routing protocol knowledge and apply it to PE-CE Routing 26

MPLS & BGP Free Core

What Is MPLS? Most Painful Learn Study 28

What Is MPLS? Multi Protocol Label Switching Multi-Protocol: The ability to carry any payload Have: IPv4, IPv6, Ethernet, ATM, FR Uses Labels to tell a node what to do with a packet; separates forwarding (hop by hop behavior) from routing (control plane) Routing based on IPv4/IPv6 lookup. Everything else is label switching. 29

MPLS Component Overview CE routers owned by customer PE routers owned by SP P routers owned by SP Customer peers to PE via IP Exchanges routing with SP via routing protocol (or static route)* SP advertises CE routes to other CEs Customer Customer Site 1 Site 2 CE PE CE SP Demarcation Provider CE PE IP Routing Peer (BGP, Static, IGP) * Labels are not exchanged with the SP P Site 3 30

IP Routing IGP vs. BGP Exchange of IP routes for Loopback Reachability OSPF, IS-IS, EIGRP, etc. ibgp neighbor peering over IGP transport Route towards BGP Next-Hop In Label Forwarding Table Forwarding Table Forwarding Table Address Prefix 10.2.1.1 F0/0 PE1 Out Out I face Label F0/0 In Label You Can Reach 2.2.2.2 Through Me Address Prefix 10.2.1.1 NA P Out Out I face Label F0/0 In Label Address Prefix 10.2.1.1 PE2 Out Out I face Label F0/0 F0/0 10.2.1.1 BGP Update: You Can Reach 10.2.1.1 Thru Me By routing towards 2.2.2.2 Routing Updates (OSPF) You Can Reach 2.2.2.2 Thru Me 31

MPLS Label Switched Path (LSP) Setup with LDP Assignment of Remote Labels Local label mappings are sent to connected nodes Receiving nodes update forwarding table Out label LDP label advertisement happens in parallel (downstream unsolicited) Forwarding Table Forwarding Table Forwarding Table In Address Label Prefix - - 2.2.2.2 PE1 Out Out I facelabel F0/0 20 F0/0 In Address Label Prefix 20 2.2.2.2 P Out Out I facelabel F0/0 F0/0 30 In Address Label Prefix 30 10.2.1.1 PE2 Out Out I facelabel F0/0 F0/0-10.2.1.1 Use Label 20 for 2.2.2.2 Use Label 30 for 2.2.2.2 Label Distribution Protocol (LDP) (Downstream Allocation) BGP Update: You Can Reach 10.2.1.1 Thru Me By routing towards 2.2.2.2 32

MPLS Traffic Forwarding with LDP Hop-by-hop Traffic Forwarding Using Labels Ingress PE node adds label to packet (push) Via MPLS forwarding table Downstream P node uses label for forwarding decision (swap) Outgoing interface Out label Egress PE removes label and forwards original packet (pop) Forwarding Table Forwarding Table Forwarding Table In Address Label Prefix - - 2.2.2.2 PE1 Out Out I facelabel F0/0 F0/0 20 In Address Label Prefix 20 10.2.1.1 Data 20 2.2.2.2 Data 2.2.2.2 F0/0 Forwarding based on Label towards BGP Next-Hop (Loopback of far end router) - P Out Out I facelabel F0/0 30 30 In Address Label Prefix 30 2.2.2.2 Data 10.2.1.1 PE2 Out Out I facelabel F0/0 F0/0-10.2.1.1 10.2.1.1 Data BGP Update: You Can Reach 10.2.1.1 Thru Me By routing towards 2.2.2.2 33

BGP Free Core Component Overview 10.1.1.0/24 VPNv4 ibgp Relationship Site 1 Site 2 CE1 CE2 10.2.1.0/24 PE1 P1 P2 PE2 Redistribute IGP/Static Into BGP 1. Always route towards BGP Next-Hop 2. Routes will be valid on PE Routers P3 P4 OSPF Area 0 Redistribute IGP/Static Into BGP 3. Will label switch towards BGP Next-Hop of PE with MPLS enabled End-to-End BGP and redistribution of routes into OSPF core not necessary! 34

Multiprotocol BGP (MP-BGP)

Multiprotocol BGP (MP-BGP) Bringing It All Together 10.1.1.0/24 10.1.1.0/24 10.2.1.0/24 VPNv4 ibgp Relationship Site 1 Next-Hop=CE1 Next-Hop=CE2 Site 2 CE1 10.2.1.0/24 Next-Hop=PE1 PE1 P1 P2 PE2 CE2 10.1.1.0/24 Next-Hop=PE2 10.2.1.0/24 Redistribute IGP/Static Into BGP P3 P4 OSPF Area 0 Redistribute IGP/Static Into BGP 1. PE receives an IPv4 update on a interface (ebgp/ospf/rip/eigrp) 2. PE translates it into VPNv4 address (96-bit address) (64-bit RD + 32 bit IPv4 address) Assigns an RT per configuration Rewrites next-hop attribute to itself Assigns a label based on and/or interface 3. PE sends MP-iBGP update to other PE routers 36

Why an RD and VPNv4 Address? Use Case 10.1.1.0/24 VPNv4 ibgp Relationship 111:1:10.1.1.0/24 Cust A Site 1 Cust A Site 2 Cust B Site 1 10.1.1.0/24 CE1 CE1 10.1.1.0/24 A 10.2.1.0/24 111:1:10.2.1.0/24 CE2 P3 OSPF Area 0 10.2.1.0/24 P1 P2 PE1 B PE2 Cust B Site 2 10.1.1.0/24 222:1:10.2.1.0/24 1. PE routers service multiple customers 2. Once PE redistributes customer routes into MP-BGP, they must be unique 3. RD is prepended to each prefix to make routes unique VPNv4 prefixes are the combination of a 64-bit RD and a 32-bit IPv4 prefix. VPNv4 prefixes are 96-bits in length P4 222:1:10.1.1.0/24 A B CE2 10.2.1.0/24 10.2.1.0/24 37

Why are Route Targets Important? Use Case 10.1.1.0/24 VPNv4 ibgp Relationship A Import 222:1 Cust A Site 1 Cust A Site 2 Cust A Site 3 10.1.3.0/24 CE1 CE1 Import 333:1 Import 111:1 10.1.2.0/24 Import 444:1 Export 222:1 CE1 Export 111:1 A P1 P2 B PE1 C PE2 Cust A Site 4 C Import 111:1 Export 333:1 OSPF Area 0 1. Route Targets dictate which will receive what routes 2. Can be used to allow specific sites access to centralized services 3. Cust A Site 2, Site 3 and Site 4 will not be able to exchange routes with each other Route Targets are a 64-bit value and are carried in BGP as an extended community P3 P4 B D D CE1 Import 111:1 Export 444:1 10.1.4.0/24 38

MPLS VPN and MP-BGP Command Line Interface (CLI) Review Customer 1-1 EIGRP, OSPF, RIPv2, BGP, Static CE -2 Customer 2 Configuration (PE)! PE Router Multiple s ip vrf -1 rd 65100:10 route-target import 65102:10 route-target export 65102:10 ip vrf -2 rd 65100:20 route-target import 65102:20 route-target export 65102:20! Interface FastEthernet0/1.10 ip vrf forwarding -1 Interface FastEthernet0/1.20 ip vrf forwarding -2 CE! PE router router bgp 65102 no bgp default ipv4-unicast neighbor 2.2.2.2 remote-as 65102! address-family vpnv4 neighbor 2.2.2.2 activate neighbor 2.2.2.2 send-community extended exit-address-family! PE address-family ipv4 vrf -1 redistribute rip P VPN Backbone IGP P P MP-iBGP Configuration (PE) exit-address-family P PE -1-2 MP-iBGP VPNv4 Label Exchange CE CE 39

Live Exploration

MPLS VPN Technology Summary MPLS VPN Connection Model CE Routers VPN 2 VPN 1 Sends routes to PE via (static, RIP, BGP, EIGRP, OSPF) Unlabeled IP packets CE EIGRP, OSPF, RIPv2, BGP, Static CE PE Routers Green Blue PE MPLS Edge routers with (s) MPLS forwarding to P routers IGP/BGP IP to CE routers Distributes VPN information through MP- BGP to other PE routers with VPNv4 addresses, extended community, VPN labels Push labels onto incoming IP packets P VPN Backbone IGP P MP-iBGP VPNv4 Label Exchange P P Global Address Space P Routers PE P routers are in the core of the MPLS cloud P routers do not need to run BGP Do not have knowledge of VPNs Switch packets based on labels (swap/pop) not IP 41

Closing Thoughts Break MPLS into smaller, more manageable chunks to accelerate learning Leverage current routing protocol knowledge learning PE-CE routing MP-BGP and traditional IPv4 BGP configuration is very similar If routes are not present on CE routers check route-target import/export, communities and redistribution between IPv4 address-families under IGP and BGP If routes are present but you are having problems with reachability, check MPLS configuration Remember on PE devices you are living in a world (Ping, Traceroute etc.) HAVE FUN!!!!! Remember, it s a journey not a destination! 42

Order a copy of Programming and Automating Cisco Networks here: http://www.amazon.com/programming-automating-cisco-networksprogrammability/dp/1587144654/ref=sr_1_1?ie=utf8&qid=1450796338&s r=8-1&keywords=jason+gooley 43

Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the Cisco Live Mobile App 2. Click Join the Discussion 3. Install Spark or go directly to the space 4. Enter messages/questions in the space cs.co/ciscolivebot#

Please complete your Online Session Evaluations after each session Complete 4 Session Evaluations & the Overall Conference Evaluation (available from Thursday) to receive your Cisco Live T-shirt All surveys can be completed via the Cisco Live Mobile App or the Communication Stations Complete Your Online Session Evaluation Don t forget: Cisco Live sessions will be available for viewing on-demand after the event at www.ciscolive.com/global/on-demand-library/.

Continue Your Education Demos in the Cisco campus Walk-in Self-Paced Labs Tech Circle Meet the Engineer 1:1 meetings Related sessions 46

What Is MPLS? Master Share Practice Learn 47

Thank you

Live Exploration Diagrams

VLAN 14 VLAN 114 VLAN 214 VLAN 23 VLAN 123 VLAN 223 -Lite Sub-interface Example Per : Virtual Routing Table Virtual Forwarding Table Locally Significant Lo1 R1.1.2 R2 Lo1 1.1.1.1 VLAN 12 Lo2 -R VLAN 112 -R -E -E Lo2 2.2.2.2 -O VLAN 212 -O Lo3 Lo1.1.4 E0/0.X VLAN X 10.1.X.0/24 Sub-interface/VLAN/ Mapping.2.3 Lo3 Lo1 IGPs: -R = RIP -E = EIGRP -O = OSPF 4.4.4.4 Lo2 Lo3 -R -E -O R4.4 VLAN 34 VLAN 134 VLAN 234.3 -R -E -O R3 Lo3 Lo2 3.3.3.3 51

Tunnel 14 Tunnel 114 Tunnel 214 Tunnel 23 Tunnel 123 Tunnel 223 1.1.1.1 No Sub-interface Support/No Problem GRE Example Lo11 Lo12 R1.1.2 Tunnel 12 -R Tunnel 112 -E Tunnel 212 -O R2 Lite can also leverage GRE tunnels as a segmentation technology -R -E -O Lo1 Each uses a unique GRE tunnel GRE tunnel interface is aware Lo13.1 Tunnel X 10.1.X.0/24.2 Lo13 Lo11.4 Tunnel/ Mapping.3 Lo11 4.4.4.4 Lo12 Lo13 -R -E -O R4.4 Tunnel 34 Tunnel 134 Tunnel 234.3 -R -E -O R3 Lo13 Lo12 3.3.3.3 Configuration Note: Each GRE Tunnel Could Require Unique Source/Destination IP (Platform Dependent) 52

Serial1/1.14 Serial1/1.114 Serial1/1.214 Serial1/1.23 Serial1/1.123 Serial1/1.223 Layer 2 Serial Link/No Problem Back-to-Back Frame Relay Example Lo111 R1 R2.1.2 Lite can also leverage Frame Relay Sub-interfaces as a segmentation Lo1 technology 1.1.1.1 Lo112 Lo113.1 -R -E -O Serial1/0.12 Serial1/0.112 Serial1/0.212 Serial1/0.X Serial1/1.X 10.1.X.0/24 -R -E Each uses a unique Frame-Relay -O sub-interface and DLCI.2 Lo3 Frame Relay sub-interface is aware Lo111.4 FR VC/ Mapping.3 Lo111 4.4.4.4 Lo112 Lo113 -R -E -O R4.4 Serial1/0.34 Serial1/0.134 Serial1/0.234.3 -R -E -O R3 Lo113 Lo112 3.3.3.3 Configuration Note: Leveraging Back-to-Back Frame-Relay Configuration 53

Multiprotocol BGP (MP-BGP) Bringing It All Together 10.1.1.0/24 ibgp Relationship Site 1 Site 2 E0/1 10.1.1.0/24 Next-Hop=R8 Instance CE1 E0/1 E0/1 E0/0 E0/2 E0/2 E0/2 P1 P2 E0/2 PE1 E0/1 E0/1 E0/3 E0/0 E0/3 P4 P3 E0/3 OSPF Area 0 E0/3 E0/1 PE2 Instance E0/1 CE2 10.2.1.0/24 10.2.1.0/24 Next-Hop=R6 R8 54

R&S Related Cisco Education Offerings Course Description Cisco Certification CCIE R&S Advanced Workshops (CIERS-1 & CIERS-2) plus Self Assessments, Workbooks & Labs Implementing Cisco IP Routing v2.0 Implementing Cisco IP Switched Networks V2.0 Troubleshooting and Maintaining Cisco IP Networks v2.0 Interconnecting Cisco Networking Devices: Part 2 (or combined) Interconnecting Cisco Networking Devices: Part 1 Expert level trainings including: instructor led workshops, self assessments, practice labs and CCIE Lab Builder to prepare candidates for the CCIE R&S practical exam. Professional level instructor led trainings to prepare candidates for the CCNP R&S exams (ROUTE, SWITCH and TSHOOT). Also available in self study elearning formats with Cisco Learning Labs. Configure, implement and troubleshoot local and wide-area IPv4 and IPv6 networks. Also available in self study elearning format with Cisco Learning Lab. Installation, configuration, and basic support of a branch network. Also available in self study elearning format with Cisco Learning Lab. CCIE Routing & Switching CCNP Routing & Switching CCNA Routing & Switching CCENT Routing & Switching For more details, please visit: http://learningnetwork.cisco.com Questions? Visit the Learning@Cisco Booth 55

Network Programmability Cisco Education Offerings Course Description Cisco Certification Developing with Cisco Network Programmability (NPDEV) Designing and Implementing Cisco Network Programmability (NPDESI) Provides Application Developers with comprehensive curriculum to develop infrastructure programming skills; Addresses needs of software engineers who automate network infrastructure and/or utilize APIs and toolkits to interface with SDN controllers and individual devices Provides network engineers with comprehensive soup-to-nuts curriculum to develop and validate automation and programming skills; Directly addresses the evolving role of network engineers towards more programmability, automation and orchestration Cisco Network Programmability Developer (NPDEV) Specialist Certification Cisco Network Programmability Design and Implementation (NPDESI) Specialist Certification Programming for Network Engineers (PRNE) Learn the fundamentals of Python programming within the context of performing functions relevant to network engineers. Use Network Programming to simplify or automate tasks Recommended pre-requisite for NPDESI and NPDEV Specialist Certifications Cisco Digital Network Architecture Implementation Essentials (DNAIE) This training provides students with the guiding principles and core elements of Cisco s Digital Network Architecture (DNA) architecture and its solution components including; APIC-EM, NFV, Analytics, Security and Fabric. None For more details, please visit: http://learningnetwork.cisco.com Questions? Visit the Learning@Cisco Booth 56

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback