HPE FlexNetwork 5510 HI Series Скачать руководство пользователя | Manualshive

Страница: 197 / 505

background image

188

Step

Command

Remarks

node-number

3.

Match IPv4 routes carrying
labels.

if-match mpls-label

By default, no match criterion is
configured.

4.

Set labels for IPv4 routes.

apply mpls-label

By default, no apply clause is
configured.

Configuring nested VPN

For a network with many VPNs, nested VPN is a good solution to implement layered management of
VPNs and to conceal the deployment of internal VPNs.

To build a nested VPN network, perform the following configurations:

•

Configurations between customer PE and customer CE

—Configure VPN instances on the

customer PE and configure route exchange between customer PE and customer CE.

•

Configurations between customer PE and provider CE

—Configure BGP VPNv4 route

exchange between them. To make sure the provider CE can receive all BGP VPNv4 routes,
configure the

undo policy vpn-target

command on the provider CE to not filter VPNv4 routes

by RTs.

•

Configurations between provider CE and provider PE

—Configure VPN instances and

enable nested VPN on the provider PE and configure BGP VPNv4 route exchange between the
provider CE and provider PE.

•

Configurations between provider PEs

—Configure BGP VPNv4 route exchange between

them.

Nested VPN allows a customer PE to directly exchange VPNv4 routes with a provider PE, without
needing to deploy a provider CE. In this case, the customer PE also acts as the provider CE.
Therefore, you must configure provider CE settings on it.

Configurations on the customer CE, customer PE, and provider CE are similar to basic MPLS
L3VPN configurations. This task describes the configurations on the provider PE.

When you configure nested VPN, follow these guidelines:

•

The address spaces of sub-VPNs of a VPN cannot overlap.

•

Do not assign nested VPN peers addresses that public network peers use.

•

Nested VPN does not support multihop EBGP. A provider PE and a provider CE must use the
addresses of the directly connected interfaces to establish a neighbor relationship.

To configure nested VPN:

Step

Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter BGP view.

bgp as-number

N/A

3.

Enter BGP VPNv4 address
family view.

address-family vpnv4

N/A

4.

Enable nested VPN.

nesting-vpn

By default, nested VPN is
disabled.

5.

Return to BGP view.

quit

N/A

6.

Enter BGP-VPN instance
view.

ip vpn-instance
vpn-instance-name

N/A

«
...
195
196
197
198
199
...
»

Содержание FlexNetwork 5510 HI Series

Страница 1: ...HPE FlexNetwork 5510 HI Switch Series MPLS Configuration Guide Part number 5200 0081b Software version Release 11xx Document version 6W102 20171020 ...

Страница 2: ...Software Computer Software Documentation and Technical Data for Commercial Items are licensed to the U S Government under vendor s standard commercial license Links to third party websites take you outside the Hewlett Packard Enterprise website Hewlett Packard Enterprise has no control over and is not responsible for information outside the Hewlett Packard Enterprise website Acknowledgments Intel ...

Страница 3: ...figuration restrictions and guidelines 12 Configuration procedure 13 Verifying the configuration 14 Configuring LDP 15 Overview 15 Terminology 15 LDP messages 15 LDP operation 16 Label distribution and control 17 LDP GR 19 LDP NSR 20 LDP IGP synchronization 21 LDP FRR 21 Protocols 22 LDP configuration task list 22 Enabling LDP 23 Enabling LDP globally 23 Enabling LDP on an interface 23 Configuring...

Страница 4: ... task list 63 Configuring MPLS TE attributes for a link 63 Advertising link TE attributes by using IGP TE extension 64 Configuring MPLS TE tunnel constraints 65 Establishing an MPLS TE tunnel by using RSVP TE 67 Controlling CRLSP path selection 67 Controlling MPLS TE tunnel setup 69 Configuring traffic forwarding 72 Configuring static routing to direct traffic to an MPLS TE tunnel 72 Configuring a...

Страница 5: ...RSVP 142 RSVP configuration examples 143 Establishing an MPLS TE tunnel with RSVP TE 143 RSVP GR configuration example 147 Configuring tunnel policies 150 Overview 150 Configuring a tunnel policy 150 Configuration guidelines 150 Configuration procedure 151 Displaying tunnel information 152 Tunnel policy configuration examples 152 Preferred tunnel configuration example 152 Exclusive tunnel configur...

Страница 6: ...g an OSPF sham link 249 Configuring BGP AS number substitution 253 Configuring MPLS L3VPN FRR through VPNv4 route backup for a VPNv4 route 257 Configuring MPLS L3VPN FRR through VPNv4 route backup for an IPv4 route 259 Configuring MPLS L3VPN FRR through IPv4 route backup for a VPNv4 route 261 Configuring IPv6 MPLS L3VPN 264 Overview 264 IPv6 MPLS L3VPN packet forwarding 264 IPv6 MPLS L3VPN routing...

Страница 7: ...onnection 335 Configuring LDP PW redundancy 338 Configuring an intra domain multi segment PW 344 Configuring an inter domain multi segment PW 347 Configuring VPLS 355 Overview 355 Basic VPLS architecture 355 VPLS implementation 356 H VPLS 358 VPLS configuration task list 360 Enabling L2VPN 361 Configuring an AC 361 Configuring a VSI 362 Configuring a PW 362 Configuring a PW class 362 Configuring a...

Страница 8: ...iguring route related attributes for a VPN instance 417 Configuring routing on an MCE 418 Configuring routing between an MCE and a VPN site 418 Configuring routing between an MCE and a PE 423 Displaying and maintaining MCE 427 MCE configuration examples 428 Configuring the MCE that uses OSPF to advertise VPN routes to the PE 428 Configuring the MCE that uses EBGP to advertise VPN routes to the PE ...

Страница 9: ...vii Remote support 460 Documentation feedback 460 Index 462 ...

Страница 10: ... for example IPv4 IPv6 and IPX Good scalability The connection oriented switching and multilayer label stack features enable MPLS to deliver various extended services such as VPN traffic engineering and QoS Basic concepts FEC MPLS groups packets with the same characteristics such as packets with the same destination or service class into a forwarding equivalence class FEC Packets of the same FEC a...

Страница 11: ...network When an LSR receives a labeled packet it searches the LFIB to obtain information for forwarding the packet such as the label operation type the outgoing label value and the next hop Control plane and forwarding plane An MPLS node consists of a control plane and a forwarding plane Control plane Assigns labels distributes FEC label mappings to neighbor LSRs creates the LFIB and establishes a...

Страница 12: ...s distributes FEC label mappings and establishes and maintains LSPs Label distribution protocols include protocols designed specifically for label distribution such as the Label Distribution Protocol LDP and protocols extended to support label distribution such as MP BGP and RSVP TE In this document the term label distribution protocols refers to all protocols for label distribution The term LDP r...

Страница 13: ...he labeled packet Router D the egress processes the packet as follows a Identifies the LFIB entry that has an incoming label of 50 b Removes the label from the packet c Forwards the packet out of the outgoing interface VLAN interface 40 to the next hop LSR Router E If the LFIB entry records no outgoing interface or next hop information Router D performs the following operations a Identifies the FI...

Страница 14: ...s the TC information pops the label of the packet and forwards the packet Protocols and standards RFC 3031 Multiprotocol Label Switching Architecture RFC 3032 MPLS Label Stack Encoding RFC 5462 Multiprotocol Label Switching MPLS Label Stack Entry EXP Field Renamed to Traffic Class Field MPLS configuration task list Tasks at a glance Required Enabling MPLS Optional Configuring MPLS MTU Optional Spe...

Страница 15: ... the LSR drops the packet To configure an MPLS MTU for an interface Step Command Remarks 1 Enter system view system view N A 2 Enter interface view interface interface type interface number N A 3 Configure an MPLS MTU for the interface mpls mtu value By default no MPLS MTU is configured on an interface The following applies when an interface handles MPLS packets MPLS packets carrying L2VPN or IPv6...

Страница 16: ...through non null labels As a penultimate hop the device accepts the implicit null label explicit null label or normal label advertised by the egress device For LDP LSPs the mpls label advertise command triggers LDP to delete the LSPs established before the command is executed and re establishes new LSPs For BGP LSPs the mpls label advertise command takes effect only for the BGP LSPs established af...

Страница 17: ...of an LSP To enable TTL propagation for a VPN you must enable it on all PE devices in the VPN so that you can get the same traceroute result hop count from those PEs To enable TTL propagation Step Command Remarks 1 Enter system view system view N A 2 Enable TTL propagation mpls ttl propagate public vpn By default TTL propagation is enabled only for public network packets This command affects only ...

Страница 18: ...verbose command to view MPLS label forwarding statistics To enable MPLS label forwarding statistics Step Command Remarks 1 Enter system view system view N A 2 Enable MPLS label forwarding statistics for specific LSPs mpls statistics all vpn instance vpn instance name ipv4 ipv4 destination mask length ipv6 ipv6 destination prefix length static te ingress lsr id tunnel id By default MPLS label forwa...

Страница 19: ... vpn instance name ipv4 dest mask length ipv6 ipv6 dest prefix length verbose Display MPLS Nexthop Information Base NIB information display mpls nib nib id Display usage information about NIDs display mpls nid nid value1 to nid value2 Display LSP statistics display mpls lsp statistics Display MPLS summary information display mpls summary Display ILM entries display mpls forwarding ilm label slot s...

Страница 20: ...on is not configured an egress node pops the incoming label of a packet and performs label forwarding according to the inner label or IP forwarding Therefore on the egress node you only need to specify the incoming label The outgoing label specified on an LSR must be the same as the incoming label specified on the directly connected downstream LSR Configuration prerequisites Before you configure a...

Страница 21: ...witch A and Switch C so that subnets 11 1 1 0 24 and 21 1 1 0 24 can access each other over MPLS Figure 8 Network diagram Configuration restrictions and guidelines For an LSP the outgoing label specified on an LSR must be identical with the incoming label specified on the downstream LSR LSPs are unidirectional You must configure an LSP for each direction of the data forwarding path A route to the ...

Страница 22: ...nterface2 quit SwitchB interface vlan interface 3 SwitchB Vlan interface3 mpls enable SwitchB Vlan interface3 quit Configure Switch C SwitchC mpls lsr id 3 3 3 9 SwitchC interface vlan interface 3 SwitchC Vlan interface3 mpls enable SwitchC Vlan interface3 quit 4 Configure a static LSP from Switch A to Switch C Configure the LSP ingress node Switch A SwitchA static lsp ingress AtoC destination 21 ...

Страница 23: ...3 time 1 ms 100 bytes from 20 1 1 2 Sequence 4 time 1 ms 100 bytes from 20 1 1 2 Sequence 5 time 1 ms FEC 21 1 1 0 24 ping statistics 5 packets transmitted 5 packets received 0 0 packet loss round trip min avg max 1 1 4 ms Test the connectivity of the LSP from Switch C to Switch A SwitchC ping mpls a 21 1 1 1 ipv4 11 1 1 0 24 MPLS Ping FEC 11 1 1 0 24 100 data bytes 100 bytes from 10 1 1 1 Sequenc...

Страница 24: ... is a per platform label space A label space number other than 0 indicates a per interface label space FECs and FEC label mappings MPLS groups packets with the same characteristics such as the same destination or service class into a class called an FEC The packets of the same FEC are handled in the same way on an MPLS network LDP can classify FECs by destination IP address and by PW This document...

Страница 25: ... the hello adjacency Establishing and maintaining LDP sessions LDP establishes a session with a peer in the following steps 1 Establishes a TCP connection with the neighbor 2 Negotiates session parameters such as LDP version label distribution method and Keepalive timer and establishes an LDP session with the neighbor if the negotiation succeeds After a session is established LDP sends LDP PDUs an...

Страница 26: ... label mapping for that FEC to the upstream LSR NOTE A pair of upstream and downstream LSRs must use the same label advertisement mode Otherwise the LSP cannot be established LSR A LSR B LSR D LSR C LSR E LSR F LSR G LSR H Ingress Egress LSP Label mapping Egress Transit DU mode DoD mode 2 Sends a label request for the FEC to the downstream 3 Distributes a label mapping for the FEC to the upstream ...

Страница 27: ...s a label request for an FEC from its upstream LSR Ingress it continues to send a label request for the FEC to its downstream LSR Egress After the transit LSR receives a label mapping for the FEC from the egress LSR it distributes a label mapping for the FEC to the ingress Label retention mode The label retention mode specifies whether an LSR maintains a label mapping for an FEC learned from a nei...

Страница 28: ...L flag of the Fault Tolerance TLV in their Initialization messages is set to 1 to indicate that they support LDP GR 2 When LDP restarts the GR restarter starts the MPLS Forwarding State Holding timer and marks the MPLS forwarding entries as stale When the GR helper detects that the LDP session with the GR restarter goes down it performs the following operations a Marks the FEC label mappings learn...

Страница 29: ... When the LDP Recovery timer expires the GR helper deletes all stale FEC label mappings LDP NSR LDP nonstop routing NSR backs up protocol states and data including LDP session and LSP information from the active process to the standby process When the LDP active process fails the standby process becomes active and takes over processing seamlessly The LDP peers are not notified of the LDP interrupt...

Страница 30: ... LDP immediately sends a notification to IGP that LDP convergence has completed However immediate notifications might cause MPLS traffic forwarding interruptions in one of the following scenarios LDP peers use the Ordered label distribution control mode The device has not received a label mapping from downstream at the time LDP notifies IGP that LDP convergence has completed A large number of labe...

Страница 31: ... topology When IGP route convergence occurs LDP establishes a new LSP according to the optimal path If a new LSP is not established after IGP route convergence traffic forwarding might be interrupted To reduce the traffic interruption time enable LDP IGP synchronization to work with LDP FRR as a best practice Protocols RFC 5036 LDP Specification LDP configuration task list Tasks at a glance Enable...

Страница 32: ...tem view N A 2 Enable LDP for the local node or for a VPN Enable LDP for the local node and enter LDP view mpls ldp Enable LDP for a VPN and enter LDP VPN instance view a mpls ldp b vpn instance vpn instance name By default LDP is disabled 3 Configure an LDP LSR ID lsr id lsr id By default the LDP LSR ID is the same as the MPLS LSR ID Enabling LDP on an interface Step Command Remarks 1 Enter syste...

Страница 33: ...he peer and can respond to the Targeted Hellos sent from the peer targeted peer peer lsr id By default the device does not send Targeted Hellos to or receive Targeted Hellos from any peer 4 Configure the Targeted Hello hold time mpls ldp timer hello hold timeout By default the Targeted Hello hold time is 45 seconds 5 Configure the Target Hello interval mpls ldp timer hello interval interval By def...

Страница 34: ...arameters for Extended Discovery mechanism Step Command Remarks 1 Enter system view system view N A 2 Enter LDP view mpls ldp N A 3 Specify an LDP peer and enter LDP peer view The device will send unsolicited Targeted Hellos to the peer and can respond to Targeted Hellos sent from the targeted peer targeted peer peer lsr id By default the device does not send Targeted Hellos to or receive Targeted...

Страница 35: ...5 authentication for the underlying TCP connections to check the integrity of LDP messages For two LDP peers to establish an LDP session successfully make sure the LDP MD5 authentication configurations on the LDP peers are consistent To configure LDP MD5 authentication Step Command Remarks 1 Enter system view system view N A 2 Enter LDP view or enter LDP VPN instance view Enter LDP view mpls ldp E...

Страница 36: ...Configuring the LDP label distribution control mode Step Command Remarks 1 Enter system view system view N A 2 Enter LDP view or enter LDP VPN instance view Enter LDP view mpls ldp Enter LDP VPN instance view a mpls ldp b vpn instance vpn instance name N A 3 Configure the label distribution control mode label distribution independent ordered By default the Ordered label distribution mode is used T...

Страница 37: ...view or enter LDP VPN instance view Enter LDP view mpls ldp Enter LDP VPN instance view a mpls ldp b vpn instance vpn instance name N A 3 Configure a label advertisement policy advertise label prefix list prefix list name peer peer prefix list name By default LDP advertises all label mappings permitted by the LSP generation policy to all peers Configuring a label acceptance policy A label acceptan...

Страница 38: ...terminates LSP loops in the following ways Maximum hop count LDP adds a hop count in a label request or label mapping message The hop count value increments by 1 on each LSR When the maximum hop count is reached LDP considers that a loop has occurred and terminates the establishment of the LSP Path vector LDP adds LSR ID information in a label request or label mapping message Each LSR checks wheth...

Страница 39: ... the direct link fails LDP establishes both a Link Hello adjacency over the direct link and a Targeted Hello adjacency over the indirect link with the peer When the direct link fails LDP deletes the Link Hello adjacency but still maintains the Targeted Hello adjacency In this way the LDP session between the two peers is kept available and the FEC label mappings based on this session are not delete...

Страница 40: ... LDP NSR non stop routing By default LDP NSR is disabled Configuring LDP IGP synchronization After you enable LDP IGP synchronization for an OSPF process OSPF area or an IS IS process LDP IGP synchronization is enabled on the OSPF process interfaces or the IS IS process interfaces You can execute the mpls ldp igp sync disable command to disable LDP IGP synchronization on interfaces where LDP IGP s...

Страница 41: ...ter id router id N A 3 Enter area view area area id N A 4 Enable LDP OSPF synchronization mpls ldp sync By default LDP OSPF synchronization is disabled 5 Return to system view quit N A 6 Enter interface view interface interface type interface number N A 7 Optional Disable LDP IGP synchronization on the interface mpls ldp igp sync disable By default LDP IGP synchronization is not disabled on an int...

Страница 42: ...andby switchover occurs igp sync delay on restart time By default the maximum notification delay is 90 seconds Configuring LDP FRR LDP FRR is based on IP FRR and is enabled automatically after IP FRR is enabled For information about configuring IP FRR see Layer 3 IP Routing Configuration Guide Resetting LDP sessions Changes to LDP session parameters take effect only on new LDP sessions To apply th...

Страница 43: ... type interface number Display LDP IGP synchronization information display mpls ldp igp sync interface interface type interface number Display LDP LSP information display mpls ldp lsp vpn instance vpn instance name destination address mask length Display LDP running parameters display mpls ldp parameter vpn instance vpn instance name Display LDP peer and session information display mpls ldp peer v...

Страница 44: ...0 0 0 0 255 SwitchA ospf 1 area 0 0 0 0 network 11 1 1 0 0 0 0 255 SwitchA ospf 1 area 0 0 0 0 quit SwitchA ospf 1 quit Configure Switch B SwitchB system view SwitchB ospf SwitchB ospf 1 area 0 SwitchB ospf 1 area 0 0 0 0 network 2 2 2 9 0 0 0 0 SwitchB ospf 1 area 0 0 0 0 network 10 1 1 0 0 0 0 255 SwitchB ospf 1 area 0 0 0 0 network 20 1 1 0 0 0 0 255 SwitchB ospf 1 area 0 0 0 0 quit SwitchB osp...

Страница 45: ...1 1 1 Vlan4 20 1 1 0 24 OSPF 10 2 10 1 1 2 Vlan2 21 1 1 0 24 OSPF 10 3 10 1 1 2 Vlan2 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 3 Enable MPLS and ...

Страница 46: ... the prefix list to establish LSPs SwitchB ip prefix list switchb index 10 permit 1 1 1 9 32 SwitchB ip prefix list switchb index 20 permit 2 2 2 9 32 SwitchB ip prefix list switchb index 30 permit 3 3 3 9 32 SwitchB ip prefix list switchb index 40 permit 11 1 1 0 24 SwitchB ip prefix list switchb index 50 permit 21 1 1 0 24 SwitchB mpls ldp SwitchB ldp lsp trigger prefix list switchb SwitchB ldp ...

Страница 47: ...ound trip min avg max 1 2 8 ms Test the connectivity of the LDP LSP from Switch C to Switch A SwitchC ping mpls a 21 1 1 1 ipv4 11 1 1 0 24 MPLS Ping FEC 11 1 1 0 24 100 data bytes 100 bytes from 10 1 1 1 Sequence 1 time 1 ms 100 bytes from 10 1 1 1 Sequence 2 time 1 ms 100 bytes from 10 1 1 1 Sequence 3 time 1 ms 100 bytes from 10 1 1 1 Sequence 4 time 1 ms 100 bytes from 10 1 1 1 Sequence 5 time...

Страница 48: ...ived from Switch D Configuration procedure 1 Configure IP addresses and masks for interfaces including the loopback interfaces as shown in Figure 18 Details not shown 2 Configure OSPF on each switch to ensure IP connectivity between them Details not shown 3 Enable MPLS and LDP Configure Switch A SwitchA system view SwitchA mpls lsr id 1 1 1 9 SwitchA mpls ldp SwitchA ldp quit SwitchA interface vla...

Страница 49: ...face 7 SwitchC Vlan interface7 mpls enable SwitchC Vlan interface7 mpls ldp enable SwitchC Vlan interface7 quit Configure Switch D SwitchD system view SwitchD mpls lsr id 4 4 4 9 SwitchD mpls ldp SwitchD ldp quit SwitchD interface vlan interface 6 SwitchD Vlan interface6 mpls enable SwitchD Vlan interface6 mpls ldp enable SwitchD Vlan interface6 quit SwitchD interface vlan interface 7 SwitchD Vlan...

Страница 50: ...chA ip prefix list prefix from b index 10 permit 21 1 1 0 24 On Switch A create IP prefix list prefix from d to deny subnet 21 1 1 0 24 Switch A uses this list to filter FEC label mappings received from Switch D SwitchA ip prefix list prefix from d index 10 deny 21 1 1 0 24 On Switch A configure label acceptance policies to filter FEC label mappings received from Switch B and Switch D SwitchA mpls...

Страница 51: ... 1 0 24 ping statistics 5 packets transmitted 5 packets received 0 0 packet loss round trip min avg max 1 2 8 ms Test the connectivity of the LDP LSP from Switch C to Switch A SwitchC ping mpls a 21 1 1 1 ipv4 11 1 1 0 24 MPLS Ping FEC 11 1 1 0 24 100 data bytes 100 bytes from 10 1 1 1 Sequence 1 time 1 ms 100 bytes from 10 1 1 1 Sequence 2 time 1 ms 100 bytes from 10 1 1 1 Sequence 3 time 1 ms 10...

Страница 52: ...Switch C Configuration procedure 1 Configure IP addresses and masks for interfaces including the loopback interfaces as shown in Figure 19 Details not shown 2 Configure OSPF on each switch to ensure IP connectivity between them Details not shown 3 Enable MPLS and LDP Configure Switch A SwitchA system view SwitchA mpls lsr id 1 1 1 9 SwitchA mpls ldp SwitchA ldp quit SwitchA interface vlan interfac...

Страница 53: ...face 7 SwitchC Vlan interface7 mpls enable SwitchC Vlan interface7 mpls ldp enable SwitchC Vlan interface7 quit Configure Switch D SwitchD system view SwitchD mpls lsr id 4 4 4 9 SwitchD mpls ldp SwitchD ldp quit SwitchD interface vlan interface 6 SwitchD Vlan interface6 mpls enable SwitchD Vlan interface6 mpls ldp enable SwitchD Vlan interface6 quit SwitchD interface vlan interface 7 SwitchD Vlan...

Страница 54: ...ings advertised to Switch B SwitchA ip prefix list prefix to b index 10 permit 11 1 1 0 24 On Switch A create IP prefix list peer b to permit 2 2 2 9 32 Switch A uses this list to filter peers SwitchA ip prefix list peer b index 10 permit 2 2 2 9 32 On Switch A configure a label advertisement policy to advertise only the label mapping for FEC 11 1 1 0 24 to Switch B SwitchA mpls ldp SwitchA ldp ad...

Страница 55: ...itchD mpls ldp SwitchD ldp advertise label prefix list prefix to a peer peer a SwitchD ldp advertise label prefix list prefix to c peer peer c SwitchD ldp quit Verifying the configuration Display LDP LSP information on each switch SwitchA display mpls ldp lsp Status Flags stale L liberal B backup Statistics FECs 2 Ingress LSPs 1 Transit LSPs 1 Egress LSPs 1 FEC In Out Label Nexthop OutInterface 11...

Страница 56: ... from 20 1 1 2 Sequence 3 time 8 ms 100 bytes from 20 1 1 2 Sequence 4 time 2 ms 100 bytes from 20 1 1 2 Sequence 5 time 1 ms FEC 21 1 1 0 24 ping statistics 5 packets transmitted 5 packets received 0 0 packet loss round trip min avg max 1 2 8 ms Test the connectivity of the LDP LSP from Switch C to Switch A SwitchC ping mpls a 21 1 1 1 ipv4 11 1 1 0 24 MPLS Ping FEC 11 1 1 0 24 100 data bytes 100...

Страница 57: ...ding the loopback interfaces as shown in Figure 20 Details not shown 2 Configure OSPF on each switch to ensure IP connectivity between them Details not shown 3 Configure OSPF FRR by using one of the following methods Method 1 Enable OSPF FRR to calculate a backup next hop by using the LFA algorithm Configure Switch S SwitchS system view SwitchS bfd echo source ip 10 10 10 10 SwitchS ospf 1 SwitchS...

Страница 58: ...interface 24 backup nexthop 24 24 24 2 SwitchD route policy quit SwitchD ospf 1 SwitchD ospf 1 fast reroute route policy frr SwitchD ospf 1 quit 4 Enable MPLS and LDP Configure Switch S SwitchS mpls lsr id 1 1 1 1 SwitchS mpls ldp SwitchS mpls ldp quit SwitchS interface vlan interface 12 SwitchS Vlan interface12 mpls enable SwitchS Vlan interface12 mpls ldp enable SwitchS Vlan interface12 quit Swi...

Страница 59: ... to establish LSPs Configure Switch S SwitchS mpls ldp SwitchS ldp lsp trigger all SwitchS ldp quit Configure Switch D SwitchD mpls ldp SwitchD ldp lsp trigger all SwitchD ldp quit Configure Switch A SwitchA mpls ldp SwitchA ldp lsp trigger all SwitchA ldp quit Verifying the configuration Verify that primary and backup LSPs have been established on Switch S SwitchS display mpls ldp lsp 21 1 1 0 24...

Страница 60: ...cit paths MPLS TE tunnel A virtual point to point connection from the ingress node to the egress node Typically an MPLS TE tunnel consists of one CRLSP To deploy CRLSP backup or transmit traffic over multiple paths you need to establish multiple CRLSPs for one class of traffic In this case an MPLS TE tunnel consists of a set of CRLSPs An MPLS TE tunnel is identified by an MPLS TE tunnel interface ...

Страница 61: ...se The affinity attribute and its mask and the link attribute are all 32 bit long A link is available for a tunnel if the link attribute meets the following requirements The link attribute bits corresponding to the affinity attribute s 1 bits whose mask bits are 1 must have at least one bit set to 1 The link attribute bits corresponding to the affinity attribute s 0 bits whose mask bits are 1 must...

Страница 62: ...t the traffic to the tunnel by using one of the following methods Static routing You can direct traffic to an MPLS TE tunnel by creating a static route that reaches the destination through the tunnel interface This is the easiest way to implement MPLS TE tunnel forwarding When the traffic to multiple networks is to be forwarded through the MPLS TE tunnel you must configure multiple static routes w...

Страница 63: ...existing CRLSP is removed after the new CRLSP is established and the traffic is switched to the new CRLSP However this wastes bandwidth resources if some links on the old and new CRLSPs are the same It is because you need to reserve bandwidth on these links for the old and new CRLSPs separately The make before break mechanism uses the SE resource reservation style to address this problem The resou...

Страница 64: ... traffic from the old CRLSP to the new and then deletes the old CRLSP MPLS TE uses the tunnel reoptimization function to implement dynamic CRLSP optimization For example when MPLS TE sets up a tunnel if a link on the optimal path does not have enough reservable bandwidth MPLS TE sets up the tunnel on another path When the link has enough bandwidth the tunnel optimization function can switch the MP...

Страница 65: ...ts to set up a new CRLSP After the new CRLSP is set up traffic is forwarded on the new CRLSP CRLSP backup provides end to end path protection for a CRLSP without time limitation FRR provides quick but temporary protection for a link or node on a CRLSP Basic concepts Primary CRLSP Protected CRLSP Bypass tunnel An MPLS TE tunnel used to protect a link or node of the primary CRLSP Point of local repa...

Страница 66: ...onstraint based routing and performs admission control on a per class type basis A given traffic flow belongs to the same CT on all links BC Bandwidth Constraint BC restricts the bandwidth for one or more CTs Bandwidth constraint model Algorithm for implementing bandwidth constraints on different CTs A BC model comprises two factors the maximum number of BCs MaxBC and the mappings between BCs and ...

Страница 67: ...or CT 2 and CT 1 The total bandwidth for CT 2 and CT 1 cannot exceed BC 1 BC 0 is for CT 2 CT 1 and CT 0 The total bandwidth for CT 2 CT 1 and CT 0 cannot exceed BC 0 In this model BC 0 equals the maximum reservable bandwidth of the link In cooperation with priority preemption the RDM model can also implement bandwidth isolation between CTs RDM is suitable for networks where traffic is unstable an...

Страница 68: ...pstream LSR During the delivery of the path message a CRLSP in one direction is established During the delivery of the Resv message a CRLSP in the other direction is established The CRLSPs of a bidirectional MPLS TE tunnel established in co routed mode use the same path Associated mode In this mode you establish a bidirectional MPLS TE tunnel by binding two unidirectional CRLSPs in opposite direct...

Страница 69: ...nel bandwidth constraints and affinity on the tunnel interface 3 Configure the link TE attributes such as the maximum link bandwidth and link attribute on each interface that the MPLS TE tunnel traverses 4 Configure an IGP on each node that the MPLS TE tunnel traverses and configure the IGP to support MPLS TE so that the nodes advertise the link TE attributes through the IGP 5 On the ingress node ...

Страница 70: ...an interface Configuring a tunnel interface To configure an MPLS TE tunnel you must create an MPLS TE tunnel interface and enter tunnel interface view All MPLS TE tunnel attributes are configured in tunnel interface view For more information about tunnel interfaces see Layer 3 IP Services Configuration Guide Perform this task on the ingress node of the MPLS TE tunnel To configure a tunnel interfac...

Страница 71: ... 1 Default TE classes in IETF mode TE Class CT Priority 0 0 7 1 1 7 2 2 7 3 3 7 4 0 0 5 1 0 6 2 0 7 3 0 Configuring an MPLS TE tunnel to use a static CRLSP To configure an MPLS TE tunnel to use a static CRLSP perform the following tasks Establish the static CRLSP Specify the MPLS TE tunnel establishment mode as static Configure the MPLS TE tunnel to reference the static CRLSP Other configurations ...

Страница 72: ...ise the path is created based on IGP routing rather than computed by CSPF Configuration task list To establish an MPLS TE tunnel by using a dynamic CRLSP Tasks at a glance Required Configuring MPLS TE attributes for a link Required Advertising link TE attributes by using IGP TE extension Required Configuring MPLS TE tunnel constraints Required Establishing an MPLS TE tunnel by using RSVP TE Option...

Страница 73: ...nk attribute attribute value By default the link attribute value is 0x00000000 Advertising link TE attributes by using IGP TE extension Both OSPF and IS IS are extended to advertise link TE attributes The extensions are called OSPF TE and IS IS TE If both OSPF TE and IS IS TE are available OSPF TE takes precedence Configuring OSPF TE OSPF TE uses Type 10 opaque LSAs to carry the TE attributes for ...

Страница 74: ...Create an IS IS process and enter IS IS view isis process id By default no IS IS process exists 3 Specify a metric style cost style wide wide compatible compatible relax spf limit By default only narrow metric style packets can be received and sent For more information about this command see Layer 3 IP Routing Command Reference 4 Enable MPLS TE for the IS IS process mpls te enable Level 1 Level 2 ...

Страница 75: ...s te priority setup priority hold priority By default the setup priority and the holding priority are both 7 for an MPLS TE tunnel Configuring an explicit path for an MPLS TE tunnel An explicit path is a set of nodes The relationship between any two neighboring nodes on an explicit path can be either strict or loose Strict The two nodes must be directly connected Loose The two nodes can have devic...

Страница 76: ...it path path name no cspf By default MPLS TE uses the calculated path to establish a CRLSP Controlling CRLSP path selection Before performing the configuration tasks in this section be aware of each configuration objective and its impact on your device MPLS TE uses CSPF to calculate a path according to the TEDB and constraints and sets up the CRLSP through RSVP TE MPLS TE provides measures that af...

Страница 77: ...e link mpls te metric value By default the link uses its IGP metric as the TE metric This command is available on every interface that the MPLS TE tunnel traverses Configuring route pinning When route pinning is enabled MPLS TE tunnel reoptimization and automatic bandwidth adjustment are not available Perform this task on the ingress node of an MPLS TE tunnel To configure route pinning Step Comman...

Страница 78: ...information Down threshold When the percentage of the reservable bandwidth decrease to the maximum reservable bandwidth reaches the threshold IGP floods the TE information You can also configure the flooding interval at which bandwidth changes that cannot trigger immediate flooding are flooded This task can be performed on all nodes that the MPLS TE tunnel traverses To configure TE flooding thresh...

Страница 79: ... a loop has occurred according to the recorded route information To enable loop detection Step Command Remarks 1 Enter system view system view N A 2 Enter MPLS TE tunnel interface view interface tunnel tunnel number mode mpls te N A 3 Enable loop detection mpls te loop detection By default loop detection is disabled Configuring tunnel setup retry If the ingress node fails to establish an MPLS TE t...

Страница 80: ...econds max bw max bandwidth min bw min bandwidth To enable output rate sampling mpls te auto bandwidth collect bw frequency seconds Use either command By default automatic bandwidth adjustment and output rate sampling are disabled for an MPLS TE tunnel 6 Return to user view return N A 7 Optional Reset the automatic bandwidth adjustment reset mpls te auto bandwidth adjustment timers After this comm...

Страница 81: ...Enable OSPF or IS IS on the tunnel interface to advertise the tunnel interface address to OSPF or IS IS Enable MPLS TE for an OSPF area or an IS IS process by executing the mpls te enable command in OSPF area view or IS IS view Follow these restrictions and guidelines when you configure automatic route advertisement The destination address of the MPLS TE tunnel can be the LSR ID of the egress node...

Страница 82: ...ources reservation style as FF for the tunnel To set up a bidirectional MPLS TE tunnel in associated mode and use RSVP TE to set up one CRLSP of the tunnel you must use the mpls te resv style command to configure the resources reservation style as FF for the CR LSP To create a bidirectional MPLS TE tunnel create an MPLS TE tunnel interface on both ends of the tunnel and enable the bidirectional tu...

Страница 83: ...uring CRLSP backup CRLSP backup provides end to end CRLSP protection Only MPLS TE tunnels established through RSVP TE support CRLSP backup Perform this task on the ingress node of an MPLS TE tunnel To configure CRLSP backup Step Command Remarks 1 Enter system view system view N A 2 Enter MPLS TE tunnel interface view interface tunnel tunnel number mode mpls te N A 3 Enable CRLSP backup and specify...

Страница 84: ...LR to set up bypass tunnels automatically Configure the automatic bypass tunnel setup function also referred to as the auto FRR function on the PLR The PLR automatically sets up two bypass tunnels for each of its primary CRLSPs one in link protection mode and the other in node protection mode Automatically created bypass tunnels can be used to protect any type of CT but they cannot provide bandwid...

Страница 85: ...imary CRLSP prefers bypass tunnels that provide bandwidth protection over those providing no bandwidth protection The primary CRLSP can be bound to the bypass tunnel when one of the following conditions is met No CT is specified for the bypass tunnel The specified CT is the same as that specified for the primary CRLSP After binding the RRO message does not carry the bandwidth protection flag This ...

Страница 86: ...igure FRR for a bypass tunnel A bypass tunnel cannot act as a primary CRLSP Make sure the protected node or interface is not on the bypass tunnel After you associate a primary CRLSP that does not require bandwidth protection with a bypass tunnel that provides bandwidth protection the primary CRLSP occupies the bandwidth that the bypass tunnel protects The bandwidth is protected on a first come fir...

Страница 87: ...disabled globally 4 Specify an interface number range for the automatically created bypass tunnels tunnel number min min number max max number By default no interface number range is specified and the PLR cannot set up a bypass tunnel automatically 5 Optional Configure the PLR to create only link protection bypass tunnels nhop only By default the PLR automatically creates both a link protection an...

Страница 88: ... bfd enable command see Configuring RSVP Configuring the optimal bypass tunnel selection interval If you have specified multiple bypass tunnels for a primary CRLSP MPLS TE selects an optimal bypass tunnel to protect the primary CRLSP Sometimes a bypass tunnel might become better than the current optimal bypass tunnel because for example the reservable bandwidth changes Therefore MPLS TE needs to p...

Страница 89: ... te tunnel interface tunnel number Display link and node information in an OSPF TEDB display ospf process id area area id mpls te advertisement originate router advertising router id self originate Display network information in an OSPF TEDB display ospf process id area area id mpls te network originate router advertising router id self originate Display OSPF tunnel interface information display o...

Страница 90: ...itchA LoopBack0 quit Configure Switch B SwitchB system view SwitchB isis 1 SwitchB isis 1 network entity 00 0005 0000 0000 0002 00 SwitchB isis 1 quit SwitchB interface vlan interface 1 SwitchB Vlan interface1 isis enable 1 SwitchB Vlan interface1 quit SwitchB interface vlan interface 2 SwitchB Vlan interface2 isis enable 1 SwitchB Vlan interface2 quit SwitchB interface loopback 0 SwitchB LoopBack...

Страница 91: ...rface vlan interface 1 SwitchB Vlan interface1 mpls enable SwitchB Vlan interface1 mpls te enable SwitchB Vlan interface1 quit SwitchB interface vlan interface 2 SwitchB Vlan interface2 mpls enable SwitchB Vlan interface2 mpls te enable SwitchB Vlan interface2 quit Configure Switch C SwitchC mpls lsr id 3 3 3 3 SwitchC mpls te SwitchC te quit SwitchC interface vlan interface 2 SwitchC Vlan interfa...

Страница 92: ...P and specify the next hop address as 2 1 1 2 outgoing label as 20 and bandwidth for the tunnel as 2000 kbps SwitchA static cr lsp ingress static cr lsp 1 nexthop 2 1 1 2 out label 20 bandwidth 2000 On Switch A configure tunnel 0 to reference the static CRLSP static cr lsp 1 SwitchA interface Tunnel0 SwitchA Tunnel0 mpls te static cr lsp static cr lsp 1 SwitchA Tunnel0 quit Configure Switch B as t...

Страница 93: ...led information about the MPLS TE tunnel SwitchA display mpls te tunnel interface Tunnel Name Tunnel 0 Tunnel State Up Main CRLSP up Tunnel Attributes LSP ID 1 Tunnel ID 0 Admin State Normal Ingress LSR ID 1 1 1 1 Egress LSR ID 3 3 3 3 Signaling Static Static CRLSP Name static cr lsp 1 Resv Style Tunnel mode Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type Tunnel Bandwidth Rese...

Страница 94: ...lsp 1 Transit 20 30 Vlan2 Up SwitchC display mpls static cr lsp Name LSR Type In Out Label Out Interface State static cr lsp1 Egress 30 Null Up Execute the display ip routing table command on Switch A The output shows a static route entry with interface Tunnel 0 as the output interface Details not shown Establishing an MPLS TE tunnel with RSVP TE Network requirements Switch A Switch B Switch C and...

Страница 95: ...is enable 1 SwitchA Vlan interface1 isis circuit level level 2 SwitchA Vlan interface1 quit SwitchA interface loopback 0 SwitchA LoopBack0 isis enable 1 SwitchA LoopBack0 isis circuit level level 2 SwitchA LoopBack0 quit Configure Switch B SwitchB system view SwitchB isis 1 SwitchB isis 1 network entity 00 0005 0000 0000 0002 00 SwitchB isis 1 quit SwitchB interface vlan interface 1 SwitchB Vlan i...

Страница 96: ...l level 2 SwitchD Vlan interface3 quit SwitchD interface loopback 0 SwitchD LoopBack0 isis enable 1 SwitchD LoopBack0 isis circuit level level 2 SwitchD LoopBack0 quit Execute the display ip routing table command on each switch to verify that the switches have learned the routes to one another including the routes to the loopback interfaces Details not shown 3 Configure an LSR ID and enable MPLS M...

Страница 97: ...uit SwitchC interface vlan interface 2 SwitchC Vlan interface2 mpls enable SwitchC Vlan interface2 mpls te enable SwitchC Vlan interface2 rsvp enable SwitchC Vlan interface2 quit Configure Switch D SwitchD mpls lsr id 4 4 4 9 SwitchD mpls te SwitchD te quit SwitchD rsvp SwitchD rsvp quit SwitchD interface vlan interface 3 SwitchD Vlan interface3 mpls enable SwitchD Vlan interface3 mpls te enable S...

Страница 98: ... Configure the maximum link bandwidth and maximum reservable bandwidth on Switch C SwitchC interface vlan interface 3 SwitchC Vlan interface3 mpls te max link bandwidth 10000 SwitchC Vlan interface3 mpls te max reservable bandwidth 5000 SwitchC Vlan interface3 quit SwitchC interface vlan interface 2 SwitchC Vlan interface2 mpls te max link bandwidth 10000 SwitchC Vlan interface2 mpls te max reserv...

Страница 99: ...t rate 6 bytes sec 48 bits sec 0 packets sec 0 packets input 0 bytes 0 drops 177 packets output 11428 bytes 0 drops Execute the display mpls te tunnel interface command on Switch A to display detailed information about the MPLS TE tunnel SwitchA display mpls te tunnel interface Tunnel Name Tunnel 1 Tunnel State Up Main CRLSP up Shared resource CRLSP down Tunnel Attributes LSP ID 23331 Tunnel ID 1 ...

Страница 100: ...that a route is available between AS 100 and AS 200 Establish an MPLS TE tunnel from Switch A to Switch D The tunnel requires a bandwidth of 2000 kbps The maximum bandwidth of the link that the tunnel traverses is 10000 kbps and the maximum reservable bandwidth of the link is 5000 kbps Figure 29 Network diagram Table 4 Interface and IP address assignment Device Interface IP address Device Interfac...

Страница 101: ...re Switch C SwitchC system view SwitchC ospf SwitchC ospf 1 import route direct SwitchC ospf 1 import route bgp SwitchC ospf 1 area 0 SwitchC ospf 1 area 0 0 0 0 network 30 1 1 0 0 0 0 255 SwitchC ospf 1 area 0 0 0 0 network 3 3 3 9 0 0 0 0 SwitchC ospf 1 area 0 0 0 0 quit SwitchC ospf 1 quit Configure Switch D SwitchD system view SwitchD ospf SwitchD ospf 1 area 0 SwitchD ospf 1 area 0 0 0 0 netw...

Страница 102: ...1 enable SwitchC bgp ipv4 import route ospf SwitchC bgp ipv4 import route direct SwitchC bgp ipv4 quit SwitchC bgp quit Execute the display ip routing table command on each switch to verify that the switches have learned AS external routes Take Switch A as an example SwitchA display ip routing table Destinations 10 Routes 10 Destination Mask Proto Pre Cost NextHop Interface 1 1 1 9 32 Direct 0 0 1...

Страница 103: ...Vlan interface2 mpls te enable SwitchB Vlan interface2 rsvp enable SwitchB Vlan interface2 quit Configure Switch C SwitchC mpls lsr id 3 3 3 9 SwitchC mpls te SwitchC te quit SwitchC rsvp SwitchC rsvp quit SwitchC interface vlan interface 2 SwitchC Vlan interface2 mpls enable SwitchC Vlan interface2 mpls te enable SwitchC Vlan interface2 rsvp enable SwitchC Vlan interface2 quit SwitchC interface v...

Страница 104: ...ea 0 0 0 0 mpls te enable SwitchD ospf 1 area 0 0 0 0 quit SwitchD ospf 1 quit 6 Configure an explicit route on Switch A Specify Switch B and Switch D as loose nodes and Switch C as a strict node SwitchA explicit path atod SwitchA explicit path atod nexthop 10 1 1 2 include loose SwitchA explicit path atod nexthop 20 1 1 2 include strict SwitchA explicit path atod nexthop 30 1 1 2 include loose Sw...

Страница 105: ... TE tunnel on Switch A Configure the MPLS TE tunnel interface Tunnel 1 SwitchA interface tunnel 1 mode mpls te SwitchA Tunnel1 ip address 7 1 1 1 255 255 255 0 Specify the tunnel destination address as the LSR ID of Switch D SwitchA Tunnel1 destination 4 4 4 9 Configure MPLS TE to use RSVP TE to establish the tunnel SwitchA Tunnel1 mpls te signaling rsvp te Assign 2000 kbps bandwidth to the tunnel...

Страница 106: ...e Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type CT0 Tunnel Bandwidth 2000 kbps Reserved Bandwidth 2000 kbps Setup Priority 7 Holding Priority 7 Affinity Attr Mask 0 0 Explicit Path atod Backup Explicit Path Metric Type TE Record Route Disabled Record Label Disabled FRR Flag Disabled Bandwidth Protection Disabled Backup Bandwidth Flag Disabled Backup Bandwidth Type Backup Bandwidth Bypass Tun...

Страница 107: ...and Switch D Figure 30 Network diagram Table 5 Interface and IP address assignment Device Interface IP address Device Interface IP address Switch A Loop0 1 1 1 9 32 Switch D Loop0 4 4 4 9 32 Vlan int1 10 1 1 1 24 Vlan int3 30 1 1 2 24 Switch B Loop0 2 2 2 9 32 Switch C Loop0 3 3 3 9 32 Vlan int1 10 1 1 2 24 Vlan int3 30 1 1 1 24 Vlan int2 20 1 1 1 24 Vlan int2 20 1 1 2 24 Configuration procedure 1...

Страница 108: ...nterface1 mpls te enable SwitchB Vlan interface1 rsvp enable SwitchB Vlan interface1 quit SwitchB interface vlan interface 2 SwitchB Vlan interface2 mpls enable SwitchB Vlan interface2 mpls te enable SwitchB Vlan interface2 rsvp enable SwitchB Vlan interface1 quit Configure Switch C SwitchC system view SwitchC mpls lsr id 3 3 3 9 SwitchC mpls te SwitchC te quit SwitchC rsvp SwitchC rsvp quit Switc...

Страница 109: ...chC isis 1 mpls te enable level 2 SwitchC isis 1 quit Configure Switch D SwitchD isis 1 SwitchD isis 1 cost style wide SwitchD isis 1 mpls te enable level 2 SwitchD isis 1 quit 5 Configure a co routed bidirectional MPLS TE tunnel Configure Switch A as the active end of the co routed bidirectional tunnel SwitchA interface tunnel 1 mode mpls te SwitchA Tunnel1 ip address 7 1 1 1 255 255 255 0 Switch...

Страница 110: ...input 0 bytes 0 drops 0 packets output 0 bytes 0 drops Execute the display mpls te tunnel interface command on Switch A to display detailed information about the MPLS TE tunnel SwitchA display mpls te tunnel interface Tunnel Name Tunnel 1 Tunnel State Up Main CRLSP up Reverse CRLSP up Tunnel Attributes LSP ID 30478 Tunnel ID 1 Admin State Normal Ingress LSR ID 1 1 1 9 Egress LSR ID 4 4 4 9 Signali...

Страница 111: ...ive Out Label 1149 Nexthop 10 1 1 2 Out Interface Vlan1 Destination 4 4 4 9 FEC 1 1 1 9 1 30478 Protocol RSVP LSR Type Egress Service In Label 1151 State Active Nexthop 127 0 0 1 Out Interface Destination 10 1 1 2 FEC 10 1 1 2 Protocol Local LSR Type Ingress Service NHLFE ID 1026 State Active Nexthop 10 1 1 2 Out Interface Vlan1 Execute the display interface tunnel command on Switch D The output s...

Страница 112: ...ress LSR ID Signaling RSVP TE Static CRLSP Name Resv Style FF Tunnel mode Co routed passive Reverse LSP name Reverse LSP LSR ID 1 1 1 9 Reverse LSP Tunnel ID 1 Class Type Tunnel Bandwidth Reserved Bandwidth Setup Priority Holding Priority Affinity Attr Mask Explicit Path Backup Explicit Path Metric Type Record Route Record Label FRR Flag Bandwidth Protection Backup Bandwidth Flag Backup Bandwidth ...

Страница 113: ... FEC 30 1 1 1 Protocol Local LSR Type Ingress Service NHLFE ID 1024 State Active Nexthop 30 1 1 1 Out Interface Vlan1 CRLSP backup configuration example Network requirements Switch A Switch B Switch C and Switch D run IS IS Use RSVP TE to establish an MPLS TE tunnel from Switch A to Switch C Enable CRLSP hot backup for the tunnel to simultaneously establish a primary CRLSP and a backup CRLSP When ...

Страница 114: ...re IS IS to advertise interface addresses including the loopback interface address Details not shown 3 Configure an LSR ID and enable MPLS MPLS TE and RSVP TE Configure Switch A SwitchA system view SwitchA mpls lsr id 1 1 1 9 SwitchA mpls te SwitchA te quit SwitchA rsvp SwitchA rsvp quit SwitchA interface vlan interface 1 SwitchA Vlan interface1 mpls enable SwitchA Vlan interface1 mpls te enable S...

Страница 115: ...tch A The output shows that the tunnel interface Tunnel 3 is up SwitchA display interface tunnel Tunnel3 current state UP Line protocol current state UP Description Tunnel3 Interface The Maximum Transmit Unit is 64000 Internet Address is 9 1 1 1 24 Primary Tunnel source unknown destination 3 3 3 9 Tunnel bandwidth 64 kbps Tunnel TTL 255 Tunnel protocol transport CR_LSP Last clearing of counters Ne...

Страница 116: ...tion 3 3 3 9 Source 1 1 1 9 Tunnel ID 3 LSP ID 30107 LSR type Ingress Direction Unidirectional Setup priority 7 Holding priority 7 In Label Out Label 1150 In Interface Out Interface Vlan4 Nexthop 30 1 1 2 Exclude any 0 Include Any 0 Include all 0 Mean rate CIR 0 kbps Mean burst size CBS 1000 00 bytes Path MTU 1500 Class type CT0 RRO number 6 30 1 1 1 32 Flag 0x00 No FRR 30 1 1 2 32 Flag 0x00 No FR...

Страница 117: ... the primary CRLSP Switch A Switch B Switch C Switch D use FRR to protect the link Switch B Switch C Use RSVP TE to establish the primary CRLSP and bypass tunnel of the MPLS TE tunnel based on the constraints of the explicit paths The bypass tunnel uses path Switch B Switch E Switch C Switch B is the PLR and Switch C is the MP Configure BFD for RSVP TE between Switch B and Switch C When the link b...

Страница 118: ...mpls te SwitchA te quit SwitchA rsvp SwitchA rsvp quit SwitchA interface vlan interface 1 SwitchA Vlan interface1 mpls enable SwitchA Vlan interface1 mpls te enable SwitchA Vlan interface1 rsvp enable SwitchA Vlan interface1 quit Configure Switch B SwitchB system view SwitchB mpls lsr id 2 2 2 2 SwitchB mpls te SwitchB te quit SwitchB rsvp SwitchB rsvp quit SwitchB interface vlan interface 1 Switc...

Страница 119: ...ing rsvp te Specify the explicit path to be used as pri path SwitchA Tunnel4 mpls te path preference 1 explicit path pri path Enable FRR for the MPLS TE tunnel SwitchA Tunnel4 mpls te fast reroute SwitchA Tunnel4 quit Execute the display interface tunnel command on Switch A The output shows that the tunnel interface Tunnel4 is up SwitchA display interface tunnel Tunnel4 current state UP Line proto...

Страница 120: ...th Collected Bandwidth 5 Configure a bypass tunnel on Switch B the PLR Configure an explicit path for the bypass tunnel SwitchB explicit path by path SwitchB explicit path by path nexthop 3 2 1 2 SwitchB explicit path by path nexthop 3 3 1 2 SwitchB explicit path by path nexthop 3 3 3 3 SwitchB explicit path by path quit Create MPLS TE tunnel interface Tunnel 5 for the bypass tunnel SwitchB interf...

Страница 121: ... Local Vlan4 3 1 1 2 Local Vlan2 SwitchE display mpls lsp FEC Proto In Out Label Interface Out NHLFE 2 2 2 2 5 30914 RSVP 1150 3 Vlan5 3 3 1 2 Local Vlan5 Shut down the protected interface VLAN interface 2 on the PLR Switch B SwitchB interface vlan interface 2 SwitchB Vlan interface2 shutdown SwitchB Vlan interface2 quit Execute the display interface tunnel 4 command on Switch A to display informa...

Страница 122: ...n Switch B The output shows that the bypass tunnel is in use SwitchB display mpls lsp FEC Proto In Out Label Interface Out NHLFE 1 1 1 1 4 61400 RSVP 1136 3 Tun5 2 2 2 2 5 30914 RSVP 1149 Vlan4 3 2 1 2 Local Vlan4 On the PLR configure the interval for selecting an optimal bypass tunnel as 5 seconds SwitchB mpls te SwitchB te fast reroute timer 5 SwitchB te quit On the PLR bring up the protected in...

Страница 123: ...terface IP address Device Interface IP address Switch A Loop0 1 1 1 1 32 Switch E Loop0 5 5 5 5 32 Vlan int1 2 1 1 1 24 Vlan int4 3 2 1 2 24 Switch B Loop0 2 2 2 2 32 Vlan int5 3 4 1 1 24 Vlan int1 2 1 1 2 24 Switch C Loop0 3 3 3 3 32 Vlan int2 3 1 1 1 24 Vlan int3 4 1 1 1 24 Vlan int4 3 2 1 1 24 Vlan int2 3 1 1 2 24 Vlan int6 3 3 1 1 24 Vlan int5 3 4 1 2 24 Switch D Loop0 4 4 4 4 32 Switch F Loop...

Страница 124: ...itchB rsvp SwitchB rsvp quit SwitchB interface vlan interface 1 SwitchB Vlan interface1 mpls enable SwitchB Vlan interface1 mpls te enable SwitchB Vlan interface1 rsvp enable SwitchB Vlan interface1 quit SwitchB interface vlan interface 2 SwitchB Vlan interface2 mpls enable SwitchB Vlan interface2 mpls te enable SwitchB Vlan interface2 rsvp enable SwitchB Vlan interface2 rsvp bfd enable SwitchB Vl...

Страница 125: ...chA Tunnel1 quit Execute the display interface tunnel command on Switch A The output shows that the MPLS TE interface Tunnel1 is up SwitchA display interface tunnel Tunnel1 current state UP Line protocol current state UP Description Tunnel1 Interface The Maximum Transmit Unit is 64000 Internet Address is 10 1 1 1 24 Primary Tunnel source unknown destination 4 4 4 4 Tunnel bandwidth 64 kbps Tunnel ...

Страница 126: ...ers 50 to 100 for the automatically created bypass tunnels SwitchB te auto bk tunnel number min 50 max 100 SwitchB te auto bk quit Verifying the configuration Execute the display interface tunnel brief on Switch B The output shows that two tunnels have been created automatically SwitchB display interface tunnel brief Brief information on interface s under route mode Link ADM administratively down ...

Страница 127: ...mit 3 Retry Interval 2 sec Reoptimization Disabled Reoptimization Freq Backup Type None Backup LSP ID Auto Bandwidth Disabled Auto Bandwidth Freq Min Bandwidth Max Bandwidth Collected Bandwidth SwitchB display mpls te tunnel interface tunnel 51 Tunnel Name Tunnel 51 Tunnel State Up Main CRLSP up Shared resource CRLSP down Tunnel Attributes LSP ID 16802 Tunnel ID 51 Admin State Normal Ingress LSR I...

Страница 128: ...ailed information about MPLS TE tunnel 1 the tunnel for the primary CRLSP The output shows that Tunnel1 is protected by the bypass tunnel Tunnel 50 and the protected node is 3 1 1 1 SwitchA display rsvp lsp tunnel id 1 verbose Tunnel name Tunnel1 Destination 4 4 4 4 Source 1 1 1 1 Tunnel ID 1 LSP ID 16802 LSR type Ingress Direction Unidirectional Setup priority 7 Holding priority 7 In Label Out La...

Страница 129: ...s Device Interface IP address Switch A Loop0 1 1 1 9 32 Switch D Loop0 4 4 4 9 32 Vlan int1 10 1 1 1 24 Vlan int3 30 1 1 2 24 Switch B Loop0 2 2 2 9 32 Switch C Loop0 3 3 3 9 32 Vlan int1 10 1 1 2 24 Vlan int3 30 1 1 1 24 Vlan int2 20 1 1 1 24 Vlan int2 20 1 1 2 24 Configuration procedure 1 Configure IP addresses and masks for interfaces Details not shown 2 Configure IS IS to advertise interface a...

Страница 130: ...pBack0 quit Configure Switch C SwitchC system view SwitchC isis 1 SwitchC isis 1 network entity 00 0005 0000 0000 0003 00 SwitchC isis 1 quit SwitchC interface vlan interface 3 SwitchC Vlan interface3 isis enable 1 SwitchC Vlan interface3 isis circuit level level 2 SwitchC Vlan interface3 quit SwitchC interface vlan interface 2 SwitchC Vlan interface2 isis enable 1 SwitchC Vlan interface2 isis cir...

Страница 131: ...8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 3 Configure an LSR ID enable MPLS MPLS TE and RSVP TE and configure the DS TE mode as IETF Configure Switch A SwitchA mpls lsr id 1 1 1 9 SwitchA mpls te SwitchA te ds te mode ietf SwitchA te quit SwitchA rsvp SwitchA rsvp quit SwitchA interface vlan interface 1 SwitchA Vlan interface1 mpls enable SwitchA Vlan interface1 mpls...

Страница 132: ...re Switch D SwitchD mpls lsr id 4 4 4 9 SwitchD mpls te SwitchD te ds te mode ietf SwitchD te quit SwitchD rsvp SwitchD rsvp quit SwitchD interface vlan interface 3 SwitchD Vlan interface3 mpls enable SwitchD Vlan interface3 mpls te enable SwitchD Vlan interface3 rsvp enable SwitchD Vlan interface3 quit 4 Configure IS IS TE Configure Switch A SwitchA isis 1 SwitchA isis 1 cost style wide SwitchA i...

Страница 133: ... Configure the maximum bandwidth maximum reservable bandwidth and bandwidth constraints on Switch C SwitchC interface vlan interface 3 SwitchC Vlan interface3 mpls te max link bandwidth 10000 SwitchC Vlan interface3 mpls te max reservable bandwidth rdm 10000 bc1 8000 bc2 5000 bc3 2000 SwitchC Vlan interface3 quit SwitchC interface vlan interface 2 SwitchC Vlan interface2 mpls te max link bandwidth...

Страница 134: ...known destination 4 4 4 9 Tunnel bandwidth 64 kbps Tunnel TTL 255 Tunnel protocol transport CR_LSP Last clearing of counters Never Last 300 seconds input rate 0 bytes sec 0 bits sec 0 packets sec Last 300 seconds output rate 0 bytes sec 0 bits sec 0 packets sec 0 packets input 0 bytes 0 drop 0 packets output 0 bytes 0 drop Execute the display mpls te tunnel interface command on Switch A to display...

Страница 135: ...bandwidth allocation interface vlan interface 1 Interface Vlan interface1 Max Link Bandwidth 10000 kbps Max Reservable Bandwidth of Prestandard RDM 0 kbps Max Reservable Bandwidth of IETF RDM 10000 kbps Max Reservable Bandwidth of IETF MAM 0 kbps Allocated Bandwidth Item Count 1 Allocated Bandwidth 0 kbps Physical Link Status Up BC Prestandard RDM kbps IETF RDM kbps IETF MAM kbps 0 0 10000 0 1 0 8...

Страница 136: ...ULL state Solution 1 To resolve the problem a Use the display current configuration command to verify that MPLS TE is configured on involved interfaces b Use the debugging ospf mpls te command to verify that OSPF can receive the TE LINK establishment message c Use the display ospf peer command to verify that OSPF neighbors are established correctly 2 If the problem persists contact Hewlett Packard...

Страница 137: ...t hop or out of the outgoing interface You must specify the incoming label the outgoing label the next hop or the outgoing interface and the required bandwidth on each transit node If it is not configured with the penultimate hop popping function an egress node pops the incoming label of a packet It performs label forwarding according to the inner label or IP forwarding You are only required to sp...

Страница 138: ...in label in label value Use one command according to the position of a device on the network By default no static CRLSP exists Do not configure the next hop address as a local public IP address when configuring the static CRLSP on the ingress node or a transit node You do not need to execute the static cr lsp egress command on the egress node if the outgoing label configured on the penultimate hop...

Страница 139: ...A LoopBack0 isis enable 1 SwitchA LoopBack0 quit Configure Switch B SwitchB system view SwitchB isis 1 SwitchB isis 1 network entity 00 0005 0000 0000 0002 00 SwitchB isis 1 quit SwitchB interface vlan interface 1 SwitchB Vlan interface1 isis enable 1 SwitchB Vlan interface1 quit SwitchB interface vlan interface 2 SwitchB Vlan interface2 isis enable 1 SwitchB Vlan interface2 quit SwitchB interface...

Страница 140: ...tch B SwitchB mpls lsr id 2 2 2 2 SwitchB mpls te SwitchB te quit SwitchB interface vlan interface 1 SwitchB Vlan interface1 mpls enable SwitchB Vlan interface1 mpls te enable SwitchB Vlan interface1 quit SwitchB interface vlan interface 2 SwitchB Vlan interface2 mpls enable SwitchB Vlan interface2 mpls te enable SwitchB Vlan interface2 quit Configure Switch C SwitchC mpls lsr id 3 3 3 3 SwitchC m...

Страница 141: ... destined for subnet 3 2 1 0 24 to MPLS TE tunnel 0 SwitchA ip route static 3 2 1 2 24 tunnel 0 preference 1 Verifying the configuration Execute the display interface tunnel command on Switch A The output shows that the tunnel interface is up SwitchA display interface tunnel Tunnel0 Current state UP Line protocol state UP Description Tunnel0 Interface Bandwidth 64kbps Maximum Transmit Unit 1496 In...

Страница 142: ...isplay the static CRLSP information SwitchA display mpls lsp FEC Proto In Out Label Interface Out NHLFE 1 1 1 1 0 1 StaticCR 20 Vlan1 2 1 1 2 Local Vlan1 SwitchB display mpls lsp FEC Proto In Out Label Interface Out NHLFE StaticCR 20 30 Vlan2 3 2 1 2 Local Vlan2 SwitchC display mpls lsp FEC Proto In Out Label Interface Out NHLFE StaticCR 30 SwitchA display mpls static cr lsp Name LSR Type In Out L...

Страница 143: ...2 1 1 1 Vlan1 2 1 1 0 32 Direct 0 0 2 1 1 1 Vlan1 2 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 2 1 1 255 32 Direct 0 0 2 1 1 1 Vlan1 2 2 2 2 32 IS_L1 15 10 2 1 1 2 Vlan1 3 2 1 0 24 Static 1 0 0 0 0 0 Tun0 3 3 3 3 32 IS_L1 15 20 2 1 1 2 Vlan1 6 1 1 0 24 Direct 0 0 6 1 1 1 Tun0 6 1 1 0 32 Direct 0 0 6 1 1 1 Tun0 6 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 6 1 1 255 32 Direct 0 0 6 1 1 1 Tun0 ...

Страница 144: ...errors to the sender They do not affect the state of the nodes along the path ResvErr messages Sent downstream by the sender or a transit node to notify the downstream nodes that an error has occurred during Resv message processing or that a reservation error has occurred because of preemption ResvConf messages Sent to the receiver to confirm Resv messages Hello messages Sent between any two direc...

Страница 145: ... the CRLSP established based on this state is also removed The Path and Resv messages for refreshing the resource reservation states are collectively referred to as refresh messages Refresh messages can also be used to recover from lost RSVP messages When multiple RSVP sessions exist on a network a short refresh interval can cause network degradation but a long refresh interval cannot meet the req...

Страница 146: ...signaling protocol or control plane fails so that LSRs can still forward packets according to forwarding entries RSVP GR defines the following roles GR restarter Router that gracefully restarts due to a manually configured command or a fault It must be GR capable GR helper Neighbor of the GR restarter A GR helper maintains the neighbor relationship with the GR restarter and helps the GR restarter ...

Страница 147: ...RSVP GR Enabling BFD for RSVP Enabling RSVP Step Command Remarks 1 Enter system view system view N A 2 Enable global RSVP and enter RSVP view rsvp By default global RSVP is disabled 3 Return to system view quit N A 4 Enter interface view interface interface type interface number N A 5 Enable RSVP for the interface rsvp enable By default RSVP is disabled on an interface Configuring RSVP refresh Ste...

Страница 148: ...lt the RSVP message retransmission interval is 500 milliseconds This command takes effect after reliable RSVP message delivery is enabled by using the rsvp reduction srefresh reliability command Configuring RSVP hello extension When RSVP hello extension is enabled on an interface the device receives and sends hello messages through the interface to detect the neighbor s status If the device receiv...

Страница 149: ... the current interface Configurations in RSVP neighbor view interface view and RSVP view are in descending order of priority To configure RSVP authentication in RSVP neighbor view Step Command Remarks 1 Enter system view system view N A 2 Enter RSVP view rsvp N A 3 Create an RSVP authentication neighbor and enter RSVP neighbor view peer ip address By default the device does not have any RSVP authe...

Страница 150: ...RSVP authenticated message can be received out of sequence To configure RSVP authentication in RSVP view Step Command Remarks 1 Enter system view system view N A 2 Enter RSVP view rsvp N A 3 Enable RSVP authentication globally and configure the authentication key authentication key cipher plain auth key By default RSVP authentication is disabled 4 Enable challenge response handshake globally authe...

Страница 151: ... N A 6 Enable RSVP hello extension rsvp hello enable By default RSVP hello extension is disabled Enabling BFD for RSVP If a link fails MPLS TE tunnels over the link fail to forward packets MPLS TE cannot quickly detect a link failure To address this issue you can enable BFD for RSVP so MPLS TE can quickly switch data from the primary path to the backup path upon a link failure To enable BFD for RS...

Страница 152: ...ce reservation states display rsvp reservation destination ip address source ip address tunnel id tunnel id nexthop ip address verbose Display information about RSVP path states display rsvp sender destination ip address source ip address tunnel id tunnel id lsp id lsp id verbose Display RSVP statistics display rsvp statistics interface interface type interface number Clear RSVP security associati...

Страница 153: ...erface 1 SwitchA Vlan interface1 isis enable 1 SwitchA Vlan interface1 quit SwitchA interface loopback 0 SwitchA LoopBack0 isis enable 1 SwitchA LoopBack0 quit Configure Switch B SwitchB system view SwitchB isis 1 SwitchB isis 1 network entity 00 0005 0000 0000 0002 00 SwitchB isis 1 quit SwitchB interface vlan interface 1 SwitchB Vlan interface1 isis enable 1 SwitchB Vlan interface1 quit SwitchB ...

Страница 154: ...e an LSR ID and enable MPLS MPLS TE and RSVP Configure Switch A SwitchA mpls lsr id 1 1 1 9 SwitchA mpls te SwitchA te quit SwitchA rsvp SwitchA rsvp quit SwitchA interface vlan interface 1 SwitchA Vlan interface1 mpls enable SwitchA Vlan interface1 mpls te enable SwitchA Vlan interface1 rsvp enable SwitchA Vlan interface1 quit Configure Switch B SwitchB mpls lsr id 2 2 2 9 SwitchB mpls te SwitchB...

Страница 155: ...figure an MPLS TE tunnel on Switch A Configure MPLS TE tunnel interface Tunnel 1 SwitchA interface tunnel 1 mode mpls te SwitchA Tunnel1 ip address 7 1 1 1 255 255 255 0 Specify the tunnel destination address as the LSR ID of Switch D SwitchA Tunnel1 destination 4 4 4 9 Configure MPLS TE to use RSVP TE to establish the tunnel SwitchA Tunnel1 mpls te signaling rsvp te SwitchA Tunnel1 quit 5 Configu...

Страница 156: ...le SE Tunnel mode Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type CT0 Tunnel Bandwidth 0 kbps Reserved Bandwidth 0 kbps Setup Priority 7 Holding Priority 7 Affinity Attr Mask 0 0 Explicit Path Backup Explicit Path Metric Type TE Record Route Disabled Record Label Disabled FRR Flag Disabled Backup Bandwidth Flag Disabled Backup Bandwidth Type Backup Bandwidth Route Pinning Disa...

Страница 157: ...interface1 rsvp enable SwitchA Vlan interface1 rsvp hello enable SwitchA Vlan interface1 quit Configure Switch B SwitchB system view SwitchB mpls lsr id 2 2 2 9 SwitchB mpls te SwitchB te quit SwitchB rsvp SwitchB rsvp quit SwitchB mpls interface vlan interface 1 SwitchB Vlan interface1 mpls enable SwitchB Vlan interface1 mpls te enable SwitchB Vlan interface1 rsvp enable SwitchB Vlan interface1 r...

Страница 158: ...p SwitchA rsvp graceful restart enable Configure Switch B SwitchB rsvp SwitchB rsvp graceful restart enable Configure Switch C SwitchC rsvp SwitchC rsvp graceful restart enable Verifying the configuration After a tunnel is established from Switch A and Switch C execute the following command on Switch A SwitchA display rsvp peer verbose Peer 10 1 1 2 Interface Vlan1 Hello state Up Hello type Active...

Страница 159: ...t available the second tunnel is used and so forth No load balancing will be performed on these tunnels This method explicitly specifies an MPLS TE tunnel for an MPLS VPN facilitating traffic planning As a best practice use this method To select multiple tunnels for load sharing create a tunnel policy and specify the tunnel selection order and the number of tunnels by using the select seq load bal...

Страница 160: ...n different tunnels can vary by a large amount Therefore the destination device or the upper layer application might take a great time to sequence the packets As a best practice do not use the second method Configuration procedure To configure a tunnel policy Step Command Remarks 1 Enter system view system view N A 2 Create a tunnel policy and enter tunnel policy view tunnel policy tunnel policy n...

Страница 161: ...PE1 tunnel policy preferredte1 quit 2 Configure MPLS VPN instances and apply the tunnel policy to the VPN instances Create MPLS VPN instance vpna and apply tunnel policy preferredte1 to it PE1 ip vpn instance vpna PE1 vpn instance vpna route distinguisher 100 1 PE1 vpn instance vpna vpn target 100 1 PE1 vpn instance vpna tnl policy preferredte1 PE1 vpn instance vpna quit Create MPLS VPN instance v...

Страница 162: ... set the number of tunnels for load balancing to 1 no load balancing PE1 tunnel policy seq lsp te select seq lsp cr lsp load balance number 1 PE1 tunnel policy seq lsp te quit Create MPLS VPN instance vpna and apply tunnel policy seq lsp te to it PE1 ip vpn instance vpna PE1 vpn instance vpna route distinguisher 100 1 PE1 vpn instance vpna vpn target 100 1 PE1 vpn instance vpna tnl policy seq lsp ...

Страница 163: ...referredte1 to them PE1 ip vpn instance vpna PE1 vpn instance vpna route distinguisher 100 1 PE1 vpn instance vpna vpn target 100 1 PE1 vpn instance vpna tnl policy preferredte1 PE1 vpn instance vpna quit PE1 ip vpn instance vpnb PE1 vpn instance vpnb route distinguisher 100 2 PE1 vpn instance vpnb vpn target 100 2 PE1 vpn instance vpnb tnl policy preferredte1 PE1 vpn instance vpnb quit Create MPL...

Страница 164: ... CE device resides on a customer network and has one or more interfaces directly connected to a service provider network It does not support VPN or MPLS Provider edge device A PE device resides at the edge of a service provider network and connects to one or more CEs All MPLS VPN services are processed on PEs Provider device A P device is a core device on a service provider network It is not direc...

Страница 165: ...ame VPN instance A VPN instance contains the VPN membership and routing rules of associated sites VPN IPv4 address Each VPN independently manages its address space The address spaces of VPNs might overlap For example if both VPN 1 and VPN 2 use the addresses on subnet 10 110 10 0 24 address space overlapping occurs BGP cannot process overlapping VPN address spaces For example if both VPN 1 and VPN...

Страница 166: ...umber 16 bit user defined number where the minimum value of the AS number is 65536 For example 65536 1 MP BGP MP BGP supports multiple address families including IPv4 multicast IPv6 unicast IPv6 multicast and VPN IPv4 address families In MPLS L3VPN MP BGP advertises VPN IPv4 routes for VPN sites between PEs MPLS L3VPN route advertisement In a basic MPLS L3VPN CEs and PEs are responsible for advert...

Страница 167: ... 2 PE 1 does the following a Finds the matching VPN route based on the inbound interface and destination address of the packet b Labels the packet with both the inner label and the outer tag c Forwards the packet to the public tunnel 3 P devices forward the packet to PE 2 by the outer tag If the outer tag is an MPLS label the label is removed from the packet at the penultimate hop If the outer tag...

Страница 168: ... with the VPN 2 sites Hub and spoke networking scheme The hub and spoke networking scheme is suitable for a VPN where all users must communicate with each other through an access control device In a hub and spoke network as shown in Figure 44 configure route targets as follows On spoke PEs PEs connected to spoke sites set the export target to Spoke and the import target to Hub On the hub PE PE con...

Страница 169: ... out changes it to a VPN IPv4 route and advertises the VPN IPv4 route to Spoke PE 2 through MP BGP 6 Spoke PE 2 changes the VPN IPv4 route to the original IPv4 route and advertises the IPv4 route to Site 2 After spoke sites exchange routes through the hub site they can communicate with each other through the hub site Extranet networking scheme The extranet networking scheme allows specific resourc...

Страница 170: ...le ISPs in different ASs or to multiple ASs of an ISP The following inter AS VPN solutions are available VRF to VRF connections between ASBRs This solution is also called inter AS option A EBGP redistribution of labeled VPN IPv4 routes between ASBRs ASBRs advertise VPN IPv4 routes to each other through MP EBGP This solution is also called inter AS option B Multihop EBGP redistribution of labeled V...

Страница 171: ...rtises the received routes to CE 3 Packets forwarded within an AS are VPN packets that carry two labels Packets forwarded between ASBRs are common IP packets Inter AS option A is easy to carry out because no special configuration is required on the PEs acting as the ASBRs However it has limited scalability because the PEs acting as the ASBRs must manage all the VPN routes and create VPN instances ...

Страница 172: ...or the public tunnel from PE 3 to ASBR 2 2 ASBR 2 removes the outer tag replaces L3 with L2 and forwards the packet to ASBR 1 Packets between ASBR 1 and ASBR 2 carry only one inner label 3 ASBR 1 replaces L2 with L1 adds the outer tag of the public tunnel from ASBR 1 to PE 1 and forwards the packet to PE 1 4 PE 1 removes the outer tag and inner label and forwards the packet to CE 1 In this solutio...

Страница 173: ...ic tunnel from ASBR 1 to PE 1 is set up by using a label distribution protocol for example LDP Assume that the outgoing label for the public tunnel on ASBR 1 is L1 2 ASBR 1 advertises labeled IPv4 unicast routes to ASBR 2 through EBGP to set up the public tunnel from ASBR 2 to ASBR 1 ASBR 1 assigns a label L2 to the route destined for PE 1 and advertises the route and its label L2 to ASBR 2 The ne...

Страница 174: ... RR in each AS maintains all VPN IPv4 routes The RRs in two ASs establish a multihop MP EBGP session to advertise VPN IPv4 routes Figure 49 Network diagram for inter AS option C using RRs Carrier s carrier If a customer of the MPLS L3VPN service provider is also a service provider The MPLS L3VPN service provider is called the provider carrier or the Level 1 carrier The customer is called the custo...

Страница 175: ... The PEs do not need to run MPLS PE 3 and PE 4 exchange customer network routes IPv4 unicast routes through an IBGP session Figure 50 Scenario where the Level 2 carrier is an ISP As shown in Figure 51 when the customer carrier is an MPLS L3VPN service provider its PEs and CEs must run IGP and LDP to communicate with each other PE 3 and PE 4 exchange customer network routes VPN IPv4 routes through ...

Страница 176: ...l VPNs Nested VPN also supports multiple level nesting of internal VPNs Figure 52 Network diagram for nested VPN Propagation of routing information In a nested VPN network routing information is propagated by using the following process 1 After receiving VPN routes from customer CEs a customer PE advertises VPN IPv4 routes to the provider CE through MP BGP 2 The provider CE advertises the VPN IPv4...

Страница 177: ... an MPLS network Figure 53 Basic architecture of HoVPN As shown in Figure 53 UPEs and SPEs play the following different roles A UPE is directly connected to CEs It provides user access It maintains the routes of directly connected VPN sites It does not maintain the routes of the remote sites in the VPN or it only maintains their summary routes A UPE assigns inner labels to the routes of its direct...

Страница 178: ...n This section describes the OSPF VPN extension For more information about OSPF see Layer 3 IP Routing Configuration Guide OSPF for VPNs on a PE If OSPF runs between a CE and a PE to exchange VPN routes the PE must support multiple OSPF instances to create independent routing tables for VPN instances Each OSPF process is bound to a VPN instance Routes learned by an OSPF process are added into the ...

Страница 179: ...vertised from CE 11 to CE 21 and CE 22 by using the following process 1 PE 1 redistributes OSPF routes into BGP adds the domain ID to the redistributed BGP VPNv4 routes as a BGP extended community attribute and advertises the routes to PE 2 2 PE 2 compares the domain ID in the received routes with the locally configured domain ID If they are the same and the received routes are intra area or inter...

Страница 180: ...s have no or different domain IDs configured for the OSPF process of VPN 1 A route directly connected through CEs Intra area route which is called a backdoor link The inter area route priority is lower than the intra area route priority To use the inter area route you can establish a sham link between the two PEs to change the inter area route to an intra area route VPN traffic are forwarded over ...

Страница 181: ...e AS number substitution function also introduces a routing loop in Site 2 because route updates originated from CE 3 can be advertised back to Site 2 through PE 2 and CE 2 To remove the routing loop you can configure a routing policy on PE 2 to add the SoO attribute to route updates received from CE 2 and CE 3 so that PE 2 does not advertise route updates from CE 3 to CE 2 NOTE The device does no...

Страница 182: ...an IPv4 route Figure 60 Network diagram As shown in Figure 60 configure FRR on the egress node PE 2 and specify the backup next hop for VPN 1 as PE 3 When PE 2 receives an IPv4 route from CE 2 and a VPNv4 route from PE 3 both routes are destined for VPN 1 connected to CE 2 PE 2 uses the IPv4 route as the primary link and the VPNv4 route as the backup link PE 2 uses echo mode BFD to detect the conn...

Страница 183: ...1 PE 1 PE 2 CE 2 In this scenario PE 2 is responsible for primary link detection and traffic switchover Protocols and standards RFC 3107 Carrying Label Information in BGP 4 RFC 4360 BGP Extended Communities Attribute RFC 4364 BGP MPLS IP Virtual Private Networks VPNs RFC 4577 OSPF as the Provider Customer Edge Protocol for BGP MPLS IP Virtual Private Networks VPNs MPLS L3VPN configuration task lis...

Страница 184: ...s isolate VPN routes from public network routes and routes among VPNs This feature allows VPN instances to be used in network scenarios besides MPLS L3VPNs All VPN instance configurations are performed on PEs Creating a VPN instance A VPN instance is a collection of the VPN membership and routing rules of its associated site A VPN instance might correspond to more than one VPN To create and config...

Страница 185: ...pn instance name b address family ipv4 Configurations made in VPN instance view apply to both IPv4 VPN and IPv6 VPN IPv4 VPN prefers the configurations in IPv4 VPN view over the configurations in VPN instance view 3 Configure route targets vpn target vpn target 1 8 both export extcommunity import extcommunity By default no route targets are configured 4 Set the maximum number of active routes rout...

Страница 186: ...rform this configuration on the PE On the CE configure a common static route For more information about static routing see Layer 3 IP Routing Configuration Guide Configuring RIP between a PE and a CE A RIP process belongs to the public network or a single VPN instance If you create a RIP process without binding it to a VPN instance the process belongs to the public network To configure RIP between...

Страница 187: ...ode2 route type type code3 The defaults are as follows 0x0005 for Domain ID 0x0107 for Router ID 0x0306 for Route Type Perform this configuration on the PE 5 Create an OSPF area and enter area view area area id By default no OSPF area is created 6 Enable OSPF on the interface attached to the specified network in the area network ip address wildcard mask By default an interface neither belongs to a...

Страница 188: ... or peer group peer group name ip address mask length enable By default BGP does not exchange IPv4 unicast routes with any peer 7 Redistribute the routes of the local CE import route protocol process id all processes med med value route policy route policy name A PE must redistribute the routes of the local CE into its VPN routing table so it can advertise them to the peer PE 8 Optional Allow the ...

Страница 189: ... system view system view N A 2 Enter BGP view bgp as number N A 3 Enter BGP VPN instance view ip vpn instance vpn instance name Configuration commands in BGP VPN instance view are the same as those in BGP view For details see Layer 3 IP Routing Configuration Guide 4 Configure the CE as the VPN IBGP peer peer group name ip address mask length as number as number By default no BGP peer is created 5 ...

Страница 190: ...ress mask length enable By default BGP does not exchange IPv4 unicast routes with any peer 6 Optional Configure route redistribution import route protocol process id all processes allow direct med med value route policy route policy name A CE must redistribute its routes to the PE so the PE can advertise them to the peer CE Configuring routing between PEs Step Command Remarks 1 Enter system view s...

Страница 191: ...rom or advertised to a peer or peer group based on an AS_PATH list peer group name ip address mask length as path acl as path acl number export import By default no AS filtering list is applied to a peer or peer group 9 Advertise a default VPN route to a peer or peer group peer group name ip address mask length default route advertise vpn instance vpn instance name By default no default VPN route ...

Страница 192: ...oup peer group name ip address mask length route policy route policy name export import By default no routing policy is applied to a peer or peer group 20 Enable route target based filtering of received VPNv4 routes policy vpn target By default this feature is enabled 21 Enable route reflection between clients reflect between clients By default route reflection between clients is enabled on the RR...

Страница 193: ...d To configure inter AS option B on an ASBR Step Command Remarks 1 Enter system view system view N A 2 Enter interface view of the interface connected to an internal router of the AS interface interface type interface number N A 3 Enable MPLS on the interface mpls enable By default MPLS is disabled on the interface 4 Enable MPLS LDP on the interface mpls ldp enable By default MPLS LDP is disabled ...

Страница 194: ... Enable BGP to exchange labeled IPv4 unicast routes with the PE in the same AS and the ASBR in different AS Enable MPLS on the interface connected to the remote ASBR There is no need to configure a label distribution protocol for example MPLS LDP Configure a routing policy to determine which IPv4 unicast routes are advertised to the IBGP or EBGP peer with MPLS labels In addition configure BGP to a...

Страница 195: ...tes You can configure a routing policy to filter routes Routes surviving the filtering are assigned labels and all others are advertised as common IPv4 routes To configure a routing policy use the following commands if match mpls label Matches routes carrying MPLS labels apply mpls label Sets MPLS labels for IPv4 routes to be advertised to a peer You can use this command together with if match cla...

Страница 196: ...n another AS peer group name ip address mask length label route capability By default BGP cannot advertise labeled routes to any IPv4 peer or peer group 19 Configure the ASBR PE to set itself as the next hop of routes advertised to the PE in the local AS peer group name ip address mask length next hop local By default BGP does not use its address as the next hop of routes advertised to an IBGP pee...

Страница 197: ...hange between the provider CE and provider PE Configurations between provider PEs Configure BGP VPNv4 route exchange between them Nested VPN allows a customer PE to directly exchange VPNv4 routes with a provider PE without needing to deploy a provider CE In this case the customer PE also acts as the provider CE Therefore you must configure provider CE settings on it Configurations on the customer ...

Страница 198: ...reate a BGP VPN instance so the learned VPNv4 routes can be added into the BGP routing table of the corresponding VPN instance by RTs Associating an interface with a VPN instance is not required on the SPE because no interface on the SPE is directly connected to the customer network As a best practice do not configure the peer default route advertise vpn instance and peer upe route policy commands...

Страница 199: ...a backdoor link exists between the two sites of a VPN you can create a sham link between PEs to forward VPN traffic through the sham link on the backbone rather than the backdoor link A sham link is considered an OSPF intra area route The source and destination addresses of the sham link must be loopback interface addresses with 32 bit masks The loopback interfaces must be bound to VPN instances a...

Страница 200: ...orted VPN routes route tag tag value If BGP runs within an MPLS backbone and the BGP AS number is not greater than 65535 the first two octets of the external route tag are 0xD000 and the last two octets are the local BGP AS number If the AS number is greater than 65535 the external route tag is 0 4 Enter OSPF area view area area id N A 5 Configure a sham link sham link source ip address destinatio...

Страница 201: ... as number N A 5 Enable the BGP AS number substitution function peer group name ip address mask length substitute as By default BGP AS number substitution is disabled For more information about this command see Layer 3 IP Routing Command Reference Configuring MPLS L3VPN FRR There are two methods to configure MPLS L3VPN FRR Method 1 Execute the pic command in BGP VPN IPv4 unicast address family vie...

Страница 202: ...l local id remote remote id template template name c quit By default BFD is not configured to test the connectivity of the LSP or MPLS TE tunnel This step is required for VPNv4 route backup for a VPNv4 route and IPv4 route backup for a VPNv4 route Use either command depending on the public tunnel type For more information about the commands in this step see MPLS Command Reference 5 Create a routin...

Страница 203: ...ut the command see Layer 3 IP Routing Command Reference Enabling SNMP notifications for MPLS L3VPN This feature enables MPLS L3VPN to generate SNMP notifications The generated SNMP notifications are sent to the SNMP module For more information about SNMP notifications see Network Management and Monitoring Configuration Guide To enable SNMP notifications for MPLS L3VPN Step Command Remarks 1 Enter ...

Страница 204: ... Task Command Soft reset BGP sessions for VPNv4 address family refresh bgp ip address mask length all external group group name internal export import vpnv4 vpn instance vpn instance name Reset BGP sessions for VPNv4 address family reset bgp as number ip address mask length all external internal group group name vpnv4 vpn instance vpn instance name For more information about the refresh bgp vpnv4 ...

Страница 205: ...n instance vpn instance name outlabel standby slot slot number Display incoming labels for BGP VPNv4 routes display bgp routing table vpnv4 inlabel Display outgoing labels for BGP VPNv4 routes display bgp routing table vpnv4 outlabel standby slot slot number Display BGP VPNv4 address family update group information display bgp update group vpnv4 vpn instance vpn instance name ip address Display OS...

Страница 206: ...nfigure an IGP on the MPLS backbone to ensure IP connectivity within the backbone Configure PE 1 PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 1 1 1 9 32 PE1 LoopBack0 quit PE1 interface vlan interface 13 PE1 Vlan interface13 ip address 172 1 1 1 24 PE1 Vlan interface13 quit PE1 ospf PE1 ospf 1 area 0 PE1 ospf 1 area 0 0 0 0 network 172 1 1 0 0 0 0 255 PE1 ospf 1 area 0 0 0 0 n...

Страница 207: ...ce 12 PE2 Vlan interface12 ip address 172 2 1 2 24 PE2 Vlan interface12 quit PE2 ospf PE2 ospf 1 area 0 PE2 ospf 1 area 0 0 0 0 network 172 2 1 0 0 0 0 255 PE2 ospf 1 area 0 0 0 0 network 3 3 3 9 0 0 0 0 PE2 ospf 1 area 0 0 0 0 quit PE2 ospf 1 quit Execute the display ospf peer command to verify that OSPF adjacencies in Full state have been established between PE 1 P and PE 2 Execute the display i...

Страница 208: ... PEs Configure PE 1 PE1 ip vpn instance vpn1 PE1 vpn instance vpn1 route distinguisher 100 1 PE1 vpn instance vpn1 vpn target 111 1 PE1 vpn instance vpn1 quit PE1 ip vpn instance vpn2 PE1 vpn instance vpn2 route distinguisher 100 2 PE1 vpn instance vpn2 vpn target 222 2 PE1 vpn instance vpn2 quit PE1 interface vlan interface 11 PE1 Vlan interface11 ip binding vpn instance vpn1 PE1 Vlan interface11...

Страница 209: ...0 1 1 1 icmp_seq 0 ttl 255 time 1 000 ms 56 bytes from 10 1 1 1 icmp_seq 1 ttl 255 time 2 000 ms 56 bytes from 10 1 1 1 icmp_seq 2 ttl 255 time 0 000 ms 56 bytes from 10 1 1 1 icmp_seq 3 ttl 255 time 1 000 ms 56 bytes from 10 1 1 1 icmp_seq 4 ttl 255 time 0 000 ms Ping statistics for 10 1 1 1 5 packet s transmitted 5 packet s received 0 0 packet loss round trip min avg max std dev 0 000 0 800 2 00...

Страница 210: ...t PE1 bgp quit Configure PE 2 PE2 bgp 100 PE2 bgp peer 1 1 1 9 as number 100 PE2 bgp peer 1 1 1 9 connect interface loopback 0 PE2 bgp address family vpnv4 PE2 bgp vpnv4 peer 1 1 1 9 enable PE2 bgp vpnv4 quit PE2 bgp quit Execute the display bgp peer vpnv4 command on the PEs to verify that a BGP peer relationship in Established state has been established between the PEs Details not shown Verifying...

Страница 211: ...between the Spoke PEs and Hub PE to implement communication between the PEs and configure MP IBGP between them to exchange VPN routing information Figure 63 Network diagram Table 13 Interface and IP address assignment Device Interface IP address Device Interface IP address Spoke CE 1 Vlan int2 10 1 1 1 24 Hub CE Vlan int6 10 3 1 1 24 Spoke PE 1 Loop0 1 1 1 9 32 Vlan int7 10 4 1 1 24 Vlan int2 10 1...

Страница 212: ...quit Spoke PE2 interface vlan interface 5 Spoke PE2 Vlan interface5 ip address 172 2 1 1 24 Spoke PE2 Vlan interface5 quit Spoke PE2 ospf Spoke PE2 ospf 1 area 0 Spoke PE2 ospf 1 area 0 0 0 0 network 172 2 1 0 0 0 0 255 Spoke PE2 ospf 1 area 0 0 0 0 network 3 3 3 9 0 0 0 0 Spoke PE2 ospf 1 area 0 0 0 0 quit Spoke PE2 ospf 1 quit Configure Hub PE Hub PE system view Hub PE interface loopback 0 Hub P...

Страница 213: ...2 2 2 9 Hub PE mpls ldp Hub PE ldp quit Hub PE interface vlan interface 4 Hub PE Vlan interface4 mpls enable Hub PE Vlan interface4 mpls ldp enable Hub PE Vlan interface4 quit Hub PE interface vlan interface 5 Hub PE Vlan interface5 mpls enable Hub PE Vlan interface5 mpls ldp enable Hub PE Vlan interface5 quit Execute the display mpls ldp peer command on the devices to verify that LDP sessions in ...

Страница 214: ...lan interface6 quit Hub PE interface vlan interface 7 Hub PE Vlan interface7 ip binding vpn instance vpn1 out Hub PE Vlan interface7 ip address 10 4 1 2 24 Hub PE Vlan interface7 quit Configure IP addresses for the CEs according to Figure 63 Details not shown Execute the display ip vpn instance command on the PEs to display the configuration of the VPN instance for example on Spoke PE 1 Spoke PE1 ...

Страница 215: ...m view Hub CE bgp 65430 Hub CE bgp peer 10 3 1 2 as number 100 Hub CE bgp peer 10 4 1 2 as number 100 Hub CE bgp address family ipv4 Hub CE bgp ipv4 peer 10 3 1 2 enable Hub CE bgp ipv4 peer 10 4 1 2 enable Hub CE bgp ipv4 import route direct Hub CE bgp ipv4 quit Hub CE bgp quit Configure Spoke PE 1 Spoke PE1 bgp 100 Spoke PE1 bgp ip vpn instance vpn1 Spoke PE1 bgp vpn1 peer 10 1 1 1 as number 654...

Страница 216: ...mmand on the PEs to verify that a BGP peer relationship in Established state has been established between a PE and a CE Details not shown 5 Establish an MP IBGP peer relationship between the Spoke PEs and Hub PE Configure Spoke PE 1 Spoke PE1 bgp 100 Spoke PE1 bgp peer 2 2 2 9 as number 100 Spoke PE1 bgp peer 2 2 2 9 connect interface loopback 0 Spoke PE1 bgp address family vpnv4 Spoke PE1 bgp vpn...

Страница 217: ... 24 BGP 255 0 2 2 2 9 Vlan4 10 4 1 0 24 BGP 255 0 2 2 2 9 Vlan4 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 Verify that Spoke CE 1 and Spoke CE 2 ca...

Страница 218: ... 3 3 9 32 Vlan int11 172 1 1 1 24 Vlan int11 162 1 1 1 24 Vlan int12 192 1 1 1 24 Vlan int12 192 1 1 2 24 Configuration procedure 1 Configure IGP on the MPLS backbone to implement the connectivity in the backbone This example uses OSPF Details not shown Execute the display ospf peer command to verify that each ASBR PE has established an OSPF adjacency in Full state with the PE in the same AS and t...

Страница 219: ...BR PE2 mpls ldp ASBR PE2 ldp quit ASBR PE2 interface vlan interface 11 ASBR PE2 Vlan interface11 mpls enable ASBR PE2 Vlan interface11 mpls ldp enable ASBR PE2 Vlan interface11 quit Configure basic MPLS on PE 2 and enable MPLS LDP on the interface connected to ASBR PE 2 PE2 system view PE2 mpls lsr id 4 4 4 9 PE2 mpls ldp PE2 ldp quit PE2 interface vlan interface 11 PE2 Vlan interface11 mpls enabl...

Страница 220: ...nstance to the interface connected to ASBR PE 2 ASBR PE 1 considers ASBR PE 2 to be its CE ASBR PE1 ip vpn instance vpn1 ASBR PE1 vpn instance vpn1 route distinguisher 100 1 ASBR PE1 vpn instance vpn1 vpn target 100 1 both ASBR PE1 vpn instance vpn1 quit ASBR PE1 interface vlan interface 12 ASBR PE1 Vlan interface12 ip binding vpn instance vpn1 ASBR PE1 Vlan interface12 ip address 192 1 1 1 24 ASB...

Страница 221: ...number 200 CE2 bgp address family ipv4 unicast CE2 bgp ipv4 peer 10 2 1 2 enable CE2 bgp ipv4 import route direct CE2 bgp ipv4 quit CE2 bgp quit Configure PE 2 PE2 bgp 200 PE2 bgp ip vpn instance vpn1 PE2 bgp vpn1 peer 10 2 1 1 as number 65002 PE2 bgp vpn1 address family ipv4 unicast PE2 bgp ipv4 vpn1 peer 10 2 1 1 enable PE2 bgp ipv4 vpn1 quit PE2 bgp vpn1 quit PE2 bgp quit 5 Establish an MP IBGP...

Страница 222: ...4 vpn1 quit ASBR PE2 bgp vpn1 quit ASBR PE2 bgp peer 4 4 4 9 as number 200 ASBR PE2 bgp peer 4 4 4 9 connect interface loopback 0 ASBR PE2 bgp address family vpnv4 ASBR PE2 bgp vpnv4 peer 4 4 4 9 enable ASBR PE2 bgp vpnv4 peer 4 4 4 9 next hop local ASBR PE2 bgp vpnv4 quit ASBR PE2 bgp quit Configure PE 2 PE2 bgp 200 PE2 bgp peer 3 3 3 9 as number 200 PE2 bgp peer 3 3 3 9 connect interface loopbac...

Страница 223: ... Loop0 4 4 4 9 32 Vlan int11 1 1 1 1 8 Vlan int11 9 1 1 1 8 Vlan int12 11 0 0 2 8 Vlan int12 11 0 0 1 8 Configuration procedure 1 Configure PE 1 Configure IS IS on PE 1 PE1 system view PE1 isis 1 PE1 isis 1 network entity 10 111 111 111 111 00 PE1 isis 1 quit Configure the LSR ID and enable MPLS and LDP PE1 mpls lsr id 2 2 2 9 PE1 mpls ldp PE1 ldp quit Configure interface VLAN interface 11 and ena...

Страница 224: ...ance vpn1 PE1 Vlan interface12 ip address 30 0 0 1 8 PE1 Vlan interface12 quit Enable BGP on PE 1 PE1 bgp 100 Configure IBGP peer 3 3 3 9 as a VPNv4 peer PE1 bgp peer 3 3 3 9 as number 100 PE1 bgp peer 3 3 3 9 connect interface loopback 0 PE1 bgp address family vpnv4 PE1 bgp vpnv4 peer 3 3 3 9 enable PE1 bgp vpnv4 quit Redistribute direct routes to the VPN routing table of vpn1 PE1 bgp ip vpn inst...

Страница 225: ...erface vlan interface 12 Disable route target based filtering of received VPNv4 routes ASBR PE1 bgp address family vpnv4 ASBR PE1 bgp vpnv4 undo policy vpn target Configure both IBGP peer 2 2 2 0 and EBGP peer 11 0 0 1 as VPNv4 peers ASBR PE1 bgp vpnv4 peer 11 0 0 1 enable ASBR PE1 bgp vpnv4 peer 2 2 2 9 enable ASBR PE1 bgp vpnv4 quit 3 Configure ASBR PE 2 Enable IS IS on ASBR PE 2 ASBR PE2 system...

Страница 226: ...eers ASBR PE2 bgp vpnv4 peer 11 0 0 2 enable ASBR PE2 bgp vpnv4 peer 5 5 5 9 enable ASBR PE2 bgp vpnv4 quit ASBR PE2 bgp quit 4 Configure PE 2 Enable IS IS on PE 2 PE2 system view PE2 isis 1 PE2 isis 1 network entity 10 111 111 111 111 00 PE2 isis 1 quit Configure the LSR ID and enable MPLS and LDP PE2 mpls lsr id 5 5 5 9 PE2 mpls ldp PE2 ldp quit Configure interface VLAN interface 11 and enable I...

Страница 227: ... a 30 0 0 1 vpn instance vpn1 20 0 0 1 Ping 20 0 0 1 20 0 0 1 from 30 0 0 1 56 data bytes press CTRL_C to break 56 bytes from 20 0 0 1 icmp_seq 0 ttl 255 time 1 208 ms 56 bytes from 20 0 0 1 icmp_seq 1 ttl 255 time 0 867 ms 56 bytes from 20 0 0 1 icmp_seq 2 ttl 255 time 0 551 ms 56 bytes from 20 0 0 1 icmp_seq 3 ttl 255 time 0 566 ms 56 bytes from 20 0 0 1 icmp_seq 4 ttl 255 time 0 570 ms Ping sta...

Страница 228: ...an IP address for VLAN interface 12 CE1 system view CE1 interface vlan interface 12 CE1 Vlan interface12 ip address 30 0 0 2 24 CE1 Vlan interface12 quit Configure 30 0 0 1 as an EBGP peer and redistribute direct routes CE1 bgp 65001 CE1 bgp peer 30 0 0 1 as number 100 CE1 bgp address family ipv4 unicast CE1 bgp ipv4 peer 30 0 0 1 enable CE1 bgp ipv4 import route direct CE1 bgp ipv4 quit CE1 bgp q...

Страница 229: ...3 3 import extcommunity PE1 vpn instance vpn1 vpn target 3 3 export extcommunity PE1 vpn instance vpn1 quit Associate interface VLAN interface 12 with VPN instance vpn1 and specify an IP address for the interface PE1 interface vlan interface 12 PE1 Vlan interface12 ip binding vpn instance vpn1 PE1 Vlan interface12 ip address 30 0 0 1 24 PE1 Vlan interface12 quit Enable BGP on PE 1 PE1 bgp 100 Enab...

Страница 230: ...ce11 isis enable 1 ASBR PE1 Vlan interface11 mpls enable ASBR PE1 Vlan interface11 mpls ldp enable ASBR PE1 Vlan interface11 quit Configure interface VLAN interface 12 and enable MPLS on it ASBR PE1 interface vlan interface 12 ASBR PE1 Vlan interface12 ip address 11 0 0 2 255 0 0 0 ASBR PE1 Vlan interface12 mpls enable ASBR PE1 Vlan interface12 quit Configure interface Loopback 0 and enable IS IS ...

Страница 231: ...R PE1 bgp ipv4 peer 11 0 0 1 label route capability ASBR PE1 bgp ipv4 quit ASBR PE1 bgp quit 4 Configure ASBR PE 2 Enable IS IS on ASBR PE 2 ASBR PE2 system view ASBR PE2 isis 1 ASBR PE2 isis 1 network entity 10 222 222 222 222 00 ASBR PE2 isis 1 quit Configure the LSR ID and enable MPLS and LDP ASBR PE2 mpls lsr id 4 4 4 9 ASBR PE2 mpls ldp ASBR PE2 ldp quit Configure interface VLAN interface 11 ...

Страница 232: ... from IS IS process 1 into BGP ASBR PE2 bgp ipv4 import route isis 1 ASBR PE2 bgp ipv4 quit Apply the routing policy policy1 to routes advertised to EBGP peer 11 0 0 2 ASBR PE2 bgp peer 11 0 0 2 as number 100 ASBR PE2 bgp address family ipv4 unicast ASBR PE2 bgp ipv4 peer 11 0 0 2 enable ASBR PE2 bgp ipv4 peer 11 0 0 2 route policy policy1 export Enable the capability to advertise labeled routes t...

Страница 233: ... IBGP peer 4 4 4 9 and to receive labeled routes from the peer PE2 bgp peer 4 4 4 9 as number 600 PE2 bgp peer 4 4 4 9 connect interface loopback 0 PE2 bgp address family ipv4 unicast PE2 bgp ipv4 peer 4 4 4 9 enable PE2 bgp ipv4 peer 4 4 4 9 label route capability PE2 bgp ipv4 quit Configure the maximum hop count from PE 2 to EBGP peer 2 2 2 9 as 10 PE2 bgp peer 2 2 2 9 as number 100 PE2 bgp peer...

Страница 234: ...arrier s carrier for the scenario shown in Figure 67 In this scenario PE 1 and PE 2 are the provider carrier s PE switches They provide VPN services for the customer carrier CE 1 and CE 2 are the customer carrier s switches They are connected to the provider carrier s backbone as CE switches PE 3 and PE 4 are the customer carrier s PE switches They provide MPLS L3VPN services for the end customers...

Страница 235: ... 1 1 1 24 Vlan int11 21 1 1 1 24 Configuration procedure 1 Configure MPLS L3VPN on the provider carrier backbone Enable IS IS as the IGP enable LDP between PE 1 and PE 2 and establish an MP IBGP peer relationship between the PEs Configure PE 1 PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 3 3 3 9 32 PE1 LoopBack0 quit PE1 mpls lsr id 3 3 3 9 PE1 mpls ldp PE1 ldp quit PE1 isis 1...

Страница 236: ...Details not shown Execute the display bgp peer vpnv4 command to verify that a BGP peer relationship in Established state has been established between PE 1 and PE 2 Details not shown Execute the display isis peer command to verify that the IS IS neighbor relationship has been established between PE 1 and PE 2 Details not shown 2 Configure the customer carrier network Enable IS IS as the IGP and ena...

Страница 237: ... 2 in the same way that PE 3 and CE 1 are configured Details not shown 3 Perform configurations to allow CEs of the customer carrier to access PEs of the provider carrier and redistribute IS IS routes to BGP and BGP routes to IS IS on the PEs Configure PE 1 PE1 ip vpn instance vpn1 PE1 vpn instance vpn1 route distinguisher 200 1 PE1 vpn instance vpn1 vpn target 1 1 PE1 vpn instance vpn1 quit PE1 m...

Страница 238: ...stomers to the PEs of the customer carrier Configure CE 3 CE3 system view CE3 interface vlan interface 11 CE3 Vlan interface11 ip address 100 1 1 1 24 CE3 Vlan interface11 quit CE3 bgp 65410 CE3 bgp peer 100 1 1 2 as number 100 CE3 bgp address family ipv4 unicast CE3 bgp ipv4 peer 100 1 1 2 enable CE3 bgp ipv4 import route direct CE3 bgp ipv4 quit CE3 bgp quit Configure PE 3 PE3 ip vpn instance vp...

Страница 239: ...outes 14 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 3 3 3 9 32 Direct 0 0 127 0 0 1 InLoop0 4 4 4 9 32 ISIS 15 10 30 1 1 2 Vlan12 30 1 1 0 24 Direct 0 0 30 1 1 1 Vlan12 30 1 1 0 32 Direct 0 0 30 1 1 1 Vlan12 30 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 30 1 1 255 32 Direct 0 0 30 1 1 1 Vlan12 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 ...

Страница 240: ...s 21 Routes 21 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 1 1 1 9 32 ISIS 15 10 10 1 1 1 Vlan12 2 2 2 9 32 Direct 0 0 127 0 0 1 InLoop0 5 5 5 9 32 ISIS 15 74 11 1 1 2 Vlan11 6 6 6 9 32 ISIS 15 74 11 1 1 2 Vlan11 10 1 1 0 24 Direct 0 0 10 1 1 2 Vlan12 10 1 1 0 32 Direct 0 0 10 1 1 2 Vlan12 10 1 1 2 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 255 32 Direct 0...

Страница 241: ...0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 Verify that the VPN routing table contains the route to the remote VPN customer PE3 display ip routing table vpn instance vpn1 Destinations 13 Routes 13 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 100 1 1 0 24 Direct 0 0 100 1 1 2 Vlan11 100 1 1 0 32 Direct 0 0 100 1 1 2 ...

Страница 242: ... the service provider network to the extended community attribute list c Forwards the VPNv4 route To implement exchange of sub VPN routes between customer PEs and service provider PEs MP EBGP peers must be established between service provider PEs and customer CEs Figure 68 Network diagram Table 18 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 Loop...

Страница 243: ... 0000 0000 0000 0004 00 PE1 isis 1 quit PE1 interface loopback 0 PE1 LoopBack0 isis enable 1 PE1 LoopBack0 quit PE1 interface vlan interface 2 PE1 Vlan interface2 ip address 30 1 1 1 24 PE1 Vlan interface2 isis enable 1 PE1 Vlan interface2 mpls enable PE1 Vlan interface2 mpls ldp enable PE1 Vlan interface2 quit PE1 bgp 100 PE1 bgp peer 4 4 4 9 as number 100 PE1 bgp peer 4 4 4 9 connect interface l...

Страница 244: ...face2 isis enable 2 PE3 Vlan interface2 mpls enable PE3 Vlan interface2 mpls ldp enable PE3 Vlan interface2 quit Configure CE 1 CE1 system view CE1 interface loopback 0 CE1 LoopBack0 ip address 2 2 2 9 32 CE1 LoopBack0 quit CE1 mpls lsr id 2 2 2 9 CE1 mpls ldp CE1 ldp quit CE1 isis 2 CE1 isis 2 network entity 10 0000 0000 0000 0002 00 CE1 isis 2 quit CE1 interface loopback 0 CE1 LoopBack0 isis ena...

Страница 245: ...erface1 ip address 11 1 1 1 24 CE1 Vlan interface1 mpls enable CE1 Vlan interface1 quit CE1 bgp 200 CE1 bgp peer 11 1 1 2 as number 100 CE1 bgp vpn1 address family ipv4 CE1 bgp ipv4 vpn1 peer 11 1 1 2 enable CE1 bgp ipv4 vpn1 quit CE1 bgp quit Configure PE 2 and CE 2 in the same way that PE 1 and CE 1 are configured Details not shown 4 Connect sub VPN CEs to the customer VPN PEs Configure CE 3 CE3...

Страница 246: ...vpn instance SUB_VPN2 PE3 Vlan interface3 ip address 110 1 1 2 24 PE3 Vlan interface3 quit PE3 bgp 200 PE3 bgp ip vpn instance SUB_VPN1 PE3 bgp SUB_VPN1 peer 100 1 1 1 as number 65410 PE3 bgp SUB_VPN1 address family ipv4 unicast PE3 bgp ipv4 SUB_VPN1 peer 100 1 1 1 enable PE3 bgp ipv4 SUB_VPN1 import route direct PE3 bgp ipv4 SUB_VPN1 quit PE3 bgp SUB_VPN1 quit PE3 bgp ip vpn instance SUB_VPN2 PE3...

Страница 247: ...tomer VPN to exchange VPNv4 routes of sub VPNs Configure PE 3 PE3 bgp 200 PE3 bgp peer 2 2 2 9 as number 200 PE3 bgp peer 2 2 2 9 connect interface loopback 0 PE3 bgp address family vpnv4 PE3 bgp vpnv4 peer 2 2 2 9 enable Allow the local AS number to appear in the AS PATH attribute of the routes received PE3 bgp vpnv4 peer 2 2 2 9 allow as loop 2 PE3 bgp vpnv4 quit PE3 bgp quit Configure CE 1 CE1 ...

Страница 248: ...ost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 11 1 1 0 24 Direct 0 0 11 1 1 2 Vlan1 11 1 1 0 32 Direct 0 0 11 1 1 2 Vlan1 11 1 1 2 32 Direct 0 0 127 0 0 1 InLoop0 11 1 1 255 32 Direct 0 0 11 1 1 1 Vlan1 100 1 1 0 24 BGP 255 0 11 1 1 1 NULL0 110 1 1 0 24 BGP 255 0 11 1 1 1 NULL0 120 1 1 0 24 BGP 255 0 4 4 4 9 NULL0 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127...

Страница 249: ...ocPrf PrefVal Path Ogn 130 1 1 0 24 11 1 1 2 0 100 200 65421 3 Display the VPN routing table on the customer PEs for example on PE 3 Verify that the VPN routing table contains routes sent by the provider PE to the sub VPN PE3 display ip routing table vpn instance SUB_VPN1 Destinations 11 Routes 11 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 100 1 1 0 2...

Страница 250: ...0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 Verify that the routing table contains the route to the remote sub VPN on CE 5 CE5 display ip routing table Destinations 13 Routes 13 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 110 1 1 0 24 Direct 0 0 110 1 1 1 Vlan1 110 1 1 0 32 Direct 0 0 110 1 1 1 Vlan1 ...

Страница 251: ...CE 1 Vlan int12 10 2 1 1 24 CE 3 Vlan int12 10 1 1 1 24 CE 2 Vlan int13 10 4 1 1 24 CE 4 Vlan int13 10 3 1 1 24 UPE 1 Loop0 1 1 1 9 32 UPE 2 Loop0 4 4 4 9 32 Vlan int11 172 1 1 1 24 Vlan int11 172 2 1 1 24 Vlan int12 10 2 1 2 24 Vlan int12 10 1 1 2 24 Vlan int13 10 4 1 2 24 Vlan int13 10 3 1 2 24 SPE 1 Loop0 2 2 2 9 32 SPE 2 Loop0 3 3 3 9 32 Vlan int11 172 1 1 2 24 Vlan int11 172 2 1 2 24 Vlan int...

Страница 252: ...UPE1 vpn instance vpn2 route distinguisher 100 2 UPE1 vpn instance vpn2 vpn target 100 2 both UPE1 vpn instance vpn2 quit UPE1 interface vlan interface 12 UPE1 Vlan interface12 ip binding vpn instance vpn1 UPE1 Vlan interface12 ip address 10 2 1 2 24 UPE1 Vlan interface12 quit UPE1 interface vlan interface 13 UPE1 Vlan interface13 ip binding vpn instance vpn2 UPE1 Vlan interface13 ip address 10 4 ...

Страница 253: ... 2 1 2 enable CE1 bgp ipv4 import route direct CE1 bgp ipv4 quit CE1 bgp quit 3 Configure CE 2 CE2 system view CE2 interface vlan interface 13 CE2 Vlan interface13 ip address 10 4 1 1 255 255 255 0 CE2 Vlan interface13 quit CE2 bgp 65420 CE2 bgp peer 10 4 1 2 as number 100 CE2 bgp address family ipv4 unicast CE2 bgp ipv4 peer 10 4 1 2 enable CE2 bgp ipv4 import route direct CE2 bgp ipv4 quit CE2 b...

Страница 254: ...Vlan interface13 ip binding vpn instance vpn2 UPE2 Vlan interface13 ip address 10 3 1 2 24 UPE2 Vlan interface13 quit Establish an MP IBGP peer relationship with SPE 2 UPE2 bgp 100 UPE2 bgp peer 3 3 3 9 as number 100 UPE2 bgp peer 3 3 3 9 connect interface loopback 0 UPE2 bgp address family vpnv4 UPE2 bgp vpnv4 peer 3 3 3 9 enable UPE2 bgp vpnv4 quit Establish an EBGP peer relationship with CE 3 a...

Страница 255: ... import route direct CE4 bgp ipv4 quit CE4 bgp quit 7 Configure SPE 1 Configure basic MPLS and MPLS LDP to establish LDP LSPs SPE1 system view SPE1 interface loopback 0 SPE1 LoopBack0 ip address 2 2 2 9 32 SPE1 LoopBack0 quit SPE1 mpls lsr id 2 2 2 9 SPE1 mpls ldp SPE1 ldp quit SPE1 interface vlan interface 11 SPE1 Vlan interface11 ip address 172 1 1 2 24 SPE1 Vlan interface11 mpls enable SPE1 Vla...

Страница 256: ...peer 1 1 1 9 enable SPE1 bgp vpnv4 peer 1 1 1 9 upe SPE1 bgp vpnv4 peer 1 1 1 9 next hop local SPE1 bgp vpnv4 quit Create BGP VPN instances for VPN instances vpn1 and vpn2 so the VPNv4 routes learned according to the RT attributes can be added into the BGP routing tables of the corresponding VPN instances SPE1 bgp ip vpn instance vpn1 SPE1 bgp vpn1 quit SPE1 bgp ip vpn instance vpn2 SPE1 bgp vpn2 ...

Страница 257: ...tance vpn1 vpn target 100 1 both SPE2 vpn instance vpn1 quit SPE2 ip vpn instance vpn2 SPE2 vpn instance vpn2 route distinguisher 800 1 SPE2 vpn instance vpn2 vpn target 100 2 both SPE2 vpn instance vpn2 quit Establish MP IBGP peer relationships with SPE 1 and UPE 2 and specify UPE 2 as a UPE SPE2 bgp 100 SPE2 bgp peer 4 4 4 9 as number 100 SPE2 bgp peer 4 4 4 9 connect interface loopback 0 SPE2 b...

Страница 258: ... Figure 70 CE 1 and CE 2 belong to VPN 1 Configure an OSPF sham link between PE 1 and PE 2 so traffic between CE 1 and CE 2 is forwarded through the MPLS backbone instead of the backdoor link Figure 70 Network diagram Table 20 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 Vlan int11 100 1 1 1 24 CE 2 Vlan int11 120 1 1 1 24 Vlan int13 20 1 1 1 24 ...

Страница 259: ... ldp enable PE1 Vlan interface12 quit Configure PE 1 to take PE 2 as an MP IBGP peer PE1 bgp 100 PE1 bgp peer 2 2 2 9 as number 100 PE1 bgp peer 2 2 2 9 connect interface loopback 0 PE1 bgp address family vpnv4 PE1 bgp vpnv4 peer 2 2 2 9 enable PE1 bgp vpnv4 quit PE1 bgp quit Configure OSPF on PE 1 PE1 ospf 1 PE1 ospf 1 area 0 PE1 ospf 1 area 0 0 0 0 network 1 1 1 9 0 0 0 0 PE1 ospf 1 area 0 0 0 0...

Страница 260: ...1 ip binding vpn instance vpn1 PE1 Vlan interface11 ip address 100 1 1 2 24 PE1 Vlan interface11 quit PE1 ospf 100 vpn instance vpn1 PE1 ospf 100 domain id 10 PE1 ospf 100 area 1 PE1 ospf 100 area 0 0 0 1 network 100 1 1 0 0 0 0 255 PE1 ospf 100 area 0 0 0 1 quit PE1 ospf 100 quit PE2 bgp 100 PE1 bgp ip vpn instance vpn1 PE1 bgp vpn1 address family ipv4 unicast PE1 bgp ipv4 vpn1 import route ospf ...

Страница 261: ...pf 100 area 0 0 0 1 sham link 3 3 3 3 5 5 5 5 cost 10 PE1 ospf 100 area 0 0 0 1 quit PE1 ospf 100 quit Configure PE 2 PE2 interface loopback 1 PE2 LoopBack1 ip binding vpn instance vpn1 PE2 LoopBack1 ip address 5 5 5 5 32 PE2 LoopBack1 quit PE2 ospf 100 PE2 ospf 100 area 1 PE2 ospf 100 area 0 0 0 1 sham link 5 5 5 5 3 3 3 3 cost 10 PE2 ospf 100 area 0 0 0 1 quit PE2 ospf 100 quit Verifying the con...

Страница 262: ... Figure 71 CE 1 and CE 2 belong to VPN 1 and are connected to PE 1 and PE 2 respectively The two CEs have the same AS number 600 Configure BGP AS number substitution on the PEs to enable the CEs to communicate with each other Figure 71 Network diagram Table 21 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 Vlan int11 10 1 1 1 24 P Loop0 2 2 2 9 32 ...

Страница 263: ... access PE 1 resides However it has not learned the route to the VPN 100 1 1 0 24 behind CE 1 CE2 display ip routing table Destinations 17 Routes 17 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 0 24 BGP 255 0 10 2 1 2 Vlan12 10 2 1 0 24 Direct 0 0 10 2 1 1 Vlan12 10 2 1 0 32 Direct 0 0 10 2 1 1 Vlan12 10 2 1 1 32 Direct 0 0 127 0 0 1 InLoop0 10 2...

Страница 264: ...that PE 2 advertises the route to 100 1 1 1 32 and the AS_PATH is 100 600 PE2 terminal monitor PE2 terminal logging level 7 PE2 debugging bgp update vpn instance vpn1 10 2 1 1 ipv4 PE2 refresh bgp all export ipv4 vpn instance vpn1 Jun 13 16 12 52 096 2012 PE2 BGP 7 DEBUG BGP vpn1 Send UPDATE to peer 10 2 1 1 for following destinations Origin Incomplete AS Path 100 600 Next Hop 10 2 1 2 100 1 1 0 2...

Страница 265: ...eceived routes Total number of routes 3 BGP local router ID is 200 1 1 1 Status codes valid best d dampened h history s suppressed S stale i internal e external Origin i IGP e EGP incomplete Network NextHop MED LocPrf PrefVal Path Ogn e 10 1 1 0 24 10 2 1 2 0 100 e 10 2 1 0 24 10 2 1 2 0 0 100 e 100 1 1 0 24 10 2 1 2 0 100 100 CE2 display ip routing table Destinations 18 Routes 18 Destination Mask...

Страница 266: ...VPN FRR on PE 1 to achieve the following purposes When the link PE 1 PE 2 operates correctly traffic from CE 1 to CE 2 goes through the path CE 1 PE 1 PE 2 CE 2 When BFD detects that the LSP between PE 1 and PE 2 fails traffic from CE 1 to CE 2 goes through the path CE 1 PE 1 PE 3 CE 2 Figure 72 Network diagram Table 22 Interface and IP address assignment Device Interface IP address Device Interfa...

Страница 267: ...te policy apply fast reroute backup nexthop 3 3 3 3 PE1 route policy quit Configure FRR for VPN instance vpn1 to reference routing policy frr PE1 bgp 100 PE1 bgp ip vpn instance vpn1 PE1 bgp vpn1 address family ipv4 unicast PE1 bgp ipv4 vpn1 fast reroute route policy frr PE1 bgp ipv4 vpn1 quit PE1 bgp vpn1 quit Specify the preferred value as 100 for BGP VPNv4 routes received from PE 2 This value i...

Страница 268: ...ure MP IBGP to exchange VPNv4 routing information between PEs Configure MPLS L3VPN FRR on PE 2 to achieve the following purposes When the link PE 2 CE 2 operates correctly traffic from CE 1 to CE 2 goes through the path CE 1 PE 1 PE 2 CE 2 When BFD detects that the link between PE 2 and CE 2 fails traffic from CE 1 to CE 2 goes through the path CE 1 PE 1 PE 2 PE 3 CE 2 Figure 73 Network diagram Ta...

Страница 269: ...ip prefix list abc index 10 permit 4 4 4 4 32 PE2 route policy frr permit node 10 PE2 route policy if match ip address prefix list abc PE2 route policy apply fast reroute backup nexthop 3 3 3 3 PE2 route policy quit Use echo mode BFD to detect the primary route connectivity PE2 bgp 100 PE2 bgp primary path detect bfd echo Configure FRR for VPN instance vpn1 to reference routing policy frr PE2 bgp ...

Страница 270: ...nectivity between PEs and configure MP IBGP to exchange VPNv4 routing information between PEs Configure MPLS L3VPN FRR on PE 2 to achieve the following purposes When the link PE 2 PE 3 operates correctly traffic from CE 1 to CE 2 goes through the path CE 1 PE 1 PE 2 PE 3 CE 2 When BFD detects that the link between PE 2 and PE 3 fails traffic from CE 1 to CE 2 goes through the path CE 1 PE 1 PE 2 C...

Страница 271: ... mpls bfd enable PE2 mpls bfd 3 3 3 3 32 Create routing policy frr and specify the backup next hop as 10 1 1 1 for the route to 4 4 4 4 32 PE2 ip prefix list abc index 10 permit 4 4 4 4 32 PE2 route policy frr permit node 10 PE2 route policy if match ip address prefix list abc PE2 route policy apply fast reroute backup nexthop 10 1 1 1 PE2 route policy quit Configure FRR for VPN instance vpn1 to r...

Страница 272: ...n 4 4 4 4 32 Protocol BGP Process ID 0 SubProtID 0x1 Age 00h00m04s Cost 0 Preference 255 IpPre N A QosLocalID N A Tag 0 State Active Adv OrigTblID 0x0 OrigVrf default vrf TableID 0x102 OrigAs 300 NibID 0x15000004 LastAs 300 AttrID 0x1 Neighbor 3 3 3 3 Flags 0x110060 OrigNextHop 3 3 3 3 Label 1275 RealNextHop 172 3 1 3 BkLabel NULL BkNextHop 10 1 1 1 Tunnel ID 0x409 Interface Vlan int15 BkTunnel ID...

Страница 273: ...run IPv6 and the PE P interface of a PE runs IPv4 Figure 75 Network diagram for the IPv6 MPLS L3VPN model IPv6 MPLS L3VPN packet forwarding Figure 76 IPv6 MPLS L3VPN packet forwarding diagram As shown in Figure 76 the IPv6 MPLS L3VPN packet forwarding procedure is as follows 1 The PC at Site 1 sends an IPv6 packet destined for 2001 2 1 the PC at Site 2 CE 1 transmits the packet to PE 1 VPN 1 CE IP...

Страница 274: ...CE the ingress PE does the following a Adds RDs and route targets to create VPN IPv6 routes b Saves the routes to the routing table of the VPN instance created for the CE c Assigns VPN labels for the routes d Advertises the VPN IPv6 routes to the egress PE through MP BGP The egress PE does the following a Compares the export target attributes of the VPN IPv6 routes with the import target attribute...

Страница 275: ...PN instance 2 Required Associating a VPN instance with an interface 3 Optional Configuring route related attributes for a VPN instance Required Configuring routing between a PE and a CE Required Configuring routing between PEs Optional Configuring BGP VPNv6 route control Before configuring basic IPv6 MPLS L3VPN complete the following tasks Configure an IGP on the PEs and Ps to ensure IP connectivi...

Страница 276: ... view interface interface type interface number N A 3 Associate a VPN instance with the interface ip binding vpn instance vpn instance name By default an interface is not associated with a VPN instance The ip binding vpn instance command clears the IP address of the interface Therefore re configure an IP address for the interface after configuring this command Configuring route related attributes ...

Страница 277: ...d are not filtered Make sure the routing policy already exists Otherwise the device does not filter routes to be advertised For information about routing policies see Layer 3 IP Routing Configuration Guide 7 Apply a tunnel policy to the VPN instance tnl policy tunnel policy name By default only one tunnel is selected no load balancing in this order LSP tunnel GRE tunnel and CR LSP tunnel The speci...

Страница 278: ...cess for a VPN instance and enter RIPng view ripng process id vpn instance vpn instance name Perform this configuration on the PE On the CE create a common RIPng process 3 Return to system view quit N A 4 Enter interface view interface interface type interface number N A 5 Enable RIPng on the interface ripng process id enable By default RIPng is disabled on an interface Configuring OSPFv3 between ...

Страница 279: ...r is not greater than 65535 the first two octets of the external route tag are 0xD000 The last two octets are the local BGP AS number If the AS number is greater than 65535 the external route tag is 0 Perform this configuration on the PE 7 Optional Disable setting the DN bit in OSPFv3 LSAs disable dn bit set By default when a PE redistributes BGP routes into OSPFv3 and creates OSPFv3 LSAs it sets ...

Страница 280: ... instance vpn instance name Perform this configuration on the PE On the CE create a common IPv6 IS IS process 3 Configure a network entity title for the IS IS process network entity net By default no NET is configured 4 Enable IPv6 for the IS IS process ipv6 enable IPv6 is disabled by default 5 Return to system view quit N A 6 Enter interface view interface interface type interface number N A 7 En...

Страница 281: ...r system view system view N A 2 Enter BGP view bgp as number N A 3 Configure the PE as an EBGP peer peer group name ipv6 address prefix length as number as number By default no BGP peer is configured 4 Create the BGP IPv6 unicast address family and enter its view address family ipv6 unicast By default the BGP IPv6 unicast address family is not created 5 Enable IPv6 unicast route exchange with the ...

Страница 282: ...policy on the receiving side 8 Optional Enable route reflection between clients reflect between clients By default route reflection between clients is enabled 9 Optional Configure the cluster ID for the RR reflector cluster id cluster id ip address By default the RR uses its own router ID as the cluster ID If multiple RRs exist in a cluster use this command to configure the same cluster ID for all...

Страница 283: ...e To configure BGP VPNv6 route control Step Command Remarks 1 Enter system view system view N A 2 Enter BGP view bgp as number N A 3 Enter BGP VPNv6 address family view address family vpnv6 N A 4 Configure filtering of advertised routes filter policy acl6 number prefix list ipv6 prefix name export protocol process id By default the PE does not filter advertised routes 5 Configure filtering of rece...

Страница 284: ... ID for the route reflector reflector cluster id cluster id ip address By default an RR uses its own router ID as the cluster ID If more than one RR exists in a cluster use this command to configure the same cluster ID for all RRs in the cluster to avoid routing loops 16 Configure filtering of reflected routes rr filter extended community number By default an RR does not filter reflected routes On...

Страница 285: ...ip between PEs in different ASs The PEs and ASBR PEs in an AS must be able to exchange labeled routes To configure a PE for inter AS IPv6 VPN option C Step Command Remarks 1 Enter system view system view N A 2 Enter BGP view bgp as number N A 3 Configure the ASBR PE in the same AS as an IBGP peer peer group name ip address mask length as number as number By default no BGP peer is configured 4 Conf...

Страница 286: ...SPFv3 sham link Before you configure an OSPFv3 sham link configure basic IPv6 MPLS L3VPN OSPFv3 is used between PE and CE Configuring a loopback interface Step Command Remarks 1 Enter system view system view N A 2 Create a loopback interface and enter loopback interface view interface loopback interface number By default no loopback interface is created 3 Associate the loopback interface with a VP...

Страница 287: ...g generation The generated logs are sent to the information center For the logs to be output correctly you must also configure information center on the device For more information about the information center see Network Management and Monitoring Configuration Guide To enable logging for BGP route flapping Step Command Remarks 1 Enter system view system view N A 2 Enter BGP view bgp as number N A...

Страница 288: ...ay bgp group vpnv6 group name group name Display BGP VPNv6 peer information display bgp peer vpnv6 ip address mask length ip address group name group name log info ip address verbose standby slot slot number Display BGP VPNv6 routes display bgp routing table vpnv6 route distinguisher route distinguisher network address prefix length advertise info as path acl as path acl number community list basi...

Страница 289: ... Interface IP address CE 1 Vlan int11 2001 1 1 96 P Loop0 2 2 2 9 32 PE 1 Loop0 1 1 1 9 32 Vlan int12 172 2 1 1 24 Vlan int11 2001 1 2 96 Vlan int13 172 1 1 2 24 Vlan int13 172 1 1 1 24 PE 2 Loop0 3 3 3 9 32 Vlan int12 2001 2 2 96 Vlan int12 172 2 1 2 24 CE 2 Vlan int12 2001 2 1 96 Vlan int11 2001 3 2 96 CE 3 Vlan int11 2001 3 1 96 Vlan int13 2001 4 2 96 CE 4 Vlan int13 2001 4 1 96 Configuration p...

Страница 290: ...an interface12 ip address 172 2 1 1 24 P Vlan interface12 quit P ospf P ospf 1 area 0 P ospf 1 area 0 0 0 0 network 172 1 1 0 0 0 0 255 P ospf 1 area 0 0 0 0 network 172 2 1 0 0 0 0 255 P ospf 1 area 0 0 0 0 network 2 2 2 9 0 0 0 0 P ospf 1 area 0 0 0 0 quit P ospf 1 quit Configure PE 2 PE2 system view PE2 interface loopback 0 PE2 LoopBack0 ip address 3 3 3 9 32 PE2 LoopBack0 quit PE2 interface vl...

Страница 291: ... PE2 mpls lsr id 3 3 3 9 PE2 mpls ldp PE2 ldp quit PE2 interface vlan interface 12 PE2 Vlan interface12 mpls enable PE2 Vlan interface12 mpls ldp enable PE2 Vlan interface12 quit Execute the display mpls ldp peer command to verify that LDP sessions in Operational state have been established between PE 1 P and PE 2 Execute the display mpls ldp lsp command to verify that the LSPs have been establish...

Страница 292: ...ce command on the PEs to display information about the VPN instances for example on PE 1 PE1 display ip vpn instance Total VPN Instances configured 2 VPN Instance Name RD Create time vpn1 100 1 2012 02 13 12 49 08 vpn2 100 2 2012 02 13 12 49 20 Use the ping command on the PEs to verify that the PEs can ping their attached CEs for example on PE 1 PE1 ping ipv6 vpn instance vpn1 2001 1 1 Ping6 56 by...

Страница 293: ...gured Details not shown Execute the display bgp peer ipv6 vpn instance command on the PEs to verify that a BGP peer relationship in Established state has been established between a PE and a CE Details not shown 5 Configure an MP IBGP peer relationship between the PEs Configure PE 1 PE1 bgp 100 PE1 bgp peer 3 3 3 9 as number 100 PE1 bgp peer 3 3 3 9 connect interface loopback 0 PE1 bgp address fami...

Страница 294: ...ost 0 Destination FE80 10 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 Destination FF00 8 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 PE1 display ipv6 routing table vpn instance vpn2 Destinations 6 Routes 6 Destination 1 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 2001 2 96 Protocol Direct NextHop Preference 0 Interface Vlan12 Cost...

Страница 295: ...network through PE 2 in AS 200 Configure IPv6 MPLS L3VPN inter AS option A and use the VRF to VRF method to manage VPN routes Run OSPF on the MPLS backbone of each AS Figure 78 Network diagram Table 26 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 Vlan int12 2001 1 1 96 CE 2 Vlan int12 2001 2 1 96 PE 1 Loop0 1 1 1 9 32 PE 2 Loop0 4 4 4 9 32 Vlan i...

Страница 296: ... to ASBR PE 1 PE1 system view PE1 mpls lsr id 1 1 1 9 PE1 mpls ldp PE1 ldp quit PE1 interface vlan interface 11 PE1 Vlan interface11 mpls enable PE1 Vlan interface11 mpls ldp enable PE1 Vlan interface11 quit Configure basic MPLS on ASBR PE 1 and enable MPLS LDP for the interface connected to PE 1 ASBR PE1 system view ASBR PE1 mpls lsr id 2 2 2 9 ASBR PE1 mpls ldp ASBR PE1 ldp quit ASBR PE1 interfa...

Страница 297: ...e vlan interface 12 PE1 Vlan interface12 ip binding vpn instance vpn1 PE1 Vlan interface12 ipv6 address 2001 1 2 96 PE1 Vlan interface12 quit Configure CE 2 CE2 system view CE2 interface vlan interface 12 CE2 Vlan interface12 ipv6 address 2001 2 1 96 CE2 Vlan interface12 quit Configure PE 2 PE2 ip vpn instance vpn1 PE2 vpn instance route distinguisher 200 2 PE2 vpn instance vpn target 200 1 both P...

Страница 298: ...ween PE and CE switches and redistribute VPN routes into BGP Configure CE 1 CE1 bgp 65001 CE1 bgp peer 2001 1 2 as number 100 CE1 bgp address family ipv6 unicast CE1 bgp ipv6 peer 2001 1 2 enable CE1 bgp ipv6 import route direct CE1 bgp ipv6 quit CE1 bgp quit Configure PE 1 PE1 bgp 100 PE1 bgp ip vpn instance vpn1 PE1 bgp vpn1 peer 2001 1 1 as number 65001 PE1 bgp vpn1 address family ipv6 unicast ...

Страница 299: ...E1 bgp address family vpnv6 ASBR PE1 bgp vpnv6 peer 1 1 1 9 enable ASBR PE1 bgp vpnv6 quit ASBR PE1 bgp quit Configure ASBR PE 2 ASBR PE2 bgp 200 ASBR PE2 bgp ip vpn instance vpn1 ASBR PE2 bgp vpn1 peer 2002 1 1 as number 100 ASBR PE2 bgp vpn1 address family ipv6 unicast ASBR PE2 bgp ipv6 vpn1 peer 2002 1 1 enable ASBR PE2 bgp ipv6 vpn1 quit ASBR PE2 bgp vpn1 quit ASBR PE2 bgp peer 4 4 4 9 as numb...

Страница 300: ...ssignment Device Interface IP address Device Interface IP address PE 1 Loop0 2 2 2 9 32 PE 2 Loop0 5 5 5 9 32 Vlan int11 1 1 1 2 8 Vlan int11 9 1 1 2 8 Vlan int12 2001 1 64 Vlan int12 2002 1 64 ASBR PE 1 Loop0 3 3 3 9 32 ASBR PE 2 Loop0 4 4 4 9 32 Vlan int11 1 1 1 1 8 Vlan int11 9 1 1 1 8 Vlan int12 11 0 0 2 8 Vlan int12 11 0 0 1 8 CE 1 Vlan int12 2001 2 64 CE 2 Vlan int12 2002 2 64 Configuration ...

Страница 301: ...n interface11 quit Configure interface Loopback 0 and start IS IS on it PE1 interface loopback 0 PE1 LoopBack0 ip address 2 2 2 9 32 PE1 LoopBack0 isis enable 1 PE1 LoopBack0 quit Create VPN instance vpn1 and configure the RD and route target attributes for it PE1 ip vpn instance vpn1 PE1 vpn instance vpn1 route distinguisher 11 11 PE1 vpn instance vpn1 vpn target 3 3 import extcommunity PE1 vpn i...

Страница 302: ...t IS IS on ASBR PE 1 ASBR PE1 system view ASBR PE1 isis 1 ASBR PE1 isis 1 network entity 10 222 222 222 222 00 ASBR PE1 isis 1 quit Configure an LSR ID and enable MPLS and LDP ASBR PE1 mpls lsr id 3 3 3 9 ASBR PE1 mpls ldp ASBR PE1 ldp quit Configure interface VLAN interface 11 and enable IS IS MPLS and LDP on the interface ASBR PE1 interface vlan interface 11 ASBR PE1 Vlan interface11 ip address ...

Страница 303: ...ss 1 ASBR PE1 bgp ipv4 import route isis 1 ASBR PE1 bgp ipv4 quit Apply routing policy policy1 to routes advertised to EBGP peer 11 0 0 1 ASBR PE1 bgp peer 11 0 0 1 as number 600 ASBR PE1 bgp address family ipv4 unicast ASBR PE1 bgp ipv4 peer 11 0 0 1 enable ASBR PE1 bgp ipv4 peer 11 0 0 1 route policy policy1 export Enable the capability to advertise labeled routes to and receive labeled routes f...

Страница 304: ... from IBGP peer 5 5 5 9 ASBR PE2 bgp 600 ASBR PE2 bgp peer 5 5 5 9 as number 600 ASBR PE2 bgp peer 5 5 5 9 connect interface loopback 0 ASBR PE2 bgp address family ipv4 unicast ASBR PE2 bgp ipv4 peer 5 5 5 9 enable ASBR PE2 bgp ipv4 peer 5 5 5 9 label route capability Apply routing policy policy2 to routes advertised to IBGP peer 5 5 5 9 ASBR PE2 bgp ipv4 peer 5 5 5 9 route policy policy2 export R...

Страница 305: ...ociate interface VLAN interface 12 with VPN instance vpn1 and specify an IPv6 address for the interface PE2 interface vlan interface 12 PE2 Vlan interface12 ip binding vpn instance vpn1 PE2 Vlan interface12 ipv6 address 2002 1 64 PE2 Vlan interface12 quit Enable BGP on PE 2 PE2 bgp 600 Configure the capability to advertise labeled routes to IBGP peer 4 4 4 9 and to receive labeled routes from the ...

Страница 306: ... other Verify that CE 1 and CE 2 can ping each other Details not shown Configuring IPv6 MPLS L3VPN carrier s carrier Network requirements Configure carrier s carrier for the scenario shown in Figure 80 In this scenario PE 1 and PE 2 are the provider carrier s PE switches They provide VPN services for the customer carrier CE 1 and CE 2 are the customer carrier s switches They connect to the provide...

Страница 307: ...e vlan interface 12 PE1 Vlan interface12 ip address 30 1 1 1 24 PE1 Vlan interface12 isis enable 1 PE1 Vlan interface12 mpls enable PE1 Vlan interface12 mpls ldp enable PE1 Vlan interface12 mpls ldp transport address interface PE1 Vlan interface12 quit PE1 bgp 100 PE1 bgp peer 4 4 4 9 as number 100 PE1 bgp peer 4 4 4 9 connect interface loopback 0 PE1 bgp address family vpnv4 PE1 bgp vpnv4 peer 4 ...

Страница 308: ...3 system view PE3 interface loopback 0 PE3 LoopBack0 ip address 1 1 1 9 32 PE3 LoopBack0 quit PE3 mpls lsr id 1 1 1 9 PE3 mpls ldp PE3 ldp quit PE3 isis 2 PE3 isis 2 network entity 10 0000 0000 0000 0001 00 PE3 isis 2 quit PE3 interface loopback 0 PE3 LoopBack0 isis enable 2 PE3 LoopBack0 quit PE3 interface vlan interface 12 PE3 Vlan interface12 ip address 10 1 1 1 24 PE3 Vlan interface12 isis ena...

Страница 309: ...gp allow ibgp PE1 isis 2 quit PE1 interface vlan interface11 PE1 Vlan interface11 ip binding vpn instance vpn1 PE1 Vlan interface11 ip address 11 1 1 2 24 PE1 Vlan interface11 isis enable 2 PE1 Vlan interface11 mpls enable PE1 Vlan interface11 mpls ldp enable PE1 Vlan interface11 mpls ldp transport address interface PE1 Vlan interface11 quit PE1 bgp 100 PE1 bgp ip vpn instance vpn1 PE1 bgp vpn1 ad...

Страница 310: ...ip vpn instance vpn1 PE3 bgp vpn1 peer 2001 1 1 as number 65410 PE3 bgp vpn1 address family ipv6 unicast PE3 bgp ipv6 vpn1 peer 2001 1 1 enable PE3 bgp ipv6 vpn1 import route direct PE3 bgp ipv6 vpn1 quit PE3 bgp vpn1 quit PE3 bgp quit Configure PE 4 and CE 4 in the same way that PE 3 and CE 3 are configured Details not shown 5 Establish an MP IBGP peer relationship between PEs of the customer car...

Страница 311: ...f the customer carrier network PE1 display ip routing table vpn instance vpn1 Destinations 18 Routes 18 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 1 1 1 9 32 ISIS 15 20 11 1 1 1 Vlan11 2 2 2 9 32 ISIS 15 10 11 1 1 1 Vlan11 5 5 5 9 32 BGP 255 10 4 4 4 9 Vlan12 6 6 6 9 32 BGP 255 20 4 4 4 9 Vlan12 10 1 1 0 24 ISIS 15 20 11 1 1 1 Vlan11 11 1 1 0 24 Direc...

Страница 312: ...0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 3 Display the public network routing table and VPN routing table on the customer carrier PEs for example on PE 3 Verify that the public network routing table contains the internal routes of the customer carrier network Destinations 18 Routes 18 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0...

Страница 313: ...tination 2001 2 96 Protocol BGP4 NextHop FFFF 6 6 6 9 Preference 255 Interface Vlan12 Cost 0 Destination FE80 10 Protocol Direct NextHop Preference 0 Interface InLoop0 Cost 0 Destination FF00 8 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 4 Verify that PE 3 and PE 4 can ping each other Details not shown 5 Verify that CE 3 and CE 4 can ping each other Details not shown Configuring an...

Страница 314: ... cost value to 2 for both the link between CE 1 and Switch A and the link between CE 2 and Switch A Execute the display ipv6 routing table command to verify that CE 1 and CE 2 have each learned the OSPFv3 route to VLAN interface 11 of the other Details not shown 2 Configure IPv6 MPLS L3VPN on the backbone Configure basic MPLS and MPLS LDP on PE 1 to establish LDP LSPs PE1 system view PE1 interface...

Страница 315: ...loopback 0 PE2 LoopBack0 ip address 2 2 2 9 32 PE2 LoopBack0 quit PE2 mpls lsr id 2 2 2 9 PE2 mpls ldp PE2 ldp quit PE2 interface vlan interface 12 PE2 Vlan interface12 ip address 10 1 1 2 24 PE2 Vlan interface12 mpls enable PE2 Vlan interface12 mpls ldp enable PE2 Vlan interface12 quit Configure PE 2 to take PE 1 as an MP IBGP peer PE2 bgp 100 PE2 bgp peer 1 1 1 9 as number 100 PE2 bgp peer 1 1 1...

Страница 316: ...te distinguisher 100 2 PE2 vpn instance vpn1 vpn target 1 1 PE2 vpn instance vpn1 quit PE2 interface vlan interface 11 PE2 Vlan interface11 ip binding vpn instance vpn1 PE2 Vlan interface11 ipv6 address 120 2 64 PE2 Vlan interface11 ospfv3 100 area 1 PE2 Vlan interface11 quit PE2 ospfv3 100 PE2 ospfv3 100 router id 120 1 1 1 PE2 ospfv3 100 domain id 10 PE2 ospfv3 100 quit PE2 bgp 100 PE2 bgp ip vp...

Страница 317: ...Pv6 BGP route across the backbone A route to the sham link destination address exists Execute the display ipv6 routing table command on the CEs to verify that the next hop of the OSPFv3 route to the peer CE is the VLAN interface connected to the PE The VPN traffic to the peer is forwarded over the backbone Details not shown Verify that a sham link has been established on PEs for example on PE 1 PE...

Страница 318: ...309 Request list 0 Retransmit list 0 ...

Страница 319: ...It can be an LSP tunnel or an MPLS TE tunnel Cross connect A cross connect concatenates two physical or virtual circuits such as ACs and PWs It switches packets between the two physical or virtual circuits Cross connects include AC to AC cross connect AC to PW cross connect and PW to PW cross connect Site ID A site ID uniquely identifies a site in a VPN Sites in different VPNs can have the same si...

Страница 320: ...ublic tunnel can be an LSP or MPLS TE tunnel If multiple public tunnels exist between two PEs you can configure a tunnel policy to control tunnel selection For more information about tunnel policies see Configuring tunnel policies If a PW is established over an LSP or MPLS TE tunnel packets on the PW have two labels The outer label is the public LSP or MPLS TE tunnel label that MPLS uses to forwar...

Страница 321: ...hernet interface or Layer 2 aggregate interface The interface forwards incoming packets that match the Ethernet service instance to the bound PW 4 Bind the AC to the PW Bind the Ethernet service instance to the PW so the PE forwards packets between the AC and the PW PW redundancy PW redundancy provides redundant links between PEs so that the customer networks can communicate when the path over one...

Страница 322: ...i segment PWs and inter domain multi segment PWs Intra domain multi segment PW An intra domain multi segment PW has concatenated PWs within an AS You can create an intra domain multi segment PW between two PEs that have no public tunnel to each other As shown in Figure 85 there is no public tunnel between PE 1 and PE 4 There is a public tunnel between PE 1 and PE 2 and a public tunnel between PE 2...

Страница 323: ...n ASBR 2 Figure 86 Inter domain multi segment PW VCCV Virtual Circuit Connectivity Verification VCCV is an OAM function for L2VPN It verifies the connectivity of PWs on the data plane VCCV includes two modes Manual mode Use the ping mpls pw command to manually test the connectivity of a PW Auto mode Configure BFD to automatically test the connectivity of a PW For more information about VCCV see Co...

Страница 324: ...s Required Enabling L2VPN N A Required Configuring an AC For multi segment PWs skip this task Required Configuring a cross connect N A Configuring a PW Optional Configuring a PW class Required Choose either of the following tasks to configure a PW Configuring a static PW Configuring an LDP PW Configuring a BGP PW Configuring a remote CCC connection Choose a PW configuration method depending on the...

Страница 325: ...h any VLAN ID or no VLAN ID encapsulation tagged untagged Match incoming packets with a specific outer VLAN ID encapsulation s vid vlan id only tagged By default no packet match criterion is configured for the Ethernet service instance Configuring a cross connect Step Command Remarks 1 Enter system view system view N A 2 Create a cross connect group and enter cross connect group view xconnect grou...

Страница 326: ...up group name N A 3 Enter cross connect view connection connection name N A 4 Configure a static PW and enter cross connect PW view peer ip address pw id pw id in label label value out label label value pw class class name tunnel policy tunnel policy name By default no static PW is configured Configuring an LDP PW Before you configure an LDP PW enable global and interface MPLS LDP on the PE For in...

Страница 327: ...rmation with the specified peer or peer group peer group name ip address mask length signaling non standard By default BGP can exchange label block information with a BGP L2VPN peer or peer group by using RFC 4761 MP_REACH_NLRI 7 Optional Permit the local AS number to appear in routes from the specified peer or peer group and specify the appearance times peer group name ip address mask length allo...

Страница 328: ... connect group view auto discovery bgp By default a cross connect group does not automatically discover neighbors or create PWs through BGP 4 Configure an RD for the cross connect group route distinguisher route distinguisher By default no RD is configured for the cross connect group 5 Configure route targets for the cross connect group vpn target vpn target 1 8 both export extcommunity import ext...

Страница 329: ...c in label in label value out label out label value nexthop nexthop out interface interface type interface number pw class class name By default no remote CCC connection is created Use the out interface keyword to specify the outgoing interface only on a point to point link On other types of interfaces such as Layer 3 Ethernet interface VLAN interface and Layer 3 aggregate interface you must use t...

Страница 330: ...rface to the BGP cross connect ac interface interface type interface number service instance instance id access mode ethernet vlan By default no Ethernet service instance is bound to the BGP cross connect Configuring PW redundancy This task includes the following configurations Create a backup PW for the primary PW Specify whether to switch traffic from the backup PW to the primary PW when the pri...

Страница 331: ...ckup PW to the primary PW when the primary PW recovers and specify the wait time for the switchover revertive wtr wtr time never By default traffic is immediately switched back from the backup PW to the primary PW when the primary PW recovers 5 Enter cross connect PW view peer ip address pw id pw id pw class class name tunnel policy tunnel policy name N A 6 Configure a backup LDP PW and enter cros...

Страница 332: ...stinguisher route distinguisher site id site id label offset label offset advertise info statistics Display BGP L2VPN peer information display bgp peer l2vpn ip address mask length ip address group name group name log info ip address verbose standby slot slot number Display BGP L2VPN update group information display bgp update group l2vpn ip address Reset BGP sessions for L2VPN reset bgp as number...

Страница 333: ...oopBack0 ip address 192 2 2 2 32 PE1 LoopBack0 quit PE1 mpls lsr id 192 2 2 2 Enable L2VPN PE1 l2vpn enable Enable global LDP PE1 mpls ldp PE1 ldp quit Configure VLAN interface 20 connected to the P device and enable LDP on the interface PE1 interface vlan interface 20 PE1 Vlan interface20 ip address 10 1 1 1 24 PE1 Vlan interface20 mpls enable PE1 Vlan interface20 mpls ldp enable PE1 Vlan interfa...

Страница 334: ...n LSR ID P system view P interface loopback 0 P LoopBack0 ip address 192 4 4 4 32 P LoopBack0 quit P mpls lsr id 192 4 4 4 Enable global LDP P mpls ldp P ldp quit Configure VLAN interface 20 connected to PE 1 and enable LDP on the interface P interface vlan interface 20 P Vlan interface20 ip address 10 1 1 2 24 P Vlan interface20 mpls enable P Vlan interface20 mpls ldp enable P Vlan interface20 qu...

Страница 335: ...it Create Ethernet service instance 10 on GigabitEthernet 1 0 1 to match packets that have an outer VLAN ID of 10 PE2 interface gigabitethernet1 0 1 PE2 GigabitEthernet1 0 1 service instance 10 PE2 GigabitEthernet1 0 1 srv10 encapsulation s vid 10 PE2 GigabitEthernet1 0 1 srv10 quit PE2 GigabitEthernet1 0 1 quit Create a cross connect group named vpna create a cross connect named svc in the group ...

Страница 336: ... 1 1 up 0 blocked 0 down 0 defect Xconnect group Name vpna Peer PW ID In Out Label Proto Flag Link ID State 192 2 2 2 3 200 100 Static M 0 Up Verify that CE 1 and CE 2 can ping each other Details not shown Configuring an LDP PW Network requirements Create an LDP PW between PE 1 and PE 2 over the backbone so VLAN 10 on CE 1 can communicate with VLAN 10 on CE 2 Figure 88 Network diagram Table 30 Int...

Страница 337: ...face20 mpls enable PE1 Vlan interface20 mpls ldp enable PE1 Vlan interface20 quit Configure OSPF for LDP to create LSPs PE1 ospf PE1 ospf 1 area 0 PE1 ospf 1 area 0 0 0 0 network 10 1 1 1 0 0 0 255 PE1 ospf 1 area 0 0 0 0 network 192 2 2 2 0 0 0 0 PE1 ospf 1 area 0 0 0 0 quit PE1 ospf 1 quit Create VLAN 10 and assign GigabitEthernet 1 0 1 to the VLAN PE1 vlan 10 PE1 vlan10 port gigabitethernet 1 0...

Страница 338: ...ip address 10 1 1 2 24 P Vlan interface20 mpls enable P Vlan interface20 mpls ldp enable P Vlan interface20 quit Configure VLAN interface 30 connected to PE 2 and enable LDP on the interface P interface vlan interface 30 P Vlan interface30 ip address 10 2 2 2 24 P Vlan interface30 mpls enable P Vlan interface30 mpls ldp enable P Vlan interface30 quit Configure OSPF for LDP to create LSPs P ospf P ...

Страница 339: ...hernet1 0 1 srv10 encapsulation s vid 10 PE2 GigabitEthernet1 0 1 srv10 quit PE2 GigabitEthernet1 0 1 quit Create a cross connect group named vpna create a cross connect named ldp in the group and bind Ethernet service instance 10 on GigabitEthernet 1 0 1 to the cross connect PE2 xconnect group vpna PE2 xcg vpna connection ldp PE2 xcg vpna ldp ac interface GigabitEthernet 1 0 1 service instance 10...

Страница 340: ... Create a BGP PW between PE 1 and PE 2 so VLAN 10 on CE 1 can communicate with VLAN 10 on CE 2 Figure 89 Network diagram Table 31 Interface and IP address assignment Device Interface IP address Device Interface IP address PE 1 Loop0 192 2 2 2 32 P Loop0 192 4 4 4 32 Vlan int20 10 1 1 1 24 Vlan int20 10 1 1 2 24 PE 2 Loop0 192 3 3 3 32 Vlan int30 10 2 2 2 24 Vlan int30 10 2 2 1 24 Configuration pro...

Страница 341: ...area 0 0 0 0 network 10 1 1 1 0 0 0 255 PE1 ospf 1 area 0 0 0 0 network 192 2 2 2 0 0 0 0 PE1 ospf 1 area 0 0 0 0 quit PE1 ospf 1 quit Create an IBGP connection to PE 2 and enable BGP to advertise L2VPN information to PE 2 PE1 bgp 100 PE1 bgp peer 192 3 3 3 as number 100 PE1 bgp peer 192 3 3 3 connect interface loopback 0 PE1 bgp address family l2vpn PE1 bgp l2vpn peer 192 3 3 3 enable PE1 bgp l2v...

Страница 342: ...4 32 P LoopBack0 quit P mpls lsr id 192 4 4 4 Enable LDP globally P mpls ldp P ldp quit Configure VLAN interface 20 the interface connected to PE 1 and enable LDP on the interface P interface vlan interface 20 P Vlan interface20 ip address 10 1 1 2 24 P Vlan interface20 mpls enable P Vlan interface20 mpls ldp enable P Vlan interface20 quit Configure VLAN interface 30 the interface connected to PE ...

Страница 343: ...er 192 2 2 2 connect interface loopback 0 PE2 bgp address family l2vpn PE2 bgp l2vpn peer 192 2 2 2 enable PE2 bgp l2vpn quit PE2 bgp quit Create VLAN 10 and assign GigabitEthernet 1 0 1 to the VLAN PE2 vlan 10 PE2 vlan10 port gigabitethernet 1 0 1 PE2 vlan10 quit Create Ethernet service instance 10 on GigabitEthernet 1 0 1 to match packets that have an outer VLAN ID of 20 PE2 interface gigabiteth...

Страница 344: ...nnect group Name vpnb Peer PW ID Rmt Site In Out Label Proto Flag Link ID State 192 3 3 3 2 65636 65625 BGP M 1 Up Display L2VPN PW information on PE 2 The output shows that a PW has been established PE2 display l2vpn pw Flags M main B backup H hub link S spoke link N no split horizon Total number of PWs 1 1 up 0 blocked 0 down 0 defect Xconnect group Name vpnb Peer PW ID Rmt Site In Out Label Pro...

Страница 345: ...1 l2vpn enable Configure VLAN interface 20 the interface connected to P and enable MPLS on the interface PE1 interface vlan interface 20 PE1 Vlan interface20 ip address 10 1 1 1 24 PE1 Vlan interface20 mpls enable PE1 Vlan interface20 quit Create VLAN 10 and assign GigabitEthernet 1 0 1 to the VLAN PE1 vlan 10 PE1 vlan10 port gigabitethernet 1 0 1 PE1 vlan10 quit Create Ethernet service instance 1...

Страница 346: ...P Vlan interface30 quit Configure a static LSP to forward packets from PE 1 to PE 2 P static lsp transit pe1 pe2 in label 201 nexthop 10 2 2 1 out label 202 Configure a static LSP to forward packets from PE 2 to PE 1 P static lsp transit pe2 pe1 in label 102 nexthop 10 1 1 1 out label 101 4 Configure PE 2 Configure an LSR ID PE2 system view PE2 interface loopback 0 PE2 LoopBack0 ip address 192 3 3...

Страница 347: ...y L2VPN PW information on PE 1 The output shows that a remote CCC connection identified by PW ID Rmt Site and Proto Static has been established PE1 display l2vpn pw Flags M main B backup H hub link S spoke link N no split horizon Total number of PWs 1 1 up 0 blocked 0 down 0 defect Xconnect group Name ccc Peer PW ID Rmt Site In Out Label Proto Flag Link ID State 10 1 1 2 101 201 Static M 0 Up Disp...

Страница 348: ...1 CE1 system view CE1 interface vlan interface 10 CE1 Vlan interface10 ip address 100 1 1 1 24 CE1 Vlan interface10 quit 2 Configure PE 1 Configure an LSR ID PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 1 1 1 1 32 PE1 LoopBack0 quit PE1 mpls lsr id 1 1 1 1 Enable global MPLS LDP PE1 mpls ldp PE1 ldp quit Configure VLAN interface 12 the interface connected to PE 2 and VLAN inte...

Страница 349: ...link type trunk PE1 GigabitEthernet1 0 1 port trunk permit vlan 10 PE1 GigabitEthernet1 0 1 service instance 10 PE1 GigabitEthernet1 0 1 srv10 encapsulation s vid 10 PE1 GigabitEthernet1 0 1 srv10 quit PE1 GigabitEthernet1 0 1 quit Create a cross connect group named vpna create a cross connect named ldp in the group and bind Ethernet service instance 10 on GigabitEthernet 1 0 1 to the cross connec...

Страница 350: ...tEthernet1 0 1 port link type trunk PE2 GigabitEthernet1 0 1 port trunk permit vlan 10 PE2 GigabitEthernet1 0 1 service instance 10 PE2 GigabitEthernet1 0 1 srv10 encapsulation s vid 10 PE2 GigabitEthernet1 0 1 srv10 quit PE2 GigabitEthernet1 0 1 quit Create a cross connect group named vpna create a cross connect named ldp in the group and bind Ethernet service instance 10 on GigabitEthernet 1 0 1...

Страница 351: ...ulation s vid 10 PE3 GigabitEthernet1 0 1 srv10 quit PE3 GigabitEthernet1 0 1 quit Create a cross connect group named vpna create a cross connect named ldp in the group and bind Ethernet service instance 10 on GigabitEthernet 1 0 1 to the cross connect PE3 xconnect group vpna PE3 xcg vpna connection ldp PE3 xcg vpna ldp ac interface gigabitethernet 1 0 1 service instance 10 Create an LDP PW for th...

Страница 352: ... PE 2 The output shows that an LDP PW has been established PE2 display l2vpn pw Flags M main B backup H hub link S spoke link N no split horizon Total number of PWs 1 1 up 0 blocked 0 down 0 defect Xconnect group Name vpna Peer PW ID In Out Label Proto Flag Link ID State 1 1 1 1 20 65779 65651 LDP M 1 Up Display L2VPN PW information on PE 3 The output shows that an LDP PW has been established PE3 ...

Страница 353: ... 2 so CE 1 and CE 2 can communicate over the backbone The multi segment PW includes an LDP PW between PE 1 and P and a static PW between P and PE 2 The two PWs are concatenated on P Figure 92 Network diagram Table 34 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 Vlan int10 100 1 1 1 24 P Loop0 192 4 4 4 32 PE 1 Loop0 192 2 2 2 32 Vlan int23 23 1 1...

Страница 354: ...net 1 0 1 to match packets that have an outer VLAN ID of 10 PE1 interface gigabitethernet 1 0 1 PE1 GigabitEthernet1 0 1 service instance 1000 PE1 GigabitEthernet1 0 1 srv1000 encapsulation s vid 10 PE1 GigabitEthernet1 0 1 srv1000 quit PE1 GigabitEthernet1 0 1 quit Create a cross connect group named vpn1 create a cross connect named ldp in the group and bind Ethernet service instance 1000 on Giga...

Страница 355: ...between P and PE 2 For more information see Configuring MPLS TE Create VLAN 10 and assign GigabitEthernet 1 0 1 to the VLAN PE2 vlan 10 PE2 vlan10 port gigabitethernet 1 0 1 PE2 vlan10 quit Create Ethernet service instance 1000 on GigabitEthernet 1 0 1 to match packets that have an outer VLAN ID of 10 PE2 interface gigabitethernet1 0 1 PE2 GigabitEthernet1 0 1 service instance 1000 PE2 GigabitEthe...

Страница 356: ...link N no split horizon Total number of PWs 1 1 up 0 blocked 0 down 0 defect Xconnect group Name vpn1 Peer PW ID In Out Label Proto Flag Link ID State 192 4 4 4 1000 65650 65779 LDP M 1 Up Display L2VPN PW information on PE 2 The output shows that a PW has been created PE2 display l2vpn pw Flags M main B backup H hub link S spoke link N no split horizon Total number of PWs 1 1 up 0 blocked 0 down ...

Страница 357: ...0 1 1 2 24 Vlan int22 22 2 2 3 24 Configuration procedure Before you perform the following configurations configure VLANs and add ports to VLANs 1 Configure CE 1 CE1 system view CE1 vlan 10 CE1 vlan10 quit CE1 interface vlan interface 10 CE1 Vlan interface10 ip address 100 1 1 1 24 CE1 Vlan interface10 quit CE1 interface gigabitethernet 1 0 1 CE1 GigabitEthernet1 0 1 port link type trunk CE1 Gigab...

Страница 358: ...itEthernet 1 0 1 to match packets that have an outer VLAN ID of 10 PE1 interface gigabitethernet 1 0 1 PE1 GigabitEthernet1 0 1 service instance 1000 PE1 GigabitEthernet1 0 1 srv1000 encapsulation s vid 10 PE1 GigabitEthernet1 0 1 srv1000 quit PE1 GigabitEthernet1 0 1 quit Create a cross connect group named vpn1 create a cross connect named ldp in the group and bind Ethernet service instance 1000 ...

Страница 359: ...pf 1 quit Configure BGP to advertise labeled routes on ASBR1 ASBR1 bgp 100 ASBR1 bgp peer 26 2 2 3 as number 200 ASBR1 bgp address family ipv4 unicast ASBR1 bgp ipv4 import route direct ASBR1 bgp ipv4 peer 26 2 2 3 enable ASBR1 bgp ipv4 peer 26 2 2 3 route policy policy1 export ASBR1 bgp ipv4 peer 26 2 2 3 label route capability ASBR1 bgp ipv4 quit ASBR1 bgp quit ASBR1 route policy policy1 permit ...

Страница 360: ...work 22 2 2 3 0 0 0 255 ASBR2 ospf 1 area 0 0 0 0 network 192 3 3 3 0 0 0 0 ASBR2 ospf 1 area 0 0 0 0 quit ASBR2 ospf 1 quit Configure BGP to advertise labeled routes on ASBR 2 ASBR2 bgp 200 ASBR2 bgp peer 26 2 2 2 as number 100 ASBR2 bgp address family ipv4 unicast ASBR2 bgp ipv4 import route direct ASBR2 bgp ipv4 peer 26 2 2 2 enable ASBR2 bgp ipv4 peer 26 2 2 2 route policy policy1 export ASBR2...

Страница 361: ...spf 1 quit Create VLAN 10 and assign GigabitEthernet 1 0 1 to the VLAN PE2 vlan 10 PE2 vlan10 port gigabitethernet 1 0 1 PE2 vlan10 quit Create Ethernet service instance 1000 on GigabitEthernet 1 0 1 to match packets that have an outer VLAN ID of 10 PE2 interface gigabitethernet1 0 1 PE2 GigabitEthernet1 0 1 service instance 1000 PE2 GigabitEthernet1 0 1 srv1000 encapsulation s vid 10 PE2 GigabitE...

Страница 362: ...lay l2vpn pw Flags M main B backup H hub link S spoke link N no split horizon Total number of PWs 2 2 up 0 blocked 0 down 0 defect Xconnect group Name vpn1 Peer PW ID In Out Label Proto Flag Link ID State 192 1 1 1 1000 65779 65651 LDP M 0 Up 192 3 3 3 1000 65778 65651 LDP M 1 Up Display L2VPN PW information on ASBR 2 The output shows that two PWs have been created to form a multi segment PW ASBR2...

Страница 363: ...354 Verify that CE 1 and CE 2 can ping each other Details not shown ...

Страница 364: ...nt circuit physical or virtual connects a CE and a PE such as an Ethernet link or a VLAN PW A pseudowire is a bidirectional virtual connection between two PEs An MPLS PW consists of two unidirectional MPLS LSPs in opposite directions Tunnel A tunnel can be an LSP tunnel or an MPLS TE tunnel It carries one or more PWs over an IP MPLS backbone If a PW is carried on an LSP or MPLS TE tunnel each pack...

Страница 365: ...o discovery LDP PW To create a BGP auto discovery LDP PW a PE uses BGP to automatically find the remote PE and uses LDP to advertise the PW label binding to the remote PE After the two PEs receive the PW label binding from each other they establish a BGP auto discovery LDP PW The information advertised by BGP includes the ID for example LSR ID and VPLS ID of the advertising PE The receiving PE com...

Страница 366: ...a local interface the PE directly forwards the packet to the local interface If no match is found the PE floods the packet to all other ACs and PWs in the VSI After a PE receives a unicast packet from a PW the PE searches the MAC address table of the VSI bound to the PW to determine how to forward this packet If a match is found the PE forwards the packet through the egress interface in the matchi...

Страница 367: ...PLS An edge domain provides access for a user network to the backbone domain The Network Provider Edge NPE devices are fully meshed in the backbone domain A PW between NPEs is referred to as an N PW A User facing Provider Edge UPE device only establishes a PW with the neighboring NPE A PW between a UPE and an NPE is referred to as a U PW H VPLS access modes Two access modes are available in H VPLS...

Страница 368: ...wback once the PW fails all customer sites connected to the UPE lose connectivity You can connect a UPE to two NPEs to achieve U PW redundancy In the H VPLS using MPLS access as shown in Figure 98 the UPE connects to two NPEs through primary and backup U PWs The UPE uses the primary U PW to forward traffic When the primary U PW fails the UPE uses the backup U PW to forward traffic Figure 98 UPE du...

Страница 369: ...d on the interface out of the interface itself VPLS configuration task list To configure a VPLS network complete the following tasks Configure an IGP to ensure IP connectivity within the backbone network Configure basic MPLS LDP GER or MPLS TE to establish public tunnels on the backbone network Configure VPLS on PEs For example configure a VSI establish a PW and associate an AC and a VSI This chap...

Страница 370: ...t interface or Layer 2 aggregate interface that connects to a CE to match packets for the AC To configure an Ethernet service instance Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Ethernet interface view or Layer 2 aggregate interface view Enter Layer 2 Ethernet interface view interface interface type interface number Enter Layer 2 aggregate interface view interface bri...

Страница 371: ...W class To configure a PW class Step Command Remarks 1 Enter system view system view N A 2 Create a PW class and enter PW class view pw class class name By default no PW class is created 3 Optional Enable control word control word enable By default control word is disabled 4 Optional Specify the PW data encapsulation type pw type ethernet vlan By default the PW data encapsulation type is VLAN Conf...

Страница 372: ... policy tunnel policy name By default no LDP PW is configured If you have configured a default PW ID for the VSI with the default pw id command you can use the default PW ID without providing a PW ID in the peer command If no default PW ID is configured you must provide a PW ID in the peer command You must specify the no split horizon keyword to disable split horizon when you configure an NPE to e...

Страница 373: ...roup as its client peer group name ip address mask length reflect client By default no route reflector or client is configured 10 Optional Enable L2VPN information reflection between clients reflect between clients By default L2VPN information reflection is enabled between clients 11 Optional Configure the cluster ID of the route reflector reflector cluster id cluster id ip address By default a ro...

Страница 374: ... site id range range value default offset default offset By default no local site is created Configuring a BGP auto discovery LDP PW Before you perform this configuration enable MPLS LDP on interfaces and globally For details see Configuring LDP To configure a BGP auto discovery LDP PW perform the following configurations on PEs Configure BGP to advertise VPLS PE information Use LDP to create a PW...

Страница 375: ... own router ID as the cluster ID 12 Optional Configure the filtering of reflected L2VPN information rr filter extended community number By default the route reflector does not filter reflected L2VPN information 13 Optional Return to user view return N A 14 Optional Soft reset L2VPN BGP sessions refresh bgp ip address mask length all external group group name internal export import l2vpn N A 15 Opt...

Страница 376: ...ayer 2 aggregate interface you can create an Ethernet service instance and bind it to a VSI The Ethernet service instance matches packets received on that interface The matching packets are then forwarded based on the MAC address table of the VSI An Ethernet service instance can match all packets tagged packets or untagged packets To bind an Ethernet service instance to a VSI Step Command Remarks ...

Страница 377: ...lt no static PW is configured 6 Configure a backup static PW and enter VSI static backup PW view backup peer ip address pw id pw id in label label value out label label value pw class class name tunnel policy tunnel policy name By default no backup static PW is configured If you have configured a default PW ID for the VSI with the default pw id command you can use the default PW ID without providi...

Страница 378: ...ckup PW l2vpn switchover peer ip address pw id pw id N A Configuring MAC address learning Step Command Remarks 1 Enter system view system view N A 2 Enter VSI view vsi vsi name N A 3 Enable MAC address learning for the VSI mac learning enable By default MAC address learning is enabled for a VSI Displaying and maintaining VPLS Execute display commands in any view and reset commands in user view Tas...

Страница 379: ...eceived statistics route distinguisher route distinguisher site id site id label offset label offset advertise info statistics Display BGP L2VPN peer information display bgp peer l2vpn ip address mask length ip address group name group name log info ip address verbose standby slot slot number Display BGP L2VPN update group information display bgp update group l2vpn ip address Clear MAC address ent...

Страница 380: ...LAN interface 20 connected to PE 2 and enable LDP on the interface PE1 interface vlan interface 20 PE1 Vlan interface20 ip address 20 1 1 1 24 PE1 Vlan interface20 mpls enable PE1 Vlan interface20 mpls ldp enable PE1 Vlan interface20 quit Configure VLAN interface 30 connected to PE 3 and enable LDP on the interface PE1 interface vlan interface 30 PE1 Vlan interface30 ip address 30 1 1 1 24 PE1 Vla...

Страница 381: ...gabitEthernet1 0 1 srv10 encapsulation default Bind Ethernet service instance 10 to the VSI svc PE1 GigabitEthernet1 0 1 srv10 xconnect vsi svc 2 Configure PE 2 Configure an LSR ID PE2 system view PE2 interface loopback 0 PE2 LoopBack0 ip address 2 2 2 9 32 PE2 LoopBack0 quit PE2 mpls lsr id 2 2 2 9 Enable L2VPN PE2 l2vpn enable Enable global LDP PE2 mpls ldp PE2 ldp quit Configure VLAN interface ...

Страница 382: ...gabitEthernet1 0 1 srv10 encapsulation default Bind Ethernet service instance 10 to the VSI svc PE2 GigabitEthernet1 0 1 srv10 xconnect vsi svc 3 Configure PE 3 Configure an LSR ID PE3 system view PE3 interface loopback 0 PE3 LoopBack0 ip address 3 3 3 9 32 PE3 LoopBack0 quit PE3 mpls lsr id 3 3 3 9 Enable L2VPN PE3 l2vpn enable Enable global LDP PE3 mpls ldp PE3 ldp quit Configure VLAN interface ...

Страница 383: ... packets PE3 interface gigabitethernet1 0 1 PE3 GigabitEthernet1 0 1 service instance 10 PE3 GigabitEthernet1 0 1 srv10 encapsulation default Bind Ethernet service instance 10 to the VSI svc PE3 GigabitEthernet1 0 1 srv10 xconnect vsi svc Verifying the configuration Execute the display l2vpn pw verbose command on PE 1 The output shows that two static PWs in up state have been established PE1 displ...

Страница 384: ...P as the PW signaling protocol and establish a PW to PE 2 and PE 3 respectively PE1 vsi aaa PE1 vsi aaa pwsignaling ldp PE1 vsi aaa ldp peer 2 2 2 9 pw id 500 PE1 vsi aaa ldp 2 2 2 9 500 quit PE1 vsi aaa ldp peer 3 3 3 9 pw id 500 PE1 vsi aaa ldp 3 3 3 9 500 quit PE1 vsi aaa ldp quit PE1 vsi aaa quit Create Ethernet service instance 10 on GigabitEthernet 1 0 1 to match all packets PE1 interface gi...

Страница 385: ...2 vsi aaa quit Create Ethernet service instance 10 on GigabitEthernet 1 0 1 to match all packets PE2 interface gigabitethernet1 0 1 PE2 GigabitEthernet1 0 1 service instance 10 PE2 GigabitEthernet1 0 1 srv10 encapsulation default Bind Ethernet service instance 10 to the VSI aaa PE2 GigabitEthernet1 0 1 srv10 xconnect vsi aaa 4 Configure PE 3 Configure basic MPLS PE3 system view PE3 interface loopb...

Страница 386: ...t shows that two LDP PWs in up state have been established PE1 display l2vpn pw verbose VSI Name aaa Peer 2 2 2 9 PW ID 500 Signaling Protocol LDP Link ID 8 PW State Up In Label 131179 Out Label 131179 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x1800000260000000 Tunnel NHLFE IDs 138 Peer 3 3 3 9 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 131178 Out Label 131...

Страница 387: ...er 3 3 3 9 as number 100 PE1 bgp peer 3 3 3 9 connect interface loopback 0 PE1 bgp address family l2vpn PE1 bgp l2vpn peer 2 2 2 9 enable PE1 bgp l2vpn peer 3 3 3 9 enable PE1 bgp l2vpn quit PE1 bgp quit Enable L2VPN PE1 l2vpn enable Configure the VSI aaa to use BGP to establish BGP PWs to PE 2 and PE 3 PE1 vsi aaa PE1 vsi aaa auto discovery bgp PE1 vsi aaa auto route distinguisher 1 1 PE1 vsi aaa...

Страница 388: ... connect interface loopback 0 PE2 bgp peer 3 3 3 9 as number 100 PE2 bgp peer 3 3 3 9 connect interface loopback 0 PE2 bgp address family l2vpn PE2 bgp l2vpn peer 1 1 1 9 enable PE2 bgp l2vpn peer 3 3 3 9 enable PE2 bgp l2vpn quit PE2 bgp quit Enable L2VPN PE2 l2vpn enable Configure the VSI aaa to use BGP to establish BGP PWs to PE 1 and PE 3 PE2 vsi aaa PE2 vsi aaa auto discovery bgp PE2 vsi aaa ...

Страница 389: ... PE 1 and PE 2 PE3 vsi aaa PE3 vsi aaa auto discovery bgp PE3 vsi aaa auto route distinguisher 1 1 PE3 vsi aaa auto vpn target 1 1 PE3 vsi aaa auto signaling protocol bgp PE3 vsi aaa auto bgp site 3 range 10 default offset 0 PE3 vsi aaa auto bgp quit PE3 vsi aaa auto quit PE3 vsi aaa quit Create Ethernet service instance 10 on GigabitEthernet 1 0 1 to match all packets PE3 interface gigabitetherne...

Страница 390: ...view VPLS label block information received from PE 2 and PE 3 PE1 display l2vpn bgp verbose VSI Name aaa Remote Site ID 2 Offset 0 RD 1 1 PW State Up Encapsulation BGP VPLS MTU 1500 Nexthop 2 2 2 9 Local VC Label 131195 Remote VC Label 131225 Link ID 9 Local Label Block 131193 10 0 Remote Label Block 131224 10 0 Export Route Target 1 1 Remote Site ID 3 Offset 0 RD 1 1 PW State Up Encapsulation BGP...

Страница 391: ...lsr id 1 1 1 9 PE1 mpls ldp PE1 ldp quit Establish IBGP connections to PE 1 and PE 2 and use BGP to advertise VPLS PE information PE1 bgp 100 PE1 bgp peer 2 2 2 9 as number 100 PE1 bgp peer 2 2 2 9 connect interface loopback 0 PE1 bgp peer 3 3 3 9 as number 100 PE1 bgp peer 3 3 3 9 connect interface loopback 0 PE1 bgp address family l2vpn PE1 bgp l2vpn peer 2 2 2 9 enable PE1 bgp l2vpn peer 3 3 3 ...

Страница 392: ...2 Configure basic MPLS PE2 system view PE2 interface loopback 0 PE2 LoopBack0 ip address 2 2 2 9 32 PE2 LoopBack0 quit PE2 mpls lsr id 2 2 2 9 PE2 mpls ldp PE2 ldp quit Establish IBGP connections to PE 1 and PE 3 and use BGP to advertise VPLS PE information PE2 bgp 100 PE2 bgp peer 1 1 1 9 as number 100 PE2 bgp peer 1 1 1 9 connect interface loopback 0 PE2 bgp peer 3 3 3 9 as number 100 PE2 bgp pe...

Страница 393: ...eer 1 1 1 9 connect interface loopback 0 PE3 bgp peer 2 2 2 9 as number 100 PE3 bgp peer 2 2 2 9 connect interface loopback 0 PE3 bgp address family l2vpn PE3 bgp l2vpn peer 1 1 1 9 enable PE3 bgp l2vpn peer 2 2 2 9 enable PE3 bgp l2vpn quit PE3 bgp quit Enable L2VPN PE3 l2vpn enable Configure the VSI aaa to use BGP to discover remote PEs and use LDP to establish LDP PWs to PE 1 and PE 2 PE3 vsi a...

Страница 394: ...D 9 PW State Up In Label 131154 Out Label 131116 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x1800000160000001 Tunnel NHLFE IDs 140 Execute the display l2vpn ldp verbose command on PE 1 to view LDP PW label information PE1 display l2vpn ldp verbose Peer 2 2 2 9 VPLS ID 100 100 VSI Name aaa PW State Up PW Status Communication Notification method PW ID FEC Local Remote Local AII 1 ...

Страница 395: ...gram Configuration procedure 1 Configure an IGP and public tunnels on each PE Details not shown 2 Configure UPE Configure basic MPLS UPE system view UPE interface loopback 0 UPE LoopBack0 ip address 1 1 1 9 32 UPE LoopBack0 quit UPE mpls lsr id 1 1 1 9 UPE mpls ldp UPE ldp quit Enable L2VPN UPE l2vpn enable Backbone domain Edge domain UPE NPE 1 NPE 2 CE 2 GE1 0 1 Loop0 1 1 1 9 32 Loop0 2 2 2 9 32 ...

Страница 396: ...ack0 ip address 2 2 2 9 32 NPE1 LoopBack0 quit NPE1 mpls lsr id 2 2 2 9 NPE1 mpls ldp NPE1 ldp quit Enable L2VPN NPE1 l2vpn enable Configure VSI aaa that uses LDP as the PW signaling protocol establish a U PW to the UPE and establish an N PW to NPE 2 and NPE 3 respectively NPE1 vsi aaa NPE1 vsi aaa pwsignaling ldp NPE1 vsi aaa ldp peer 1 1 1 9 pw id 500 no split horizon NPE1 vsi aaa ldp 1 1 1 9 50...

Страница 397: ...ddress 4 4 4 9 32 NPE3 LoopBack0 quit NPE3 mpls lsr id 4 4 4 9 NPE3 mpls ldp NPE3 ldp quit Enable L2VPN NPE3 l2vpn enable Configure VSI aaa that uses LDP as the PW signaling protocol and establish an N PW to NPE 1 and NPE 2 respectively NPE3 vsi aaa NPE3 vsi aaa pwsignal ldp NPE3 vsi aaa ldp peer 2 2 2 9 pw id 500 NPE3 vsi aaa ldp 2 2 2 9 500 quit NPE3 vsi aaa ldp peer 3 3 3 9 pw id 500 NPE3 vsi a...

Страница 398: ... BFD Tunnel Group ID 0x1800000460000000 Tunnel NHLFE IDs 130 Peer 3 3 3 9 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 131176 Out Label 131175 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x1800000560000001 Tunnel NHLFE IDs 131 Peer 4 4 4 9 PW ID 500 Signaling Protocol LDP Link ID 10 PW State Up In Label 131178 Out Label 131179 MTU 1500 PW Attributes Main VCCV CC...

Страница 399: ...0 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x1800000660000000 Tunnel NHLFE IDs 131 Peer 3 3 3 9 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 131177 Out Label 131177 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x1800000670000000 Tunnel NHLFE IDs 132 H VPLS UPE dual homing configuration example Network requirements To improve reliability of the H VPLS n...

Страница 400: ... id 500 UPE vsi aaa ldp 3 3 3 3 500 backup quit UPE vsi aaa ldp 2 2 2 2 500 quit UPE vsi aaa ldp quit UPE vsi aaa quit Create VLAN 10 and assign GigabitEthernet 1 0 1 to the VLAN UPE vlan 10 UPE vlan10 port gigabitethernet 1 0 1 UPE vlan10 quit On interface GigabitEthernet 1 0 1 connected to CE 1 create an Ethernet service instance and bind the Ethernet service instance to VSI aaa CE 3 NPE 3 NPE 1...

Страница 401: ...PE GigabitEthernet1 0 2 srv1000 quit 3 Configure NPE 1 Configure basic MPLS NPE1 system view NPE1 interface loopback 0 NPE1 LoopBack0 ip address 2 2 2 2 32 NPE1 LoopBack0 quit NPE1 mpls lsr id 2 2 2 2 NPE1 mpls ldp NPE1 ldp quit Enable L2VPN NPE1 l2vpn enable Configure VSI aaa that uses LDP as the PW signaling protocol and establish a PW to UPE NPE 2 and NPE 3 respectively NPE1 vsi aaa NPE1 vsi aa...

Страница 402: ...ble L2VPN NPE3 l2vpn enable Configure VSI aaa that uses LDP as the PW signaling protocol and establish a PW to NPE 1 and NPE 2 respectively NPE3 vsi aaa NPE3 vsi aaa pwsignaling ldp NPE3 vsi aaa ldp peer 2 2 2 2 pw id 500 NPE3 vsi aaa ldp 2 2 2 2 500 quit NPE3 vsi aaa ldp peer 3 3 3 3 pw id 500 NPE3 vsi aaa ldp 3 3 3 3 500 quit NPE3 vsi aaa ldp quit NPE3 vsi aaa quit Create VLAN 10 and assign Giga...

Страница 403: ...gnaling Protocol LDP Link ID 8 PW State Blocked In Label 131150 Out Label 131279 MTU 1500 PW Attributes Backup VCCV CC VCCV BFD Tunnel Group ID 0x1800000360000003 Tunnel NHLFE IDs 135 NPE1 display l2vpn pw verbose VSI Name aaa Peer 1 1 1 1 PW ID 500 Signaling Protocol LDP Link ID 8 PW State Up In Label 131279 Out Label 131151 MTU 1500 PW Attributes Main No split horizon VCCV CC VCCV BFD Tunnel Gro...

Страница 404: ...V BFD Tunnel Group ID 0x180000060000000 Tunnel NHLFE IDs 136 Peer 2 2 2 2 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 131290 Out Label 131280 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x1800000160000008 Tunnel NHLFE IDs 137 Peer 4 4 4 4 PW ID 500 Signaling Protocol LDP Link ID 10 PW State Up In Label 131278 Out Label 131278 MTU 1500 PW Attributes Main VCCV CC...

Страница 405: ...nel Group ID 0x180000060000000 Tunnel NHLFE IDs 136 Peer 3 3 3 3 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 131278 Out Label 131278 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x1800000160000001 Tunnel NHLFE IDs 137 ...

Страница 406: ...cert displays the path that an MPLS LSP tunnel travels from the ingress node to the egress node to locate errors on the tunnel MPLS tracert consecutively sends MPLS echo requests along the LSP tunnel with the TTL increasing from 1 to a specific value Each hop along the tunnel returns an MPLS echo reply to the ingress due to TTL timeout so the ingress can collect information about each hop along th...

Страница 407: ...nterval It locates errors on the LSP tunnel verifies the consistency of the data plane and control plane and records the detected errors in system logs You can check the logs to monitor LSP connectivity If both BFD and periodic MPLS tracert are configured for an LSP and the periodic tracert function detects a data plane and control plane inconsistency the device does the following tasks 1 Deletes ...

Страница 408: ...for an LSP tunnel To establish a static BFD session ensure that the local and remote discriminators configured locally are identical with the remote and local discriminators configured on the remote device respectively The source address of the BFD session is the MPLS LSR ID of the local device Before configuring BFD for the LSP tunnel configure an MPLS LSR ID for the local device and make sure a ...

Страница 409: ...ble 37 Table 37 Configurations on the local and remote devices BFD session establishment mode Node type Execute the mpls bfd enable command Execute the mpls bfd command Configure the discriminator keyword Static mode Local Yes Yes Yes Remote Yes Yes Yes Dynamic mode Local Yes Yes No Remote Yes No N A Follow these guidelines to configure BFD for an MPLS TE tunnel To establish a static BFD session e...

Страница 410: ... PW connectivity detection Proactive mode Configure BFD for a PW to test PW connectivity The packets used to verify PW connectivity are collectively referred to as VCCV packets A PE transfers VCCV packets through a control channel CC The switch supports only the router alert CC that identifies a VCCV packet by adding an MPLS router alert label before the PW label Connectivity Verification CV tools...

Страница 411: ...in PW class view 4 Use BFD to verify PW connectivity vccv bfd template template name By default BFD is not used to verify PW connectivity 5 Specify the VCCV CC type vccv cc router alert By default no VCCV CC type is specified 6 Return to system view quit N A 7 Enter cross connect group view xconnect group group name N A 8 Enter cross connect view connection connection name N A 9 Configure a PW spe...

Страница 412: ...enter VSI static PW view peer ip address pw id pw id in label label value out label label value pw class class name hub no split horizon tunnel policy tunnel policy name By default no VPLS PW is configured 10 Optional Configure the local and remote discriminators for the BFD session used to verify PW connectivity bfd discriminator local local id remote remote id By default no local and remote disc...

Страница 413: ...lit horizon tnl policy tunnel policy name By default no VPLS PW is configured 10 Optional Configure the local and remote discriminators for the BFD session used to verify PW connectivity bfd discriminator local local id remote remote id By default no local and remote discriminators are configured Make sure the local discriminator and remote discriminator configured on the local PE are the same as ...

Страница 414: ...s Details not shown 2 Configure OSPF to ensure IP connectivity between the switches Configure Switch A SwitchA system view SwitchA ospf SwitchA ospf 1 area 0 SwitchA ospf 1 area 0 0 0 0 network 1 1 1 9 0 0 0 0 SwitchA ospf 1 area 0 0 0 0 network 10 1 1 0 0 0 0 255 SwitchA ospf 1 area 0 0 0 0 quit SwitchA ospf 1 quit Configure Switch B SwitchB system view SwitchB ospf SwitchB ospf 1 area 0 SwitchB ...

Страница 415: ...itchB Vlan interface2 mpls ldp enable SwitchB Vlan interface2 quit SwitchB interface vlan interface 3 SwitchB Vlan interface3 mpls enable SwitchB Vlan interface3 mpls ldp enable SwitchB Vlan interface3 quit Configure Switch C SwitchC mpls lsr id 3 3 3 9 SwitchC mpls ldp SwitchC ldp quit SwitchC interface vlan interface 3 SwitchC Vlan interface3 mpls enable SwitchC Vlan interface3 mpls ldp enable S...

Страница 416: ...One session verifies the connectivity of the LSP from 3 3 3 9 32 to 1 1 1 9 32 and the other session verifies the connectivity of the LSP from 1 1 1 9 32 to 3 3 3 9 32 BFD for PW configuration example Network requirements Create two LDP PWs to implement PW redundancy between CE 1 and CE 2 The primary PW goes through PE 1 PE 2 The backup PW goes through PE 1 PE 3 Configure BFD to inspect the connec...

Страница 417: ...1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 1 1 1 1 32 PE1 LoopBack0 quit PE1 mpls lsr id 1 1 1 1 Enable global MPLS LDP PE1 mpls ldp PE1 ldp quit Establish LDP sessions with PE 2 and PE 3 PE1 interface vlan interface 12 PE1 Vlan interface12 ip address 12 1 1 1 24 PE1 Vlan interface12 mpls enable PE1 Vlan interface12 mpls ldp enable PE1 Vlan interface12 quit PE1 interface vlan ...

Страница 418: ...group vpna PE1 xcg vpna connection ldp PE1 xcg vpna ldp ac interface vlan interface 10 PE1 xcg vpna ldp peer 2 2 2 2 pw id 20 pw class pwa PE1 xcg vpna ldp 2 2 2 2 20 backup peer 3 3 3 3 pw id 30 PE1 xcg vpna ldp 3 3 3 3 20 backup quit PE1 xcg vpna ldp 2 2 2 2 20 quit PE1 xcg vpna ldp quit PE1 xcg vpna quit PE1 quit 3 Configure PE 2 Configure an LSR ID PE2 system view PE2 interface loopback 0 PE2 ...

Страница 419: ... the PW class pwa in the cross connect PE2 xconnect group vpna PE2 xcg vpna connection ldp PE2 xcg vpna ldp ac interface vlan interface 10 PE2 xcg vpna ldp peer 1 1 1 1 pw id 20 pw class pwa PE2 xcg vpna ldp 1 1 1 1 20 quit PE2 xcg vpna ldp quit PE2 xcg vpna quit 4 Configure PE 3 Configure an LSR ID PE3 system view PE3 interface loopback 0 PE3 LoopBack0 ip address 3 3 3 3 32 PE3 LoopBack0 quit PE3...

Страница 420: ...on PE 1 The output shows that two PWs one primary and one backup have been established PE1 display l2vpn pw Flags M main B backup H hub link S spoke link N no split horizon Total number of PWs 2 1 up 1 blocked 0 down 0 defect Xconnect group Name vpna Peer PW ID In Out Label Proto Flag Link ID State 2 2 2 2 20 65651 65779 LDP M 1 Up 3 3 3 3 30 65650 65779 LDP B 1 Blocked Display L2VPN PW informatio...

Страница 421: ...e PW between PE 1 and PE 2 Execute the display l2vpn pw bfd command The output shows that the BFD session becomes down PE1 display l2vpn pw bfd Total number of sessions 1 0 up 1 down 0 init FEC Type PW FEC 128 FEC Info Peer IP 3 3 3 3 PW ID 3 Connection ID 2147483648 Link ID 1 Local Discr 514 Remote Discr 514 Source IP 1 1 1 1 Destination IP 127 0 0 2 Session State Down Session Role Active Templat...

Страница 422: ...itecture A basic MPLS L3VPN architecture has the following types of devices Customer edge device A CE device resides on a customer network and has one or more interfaces directly connected to a service provider network It does not support VPN or MPLS Provider edge device A PE device resides at the edge of a service provider network and connects to one or more CEs All MPLS VPN services are processe...

Страница 423: ...the VPN instance to the PE s interface connected to the site A site can be associated with only one VPN instance and different sites can associate with the same VPN instance A VPN instance contains the VPN membership and routing rules of associated sites VPN IPv4 address Each VPN independently manages its address space The address spaces of VPNs might overlap For example if both VPN 1 and VPN 2 us...

Страница 424: ...d sites before advertising them to other PEs Import target attribute A PE checks the export target attribute of VPN IPv4 routes received from other PEs If the export target attribute matches the import target attribute of a VPN instance the PE adds the routes to the routing table of the VPN instance Route target attributes define which sites can receive VPN IPv4 routes and from which sites a PE ca...

Страница 425: ...E When the MCE functions as the DHCP server the IP addresses assigned to different private networks cannot overlap MCE configuration task list Tasks at a glance Configuring VPN instances 1 Required Creating a VPN instance 2 Required Associating a VPN instance with an interface 3 Optional Configuring route related attributes for a VPN instance Configuring routing on an MCE Required Configuring rout...

Страница 426: ...terface after configuring the command Configuring route related attributes for a VPN instance Step Command Remarks 1 Enter system view system view N A 2 Enter VPN instance view or IPv4 VPN view Enter VPN instance view ip vpn instance vpn instance name Enter IPv4 VPN view a ip vpn instance vpn instance name b address family ipv4 Configurations made in VPN instance view apply to both IPv4 VPN and IP...

Страница 427: ...on includes the following MCE VPN site routing configuration MCE PE routing configuration On the PE do the following Disable routing loop detection to avoid route loss during route calculation Disable route redistribution between routing protocols to save system resources Before you configure routing on an MCE configure VPN instances and bind the VPN instances to the interfaces connected to the VP...

Страница 428: ...instance and enter RIP view rip process id vpn instance vpn instance name Perform this configuration on the MCE On a VPN site create a common RIP process 3 Enable RIP on the interface attached to the specified network network network address By default RIP is disabled on an interface 4 Redistribute remote site routes advertised by the PE into RIP import route protocol process id allow ibgp cost co...

Страница 429: ...resulting in routing loops To avoid such routing loops you can configure route tags for VPN instances on an MCE As a best practice configure the same route tag for the same VPN on the MCEs 6 Redistribute remote site routes advertised by the PE into OSPF import route protocol process id all processes allow ibgp allow direct cost cost nssa only route policy route policy name tag tag type type By def...

Страница 430: ...ommand redistributes routes to the level 2 routing table by default 5 Return to system view quit N A 6 Enter interface view interface interface type interface number N A 7 Enable the IS IS process on the interface isis enable process id By default IS IS is disabled Configuring EBGP between an MCE and a VPN site To run EBGP between an MCE and a VPN site you must configure a BGP peer for each VPN in...

Страница 431: ...nfigure the MCE as an EBGP peer peer group name ip address mask length as number as number N A 4 Enter BGP VPN IPv4 unicast address family view address family ipv4 unicast N A 5 Enable BGP to exchange IPv4 unicast routes with the peer peer group name ip address mask length enable By default BGP does not exchange IPv4 unicast routes with any peer 6 Redistribute the IGP routes of the VPN into BGP im...

Страница 432: ... acl number prefix list prefix list name export protocol process id By default BGP does not filter advertised routes 10 Optional Configure filtering of received routes filter policy acl number prefix list prefix list name import By default BGP does not filter received routes 2 Configure a VPN site Step Command Remarks 1 Enter system view system view N A 2 Enter BGP view bgp as number N A 3 Configu...

Страница 433: ...efault preference value The default preference is 60 Configuring RIP between an MCE and a PE Step Command Remarks 1 Enter system view system view N A 2 Create a RIP process for a VPN instance and enter RIP view rip process id vpn instance vpn instance name N A 3 Enable RIP on the interface attached to the specified network network network address By default RIP is disabled on an interface 4 Redist...

Страница 434: ...g tag type type By default no routes are redistributed into OSPF 8 Optional Configure OSPF to redistribute the default route default route advertise summary cost cost By default OSPF does not redistribute the default route This command redistributes the default route in a Type 3 LSA The MCE advertises the default route to the PE 9 Optional Configure filtering of advertised routes filter policy acl...

Страница 435: ...t no IS IS process is enabled Configuring EBGP between an MCE and a PE Step Command Remarks 1 Enter system view system view N A 2 Enter BGP view bgp as number N A 3 Enter BGP VPN instance view ip vpn instance vpn instance name N A 4 Configure the PE as an EBGP peer peer group name ip address mask length as number as number N A 5 Enter BGP VPN IPv4 unicast address family view address family ipv4 un...

Страница 436: ... default BGP does not filter advertised routes 9 Optional Configure filtering of received routes filter policy acl number prefix list prefix list name import By default BGP does not filter received routes Displaying and maintaining MCE Execute display commands in any view Task Command Display information about a specified or all VPN instances display ip vpn instance instance name vpn instance name...

Страница 437: ...e VPN instances on the MCE and PE 1 On the MCE configure VPN instances vpn1 and vpn2 and specify an RD and route targets for each VPN instance MCE system view MCE ip vpn instance vpn1 MCE vpn instance vpn1 route distinguisher 10 1 MCE vpn instance vpn1 vpn target 10 1 MCE vpn instance vpn1 quit MCE ip vpn instance vpn2 MCE vpn instance vpn2 route distinguisher 20 1 MCE vpn instance vpn2 vpn target...

Страница 438: ...nce vpn1 PE1 vpn instance vpn1 route distinguisher 10 1 PE1 vpn instance vpn1 vpn target 10 1 PE1 vpn instance vpn1 quit PE1 ip vpn instance vpn2 PE1 vpn instance vpn2 route distinguisher 20 1 PE1 vpn instance vpn2 vpn target 20 1 PE1 vpn instance vpn2 quit 2 Configure routing between the MCE and VPN sites The MCE is connected to VPN 1 directly and no routing protocol is enabled in VPN 1 Therefore...

Страница 439: ...ertise subnet 10 214 20 0 MCE ospf 2 area 0 MCE ospf 2 area 0 0 0 0 network 10 214 20 0 0 0 0 255 MCE ospf 2 area 0 0 0 0 quit MCE ospf 2 quit On VR 2 assign IP address 10 214 20 2 24 to the interface connected to MCE and 192 168 10 1 24 to the interface connected to VPN 2 Details not shown Configure OSPF process 2 and advertise subnets 192 168 10 0 and 10 214 20 0 VR2 system view VR2 ospf 2 VR2 o...

Страница 440: ...0 PE1 FortyGigE1 0 1 quit On the MCE create VLAN 30 and VLAN interface 30 bind the VLAN interface to VPN instance vpn1 and configure an IP address for the VLAN interface MCE vlan 30 MCE vlan30 quit MCE interface vlan interface 30 MCE Vlan interface30 ip binding vpn instance vpn1 MCE Vlan interface30 ip address 30 1 1 1 24 MCE Vlan interface30 quit On the MCE create VLAN 40 and VLAN interface 40 bi...

Страница 441: ...r id 100 100 10 1 vpn instance vpn1 Set the domain ID to 10 PE1 ospf 10 domain id 10 Advertise subnet 30 1 1 0 in area 0 PE1 ospf 10 area 0 PE1 ospf 10 area 0 0 0 0 network 30 1 1 0 0 0 0 255 PE1 ospf 10 area 0 0 0 0 quit PE1 ospf 10 quit Use similar procedures to configure OSPF process 20 between MCE and PE 1 and redistribute VPN 2 s routing information Details not shown Verifying the configurati...

Страница 442: ...2 Vlan40 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 192 168 10 0 24 OSPF 150 1 40 1 1 1 Vlan40 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 The routing information for the two VPNs has been re...

Страница 443: ...CE ospf 10 area 0 MCE ospf 10 area 0 0 0 0 network 10 214 10 0 0 0 0 255 MCE ospf 10 area 0 0 0 0 quit MCE ospf 10 quit Display the routing table of VPN 1 on the MCE MCE display ip routing table vpn instance vpn1 Destinations 13 Routes 13 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 10 214 10 0 24 Direct 0 0 10 214 10 3 Vlan10 10 214 10 0 32 Direct 0 0 ...

Страница 444: ...214 20 3 Vlan20 10 214 20 3 32 Direct 0 0 127 0 0 1 InLoop0 10 214 20 255 32 Direct 0 0 10 214 20 3 Vlan20 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 192 168 10 0 24 OSPF 10 2 10 214 20 2 Vlan20 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 ...

Страница 445: ... InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 192 168 0 0 24 BGP 255 3 30 1 1 1 Vlan30 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 Display the routing information for VPN 2 on PE 1 PE1 display ip routing table vpn instance vpn2 Destinations 13 Routes 13 Destination Ma...

Страница 446: ...437 The MCE has redistributed the OSPF routes of the two VPN instances into the EBGP routing tables of PE 1 ...

Страница 447: ... routing between an MCE and a VPN site Required Configuring routing between an MCE and a PE Configuring VPN instances VPN instances isolate VPN routes from public network routes and routes among VPNs You must configure VPN instances for an MCE network Creating a VPN instance A VPN instance is associated with a site It is a collection of the VPN membership and routing rules of its associated site A...

Страница 448: ...a PE by using the following process 1 When a VPN route learned from a CE gets redistributed into BGP BGP associates it with a route target extended community attribute list which is usually the export target attribute of the VPN instance associated with the CE 2 The VPN instance determines which routes it can accept and redistribute according to the import extcommunity in the route target 3 The VP...

Страница 449: ...evice does not filter routes to be advertised For information about routing policies see Layer 3 IP Routing Configuration Guide 7 Apply a tunnel policy to the VPN instance tnl policy tunnel policy name By default only one tunnel is selected no load balancing in this order LSP tunnel and CRLSP tunnel The specified tunnel policy must have been created For information about tunnel policies see Config...

Страница 450: ...tic routes ipv6 route static default preference default preference value The default preference for IPv6 static routes is 60 Configuring RIPng between an MCE and a VPN site A RIPng process belongs to the public network or a single IPv6 VPN instance If you create a RIPng process without binding it to an IPv6 VPN instance the process belongs to the public network By configuring RIPng process to IPv6...

Страница 451: ... OSPFv3 domain ID domain id domain id secondary null The default domain ID is 0 Perform this configuration on the MCE All OSPF processes of the same VPN must be configured with the same OSPF domain ID to ensure correct route advertisement 5 Redistribute remote site routes advertised by the PE import route protocol process id all processes allow ibgp allow direct cost cost nssa only route policy ro...

Страница 452: ... and a VPN site To use EBGP between an MCE and IPv6 VPN sites you must configure a BGP peer for each IPv6 VPN instance on the MCE and redistribute the IGP routes of each VPN instance on the IPv6 VPN sites You can also configure the filtering of received and advertised routes 1 Configure the MCE Step Command Remarks 1 Enter system view system view N A 2 Enter BGP view bgp as number N A 3 Enter BGP ...

Страница 453: ...GP between an MCE and a VPN site you must configure a BGP peer for each IPv6 VPN instance on the MCE and redistribute the IGP routes of each VPN instance on the VPN site 1 Configure the MCE Step Command Remarks 1 Enter system view system view N A 2 Enter BGP view bgp as number N A 3 Enter BGP VPN instance view ip vpn instance vpn instance name N A 4 Configure an IBGP peer peer group name ipv6 addr...

Страница 454: ...y view address family ipv6 unicast N A 5 Enable BGP to exchange IPv6 unicast routes with the peer peer group name ipv6 address prefix length enable By default BGP does not exchange IPv6 unicast routes with any peer 6 Redistribute the IGP routes of the VPN into BGP import route protocol process id allow direct med med value route policy route policy name By default no routes are redistributed into ...

Страница 455: ...llow direct cost cost route policy route policy name By default no routes are redistributed into RIPng 4 Optional Configure the default cost value for redistributed routes default cost value The default value is 0 5 Return to system view quit N A 6 Enter interface view interface interface type interface number N A 7 Enable the RIPng process on the interface ripng process id enable By default RIPng...

Страница 456: ...ter system view system view N A 2 Create an IS IS process for an IPv6 VPN instance and enter IS IS view isis process id vpn instance vpn instance name N A 3 Configure a network entity title network entity net By default no NET is configured 4 Enable IPv6 for the IS IS process ipv6 enable By default IPv6 is disabled 5 Optional Redistribute VPN routes ipv6 import route protocol process id allow ibgp...

Страница 457: ...outes filter policy acl6 number prefix list ipv6 prefix name import By default BGP does not filter received routes Configuring IBGP between an MCE and a PE Step Command Remarks 1 Enter system view system view N A 2 Enter BGP view bgp as number N A 3 Enter BGP VPN instance view ip vpn instance vpn instance name N A 4 Configure the PE as an IBGP peer peer group name ipv6 address prefix length as num...

Страница 458: ...display bgp peer ipv6 unicast vpn instance vpn instance name ipv6 address prefix length ipv6 address group name group name log info ipv6 address verbose standby slot slot number For commands that display information about a routing table see Layer 3 IP Routing Command Reference For more information about the display bgp group and display bgp peer commands see Layer 3 IP Routing Command Reference I...

Страница 459: ...tance vpn1 vpn target 10 1 MCE vpn instance vpn1 quit MCE ip vpn instance vpn2 MCE vpn instance vpn2 route distinguisher 20 1 MCE vpn instance vpn2 vpn target 20 1 MCE vpn instance vpn2 quit Create VLAN 10 add port Ten GigabitEthernet 1 0 1 to VLAN 10 and create VLAN interface 10 MCE vlan 10 MCE vlan10 port ten gigabitethernet 1 0 1 MCE vlan10 quit CE VPN 1 Site 2 CE VPN 2 Site 1 PE 1 PE 3 PE 2 VP...

Страница 460: ...nce vpn2 quit 2 Configure routing between the MCE and VPN sites The MCE is connected to VPN 1 directly and no routing protocol is enabled in VPN 1 Therefore you can configure IPv6 static routes On VR 1 assign IPv6 address 2001 1 2 64 to the interface connected to the MCE and 2012 1 2 64 to the interface connected to VPN 1 Add ports to VLANs Details not shown On VR 1 configure a default route with ...

Страница 461: ...4 Protocol Direct NextHop Preference 0 Interface Vlan10 Cost 0 Destination 2001 1 1 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 2012 1 64 Protocol Static NextHop 2001 1 2 Preference 60 Interface Vlan10 Cost 0 Destination FE80 10 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 Destination FF00 8 Protocol Direct NextHop Preference 0 Interface NULL0 Cos...

Страница 462: ...CE Ten GigabitEthernet1 0 3 port trunk permit vlan 30 40 MCE Ten GigabitEthernet1 0 3 quit On PE 1 configure the port connected to MCE as a trunk port and configure it to permit packets of VLAN 30 and VLAN 40 to pass with VLAN tags PE1 interface ten gigabitethernet 1 0 1 PE1 Ten GigabitEthernet1 0 1 port link type trunk PE1 Ten GigabitEthernet1 0 1 port trunk permit vlan 30 40 PE1 Ten GigabitEther...

Страница 463: ...s to VPN instance vpn1 and redistribute the IPv6 static route of VPN 1 MCE ospfv3 10 vpn instance vpn1 MCE ospfv3 10 router id 101 101 10 1 MCE ospfv3 10 import route static MCE ospfv3 10 quit Enable OSPFv3 on VLAN interface 30 MCE interface vlan interface 30 MCE Vlan interface30 ospfv3 10 area 0 0 0 0 MCE Vlan interface30 quit On PE 1 enable OSPFv3 process 10 and bind the process to VPN instance ...

Страница 464: ...play the routing table for VPN instance vpn2 The output shows that PE 1 has learned the private route of VPN 2 through OSPFv3 PE1 display ipv6 routing table vpn instance vpn2 Destinations 6 Routes 6 Destination 1 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 40 64 Protocol Direct NextHop Preference 0 Interface Vlan40 Cost 0 Destination 40 2 128 Protocol Direct Nex...

Страница 465: ...456 NextHop Preference 0 Interface NULL0 Cost 0 The routing information for the two VPNs has been added into the routing tables on PE 1 ...

Страница 466: ...east one x y Asterisk marked square brackets enclose optional syntax choices separated by vertical bars from which you select one choice multiple choices or none 1 n The argument or keyword and argument combination before the ampersand sign can be entered 1 to n times A line that starts with a pound sign is comments GUI conventions Convention Description Boldface Window names button names field na...

Страница 467: ...epresents an access controller a unified wired WLAN module or the access controller engine on a unified wired WLAN switch Represents an access point Represents a wireless terminator unit Represents a wireless terminator Represents a mesh access point Represents omnidirectional signals Represents directional signals Represents a security product such as a firewall UTM multiservice security gateway ...

Страница 468: ...s provide a mechanism for accessing software updates through the product interface Review your product documentation to identify the recommended software update method To download product updates go to either of the following Hewlett Packard Enterprise Support Center Get connected with updates page www hpe com support e updates Software Depot website www hpe com support softwaredepot To view and u...

Страница 469: ...r self repair CSR programs allow you to repair your product If a CSR part needs to be replaced it will be shipped directly to you so that you can install it at your convenience Some parts do not qualify for CSR Your Hewlett Packard Enterprise authorized service provider will determine whether a repair can be accomplished by CSR For more information about CSR contact your local service provider or ...

Страница 470: ...number edition and publication date located on the front cover of the document For online help content include the product name product version help edition and publication date located on the legal notices page ...

Страница 471: ...rding automatic route advertisement forwarding adjacency 53 MPLS TE traffic forwarding automatic route advertisement IGP shortcut 53 MPLS TE tunnel traffic direction automatic route advertisement 72 VPLS BGP label block information advertisement 363 VPLS BGP PE information advertisement 365 affinity MPLS TE tunnel constraints 65 aging VPLS MAC address aging 356 algorithm MPLS TE CSPF path calculat...

Страница 472: ...ation 370 backing up MPLS L3VPN FRR IPv4 route backup VPNv4 route 174 MPLS L3VPN FRR VPNv4 route backup IPv4 route 173 MPLS L3VPN FRR VPNv4 route backup VPNv4 route 173 MPLS TE CRLSP backup 74 MPLS TE CRLSP backup configuration 104 MPLS TE CRLSP hot standby backup 56 MPLS TE CRLSP ordinary backup 56 backoff mechanism LDP 25 bandwidth MPLS TE automatic bandwidth adjustment 71 71 MPLS TE CRLSP dynam...

Страница 473: ...S VSI AC 367 broadcast VPLS traffic flooding 357 VPLS traffic forwarding 357 C calculating MPLS TE CSPF path calculation 52 carrier s carrier IPv6 MPLS L3VPN 297 MPLS L3VPN 165 225 MPLS L3VPN Level 1 carrier 165 MPLS L3VPN Level 2 carrier 165 CCC MPLS L2VPN BGP PW remote CCC connection 320 MPLS L2VPN remote CCC connection 335 CE IPv6 MPLS L3VPN BGP VPNv6 route control 274 IPv6 MPLS L3VPN inter AS ...

Страница 474: ...PN OSPF sham link 277 IPv6 MPLS L3VPN OSPFv3 sham link 304 IPv6 MPLS L3VPN PE CE EBGP 271 IPv6 MPLS L3VPN PE CE IBGP 272 IPv6 MPLS L3VPN PE CE routing 268 IPv6 MPLS L3VPN PE CE IPv6 IS IS 271 IPv6 MPLS L3VPN PE CE OSPFv3 269 IPv6 MPLS L3VPN PE CE RIPng 269 IPv6 MPLS L3VPN PE CE static routing 268 IPv6 MPLS L3VPN PE PE routing 274 IPv6 MPLS L3VPN VPN instance 266 IPv6 MPLS L3VPN VPN instance route ...

Страница 475: ...option C 185 MPLS L3VPN inter AS VPN option C ASBR 186 MPLS L3VPN inter AS VPN option C PE 185 MPLS L3VPN inter AS VPN option C routing policy 187 MPLS L3VPN loopback interface 190 MPLS L3VPN nested VPN 188 233 MPLS L3VPN OSPF sham link 190 249 MPLS L3VPN PE CE EBGP 179 MPLS L3VPN PE CE IBGP 180 MPLS L3VPN PE CE IS IS 178 MPLS L3VPN PE CE OSPF 177 MPLS L3VPN PE CE RIP 177 MPLS L3VPN PE CE routing ...

Страница 476: ... block information advertisement 363 VPLS BGP PE information advertisement 365 VPLS BGP PW 363 377 VPLS LDP PW 363 375 VPLS LDP PW BGP auto discovery 365 382 VPLS MAC address learning 369 VPLS PW 362 VPLS PW class 362 VPLS static PW 362 370 VPLS UPE dual homing 367 VPLS UPE dual homing redundant LDP PWs 368 VPLS UPE dual homing redundant static PWs 368 VPLS VSI 362 connecting MPLS L2VPN BGP PW rem...

Страница 477: ...cting LDP loop detection 29 MPLS TE FRR node fault detection 79 MPLS TE loop detection 70 device customer edge device See CE H VPLS configuration MPLS access 386 H VPLS UPE dual homing configuration 390 IPv6 MCE configuration 438 438 449 IPv6 MCE VPN instance 438 IPv6 MCE VPN instance route related attributes 439 IPv6 MCE VPN instance interface association 439 IPv6 MPLS L3VPN 266 IPv6 MPLS L3VPN b...

Страница 478: ...guration redundant LDP PWs 368 VPLS UPE dual homing configuration redundant static PWs 368 dynamic MPLS LSP establishment 3 MPLS OAM BFD session mode 397 MPLS TE CRLSP establishment 51 MPLS TE tunnel configuration dynamic CRLSP 63 E EBGP IPv6 MCE PE EBGP 448 IPv6 MCE PE routing 445 IPv6 MCE VPN site EBGP 443 IPv6 MPLS L3VPN PE CE EBGP 271 MCE PE EBGP 426 MCE VPN site EBGP 421 MPLS L3VPN hub spoke ...

Страница 479: ...h adjustment 55 MPLS TE tunnel automatic route advertisement traffic direction forwarding adjacency 73 MPLS TE tunnel reoptimization 55 preferred tunnel configuration 152 preferred tunnel selection order 153 tunnel policy configuration 150 152 tunnel selection order configuration 153 VPLS broadcast traffic forwarding 357 VPLS multicast traffic forwarding 357 VPLS unicast traffic forwarding 357 FRR...

Страница 480: ...ation 390 UPE redundancy 359 I IBGP IPv6 MCE PE IBGP 448 IPv6 MCE VPN site IBGP 444 IPv6 MPLS L3VPN PE CE IBGP 272 MCE PE IBGP configuration 427 MCE VPN site IBGP 422 MPLS L3VPN PE CE IBGP 180 ICMP MPLS TTL expired message send 9 identifying LDP identifier 15 IETF DS TE MPLS TE DiffServ aware TE mode 57 MPLS TE IETF DS TE configuration 120 IGP LDP IGP synchronization 21 31 MPLS TE attribute advert...

Страница 481: ...D5 authentication 26 LDP NSR 20 LDP NSR configuration 31 LDP operation 16 LDP session parameters 24 LDP session protection 30 LDP session reset 33 LDP SNMP notification 33 LDP IGP synchronization 21 31 LDP IS IS synchronization 32 LDP OSPF synchronization 31 MPLS basics configuration 1 5 static LSP configuration 11 12 IPv4 MCE PE EBGP configuration 426 MCE PE IBGP configuration 427 MPLS L3VPN FRR ...

Страница 482: ...68 PE CE IPv6 IS IS 271 PE CE OSPFv3 269 PE CE RIPng 269 PE CE static routing 268 PE PE routing 274 routing information advertisement 265 VPN instance 266 VPN instance creation 266 VPN instance route related attributes 267 VPN instance interface association 267 IS IS LDP IS IS synchronization 32 MCE PE IS IS 425 MCE VPN site IS IS 420 MPLS L3VPN PE CE IS IS configuration 178 MPLS TE attribute adve...

Страница 483: ...ncy configuration 322 MPLS L2VPN multi segment PW configuration inter domain on router 347 MPLS L2VPN multi segment PW configuration intra domain on router 344 MPLS OAM BFD for VPLS LDP PW 404 nonstop routing NSR 20 nonstop routing NSR configuration 31 operation 16 OSPF synchronization 31 peer discovery 16 peer maintenance 16 protocols and standards 22 session establishment 16 session maintenance ...

Страница 484: ... 399 MPLS OAM tracert for LSP periodic 400 MPLS static LSP establishment 3 MPLS TE auto FRR configuration 114 MPLS TE bidirectional tunnel configuration 98 MPLS TE configuration 51 60 80 MPLS TE CRLSP backup configuration 104 MPLS TE FRR manual bypass tunnel 108 MPLS TE IETF DS TE configuration 120 MPLS TE inter AS tunnel establishment RSVP TE 91 MPLS TE tunnel establishment RSVP TE 85 MPLS TE tun...

Страница 485: ...ation 137 RSVP refresh message 136 RSVP reliable message delivery 136 RSVP Srefresh mechanism 136 RSVP TE message types 135 mode H VPLS Ethernet access 358 H VPLS MPLS access 358 LDP label advertisement downstream on demand DoD 17 LDP label advertisement downstream unsolicited DU 17 LDP label distribution control 27 LDP label retention conservative 18 LDP label retention liberal 18 MPLS L2VPN pseu...

Страница 486: ... BGP label block information advertisement 318 BGP PW configuration 318 331 BGP PW creation 319 BGP PW remote CCC connection 320 configuration 310 315 323 cross connect configuration 316 cross connect attachment circuit AC binding 320 display 322 enable 315 H VPLS configuration MPLS access 386 H VPLS UPE dual homing configuration 390 LDP PW configuration 317 327 LDP PW redundancy 322 LDP PW redund...

Страница 487: ...te IS IS 420 MCE VPN site OSPF 419 MCE VPN site RIP 419 MCE VPN site routing 418 MCE VPN site static routing 418 MP BGP 157 nested VPN 167 188 233 nested VPN routing information propagation 167 networking scheme 159 networking scheme basic 159 networking scheme extranet 160 networking scheme hub spoke 159 OSPF area PE CE configuration 169 OSPF sham link 171 190 OSPF sham link configuration 249 OSP...

Страница 488: ...RR optimal bypass tunnel selection interval 79 IETF DS TE configuration 120 inter AS tunnel establishment RSVP TE 91 IPv6 MCE configuration 449 IPv6 MPLS L3VPN 266 280 IPv6 MPLS L3VPN carrier s carrier 297 IPv6 MPLS L3VPN configuration 264 280 IPv6 MPLS L3VPN inter AS option A 286 IPv6 MPLS L3VPN inter AS option C 291 IPv6 MPLS L3VPN OSPFv3 sham link 304 link attribute advertisement IGP TE extensi...

Страница 489: ...tance 438 IPv6 MCE VPN instance creation 438 IPv6 MCE VPN instance route related attributes 439 IPv6 MCE VPN instance interface association 439 IPv6 MCE PE EBGP 448 IPv6 MCE PE IBGP 448 IPv6 MCE PE IPv6 IS IS 447 IPv6 MCE PE IPv6 static routing 445 IPv6 MCE PE OSPFv3 446 IPv6 MCE PE RIPng 446 IPv6 MCE PE routing 445 IPv6 MCE VPN site EBGP 443 IPv6 MCE VPN site IBGP 444 IPv6 MCE VPN site IPv6 IS IS...

Страница 490: ...PN site IBGP 422 MCE VPN site IS IS 420 MCE VPN site OSPF 419 MCE VPN site RIP 419 MCE VPN site routing 418 MCE VPN site static routing 418 MPLS control plane 2 MPLS egress label type advertisement 6 MPLS FEC 1 MPLS FEC label format 1 MPLS forwarding plane 2 MPLS forwarding process 4 MPLS forwarding statistics 9 MPLS L2VPN attachment circuit AC configuration 316 MPLS L2VPN BGP PW 318 MPLS L2VPN BG...

Страница 491: ...170 MPLS L3VPN site 155 413 MPLS L3VPN SNMP notification 194 MPLS L3VPN VPN instance 156 175 414 MPLS L3VPN VPN instance creation 175 MPLS L3VPN VPN instance route related attributes 176 MPLS L3VPN VPN instance interface association 176 MPLS L3VPN VPN IPv4 address 156 414 MPLS LFIB 2 MPLS LSP 2 MPLS LSP establishment 3 MPLS LSR 2 MPLS MTU configuration 6 MPLS OAM BFD for LSP 399 405 MPLS OAM BFD f...

Страница 492: ...0 315 323 MPLS L3VPN 196 MPLS L3VPN architecture 155 413 MPLS L3VPN configuration 155 174 MPLS OAM configuration 397 405 MPLS TE configuration 51 60 80 RSVP configuration 135 138 143 static CRLSP configuration 128 129 static LSP configuration 11 12 tunnel policy configuration 150 152 VPLS architecture 355 VPLS configuration 355 360 370 node MPLS TE FRR node fault detection 79 RSVP configuration 13...

Страница 493: ...448 IPv6 MCE PE IPv6 IS IS 447 IPv6 MCE PE IPv6 static routing 445 IPv6 MCE PE OSPFv3 446 IPv6 MCE PE RIPng 446 IPv6 MCE PE routing 445 IPv6 MCE VPN site EBGP 443 IPv6 MCE VPN site IBGP 444 IPv6 MCE VPN site IPv6 IS IS 442 IPv6 MCE VPN site OSPFv3 442 IPv6 MCE VPN site RIPng 441 IPv6 MCE VPN site static routing 441 IPv6 MPLS L3VPN BGP VPNv6 route control 274 IPv6 MPLS L3VPN inter AS IPv6 VPN 275 I...

Страница 494: ... priority 66 procedure advertising MPLS TE link attribute IGP TE extension 64 associating IPv6 MCE VPN instance interface 439 associating IPv6 MPLS L3VPN VPN instance interface 267 associating MCE VPN instance interface 417 associating MPLS L3VPN VPN instance interface 176 binding VPLS VSI AC 367 configuring exclusive tunnel 152 configuring H VPLS MPLS access 386 configuring H VPLS UPE dual homing...

Страница 495: ...P NSR 31 configuring LDP session parameter Basic Discovery 25 configuring LDP session parameter Extended Discovery 25 configuring LDP session protection 30 configuring LDP IGP synchronization 31 configuring LDP IS IS synchronization 32 configuring LDP OSPF synchronization 31 configuring LSP targeted hello timer 24 configuring MCE 416 428 configuring MCE EBGP VPN route advertisement 433 configuring...

Страница 496: ...P 180 configuring MPLS L3VPN PE CE IS IS 178 configuring MPLS L3VPN PE CE OSPF 177 configuring MPLS L3VPN PE CE RIP 177 configuring MPLS L3VPN PE CE routing 177 configuring MPLS L3VPN PE CE static routing 177 configuring MPLS L3VPN PE PE routing 181 configuring MPLS L3VPN VPN instance 175 configuring MPLS L3VPN VPN instance route related attribute 176 configuring MPLS MTU 6 configuring MPLS OAM BF...

Страница 497: ...g RSVP packet DSCP value 141 configuring RSVP refresh 138 configuring RSVP reliable message delivery 139 configuring RSVP Srefresh 139 configuring static CRLSP 128 129 configuring static LSP 12 configuring tunnel policy 150 configuring tunnel selection order 153 configuring VPLS 360 configuring VPLS AC 361 configuring VPLS BGP label block information advertisement 363 configuring VPLS BGP PE infor...

Страница 498: ...PE VPN label processing mode 191 troubleshooting MPLS TE no TE LSA generated 127 propagating MPLS L3VPN nested VPN information 167 MPLS TTL 7 protocols and standards IPv6 MPLS L3VPN 265 LDP 22 MPLS 5 MPLS L3VPN 174 MPLS OAM 398 MPLS TE 59 RSVP 138 provider device See P device edge device See PE PSC MPLS TE bidirectional tunnel 59 Pseudo Wire Emulation Edge to Edge Use PWE3 pseudowire See PW public...

Страница 499: ... mechanism 136 reliable message delivery RSVP 136 139 remote MPLS L2VPN BGP PW remote CCC connection 320 MPLS L2VPN remote CCC connection 335 MPLS L2VPN remote connection configuration 315 reoptimizing MPLS TE tunnel reoptimization 55 resetting LDP session 33 Resource Reservation Protocol See RSVP TE restrictions MPLS TE FRR bypass tunnel on PLR 77 static LSP configuration 12 Resv message RSVP TE ...

Страница 500: ...MCE VPN site routing 441 IPv6 MPLS L3VPN loopback interface address redistribution 277 IPv6 MPLS L3VPN network schemes 265 IPv6 MPLS L3VPN OSPFv3 sham link 304 IPv6 MPLS L3VPN packet forwarding 264 IPv6 MPLS L3VPN PE CE EBGP 271 IPv6 MPLS L3VPN PE CE IBGP 272 IPv6 MPLS L3VPN PE CE routing 268 IPv6 MPLS L3VPN PE CE IPv6 IS IS 271 IPv6 MPLS L3VPN PE CE OSPFv3 269 IPv6 MPLS L3VPN PE CE RIPng 269 IPv6...

Страница 501: ...routing 72 RSVP configuration 135 138 143 RSVP GR configuration 147 RSVP TE EXPLICIT_ROUTE object 135 RSVP TE RECORD_ROUTE object 135 RSVP TE tunnel establishment 143 RSVP authentication 137 authentication configuration 140 BFD enable 142 configuration 135 138 143 CRLSP setup 136 display 142 enable 138 GR configuration 142 147 Graceful Restart GR 137 hello extension configuration 139 maintain 142 ...

Страница 502: ... SNMP notifications 9 SPE MPLS L3VPN HoVPN 189 specifying MPLS egress label type advertisement 6 MPLS L3VPN egress PE VPN label processing mode 191 Srefresh RSVP Srefresh configuration 139 static IPv6 MCE PE IPv6 static routing 445 IPv6 MCE VPN site static routing 441 IPv6 MPLS L3VPN PE CE static routing 268 label switched path Use LSP MCE PE static routing 424 MCE VPN site static routing 418 MPLS...

Страница 503: ...ng See traffic forwarding VPLS broadcast traffic flooding 357 VPLS multicast traffic flooding 357 VPLS unicast traffic flooding 357 357 traffic forwarding MPLS TE 53 MPLS TE automatic route advertisement forwarding adjacency 53 MPLS TE automatic route advertisement IGP shortcut 53 MPLS TE CRLSP backup 56 MPLS TE FRR 56 MPLS TE make before break 54 MPLS TE static routing 53 MPLS TE traffic forwardi...

Страница 504: ...PLS 358 H VPLS dual homing 359 359 H VPLS UPE dual homing 390 MPLS L3VPN HoVPN 189 VPLS UPE dual homing configuration 367 VPLS UPE dual homing configuration redundant LDP PWs 368 VPLS UPE dual homing configuration redundant static PWs 368 user facing network provider edge Use UPE V VCCV MPLS L2VPN pseudowire 314 MPLS OAM for PW 401 virtual private LAN service Use VPLS switch instance Use VSI Virtu...

Страница 505: ...57 UPE dual homing configuration 367 UPE dual homing configuration redundant LDP PWs 368 UPE dual homing configuration redundant static PWs 368 VSI configuration 362 VSI AC binding 367 VPN exclusive tunnel configuration 152 hierarchy of VPN See HoVPN IPv6 MPLS L3VPN See IPv6 MPLS L3VPN Layer 2 MPLS VPN See MPLS L2VPN MPLS L3VPN See MPLS L3VPN MPLS L3VPN VPN IPv4 address 156 414 preferred tunnel co...

Отзывы:

Нет отзывов

Похожие инструкции для FlexNetwork 5510 HI Series

Бренд: GE Страницы: 4

Бренд: Nayar Systems Страницы: 37

Бренд: Yamaha Страницы: 24

Бренд: Yamaha Страницы: 5

Бренд: D-Link Страницы: 213

TotalStorage SAN16M-R SAN

Бренд: IBM Страницы: 116

Бренд: NETGEAR Страницы: 2

AT-8550/SP Series

Бренд: Allied Telesis Страницы: 114

Бренд: Belkin Страницы: 57

Бренд: ZyXEL Communications Страницы: 422

8677 - BladeCenter Rack-mountable - Power Supply

Бренд: IBM Страницы: 126

Бренд: Kohler Страницы: 32

Бренд: Kaptia Страницы: 14

MMAC-Plus 9G536-04

Бренд: Cabletron Systems Страницы: 42

Бренд: Supermicro Страницы: 15

Бренд: TP-Link Страницы: 57

Бренд: ADTRAN Страницы: 20

Ethernet MCA 10/100 Adapter

Бренд: Olicom Страницы: 88

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды