manualshive.com logo in svg

Extreme Networks BlackDiamond 6800 MPLS, Installation And User Manual

Share
Download
Extreme Networks BlackDiamond 6800 MPLS Installation And User Manual Download Page 127

MPLS Module Installation and User Guide

7-17

Using ESRP with MPLS TLS

The following commands disable BCP mode and enable POS transparent mode on the 
OC-3 interface that is a member of the TLS VLAN:

config ppp bcp off port 1:1

config ppp pos transparent-mode on port 1:1

The following command creates the TLS tunnel to LSR 4 for SONET PPP traffic received 
on VLAN 

sonet:

config mpls add tls-tunnel sonet 11.0.4.11 tls-vlan 8f002 8f005

The SONET configuration for LSR 4 is exactly the same as the configuration for LSR 1, 
but the TLS tunnel is targeted towards LSR 1, as follows:

config mpls add tls-tunnel sonet 11.0.1.11 tls-vlan 8f005 8f002

Using ESRP with MPLS TLS

ESRP can be used in conjunction with TLS to provide redundancy. For example, 
consider adding a second LSR to the hub, as shown in Figure 7-5. 

Figure 7-5:

Using ESRP with TLS

MPLS_09

SITE  1 (Hub)

SITE  2 (Spoke)

.  .  .

SITE  3 (Spoke)

.  .  .

SITE  4 (Spoke)

.  .  .

LSR A

(VLAN router)

master

LSR A

1

(VLAN router)

slave

LSR B

(L2 transport)

LSR C

(L2 transport)

LSR D

(L2 transport)

MPLS

NETWORK

LSP

VLAN 3

LSP

LSP

VLAN 4, VLAN 5

VLAN 1, VLAN 2

Summary of Contents for BlackDiamond 6800 MPLS

Page 1: ...xtreme Networks Inc 3585 Monroe Street Santa Clara California 95051 888 257 3000 http www extremenetworks com MPLS Module Installation and User Guide Published February 2002 Part number 100084 00 Rev 02 ...

Page 2: ...ther jurisdictions ExtremeWare Extreme Standby Router Protocol ESRP Summit and the Extreme Networks logo are trademarks of Extreme Networks Inc which may be registered or pending registration in certain jurisdictions Specifications are subject to change without notice All other registered trademarks trademarks and service marks are property of their respective owners ...

Page 3: ...ew Summary of Features 1 2 MPLS 1 2 IP Unicast Forwarding 1 2 Destination Sensitive Accounting 1 2 MPLS Module Physical Description 1 2 MPLS Module LED Indicators 1 4 Service Port 1 5 Console Port 1 5 BlackDiamond 6800 Series Switch Overview 1 5 About BlackDiamond Modules 1 5 About the MPLS Module 1 6 About MPLS 1 6 About MPLS Layer 2 VPNs 1 7 ...

Page 4: ...ation 2 8 Troubleshooting 2 9 Identifying Problem Categories 2 10 Fixing Configuration Errors 2 11 Upgrading the Switch Software Image 2 11 Upgrading the MPLS Module Software Image 2 11 Fixing Power Related Problems 2 12 Identifying Conditions for Replacing an MPLS Module 2 13 Removing and Replacing an MPLS Module 2 14 Tools and Equipment 2 14 Removing an MPLS Module 2 14 3 Configuring the MPLS Mo...

Page 5: ...Displaying MPLS Configuration Information 3 20 Displaying MPLS Configuration Information 3 20 Displaying MPLS Forwarding Entry Information 3 20 Displaying MPLS Label Mapping Information 3 21 Displaying MPLS QoS Mapping Information 3 22 4 Configuring the Label Distribution Protocol Overview of LDP 4 1 LDP Neighbor Discovery 4 1 Advertising Labels 4 2 Propagating Labels 4 2 Configuring LDP 4 3 Comma...

Page 6: ... 7 RSVP State 5 7 Traffic Engineering 5 8 RSVP Tunneling 5 8 RSVP Objects 5 9 Label 5 9 Label Request 5 9 Explicit Route 5 9 Record Route 5 10 Session Attribute 5 10 RSVP Features 5 10 Route Recording 5 11 Explicit Route Path LSPs 5 11 Redundant LSPs 5 12 Ping Health Checking 5 13 Improving LSP Scaling 5 13 Configuring RSVP TE 5 14 Commands for Configuring RSVP TE 5 14 Configuring RSVP TE on a VLA...

Page 7: ...BGP Metrics for RSVP TE LSPs 6 5 LSPs and IBGP Next Hops 6 5 Multivendor Support for Indirect LSPs 6 6 Optimized Forwarding of Non MPLS IP Traffic 6 6 7 Configuring MPLS Layer 2 VPNs Overview of MPLS Layer 2 VPNs 7 1 Layer 2 VPN Services 7 2 MPLS VC Tunnels 7 2 Transporting 802 1Q Tagged Frames 7 3 Establishing LDP LSPs to TLS Tunnel Endpoints 7 3 LSP Selection 7 4 Layer 2 VPN Domains 7 4 MAC Lear...

Page 8: ...nation Sensitive Accounting Overview of Destination Sensitive Accounting 8 1 Basic Accounting Configuration Information 8 2 Configuring Access Profiles 8 3 Summary of Access Policy Commands 8 3 Creating an Access Profile 8 5 Configuring an Access Profile Mode 8 6 Adding an Access Profile Entry 8 6 Specifying Subnet Masks 8 7 Sequence Numbering 8 7 Permit and Deny Entries 8 7 Autonomous System Expr...

Page 9: ...g the CLI to Retrieve Accounting Statistics 8 18 Using SNMP to Retrieve Accounting Statistics 8 18 9 Additional MPLS Module Support Topics General Switch Attributes 9 2 Image and Configuration Attributes 9 4 802 1p and 802 1Q Commands 9 4 VLAN Commands 9 5 FDB Commands 9 5 Basic IP Commands 9 5 show ipconfig Command 9 6 show iproute and rtlookup Commands 9 6 Optional show iproute Keywords 9 6 ICMP...

Page 10: ...x MPLS Module Installation and User Guide A Supported MIBs and Standards Standards Supported for MPLS A 1 MIBs Supported for MPLS A 2 Index Index of Commands ...

Page 11: ...nfiguration tasks This guide is intended for use by network administrators who are responsible for installing and setting up network equipment It assumes a basic working knowledge of Local area networks LANs Ethernet concepts Ethernet switching and bridging concepts Routing concepts Internet Protocol IP concepts Routing Information Protocol RIP and Open Shortest Path First OSPF Simple Network Mana...

Page 12: ... and Table 2 list conventions that are used throughout this guide Table 1 Notice Icons Icon Notice Type Alerts you to Note Important features or instructions Caution Risk of personal injury system damage or loss of data Warning Risk of severe personal injury Table 2 Text Conventions Convention Description Screen displays This typeface indicates command syntax or represents information as it appear...

Page 13: ...lation Note Documentation for Extreme Networks products is available on the World Wide Web at the following location http www extremenetworks com Key names Key names are written with brackets such as Return or Esc If you must press two or more keys simultaneously the key names are linked with a plus sign Example Press Ctrl Alt Del Words in italicized type Italics emphasize a point or denote new te...

Page 14: ...xiv MPLS Module Installation and User Guide ...

Page 15: ...he chassis The MPLS module contains a powerful set of packet processing resources that operate in a one armed fashion receiving frames from the switch fabric processing the frames and transmitting the frames back into the switch fabric This chapter covers the following topics Summary of Features on page 1 2 MPLS Module Physical Description on page 1 2 BlackDiamond 6800 Series Switch Overview on pa...

Page 16: ...ion sensitive accounting gives you the flexibility to bill your customers at predetermined and different rates The rates are based on the customers IP unicast packet destinations The accounting feature categorizes IP unicast packets using two parameters input VLAN ID and accounting bin number The VLAN ID is used to identify from which customer the packet is received The accounting bin number is as...

Page 17: ...0 series switch Figure 1 1 MPLS module The MPLS module has the following key components Two high performance network processors A General Purpose Processor GPP subsystem PoS_002 MPLS_15 Ejector injector handle Service ports Module status LED General Purpose Processor GPP Module diagnostics LED Captive retaining screw Network processors and heat sinks ...

Page 18: ...Indicators The MPLS module is equipped with two module level LED indicators STATUS and DIAG see Figure 1 2 The STATUS LED indicator is located near the top end of the front panel near the ejector injector handle This LED indicator is a bi color LED displaying in either green or amber that signals the operating status of the module The DIAG LED indicator is located beside the STATUS LED The LED is ...

Page 19: ...n this guide the BlackDiamond 6800 series switch supports a variety of I O modules that offer a choice of port connections over different media types and distances Management Switch Fabric MSM64i modules provide the internal switch fabric for data being sent between I O modules See the BlackDiamond Hardware Installation Guide for more information BlackDiamond 6800 series MPLS modules can be insert...

Page 20: ... output port MPLS modules are only compatible with Inferno series MSM modules They are compatible with both Inferno series and Summit series I O modules About MPLS MPLS is a technology that allows routers to make protocol independent forwarding decisions based on fixed length labels The use of MPLS labels enables routers to avoid the processing overhead of delving deeply into each packet and perfo...

Page 21: ...pping a VLAN to a specific set of MPLS tunnels you can create virtual private networks VPNs Within a VPN all traffic is opaquely transported across the service provider network Each VPN can be managed and provisioned independently VPNs may have two or more customer points of presence PoP All PoPs are interconnected using point to point tunnels If there are two PoPs in the VPN the VPN is considered...

Page 22: ...put for a single BlackDiamond chassis can be scaled up to 16 Gbps by adding up to four MPLS modules MPLS modules interface to the BlackDiamond switch fabric via four 1 Gbps internal links IP unicast traffic is internally forwarded from the BlackDiamond I O modules using one of three backplane load sharing policies port based address based or round robin See the ExtremeWare Software User Guide for ...

Page 23: ... and the accounting bin number corresponds to a billing rate Use the ExtremeWare route map function to configure policies that assign accounting bin numbers to IP routes Bin 0 is the default bin Any route that does not have an explicit bin assignment via the route map function defaults to bin 0 You retrieve accounting statistics via the command line interface CLI and Simple Network Management Prot...

Page 24: ...1 10 MPLS Module Installation and User Guide Overview ...

Page 25: ...lation on page 2 8 Troubleshooting on page 2 9 Removing and Replacing an MPLS Module on page 2 14 Preparing for Installation This section describes the preparation steps that you must perform before inserting and securing an MPLS module This section includes information on the following topics Software and Hardware Version Requirements on page 2 2 Safety Information on page 2 3 Tools on page 2 4 M...

Page 26: ...ckages are incompatible the MPLS ports on the module will not come up and the show slot command will indicate that the software on the MPLS module is incompatible with the MSM software You can also verify compatibility by comparing the version of the MSM software package with the version of the MPLS module software package The format of the software version field of the ExtremeWare software versio...

Page 27: ... package ExtremeWare V6 1 5 Build 20 Project IP_SERV_TECH_REL V1 1 98 but is not compatible with MPLS module software package ExtremeWare V6 1 5 Build 20 Project IP_SERV_TECH_REL V2 1 1 Safety Information Before you begin the process of installing or replacing an MPLS module in a BlackDiamond 6800 series switch read the safety information in this section Failure to observe the necessary safety gui...

Page 28: ...to install an Extreme Networks MPLS module in a BlackDiamond 6800 series chassis ESD preventive wrist strap and grounding leash that is provided with the BlackDiamond 6800 series chassis Number 1 Phillips head screwdriver MPLS Module Slot Locations Figure 2 1 shows the I O module slot locations where you can insert an MPLS module in the BlackDiamond 6808 series chassis You can install the MPLS mod...

Page 29: ...S M S T R E N V E R R MGMT PCMCIA LINK ACTIVITY MODEM CONSOLE S T A T U S D IA G 3 4 2 1 7 8 6 5 11 12 10 9 AMBER GREEN FLASHING GREEN ACTIVITY LINK OK DISABLED DIAG STATUS 50015 50015 52011 3 4 2 AMBER ACTIVITY GREEN LINK OK FLASHING GREEN DISABLED 7 8 6 5 51040 AC IN DCOUT 50021 POWER AC IN DCOUT V 50 60Hz 200 240V 15A V 50 60Hz 200 240V 15A 50021 POWER 3 4 2 1 11 12 10 9 19 20 18 17 27 28 26 25...

Page 30: ...sis slot for the module If necessary remove the blank filler from the slot to make room for the MPLS module Any unoccupied module slot in the chassis should have a blank filler installed to ensure satisfactory protection from electromagnetic interference EMI and to guarantee adequate airflow through the chassis 3 To insert an MPLS module use Figure 2 2 as a reference and follow these steps To prev...

Page 31: ...ule is pushed into the chassis slot the ejector injector handles begin pivoting to their closed position d Close the ejector injector handles by pushing them toward the center of the module PoS_0 MPLS_ AC IN DCOUT 50020 POWER AC IN DCOUT 50020 POWER a Loosen captive screws b Pivot ejector injector handles 50015 1 2 3 4 A B 5 6 7 8 50015 ...

Page 32: ...talled module LED Indicators When the MPLS module is operating normally the front panel LED indicators should appear as follows STATUS LED indicator green blinking DIAG LED indicator off Displaying Slot Status Information Assuming the MPLS module has no problems the command show slot slot where slot is the number of the slot where you installed the module displays that ExtremeWare has detected the...

Page 33: ...on page 2 11 Upgrading the Switch Software Image on page 2 11 Upgrading the MPLS Module Software Image on page 2 11 Fixing Power Related Problems on page 2 12 Identifying Conditions for Replacing an MPLS Module on page 2 13 The information in this section should be used in conjunction with the Troubleshooting appendix in the ExtremeWare Software User Guide and the release notes that accompanied yo...

Page 34: ... error module failed diagnostics Network processor GPP down or other severe card error as detected by network processor heartbeat protocol No power No action required See Fixing Configuration Errors on page 2 11 See Upgrading the Switch Software Image on page 2 11 See Upgrading the MPLS Module Software Image on page 2 11 See Identifying Conditions for Replacing an MPLS Module on page 2 13 Reboot s...

Page 35: ...r and blinks use the show slot slot command to display the configured slot type The output from this command also displays information about the module state including the card unknown message This message indicates that the installed ExtremeWare software image version does not recognize the module type To correct this problem you need to upgrade the ExtremeWare software image To perform this task...

Page 36: ... be stored If you do not specify the image space the new image is downloaded to the image space that is used as the load source on the next reboot To select which image primary or secondary the MPLS module loads on the next reboot use the following command use image primary secondary slot slot Fixing Power Related Problems If the LEDs on all other modules are off verify that the BlackDiamond 6800 ...

Page 37: ...down use the following command to run the diagnostics on the MPLS module and display the results run diagnostics normal extended slot slot To display the MPLS module software diagnostics you must wait for the DIAG LED to stop blinking After the blinking stops use the following command to display each test that was run with a Pass Fail status show diagnostics slot slot After you run the diagnostics...

Page 38: ... with the chassis and verify that the metal end of the leash is connected to the ground receptacle located on the top left corner of the BlackDiamond 6800 series switch front panel 2 Identify the MPLS module to be replaced and write down the following information for later use The chassis slot number When you install the replacement MPLS module install it in the same chassis slot 3 Use the 1 Phill...

Page 39: ...al card carrier to support the weight of the module Slide the module completely out of the chassis slot Place the module immediately into an antistatic sack to protect it from ESD damage and prevent dust from collecting on the module s optical fiber connectors 7 Install and secure the replacement module See Inserting and Securing a Module on page 2 6 for more details ...

Page 40: ...2 16 MPLS Module Installation and User Guide Installing or Replacing an MPLS Module ...

Page 41: ...mond 6800 series switch see the BlackDiamond Hardware Installation Guide Documentation for Extreme Networks products is available at the Extreme Networks home page at http www extremenetworks com This chapter covers the following topics Overview of MPLS on page 3 1 MPLS Layer on page 3 8 Configuring MPLS on page 3 12 Overview of MPLS MultiProtocol Label Switching MPLS encompasses a growing set of ...

Page 42: ... indicate the outgoing port and any label s to be applied to forwarded frames Thus forwarding may consist of a simple lookup and replacement of the incoming label with the appropriate outgoing label otherwise known as label swapping Figure 3 1 illustrates an MPLS network Figure 3 1 MPLS network MPLS Terms and Acronyms Table 3 1 defines common MPLS terms and acronyms Table 3 1 MPLS Terms and Acrony...

Page 43: ...uter that receives and transmits packets on an MPLS network MPLS MultiProtocol Label Switching A set of protocols defined by the IETF used to transmit information based on a label switching forwarding algorithm NHLFE Next Hop Label Forwarding Entry The NHLFE represents the MPLS router next hop along the LSP PHP Penultimate Hop Popping A label stack optimization used for conserving the number of al...

Page 44: ...e ingress LER originates a label request message to request a label binding for a particular FEC for a particular IP address prefix or IP host address The label request message follows the normal routed path to the FEC The egress LER responds with a label mapping message that includes a label TLS Tunnel A specific type of VC tunnel that carries only VLAN tagged Ethernet traffic Tunnel LSP Any acti...

Page 45: ...he binding was received from the current next hop for the associated FEC Both label advertisement modes can be concurrently deployed in the same network However for a given adjacency the two LSRs must agree on the discipline Negotiation procedures specify that DU mode be used when a conflict exists Label request messages can still be used when MPLS is operating in unsolicited mode The Extreme LDP ...

Page 46: ...rom its next hop for the FEC True to its name the mode provides a more controlled environment that yields benefits such as preventing loops and ensuring use of consistent FECs throughout the network The Extreme MPLS implementation supports ordered LSP control only Label Switch Routers MPLS protocols are designed primarily for routed IP networks and are implemented by Label Switch Routers LSRs The ...

Page 47: ...classes to different LSPs or by using the EXP bits in the MPLS shim header to identify traffic classes with particular forwarding requirements Table 3 2 LSR Functions LSR Function Ingress LER Inserts one or more labels into packets transmitted onto an LSP Intermediate LSR Forwards packets via label swapping Egress LER Removes the last label s before forwarding packets received from an LSP MPLS_12 ...

Page 48: ... MPLS shim header is also referred to as a label stack because it can contain multiple entries Each entry contains the following fields 20 bit label 3 bit experimental EXP field The EXP field can be used to identify different traffic classes to support the DiffServ QoS model 1 bit bottom of stack flag The bottom of stack bit is set to 1 to indicate the last stack entry 8 bit Time To Live TTL field...

Page 49: ...rotocol is carried on a given LSP Figure 3 6 MPLS unicast frame on tagged Ethernet VLAN The approach of the shim header encapsulation is similar for Packet over SONET PoS interfaces running PPP For PoS interfaces running PPP the MPLS shim header follows the PPP Protocol ID PID field A PID of x0281 is used to indicate MPLS unicast while a PID of x0283 identifies MPLS multicast MPLS can also take ad...

Page 50: ...y neighbor LSRs is always enabled For example if an LSR advertises implicit NULL labels for IP prefixes the neighbor LSRs must support PHP Label Binding Label binding is the process of and the rules used to associate labels with FECs LSRs construct label mappings and forwarding tables that comprise two types of labels labels that are locally assigned and labels that are remotely assigned Locally a...

Page 51: ... are imposed on the maximum size of the label stack other than the constraint of not exceeding the maximum frame size supported by the physical links comprising the LSP You should enable jumbo frame support on the ports that are members of an MPLS VLAN The jumbo frame size should be set to accommodate the addition of a Table 3 3 MPLS Label Space Partitions Label Range Label Partition Description x...

Page 52: ...eWare commands for configuring and monitoring MPLS Each command is described in detail in the sections that follow Table 3 5 MPLS Configuration Commands Command Description config mpls add vlan name all ldp rsvp te Enables LDP or RSVP TE for one or all VLANs If not specified both LDP and RSVP TE are enabled on the specified VLAN config mpls delete vlan name all ldp rsvp te Disables LDP or RSVP TE ...

Page 53: ...n performed by the ingress I O module exp to dot1p Mappings are used when performing label swapping as an intermediate LSR and when performing the egress LSR function config mpls vlan name all ip mtu number Configures the IP MTU for frames transmitted onto MPLS LSPs via the specified egress VLAN The range is 42 to 9190 using jumbo frame sizes The default setting is 4 less than the IP MTU value By ...

Page 54: ...e Displays targeted LDP and RSVP TE interface information including targeted LDP and RSVP TE peer IP address and peer state Specifying the keyword ldp targeted ldp or rsvp te limits the information displayed to only those interface types show mpls label summary detail label_number detail host ipaddress detail prefix ipaddress masklength detail rsvp te ipaddress detail Displays information from the...

Page 55: ...be enabled on the switch If all VLANs are selected MPLS is enabled on all VLANs that have an IP address and IP forwarding enabled This command optionally enables LDP or RSVP TE for the specified VLAN If not specified both LDP and RSVP TE are enabled on the specified VLAN If you have enabled MPLS on an OSPF interface that is used to reach a particular destination make sure that you enable MPLS on a...

Page 56: ...onfigured IP MTU size for the egress VLAN The IP MTU size is configured using the config ip mtu number vlan name command You should configure the MPLS IP MTU so that the addition of the MPLS label stack the link layer header does not cause the packet to be too large to be transmitted on the egress ports To avoid potential problems you should enable jumbo frame support on all ports that are members...

Page 57: ... PHP is requested by the egress LER When PHP is enabled PHP is requested on all LSPs for which the switch is the egress LER PHP is requested by assigning the Implicit Null Label in an advertised mapping PHP is always performed when requested by an egress LSR for example when the switch is acting as an intermediate LSR The Implicit Null Label is always used in conjunction with routes exported by OS...

Page 58: ...ty input_value can be mapped to any EXP output_value The EXP output_value is set in the MPLS header of the packet as it is forwarded to the MPLS network Exp to dot1p Mappings The exp to dot1p mappings are used when the switch performs label swapping as an intermediate LSR and when the switch is the egress LSR In both of these cases the MPLS module receives an MPLS encapsulated frame The EXP field ...

Page 59: ...PLS Configuration Parameter Values To reset MPLS configuration parameters to their default values use the following command unconfig mpls This command resets the following configuration parameters IP MTU LDP propagation filter settings on all VLANs LDP advertisement filter settings LDP session timers RSVP TE interface parameters RSVP TE profile parameters Settings for propagate ip ttl QoS mapping ...

Page 60: ...ent status of peer LSRs and a list of the VLANs for which MPLS is enabled When the vlan parameter is specified this command displays the current values of the MPLS configuration parameters that are specific to the VLAN If the optional detail keyword is specified additional detailed VLAN information is displayed Displaying MPLS Forwarding Entry Information To display MPLS forwarding entry informati...

Page 61: ...to RSVP TE LSPs because RSVP TE operates in downstream on demand mode Displaying MPLS Label Mapping Information To display MPLS label mapping information use the following command show mpls label summary label_number fec host ipaddress prefix ipaddress masklength detail This command displays information from the Incoming Label Map ILM which is used when forwarding packets that arrive labeled as MP...

Page 62: ...er Counts of packets and bytes that have been received with the incoming label Counts of packets and bytes that have been transmitted with the outgoing label LSP type This command also displays information from the Incoming Label Map ILM for RSVP TE LSPs Displaying MPLS QoS Mapping Information To display MPLS QoS mapping information use the following command show mpls qos mapping Configured mappin...

Page 63: ...or the purpose of establishing an MPLS LSP Using LDP peer LSRs exchange label binding information to create the LSP LDP Neighbor Discovery LDP includes a neighbor discovery protocol that runs over UDP Using the basic discovery mechanism each LSR periodically multicasts a hello message to a well known UDP port to which all LSRs listen These hello messages are transmitted to the all routers on this ...

Page 64: ... is 45 seconds After the hello adjacency is formed the active LSR initiates establishment of a TCP connection to the peer LSR At this point an LDP session is initiated over the TCP connection The LDP session consists of an exchange of LDP messages that are used to setup maintain and release the session Advertising Labels You can control whether labels are advertised for Direct routes RIP routes ex...

Page 65: ...VLAN on page 4 6 Configuring LDP Filters on page 4 6 Configuring LDP Session Timers on page 4 8 Restoring LDP Session Timers on page 4 9 Displaying LDP Peer Information on page 4 9 Commands for LDP Table 4 1 describes the ExtremeWare commands for configuring and monitoring LDP Each command is described in detail in the sections that follow ...

Page 66: ...ed ldp hello hold_time is 45 The default setting for ldp hello interval_time is 5 The default setting for targeted ldp hello interval_time is 15 keep alive hold_time interval_time The time in seconds during which an LDP message must be received for the LDP session with a particular peer LSR to be maintained If an LDP PDU is not received within the specified session keep alive interval_time the cor...

Page 67: ...is applied to FECs associated with RIP routes exported by OSPF static The advertisement filter is applied to FECs associated with static routes exported by OSPF Additionally specify one of the following filters all Unsolicited label mapping advertisements are originated for all routes of the specified type This is the default setting for the direct routing method none No unsolicited label mapping ...

Page 68: ...an configure two types of LDP filters Label propagation filters Label advertisement filters Configuring an LDP Label Propagation Filter To configure an LDP label propagation filter use the following command config mpls vlan name all ldp propagate all none route map route_map This command configures a filter to be used by LDP when propagating unsolicited label mappings to all LDP neighbors on the s...

Page 69: ...t filter use the following command config mpls ldp advertise direct rip static all none route map route_map This command configures a filter to be used by LDP when originating unsolicited label mapping advertisements to LDP neighbors You can configure how the advertisement filter is applied as follows direct The advertisement filter is applied to the FECs associated with direct routes exported by ...

Page 70: ...labels advertised by LERs does not overwhelm the label capacity of the LSRs Configuring LDP Session Timers To configure LDP session timers use the following command config mpls ldp targeted ldp hello keep alive hold_time interval_time LDP session timers are separately configurable for LDP and targeted LDP sessions The hello hold_time interval_time parameter specifies the amount of time in seconds ...

Page 71: ...ssion timers use the following command unconfig mpls This command can only be executed when MPLS is disabled Displaying LDP Peer Information To display MPLS LDP peer information use the following command show mpls ldp ipaddress detail This command displays information about the status of LDP peers Summary information is displayed for all known LDP peers and LDP peer sessions If you specify the ipa...

Page 72: ...h to support a routed MPLS network Figure 4 1 MPLS configuration example The four switches labeled LSR 1 LSR 2 LSR 3 and LSR 4 have the same physical hardware configuration Each switch contains an F48ti module a G8xi module an MPLS module and an MSMi module The switches are all interconnected via Gigabit MPLS_18 LSR 3 Router ID 11 0 3 11 LSR 4 Router ID 11 0 4 11 LSR 1 Router ID 11 0 1 11 LSR 2 Ro...

Page 73: ...slot 3 module g8x config slot 7 module mpls The following command sets the maximum jumbo frame size for the switch chassis to 1600 config jumbo frame size 1600 The following commands create the VLANs create vlan vlan1 create vlan vlan2 create vlan unc The following commands configure the VLAN IP address and assign ports participating in each VLAN config vlan vlan1 ipaddress 11 0 1 1 24 config vlan...

Page 74: ...vlan2 to the backbone area each with a cost of 10 The 0 0 0 0 backbone area does not need to be created because it exists by default config ospf add vlan vlan2 area 0 0 0 0 config ospf vlan vlan2 cost 10 config ospf add vlan vlan1 area 0 0 0 0 config ospf vlan vlan1 cost 10 The following command enables distribution of local direct interfaces into the OSPF area enable ospf export direct cost 10 as...

Page 75: ...provide a requested service to all nodes along a data path RSVP is not a routing protocol It works in conjunction with unicast and multicast routing protocols An RSVP process consults a local routing database to obtain routing information Routing protocols determine where packets get forwarded RSVP is concerned with the QoS of those packets that are forwarded in accordance with the routing protoco...

Page 76: ...el request and explicit route objects in the path message A destination responds to a label request by including a label object in its reserve message Labels are then subsequently assigned at each node the reserve message traverses Thus RSVP TE operates in downstream on demand label advertisement mode with ordered LSP control ExtremeWare does not support native RSVP RSVP is supported only on TE LS...

Page 77: ...e path Each RSVP sender periodically transmits a path message downstream along the route for each data path The path state includes at minimum the IP address of the previous hop node This IP address is used to route the reserve message on a hop by hop basis in the reverse direction In addition to the previous hop address the path message contains the sender Tspec and Adspec The reservation message...

Page 78: ...ervation error message is used to report errors that are encountered when processing reserve messages In addition reservation error messages are used to report the spontaneous disruption of a reservation Reservation error messages travel downstream to the receiver Path Tear Message The path tear message is used to delete a matching path state When used for a multicast session path tear messages ca...

Page 79: ...s are sent to the receiver host Reservation Styles A reservation style is a set of options that is included in the reservation request One reservation style concerns how reservations requested by different senders within the same session are handled This type of reservation style is handled in one of two ways either create a distinct reservation for each sender in the session or use a single reser...

Page 80: ... style Wildcard The wildcard WF reservation style uses the shared reservation and wildcard sender options A wildcard reservation creates a single reservation that is shared by data flows from all upstream senders The Extreme MPLS implementation does not support WF reservation style Bandwidth Reservation As mentioned previously RSVP reservations are unidirectional in nature The source initiates the...

Page 81: ...E style labels Therefore increasing the reserved bandwidth parameter for an LSP will force the LSP to be torn down If the LSP is torn down the LSP is resignaled with the new reserved bandwidth value There are no guarantees that the LSRs along the path will be able to accommodate the increased bandwidth reservation request RSVP State State is installed at each device traversed by the path message b...

Page 82: ...ges to be refreshed instead of transmitting the entire unchanged contents of the RSVP messages and bundling the message identifiers for multiple refresh operations into a single packet Traffic Engineering This section describes RSVP traffic engineering and the following topics RSVP Tunneling on page 5 8 RSVP Objects on page 5 9 RSVP Tunneling An RSVP tunnel sends traffic from an ingress node throu...

Page 83: ...el is not assumed to be IP and cannot be deduced from the layer 2 protocol header which simply identifies the higher layer protocol as MPLS Therefore the layer 3 Protocol ID PID value must be set in the Label Request Object so that the egress node can properly handle the tunneled data Extreme switches only support the IP PID value 0x0800 To create an RSVP TE LSP the sender on the MPLS path creates...

Page 84: ...on about the actual route traversed by the RSVP TE LSP It is also used by the sender to request notification if there are changes to the routing path Intermediate or transit nodes can optionally use the RRO to provide loop detection To use the object the sender adds the record route object to the path message Session Attribute The session attribute object can also be added to the path message It i...

Page 85: ...downstream label in a label object as part of the RRO If an Extreme LSR receives a path message with the label recording flag set in the RRO the LSR does not push a label subobject onto the RRO If a path message is received that contains an RRO the Extreme LSR uses the RRO to perform loop detection The RRO is scanned to verify that the path message has not already traversed this LSR If the RRO con...

Page 86: ...ry path fails Secondary paths are fully provisioned preestablished RSVP TE LSPs that are maintained as inactive TE 32 routes to the path endpoint If the primary path is torn down the primary path TE 32 route is removed from the routing table and a TE 32 route representing one of the active secondary paths is installed as the preferred path for the LSP If multiple secondary are paths available the ...

Page 87: ...refresh messages provide soft state link level keep alive information for previously established paths and enable the switch to detect when an LSP is no longer active RSVP sessions are torn down if an RSVP refresh message is not received from a neighbor within keep multiplier 0 5 1 5 refresh time seconds The valid refresh time may be set to any value between zero to 60 seconds The default setting ...

Page 88: ... Path to an RSVP TE LSP on page 5 23 Displaying RSVP TE LSP Configuration Information on page 5 24 Displaying the RSVP TE Routed Path on page 5 25 Displaying the RSVP TE Path Profile on page 5 25 Displaying the RSVP TE LSP on page 5 25 Commands for Configuring RSVP TE Table 5 2 describes the ExtremeWare commands for configuring and monitoring RSVP TE Each command is described in detail in the sect...

Page 89: ...ary primary Adds a path to an LSP If the path is added as the primary path the tunnel LSP uses this path If the primary path is unavailable one of the secondary paths is chosen config mpls rsvp te lsp lsp_name delete path path_name Deletes a path from an LSP config mpls rsvp te path path_name add ero ipaddress ipaddress masklength host_name strict loose order number Adds an IP address to the expli...

Page 90: ...econds metric metric igp tracking record enabled disabled Configures RSVP TE attributes for the specified profile config mpls rsvp te vlan name all hello interval seconds refresh time seconds summary refresh time seconds bundle time seconds keep multiplier number Configures the RSVP TE protocol parameters for the specified VLAN show mpls rsvp te ipaddress detail Displays information about the stat...

Page 91: ...interval time setting The refresh time specifies the interval for sending refresh path messages RSVP refresh messages provide soft state link level keep alive information for previously established paths and enables the switch to detect when an LSP is no longer active RSVP sessions are torn down if an RSVP refresh message is not received from a neighbor within keep multiplier 0 5 1 5 refresh time ...

Page 92: ...tch must be configured so that the host_name can first be resolved to an IP address Alternate routed paths to the same IP destination may be configured by adding additional path_names and specifying the same ipaddress or host_name as the path endpoint The RSVP TE path is not signaled until an LSP is added with the specified path_name If no explicit route objects are configured the path will follow...

Page 93: ...e switch verifies that the path message is received on the matching router interface If the LSR specified matches the OSPF router ID or a configured loopback IP address the router interface on which the packet is received is ignored If the IP address is specified as strict the strict subobject must be topologically1 adjacent to the previous subobject as listed in the ERO If the IP address is speci...

Page 94: ...of the path has not been reached the remaining path to the egress node is signaled along the best routed path Specification of an ERO could lead to undesirable routed paths so you should be careful when terminating the ERO routed path definition prior to the configured path egress node To delete an RSVP TE explicit route use the following command config mpls rsvp te path path_name delete ero all i...

Page 95: ... priorities The setup priority range is 0 to 7 and the default value is 7 The hold priority range is also 0 to 7 and is set equal to the setup priority by default ExtremeWare does not support LSP preemption The retry timeout keyword specifies the maximum number of seconds the switch allows for LSP setup If the LSP cannot be established within retry timeout seconds the LSP is resignaled The default...

Page 96: ...d with a configured LSP the profile cannot be deleted If you specify the all keyword all profiles not associated with an LSP are deleted except for the default profile Configuring an Existing RSVP TE Profile To configure an existing RSVP TE profile use the following command config mpls rsvp te profile profile_name bandwidth bps hop count number setup priority priority hold priority priority retry ...

Page 97: ...config mpls rsvp te delete lsp lsp_name all Deleting an LSP name disassociates all configured paths with this LSP and all configuration information for the LSP name is deleted LSPs cannot be deleted if the specified lsp_name has been configured as the LSP for a TLS tunnel If you specify the all keyword all LSPs not associated with a TLS tunnel are deleted Adding a Path to an RSVP TE LSP To add a p...

Page 98: ...he remaining configured secondary paths can become the active path for lsp_name To delete a path from an RSVP TE LSP use the following command config mpls rsvp te lsp lsp_name delete path path_name When you issue this command the LSP associated with the path is immediately torn down If the deleted path represents the in use LSP for lsp_name and another secondary path is configured the LSP immediat...

Page 99: ...wing command show mpls rsvp te profile profile_name By default this command displays all configured profile parameters for the specified profile If the profile name is omitted the profile parameter values for all configured LSP profiles are displayed Displaying the RSVP TE LSP To displays the RSVP TE LSP use the following command show mpls rsvp te lsp lsp_name detail This command displays the conf...

Page 100: ...cted across the MPLS domain in order to meet Examples of profile parameters include bandwidth setup and hold priority relative to other configured LSPs See Table 5 2 for details of all available parameters The path can be used to specify the local and remote endpoints for the LSP and optionally the explicit path across the MPLS domain that the LSP should follow The ERO is an object sent as part of...

Page 101: ...condary LSP mandatory 5 Add a secondary LSP optional 6 Verify LSP status recommended Figure 5 2 RSVP TE Configuration Example London Router ID 1 0 0 0 Liverpool Router ID 5 0 0 0 Birmingham Router ID 4 0 0 0 Glasgow Router ID 2 0 0 0 Oxford University Oxford University MPLS_24 1 7 2 2 5 2 3 2 0 3 0 1 7 2 2 5 2 3 2 8 3 0 1 7 2 2 5 2 3 3 6 3 0 1 7 2 2 5 2 3 3 2 3 0 172 25 23 8 30 P r i m a r y L S P...

Page 102: ...ing commands create an LSP profile named Glasgow Birmingham pro LSPs that use the Glasgow Birmingham pro profile are signaled with a reserved bandwidth of 10 Mbps and an LSP setup and hold priority of 5 config mpls rsvp te add profile Glasgow Birmingham pro bandwidth 10m setup priority 5 hold priority 5 The following commands define the primary and secondary paths between Glasgow and Birmingham Th...

Page 103: ... Glasgow Birmingham pro secondary The secondary LSP is signaled however it remains in a standby state unless the primary path becomes unavailable By default a TLS tunnel flows over any available LSP However a TLS tunnel can be specifically directed to use a configured RSVP TE based LSP Configuration is no different from configuring an LDP based TLS tunnel except that the RSVP TE LSP is explicitly ...

Page 104: ...5 30 MPLS Module Installation and User Guide Configuring RSVP TE ...

Page 105: ...ted over an LSP that is associated with the FEC The packet is encapsulated using an MPLS shim header before being transmitted Received MPLS packets can be label switched or routed normally toward the destination Packets that are in the middle of an LSP are label switched The incoming label is swapped for a new outgoing label and the packet is transmitted to the next LSR For packets that have arriv...

Page 106: ... be used to route a packet to its destination Direct LSP An LSP is considered direct with respect to an FEC if it has been associated with the FEC via LDP or RSVP TE Indirect LSP An LSP is considered indirect with respect to an FEC if it has been associated with the FEC via a routing protocol Figure 6 1 illustrates the concept of direct and indirect LSPs Figure 6 1 Direct and indirect LSPs Subnet ...

Page 107: ...ry the modified SPF algorithm determines whether a direct LSP is available and whether an indirect LSP is available for use whenever a direct LSP is not present This design allows label mapping changes for direct LSPs to be managed without requiring an SPF recalculation An SPF recalculation is performed when advertisements and withdrawals of label mappings for 32 FECs are received which is analogo...

Page 108: ...ve active LSPs If the RSVP TE LSP is torn down the IP routed traffic is then load shared across the four remaining equal cost LDP LSPs Equal Cost LSPs Traditional IP routers provide session level IP traffic load distribution across equal cost routed paths When MPLS is enabled multiple equal cost routed paths may result in multiple active LSPs for a given FEC If a label binding for the FEC exists o...

Page 109: ...for RSVP TE LSPs RSVP TE LSPs can be assigned a fixed cost metric independent of the actual topological IGP cost metric By controlling the path cost for RSVP TE LSPs you can manipulate how different traffic flows are tunneled across an MPLS domain For example if the RSVP TE IGP path cost is set higher than its actual IGP metric the LSP is not used to transport IP routed traffic but can still be us...

Page 110: ...P Traffic By default IP packets received by the switch are passed to the MPLS module for IP forwarding This allows IP packets to be forwarded into LSPs However not all IP routes necessarily have LSPs as their next hops When the MPLS module finds that the route for an IP packet has a normal IP next hop no LSP to the destination IP address it sends the destination IP address of the packet to the MSM...

Page 111: ...ansparent LAN services TLS over MPLS is to enable Layer 2 virtual private networking VPN service offerings in a simple manner that is easy to deploy and operate Layer 2 VPN services based on a combination of Ethernet and MPLS IP technologies are designed to enable service providers to offer Ethernet business private line services These services are also referred to as Transparent LAN Services TLS ...

Page 112: ...ting a new dot1q tag all traffic received on a single port can be aggregated into a single VLAN and transported across an MPLS domain as a VLAN service All TLS edge switches must be configured to use the same dot1q ethertype value MPLS VC Tunnels MPLS virtual circuit VC tunnels are logical connections between two LERs over an LSP Like ATM VCs these connections can be signaled dynamic or statically...

Page 113: ...le for ensuring that an OSPF route is advertised for the tunnel endpoint IP address A route is advertised when OSPF is enabled on the VLAN to which the IP address is assigned using the config ospf add vlan command on the peer switch A route is advertised when the peer switch is configured to distribute direct routes into the OSPF domain via the enable ospf export direct command The export option s...

Page 114: ...LAN If the destination MAC is unknown or the packet is a broadcast or multicast packet the packet can be flooded in one of two configurable modes Full Mesh Packets received from the local VLAN are flooded into all TLS tunnels Packets received from a TLS tunnel are flooded onto the local VLAN only Hub and spoke Packets received from the local VLAN are flooded into all TLS tunnels Packets received f...

Page 115: ...ocols STP within a Layer 2 VPN The idea is that STPs could be used to provide redundant VPN data paths that could be unblocked if the STP detects a spanning tree topology failure In general it is believed that introducing TLS VPN STPs increases network complexity with very little real benefit Because each TLS tunnel is carried over an LSP MPLS already provides a sufficient level redundancy For exa...

Page 116: ...the VLAN ID is set by the egress switch to match that of the locally configured VLAN Support for full mesh and hub and spoke VPN architectures with an integrated 256k tunnel MAC cache Support for up to 8 tunnel endpoints per VPN and up to 16k total tunnels per LER Tunnel traffic can be load shared across up to four equal cost LSPs Configuring MPLS Layer 2 VPNs This section describes how to configu...

Page 117: ...ted tls labels ingress_label egress_label Identifies the innermost labels of the tunnel stack vcid Identifies the virtual circuit identifier The vcid value is a non zero 32 bit number groupid Identifies the logical VCID group number The groupid is a 32 bit number All TLS tunnels that are members of the same TLS group ID can be withdrawn simultaneously by specifying the groupid from local_endpoint_...

Page 118: ...the OSPF domain using the enable ospf export direct command The ospf export command should be used when the tunnel LSP needs to cross OSPF area boundaries or when ESRP is enabled on the VLAN to which the IP address is assigned The vcid parameters are used to configure dynamic TLS tunnels when full martini draft TLS tunnel compliance is desired The vcid and groupid values are advertised on a target...

Page 119: ...l parameter is 8C000 8FFFF The valid range of the egress_label parameter is 00010 FFFFF If the peer LSR is also an Extreme switch then the egress_label must be in the range 8C000 8FFFF Because LSPs are unidirectional in nature coordinated configuration is required at both tunnel endpoint switches The egress_label at one tunnel endpoint switch must match the ingress_label at the other tunnel endpoi...

Page 120: ...display TLS configuration information use the following command show mpls tls tunnel tunnel_name detail summary This command displays configuration and status information for one or all TLS tunnels The information displayed for each tunnel includes The values of all configuration parameters for the tunnel The current status of the tunnel LSP Transmit and receive counts in terms of packets and byte...

Page 121: ...TLS VLANs are part of the same IP subnet Exporting of direct interfaces is disabled so that external OSPF routers are not exported into the backbone area The commands used to create a TLS Tunnel between LSR 1 and LSR 4 follow The following command creates a TLS tunnel to the 11 0 4 11 for traffic originating from VLAN unc config mpls add tls tunnel rt40 11 0 4 11 unc tls labels 8f001 8f004 MPLS_19...

Page 122: ...re 7 2 configures a four node full mesh MPLS TLS configuration Each LER MPLS configuration includes a TLS tunnel to every other LER The egress VLAN for the VPN is called ncsu The target IP address 10 100 100 2 shown in each TLS configuration command must be either a Router ID or Loopback VLAN interface address Figure 7 2 Full mesh configuration example VC 34 MPLS 3 RTR ID 11 100 100 3 ncsu MPLS 2 ...

Page 123: ...on the target LER config mpls add tls t12 10 100 100 2 ncsu vcid 12 config mpls add tls t13 10 100 100 3 ncsu vcid 13 config mpls add tls t14 10 100 100 4 ncsu vcid 14 mpls2 config mpls tls tunnel ncsu mode mesh config mpls add tls t12 10 100 100 1 ncsu vcid 12 config mpls add tls t23 10 100 100 3 ncsu vcid 23 config mpls add tls t24 10 100 100 4 ncsu vcid 24 mpls3 config mpls tls tunnel ncsu mode...

Page 124: ...ry other LER Each spoke LER MPLS configuration includes a TLS tunnel to only the hub LER The egress VLAN for the VPN is called ncsu The target IP address 10 100 100 2 shown in each TLS configuration command must be either a Router ID or Loopback VLAN interface address Figure 7 3 Hub and spoke configuration example MPLS 3 RTR ID 11 100 100 3 ncsu MPLS 2 RTR ID 11 100 100 2 MPLS_26 VC 13 VC 14 VC 12...

Page 125: ...csu vcid 13 config mpls add tls t14 10 100 100 4 ncsu vcid 14 mpls2 config mpls tls tunnel ncsu mode mesh config mpls add tls t12 10 100 100 1 ncsu vcid 12 mpls3 config mpls tls tunnel ncsu mode mesh config mpls add tls t13 10 100 100 1 ncsu vcid 13 mpls4 config mpls tls tunnel ncsu mode mesh config mpls add tls t14 10 100 100 1 ncsu vcid 14 Configuration Example Using PPP Transparent Mode The con...

Page 126: ...ansporting PPP traffic create vlan sonet The following command adds port 1 of the OC 3 module in slot 1 to the sonet VLAN There is a one to one mapping between SONET ports and SONET TLS VLANs so each SONET TLS VLAN can have only a single SONET port and no other port as a member config vlan sonet add port 1 1 MPLS_21 LSR 3 Router ID 11 0 3 11 LSR 4 Router ID 11 0 4 11 LSR 1 Router ID 11 0 1 11 LSR ...

Page 127: ...f005 The SONET configuration for LSR 4 is exactly the same as the configuration for LSR 1 but the TLS tunnel is targeted towards LSR 1 as follows config mpls add tls tunnel sonet 11 0 1 11 tls vlan 8f005 8f002 Using ESRP with MPLS TLS ESRP can be used in conjunction with TLS to provide redundancy For example consider adding a second LSR to the hub as shown in Figure 7 5 Figure 7 5 Using ESRP with ...

Page 128: ...failures If the master hub LSR fails ESRP activates the standby hub LSR which then responds by advertising a route and label mapping for the tunnel endpoint IP address The LSRs at the spoke sites receive the label mapping and begin using the new tunnel LSP Loopback mode should not be enabled when ESRP is being used to provide redundancy and ESRP should not be enabled on a VLAN that is expected to ...

Page 129: ...LANs To ensure that the same LSR is selected as the ESRP master for both VLANs the ESRP configuration of the user VLAN and the associated tunnel endpoint VLAN must be identical Enabling ESRP MPLS_07 MPLS NETWORK CUSTOMER SITE 1 CUSTOMER SITE 2 Active Tunnel LSPs TLS command issued on LSR A LSR B config mpls add tls tunnel tls1 IPT2 user tls labels 8f002 81001 TLS command issued on LSR C LSR D conf...

Page 130: ... information about the user VLAN to the MPLS backbone IP addresses are defined on the user VLAN IPU1 for ESRP purposes but these addresses are only used locally at each site In this example IP addresses would have to be defined on a different set of VLANs to provide the connectivity to the MPLS backbone These MPLS VLANs are not depicted in Figure 7 6 The MPLS VLANs contain a different set of physi...

Page 131: ...re is one non TLS VLAN configured to track the state of the LSP When ESRP detects that the LSP has failed all of the VLANs in the configured ESRP domain transition to neutral state and the backup LSR becomes the master switch for all of the TLS VLANs To configure LSP tracking use the following commands config vlan name add track lsp lsp_name ipaddress ipaddress masklength config vlan name delete t...

Page 132: ...o the MPLS domain Figure 7 7 TLS configuration example using ERSP The following sections describe how to configure LSR 1 Same physical port 2 24 MPLS_20 1 1 0 2 0 2 4 v l a n 2 1 1 0 4 0 2 4 v l a n 4 T L S T u n n e l LSR 6 Router ID 11 0 6 11 slave LSR 5 Router ID 11 0 5 11 slave OSPF backbone area and MPLS domain LSR 3 Router ID 11 0 3 11 LSR 4 Router ID 11 0 4 11 master LSR 1 Router ID 11 0 1 ...

Page 133: ...TLS tunnel using the ESRP VLAN router interface the TLS tunnel can migrate between switches as switches change ESRP state config ospf add vlan mplsesrp area 0 0 0 0 config ospf vlan mplsesrp cost 10 The following command enables ESRP on VLAN mplsesrp The ESRP VLAN and the TLS VLAN must have the same port membership In this example port 2 24 is a member of both VLANs enable esrp vlan mplsesrp The f...

Page 134: ...7 24 MPLS Module Installation and User Guide Configuring MPLS Layer 2 VPNs ...

Page 135: ...gure destination sensitive accounting a bin number can be assigned to one or more IP route entries using the ExtremeWare route map command Bin numbers are integers that range from 0 7 and their only intrinsic meaning is to identify a particular set of accounting statistics Each bin contains a 64 bit count of the number of packets that have been forwarded and a 64 bit count of the number of bytes t...

Page 136: ...mands to configure the MPLS module to initiate the accounting function Table 8 1 describes the commands added to the ExtremeWare software for configuring accounting Table 8 1 Accounting Commands Command Description of Change clear accounting counters Clears zeroes out all of the billing statistics config route map route map sequence_number add delete set accounting index 1 value bin_number Configu...

Page 137: ...scribes commands used to configure access profiles for MPLS modules This section provides information on the following topics Summary of Access Policy Commands on page 8 3 Creating an Access Profile on page 8 5 Configuring an Access Profile Mode on page 8 6 Adding an Access Profile Entry on page 8 6 Deleting an Access Profile Entry on page 8 8 Removing a Routing Access Policy on page 8 8 Summary o...

Page 138: ...ct if the access profile mode is none Otherwise the overall access profile type takes precedence ipaddress mask an IP address and mask If the attribute exact is specified for an entry then an exact match with address and mask is performed Subnets within the address range do not match entry against entry as path A regular expression string to match against the autonomous system path bgp community T...

Page 139: ...ccess profile access_profile type ipaddress as path bgp community The following command example creates an access profile named cold and is defined to be type ipaddress create access profile cold type ipaddress create access profile access_profile type ipaddress as path bgp community Creates an access profile After the access profile is created one or more addresses can be added to it and the prof...

Page 140: ...y entries Each entry must have a permit or deny attribute The operation is compared with each entry in the list When a match is found the operation is either permitted or denied depending on the configuration of the matched entry If no match is found the operation is implicitly denied To configure the access profile mode use the following command config access profile access_profile mode permit de...

Page 141: ... masking the same logic applies but the configuration is more complicated For example the address 141 251 24 128 27 represents any host from subnet 141 251 24 128 The following command example adds an ipaddress to the access profile cold config access profile cold add 10 permit ipaddress 192 165 100 0 24 See Route Map Configuration Examples on page 8 13 for more details about configuring access po...

Page 142: ...y you must remove the access profile from the routing protocol or VLAN All the commands that apply an access policy to form an access policy also have the option of choosing none as the access profile Using the none option removes any access profile of that particular type from the protocol or VLAN and therefore removes the access policy Table 8 3 Regular Expression Notation Character Definition S...

Page 143: ... Summary of Route Map Commands on page 8 9 Creating a Route Map on page 8 11 Adding Entries to the Route Map on page 8 11 Adding Statements to the Route Map Entries on page 8 11 Route Map Operation on page 8 13 Summary of Route Map Commands Table 8 4 describes the commands used to configure route map policies that support the accounting function Table 8 4 Route Map Commands Command Description con...

Page 144: ...fied route map entry The accounting index value is always set to 1 for destination sensitive accounting config route map route map sequence number delete match nlri list access_profile as path access_profile as_no community access profile access_profile as_num number number community next hop ipaddress med number origin igp egp incomplete Deletes a route map match statement config route map route ...

Page 145: ...ne of the matching statements is true The match all keyword is a logical and The route map is successful when all match statements are true This is the default setting Adding Statements to the Route Map Entries To add statements to the route map entries use one of the following four commands config route map route map sequence number add match nlri list access_profile as path access_profile as no ...

Page 146: ...s discussed in Table 8 6 Table 8 5 Match Operation Keywords Command Description of Change nlri list access_profile Matches the NLRI against the specified access profile as path access_profile as no Matches the AS path in the path attributes against the specified access profile or AS number community access_profile community Matches the communities in the path attribute against the specified BGP co...

Page 147: ...nting bin number associated with a specified route map entry use the following command config route map route map sequence_number add delete set accounting index 1 value bin_number Where the following is true The route map parameter identifies a particular route map The sequence_number parameter identifies a specific entry in that route map The sequence number must be associated with a match state...

Page 148: ...ed IP forwarding is enabled and accounting is enabled 1 Create access profiles for each destination subnet The following commands create three different profiles arm1 arm2 and arm3 Each profile is defined to be type ipaddress with a mode of none Each subnet is then assigned to one of the profiles create access profile arm1 type ipaddress config access profile arm1 mode none config access profile a...

Page 149: ...h nlri list arm3 3 Assign bin numbers to each route map config route map ip_example 100 add set accounting index 1 value 3 config route map ip_example 200 add set accounting index 1 value 4 config route map ip_example 300 add set accounting index 1 value 5 4 Correlate the route map to direct routes config iproute route map direct ip_example The show accounting command lists the packet and octet co...

Page 150: ...ber to each BGP community create route map bgp_example create route map bgp_example add 100 permit match one create route map bgp_example 100 add match community 1111 1 create route map bgp_example 100 add set accounting index 1 value 1 create route map bgp_example add 200 permit match one create route map bgp_example 200 add match community 2222 2 create route map bgp_example 200 add set accounti...

Page 151: ...s that identify route sources that are inserted into the IP routing table The configured route map is applied when routes of the specified source type are entered into the routing table If there is a match between a route map entry for which a accounting bin number is configured the configured bin number is associated with the routing table entry If there is no match the bin number 0 is assigned t...

Page 152: ...n command The show accounting vlan command lists the packet and octet counts for each bin number per VLAN Omitting the VLAN name displays the accounting statistics for all the VLANs Using SNMP to Retrieve Accounting Statistics Any network manager running SNMP can retrieve accounting statistics provided the management information base MIB is installed correctly on the management station Each networ...

Page 153: ...ide 8 19 Retrieving Accounting Statistics See the ExtremeWare Software User Guide for more information related to configuring SNMP See your SNMP Manager documentation for information on how to load MIBs for use within the network manager ...

Page 154: ...8 20 MPLS Module Installation and User Guide Configuring Destination Sensitive Accounting ...

Page 155: ... Image and Configuration Attributes on page 9 4 802 1p and 802 1Q Commands on page 9 4 VLAN Commands on page 9 5 Basic IP Commands on page 9 5 ICMP Commands on page 9 7 IP Multicast and Flow Redirection Commands on page 9 7 OSPF Commands on page 9 8 BGP Commands on page 9 8 Route Map Commands on page 9 8 PPP Commands on page 9 9 ESRP and VRRP Commands on page 9 9 Layer 2 and Layer 3 Switching Attr...

Page 156: ... module reboot time date time cancel slot slot The slot slot option is added to the command to make it possible to reboot a module in a specific slot When you specify this option the command applies to the MPLS module in the specified slot rather than to the switch run diagnostics normal extended slot This command runs the MPLS module diagnostics show diag backplane mpls mapping active This comman...

Page 157: ...he TLS tunnel tunnel_name The MAC address VLAN name and TLS tunnel name are displayed for each MAC cache entry show diag slot slot_number iproute This command displays the IP route table for a specific MPLS module specified by the slot_number parameter By default the entire route table downloaded to the MPLS module is displayed This command is similar to the show iproute command show diag slot slo...

Page 158: ...pplicable to the MPLS module unconfig switch all This command clears any previously configured MPLS module information Table 9 2 Changes to Image Commands Command Description of Change download image ipaddress hostname filename primary secondary slot slot The slot slot option is added to this command to support downloading of images to a specified MPLS module When you enter the command with this o...

Page 159: ... the MPLS module The clear fdb command clears the VPN source MAC address cache for all MPLS modules If the optional mac_address or vlan_name parameters are specified any VPN cache entry that matches the specified parameters are cleared The show fdb command has been augmented to display the TLS tunnel on which the MAC address was learned The config fdb agingtime number command can be used to age TL...

Page 160: ...nce of a direct LSP next hop for the route A lowercase l indicates the presence of an indirect LSP next hope for the route Optional show iproute Keywords An optional mpls keyword has been added to the show iproute and rtlookup commands When the mpls keyword is specified the information displayed is modified some of the information normally displayed is omitted and the LSP endpoint and outgoing MPL...

Page 161: ... mpls sorted ICMP Commands The implementation of the following commands has been augmented to support the MPLS module enable icmp unreachables vlan name disable icmp unreachables vlan name enable icmp redirects vlan name disable icmp redirects vlan name enable icmp time exceeded vlan name disable icmp time exceeded vlan name unconfig icmp IP Multicast and Flow Redirection Commands The IP multicast...

Page 162: ...MPLS LSPs associated with the routes Route Map Commands MPLS uses route map based filters for controlling label advertisement and label propagation The implementation of the delete route map route map command has been augmented to support the MPLS module Table 9 3 New OSPF Commands Command Description of Change enable ospf originate router id Enables distribution of a route for the OSPF router ID ...

Page 163: ... ipaddress masklength all This command configures which LSPs should be used by ESRP to track for determining the ESRP state of the specified VLAN The add track lsp command configures ESRP to track up to eight LSPs Fail over to the slave switch is based on the total number of established tracked LSPs The switch with the greatest number of established tracked LSPs is elected the master switch for th...

Page 164: ... use the following commands config debug trace mpls level config debug trace mpls signalling level The interface numbers displayed by the config debug trace mpls signalling command start at 1 The interface numbers displayed by the config debug trace mpls command and other ExtremeWare debug trace commands start at 0 Attributes Not Directly Applicable to the MPLS Module The following attributes and ...

Page 165: ...are not applicable to MPLS encapsulated packets IGMP snooping OSPF and LDP session establishment require the MSM to receive and process IP multicast frames Therefore IGMP snooping must be enabled to support MPLS GVRP GVRP is not supported over MPLS LSPs Server Load Balancing SLB SLB and MPLS are mutually exclusive functions Both functions cannot be simultaneously enabled IP flow redirection IP flo...

Page 166: ...9 12 MPLS Module Installation and User Guide Additional MPLS Module Support Topics ...

Page 167: ...ds Supported for MPLS The Extreme Networks MPLS implementation complies with the following standards RFC 2212 Specification of Guaranteed Quality of Service RFC 2961 RSVP Overhead Refresh Reduction Extensions RFC 3032 MPLS Label Stack Encoding RFC 3031 Multiprotocol Label Switching Architecture RFC 3036 LDP Specification Martini drafts draft martini circuit encap mpls 04 txt and draft martini l2ci...

Page 168: ... initial Extreme MPLS implementation provides read only GET but not SET support for a subset of the MPLS LSR MIB as defined in the Internet Draft draft ietf mpls lsr mib 07 txt and a subset of the MPLS LDP MIB as defined in the Internet Draft draft ietf mpls ldp mib 07 txt ...

Page 169: ...ving statistics 8 18 Adspec 5 3 advertising labels 3 4 4 2 AS path 8 8 AS path expression notations table 8 8 Autonomous System Expressions See AS path B BCP and TLS 7 6 BGP 9 10 BGP Next Hop 6 5 binding labels description of 3 10 BlackDiamond switch I O modules 1 5 overview 1 5 slot preconfiguration 1 5 C configuring accounting bins 8 1 label advertisement filters 4 7 LDP 4 6 LDP label propagatio...

Page 170: ... label propagation 4 6 fixed filter reservation style 5 6 Forwarding Equivalence Class See FEC fragmentation 3 16 G GPP subsystem 1 4 H hardware version requirements 2 2 I identifying software versions 2 2 IGP path cost overriding 6 5 image commands changed table 9 4 downloading 9 4 primary or secondary using 9 4 implicit NULL labels 3 10 independent LSP control 3 6 indirect LSP 6 2 installation 2...

Page 171: ...ing 6 4 multivendor support for indirect 6 6 overriding IGP path cost 6 5 precedence 6 4 routing 6 2 scaling 5 13 LSR definition of 3 3 egress definition of 3 6 functions table 3 7 ingress definition of 3 6 LER description of 3 6 locally assigned labels 3 10 remotely assigned labels 3 10 M maximum transmission unit MTU 5 6 Maximum Transmission Unit See MTU MIBs A 1 MPLS and OSPF AS 6 1 configurati...

Page 172: ...8 9 configuration examples 8 13 creating 8 11 entries adding 8 11 labels 4 8 operation 8 13 statements adding 8 11 usage 8 9 route map configuration commands table 8 9 route recording RSVP 5 11 route table tracking ESRP 7 20 routing IP unicast packets 6 1 RSVP alternate paths 5 12 and QoS 5 1 bandwidth accounting 5 7 configuration commands table 5 14 definition of 3 3 5 1 explicit route 5 9 5 11 f...

Page 173: ...ode figure 7 16 definition of 3 3 7 1 deleting tunnels 7 9 displaying configuration information 7 10 loopback mode 7 3 OSPF routes 7 3 tunnel endpoint VLAN 7 19 tunnel endpoints configuring 7 3 tunnel labels 7 2 tunnel definition of 3 4 tunnels and LSP 6 5 tunnels configuring 7 8 VLAN IDs 7 6 VLAN label mappings 7 5 VLAN labels 7 5 tools for installation 2 4 traffic engineering TE definition of 3 ...

Page 174: ...vi Index MPLS Module Installation and User Guide ...

Page 175: ...mpls qos mapping 3 13 3 17 config mpls rsvp te add lsp 5 15 5 23 config mpls rsvp te add path 5 15 5 18 config mpls rsvp te add profile 5 15 5 20 config mpls rsvp te delete lsp 5 15 5 23 config mpls rsvp te delete path 5 15 5 18 config mpls rsvp te delete profile 5 15 5 22 config mpls rsvp te lsp add path 5 15 5 23 config mpls rsvp te lsp delete path 5 15 5 24 config mpls rsvp te path add ero 5 15...

Page 176: ...ow bgp route detail 9 8 show diag 9 3 show diag backplane mpls mapping 9 2 show diag backplane utilization 9 3 show diag slot fdb 9 3 show diag slot iproute 9 3 show diag slot mpls 9 3 show diagnostics 2 13 show fdb 9 5 show ipconfig 9 5 9 6 show ipr 8 15 show iproute 9 6 9 7 show iproute route map 8 10 8 17 show mpls 3 13 3 20 show mpls forwarding 3 14 3 20 show mpls interface 3 14 show mpls labe...

Reviews:

No comments

Brands by name

Popular brands

Load more brands