HP FlexNetwork HSR6600, Configuration Manual

Page 1: ...HPE FlexNetwork HSR6600 Routers Comware 7 MPLS Configuration Guide Part number 5200 3476 Software version HSR6602 CMW710 R7607 Document version 6W100 20170412 ...

Page 2: ...tware Computer Software Documentation and Technical Data for Commercial Items are licensed to the U S Government under vendor s standard commercial license Links to third party websites take you outside the Hewlett Packard Enterprise website Hewlett Packard Enterprise has no control over and is not responsible for information outside the Hewlett Packard Enterprise website Acknowledgments Intel Ita...

Page 3: ...ion prerequisites 12 Configuration procedure 13 Displaying static LSPs 13 Static LSP configuration example 13 Network requirements 13 Configuration restrictions and guidelines 14 Configuration procedure 14 Verifying the configuration 15 Configuring LDP 17 Overview 17 Terminology 17 LDP messages 17 LDP operation 18 Label distribution and control 19 LDP GR 21 LDP NSR 22 LDP IGP synchronization 23 LD...

Page 4: ...E 71 MPLS TE basic concepts 71 Static CRLSP establishment 71 Dynamic CRLSP establishment 71 CRLSP establishment using PCE path calculation 73 Traffic forwarding 74 Make before break 75 Route pinning 76 Tunnel reoptimization 76 Automatic bandwidth adjustment 76 CRLSP backup 77 FRR 77 DiffServ aware TE 78 Bidirectional MPLS TE tunnel 80 CBTS 80 Protocols and standards 81 MPLS TE configuration task l...

Page 5: ...h RSVP TE 112 Establishing an inter AS MPLS TE tunnel with RSVP TE 118 Establishing an inter area MPLS TE tunnel over a CRLSP calculated by PCEs 125 Bidirectional MPLS TE tunnel configuration example 130 CRLSP backup configuration example 136 Manual bypass tunnel for FRR configuration example 140 Auto FRR configuration example 145 IETF DS TE configuration example 151 CBTS configuration example 158...

Page 6: ...S L3VPN configuration task list 215 Configuring basic MPLS L3VPN 216 Configuration prerequisites 216 Configuring VPN instances 216 Configuring routing between a PE and a CE 218 Configuring routing between PEs 223 Configuring BGP VPNv4 route control 223 Configuring inter AS VPN 225 Configuring inter AS option A 225 Configuring inter AS option B 225 Configuring inter AS option C 226 Configuring nest...

Page 7: ... routing between a PE and a CE 327 Configuring routing between PEs 332 Configuring BGP VPNv6 route control 332 Configuring inter AS IPv6 VPN 334 Configuring inter AS IPv6 VPN option A 334 Configuring inter AS IPv6 VPN option B 335 Configuring inter AS IPv6 VPN option C 336 Configuring multirole host 337 Configuring and applying IPv6 PBR 337 Configuring an IPv6 static route 338 Configuring an OSPFv...

Page 8: ...ing IP interworking over local MPLS L2VPN connections 409 Configuring a static PW 411 Configuring an LDP PW 414 Configuring IP interworking over an LDP PW 418 Configuring a BGP PW 422 Configuring a remote CCC connection 426 Configuring an intra domain multi segment PW 429 Configuring an inter domain multi segment PW 432 Configuring VPLS 439 Overview 439 Basic VPLS architecture 439 VPLS implementat...

Page 9: ...ards 497 Configuring MPLS OAM for LSP tunnels 497 Configuring MPLS ping for LSPs 497 Configuring MPLS tracert for LSPs 498 Configuring BFD for LSPs 498 Configuring periodic MPLS tracert for LSPs 499 Configuring MPLS OAM for MPLS TE tunnels 499 Configuring MPLS ping for MPLS TE tunnels 499 Configuring MPLS tracert for MPLS TE tunnels 500 Configuring BFD for MPLS TE tunnels 500 Configuring MPLS OAM ...

Page 10: ...g the configuration 542 Configuring static SR over MPLS 544 Overview 544 About SR and SRLSP 544 How static SR over MPLS works 544 Protocols and standards 545 Static SR over MPLS configuration task list 545 Prerequisites 545 Configuring an adjacency path 546 Configuring a static SRLSP 546 Binding a static SRLSP to an MPLS TE tunnel interface 546 Displaying and maintaining static SRLSP 547 Static SR...

Page 11: ...such as VPN traffic engineering and QoS Basic concepts FEC MPLS groups packets with the same characteristics such as packets with the same destination or service class into a forwarding equivalence class FEC Packets of the same FEC are handled in the same way on an MPLS network Label A label uniquely identifies an FEC and has local significance Figure 1 Format of a label A label is encapsulated be...

Page 12: ...orwarding the packet The information includes the label operation type the outgoing label value and the next hop Control plane and forwarding plane An MPLS node consists of a control plane and a forwarding plane Control plane Assigns labels distributes FEC label mappings to neighbor LSRs creates the LFIB and establishes and removes LSPs Forwarding plane Forwards packets according to the LFIB MPLS ...

Page 13: ...nd maintains LSPs Label distribution protocols include protocols designed specifically for label distribution such as the Label Distribution Protocol LDP and protocols extended to support label distribution such as MP BGP and RSVP TE In this document the term label distribution protocols refers to all protocols for label distribution The term LDP refers to the RFC 5036 LDP A dynamic LSP is establi...

Page 14: ...a Identifies the LFIB entry that has an incoming label of 40 b Uses the outgoing label 50 of the entry to replace label 40 in the packet c Forwards the labeled packet out of the outgoing interface GigabitEthernet 1 1 2 to the next hop LSR Router D 3 When receiving the labeled packet Router D the egress LSR processes the packet as follows a Identifies the LFIB entry that has an incoming label of 50...

Page 15: ...s the packet to the egress node The egress node directly forwards the packet Sometimes the egress node must use the TC field in the label to perform QoS To keep the TC information you can configure the egress node to send the penultimate node an explicit null label of 0 If an incoming packet matches an LFIB entry containing the explicit null label the penultimate hop replaces the top label value w...

Page 16: ... ID must be unique in an MPLS network and in IP address format As a best practice use the IP address of a loopback interface as an LSR ID 3 Enter the view of the interface that needs to perform MPLS forwarding interface interface type interface number N A 4 Enable MPLS on the interface mpls enable By default MPLS is disabled on the interface Setting MPLS MTU MPLS adds the label stack between the l...

Page 17: ...s a labeled packet If the egress advertises an implicit null label the penultimate hop directly pops the top label of a matching packet If the egress advertises an explicit null label the penultimate hop swaps the top label value of a matching packet with the explicit null label If the egress advertises a non null label the penultimate hop swaps the top label of a matching packet with the label as...

Page 18: ...label TTL value by 1 The LSR that pops the label copies the remaining label TTL value back to the IP TTL of the packet The IP TTL value can reflect how many hops the packet has traversed in the MPLS network The IP tracert facility can show the real path along which the packet has traveled Figure 6 TTL propagation When TTL propagation is disabled the ingress node sets the label TTL to 255 Each LSR ...

Page 19: ... If the MPLS packet has multiple labels the LSR sends it along the LSP to the egress node which then sends the message back to the source To enable sending MPLS TTL expired messages Step Command Remarks 1 Enter system view system view N A 2 Enable sending MPLS TTL expired messages mpls ttl expiration enable By default this feature is enabled Enabling MPLS forwarding statistics Enabling FTN forward...

Page 20: ...ask length ipv6 ipv6 address prefix length static te ingress lsr id tunnel id By default MPLS label forwarding statistics is disabled for all LSPs 3 Set the MPLS label forwarding statistics collection interval mpls statistics interval interval By default MPLS label forwarding statistics collection interval is not set Enabling split horizon for MPLS forwarding This feature prevents MPLS packets rec...

Page 21: ...th ipv6 ipv6 address prefix length verbose Display MPLS Nexthop Information Base NIB information display mpls nib nib id Display usage information for NIDs display mpls nid nid value1 to nid value2 Display LSP statistics display mpls lsp statistics ipv6 Display MPLS summary information display mpls summary Display ILM entries in standalone mode display mpls forwarding ilm label slot slot number Di...

Page 22: ...ion address the FEC and the next hop or the outgoing interface On each transit node you must specify the incoming label the outgoing label and the next hop or the outgoing interface On the egress node you must specify the incoming label You can associate a static LSP with an LDP LSP to simplify packet processing when the following conditions are met Packets are forwarded over the static LSP and th...

Page 23: ...in label nexthop next hop ip address outgoing interface interface type interface number out label out label If you specify a next hop for the static LSP make sure the transit node has an active route to the specified next hop address 4 Configure the egress node of the static LSP static lsp egress lsp name in label in label destination ip address mask mask length You do not need to configure this c...

Page 24: ...n Figure 8 Details not shown 2 Configure a static route to the destination address of each LSP On Router A configure a static route to network 21 1 1 0 24 RouterA system view RouterA ip route static 21 1 1 0 24 10 1 1 2 On Router C configure a static route to network 11 1 1 0 24 RouterC system view RouterC ip route static 11 1 1 0 255 255 255 0 20 1 1 1 3 Configure basic MPLS on the routers Config...

Page 25: ...ic lsp egress CtoA in label 70 Verifying the configuration Display static LSP information on routers for example on Router A RouterA display mpls static lsp Total 2 Name FEC In Out Label Nexthop Out Interface State AtoC 21 1 1 0 24 NULL 30 10 1 1 2 Up CtoA 70 NULL Up Test the connectivity of the LSP from Router A to Router C RouterA ping mpls a 11 1 1 1 ipv4 21 1 1 0 24 MPLS ping FEC 21 1 1 0 24 w...

Page 26: ...ytes from 10 1 1 1 Sequence 4 time 1 ms 100 bytes from 10 1 1 1 Sequence 5 time 1 ms Ping statistics for FEC 11 1 1 0 24 5 packets transmitted 5 packets received 0 0 packet loss Round trip min avg max 1 1 5 ms ...

Page 27: ... that the label space is a per platform label space A label space number other than 0 indicates a per interface label space LDP uses the same LDP ID format on IPv4 and IPv6 networks An LDP ID must be globally unique FECs and FEC label mappings MPLS groups packets with the same characteristics such as the same destination or service class into a class called an FEC The packets of the same FEC are h...

Page 28: ... mechanism is typically used in LDP session protection LDP over MPLS TE MPLS L2VPN and VPLS For more information about MPLS L2VPN and VPLS see Configuring MPLS L2VPN and Configuring VPLS LDP can establish two hello adjacencies with a directly connected neighbor through both discovery mechanisms It sends Hello messages at the hello interval to maintain a hello adjacency If LDP receives no Hello mes...

Page 29: ... for the FEC an LSP is established exclusively for the FEC Figure 9 Dynamically establishing an LSP Label distribution and control Label advertisement modes LDP advertises label FEC mappings in one of the following ways Downstream Unsolicited DU mode Distributes FEC label mappings to the upstream LSR without waiting for label requests The device supports only the DU mode Downstream on Demand DoD m...

Page 30: ...r that FEC from its downstream LSR unless the local node is the egress node of the FEC As shown in Figure 10 in DU mode an LSR distributes a label mapping for an FEC to its upstream LSR only if it receives a label mapping for the FEC from its downstream LSR In DoD mode when an LSR Transit receives a label request for an FEC from its upstream LSR Ingress it continues to send a label request for the...

Page 31: ...ceived from the GR restarter 3 After LDP completes restart the GR restarter re establishes an LDP session to the GR helper If the LDP session is not set up before the Reconnect timer expires the GR helper deletes the stale FEC label mappings and the corresponding MPLS forwarding entries If the LDP session is successfully set up before the Reconnect timer expires the GR restarter sends the remainin...

Page 32: ...cess position determined by the process placement feature is different from the position where the LDP process is operating Choose LDP NSR or LDP GR to ensure continuous traffic forwarding Device requirements To use LDP NSR an IRF fabric must have two or more member devices and the active and standby processes for LDP reside on different member devices To use LDP GR the IRF fabric can have only on...

Page 33: ...etion By default LDP immediately sends a notification to IGP that LDP convergence has completed However immediate notifications might cause MPLS traffic forwarding interruptions in one of the following scenarios LDP peers use the Ordered label distribution control mode The device has not received a label mapping from downstream at the time LDP notifies IGP that LDP convergence has completed A larg...

Page 34: ... according to the optimal path If a new LSP is not established after IGP route convergence traffic forwarding might be interrupted As a best practice enable LDP IGP synchronization to work with LDP FRR to reduce traffic interruption Figure 14 Network diagram for LDP FRR LDP over MPLS TE As shown in Figure 15 in a layered network MPLS TE is deployed in the core layer and the distribution layer uses...

Page 35: ...ring LDP MD5 authentication Optional Configuring LDP to redistribute BGP unicast routes Optional Configuring an LSP generation policy Optional Configuring the LDP label distribution control mode Optional Configuring a label advertisement policy Optional Configuring a label acceptance policy Optional Configuring LDP loop detection Optional Configuring LDP session protection Optional Configuring LDP...

Page 36: ...ame as the MPLS LSR ID Enabling LDP on an interface Step Command Remarks 1 Enter system view system view N A 2 Enter interface view interface interface type interface number If the interface is bound to a VPN instance you must enable LDP for the VPN instance by using the vpn instance command in LDP view 3 Enable IPv4 LDP on the interface mpls ldp enable By default IPv4 LDP is disabled on an interf...

Page 37: ...o hold timeout By default the Targeted Hello hold time is 45 seconds 5 Set the Target Hello interval mpls ldp timer hello interval interval By default the Targeted Hello interval is 15 seconds Configuring LDP session parameters This task configures the following LDP session parameters Keepalive hold time and Keepalive interval LDP transport address IP address for establishing TCP connections LDP u...

Page 38: ... Hellos received from the targeted peer targeted peer ipv4 address By default the device does not send IPv4 Targeted Hellos to any peers or respond to IPv4 Targeted Hellos received from any peers 4 Set the Keepalive hold time mpls ldp timer keepalive hold timeout By default the Keepalive hold time is 45 seconds 5 Set the Keepalive interval mpls ldp timer keepalive interval interval By default the ...

Page 39: ... time is reached After that the maximum delay time will always take effect To configure LDP backoff Step Command Remarks 1 Enter system view system view N A 2 Enter LDP view or enter LDP VPN instance view Enter LDP view mpls ldp Enter LDP VPN instance view a mpls ldp b vpn instance vpn instance name N A 3 Set the initial delay time and maximum delay time backoff initial initial time maximum maximu...

Page 40: ...system view N A 2 Enter LDP view or enter LDP VPN instance view Enter LDP view mpls ldp Enter LDP VPN instance view a mpls ldp b vpn instance vpn instance name N A 3 Enable LDP to redistribute BGP IPv4 unicast routes import bgp as number By default LDP does not redistribute BGP IPv4 unicast routes 4 Enable LDP to redistribute BGP IPv6 unicast routes ipv6 import bgp as number By default LDP does no...

Page 41: ...it mask to establish LSPs Configuring the LDP label distribution control mode Step Command Remarks 1 Enter system view system view N A 2 Enter LDP view or enter LDP VPN instance view Enter LDP view mpls ldp Enter LDP VPN instance view a mpls ldp b vpn instance vpn instance name N A 3 Configure the label distribution control mode label distribution independent ordered By default the Ordered label d...

Page 42: ...r LDP view mpls ldp Enter LDP VPN instance view a mpls ldp b vpn instance vpn instance name N A 3 Configure an IPv4 label advertisement policy advertise label prefix list prefix list name peer peer prefix list name By default LDP advertises all IPv4 FEC label mappings permitted by the LSP generation policy to all peers 4 Configure an IPv6 label advertisement policy ipv6 advertise label prefix list...

Page 43: ... prefix list prefix list name By default LDP accepts all IPv6 FEC label mappings Configuring LDP loop detection The LDP loop detection feature enables LDP to detect loops during an LSP establishment If LDP detects a loop it terminates the LSP establishment This feature is applicable to an MPLS network where most of the devices do not support the TTL mechanism LDP detects and terminates LSP loops i...

Page 44: ...ber By default the path vector limit is 32 Configuring LDP session protection If two LDP peers have both a direct link and an indirect link in between you can configure this feature to protect their LDP session when the direct link fails LDP establishes both a Link Hello adjacency over the direct link and a Targeted Hello adjacency over the indirect link with the peer When the direct link fails LD...

Page 45: ...old hold time By default the MPLS Forwarding State Holding time is 180 seconds Configuring LDP NSR Step Command Remarks 1 Enter system view system view N A 2 Enter LDP view mpls ldp N A 3 Enable LDP NSR non stop routing By default LDP NSR is disabled Configuring LDP IGP synchronization After you enable LDP IGP synchronization for an OSPF process OSPF area or an IS IS process LDP IGP synchronizatio...

Page 46: ... By default the maximum notification delay is 90 seconds To configure LDP OSPF synchronization for an OSPF area Step Command Remarks 1 Enter system view system view N A 2 Enter OSPF view ospf process id router id router id N A 3 Enter area view area area id N A 4 Enable LDP OSPF synchronization mpls ldp sync By default LDP OSPF synchronization is disabled 5 Return to system view quit N A 6 Enter i...

Page 47: ... IGP of the LDP convergence completion igp sync delay time By default LDP immediately notifies IGP of the LDP convergence completion 10 Optional Set the maximum delay for LDP to notify IGP of the LDP IGP synchronization status after an LDP restart or an active standby switchover occurs igp sync delay on restart time By default the maximum notification delay is 90 seconds Configuring LDP FRR LDP FR...

Page 48: ... view N A 2 Enable SNMP notifications for LDP snmp agent trap enable ldp By default SNMP notifications for LDP are enabled Displaying and maintaining LDP Execute display commands in any view Task Command Display LDP discovery information display mpls ldp discovery vpn instance vpn instance name interface interface type interface number peer peer lsr id ipv6 targeted peer ipv4 address ipv6 address ...

Page 49: ...lish IPv4 LSPs automatically enable IPv4 LDP on each LSR To establish IPv4 LDP LSPs configure an IPv4 routing protocol to ensure IP connectivity between the LSRs This example uses OSPF To control the number of IPv4 LSPs configure an IPv4 LSP generation policy on each LSR Configuration procedure 1 Configure IP addresses and masks for interfaces including the loopback interfaces as shown in Figure 1...

Page 50: ...e 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 1 1 1 9 32 Direct 0 0 127 0 0 1 InLoop0 2 2 2 9 32 O_INTRA 10 1 10 1 1 2 GE1 1 2 3 3 3 9 32 O_INTRA 10 2 10 1 1 2 GE1 1 2 10 1 1 0 24 Direct 0 0 10 1 1 1 GE1 1 2 10 1 1 0 32 Direct 0 0 10 1 1 1 GE1 1 2 10 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 255 32 Direct 0 0 10 1 1 1 GE1 1 2 11 1 1 0 24 Direct 0 0 11 1 1 1 GE1 1 1 11 1 1 0 32 Direct 0 0 11 1 1 1 G...

Page 51: ...t routera and configure LDP to use only the routes permitted by the prefix list to establish LSPs RouterA ip prefix list routera index 10 permit 1 1 1 9 32 RouterA ip prefix list routera index 20 permit 2 2 2 9 32 RouterA ip prefix list routera index 30 permit 3 3 3 9 32 RouterA ip prefix list routera index 40 permit 11 1 1 0 24 RouterA ip prefix list routera index 50 permit 21 1 1 0 24 RouterA mp...

Page 52: ...24 1276 10 1 1 2 GE1 1 2 1276 1276 10 1 1 2 GE1 1 2 Test the connectivity of the LDP LSP from Router A to Router C RouterA ping mpls a 11 1 1 1 ipv4 21 1 1 0 24 MPLS ping FEC 21 1 1 0 24 with 100 bytes of data 100 bytes from 20 1 1 2 Sequence 1 time 1 ms 100 bytes from 20 1 1 2 Sequence 2 time 1 ms 100 bytes from 20 1 1 2 Sequence 3 time 8 ms 100 bytes from 20 1 1 2 Sequence 4 time 2 ms 100 bytes ...

Page 53: ...each LSR To ensure that LDP establishes IPv4 LSPs only over the link Router A Router B Router C configure IPv4 label acceptance policies as follows Router A accepts only the label mapping for FEC 21 1 1 0 24 received from Router B Router A denies the label mapping for FEC 21 1 1 0 24 received from Router D Router C accepts only the label mapping for FEC 11 1 1 0 24 received from Router B Router C ...

Page 54: ... 3 RouterB GigabitEthernet1 1 3 mpls enable RouterB GigabitEthernet1 1 3 mpls ldp enable RouterB GigabitEthernet1 1 3 quit Configure Router C RouterC system view RouterC mpls lsr id 3 3 3 9 RouterC mpls ldp RouterC ldp quit RouterC interface gigabitethernet 1 1 2 RouterC GigabitEthernet1 1 2 mpls enable RouterC GigabitEthernet1 1 2 mpls ldp enable RouterC GigabitEthernet1 1 2 quit RouterC interfac...

Page 55: ... the routes permitted by the prefix list to establish LSPs RouterD ip prefix list routerd index 10 permit 11 1 1 0 24 RouterD ip prefix list routerd index 20 permit 21 1 1 0 24 RouterD mpls ldp RouterD ldp lsp trigger prefix list routerd RouterD ldp quit 5 Configure IPv4 label acceptance policies On Router A create IP prefix list prefix from b to permit subnet 21 1 1 0 24 Router A uses this list t...

Page 56: ...uter A Router D Router C Test the connectivity of the LDP LSP from Router A to Router C RouterA ping mpls a 11 1 1 1 ipv4 21 1 1 0 24 MPLS ping FEC 21 1 1 0 24 with 100 bytes of data 100 bytes from 20 1 1 2 Sequence 1 time 1 ms 100 bytes from 20 1 1 2 Sequence 2 time 1 ms 100 bytes from 20 1 1 2 Sequence 3 time 8 ms 100 bytes from 20 1 1 2 Sequence 4 time 2 ms 100 bytes from 20 1 1 2 Sequence 5 ti...

Page 57: ...ver the link Router A Router B Router C configure IPv4 label advertisement policies as follows Router A advertises only the label mapping for FEC 11 1 1 0 24 to Router B Router C advertises only the label mapping for FEC 21 1 1 0 24 to Router B Router D does not advertise label mapping for FEC 21 1 1 0 24 to Router A Router D does not advertise label mapping for FEC 11 1 1 0 24 to Router C Configu...

Page 58: ...ernet1 1 3 mpls ldp enable RouterB GigabitEthernet1 1 3 quit Configure Router C RouterC system view RouterC mpls lsr id 3 3 3 9 RouterC mpls ldp RouterC ldp quit RouterC interface gigabitethernet 1 1 2 RouterC GigabitEthernet1 1 2 mpls enable RouterC GigabitEthernet1 1 2 mpls ldp enable RouterC GigabitEthernet1 1 2 quit RouterC interface gigabitethernet 1 1 3 RouterC GigabitEthernet1 1 3 mpls enab...

Page 59: ...establish LSPs RouterD ip prefix list routerd index 10 permit 11 1 1 0 24 RouterD ip prefix list routerd index 20 permit 21 1 1 0 24 RouterD mpls ldp RouterD ldp lsp trigger prefix list routerd RouterD ldp quit 5 Configure IPv4 label advertisement policies On Router A create IP prefix list prefix to b to permit subnet 11 1 1 0 24 Router A uses this list to filter FEC label mappings advertised to R...

Page 60: ... list to filter peers RouterD ip prefix list peer c index 10 permit 3 3 3 9 32 On Router D configure a label advertisement policy This policy ensures that Router D does not advertise label mappings for FEC 21 1 1 0 24 to Router A and does not advertise label mappings for FEC 11 1 1 0 24 to Router C RouterD mpls ldp RouterD ldp advertise label prefix list prefix to a peer peer a RouterD ldp adverti...

Page 61: ...pv4 21 1 1 0 24 MPLS ping FEC 21 1 1 0 24 with 100 bytes of data 100 bytes from 20 1 1 2 Sequence 1 time 1 ms 100 bytes from 20 1 1 2 Sequence 2 time 1 ms 100 bytes from 20 1 1 2 Sequence 3 time 8 ms 100 bytes from 20 1 1 2 Sequence 4 time 2 ms 100 bytes from 20 1 1 2 Sequence 5 time 1 ms Ping statistics for FEC 21 1 1 0 24 5 packets transmitted 5 packets received 0 0 packet loss Round trip min av...

Page 62: ...ly for the routes 11 1 1 0 24 and 21 1 1 0 24 configure IPv4 LSP generation policies on each LSR To allow LDP to establish backup LSRs configure OSPF FRR on Router S and Router D Configuration procedure 1 Configure IP addresses and masks for interfaces including the loopback interfaces as shown in Figure 21 Details not shown 2 Configure OSPF on each router to ensure IP connectivity between them De...

Page 63: ... index 10 permit 11 1 1 0 24 RouterD route policy frr permit node 10 RouterD route policy if match ip address prefix list abc RouterD route policy apply fast reroute backup interface gigabitethernet 1 1 1 backup nexthop 24 24 24 2 RouterD route policy quit RouterD ospf 1 RouterD ospf 1 fast reroute route policy frr RouterD ospf 1 quit 4 Enable MPLS and IPv4 LDP Configure Router S RouterS mpls lsr ...

Page 64: ...GigabitEthernet1 1 2 mpls ldp enable RouterA GigabitEthernet1 1 2 quit 5 Configure IPv4 LSP generation policies so LDP uses all static routes and IGP routes to establish LSPs Configure Router S RouterS mpls ldp RouterS ldp lsp trigger all RouterS ldp quit Configure Router D RouterD mpls ldp RouterD ldp lsp trigger all RouterD ldp quit Configure Router A RouterA mpls ldp RouterA ldp lsp trigger all...

Page 65: ...gure an IPv6 LSP generation policy on each LSR Configuration procedure 1 Configure IPv6 addresses and masks for interfaces including the loopback interfaces as shown in Figure 22 Details not shown 2 Configure OSPFv3 on each router to ensure IP connectivity between them Configure Router A RouterA system view RouterA ospfv3 RouterA ospfv3 1 router id 1 1 1 9 RouterA ospfv3 1 area 0 RouterA ospfv3 1 ...

Page 66: ...3 RouterC ospfv3 1 router id 3 3 3 9 RouterC ospfv3 1 area 0 RouterC ospfv3 1 area 0 0 0 0 quit RouterC ospfv3 1 quit RouterC interface loopback 0 RouterC LoopBack0 ospfv3 1 area 0 0 0 0 RouterC LoopBack0 quit RouterC interface gigabitethernet 1 1 1 RouterC GigabitEthernet1 1 1 ospfv3 1 area 0 0 0 0 RouterC GigabitEthernet1 1 1 quit RouterC interface serial 1 1 0 RouterC Serial1 1 0 ospfv3 1 area ...

Page 67: ...terface InLoop0 Cost 0 Destination 100 2 128 Protocol O_INTRA NextHop FE80 20C 29FF FE9D EAC0 Preference 10 Interface Ser1 1 0 Cost 1 Destination 100 3 128 Protocol O_INTRA NextHop FE80 20C 29FF FE9D EAC0 Preference 10 Interface Ser1 1 0 Cost 2 Destination FE80 10 Protocol Direct NextHop Preference 0 Interface InLoop0 Cost 0 Destination FF00 8 Protocol Direct NextHop Preference 0 Interface NULL0 C...

Page 68: ...outera index 10 permit 100 1 128 RouterA ipv6 prefix list routera index 20 permit 100 2 128 RouterA ipv6 prefix list routera index 30 permit 100 3 128 RouterA ipv6 prefix list routera index 40 permit 11 0 64 RouterA ipv6 prefix list routera index 50 permit 21 0 64 RouterA mpls ldp RouterA ldp ipv6 lsp trigger prefix list routera RouterA ldp quit On Router B create IPv6 prefix list routerb and conf...

Page 69: ...l 2423 2425 OutInterface Ser1 1 0 Nexthop FE80 20C 29FF FE9D EAC0 FEC 100 1 128 In Out Label 1040377 OutInterface Nexthop In Out Label 2426 L OutInterface Nexthop FEC 100 2 128 In Out Label 1040379 OutInterface Ser1 1 0 Nexthop FE80 20C 29FF FE9D EAC0 In Out Label 2425 1040379 OutInterface Ser1 1 0 Nexthop FE80 20C 29FF FE9D EAC0 FEC 100 3 128 In Out Label 2427 OutInterface Ser1 1 0 Nexthop FE80 2...

Page 70: ...min avg max std dev 1 000 1 200 2 000 0 400 ms IPv6 label acceptance control configuration example Network requirements Two links Router A Router B Router C and Router A Router D Router C exist between subnets 11 0 64 and 21 0 64 Configure LDP to establish LSPs only for routes to subnets 11 0 64 and 21 0 64 Configure LDP to establish LSPs only on the link Router A Router B Router C to forward traf...

Page 71: ...h router to ensure IP connectivity between them Details not shown 3 Enable MPLS and IPv6 LDP Configure Router A RouterA system view RouterA mpls lsr id 1 1 1 9 RouterA mpls ldp RouterA ldp quit RouterA interface serial 1 1 0 RouterA Serial1 1 0 mpls enable RouterA Serial1 1 0 mpls ldp ipv6 enable RouterA Serial1 1 0 mpls ldp transport address 10 1 RouterA Serial1 1 0 quit RouterA interface serial ...

Page 72: ...D Serial1 1 1 quit 4 Configure IPv6 LSP generation policies On Router A create IPv6 prefix list routera and configure LDP to use only the routes permitted by the prefix list to establish IPv6 LSPs RouterA ipv6 prefix list routera index 10 permit 11 0 64 RouterA ipv6 prefix list routera index 20 permit 21 0 64 RouterA mpls ldp RouterA ldp ipv6 lsp trigger prefix list routera RouterA ldp quit On Rou...

Page 73: ...rom b RouterA ldp ipv6 accept label peer 4 4 4 9 prefix list prefix from d RouterA ldp quit On Router C create IPv6 prefix list prefix from b to permit subnet 11 0 64 Router C uses this list to filter FEC label mappings received from Router B RouterC ipv6 prefix list prefix from b index 10 permit 11 0 64 On Router C create IPv6 prefix list prefix from d to deny subnet 11 0 64 Router A uses this li...

Page 74: ... 4 000 1 020 ms Test the connectivity of the IPv6 LDP LSP from Router C to Router A RouterC ping ipv6 a 21 1 11 1 Ping6 56 data bytes 21 1 11 1 press CTRL_C to break 56 bytes from 11 1 icmp_seq 0 hlim 63 time 1 000 ms 56 bytes from 11 1 icmp_seq 1 hlim 63 time 2 000 ms 56 bytes from 11 1 icmp_seq 2 hlim 63 time 1 000 ms 56 bytes from 11 1 icmp_seq 3 hlim 63 time 2 000 ms 56 bytes from 11 1 icmp_se...

Page 75: ...C 11 0 64 to Router C Configuration procedure 1 Configure IPv6 addresses and masks for interfaces including the loopback interfaces as shown in Figure 24 Details not shown 2 Configure OSPFv3 on each router to ensure IP connectivity between them Details not shown 3 Enable MPLS and IPv6 LDP Configure Router A RouterA system view RouterA mpls lsr id 1 1 1 9 RouterA mpls ldp RouterA ldp quit RouterA i...

Page 76: ...terface serial 1 1 0 RouterC Serial1 1 0 mpls enable RouterC Serial1 1 0 mpls ldp ipv6 enable RouterC Serial1 1 0 mpls ldp transport address 20 2 RouterC Serial1 1 0 quit RouterC interface serial 1 1 1 RouterC Serial1 1 1 mpls enable RouterC Serial1 1 1 mpls ldp ipv6 enable RouterC Serial1 1 1 mpls ldp transport address 40 2 RouterC Serial1 1 1 quit Configure Router D RouterD system view RouterD m...

Page 77: ... RouterD ipv6 prefix list routerd index 10 permit 11 0 64 RouterD ipv6 prefix list routerd index 20 permit 21 0 64 RouterD mpls ldp RouterD ldp ipv6 lsp trigger prefix list routerd RouterD ldp quit 5 Configure IPv6 label advertisement policies On Router A create IPv6 prefix list prefix to b to permit subnet 11 0 64 Router A uses this list to filter FEC label mappings advertised to Router B RouterA...

Page 78: ...to filter peers RouterD ip prefix list peer c index 10 permit 3 3 3 9 32 On Router D configure an IPv6 label advertisement policy This policy ensures that Router D does not advertise label mappings for FEC 21 0 64 to Router A and does not advertise label mappings for FEC 11 0 64 to Router C RouterD mpls ldp RouterD ldp ipv6 advertise label prefix list prefix to a peer peer a RouterD ldp ipv6 adver...

Page 79: ...rD display mpls ldp lsp ipv6 Status Flags stale L liberal B backup FECs 2 Ingress 0 Transit 0 Egress 2 FEC 11 64 In Out Label 1098 OutInterface Nexthop FEC 21 64 In Out Label 1097 OutInterface Nexthop The output shows that Router A and Router C have received FEC label mappings only from Router B Router B has received FEC label mappings from both Router A and Router C Router D does not receive FEC ...

Page 80: ...ping ipv6 a 21 1 11 1 Ping6 56 data bytes 21 1 11 1 press CTRL_C to break 56 bytes from 11 1 icmp_seq 0 hlim 63 time 1 000 ms 56 bytes from 11 1 icmp_seq 1 hlim 63 time 2 000 ms 56 bytes from 11 1 icmp_seq 2 hlim 63 time 1 000 ms 56 bytes from 11 1 icmp_seq 3 hlim 63 time 2 000 ms 56 bytes from 11 1 icmp_seq 4 hlim 63 time 1 000 ms Ping6 statistics for 11 1 5 packets transmitted 5 packets received...

Page 81: ... CRLSP you must configure routing and specify constraints such as the bandwidth and explicit paths MPLS TE tunnel A virtual point to point connection from the ingress node to the egress node Typically an MPLS TE tunnel consists of one CRLSP To deploy CRLSP backup or transmit traffic over multiple paths you need to establish multiple CRLSPs for one class of traffic In this case an MPLS TE tunnel co...

Page 82: ...idth constraints when the reservable bandwidth for the class type is greater than or equal to the bandwidth required by the class type Affinity Affinity determines which links a tunnel can use The affinity attribute and its mask and the link attribute are all 32 bit long A link is available for a tunnel if the link attribute meets the following requirements The link attribute bits corresponding to...

Page 83: ...ation Elements PCEs to establish a CRLSP through RSVP TE Basic concepts PCE An entity that provides intra area or inter area path calculation A PCE can be a stateless PCE the default or a stateful PCE Stateless PCE Provides only path calculation Stateful PCE Knows all CRLSPs maintained by a PCC and performs intra area CRLSP recalculation and optimization A stateful PCE can be active or passive Act...

Page 84: ...warding After an MPLS TE tunnel is established traffic is not forwarded on the tunnel automatically You must direct the traffic to the tunnel by using one of the following methods Static routing You can direct traffic to an MPLS TE tunnel by creating a static route that reaches the destination through the tunnel interface This is the easiest way to implement MPLS TE tunnel forwarding When traffic ...

Page 85: ...cy enabled Router A can learn this MPLS TE tunnel and transfer traffic to Router C by forwarding the traffic to Router D Figure 26 IGP shortcut and forwarding adjacency diagram Make before break Make before break is a mechanism to change an MPLS TE tunnel with minimum data loss and without using extra bandwidth In cases of tunnel reoptimization and automatic bandwidth adjustment traffic forwarding...

Page 86: ...s Tunnel reoptimization Tunnel reoptimization allows you to manually or dynamically trigger the ingress node to recalculate a path If the ingress node recalculates a better path it creates a new CRLSP switches traffic from the old CRLSP to the new and then deletes the old CRLSP MPLS TE uses the tunnel reoptimization feature to implement dynamic CRLSP optimization For example if a link on the optim...

Page 87: ...is enabled for an MPLS TE tunnel once a link or node fails on the primary CRLSP FRR reroutes the traffic to a bypass tunnel The ingress node attempts to set up a new CRLSP After the new CRLSP is set up traffic is forwarded on the new CRLSP CRLSP backup provides end to end path protection for a CRLSP without time limitation FRR provides quick but temporary protection for a link or node on a CRLSP B...

Page 88: ...rk resources allocation on a per service class basis DS TE defines different bandwidth constraints for class types It maps each traffic class type to the CRLSP that is constraint compliant for the class type The device supports the following DS TE modes Prestandard mode Proprietary DS TE mode of Hewlett Packard Enterprise IETF mode Complies with RFC 4124 RFC 4125 and RFC 4127 Basic concepts CT Cla...

Page 89: ...ndwidth is enough for the CT You can use the mpls te max reservable bandwidth command on an interface to configure the bandwidth constraints of the interface The device determines whether the bandwidth is enough to establish an MPLS TE tunnel for the CT The relation between BCs and CTs varies by BC model In RDM model a BC constrains the total bandwidth of multiple CTs as shown in Figure 30 BC 2 is...

Page 90: ...SR RSVP TE uses a Resv message to advertise the labels assigned by the downstream LSR to the upstream LSR During the delivery of the path message a CRLSP in one direction is established During the delivery of the Resv message a CRLSP in the other direction is established The CRLSPs of a bidirectional MPLS TE tunnel established in co routed mode use the same path Associated mode In this mode you es...

Page 91: ...ler CoS value the lower tunnel priority An MPLS TE tunnel that is not configured with a CoS has the lowest priority CBTS application scenario As shown in Figure 32 CBTS selects MPLS TE tunnels for the incoming traffic as follows Uses Tunnel 2 to forward traffic with CoS 3 Uses Tunnel 3 to forward traffic with CoS 6 Uses Tunnel 1 to forward traffic with no CoS values Figure 32 CBTS application scen...

Page 92: ...S TE tunnel configure static routing PBR or automatic route advertisement to direct traffic to the MPLS TE tunnel To configure an MPLS TE tunnel to use a CRLSP dynamically established by RSVP TE perform the following tasks 6 Enable MPLS TE and RSVP on each node and interface that the MPLS TE tunnel traverses For information about enabling RSVP see Configuring RSVP 7 Create a tunnel interface on th...

Page 93: ... and recalculates and optimizes the CRLSPs delegated by the PCC You can also configure other MPLS TE features such as the DS TE automatic bandwidth adjustment and FRR as needed To configure MPLS TE perform the following tasks Tasks at a glance Required Enabling MPLS TE Required Configuring a tunnel interface Optional Configuring DS TE Required Perform one of the following tasks to configure an MPL...

Page 94: ...ode of the MPLS TE tunnel To configure a tunnel interface Step Command Remarks 1 Enter system view system view N A 2 Create an MPLS TE tunnel interface and enter tunnel interface view interface tunnel tunnel number mode mpls te By default no tunnel interfaces exist 3 Configure an IP address for the tunnel interface ip address ip address mask length mask By default a tunnel interface does not have ...

Page 95: ...nnel establishment mode as static Configure the MPLS TE tunnel to use the static CRLSP Other configurations such as tunnel constraints and IGP extension are not needed To configure an MPLS TE tunnel to use a static CRLSP Step Command Remarks 1 Enter system view system view N A 2 Create a static CRLSP See Configuring a static CRLSP N A 3 Enter MPLS TE tunnel interface view interface tunnel tunnel n...

Page 96: ...uring MPLS TE attributes for a link Required Advertising link TE attributes by using IGP TE extension Required Configuring MPLS TE tunnel constraints Required Establishing an MPLS TE tunnel by using RSVP TE Optional Controlling CRLSP path selection Optional Controlling MPLS TE tunnel setup Configuring MPLS TE attributes for a link MPLS TE attributes for a link include the maximum link bandwidth th...

Page 97: ... attributes by using IGP TE extension Both OSPF and IS IS are extended to advertise link TE attributes The extensions are called OSPF TE and IS IS TE If both OSPF TE and IS IS TE are available OSPF TE takes precedence Configuring OSPF TE OSPF TE uses Type 10 opaque LSAs to carry the TE attributes for a link Before you configure OSPF TE you must enable opaque LSA advertisement and reception by usin...

Page 98: ... the IS IS process mpls te enable Level 1 Level 2 By default MPLS TE is disabled for an IS IS process 5 Specify the types of the sub TLVs for carrying DS TE parameters te subtlv bw constraint value unreserved subpool bw value By default the bw constraint parameter is carried in sub TLV 252 and the unreserved bw sub pool parameter is carried in sub TLV 251 Configuring MPLS TE tunnel constraints Per...

Page 99: ... an explicit path can be either strict or loose Strict The two nodes must be directly connected Loose The two nodes can have devices in between When establishing an MPLS TE tunnel between areas or ASs you must perform the following tasks Use a loose explicit path Specify the ABR or ASBR as the next hop of the path Make sure the tunnel s ingress node and the ABR or ASBR can reach each other To conf...

Page 100: ...on Before performing the configuration tasks in this section be aware of each configuration objective and its impact on your device MPLS TE uses CSPF to calculate a path according to the TEDB and constraints and sets up the CRLSP through RSVP TE MPLS TE provides measures that affect the CSPF calculation You can use these measures to tune the path selection for CRLSP Configuring the metric type for...

Page 101: ...able on every interface that the MPLS TE tunnel traverses Configuring route pinning When route pinning is enabled MPLS TE tunnel reoptimization and automatic bandwidth adjustment are not available Perform this task on the ingress node of an MPLS TE tunnel To configure route pinning Step Command Remarks 1 Enter system view system view N A 2 Enter MPLS TE tunnel interface view interface tunnel tunne...

Page 102: ... changes that cannot trigger immediate flooding are flooded This task can be performed on all nodes that the MPLS TE tunnel traverses To set TE flooding thresholds and the flooding interval Step Command Remarks 1 Enter system view system view N A 2 Enter interface view interface interface type interface number N A 3 Set the up down threshold mpls te bandwidth change thresholds down up percent By d...

Page 103: ...nable loop detection mpls te loop detection By default loop detection is disabled Setting tunnel setup retry If the ingress node fails to establish an MPLS TE tunnel it waits for the retry interval and then tries to set up the tunnel again It repeats this process until the tunnel is established or until the number of attempts reaches the maximum If the tunnel cannot be established when the number ...

Page 104: ...th To enable output rate sampling mpls te auto bandwidth collect bw frequency seconds By default automatic bandwidth adjustment and output rate sampling are disabled for an MPLS TE tunnel 6 Return to user view return N A 7 Optional Reset the automatic bandwidth adjustment reset mpls te auto bandwidth adjustment timers After this command is executed the system clears the output rate sampling inform...

Page 105: ...t no PCE peers exist Dynamically discovering PCEs OSPF TE advertises PCE IP addresses for PCCs and other PCEs to dynamically discover the PCEs and establish PCEP sessions to them For OSPF TE configuration see Configuring OSPF TE Establishing a CRLSP by using the path calculated by PCEs Step Command Remarks 1 Enter system view system view N A 2 Enter MPLS TE tunnel interface view interface tunnel t...

Page 106: ...CEP session you must specify the same device type active stateful or passive stateful for the two devices If they are configured as passive stateful devices the PCE knows all CRLSPs maintained by the PCC but does not accept delegation requests sent by the PCC If they are configured as active stateful devices the PCC can delegate CRLSPs to the PCE If multiple PCEs are available for CRLSP delegation...

Page 107: ...rameters Step Command Remarks 1 Enter system view system view N A 2 Enter MPLS TE view mpls te N A 3 Set the path calculation request timeout time pce request timeout value By default the request timeout time is 10 seconds 4 Set the PCEP session deadtimer pce deadtimer value By default the PCEP session deadtimer is 120 seconds 5 Set the keepalive interval for PCEP sessions pce keepalive interval B...

Page 108: ...ame To apply the policy to an interface a interface interface type interface number b ip policy based route policy name By default no policy is applied Configuring automatic route advertisement to direct traffic to an MPLS TE tunnel You can use either IGP shortcut or forwarding adjacency to implement automatic route advertisement When you use IGP shortcut you can specify a metric for the TE tunnel...

Page 109: ...lish two MPLS TE tunnels in opposite directions between two nodes and configure forwarding adjacency on both the nodes To configure forwarding adjacency in tunnel interface view Step Command Remarks 1 Enter system view system view N A 2 Enter MPLS TE tunnel interface view interface tunnel tunnel number mode mpls te N A 3 Enable forwarding adjacency mpls te igp advertise hold time value By default ...

Page 110: ...s the passive end of the tunnel mpls te bidirectional co routed passive reverse lsp lsr id ingress lsr id tunnel id tunnel id By default bidirectional tunnel is disabled on the tunnel interface and tunnels established on the tunnel interface are unidirectional MPLS TE tunnels Configuring an associated bidirectional MPLS TE tunnel Step Command Remarks 1 Enter system view system view N A 2 Enter MPL...

Page 111: ...TE support FRR Enabling FRR Perform this task on the ingress node of a primary CRLSP To enable FRR Step Command Remarks 1 Enter system view system view N A 2 Enter tunnel interface view of the primary CRLSP interface tunnel tunnel number mode mpls te N A 3 Enable FRR mpls te fast reroute bandwidth By default FRR is disabled If you specify the bandwidth keyword the primary CRLSP must have bandwidth...

Page 112: ...tecting the primary CRLSP by following these rules 1 Selects a bypass tunnel according to the principles as shown in Table 2 2 Prefers the bypass tunnel in node protection mode over the one in link protection mode 3 Prefers the bypass tunnel with a smaller ID over the one with a bigger tunnel ID Table 2 FRR protection principles Bandwidt h required by primary CRLSP Primary CRLSP requires bandwidth...

Page 113: ...unnel that provides bandwidth protection can be bound to the primary CRLSP Non zero No The primary CRLSP can be bound to the bypass tunnel when all the following conditions are met The bandwidth that the bypass tunnel can protect is no less than the bandwidth required by the primary CRLSP No CT that the bypass tunnel can protect is specified or the specified CT is the same as that of the traffic o...

Page 114: ...dth as configured FRR protection type whether or not to provide bandwidth protection for the primary CRLSP changes Automatically created interfaces such as VA interfaces only support the automatic bypass tunnel configuration method Manually configuring a bypass tunnel The bypass tunnel setup method is the same as a normal MPLS TE tunnel This section describes only FRR related configurations To con...

Page 115: ...is command deletes all existing node protection bypass tunnels automatically created for MPLS TE auto FRR 6 Optional Set a removal timer for unused bypass tunnels timers removal unused seconds By default a bypass tunnel is removed after it is unused for 3600 seconds 7 Optional Return to system view quit N A 8 Optional Enter interface view interface interface type interface number N A 9 Optional Di...

Page 116: ...erefore MPLS TE needs to poll the bypass tunnels periodically to update the optimal bypass tunnel Perform this task on the PLR to set the interval for selecting an optimal bypass tunnel Step Command Remarks 1 Enter system view system view N A 2 Enter MPLS TE view mpls te N A 3 Set the interval for selecting an optimal bypass tunnel fast reroute timer interval By default the interval is 300 seconds...

Page 117: ...information display mpls te ds te Display bandwidth information on MPLS TE enabled interfaces display mpls te link management bandwidth allocation interface interface type interface number Display information about discovered PCEs display mpls te pce discovery ip address verbose Display CRLSP information in a PCE LSPDB display mpls te pce lspdb plsp id plsp id verbose Display PCC and PCE peer info...

Page 118: ...etworks The MPLS TE tunnel requires a bandwidth of 2000 kbps The maximum bandwidth of the link that the tunnel traverses is 10000 kbps The maximum reservable bandwidth of the link is 5000 kbps Figure 33 Network diagram Configuration procedure 1 Configure IP addresses and masks for interfaces Details not shown 2 Configure IS IS to advertise interface addresses including the loopback interface addre...

Page 119: ...face loopback 0 RouterC LoopBack0 isis enable 1 RouterC LoopBack0 quit Execute the display ip routing table command on each router to verify that the routers have learned the routes to one another including the routes to the loopback interfaces Details not shown 3 Configure an LSR ID and enable MPLS and MPLS TE Configure Router A RouterA mpls lsr id 1 1 1 1 RouterA mpls te RouterA te quit RouterA ...

Page 120: ...pls te max reservable bandwidth 5000 RouterB GigabitEthernet1 1 2 quit Set the maximum link bandwidth and maximum reservable bandwidth on Router C RouterC interface gigabitethernet 1 1 1 RouterC GigabitEthernet1 1 1 mpls te max link bandwidth 10000 RouterC GigabitEthernet1 1 1 mpls te max reservable bandwidth 5000 RouterC GigabitEthernet1 1 1 quit 5 Configure an MPLS TE tunnel on Router A Configur...

Page 121: ...mum transmission unit 1496 Internet address 6 1 1 1 24 primary Tunnel source unknown destination 3 3 3 3 Tunnel TTL 255 Tunnel protocol transport CR_LSP Output queue Urgent queuing Size Length Discards 0 100 0 Output queue Protocol queuing Size Length Discards 0 500 0 Output queue FIFO queuing Size Length Discards 0 75 0 Last clearing of counters Never Last 300 seconds input rate 0 bytes sec 0 bit...

Page 122: ...uterC display mpls lsp FEC Proto In Out Label Interface Out NHLFE StaticCR 30 RouterA display mpls static cr lsp Name LSR Type In Out Label Out Interface State static cr lsp 1 Ingress Null 20 GE1 1 1 Up RouterB display mpls static cr lsp Name LSR Type In Out Label Out Interface State static cr lsp 1 Transit 20 30 GE1 1 2 Up RouterC display mpls static cr lsp Name LSR Type In Out Label Out Interfac...

Page 123: ...20 1 1 1 24 GE1 1 2 100 1 2 1 24 Configuration procedure 1 Configure IP addresses and masks for interfaces Details not shown 2 Configure IS IS to advertise interface addresses including the loopback interface address Configure Router A RouterA system view RouterA isis 1 RouterA isis 1 network entity 00 0005 0000 0000 0001 00 RouterA isis 1 quit RouterA interface gigabitethernet 1 1 1 RouterA Gigab...

Page 124: ...l 2 RouterC GigabitEthernet1 1 1 quit RouterC interface pos 1 1 0 RouterC POS1 1 0 isis enable 1 RouterC POS1 1 0 isis circuit level level 2 RouterC POS1 1 0 quit RouterC interface loopback 0 RouterC LoopBack0 isis enable 1 RouterC LoopBack0 isis circuit level level 2 RouterC LoopBack0 quit Configure Router D RouterD system view RouterD isis 1 RouterD isis 1 network entity 00 0005 0000 0000 0004 0...

Page 125: ...terB GigabitEthernet1 1 1 rsvp enable RouterB GigabitEthernet1 1 1 quit RouterB interface pos 1 1 0 RouterB POS1 1 0 mpls enable RouterB POS1 1 0 mpls te enable RouterB POS1 1 0 rsvp enable RouterB POS1 1 0 quit Configure Router C RouterC mpls lsr id 3 3 3 9 RouterC mpls te RouterC te quit RouterC rsvp RouterC rsvp quit RouterC interface gigabitethernet 1 1 1 RouterC GigabitEthernet1 1 1 mpls enab...

Page 126: ... maximum link bandwidth and maximum reservable bandwidth on Router A RouterA interface gigabitethernet 1 1 1 RouterA GigabitEthernet1 1 1 mpls te max link bandwidth 10000 RouterA GigabitEthernet1 1 1 mpls te max reservable bandwidth 5000 RouterA GigabitEthernet1 1 1 quit Set the maximum link bandwidth and maximum reservable bandwidth on Router B RouterB interface gigabitethernet 1 1 1 RouterB Giga...

Page 127: ...tunnel RouterA Tunnel1 mpls te bandwidth 2000 RouterA Tunnel1 quit 7 Configure a static route on Router A to direct the traffic destined for subnet 100 1 2 0 24 to MPLS TE tunnel 1 RouterA ip route static 100 1 2 0 24 tunnel 1 preference 1 Verifying the configuration Verify that the tunnel interface is up on Router A RouterA display interface tunnel Tunnel1 Current state UP Line protocol state UP ...

Page 128: ...to Bandwidth Disabled Auto Bandwidth Freq Min Bandwidth Max Bandwidth Collected Bandwidth Execute the display ip routing table command on Router A The output shows a static route entry with interface Tunnel 1 as the output interface Details not shown Establishing an inter AS MPLS TE tunnel with RSVP TE Network requirements Router A and Router B are in AS 100 Router C and Router D are in AS 200 AS ...

Page 129: ... masks for interfaces Details not shown 2 Configure OSPF to advertise routes within the ASs and redistribute the direct and BGP routes into OSPF on Router B and Router C Configure Router A RouterA system view RouterA ospf RouterA ospf 1 area 0 RouterA ospf 1 area 0 0 0 0 network 10 1 1 0 0 0 0 255 RouterA ospf 1 area 0 0 0 0 network 1 1 1 9 0 0 0 0 RouterA ospf 1 area 0 0 0 0 quit RouterA ospf 1 q...

Page 130: ...o the loopback interfaces This example uses Router A RouterA display ip routing table Destinations 6 Routes 6 Destination Mask Proto Pre Cost NextHop Interface 1 1 1 9 32 Direct 0 0 127 0 0 1 InLoop0 2 2 2 9 32 O_INTRA 10 1 10 1 1 2 GE1 1 1 10 1 1 0 24 Direct 0 0 10 1 1 1 GE1 1 1 10 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InL...

Page 131: ...7 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 4 Configure an LSR ID and enable MPLS MPLS TE and RSVP TE Configure Router A RouterA mpls lsr id 1 1 1 9 RouterA mpls te RouterA te quit RouterA rsvp RouterA rsvp quit RouterA interface gigabitethernet 1 1 1 RouterA GigabitEthernet1 1 1 mpls enable RouterA GigabitEthernet1 1 1 mpls te enable RouterA GigabitEthernet1 1...

Page 132: ...rD rsvp RouterD rsvp quit RouterD interface gigabitethernet 1 1 1 RouterD GigabitEthernet1 1 1 mpls enable RouterD GigabitEthernet1 1 1 mpls te enable RouterD GigabitEthernet1 1 1 rsvp enable RouterD GigabitEthernet1 1 1 quit 5 Configure OSPF TE Configure Router A RouterA ospf RouterA ospf 1 opaque capability enable RouterA ospf 1 area 0 RouterA ospf 1 area 0 0 0 0 mpls te enable RouterA ospf 1 ar...

Page 133: ...outerB interface gigabitethernet 1 1 1 RouterB GigabitEthernet1 1 1 mpls te max link bandwidth 10000 RouterB GigabitEthernet1 1 1 mpls te max reservable bandwidth 5000 RouterB GigabitEthernet1 1 1 quit RouterB interface pos 1 1 0 RouterB POS1 1 0 mpls te max link bandwidth 10000 RouterB POS1 1 0 mpls te max reservable bandwidth 5000 RouterB POS1 1 0 quit Set the maximum link bandwidth and maximum ...

Page 134: ...te UP Line protocol state UP Description Tunnel1 Interface Bandwidth 64kbps Maximum transmission unit 1496 Internet address 7 1 1 1 24 primary Tunnel source unknown destination 4 4 4 9 Tunnel TTL 255 Tunnel protocol transport CR_LSP Last clearing of counters Never Last 300 seconds input 0 bytes sec 0 bits sec 0 packets sec Last 300 seconds output 0 bytes sec 0 bits sec 0 packets sec Input 0 packet...

Page 135: ...ost NextHop Interface 1 1 1 9 32 Direct 0 0 127 0 0 1 InLoop0 2 2 2 9 32 O_INTRA 10 1 10 1 1 2 GE1 1 1 3 3 3 9 32 O_ASE 150 1 10 1 1 2 GE1 1 1 4 4 4 9 32 O_ASE 150 1 10 1 1 2 GE1 1 1 7 1 1 0 24 Direct 0 0 7 1 1 1 Tun1 7 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 0 24 Direct 0 0 10 1 1 1 GE1 1 1 10 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 20 1 1 0 24 O_ASE 150 1 10 1 1 2 GE1 1 1 100 1 2 0 24 Static ...

Page 136: ...outerA ospf 1 area 1 RouterA ospf 1 area 0 0 0 1 network 10 3 1 0 0 0 0 255 RouterA ospf 1 area 0 0 0 1 mpls te enable RouterA ospf 1 area 0 0 0 1 quit RouterA ospf 1 quit Configure Router B RouterB system view RouterB ospf RouterB ospf 1 area 0 RouterB ospf 1 area 0 0 0 0 network 10 1 1 0 0 0 0 255 RouterB ospf 1 area 0 0 0 0 network 2 2 2 2 0 0 0 0 RouterB ospf 1 area 0 0 0 0 mpls te enable Rout...

Page 137: ... gigabitethernet 1 1 1 RouterA GigabitEthernet1 1 1 mpls enable RouterA GigabitEthernet1 1 1 mpls te enable RouterA GigabitEthernet1 1 1 rsvp enable RouterA GigabitEthernet1 1 1 quit RouterA interface gigabitethernet 1 1 2 RouterA GigabitEthernet1 1 2 mpls enable RouterA GigabitEthernet1 1 2 mpls te enable RouterA GigabitEthernet1 1 2 rsvp enable RouterA GigabitEthernet1 1 2 quit Configure Router ...

Page 138: ... RouterA mpls te RouterA te pce address 1 1 1 1 Configure Router B RouterB mpls te RouterB te pce address 2 2 2 2 5 Configure Router C as a PCC to use the path calculated by PCEs Configure MPLS TE tunnel interface Tunnel 1 RouterC interface tunnel 1 mode mpls te RouterC Tunnel1 ip address 7 1 1 1 255 255 255 0 Specify the tunnel destination address as the LSR ID of Router D RouterC Tunnel1 destina...

Page 139: ...on state UP Mastership Normal Role Active Session up time 0000 days 00 hours 00 minutes Session ID Local 0 Peer 0 Keepalive interval Local 30 sec Peer 30 sec Recommended DeadTimer Local 120 sec Peer 120 sec Tolerance Min keepalive interval 10 sec Max unknown messages 5 Request timeout 10 sec Delegation timeout 30 sec Peer address 3 3 3 3 TCP connection 3 3 3 3 29507 1 1 1 1 4189 Peer type PCC Sess...

Page 140: ... 24 Configuration procedure 1 Configure IP addresses and masks for interfaces Details not shown 2 Configure IS IS to advertise interface addresses including the loopback interface address For more information see Establishing an MPLS TE tunnel with RSVP TE 3 Configure an LSR ID and enable MPLS MPLS TE and RSVP TE on each router Configure Router A and Router D to assign a non null label to the penu...

Page 141: ...p RouterC rsvp quit RouterC interface gigabitethernet 1 1 1 RouterC GigabitEthernet1 1 1 mpls enable RouterC GigabitEthernet1 1 1 mpls te enable RouterC GigabitEthernet1 1 1 rsvp enable RouterC GigabitEthernet1 1 1 quit RouterC interface pos 1 1 0 RouterC POS1 1 0 mpls enable RouterC POS1 1 0 mpls te enable RouterC POS1 1 0 rsvp enable RouterC POS1 1 0 quit Configure Router D RouterD system view R...

Page 142: ... 1 255 255 255 0 RouterA Tunnel1 destination 4 4 4 9 RouterA Tunnel1 mpls te signaling rsvp te RouterA Tunnel1 mpls te resv style ff RouterA Tunnel1 mpls te bidirectional co routed active RouterA Tunnel1 quit Configure Router D as the passive end of the co routed bidirectional tunnel RouterD interface tunnel 4 mode mpls te RouterD Tunnel4 ip address 8 1 1 1 255 255 255 0 RouterD Tunnel4 destinatio...

Page 143: ...outed active Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type CT0 Tunnel Bandwidth 0 kbps Reserved Bandwidth 0 kbps Setup Priority 7 Holding Priority 7 Affinity Attr Mask 0 0 Explicit Path Backup Explicit Path Metric Type TE Record Route Disabled Record Label Disabled FRR Flag Disabled Bandwidth Protection Disabled Backup Bandwidth Flag Disabled Backup Bandwidth Type Backup Ban...

Page 144: ... state UP Description Tunnel4 Interface Bandwidth 64kbps Maximum transmission unit 1496 Internet address 8 1 1 1 24 primary Tunnel source unknown destination 1 1 1 9 Tunnel TTL 255 Tunnel protocol transport CR_LSP Last clearing of counters Never Last 300 seconds input rate 0 bytes sec 0 bits sec 0 packets sec Last 300 seconds output rate 0 bytes sec 0 bits sec 0 packets sec Input 0 packets 0 bytes...

Page 145: ...up Bandwidth Bypass Tunnel Auto Created Route Pinning Retry Limit Retry Interval Reoptimization Reoptimization Freq Backup Type Backup LSP ID Auto Bandwidth Auto Bandwidth Freq Min Bandwidth Max Bandwidth Collected Bandwidth Display detailed information about the bidirectional MPLS TE tunnel on Router D RouterD display mpls lsp verbose Destination 4 4 4 9 FEC 1 1 1 9 1 30478 Protocol RSVP LSR Type...

Page 146: ... CRLSP and a backup CRLSP When the primary CRLSP fails traffic is switched to the backup CRLSP Figure 38 Network diagram Table 6 Interface and IP address assignment Device Interface IP address Device Interface IP address Router A Loop0 1 1 1 9 32 Router D Loop0 4 4 4 9 32 GE1 1 1 10 1 1 1 24 POS1 1 0 30 1 1 2 24 GE1 1 2 100 1 1 1 24 POS1 1 1 40 1 1 1 24 POS1 1 1 30 1 1 1 24 Router C Loop0 3 3 3 9 ...

Page 147: ...rA POS1 1 1 mpls te enable RouterA POS1 1 1 rsvp enable RouterA POS1 1 1 quit Configure Router B Router C and Router D in the same way that Router A is configured Details not shown 4 Configure an MPLS TE tunnel on Router A Configure MPLS TE tunnel interface Tunnel 3 RouterA interface tunnel 3 mode mpls te RouterA Tunnel3 ip address 9 1 1 1 255 255 255 0 Specify the tunnel destination address as th...

Page 148: ... output interface POS 1 1 1 RouterA display mpls lsp FEC Proto In Out Label Interface Out NHLFE 1 1 1 9 3 34311 RSVP 1150 GE1 1 1 1 1 1 9 3 34312 RSVP 1151 POS1 1 1 10 1 1 2 Local GE1 1 1 30 1 1 2 Local POS1 1 1 Tunnel3 Local NHLFE1026 Backup NHLFE1028 Display the paths used by the two CRLSPs on Router A RouterA display rsvp lsp verbose Tunnel name RouterA_t3 Destination 3 3 3 9 Source 1 1 1 9 Tun...

Page 149: ...at traverses Router B RouterA tracert mpls te tunnel 3 MPLS trace route TE tunnel Tunnel3 TTL Replier Time Type Downstream 0 Ingress 10 1 1 2 1147 1 10 1 1 2 1 ms Transit 20 1 1 2 3 2 20 1 1 2 2 ms Egress Shut down interface GigabitEthernet 1 1 2 on Router B and then tracert tunnel 3 The output shows that packets are forwarded on the CRLSP that traverses Router D RouterA tracert mpls te tunnel 3 M...

Page 150: ... notify RSVP TE of the failure so RSVP TE can switch traffic to the bypass tunnel Figure 39 Network diagram Table 7 Interface and IP address assignment Device Interface IP address Device Interface IP address Router A Loop0 1 1 1 1 32 Router B Loop0 2 2 2 2 32 GE1 1 1 2 1 1 1 24 GE1 1 1 2 1 1 2 24 GE1 1 2 100 1 1 1 24 GE1 1 2 3 1 1 1 24 Router D Loop0 4 4 4 4 32 POS1 1 0 3 2 1 1 24 GE1 1 1 4 1 1 2 ...

Page 151: ...outerB interface gigabitethernet 1 1 2 RouterB GigabitEthernet1 1 2 mpls enable RouterB GigabitEthernet1 1 2 mpls te enable RouterB GigabitEthernet1 1 2 rsvp enable RouterB GigabitEthernet1 1 2 rsvp bfd enable RouterB GigabitEthernet1 1 2 quit RouterB interface pos 1 1 0 RouterB POS1 1 0 mpls enable RouterB POS1 1 0 mpls te enable RouterB POS1 1 0 rsvp enable RouterB POS1 1 0 quit Configure Router...

Page 152: ...mary Tunnel source unknown destination 4 4 4 4 Tunnel TTL 255 Tunnel protocol transport CR_LSP Last clearing of counters Never Last 300 seconds input rate 0 bytes sec 0 bits sec 0 packets sec Last 300 seconds output rate 1911 bytes sec 15288 bits sec 0 packets sec Input 0 packets 0 bytes 0 drops Output 1526 packets 22356852 bytes 0 drops Display detailed information about the MPLS TE tunnel on Rou...

Page 153: ...el5 destination 3 3 3 3 Specify the tunnel signaling protocol as RSVP TE RouterB Tunnel5 mpls te signaling rsvp te Specify the explicit path to be used as by path RouterB Tunnel5 mpls te path preference 1 explicit path by path Set the bandwidth that the bypass tunnel can protect RouterB Tunnel5 mpls te backup bandwidth un limited RouterB Tunnel5 quit Bind the bypass tunnel to the protected interfa...

Page 154: ...el 4 Tunnel State Up Main CRLSP up Shared resource CRLSP being set up Tunnel Attributes LSP ID 18753 Tunnel ID 4 Admin State Normal Ingress LSR ID 1 1 1 1 Egress LSR ID 3 3 3 3 Signaling RSVP TE Static CRLSP Name Resv Style SE Tunnel mode Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type CT0 Tunnel Bandwidth 0 kbps Reserved Bandwidth 0 kbps Setup Priority 7 Holding Priority 7 Af...

Page 155: ... 1 2 quit Execute the display interface tunnel 4 command on Router A to display information about the primary CRLSP The output shows that the tunnel interface is in up state Details not shown Wait for about 5 seconds execute the display mpls lsp verbose command on Router B The output shows that Tunnel 5 is bound to interface GigabitEthernet 1 1 2 but not in use Details not shown Execute the displa...

Page 156: ...OS1 1 1 3 3 1 1 24 POS1 1 0 3 4 1 2 24 Router D Loop0 4 4 4 4 32 Router F Loop0 6 6 6 6 32 GE1 1 1 4 1 1 2 24 POS1 1 0 3 3 1 2 24 POS1 1 0 4 2 1 2 24 POS1 1 1 4 2 1 1 24 Configuration procedure 1 Configure IP addresses and masks for interfaces Details not shown 2 Configure IS IS to advertise interface addresses including the loopback interface address Details not shown 3 Configure an LSR ID and en...

Page 157: ...2 quit RouterB interface pos 1 1 0 RouterB POS1 1 0 mpls enable RouterB POS1 1 0 mpls te enable RouterB POS1 1 0 rsvp enable RouterB POS1 1 0 quit RouterB interface pos 1 1 1 RouterB POS1 1 1 mpls enable RouterB POS1 1 1 mpls te enable RouterB POS1 1 1 rsvp enable RouterB POS1 1 1 quit Configure Router C in the same way that Router B is configured Configure Router D Router E and Router F in the sa...

Page 158: ...SP Last clearing of counters Never Last 300 seconds input rate 0 bytes sec 0 bits sec 0 packets sec Last 300 seconds output rate 1911 bytes sec 15288 bits sec 0 packets sec Input 0 packets 0 bytes 0 drops Output 1526 packets 22356852 bytes 0 drops Display detailed information about the MPLS TE tunnel interface on Router A RouterA display mpls te tunnel interface Tunnel Name Tunnel 1 Tunnel State U...

Page 159: ...route mode Link ADM administratively down Stby standby Protocol s spoofing Interface Link Protocol Primary IP Description Tun50 UP DOWN Tun51 UP DOWN Display information about Tunnel 50 and Tunnel 51 on Router B The output shows that Tunnel 50 and Tunnel 51 are automatically created bypass tunnels Tunnel 50 is a node protection bypass tunnel egress LSR ID is 4 4 4 4 the LSR ID of Router D Tunnel 5...

Page 160: ... RSVP TE Static CRLSP Name Resv Style SE Tunnel mode Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type CT0 Tunnel Bandwidth 0 kbps Reserved Bandwidth 0 kbps Setup Priority 7 Holding Priority 7 Affinity Attr Mask 0 0 Explicit Path Backup Explicit Path Metric Type TE Record Route Enabled Record Label Disabled FRR Flag Disabled Bandwidth Protection Disabled Backup Bandwidth Flag Di...

Page 161: ...1 1 32 Flag 0x00 No FRR 2 1 1 2 32 Flag 0x00 No FRR 1150 Flag 0x01 Global label 2 2 2 2 32 Flag 0x20 No FRR Node ID 3 1 1 1 32 Flag 0x09 FRR Avail Node Prot 3 1 1 2 32 Flag 0x00 No FRR 1151 Flag 0x01 Global label 3 3 3 3 32 Flag 0x20 No FRR Node ID 4 1 1 1 32 Flag 0x00 No FRR 4 1 1 2 32 Flag 0x00 No FRR 3 Flag 0x01 Global label 4 4 4 4 32 Flag 0x20 No FRR Node ID Fast Reroute protection Ready FRR ...

Page 162: ... Details not shown 2 Configure IS IS to advertise interface addresses including the loopback interface address Configure Router A RouterA system view RouterA isis 1 RouterA isis 1 network entity 00 0005 0000 0000 0001 00 RouterA isis 1 quit RouterA interface gigabitethernet 1 1 1 RouterA GigabitEthernet1 1 1 isis enable 1 RouterA GigabitEthernet1 1 1 isis circuit level level 2 RouterA GigabitEther...

Page 163: ...pos 1 1 0 RouterC POS1 1 0 isis enable 1 RouterC POS1 1 0 isis circuit level level 2 RouterC POS1 1 0 quit RouterC interface loopback 0 RouterC LoopBack0 isis enable 1 RouterC LoopBack0 isis circuit level level 2 RouterC LoopBack0 quit Configure Router D RouterD system view RouterD isis 1 RouterD isis 1 network entity 00 0005 0000 0000 0004 00 RouterD isis 1 quit RouterD interface gigabitethernet ...

Page 164: ...hernet 1 1 1 RouterA GigabitEthernet1 1 1 mpls enable RouterA GigabitEthernet1 1 1 mpls te enable RouterA GigabitEthernet1 1 1 rsvp enable RouterA GigabitEthernet1 1 1 quit Configure Router B RouterB mpls lsr id 2 2 2 9 RouterB mpls te RouterB te ds te mode ietf RouterB te quit RouterB rsvp RouterB rsvp quit RouterB interface gigabitethernet 1 1 1 RouterB GigabitEthernet1 1 1 mpls enable RouterB G...

Page 165: ... 1 1 quit 4 Enable IS IS TE and configure IS IS to receive and send only packets whose cost style is wide Configure Router A RouterA isis 1 RouterA isis 1 cost style wide RouterA isis 1 mpls te enable level 2 RouterA isis 1 quit Configure Router B RouterB isis 1 RouterB isis 1 cost style wide RouterB isis 1 mpls te enable level 2 RouterB isis 1 quit Configure Router C RouterC isis 1 RouterC isis 1...

Page 166: ...ace pos 1 1 0 RouterC POS1 1 0 mpls te max link bandwidth 10000 RouterC POS1 1 0 mpls te max reservable bandwidth rdm 10000 bc1 8000 bc2 5000 bc3 2000 RouterC POS1 1 0 quit Set the maximum bandwidth maximum reservable bandwidth and bandwidth constraints on Router D RouterD interface gigabitethernet 1 1 1 RouterD GigabitEthernet1 1 1 mpls te max link bandwidth 10000 RouterD GigabitEthernet1 1 1 mpl...

Page 167: ...ion about the MPLS TE tunnel on Router A RouterA display mpls te tunnel interface Tunnel Name Tunnel 1 Tunnel State Up Main CRLSP up Shared resource CRLSP down Tunnel Attributes LSP ID 36882 Tunnel ID 1 Admin State Normal Ingress LSR ID 1 1 1 9 Egress LSR ID 4 4 4 9 Signaling RSVP TE Static CRLSP Name Resv Style SE Tunnel mode Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type CT...

Page 168: ... BC Prestandard RDM kbps IETF RDM kbps IETF MAM kbps 0 0 10000 0 1 0 8000 0 2 5000 0 3 2000 0 TE Class Class Type Priority BW Reserved kbps BW Available kbps 0 0 7 0 6000 1 1 7 0 4000 2 2 7 0 1000 3 3 7 0 1000 4 0 0 0 6000 5 1 0 0 4000 6 2 0 4000 1000 7 3 0 0 1000 Execute the display ip routing table command on Router A The output shows a static route entry with interface Tunnel1 as the output int...

Page 169: ...200 1 1 2 24 GE1 1 1 10 1 1 2 24 GE1 1 3 40 1 1 1 2 24 GE1 1 2 100 1 1 1 24 Router C Loop0 3 3 3 3 32 GE1 1 1 20 1 1 2 24 GE1 1 2 200 1 1 1 24 Configuration procedure 1 Configure IP addresses and masks for interfaces including the loopback interfaces as shown in Table 10 Details not shown 2 Configure IS IS to advertise interface addresses including loopback interface addresses and configure IS IS ...

Page 170: ...thernet 1 1 4 RouterA interface GigabitEthernet 1 1 4 RouterA GigabitEthernet1 1 4 qos apply policy policy inbound RouterA GigabitEthernet1 1 4 quit 6 Set the CoSs for the MPLS TE tunnels Set the CoS to 3 for Tunnel 2 RouterA interface tunnel 2 mode mpls te RouterA Tunnel2 mpls te service class 3 RouterA Tunnel2 quit Set the CoS to 6 for Tunnel 3 RouterA interface tunnel 3 mode mpls te RouterA Tun...

Page 171: ...d Tunnel 3 on Router A RouterA display mpls te tunnel interface Tunnel 2 Tunnel Name Tunnel 2 Tunnel State Up Main CRLSP up Tunnel Attributes LSP ID 17418 Tunnel ID 2 Admin State Normal Ingress LSR ID 10 1 1 1 Egress LSR ID 40 1 1 1 Signaling RSVP TE Static CRLSP Name Static SRLSP Name main2 Resv Style Tunnel mode Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type Tunnel Bandwidt...

Page 172: ... Backup Explicit Path Metric Type TE Record Route Record Label FRR Flag Bandwidth Protection Backup Bandwidth Flag Backup Bandwidth Type Backup Bandwidth Bypass Tunnel Auto Created Route Pinning Retry Limit 3 Retry Interval 2 sec Reoptimization Reoptimization Freq Backup Type Backup LSP ID Auto Bandwidth Auto Bandwidth Freq Min Bandwidth Max Bandwidth Collected Bandwidth Service Class 6 The Servic...

Page 173: ...nt configuration command to verify that MPLS TE is configured on involved interfaces b Use the debugging ospf mpls te command to verify that OSPF can receive the TE LINK establishment message c Use the display ospf peer command to verify that OSPF neighbors are established correctly 2 If the problem persists contact Hewlett Packard Enterprise Support ...

Page 174: ...nterface You must specify the incoming label the outgoing label the next hop or the outgoing interface and the required bandwidth on each transit node If it is not configured with the penultimate hop popping function an egress node pops the incoming label of a packet It performs label forwarding according to the inner label or IP forwarding You are only required to specify the incoming label on th...

Page 175: ...xist Do not configure the next hop address as a local public IP address when configuring the static CRLSP on the ingress node or a transit node You do not need to execute the static cr lsp egress command on the egress node if the outgoing label configured on the penultimate hop of the static CRLSP is 0 or 3 Displaying static CRLSPs Execute display commands in any view Task Command Display static C...

Page 176: ...le 1 RouterA GigabitEthernet1 1 1 quit RouterA interface loopback 0 RouterA LoopBack0 isis enable 1 RouterA LoopBack0 quit Configure Router B RouterB system view RouterB isis 1 RouterB isis 1 network entity 00 0005 0000 0000 0002 00 RouterB isis 1 quit RouterB interface gigabitethernet 1 1 1 RouterB GigabitEthernet1 1 1 isis enable 1 RouterB GigabitEthernet1 1 1 quit RouterB interface gigabitether...

Page 177: ...outerB mpls te RouterB te quit RouterB interface gigabitethernet 1 1 1 RouterB GigabitEthernet1 1 1 mpls enable RouterB GigabitEthernet1 1 1 mpls te enable RouterB GigabitEthernet1 1 1 quit RouterB interface gigabitethernet 1 1 2 RouterB GigabitEthernet1 1 2 mpls enable RouterB GigabitEthernet1 1 2 mpls te enable RouterB GigabitEthernet1 1 2 quit Configure Router C RouterC mpls lsr id 3 3 3 3 Rout...

Page 178: ...c RouterA Tunnel0 quit 6 Create a static CRLSP Configure Router A as the ingress node of the static CRLSP and specify the next hop address as 2 1 1 2 outgoing label as 20 and required bandwidth as 2000 kbps RouterA static cr lsp ingress static cr lsp 1 nexthop 2 1 1 2 out label 20 bandwidth 2000 On Router A configure tunnel 0 to use the static CRLSP static cr lsp 1 RouterA interface Tunnel0 Router...

Page 179: ...rA display mpls te tunnel interface Tunnel Name Tunnel 0 Tunnel State Up Main CRLSP up Tunnel Attributes LSP ID 1 Tunnel ID 0 Admin State Normal Ingress LSR ID 1 1 1 1 Egress LSR ID 3 3 3 3 Signaling Static Static CRLSP Name static cr lsp 1 Resv Style Tunnel mode Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type Tunnel Bandwidth Reserved Bandwidth Setup Priority 0 Holding Priori...

Page 180: ...bel Out Interface State static cr lsp 1 Egress 30 Null Up Verify that Router A has a static route entry with interface Tunnel 0 as the output interface RouterA display ip routing table Destinations 12 Routes 12 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 1 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 2 1 1 0 24 Direct 0 0 2 1 1 1 GE1 1 1 2 1 1 0 32 Direct 0 0...

Page 181: ...sage processing errors to the sender They do not affect the state of the nodes along the path ResvErr messages Sent downstream by the sender or a transit node to notify the downstream nodes of an Resv message processing error or of a reservation error caused by preemption ResvConf messages Sent to the receiver to confirm Resv messages Hello messages Sent between any two directly connected RSVP nei...

Page 182: ...nd the CRLSP established based on this state is also removed The Path and Resv messages for refreshing the resource reservation states are collectively referred to as refresh messages Refresh messages can also be used to recover from lost RSVP messages When multiple RSVP sessions exist on a network a short refresh interval can cause network degradation but a long refresh interval cannot meet the r...

Page 183: ...signaling protocol or control plane fails so that LSRs can still forward packets according to forwarding entries RSVP GR defines the following roles GR restarter Router that gracefully restarts due to a manually configured command or a fault It must be GR capable GR helper Neighbor of the GR restarter A GR helper maintains the neighbor relationship with the GR restarter and helps the GR restarter ...

Page 184: ...ring RSVP GR Enabling BFD for RSVP Enabling RSVP Step Command Remarks 1 Enter system view system view N A 2 Enable global RSVP and enter RSVP view rsvp By default global RSVP is disabled 3 Return to system view quit N A 4 Enter interface view interface interface type interface number N A 5 Enable RSVP on the interface rsvp enable By default RSVP is disabled on the interface Configuring RSVP refres...

Page 185: ...nterval interval By default the RSVP message retransmission interval is 500 milliseconds This command takes effect after reliable RSVP message delivery is enabled by using the rsvp reduction srefresh reliability command Configuring RSVP hello extension When RSVP hello extension is enabled on an interface the device receives and sends hello messages through the interface to detect the neighbor s st...

Page 186: ...y to RSVP security associations established on the current interface Configurations in RSVP neighbor view interface view and RSVP view are in descending order of priority To configure RSVP authentication in RSVP neighbor view Step Command Remarks 1 Enter system view system view N A 2 Enter RSVP view rsvp N A 3 Create an RSVP authentication neighbor and enter RSVP neighbor view peer ip address By d...

Page 187: ...e can be received out of sequence To configure RSVP authentication in RSVP view Step Command Remarks 1 Enter system view system view N A 2 Enter RSVP view rsvp N A 3 Enable RSVP authentication globally and configure the authentication key authentication key cipher plain string By default RSVP authentication is disabled 4 Enable challenge response handshake globally authentication challenge By defa...

Page 188: ...nsion rsvp hello enable By default RSVP hello extension is disabled Enabling BFD for RSVP If a link fails MPLS TE tunnels over the link fail to forward packets MPLS TE cannot quickly detect a link failure To address this issue you can enable BFD for RSVP so MPLS TE can quickly switch data from the primary path to the backup path upon a link failure To enable BFD for RSVP Step Command Remarks 1 Ent...

Page 189: ...rce ip address tunnel id tunnel id nexthop ip address verbose Display information about RSVP path states display rsvp sender destination ip address source ip address tunnel id tunnel id lsp id lsp id verbose Display RSVP statistics display rsvp statistics interface interface type interface number Clear RSVP security associations reset rsvp authentication from ip address to ip address Clear RSVP st...

Page 190: ...resses including the loopback interface address Configure Router A RouterA system view RouterA isis 1 RouterA isis 1 network entity 00 0005 0000 0000 0001 00 RouterA isis 1 quit RouterA interface gigabitethernet 1 1 1 RouterA GigabitEthernet1 1 1 isis enable 1 RouterA GigabitEthernet1 1 1 isis circuit level level 2 RouterA GigabitEthernet1 1 1 quit RouterA interface loopback 0 RouterA LoopBack0 is...

Page 191: ...t RouterC interface gigabitethernet 1 1 0 RouterC GigabitEthernet1 1 0 isis enable 1 RouterC GigabitEthernet1 1 0 isis circuit level level 2 RouterC GigabitEthernet1 1 0 quit RouterC interface loopback 0 RouterC LoopBack0 isis enable 1 RouterC LoopBack0 isis circuit level level 2 RouterC LoopBack0 quit Configure Router D RouterD system view RouterD isis 1 RouterD isis 1 network entity 00 0005 0000...

Page 192: ...B interface gigabitethernet 1 1 0 RouterB GigabitEthernet1 1 0 mpls enable RouterB GigabitEthernet1 1 0 mpls te enable RouterB GigabitEthernet1 1 0 rsvp enable RouterB GigabitEthernet1 1 0 quit Configure Router C RouterC mpls lsr id 3 3 3 9 RouterC mpls te RouterC te quit RouterC rsvp RouterC rsvp quit RouterC interface gigabitethernet 1 1 1 RouterC GigabitEthernet1 1 1 mpls enable RouterC Gigabit...

Page 193: ...dth on Router A RouterA interface gigabitethernet 1 1 1 RouterA GigabitEthernet1 1 1 mpls te max link bandwidth 10000 RouterA GigabitEthernet1 1 1 mpls te max reservable bandwidth 5000 RouterA GigabitEthernet1 1 1 quit Set the maximum link bandwidth and maximum reservable bandwidth on Router B RouterB interface gigabitethernet 1 1 1 RouterB GigabitEthernet1 1 1 mpls te max link bandwidth 10000 Rou...

Page 194: ...t 7 Configure a static route on Router A to direct the traffic destined for subnet 100 1 2 0 24 to MPLS TE tunnel 1 RouterA ip route static 100 1 2 0 24 tunnel 1 preference 1 Verifying the configuration Verify that the tunnel interface is up on Router A RouterA display interface tunnel Tunnel1 Current state UP Line protocol state UP Description Tunnel1 Interface Bandwidth 64kbps Maximum transmissi...

Page 195: ...sabled Reoptimization Freq Backup Type None Backup LSP ID Auto Bandwidth Disabled Auto Bandwidth Freq Min Bandwidth Max Bandwidth Collected Bandwidth Execute the display ip routing table command on Router A to verify that a static route entry with interface Tunnel 1 as the output interface exists Details not shown RSVP GR configuration example Network requirements Router A Router B and Router C ru...

Page 196: ...gabitEthernet1 1 1 mpls te enable RouterB GigabitEthernet1 1 1 rsvp enable RouterB GigabitEthernet1 1 1 rsvp hello enable RouterB GigabitEthernet1 1 1 quit RouterB interface gigabitethernet 1 1 2 RouterB GigabitEthernet1 1 2 mpls enable RouterB GigabitEthernet1 1 2 mpls te enable RouterB GigabitEthernet1 1 2 rsvp enable RouterB GigabitEthernet1 1 2 rsvp hello enable RouterB GigabitEthernet1 1 2 qu...

Page 197: ...figuration After a tunnel is established from Router A to Router C display detailed RSVP neighbor information on Router A RouterA display rsvp peer verbose Peer 10 1 1 2 Interface GE1 1 1 Hello state Up Hello type Active PSB count 0 RSB count 1 Src instance 0x1f08 Dst instance 0x22 Summary refresh Disabled Graceful Restart state Ready Peer GR restart time 120000 ms Peer GR recovery time 0 ms The o...

Page 198: ...tunnel policy and specify the tunnel selection order and the number of tunnels by using the select seq load balance number command A tunnel type closer to the select seq keyword has a higher priority For example the select seq lsp gre load balance number 3 command gives LSP higher priority over GRE If no LSP is available or the number of LSPs is less than 3 VPN uses GRE tunnels The tunnels selecte...

Page 199: ...olicies exist 3 Configure tunnel selection methods Method 1 Configure a tunnel as a preferred tunnel preferred path tunnel number Method 2 Configure the tunnel selection order and the number of tunnels for load balancing select seq cr lsp gre lsp load balance number number Configure one or both methods By default no preferred tunnels are configured By default only one tunnel is selected in LSP GRE...

Page 200: ... vpn instance vpna tnl policy preferredte1 PE1 vpn instance vpna quit Create MPLS VPN instance vpnb and apply tunnel policy preferredte1 to it PE1 ip vpn instance vpnb PE1 vpn instance vpnb route distinguisher 100 2 PE1 vpn instance vpnb vpn target 100 2 PE1 vpn instance vpnb tnl policy preferredte1 Exclusive tunnel configuration example Network requirements PE 1 has multiple tunnels to reach PE 2...

Page 201: ...a exists on PE 1 Select only one tunnel in LDP LSP MPLS TE GRE order for this VPN Configuration procedure Create tunnel policy seq lsp te gre PE1 system view PE1 tunnel policy seq lsp te gre Specify the tunnel selection order and set the number of tunnels for load balancing to 1 no load balancing PE1 tunnel policy seq lsp te gre select seq lsp cr lsp gre load balance number 1 PE1 tunnel policy seq...

Page 202: ...gre2 preferred path tunnel 2 PE1 tunnel policy preferredgre2 quit Create tunnel policy select lsp PE1 tunnel policy select lsp Configure the policy to select only one tunnel in LDP LSP GRE MPLS TE order PE1 tunnel policy select lsp select seq lsp gre cr lsp load balance number 1 PE1 tunnel policy select lsp quit 2 Configure MPLS VPN instances and apply tunnel policies to the VPN instances Create M...

Page 203: ...PE1 vpn instance vpne vpn target 100 5 PE1 vpn instance vpne tnl policy preferredgre2 PE1 vpn instance vpne quit PE1 ip vpn instance vpnf PE1 vpn instance vpnf route distinguisher 100 6 PE1 vpn instance vpnf vpn target 100 6 PE1 vpn instance vpnf tnl policy preferredgre2 PE1 vpn instance vpnf quit Create MPLS VPN instance vpng and apply tunnel policy select lsp to it PE1 ip vpn instance vpng PE1 v...

Page 204: ...customer network and has one or more interfaces directly connected to a service provider network It does not support MPLS Provider edge device A PE device resides at the edge of a service provider network and is connected to one or more CEs All MPLS VPN services are processed on PEs Provider device A P device is a core device on a service provider network It is not directly connected to any CEs A ...

Page 205: ...tance contains the VPN membership and routing rules of associated sites VPN IPv4 address Each VPN independently manages its address space The address spaces of VPNs might overlap For example if both VPN 1 and VPN 2 use the addresses on subnet 10 110 10 0 24 address space overlapping occurs BGP cannot process overlapping VPN address spaces For example if both VPN 1 and VPN 2 use the subnet 10 110 1...

Page 206: ...ed number where the minimum value of the AS number is 65536 For example 65536 1 MP BGP MP BGP supports multiple address families including IPv4 multicast IPv6 unicast IPv6 multicast and VPN IPv4 address families In MPLS L3VPN MP BGP advertises VPN IPv4 routes for VPN sites between PEs MPLS L3VPN route advertisement In a basic MPLS L3VPN CEs and PEs are responsible for advertising VPN routing infor...

Page 207: ...E 1 performs the following operations a Finds the matching VPN route based on the inbound interface and destination address of the packet b Labels the packet with both the inner label and the outer tag c Forwards the packet to the public tunnel 3 P devices forward the packet to PE 2 by the outer tag If the outer tag is an MPLS label the label is removed from the packet at the penultimate hop If th...

Page 208: ... with the VPN 2 sites Hub and spoke networking scheme The hub and spoke networking scheme is suitable for a VPN where all users must communicate with each other through an access control device In a hub and spoke network as shown in Figure 52 configure route targets as follows On spoke PEs PEs connected to spoke sites set the export target to Spoke and the import target to Hub On the hub PE PE con...

Page 209: ...oute to Hub CE 4 Hub CE advertises the IPv4 route back to Hub PE 5 Hub PE adds the IPv4 route to the routing table of VPN 1 out changes it to a VPN IPv4 route and advertises the VPN IPv4 route to Spoke PE 2 through MP BGP 6 Spoke PE 2 changes the VPN IPv4 route to the original IPv4 route and advertises the IPv4 route to Site 2 After spoke sites exchange routes through the hub site they can communi...

Page 210: ...ple ISPs in different ASs or to multiple ASs of an ISP Inter AS VPN provides the following solutions VRF to VRF connections between ASBRs This solution is also called inter AS option A EBGP redistribution of labeled VPN IPv4 routes between ASBRs ASBRs advertise VPN IPv4 routes to each other through MP EBGP This solution is also called inter AS option B Multihop EBGP redistribution of labeled VPN I...

Page 211: ...to the receiving interface and advertises the routes to PE 3 through MP IBGP 4 PE 3 advertises the received routes to CE 3 Packets forwarded within an AS are VPN packets that carry two labels Packets forwarded between ASBRs are common IP packets Inter AS option A is easy to carry out because no special configuration is required on the PEs acting as the ASBRs However it has limited scalability beca...

Page 212: ...nnel from PE 3 to ASBR 2 6 ASBR 2 removes the outer tag replaces L3 with L2 and forwards the packet to ASBR 1 Packets between ASBR 1 and ASBR 2 carry only one inner label 7 ASBR 1 replaces L2 with L1 adds the outer tag of the public tunnel from ASBR 1 to PE 1 and forwards the packet to PE 1 8 PE 1 removes the inner label and outer tag and forwards the packet to CE 1 In this solution ASBRs must rec...

Page 213: ... in this solution A public tunnel for example the one from PE 3 to PE 1 is set up by using the following process 3 Within AS 100 the public tunnel from ASBR 1 to PE 1 is set up by using a label distribution protocol for example LDP Assume that the outgoing label for the public tunnel on ASBR 1 is L1 4 ASBR 1 advertises labeled IPv4 unicast routes to ASBR 2 through EBGP The route destined for PE 1 ...

Page 214: ... 1 according to the inner label Lx As shown in Figure 57 to improve scalability you can specify a route reflector RR in each AS to exchange VPN IPv4 routes with PEs in the same AS The RR in each AS maintains all VPN IPv4 routes The RRs in two ASs establish a multihop MP EBGP session to advertise VPN IPv4 routes Figure 57 Network diagram for inter AS option C using RRs Carrier s carrier If a custom...

Page 215: ...em You must enable MPLS on the CE of the Level 2 carrier regardless of whether the PE and CE are in the same AS A Level 2 carrier can be an ordinary ISP or an MPLS L3VPN service provider As shown in Figure 58 when the customer carrier is an ordinary ISP its PEs and CEs run IGP to communicate with each other The PEs do not need to run MPLS PE 3 and PE 4 exchange customer network routes IPv4 unicast...

Page 216: ...is a customer VPN named VPN A The customer VPN contains two sub VPNs VPN A 1 and VPN A 2 The service provider PEs consider the customer s network as a common VPN user and do not join any sub VPNs The service provider CE devices CE 1 and CE 2 exchange VPNv4 routes including sub VPN routing information with the service provider PEs which implements the propagation of the sub VPN routing information ...

Page 217: ...the VPN IPv4 routes to the import targets of its local VPNs Each local VPN accepts routes of its own and advertises them to provider CEs If a provider CE such as CE 7 and CE 8 in Figure 60 is connected to a provider PE through an IPv4 connection the PE advertises IPv4 routes to the CE If it is a VPN IPv4 connection a customer MPLS VPN network the PE advertises VPN IPv4 routes to the CE 6 After rec...

Page 218: ...ure a static route for VPN instance vpn2 to reach the multirole host Specify the next hop of the route as the IP address of CE 1 and specify the VPN instance to which the next hop belongs as VPN 1 This configuration ensures that packets from VPN 2 can be routed to the multirole host Configure static routes for all VPN instances that the multirole host needs to access except the associated VPN inst...

Page 219: ... connected through UPEs including the routes of both the local and remote sites An SPE advertises routes along with labels to UPEs including the default routes of VPN instances or summary routes and the routes permitted by the routing policy By using routing policies you can control which sites in a VPN can communicate with each other An SPE features large routing table capacity high forwarding pe...

Page 220: ...t multiple OSPF instances to create independent routing tables for VPN instances Each OSPF process is bound to a VPN instance Routes learned by an OSPF process are added into the routing table of the bound VPN instance OSPF area configuration between a PE and a CE The OSPF area between a PE and a CE can be either a non backbone area or a backbone area In the OSPF VPN extension application the MPLS...

Page 221: ...s Type 7 After domain ID configuration VPN 1 routes are advertised from CE 11 to CE 21 and CE 22 by using the following process 3 PE 1 redistributes OSPF routes into BGP adds the domain ID to the redistributed BGP VPNv4 routes as a BGP extended community attribute and advertises the routes to PE 2 4 PE 2 compares the domain ID in the received routes with the locally configured domain ID If they ar...

Page 222: ...in ID or with different domain IDs A direct route between CEs It is an intra area route that is called a backdoor link VPN traffic is always forwarded through the backdoor link because it has a higher priority than the inter area route To forward VPN traffic over the inter area route you can establish a sham link between the two PEs to change the inter area route to an intra area route Figure 66 N...

Page 223: ...oute updates received from CE 2 or CE 3 and checks the SoO attribute of route updates to be advertised to CE 2 or CE 3 The SoO attribute of the route updates from CE 3 is the same as the SoO attribute for CE 2 and PE 2 does not advertise route updates to CE 2 For more information about the SoO attribute see Layer 3 IP Routing Configuration Guide MPLS L3VPN FRR MPLS L3VPN Fast Reroute FRR is applic...

Page 224: ... 3 both routes are destined for VPN 1 connected to CE 2 PE 2 uses the IPv4 route as the primary link and the VPNv4 route as the backup link Figure 69 Network diagram PE 2 uses ARP or echo mode BFD to detect the connectivity of the link from PE 2 to CE 2 When the link operates correctly traffic from CE 1 to CE 2 goes through the path CE 1 PE 1 PE 2 CE 2 When the link fails PE 2 switches traffic to ...

Page 225: ...BGP 4 RFC 4360 BGP Extended Communities Attribute RFC 4364 BGP MPLS IP Virtual Private Networks VPNs RFC 4577 OSPF as the Provider Customer Edge Protocol for BGP MPLS IP Virtual Private Networks VPNs MPLS L3VPN configuration task list Tasks at a glance Required Configuring basic MPLS L3VPN Optional Configuring inter AS VPN Optional Configuring nested VPN Optional Configuring multirole host Optiona...

Page 226: ...ces VPN instances isolate VPN routes from public network routes and routes among VPNs This feature allows VPN instances to be used in network scenarios in addition to MPLS L3VPNs All VPN instance configurations are performed on PEs or MCEs Creating a VPN instance A VPN instance is a collection of the VPN membership and routing rules of its associated site A VPN instance might correspond to more th...

Page 227: ...view N A 2 Enter interface view interface interface type interface number N A 3 Associate a VPN instance with the interface ip binding vpn instance vpn instance name By default an interface is not associated with a VPN instance and belongs to the public network The ip binding vpn instance command deletes the IP address of the current interface You must reconfigure an IP address for the interface a...

Page 228: ...e tnl policy tunnel policy name By default only one tunnel is selected no load balancing in this order LSP tunnel GRE tunnel and CR LSP tunnel The specified tunnel policy must have been created For information about tunnel policies see Configuring tunnel policies Configuring routing between a PE and a CE You can configure static routing RIP OSPF IS IS EBGP or IBGP between a PE and a CE Configuring...

Page 229: ...ance An OSPF process belongs to the public network or a single VPN instance If you create an OSPF process without binding it to a VPN instance the process belongs to the public network To configure OSPF between a PE and a CE Step Command Remarks 1 Enter system view system view N A 2 Create an OSPF process for a VPN instance and enter the OSPF view ospf process id router id router id vpn instance v...

Page 230: ...r a VPN instance and enter IS IS view isis process id vpn instance vpn instance name Perform this configuration on the PE On the CE configure common IS IS 3 Configure a network entity title for the IS IS process network entity net By default no NET is configured 4 Return to system view quit N A 5 Enter interface view interface interface type interface number N A 6 Enable the IS IS process on the i...

Page 231: ...re EBGP is running between a PE and a CE the routing information the PE advertises to a CE carries the AS number of the PE Therefore the route updates that the PE receives from the CE also include the AS number of the PE This causes the PE to be unable to receive the route updates In this case you must configure this command to allow routing loops 2 Configure the CE Step Command Remarks 1 Enter sy...

Page 232: ... IPv4 unicast family is not created 6 Enable IPv4 unicast route exchange with the specified peer peer group name ip address mask length enable By default BGP does not exchange IPv4 unicast routes with any peer 2 Configure the CE Step Command Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance name N A 3 Configure the PE as an IBGP peer peer group n...

Page 233: ...onfigured in BGP VPNv4 address family view For more information about BGP route control see Layer 3 IP Routing Configuration Guide To configure BGP VPNv4 route control Step Command Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance name N A 3 Enter BGP VPNv4 address family view address family vpnv4 N A 4 Configure filtering of advertised routes fi...

Page 234: ...this command on the RR so the RR does not change the next hop of routes sent to BGP peers and clients 14 Set a preferred value for routes received from a peer or peer group peer group name ipv4 address mask length preferred value value By default the preferred value is 0 15 Apply a prefix list to filter routes received from or advertised to a peer or peer group peer group name ipv4 address mask le...

Page 235: ... AS option A create VPN instances on PEs and ASBRs The VPN instances on PEs are used to allow CEs to access the network The VPN instances on ASBRs are used to access the peer ASBRs An ASBR considers the peer ASBR as a CE The route targets configured on the PEs must match those configured on the ASBRs in the same AS to make sure VPN routes sent by the PEs or ASBRs can be received by the ASBRs or PE...

Page 236: ...9 Enter BGP instance view bgp as number instance instance name N A 10 Create a BGP peer peer group name ipv4 address mask length as number as number By default no BGP peers exist Configure PEs in the same AS as IBGP peers and ASBRs in different ASs as EBGP peers 11 Enter BGP VPNv4 address family view address family vpnv4 N A 12 Enable BGP to exchange VPNv4 routes with the PE in the same AS and the...

Page 237: ...igure a PE for inter AS option C Step Command Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance name N A 3 Configure the ASBR in the same AS as an IBGP peer peer group name ipv4 address mask length as number as number By default no BGP peers exist 4 Configure the PE of another AS as an EBGP peer peer group name ipv4 address mask length as number ...

Page 238: ...mpls label command to set new MPLS labels for routes with MPLS labels The newly assigned labels are advertised along with the routes For more information about routing policy configuration see Layer 3 IP Routing Configuration Guide To configure an ASBR for inter AS option C Step Command Remarks 1 Enter system view system view N A 2 Optional Create a routing policy and enter routing policy view rou...

Page 239: ...r peer group peer group name ipv4 address mask length route policy route policy name export import By default no routing policy is applied Configuring nested VPN For a network with many VPNs nested VPN is a good solution to implement layered management of VPNs and to conceal the deployment of internal VPNs To build a nested VPN network perform the following configurations Configurations between cu...

Page 240: ...number By default no peer is specified 8 Create the BGP VPN VPNv4 address family and enter its view address family vpnv4 By default the BGP VPN VPNv4 address family is not created 9 Enable BGP VPNv4 route exchange with the peer CE or the peer group of the peer CE peer group name ipv4 address mask length enable By default BGP does not exchange VPNv4 routes with any peer 10 Optional Configure the So...

Page 241: ...e policy name By default no policy is applied to the interface Configuring a static route Step Command Remarks 1 Enter system view system view N A 2 Configure a static route for a VPN instance to reach the multirole host ip route static vpn instance s vpn instance name dest address mask length mask vpn instance d vpn instance name next hop address track track entry number permanent preference pref...

Page 242: ...Advertise routes permitted by a routing policy to the UPE peer group name ipv4 address mask length upe route policy route policy name export By default no route is advertised to the UPE Do not configure both commands The peer default route advertise vpn instance command advertises a default route using the local address as the next hop to the UPE regardless of whether the default route exists in t...

Page 243: ...w bgp as number instance instance name N A 3 Enter BGP VPN instance view ip vpn instance vpn instance name N A 4 Enter BGP VPN IPv4 unicast address family view address family ipv4 unicast N A 5 Redistribute direct routes into BGP including the loopback interface route import route direct By default no direct routes are redistributed into BGP Creating a sham link Step Command Remarks 1 Enter system...

Page 244: ...Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance name N A 3 Specify the VPN label processing mode as POPGO forwarding vpn popgo The default is POP forwarding Configuring BGP AS number substitution and SoO attribute When CEs at different sites have the same AS number configure the BGP AS number substitution feature to avoid route loss When a PE u...

Page 245: ...oute policy command in BGP VPN IPv4 unicast address family view to use a routing policy In the routing policy specify a backup next hop by using the apply fast reroute backup nexthop command The backup next hop calculated by the device must be the same as the specified backup next hop Otherwise the device does not generate a backup next hop for the primary route You can also configure if match cla...

Page 246: ... policy route policy name permit node node number By default no routing policies exist This step is required to enable MPLS L3VPN FRR in Method 2 For more information about this command see Layer 3 IP Routing Command Reference 6 Set the backup next hop for FRR apply fast reroute backup nexthop ip address By default no backup next hop address is set for FRR This step is required to enable MPLS L3VP...

Page 247: ...erform this task to enable each LPU on the device to implement load sharing among its CPU cores based on the five tuple in IP packets The five tuple contains source IP address source port number destination IP address destination port number and IP protocol number To configure the LPU load sharing mode Step Command Remarks 1 Enter system view system view N A 2 Configure LPUs to implement load shar...

Page 248: ...mand Remarks 1 Enter system view system view N A 2 Enable SNMP notifications for MPLS L3VPN snmp agent trap enable l3vpn By default SNMP notifications for MPLS L3VPN are enabled Displaying and maintaining MPLS L3VPN You can soft reset or reset BGP sessions to apply new BGP configurations A soft reset operation updates BGP routing information without tearing down BGP connections A reset operation u...

Page 249: ... name peer ipv4 address advertised routes received routes ipv4 address mask mask length statistics statistics Display incoming labels for BGP IPv4 unicast routes display bgp instance instance name routing table ipv4 unicast vpn instance vpn instance name inlabel Display outgoing labels for BGP IPv4 unicast routes display bgp instance instance name routing table ipv4 unicast vpn instance vpn instan...

Page 250: ...3 3 9 32 POS1 1 0 172 1 1 1 24 GE1 1 1 10 3 1 2 24 CE 2 GE1 1 1 10 2 1 1 24 GE1 1 2 10 4 1 2 24 CE 3 GE1 1 1 10 3 1 1 24 POS1 1 0 172 2 1 2 24 CE 4 GE1 1 1 10 4 1 1 24 Configuration procedure 1 Configure OSPF on the MPLS backbone to ensure IP connectivity within the backbone Configure PE 1 PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 1 1 1 9 32 PE1 LoopBack0 quit PE1 interface...

Page 251: ...2 LoopBack0 quit PE2 interface pos 1 1 0 PE2 Pos1 1 0 ip address 172 2 1 2 24 PE2 Pos1 1 0 quit PE2 ospf PE2 ospf 1 area 0 PE2 ospf 1 area 0 0 0 0 network 172 2 1 0 0 0 0 255 PE2 ospf 1 area 0 0 0 0 network 3 3 3 9 0 0 0 0 PE2 ospf 1 area 0 0 0 0 quit PE2 ospf 1 quit Execute the display ospf peer command to verify that OSPF adjacencies in Full state have been established between PE 1 P and PE 2 Ex...

Page 252: ...figure PE 1 PE1 ip vpn instance vpn1 PE1 vpn instance vpn1 route distinguisher 100 1 PE1 vpn instance vpn1 vpn target 111 1 PE1 vpn instance vpn1 quit PE1 ip vpn instance vpn2 PE1 vpn instance vpn2 route distinguisher 100 2 PE1 vpn instance vpn2 vpn target 222 2 PE1 vpn instance vpn2 quit PE1 interface gigabitethernet 1 1 1 PE1 GigabitEthernet1 1 1 ip binding vpn instance vpn1 PE1 GigabitEthernet1...

Page 253: ...ress CTRL_C to break 56 bytes from 10 1 1 1 icmp_seq 0 ttl 255 time 1 000 ms 56 bytes from 10 1 1 1 icmp_seq 1 ttl 255 time 2 000 ms 56 bytes from 10 1 1 1 icmp_seq 2 ttl 255 time 0 000 ms 56 bytes from 10 1 1 1 icmp_seq 3 ttl 255 time 1 000 ms 56 bytes from 10 1 1 1 icmp_seq 4 ttl 255 time 0 000 ms Ping statistics for 10 1 1 1 5 packet s transmitted 5 packet s received 0 0 packet loss round trip ...

Page 254: ...default vpnv4 quit PE1 bgp default quit Configure PE 2 PE2 bgp 100 PE2 bgp default peer 1 1 1 9 as number 100 PE2 bgp default peer 1 1 1 9 connect interface loopback 0 PE2 bgp default address family vpnv4 PE2 bgp default vpnv4 peer 1 1 1 9 enable PE2 bgp default vpnv4 quit PE2 bgp default quit Execute the display bgp peer vpnv4 command on the PEs to verify that a BGP peer relationship in Establish...

Page 255: ...use a GRE tunnel to encapsulate and forward VPN packets to implement MPLS L3VPN Configure tunnel policies on the PEs and specify the tunnel type for VPN traffic as GRE Figure 72 Network diagram Table 14 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 GE1 1 1 10 1 1 1 24 P POS1 1 0 172 1 1 2 24 PE 1 Loop0 1 1 1 9 32 POS1 1 1 172 2 1 1 24 GE1 1 1 10 1...

Page 256: ...instance vpn1 vpn target 100 1 both PE1 vpn instance vpn1 tnl policy gre1 PE1 vpn instance vpn1 quit PE1 interface gigabitethernet 1 1 1 PE1 GigabitEthernet1 1 1 ip binding vpn instance vpn1 PE1 GigabitEthernet1 1 1 ip address 10 1 1 2 24 PE1 GigabitEthernet1 1 1 quit Configure PE 2 PE2 tunnel policy gre1 PE2 tunnel policy gre1 select seq gre load balance number 1 PE2 tunnel policy gre1 quit PE2 i...

Page 257: ...00 0 400 ms 4 Establish EBGP peer relationships between PEs and CEs and redistribute VPN routes into BGP Configure CE 1 CE1 bgp 65410 CE1 bgp default peer 10 1 1 2 as number 100 CE1 bgp default address family ipv4 unicast CE1 bgp default ipv4 peer 10 1 1 2 enable CE1 bgp default ipv4 import route direct CE1 bgp default ipv4 quit CE1 bgp default quit Configure PE 1 PE1 bgp 100 PE1 bgp default ip vp...

Page 258: ...stination 1 1 1 9 PE2 Tunnel0 ip address 20 1 1 2 24 PE2 Tunnel0 mpls enable PE2 Tunnel0 quit Verifying the configuration Use the following command on CE 1 to verify that the CEs have learned the interface route from each other CE1 display ip routing table Destinations 13 Routes 13 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 0 24 Direct 0 0 10 1...

Page 259: ...0 3 1 1 24 Spoke PE 1 Loop0 1 1 1 9 32 GE1 1 2 10 4 1 1 24 GE1 1 1 10 1 1 2 24 Hub PE Loop0 2 2 2 9 32 POS1 1 0 172 1 1 1 24 POS1 1 0 172 1 1 2 24 Spoke CE 2 GE1 1 1 10 2 1 1 24 POS1 1 1 172 2 1 2 24 Spoke PE 2 Loop0 3 3 3 9 32 GE1 1 1 10 3 1 2 24 GE1 1 1 10 2 1 2 24 GE1 1 2 10 4 1 2 24 POS1 1 0 172 2 1 1 24 Configuration procedure 1 Configure an IGP on the MPLS backbone to ensure IP connectivity ...

Page 260: ... system view Hub PE interface loopback 0 Hub PE LoopBack0 ip address 2 2 2 9 32 Hub PE LoopBack0 quit Hub PE interface pos 1 1 0 Hub PE Pos1 1 0 ip address 172 1 1 2 24 Hub PE Pos1 1 0 quit Hub PE interface pos 1 1 1 Hub PE Pos1 1 1 ip address 172 2 1 2 24 Hub PE Pos1 1 1 quit Hub PE ospf Hub PE ospf 1 area 0 Hub PE ospf 1 area 0 0 0 0 network 172 1 1 0 0 0 0 255 Hub PE ospf 1 area 0 0 0 0 network...

Page 261: ...d between Spoke PE 1 Spoke PE 2 and Hub PE Execute the display mpls ldp lsp command on the devices to verify that the LSPs have been established by LDP Details not shown 3 Configure VPN instances on the Spoke PEs and Hub PE Configure Spoke PE 1 Spoke PE1 ip vpn instance vpn1 Spoke PE1 vpn instance vpn1 route distinguisher 100 1 Spoke PE1 vpn instance vpn1 vpn target 111 1 import extcommunity Spoke...

Page 262: ... Details not shown Execute the display ip vpn instance command on the PEs to display the configuration of the VPN instance for example on Spoke PE 1 Spoke PE1 display ip vpn instance Total VPN Instances configured 1 VPN Instance Name RD Create time vpn1 100 1 2009 04 08 10 55 07 Use the ping command on the PEs to verify that the PEs can ping their attached CEs for example on Spoke PE 1 Spoke PE1 p...

Page 263: ...ort route direct Hub CE bgp default ipv4 quit Hub CE bgp default quit Configure Spoke PE 1 Spoke PE1 bgp 100 Spoke PE1 bgp default ip vpn instance vpn1 Spoke PE1 bgp default vpn1 peer 10 1 1 1 as number 65410 Spoke PE1 bgp default vpn1 address family ipv4 Spoke PE1 bgp default ipv4 vpn1 peer 10 1 1 1 enable Spoke PE1 bgp default ipv4 vpn1 quit Spoke PE1 bgp default vpn1 quit Spoke PE1 bgp default ...

Page 264: ...figure Spoke PE 2 Spoke PE2 bgp 100 Spoke PE2 bgp default peer 2 2 2 9 as number 100 Spoke PE2 bgp default peer 2 2 2 9 connect interface loopback 0 Spoke PE2 bgp default address family vpnv4 Spoke PE2 bgp default vpnv4 peer 2 2 2 9 enable Spoke PE2 bgp default vpnv4 quit Spoke PE2 bgp default quit Configure Hub PE Hub PE bgp 100 Hub PE bgp default peer 1 1 1 9 as number 100 Hub PE bgp default pee...

Page 265: ...ic from Spoke CE 1 to Spoke CE 2 passes six hops 255 250 1 and is forwarded through Hub CE This example uses Spoke CE 1 to verify their connectivity Spoke CE1 ping 10 2 1 1 Ping 10 2 1 1 10 2 1 1 56 data bytes press CTRL_C to break 56 bytes from 10 2 1 1 icmp_seq 0 ttl 250 time 1 000 ms 56 bytes from 10 2 1 1 icmp_seq 1 ttl 250 time 2 000 ms 56 bytes from 10 2 1 1 icmp_seq 2 ttl 250 time 0 000 ms ...

Page 266: ...LS backbone This example uses OSPF Details not shown Execute the display ospf peer command to verify that each ASBR PE has established an OSPF adjacency in Full state with the PE in the same AS and that PEs and ASBR PEs in the same AS have learned the routes to the loopback interfaces of each other Verify that each ASBR PE and the PE in the same AS can ping each other Details not shown 2 Configure...

Page 267: ... ldp PE2 ldp quit PE2 interface pos 1 1 0 PE2 Pos1 1 0 mpls enable PE2 Pos1 1 0 mpls ldp enable PE2 Pos1 1 0 quit Execute the display mpls ldp peer command on the devices to verify that the LDP session status is Operational and that each PE and the ASBR PE in the same AS have established an LDP neighbor relationship Details not shown 3 Configure VPN instances on PEs For the same VPN the route targ...

Page 268: ... 1 ASBR PE1 Pos1 1 1 ip binding vpn instance vpn1 ASBR PE1 Pos1 1 1 ip address 192 1 1 1 24 ASBR PE1 Pos1 1 1 quit On ASBR PE 2 create a VPN instance and bind the instance to the interface connected to ASBR PE 1 ASBR PE 2 considers ASBR PE 1 to be its CE ASBR PE2 ip vpn instance vpn1 ASBR PE2 vpn vpn1 route distinguisher 200 1 ASBR PE2 vpn vpn1 vpn target 200 1 both ASBR PE2 vpn vpn1 quit ASBR PE2...

Page 269: ... ipv4 vpn1 quit PE2 bgp default vpn1 quit PE2 bgp default quit 5 Establish an MP IBGP peer relationship between each PE and the ASBR PE in the same AS and an EBGP peer relationship between the ASBR PEs Configure PE 1 PE1 bgp 100 PE1 bgp default peer 2 2 2 9 as number 100 PE1 bgp default peer 2 2 2 9 connect interface loopback 0 PE1 bgp default address family vpnv4 PE1 bgp default vpnv4 peer 2 2 2 ...

Page 270: ...BR PE2 bgp default quit Configure PE 2 PE2 bgp 200 PE2 bgp default peer 3 3 3 9 as number 200 PE2 bgp default peer 3 3 3 9 connect interface loopback 0 PE2 bgp default address family vpnv4 PE2 bgp default vpnv4 peer 3 3 3 9 enable PE2 bgp default vpnv4 peer 3 3 3 9 next hop local PE2 bgp default vpnv4 quit PE2 bgp default quit Verifying the configuration Verify that the CEs can learn the interface...

Page 271: ...tem view PE1 isis 1 PE1 isis 1 network entity 10 111 111 111 111 00 PE1 isis 1 quit Configure LSR ID and enable MPLS and LDP PE1 mpls lsr id 2 2 2 9 PE1 mpls ldp PE1 ldp quit Configure interface Serial 1 1 0 and enable IS IS MPLS and LDP on the interface PE1 interface serial 1 1 0 PE1 Serial1 1 0 ip address 1 1 1 2 255 0 0 0 PE1 Serial1 1 0 isis enable 1 PE1 Serial1 1 0 mpls enable PE1 Serial1 1 0...

Page 272: ...number 100 PE1 bgp default peer 3 3 3 9 connect interface loopback 0 PE1 bgp default address family vpnv4 PE1 bgp default vpnv4 peer 3 3 3 9 enable PE1 bgp default vpnv4 quit Redistribute direct routes to the VPN routing table of vpn1 PE1 bgp default ip vpn instance vpn1 PE1 bgp default vpn1 address family ipv4 unicast PE1 bgp default ipv4 vpn1 import route direct PE1 bgp default ipv4 vpn1 quit PE...

Page 273: ...IBGP peer 2 2 2 9 and EBGP peer 11 0 0 1 as VPNv4 peers ASBR PE1 bgp default vpnv4 peer 11 0 0 1 enable ASBR PE1 bgp default vpnv4 peer 2 2 2 9 enable ASBR PE1 bgp default vpnv4 quit 3 Configure ASBR PE 2 Enable IS IS on ASBR PE 2 ASBR PE2 system view ASBR PE2 isis 1 ASBR PE2 isis 1 network entity 10 222 222 222 222 00 ASBR PE2 isis 1 quit Configure LSR ID and enable MPLS and LDP ASBR PE2 mpls lsr...

Page 274: ... view PE2 isis 1 PE2 isis 1 network entity 10 111 111 111 111 00 PE2 isis 1 quit Configure the LSR ID and enable MPLS and LDP PE2 mpls lsr id 5 5 5 9 PE2 mpls ldp PE2 ldp quit Configure interface Serial 1 1 0 and enable IS IS MPLS and LDP on the interface PE2 interface serial 1 1 0 PE2 Serial1 1 0 ip address 9 1 1 2 255 0 0 0 PE2 Serial1 1 0 isis enable 1 PE2 Serial1 1 0 mpls enable PE2 Serial1 1 ...

Page 275: ...1 from 30 0 0 1 56 data bytes press CTRL_C to break 56 bytes from 20 0 0 1 icmp_seq 0 ttl 255 time 1 208 ms 56 bytes from 20 0 0 1 icmp_seq 1 ttl 255 time 0 867 ms 56 bytes from 20 0 0 1 icmp_seq 2 ttl 255 time 0 551 ms 56 bytes from 20 0 0 1 icmp_seq 3 ttl 255 time 0 566 ms 56 bytes from 20 0 0 1 icmp_seq 4 ttl 255 time 0 570 ms Ping statistics for 20 0 0 1 5 packet s transmitted 5 packet s recei...

Page 276: ... GE1 1 1 20 0 0 2 24 Configuration procedure 1 Configure CE 1 Configure an IP address for GigabitEthernet 1 1 1 CE1 system view CE1 interface gigabitethernet 1 1 1 CE1 GigabitEthernet1 1 1 ip address 30 0 0 2 24 CE1 GigabitEthernet1 1 1 quit Establish an EBGP peer relationship with PE 1 and redistribute VPN routes CE1 bgp 65001 CE1 bgp default peer 30 0 0 1 as number 100 CE1 bgp default address fa...

Page 277: ...munity PE1 vpn instance vpn1 quit Associate interface GigabitEthernet 1 1 1 with VPN instance vpn1 and specify the IP address for the interface PE1 interface gigabitethernet 1 1 1 PE1 GigabitEthernet1 1 1 ip binding vpn instance vpn1 PE1 GigabitEthernet1 1 1 ip address 30 0 0 1 24 PE1 GigabitEthernet1 1 1 quit Start BGP on PE 1 PE1 bgp 100 Enable the capability to advertise labeled routes to IBGP ...

Page 278: ...erial1 1 0 ip address 1 1 1 1 255 0 0 0 ASBR PE1 Serial1 1 0 isis enable 1 ASBR PE1 Serial1 1 0 mpls enable ASBR PE1 Serial1 1 0 mpls ldp enable ASBR PE1 Serial1 1 0 quit Configure interface Serial 1 1 1 and enable MPLS on it ASBR PE1 interface serial 1 1 1 ASBR PE1 Serial1 1 1 ip address 11 0 0 2 255 0 0 0 ASBR PE1 Serial1 1 1 mpls enable ASBR PE1 Serial1 1 1 quit Configure interface Loopback 0 a...

Page 279: ...eer 11 0 0 1 and to receive labeled routes from the peer ASBR PE1 bgp default ipv4 peer 11 0 0 1 label route capability ASBR PE1 bgp default ipv4 quit ASBR PE1 bgp default quit 4 Configure ASBR PE 2 Enable IS IS on ASBR PE 2 ASBR PE2 system view ASBR PE2 isis 1 ASBR PE2 isis 1 network entity 10 222 222 222 222 00 ASBR PE2 isis 1 quit Configure the LSR ID and enable MPLS and LDP ASBR PE2 mpls lsr i...

Page 280: ...ute routes from IS IS process 1 ASBR PE2 bgp default ipv4 import route isis 1 ASBR PE2 bgp default ipv4 quit Apply the routing policy policy1 to routes advertised to EBGP peer 11 0 0 2 ASBR PE2 bgp default peer 11 0 0 2 as number 100 ASBR PE2 bgp default address family ipv4 unicast ASBR PE2 bgp default ipv4 peer 11 0 0 2 enable ASBR PE2 bgp default ipv4 peer 11 0 0 2 route policy policy1 export En...

Page 281: ...er 4 4 4 9 as number 600 PE2 bgp default peer 4 4 4 9 connect interface loopback 0 PE2 bgp default address family ipv4 unicast PE2 bgp default ipv4 peer 4 4 4 9 enable PE2 bgp default ipv4 peer 4 4 4 9 label route capability PE2 bgp default ipv4 quit Configure the maximum hop count from PE 2 to EBGP peer 2 2 2 9 as 10 PE2 bgp default peer 2 2 2 9 as number 100 PE2 bgp default peer 2 2 2 9 connect ...

Page 282: ...figure carrier s carrier for the scenario shown in Figure 77 In this scenario PE 1 and PE 2 are the provider carrier s PE routers They provide VPN services for the customer carrier CE 1 and CE 2 are the customer carrier s routers They are connected to the provider carrier s backbone as CE routers PE 3 and PE 4 are the customer carrier s PE routers They provide MPLS L3VPN services for the end custo...

Page 283: ...1 1 1 11 1 1 1 24 POS1 1 1 20 1 1 1 24 PE 1 Loop0 3 3 3 9 32 PE 2 Loop0 4 4 4 9 32 POS1 1 0 11 1 1 2 24 POS1 1 0 30 1 1 2 24 POS1 1 1 30 1 1 1 24 POS1 1 1 21 1 1 1 24 Configuration procedure 1 Configure MPLS L3VPN on the provider carrier backbone Enable IS IS as the IGP enable LDP between PE 1 and PE 2 and establish an MP IBGP peer relationship between the PEs Configure PE 1 PE1 system view PE1 in...

Page 284: ... 2 Details not shown Execute the display bgp peer vpnv4 command to verify that a BGP peer relationship in Established state has been established between PE 1 and PE 2 Details not shown Execute the display isis peer command to verify that the IS IS neighbor relationship has been established between PE 1 and PE 2 Details not shown 2 Configure the customer carrier network Enable IS IS as the IGP and ...

Page 285: ...way that PE 3 and CE 1 are configured Details not shown 3 Allow CEs of the customer carrier to access PEs of the provider carrier and redistribute IS IS routes to BGP and BGP routes to IS IS on the PEs Configure PE 1 PE1 ip vpn instance vpn1 PE1 vpn instance vpn1 route distinguisher 200 1 PE1 vpn instance vpn1 vpn target 1 1 PE1 vpn instance vpn1 quit PE1 mpls ldp PE1 ldp vpn instance vpn1 PE1 ldp...

Page 286: ...ystem view CE3 interface gigabitethernet 1 1 1 CE3 GigabitEthernet1 1 1 ip address 100 1 1 1 24 CE3 GigabitEthernet1 1 1 quit CE3 bgp 65410 CE3 bgp default peer 100 1 1 2 as number 100 CE3 bgp default address family ipv4 unicast CE3 bgp default ipv4 peer 100 1 1 2 enable CE3 bgp default ipv4 import route direct CE3 bgp default ipv4 quit CE3 bgp default quit Configure PE 3 PE3 ip vpn instance vpn1 ...

Page 287: ...s 14 Routes 14 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 3 3 3 9 32 Direct 0 0 127 0 0 1 InLoop0 4 4 4 9 32 IS_L1 15 10 30 1 1 2 POS1 1 1 30 1 1 0 24 Direct 0 0 30 1 1 1 POS1 1 1 30 1 1 0 32 Direct 0 0 30 1 1 1 POS1 1 1 30 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 30 1 1 255 32 Direct 0 0 30 1 1 1 POS1 1 1 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0...

Page 288: ...Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 1 1 1 9 32 IS_L1 15 10 10 1 1 1 POS1 1 0 2 2 2 9 32 Direct 0 0 127 0 0 1 InLoop0 5 5 5 9 32 IS_L2 15 74 11 1 1 2 POS1 1 1 6 6 6 9 32 IS_L2 15 74 11 1 1 2 POS1 1 1 10 1 1 0 24 Direct 0 0 10 1 1 2 POS1 1 0 10 1 1 0 32 Direct 0 0 10 1 1 2 POS1 1 0 10 1 1 2 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 255 32 Direct 0 0 10 1 1 2 POS1 1 0 11 1...

Page 289: ...y that the VPN routing table contains the route to the remote VPN customer PE3 display ip routing table vpn instance vpn1 Destinations 13 Routes 13 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 100 1 1 0 24 Direct 0 0 100 1 1 2 GE1 1 1 100 1 1 0 32 Direct 0 0 100 1 1 2 GE1 1 1 100 1 1 2 32 Direct 0 0 127 0 0 1 InLoop0 100 1 1 255 32 Direct 0 0 100 1 1 2 ...

Page 290: ...routes on the provider carrier s backbone Exchange of the end customers VPN routes between PE 3 and PE 4 the PEs of the customer carrier In this process an MP EBGP peer relationship must be established between PE 3 and PE 4 Figure 78 Network diagram Table 20 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 3 GE1 1 1 100 1 1 1 24 CE 4 GE1 1 1 120 1 1 1 ...

Page 291: ...ect interface loopback 0 PE1 bgp default address family vpnv4 PE1 bgp default vpnv4 peer 4 4 4 9 enable PE1 bgp default vpnv4 quit PE1 bgp default quit Configure PE 2 in the same way that PE 1 is configured Details not shown On PE 1 or PE 2 execute the following commands Execute the display mpls ldp peer command to verify that an LDP session in Operational state has been established between PE 1 a...

Page 292: ...000 0000 0002 00 CE1 isis 2 address family ipv4 CE1 isis 2 ipv4 import route bgp CE1 isis 2 ipv4 quit CE1 isis 2 quit CE1 interface loopback 0 CE1 LoopBack0 isis enable 2 CE1 LoopBack0 quit CE1 interface pos 1 1 0 CE1 Pos1 1 0 ip address 10 1 1 2 24 CE1 Pos1 1 0 isis enable 2 CE1 Pos1 1 0 mpls enable CE1 Pos1 1 0 mpls ldp enable CE1 Pos1 1 0 mpls ldp transport address interface CE1 Pos1 1 0 quit P...

Page 293: ... 1 1 quit CE1 bgp 100 CE1 bgp default peer 11 1 1 2 as number 200 CE1 bgp default address family ipv4 unicast CE1 bgp default ipv4 peer 11 1 1 2 enable CE1 bgp default ipv4 peer 11 1 1 2 label route capability CE1 bgp default ipv4 peer 11 1 1 2 route policy csc export CE1 bgp default ipv4 import isis 2 CE1 bgp default ipv4 quit CE1 bgp default quit CE1 route policy csc permit node 0 CE1 route poli...

Page 294: ... configured Details not shown 5 Configure an MP EBGP peer relationship between the PEs of the customer carrier to exchange the VPN routes of the end customers Configure PE 3 PE3 bgp 100 PE3 bgp default peer 6 6 6 9 as number 300 PE3 bgp default peer 6 6 6 9 connect interface loopback 0 PE3 bgp default peer 6 6 6 9 ebgp max hop 10 PE3 bgp default address family vpnv4 PE3 bgp default vpnv4 peer 6 6 ...

Page 295: ... POS1 1 0 11 1 1 0 32 Direct 0 0 11 1 1 2 POS1 1 0 11 1 1 2 32 Direct 0 0 127 0 0 1 InLoop0 11 1 1 255 32 Direct 0 0 11 1 1 2 POS1 1 0 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 3...

Page 296: ...7 0 0 1 InLoop0 2 2 2 9 32 IS_L1 15 10 10 1 1 2 POS1 1 1 6 6 6 9 32 IS_L2 15 74 10 1 1 2 POS1 1 1 10 1 1 0 24 Direct 0 0 10 1 1 1 POS1 1 1 10 1 1 0 32 Direct 0 0 10 1 1 1 POS1 1 1 10 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 255 32 Direct 0 0 10 1 1 1 POS1 1 1 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255...

Page 297: ...ey of nested VPN configuration is to understand the processing of routes of sub VPNs on the service provider PEs When receiving a VPNv4 route from a provider CE CE 1 or CE 2 in this example a provider PE performs the following operations a Replaces the RD of the VPNv4 route with the RD of the MPLS VPN on the service provider network b Adds the export target attribute of the MPLS VPN on the service...

Page 298: ...e 1 Configure MPLS L3VPN on the service provider backbone Enable IS IS enable LDP and establish an MP IBGP peer relationship between PE 1 and PE 2 Configure PE 1 PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 3 3 3 9 32 PE1 LoopBack0 quit PE1 mpls lsr id 3 3 3 9 PE1 mpls ldp PE1 ldp quit PE1 isis 1 PE1 isis 1 network entity 10 0000 0000 0000 0004 00 PE1 isis 1 quit PE1 interface...

Page 299: ...P between PE 3 and CE 1 and between PE 4 and CE 2 Configure PE 3 PE3 system view PE3 interface loopback 0 PE3 LoopBack0 ip address 1 1 1 9 32 PE3 LoopBack0 quit PE3 mpls lsr id 1 1 1 9 PE3 mpls ldp PE3 ldp quit PE3 isis 2 PE3 isis 2 network entity 10 0000 0000 0000 0001 00 PE3 isis 2 quit PE3 interface loopback 0 PE3 LoopBack0 isis enable 2 PE3 LoopBack0 quit PE3 interface pos 1 1 1 PE3 Pos1 1 1 i...

Page 300: ...n1 peer 11 1 1 1 as number 200 PE1 bgp default vpn1 address family ipv4 PE1 bgp default ipv4 vpn1 peer 11 1 1 1 enable PE1 bgp default ipv4 vpn1 quit PE1 bgp default vpn1 quit PE1 bgp default quit Configure CE 1 CE1 interface pos 1 1 1 CE1 Pos1 1 1 ip address 11 1 1 1 24 CE1 Pos1 1 1 mpls enable CE1 Pos1 1 1 quit CE1 bgp 200 CE1 bgp default peer 11 1 1 2 as number 100 CE1 bgp default vpn1 address ...

Page 301: ...PN1 PE3 GigabitEthernet1 1 1 ip address 100 1 1 2 24 PE3 GigabitEthernet1 1 1 quit PE3 ip vpn instance SUB_VPN2 PE3 vpn instance SUB_VPN2 route distinguisher 101 1 PE3 vpn instance SUB_VPN2 vpn target 2 2 PE3 vpn instance SUB_VPN2 quit PE3 interface gigabitethernet 1 1 2 PE3 GigabitEthernet1 1 2 ip binding vpn instance SUB_VPN2 PE3 GigabitEthernet1 1 2 ip address 110 1 1 2 24 PE3 GigabitEthernet1 ...

Page 302: ... loop 2 Disable route target based filtering of received VPNv4 routes CE1 bgp default vpnv4 undo policy vpn target CE1 bgp default vpnv4 quit CE1 bgp default quit Configure PE 2 and CE 2 in the same way that PE 1 and CE 1 are configured Details not shown 6 Establish MP IBGP peer relationships between sub VPN PEs and CEs of the customer VPN to exchange VPNv4 routes of sub VPNs Configure PE 3 PE3 bg...

Page 303: ...127 0 0 1 InLoop0 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 Verify that the VPN routing table contains sub VPN routes PE1 display ip routing table vpn instance vpn1 Destinations 16 Routes 16 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 11 1 1 0 24 Direct 0 0 11 1 1 2 POS1 1...

Page 304: ...xtHop MED LocPrf PrefVal Path Ogn i 110 1 1 0 24 1 1 1 9 0 100 0 200 65411 Route distinguisher 200 1 Total number of routes 1 Network NextHop MED LocPrf PrefVal Path Ogn e 120 1 1 0 24 11 1 1 2 0 100 200 65420 Route Distinguisher 201 1 Total number of routes 1 Network NextHop MED LocPrf PrefVal Path Ogn e 130 1 1 0 24 11 1 1 2 0 100 200 65421 3 Display the VPN routing table on the customer PEs for...

Page 305: ...t 0 0 100 1 1 1 GE1 1 1 100 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 100 1 1 255 24 Direct 0 0 100 1 1 1 GE1 1 1 120 1 1 0 24 BGP 255 0 100 1 1 2 GE1 1 1 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 2...

Page 306: ...1 system view CE1 interface gigabitethernet 1 1 1 CE1 GigabitEthernet1 1 1 ip address 100 1 1 1 24 CE1 GigabitEthernet1 1 1 quit CE1 interface serial 1 1 0 CE1 Serial1 1 0 ip address 1 1 1 2 24 CE1 Serial1 1 0 quit Configure a default route to PE 1 CE1 ip route static 0 0 0 0 0 1 1 1 1 2 Configure PE 1 Create VPN instances vpn1 and vpn2 for VPN 1 and VPN 2 respectively and configure different RDs ...

Page 307: ... default ipv4 vpn2 quit PE1 bgp default vpn2 quit PE1 bgp default quit Configure PBR to route packets from Host A according to the routing tables of both VPN instances vpn1 and vpn2 PE1 acl advanced 3001 PE1 acl ipv4 adv 3001 rule 0 permit ip vpn instance vpn1 source 100 1 1 2 0 PE1 acl ipv4 adv 3001 quit PE1 policy based route policy1 permit node 10 PE1 policy based route if match acl 3001 PE1 po...

Page 308: ...4 SPE 1 Loop0 2 2 2 9 32 SPE 2 Loop0 3 3 3 9 32 GE1 1 1 172 1 1 2 24 GE1 1 1 180 1 1 2 24 GE1 1 2 180 1 1 1 24 GE1 1 2 172 2 1 2 24 Configuration procedure 1 Configure UPE 1 Configure basic MPLS and MPLS LDP to establish LDP LSPs UPE1 system view UPE1 interface loopback 0 UPE1 LoopBack0 ip address 1 1 1 9 32 UPE1 LoopBack0 quit UPE1 mpls lsr id 1 1 1 9 UPE1 mpls ldp UPE1 ldp quit UPE1 interface gi...

Page 309: ... 1 2 UPE1 GigabitEthernet1 1 2 ip binding vpn instance vpn2 UPE1 GigabitEthernet1 1 2 ip address 10 4 1 2 24 UPE1 GigabitEthernet1 1 2 quit Establish an MP IBGP peer relationship with SPE 1 UPE1 bgp 100 UPE1 bgp default peer 2 2 2 9 as number 100 UPE1 bgp default peer 2 2 2 9 connect interface loopback 0 UPE1 bgp default address family vpnv4 UPE1 bgp default vpnv4 peer 2 2 2 9 enable UPE1 bgp defa...

Page 310: ... route direct CE2 bgp default ipv4 quit CE2 bgp default quit 4 Configure UPE 2 Configure basic MPLS and MPLS LDP to establish LDP LSPs UPE2 system view UPE2 interface loopback 0 UPE2 LoopBack0 ip address 4 4 4 9 32 UPE2 LoopBack0 quit UPE2 mpls lsr id 4 4 4 9 UPE2 mpls ldp UPE2 ldp quit UPE2 interface gigabitethernet 1 1 1 UPE2 GigabitEthernet1 1 1 ip address 172 2 1 1 24 UPE2 GigabitEthernet1 1 1...

Page 311: ...sh an EBGP peer relationship with CE 3 UPE2 bgp default ip vpn instance vpn1 UPE2 bgp default vpn1 peer 10 1 1 1 as number 65430 UPE2 bgp default vpn1 address family ipv4 unicast UPE2 bgp default ipv4 vpn1 peer 10 1 1 1 enable UPE2 bgp default ipv4 vpn1 quit UPE2 bgp default vpn1 quit Establish an EBGP peer relationship with CE 4 UPE2 bgp default ip vpn instance vpn2 UPE2 bgp default vpn2 peer 10 ...

Page 312: ...t1 1 1 mpls ldp enable SPE1 GigabitEthernet1 1 1 quit SPE1 interface gigabitethernet 1 1 2 SPE1 GigabitEthernet1 1 2 ip address 180 1 1 1 24 SPE1 GigabitEthernet1 1 2 mpls enable SPE1 GigabitEthernet1 1 2 mpls ldp enable SPE1 GigabitEthernet1 1 2 quit Configure the IGP protocol OSPF in this example SPE1 ospf SPE1 ospf 1 area 0 SPE1 ospf 1 area 0 0 0 0 network 2 2 2 9 0 0 0 0 SPE1 ospf 1 area 0 0 0...

Page 313: ...routes permitted by a routing policy the routes of CE 3 SPE1 ip prefix list hope index 10 permit 10 1 1 1 24 SPE1 route policy hope permit node 0 SPE1 route policy hope 0 if match ip address prefix list hope SPE1 route policy hope 0 quit SPE1 bgp 100 SPE1 bgp default address family vpnv4 SPE1 bgp default vpnv4 peer 1 1 1 9 upe route policy hope export 8 Configure SPE 2 Configure basic MPLS and MPL...

Page 314: ...4 peer 2 2 2 9 enable SPE2 bgp default vpnv4 peer 4 4 4 9 enable SPE2 bgp default vpnv4 peer 4 4 4 9 upe SPE2 bgp default vpnv4 peer 4 4 4 9 next hop local SPE2 bgp default vpnv4 quit Create BGP VPN instances for VPN instances vpn1 and vpn2 so the VPNv4 routes learned according to the RT attributes can be added into the BGP routing tables of the corresponding VPN instances SPE2 bgp default ip vpn ...

Page 315: ...oop1 5 5 5 5 32 GE1 1 1 100 1 1 2 24 GE1 1 1 120 1 1 2 24 S1 1 1 10 1 1 1 24 S1 1 0 10 1 1 2 24 Router A S1 1 0 30 1 1 1 24 S1 1 1 20 1 1 2 24 Configuration procedure 1 Configure OSPF on the customer networks Configure conventional OSPF on CE 1 Router A and CE 2 to advertise addresses of the interfaces see Table 23 Details not shown Set the cost value to 2 for both the link between CE 1 and Router...

Page 316: ...rea 0 0 0 0 network 1 1 1 9 0 0 0 0 PE1 ospf 1 area 0 0 0 0 network 10 1 1 0 0 0 0 255 PE1 ospf 1 area 0 0 0 0 quit PE1 ospf 1 quit Configure basic MPLS and MPLS LDP on PE 2 to establish LDP LSPs PE2 system view PE2 interface loopback 0 PE2 LoopBack0 ip address 2 2 2 9 32 PE2 LoopBack0 quit PE2 mpls lsr id 2 2 2 9 PE2 mpls ldp PE2 ldp quit PE2 interface serial 1 1 1 PE2 Serial1 1 1 ip address 10 1...

Page 317: ...p 100 PE1 bgp default ip vpn instance vpn1 PE1 bgp default vpn1 address family ipv4 unicast PE1 bgp default ipv4 vpn1 import route ospf 100 PE1 bgp default ipv4 vpn1 import route direct PE1 bgp default ipv4 vpn1 quit PE1 bgp default vpn1 quit PE1 bgp default quit Configure PE 2 PE2 ip vpn instance vpn1 PE2 vpn instance vpn1 route distinguisher 100 2 PE2 vpn instance vpn1 vpn target 1 1 PE2 vpn ins...

Page 318: ...0 area 1 PE2 ospf 100 area 0 0 0 1 sham link 5 5 5 5 3 3 3 3 PE2 ospf 100 area 0 0 0 1 quit PE2 ospf 100 quit Verifying the configuration Execute the display ip routing table vpn instance command on the PEs to verify the following results details not shown The path to the peer CE is now along the BGP route across the backbone A route to the sham link destination address exists Execute the display ...

Page 319: ...e same AS number 600 Configure BGP AS number substitution on the PEs to enable the CEs to communicate with each other Figure 83 Network diagram Table 24 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 GE1 1 1 10 1 1 1 24 P Loop0 2 2 2 9 32 GE1 1 2 100 1 1 1 24 GE1 1 1 20 1 1 2 24 PE 1 Loop0 1 1 1 9 32 GE1 1 2 30 1 1 1 24 GE1 1 1 10 1 1 2 24 PE 2 Loo...

Page 320: ...0 24 Direct 0 0 10 2 1 1 GE1 1 1 10 2 1 0 32 Direct 0 0 10 2 1 1 GE1 1 1 10 2 1 1 32 Direct 0 0 127 0 0 1 InLoop0 10 2 1 255 32 Direct 0 0 10 2 1 1 GE1 1 1 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 200 1 1 0 24 Direct 0 0 200 1 1 1 GE1 1 2 200 1 1 0 32 Direct 0 0 200 1...

Page 321: ...ATE to peer 10 2 1 1 for following destinations Origin Incomplete AS Path 100 600 Next Hop 10 2 1 2 100 1 1 0 24 Execute the display bgp routing table ipv4 peer received routes command on CE 2 to verify that CE 2 has not received the route to 100 1 1 0 24 CE2 display bgp routing table ipv4 peer 10 2 1 2 received routes Total number of routes 2 BGP local router ID is 200 1 1 1 Status codes valid be...

Page 322: ...1 2 0 100 e 10 2 1 0 24 10 2 1 2 0 0 100 e 100 1 1 0 24 10 2 1 2 0 100 100 CE2 display ip routing table Destinations 18 Routes 18 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 0 24 BGP 255 0 10 2 1 2 GE1 1 1 10 2 1 0 24 Direct 0 0 10 2 1 1 GE1 1 1 10 2 1 0 32 Direct 0 0 10 2 1 1 GE1 1 1 10 2 1 1 32 Direct 0 0 127 0 0 1 InLoop0 10 2 1 255 32 Direct...

Page 323: ...Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 Loop0 100 1 1 1 32 CE 3 Loop0 200 1 1 1 32 GE1 1 1 10 1 1 1 24 GE1 1 1 10 3 1 1 24 CE 2 GE1 1 1 10 2 1 1 24 PE 2 Loop0 2 2 2 9 32 PE 1 Loop0 1 1 1 9 32 GE1 1 1 10 2 1 2 24 GE1 1 1 10 1 1 2 24 GE1 1 2 40 1 1 1 24 GE1 1 2 20 1 1 1 24 GE1 1 3 20 1 1 2 24 GE1 1 3 30 1 1 1 24 P Loop0 3 3 3 9 32 PE 3 Loop0 4...

Page 324: ...lay routing information on CE 2 The output shows that CE 2 has learned the route for 100 1 1 1 32 from CE 1 A routing loop has occurred because CE 1 and CE 2 reside in the same site CE2 display bgp routing table ipv4 peer 10 2 1 2 received routes Total number of routes 6 BGP local router ID is 1 1 1 9 Status codes valid best d dampened h history s suppressed S stale i internal e external Origin i ...

Page 325: ... 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 200 1 1 1 32 BGP 255 0 10 2 1 2 GE1 1 1 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 Configuring MPLS L3VPN FRR through VPNv4 route backup for a VPNv4 route Network requirements CE 1 and CE 2 belong to VPN 1 Configure EBG...

Page 326: ...ring basic MPLS L3VPN see Configuring basic MPLS L3VPN 2 Configure MPLS L3VPN FRR on PE 1 Configure BFD to test the connectivity of the LSP to 2 2 2 2 32 PE1 system view PE1 mpls bfd enable PE1 mpls bfd 2 2 2 2 32 Create routing policy frr and specify the backup next hop as 3 3 3 3 for the route to 4 4 4 4 32 PE1 ip prefix list abc index 10 permit 4 4 4 4 32 PE1 route policy frr permit node 10 PE1...

Page 327: ...e PE1 display ip routing table vpn instance vpn1 4 4 4 4 32 verbose Summary Count 1 Destination 4 4 4 4 32 Protocol BGP instance default Process ID 0 SubProtID 0x1 Age 00h00m03s Cost 0 Preference 255 IpPre N A QosLocalID N A Tag 0 State Active Adv OrigTblID 0x0 OrigVrf default vrf TableID 0x102 OrigAs 300 NibID 0x15000002 LastAs 300 AttrID 0x2 Neighbor 2 2 2 2 Flags 0x110060 OrigNextHop 2 2 2 2 La...

Page 328: ... 1 2 24 GE1 1 3 172 3 1 2 24 GE1 1 2 172 1 1 1 24 PE 3 Loop0 3 3 3 3 32 GE1 1 3 172 2 1 1 24 GE1 1 1 172 2 1 3 24 CE 2 Loop0 4 4 4 4 32 GE1 1 2 10 3 1 2 24 GE1 1 1 10 1 1 1 24 GE1 1 3 172 3 1 3 24 GE1 1 2 10 3 1 1 24 Configuration procedure 1 Configure IP addresses and masks for interfaces as shown in Table 27 and configure BGP and MPLS L3VPN Details not shown For more information about configurin...

Page 329: ...t PE2 bgp default quit Verifying the configuration Display detailed information about the route to 4 4 4 4 32 on PE 2 The output shows the backup next hop for the route PE2 display ip routing table vpn instance vpn1 4 4 4 4 32 verbose Summary Count 1 Destination 4 4 4 4 32 Protocol BGP instance default Process ID 0 SubProtID 0x2 Age 01h54m24s Cost 0 Preference 10 IpPre N A QosLocalID N A Tag 0 Sta...

Page 330: ... GE1 1 1 10 1 1 1 24 PE 1 Loop0 1 1 1 1 32 GE1 1 2 10 3 1 1 24 GE1 1 1 10 2 1 2 24 PE 2 Loop0 2 2 2 2 32 GE1 1 2 10 1 1 2 24 GE1 1 2 10 3 1 2 24 GE1 1 3 172 2 1 1 24 GE1 1 3 172 2 1 2 24 Configuration procedure 1 Configure IP addresses and masks for interfaces as shown in Table 28 and configure BGP and MPLS L3VPN Details not shown For more information about configuring basic MPLS L3VPN see Configu...

Page 331: ...ue 200 PE1 bgp default vpnv4 quit PE1 bgp default quit 3 Enable MPLS BFD on PE 2 PE2 system view PE2 mpls bfd enable Verifying the configuration Display detailed information about the route to 4 4 4 4 32 on PE 1 The output shows the backup next hop for the route PE1 display ip routing table vpn instance vpn1 4 4 4 4 32 verbose Summary Count 1 Destination 4 4 4 4 32 Protocol BGP instance default Pr...

Page 332: ...run IPv6 and the PE P interface of a PE runs IPv4 Figure 88 Network diagram for the IPv6 MPLS L3VPN model IPv6 MPLS L3VPN packet forwarding Figure 89 IPv6 MPLS L3VPN packet forwarding diagram As shown in Figure 89 the IPv6 MPLS L3VPN packet forwarding procedure is as follows 1 The PC at Site 1 sends an IPv6 packet destined for 2001 2 1 the PC at Site 2 CE 1 transmits the packet to PE 1 VPN 1 CE IP...

Page 333: ...g the standard IPv6 routes from the CE the ingress PE performs the following operations a Adds RDs and route targets to create VPN IPv6 routes b Saves the routes to the routing table of the VPN instance created for the CE c Assigns VPN labels for the routes d Advertises the VPN IPv6 routes to the egress PE through MP BGP The egress PE performs the following operations e Compares the export target ...

Page 334: ...e Configuring VPN instances 3 Required Creating a VPN instance 4 Required Associating a VPN instance with an interface 5 Optional Configuring route related attributes for a VPN instance Required Configuring routing between a PE and a CE Required Configuring routing between PEs Optional Configuring BGP VPNv6 route control Configuration prerequisites Before configuring basic IPv6 MPLS L3VPN perform ...

Page 335: ...ce 6 Optional Configure an SNMP context for the VPN instance snmp context name context name By default no SNMP context is configured Associating a VPN instance with an interface After creating and configuring a VPN instance associate the VPN instance with the interface connected to the CE If an interface is associated with a VSI or cross connect the association between the interface including its ...

Page 336: ...ce can prevent the PE from storing too many routes A PE supports a maximum of 1000100 active routes 5 Apply an import routing policy import route policy route policy By default all routes matching the import target attribute are accepted Make sure the routing policy already exists Otherwise the device does not filter received routes For information about routing policies see Layer 3 IP Routing Con...

Page 337: ... a single VPN instance If you create a RIPng process without binding it to a VPN instance the process belongs to the public network For more information about RIPng see Layer 3 IP Routing Configuration Guide To configure RIPng between a PE and a CE Step Command Remarks 1 Enter system view system view N A 2 Create a RIPng process for a VPN instance and enter RIPng view ripng process id vpn instance...

Page 338: ...ration on the PE When you redistribute OSPFv3 routes into BGP BGP adds the primary domain ID to the redistributed BGP VPNv6 routes as a BGP extended community attribute You can configure the same domain ID for different OSPFv3 processes You must configure the same domain ID for all OSPFv3 processes of the same VPN to ensure correct route advertisement 5 Optional Configure the type code of an OSPFv...

Page 339: ...e any routing loops Perform this configuration on the PE 9 Optional Enable the external route check feature for OSPFv3 LSAs route tag check enable By default the PE does not check the external route tag but checks the DN bit in OSPFv3 LSAs to avoid routing loops This command is only for backward compatibility with the old protocol RFC 4577 If the device supports the DN bit use the DN bit to avoid ...

Page 340: ...nter BGP instance view bgp as number instance instance name N A 3 Enter BGP VPN instance view ip vpn instance vpn instance name N A 4 Configure the CE as the VPN EBGP peer peer group name ipv6 address prefix length as number as number By default no BGP peers exist 5 Create the BGP VPN IPv6 unicast address family and enter its view address family ipv6 unicast By default the BGP VPN IPv6 unicast add...

Page 341: ...E and CE only in a basic IPv6 MPLS L3VPN network In networks such as inter AS VPN and carrier s carrier you cannot configure IBGP between PE and CE 1 Configure the PE Step Command Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance name N A 3 Enter BGP VPN instance view ip vpn instance vpn instance name Configuration commands in BGP VPN instance vi...

Page 342: ...E as the peer peer group name ipv4 address mask length as number as number By default no BGP peers exist 4 Specify the source interface for route update packets sent to the specified peer peer group name ipv4 address mask length connect interface interface type interface number By default BGP uses the outbound interface of the best route to the BGP peer as the source interface 5 Create the BGP VPN...

Page 343: ...d on the RR so the RR does not change the next hop of routes sent to BGP peers and clients 9 Configure IPv6 prefix list based route filtering for the specified peer or peer group peer group name ipv4 address mask length prefix list ipv6 prefix name export import By default no IPv6 prefix list based route filtering is configured 10 Specify a preferred value for routes received from the peer or peer...

Page 344: ...the RRs 19 Configure the SoO attribute for a BGP peer for peer group peer group name ipv4 address mask length soo site of origin By default the SoO attribute is not configured Configuring inter AS IPv6 VPN If the MPLS backbone spans multiple ASs you must configure inter AS IPv6 VPN There are three inter AS VPN solutions for more information see Inter AS VPN IPv6 MPLS L3VPN supports only inter AS V...

Page 345: ...ASBR can maintain all VPNv6 routes and advertise the routes to the peer ASBR Enable MPLS capability on the interface connected to the ASBR in another AS There is no need to configure a label distribution protocol for example LDP An ASBR always sets itself as the next hop of VPNv6 routes advertised to an MP IBGP peer To configure inter AS option B on an ASBR Step Command Remarks 1 Enter system view...

Page 346: ...Command Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance name N A 3 Configure the ASBR in the same AS as an IBGP peer peer group name ipv4 address mask length as number as number By default no BGP peers exist 4 Configure the PE in another AS as an EBGP peer peer group name ipv4 address mask length as number as number By default no BGP peers exis...

Page 347: ...he PEs in the same AS before advertising them to the peer ASBR Assigns new MPLS labels to the labeled routes to be advertised to the PEs in the same AS The configuration is the same as that in the Inter AS IPv4 VPN option C solution For more information see Configuring inter AS option C Configuring multirole host To configure the multirole host feature for IPv6 networks perform the following tasks...

Page 348: ...nfiguring an IPv6 static route Step Command Remarks 1 Enter system view system view N A 2 Configure an IPv6 static route for a VPN instance to reach the multirole host ipv6 route static vpn instance s vpn instance name ipv6 address prefix length vpn instance d vpn instance name nexthop address permanent preference preference tag tag value description text By default no IPv6 static routes are confi...

Page 349: ...he loopback interface address import route direct By default no direct routes are redistributed into BGP Creating a sham link Step Command Remarks 1 Enter system view system view N A 2 Enter OSPFv3 view ospfv3 process id vpn instance vpn instance name N A 3 Enter OSPFv3 area view area area id N A 4 Configure an OSPFv3 sham link sham link source ipv6 address destination ipv6 address cost cost value...

Page 350: ...GP connections A reset operation updates BGP routing information by tearing down and then re establishing BGP connections Soft reset requires that BGP peers have route refresh capability Execute the following commands in user view to soft reset or reset BGP connections Task Command Manually soft reset BGP sessions for VPNv6 address family refresh bgp instance instance name ipv4 address mask length...

Page 351: ... VPNv6 routes display bgp instance instance name routing table vpnv6 outlabel Display BGP VPNv6 address family update group information display bgp instance instance name update group vpnv6 ipv4 address Display OSPFv3 sham link information display ospfv3 process id area area id sham link verbose For more information about the display ipv6 routing table display bgp group vpnv6 display bgp peer vpnv...

Page 352: ... 2 1 96 GE1 1 2 2001 4 2 96 CE 3 GE1 1 1 2001 3 1 96 POS1 1 0 172 2 1 2 24 CE 4 GE1 1 1 2001 4 1 96 Configuration procedure 1 Configure OSPF on the MPLS backbone to ensure IP connectivity among the PEs and the P router Configure PE 1 PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 1 1 1 9 32 PE1 LoopBack0 quit PE1 interface pos 1 1 0 PE1 Pos1 1 0 ip address 172 1 1 1 24 PE1 Pos1 ...

Page 353: ...e pos 1 1 0 PE2 Pos1 1 0 ip address 172 2 1 2 24 PE2 Pos1 1 0 quit PE2 ospf PE2 ospf 1 area 0 PE2 ospf 1 area 0 0 0 0 network 172 2 1 0 0 0 0 255 PE2 ospf 1 area 0 0 0 0 network 3 3 3 9 0 0 0 0 PE2 ospf 1 area 0 0 0 0 quit PE2 ospf 1 quit Execute the display ospf peer command to verify that OSPF adjacencies in Full state have been established between PE 1 P and PE 2 Execute the display ip routing ...

Page 354: ... instance vpn1 PE1 vpn instance vpn1 route distinguisher 100 1 PE1 vpn instance vpn1 vpn target 111 1 PE1 vpn instance vpn1 quit PE1 ip vpn instance vpn2 PE1 vpn instance vpn2 route distinguisher 100 2 PE1 vpn instance vpn2 vpn target 222 2 PE1 vpn instance vpn2 quit PE1 interface gigabitethernet 1 1 1 PE1 GigabitEthernet1 1 1 ip binding vpn instance vpn1 PE1 GigabitEthernet1 1 1 ipv6 address 2001...

Page 355: ... 56 bytes from 2001 1 1 icmp_seq 0 hlim 64 time 9 000 ms 56 bytes from 2001 1 1 icmp_seq 1 hlim 64 time 1 000 ms 56 bytes from 2001 1 1 icmp_seq 2 hlim 64 time 0 000 ms 56 bytes from 2001 1 1 icmp_seq 3 hlim 64 time 0 000 ms 56 bytes from 2001 1 1 icmp_seq 4 hlim 64 time 0 000 ms Ping6 statistics for 2001 1 1 5 packet s transmitted 5 packet s received 0 0 packet loss round trip min avg max std dev...

Page 356: ...opback 0 PE1 bgp default address family vpnv6 PE1 bgp default vpnv6 peer 3 3 3 9 enable PE1 bgp default vpnv6 quit PE1 bgp default quit Configure PE 2 PE2 bgp 100 PE2 bgp default peer 1 1 1 9 as number 100 PE2 bgp default peer 1 1 1 9 connect interface loopback 0 PE2 bgp default address family vpnv6 PE2 bgp default vpnv6 peer 1 1 1 9 enable PE2 bgp default vpnv6 quit PE2 bgp default quit Execute t...

Page 357: ...otocol Direct NextHop Preference 0 Interface GE1 1 2 Cost 0 Destination 2001 2 2 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 2001 4 96 Protocol BGP4 NextHop FFFF 3 3 3 9 Preference 255 Interface POS1 1 0 Cost 0 Destination FE80 10 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 Destination FF00 8 Protocol Direct NextHop Preference 0 Interface NULL0 C...

Page 358: ...Loop0 2 2 2 9 32 POS1 1 1 172 1 1 1 24 GE1 1 1 2001 2 2 96 Tunnel0 20 1 1 1 24 POS1 1 0 172 2 1 2 24 CE 2 GE1 1 1 2001 2 1 96 Tunnel0 20 1 1 2 24 Configuration procedure 1 Configure an IGP on the MPLS backbone to ensure IP connectivity among the PEs and the P router This example uses OSPF Details not shown Execute the display ospf peer command to verify that OSPF adjacencies in Full state have bee...

Page 359: ...cy gre1 tunnel select seq gre load balance number 1 PE2 tunnel policy gre1 quit PE2 ip vpn instance vpn1 PE2 vpn instance vpn1 route distinguisher 100 2 PE2 vpn instance vpn1 vpn target 100 1 both PE2 vpn instance vpn1 tnl policy gre1 PE2 vpn instance vpn1 quit PE2 interface gigabitethernet 1 1 1 PE2 GigabitEthernet1 1 1 ip binding vpn instance vpn1 PE2 GigabitEthernet1 1 1 ipv6 address 2001 2 2 9...

Page 360: ...ault ipv6 quit Configure PE 1 PE1 bgp 100 PE1 bgp default ip vpn instance vpn1 PE1 bgp default vpn1 peer 2001 1 1 as number 65410 PE1 bgp default vpn1 address family ipv6 unicast PE1 bgp default ipv6 vpn1 peer 2001 1 1 enable PE1 bgp default ipv6 vpn1 quit PE1 bgp default vpn1 quit PE1 bgp default quit Configure CE 2 and PE 2 in the same way that CE 1 and PE 1 are configured Details not shown Exec...

Page 361: ...s 20 1 1 2 24 PE2 Tunnel0 mpls enable PE2 Tunnel0 quit Verifying the configuration Verify that the CEs have learned the route to each other and can ping each other Details not shown Configuring IPv6 MPLS L3VPN inter AS option A Network requirements CE 1 and CE 2 belong to the same VPN CE 1 accesses the network through PE 1 in AS 100 and CE 2 accesses the network through PE 2 in AS 200 Configure IP...

Page 362: ...S and that the PEs and ASBR PEs in the same AS have learned the routes to the loopback interfaces of each other Execute the ping command to verify that the PEs and ASBR PEs in the same AS can ping each other Details not shown 2 Configure basic MPLS and enable MPLS LDP on each MPLS backbone to establish LDP LSPs Configure basic MPLS on PE 1 and enable MPLS LDP for both PE 1 and the interface connec...

Page 363: ...not required for PEs in different ASs Configure CE 1 CE1 system view CE1 interface gigabitethernet 1 1 1 CE1 GigabitEthernet1 1 1 ipv6 address 2001 1 1 96 CE1 GigabitEthernet1 1 1 quit Configure PE 1 PE1 ip vpn instance vpn1 PE1 vpn instance vpn1 route distinguisher 100 1 PE1 vpn instance vpn1 vpn target 100 1 both PE1 vpn instance vpn1 quit PE1 interface gigabitethernet 1 1 1 PE1 GigabitEthernet1...

Page 364: ...Pos1 1 1 quit Execute the display ip vpn instance command to display VPN instance information Verify that each PE can ping its attached CE and that ASBR PE 1 and ASBR PE 2 can ping each other Details not shown 4 Establish EBGP peer relationships between PEs and CEs to allow them to exchange VPN routes Configure CE 1 CE1 bgp 65001 CE1 bgp default peer 2001 1 2 as number 100 CE1 bgp default address ...

Page 365: ...2002 1 2 as number 200 ASBR PE1 bgp default vpn1 address family ipv6 unicast ASBR PE1 bgp default ipv6 vpn1 peer 2002 1 2 enable ASBR PE1 bgp default ipv6 vpn1 quit ASBR PE1 bgp default vpn1 quit ASBR PE1 bgp default peer 1 1 1 9 as number 100 ASBR PE1 bgp default peer 1 1 1 9 connect interface loopback 0 ASBR PE1 bgp default address family vpnv6 ASBR PE1 bgp default vpnv6 peer 1 1 1 9 enable ASBR...

Page 366: ...2 accesses the network through PE 2 in AS 600 PEs in the same AS run IS IS PE 1 and ASBR PE 1 exchange VPNv6 routes through MP IBGP PE 2 and ASBR PE 2 exchange VPNv6 routes through MP IBGP ASBR PE 1 and ASBR PE 2 exchange VPNv6 routes through MP EBGP ASBRs do not perform route target filtering of received VPNv6 routes Figure 93 Network diagram Table 32 Interface and IP address assignment Device In...

Page 367: ... Loopback 0 and enable IS IS on it PE1 interface loopback 0 PE1 LoopBack0 ip address 2 2 2 9 32 PE1 LoopBack0 isis enable 1 PE1 LoopBack0 quit Create VPN instance vpn1 and configure the RD and route target attributes PE1 ip vpn instance vpn1 PE1 vpn instance vpn1 route distinguisher 11 11 PE1 vpn instance vpn1 vpn target 1 1 2 2 3 3 import extcommunity PE1 vpn instance vpn1 vpn target 3 3 export e...

Page 368: ...erial1 1 0 mpls ldp enable ASBR PE1 Serial1 1 0 quit Configure interface Serial 1 1 1 and enable MPLS ASBR PE1 interface serial 1 1 1 ASBR PE1 Serial1 1 1 ip address 11 0 0 2 255 0 0 0 ASBR PE1 Serial1 1 1 mpls enable ASBR PE1 Serial1 1 1 quit Configure interface Loopback 0 and enable IS IS on it ASBR PE1 interface loopback 0 ASBR PE1 LoopBack0 ip address 3 3 3 9 32 ASBR PE1 LoopBack0 isis enable ...

Page 369: ...ASBR PE2 Serial1 1 1 quit Configure interface Loopback 0 and enable IS IS on it ASBR PE2 interface loopback 0 ASBR PE2 LoopBack0 ip address 4 4 4 9 32 ASBR PE2 LoopBack0 isis enable 1 ASBR PE2 LoopBack0 quit Enable BGP on ASBR PE 2 ASBR PE2 bgp 600 ASBR PE2 bgp default peer 11 0 0 2 as number 100 ASBR PE2 bgp default peer 11 0 0 2 connect interface serial 1 1 1 ASBR PE2 bgp default peer 5 5 5 9 as...

Page 370: ...nity PE2 vpn instance vpn1 quit Bind the interface connected to CE 1 to the created VPN instance PE2 interface gigabitethernet 1 1 1 PE2 GigabitEthernet1 1 1 ip binding vpn instance vpn1 PE2 GigabitEthernet1 1 1 ip address 20 1 64 PE2 GigabitEthernet1 1 1 quit Enable BGP on PE 2 PE2 bgp 600 Configure IBGP peer 4 4 4 9 as a VPNv6 peer PE2 bgp default peer 4 4 4 9 as number 600 PE2 bgp default peer ...

Page 371: ... Site 2 accesses the network through PE 2 in AS 600 PEs in the same AS run IS IS PE 1 and ASBR PE 1 exchange labeled IPv4 routes by IBGP PE 2 and ASBR PE 2 exchange labeled IPv4 routes by IBGP PE 1 and PE 2 are MP EBGP peers to exchange VPNv6 routes ASBR PE 1 and ASBR PE 2 use their respective routing policies and label the routes received from each other ASBR PE 1 and ASBR PE 2 use EBGP to exchan...

Page 372: ... PE1 isis 1 PE1 isis 1 network entity 10 111 111 111 111 00 PE1 isis 1 quit Configure an LSR ID and enable MPLS and LDP PE1 mpls lsr id 2 2 2 9 PE1 mpls ldp PE1 ldp quit Configure interface Serial 1 1 0 and enable IS IS MPLS and LDP on the interface PE1 interface serial 1 1 0 PE1 Serial1 1 0 ip address 1 1 1 2 255 0 0 0 PE1 Serial1 1 0 isis enable 1 PE1 Serial1 1 0 mpls enable PE1 Serial1 1 0 mpls...

Page 373: ...p default peer 5 5 5 9 ebgp max hop 10 Configure peer 5 5 5 9 as a VPNv6 peer PE1 bgp default address family vpnv6 PE1 bgp default af vpnv6 peer 5 5 5 9 enable PE1 bgp default af vpnv6 quit Establish an EBGP peer relationship with CE 1 and add the learned BGP routes to the routing table of VPN instance vpn1 PE1 bgp default ip vpn instance vpn1 PE1 bgp default vpn1 peer 2001 2 as number 65001 PE1 b...

Page 374: ... 2 2 2 9 as number 100 ASBR PE1 bgp default peer 2 2 2 9 connect interface loopback 0 ASBR PE1 bgp default address family ipv4 unicast ASBR PE1 bgp default ipv4 peer 2 2 2 9 enable ASBR PE1 bgp default ipv4 peer 2 2 2 9 route policy policy2 export Enable the capability to advertise labeled routes to and receive labeled routes from IBGP peer 2 2 2 9 ASBR PE1 bgp default ipv4 peer 2 2 2 9 label rout...

Page 375: ... policy policy1 1 apply mpls label ASBR PE2 route policy policy1 1 quit ASBR PE2 route policy policy2 permit node 1 ASBR PE2 route policy policy2 1 if match mpls label ASBR PE2 route policy policy2 1 apply mpls label ASBR PE2 route policy policy2 1 quit Start BGP on ASBR PE 2 and enable the capability to advertise labeled routes to and receive labeled routes from IBGP peer 5 5 5 9 ASBR PE2 bgp 600...

Page 376: ...nd start IS IS on it PE2 interface loopback 0 PE2 LoopBack0 ip address 5 5 5 9 32 PE2 LoopBack0 isis enable 1 PE2 LoopBack0 quit Create VPN instance vpn1 and configure the RD and route target attributes for it PE2 ip vpn instance vpn1 PE2 vpn instance vpn1 route distinguisher 11 11 PE2 vpn instance vpn1 vpn target 3 3 import extcommunity PE2 vpn instance vpn1 vpn target 3 3 export extcommunity PE2...

Page 377: ...Pv6 address for GigabitEthernet 1 1 1 CE2 system view CE2 interface gigabitethernet 1 1 1 CE2 GigabitEthernet1 1 1 ipv6 address 2002 2 64 CE2 GigabitEthernet1 1 1 quit Establish an EBGP peer relationship with PE 2 and redistribute VPN routes CE2 bgp 65002 CE2 bgp default peer 2002 1 as number 600 CE2 bgp default address family ipv6 unicast CE2 bgp default ipv6 peer 2002 1 enable CE2 bgp default ip...

Page 378: ...en PE 3 and PE 4 Figure 95 Network diagram Table 34 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 3 GE1 1 1 2001 1 1 96 CE 4 GE1 1 1 2001 2 1 96 PE 3 Loop0 1 1 1 9 32 PE 4 Loop0 6 6 6 9 32 GE1 1 1 2001 1 2 96 GE1 1 1 2001 2 2 96 POS1 1 1 10 1 1 1 24 POS1 1 1 20 1 1 2 24 CE 1 Loop0 2 2 2 9 32 CE 2 Loop0 5 5 5 9 32 POS1 1 0 10 1 1 2 24 POS1 1 0 21 1 1...

Page 379: ... Configure PE 2 in the same way that PE 1 is configured Details not shown On PE 1 or PE 2 execute the following commands Execute the display mpls ldp peer command to verify that an LDP session in Operational state has been established between PE 1 and PE 2 Details not shown Execute the display bgp peer vpnv4 command to verify that a BGP peer relationship in Established state has been established b...

Page 380: ...1 1 0 CE1 Pos1 1 0 ip address 10 1 1 2 24 CE1 Pos1 1 0 isis enable 2 CE1 Pos1 1 0 mpls enable CE1 Pos1 1 0 mpls ldp enable CE1 Pos1 1 0 mpls ldp transport address interface CE1 Pos1 1 0 quit PE 3 and CE 1 can establish an LDP session and IS IS neighbor relationship between them Configure PE 4 and CE 2 in the same way that PE 3 and CE 1 are configured Details not shown 3 Connect the customer carrie...

Page 381: ...transport address interface CE1 Pos1 1 1 quit PE 1 and CE 1 can establish an LDP session and IS IS neighbor relationship between them Configure PE 2 and CE 2 in the same way that PE 1 and CE 1 are configured Details not shown 4 Connect end customers and the customer carrier Configure CE 3 CE3 system view CE3 interface gigabitethernet 1 1 1 CE3 GigabitEthernet1 1 1 ipv6 address 2001 1 1 96 CE3 Giga...

Page 382: ... way that PE 3 is configured Details not shown Verifying the configuration 1 Display the public network routing table and VPN routing table on the provider carrier PEs for example on PE 1 Verify that the public network routing table contains only routes of the provider carrier network PE1 display ip routing table Destinations 14 Routes 14 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 3...

Page 383: ...ect 0 0 127 0 0 1 InLoop0 2 Display the routing table on the customer carrier CEs for example on CE 1 Verify that the routing table contains the internal routes of the customer carrier network CE1 display ip routing table Destinations 21 Routes 21 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 1 1 1 9 32 IS_L1 15 10 10 1 1 1 POS1 1 0 2 2 2 9 32 Direct 0 0...

Page 384: ...ect 0 0 10 1 1 1 POS1 1 1 10 1 1 1 32 Direct 0 0 127 0 0 1 InLoop0 10 1 1 255 32 Direct 0 0 10 1 1 1 POS1 1 1 11 1 1 0 24 IS_L1 15 20 10 1 1 2 POS1 1 1 20 1 1 0 24 IS_L2 15 84 10 1 1 2 POS1 1 1 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 224 0 0 0 4 Direct 0 0 0 0 0 0 NU...

Page 385: ...s VPN 1 and VPN 2 and Host B to access only VPN 1 Figure 96 Network diagram Configuration procedure 1 Configure CE 1 Configure IPv6 addresses for interfaces CE1 system view CE1 interface gigabitethernet 1 1 1 CE1 GigabitEthernet1 1 1 ipv6 address 100 1 64 CE1 GigabitEthernet1 1 1 quit CE1 interface serial 1 1 0 CE1 Serial1 1 0 ipv6 address 1 2 64 CE1 Serial1 1 0 quit Configure an IPv6 default rout...

Page 386: ...the correct route in the routing table of VPN instance vpn1 PE1 ipv6 route static vpn instance vpn2 100 64 vpn instance vpn1 1 2 PE1 bgp 100 PE1 bgp default ip vpn instance vpn2 PE1 bgp default vpn2 address family ipv6 PE1 bgp default ipv6 vpn2 import route static PE1 bgp default ipv6 vpn2 quit PE1 bgp default vpn2 quit PE1 bgp default quit Configure PBR to route packets from Host A according to t...

Page 387: ...1 5 5 128 GE1 1 1 100 2 64 GE1 1 1 120 2 64 S1 1 1 10 1 1 1 24 S1 1 0 10 1 1 2 24 Router A S1 1 0 30 1 64 S1 1 1 20 2 64 Configuration procedure 1 Configure OSPFv3 on the customer networks Configure conventional OSPFv3 on CE 1 Router A and CE 2 to advertise addresses of the interfaces see Table 35 Details not shown Set the cost value to 2 for both the link between CE 1 and Router A and the link be...

Page 388: ...rea 0 0 0 0 network 1 1 1 9 0 0 0 0 PE1 ospf 1 area 0 0 0 0 network 10 1 1 0 0 0 0 255 PE1 ospf 1 area 0 0 0 0 quit PE1 ospf 1 quit Configure basic MPLS and MPLS LDP on PE 2 to establish LDP LSPs PE2 system view PE2 interface loopback 0 PE2 LoopBack0 ip address 2 2 2 9 32 PE2 LoopBack0 quit PE2 mpls lsr id 2 2 2 9 PE2 mpls ldp PE2 ldp quit PE2 interface serial 1 1 1 PE2 Serial1 1 1 ip address 10 1...

Page 389: ...1 PE1 bgp default vpn1 address family ipv6 unicast PE1 bgp default ipv6 vpn1 import route ospfv3 100 PE1 bgp default ipv6 vpn1 import route direct PE1 bgp default ipv6 vpn1 quit PE1 bgp default vpn1 quit PE1 bgp default quit Configure PE 2 PE2 ip vpn instance vpn1 PE2 vpn instance vpn1 route distinguisher 100 2 PE2 vpn instance vpn1 vpn target 1 1 PE2 vpn instance vpn1 quit PE2 interface gigabitet...

Page 390: ...ham link 5 5 3 3 PE2 ospfv3 100 area 0 0 0 1 quit PE2 ospfv3 100 quit Verifying the configuration Execute the display ipv6 routing table vpn instance command on the PEs to verify the following results details not shown The path to the peer CE is now along the IPv6 BGP route across the backbone A route to the sham link destination address exists Execute the display ipv6 routing table command on the...

Page 391: ...cted to PE 1 and PE 2 The two CEs have the same AS number 600 Configure BGP AS number substitution on the PEs to avoid route loss Figure 98 Network diagram Table 36 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 GE1 1 1 10 1 2 96 P Loop0 2 2 2 9 32 GE1 1 2 100 1 96 GE1 1 1 20 1 1 2 24 PE 1 Loop0 10 1 1 1 32 GE1 1 2 30 1 1 1 24 GE1 1 1 10 1 1 96 PE ...

Page 392: ...E 1 CE2 display ipv6 routing table Destinations 6 Routes 6 Destination 1 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 10 2 96 Protocol Direct NextHop Preference 0 Interface GE1 1 1 Cost 0 Destination 10 2 2 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 200 96 Protocol Static NextHop Preference 60 Interface NULL0 Cost 0 Destinatio...

Page 393: ...advertised the route for 100 96 and the AS_PATH is 100 600 PE2 terminal monitor PE2 terminal logging level 7 PE2 debugging bgp update vpn instance vpn1 10 2 2 ipv6 PE2 refresh bgp all export ipv6 vpn instance vpn1 Jun 13 16 12 52 096 2012 PE2 BGP 7 DEBUG MDC 1 BGP_IPV6 vpn1 Send UPDATE to update group 0 for following destinations Origin Incomplete AS path 100 600 Next hop FFFF 10 1 1 1 100 96 Jun ...

Page 394: ...BGP_IPV6 vpn1 Send UPDATE to peer 10 2 2 for following destinations Origin Incomplete AS path 100 100 Next hop 10 2 1 100 96 Display again the routing information that CE 2 has received and the routing table The output shows that CE 2 has learned the route 100 96 CE2 display bgp routing table ipv6 peer 10 2 1 received routes Total number of routes 1 BGP local router ID is 12 1 1 3 Status codes val...

Page 395: ...st 0 Destination FF00 8 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 Verify that GigabitEthernet 1 1 2 of CE 1 and GigabitEthernet 1 1 2 of CE 2 can ping each other Details not shown Configuring BGP AS number substitution and SoO attribute Network requirements CE 1 CE 2 and CE 3 belong to VPN 1 and are connected to PE1 PE 2 and PE 3 CE 1 and CE 2 reside in the same site CE1 CE2 and ...

Page 396: ...he routes of the loopback interfaces from each other Configure basic MPLS and MPLS LDP on the MPLS backbone to establish LDP LSPs Establish an MP IBGP peer relationship between the PEs to advertise VPN IPv6 routes Configure the VPN instance of VPN 1 on PE 1 to allow CE 1 to access the network Configure the VPN instance of VPN 1 on PE 2 to allow CE 2 to access the network Configure the VPN instance...

Page 397: ...0 100 e Network 200 PrefixLen 96 NextHop 10 2 2 LocPrf PrefVal 0 OutLabel NULL MED Path Ogn 100 100 3 Configure BGP SoO attribute On PE 1 configure the SoO attribute as 1 100 for CE 1 PE1 system view PE1 bgp 100 PE1 bgp default ip vpn instance vpn1 PE1 bgp default vpn1 address family ipv6 PE1 bgp default ipv6 vpn1 peer 10 1 1 soo 1 100 On PE 2 configure the SoO attribute as 1 100 for CE 2 PE2 bgp ...

Page 398: ...rotocol Direct NextHop Preference 0 Interface GE1 1 1 Cost 0 Destination 10 2 1 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 200 96 Protocol Static NextHop Preference 60 Interface NULL0 Cost 0 ...

Page 399: ...unnel an MPLS TE tunnel or a GRE tunnel Cross connect A cross connect connects two physical or virtual circuits such as ACs and PWs It switches packets between the two physical or virtual circuits Cross connects include AC to AC cross connect AC to PW cross connect and PW to PW cross connect Site ID A site ID uniquely identifies a site in a VPN Sites in different VPNs can have the same site ID Rou...

Page 400: ...ssage to an export target L2VPN information includes the site ID RD and label block Import target attribute When a PE receives an update message from the peer PE it checks the route target attribute in the update message If the route target value matches an import target the PE accepts the L2VPN information in the update message Route target attributes determine from which PEs a PE can receive L2V...

Page 401: ...ormation in an extended BGP update to PEs in the same VPN Each PE uses the received label block information to calculate outgoing labels and uses its own label block to calculate incoming labels After two PEs complete label calculation a BGP PW is established between them BGP PWs have the following features Simplified configuration There is no need to manually specify peer PEs A PE automatically f...

Page 402: ... VLAN PPP PPP HDLC HDLC Ethernet over MPLS Ethernet over MPLS uses MPLS L2VPN to connect Ethernets and delivers Ethernet packets through a PW over the MPLS backbone The following PW data encapsulation types are available for Ethernet over MPLS Ethernet P tag is not transferred on a PW For a packet from a CE If the packet contains a P tag the PE removes the P tag and adds a PW label and an outer ta...

Page 403: ...ata encapsulation type for port mode is Ethernet Figure 102 Packet encapsulation in port mode VLAN mode A Layer 3 Ethernet subinterface is bound to a PW Packets received from the VLAN are forwarded through the bound PW The peer PE can modify the VLAN tag as needed The default PW data encapsulation type for VLAN mode is VLAN PPP HDLC over MPLS PPP HDLC over MPLS uses MPLS L2VPN to connect PPPs or H...

Page 404: ...s types of links such as FR HDLC Ethernet and PPP MPLS L2VPN interworking connects such CEs and allow them to communicate MPLS L2VPN supports Ethernet interworking and IP interworking modes The device only supports IP interworking Only local MPLS L2VPN connections static PWs LDP PWs and remote CCC connections support the interworking feature Figure 103 Ethernet to PPP interworking As shown in Figu...

Page 405: ...etermines whether the primary PW fails according to the LDP session status or the BFD result The backup PW is used when one of the following conditions exists The public tunnel of the primary PW is deleted or BFD detects that the public tunnel has failed The primary PW is deleted because the LDP session between PEs goes down or BFD detects that the primary PW has failed A manual PW switchover is p...

Page 406: ...orm the following operations 1 Create a PW between PE 1 and PE 2 PW 1 and a PW between PE 2 and PE 4 PW 2 2 Concatenate the two PWs on PE 2 Intra domain multi segment PWs can fully use existing public tunnels to reduce end to end public tunnels Figure 106 Intra domain multi segment PW Inter domain multi segment PW An inter domain multi segment PW has concatenated PWs in different ASs and is a meth...

Page 407: ...PN you must perform the following tasks 1 Configure an IGP to achieve IP connectivity within the backbone 2 Configure basic MPLS GRE MPLS TE or LDP to set up public tunnels across the backbone 3 Configure MPLS L2VPN on the PEs including setting up PWs and binding ACs to PWs This chapter only describes MPLS L2VPN configurations on the PEs MPLS L2VPN configurations vary by scenario Remote connection...

Page 408: ...ing SNMP notifications for L2VPN PW N A Enabling L2VPN Before you enable L2VPN perform the following tasks Configure an LSR ID for the PE with the mpls lsr id command Enable MPLS with the mpls enable command on the core facing interface of the PE To enable L2VPN Step Command Remarks 1 Enter system view system view N A 2 Enable L2VPN l2vpn enable By default L2VPN is disabled Configuring an AC An AC...

Page 409: ... Configure the link layer protocol link protocol ppp By default the link layer protocol is PPP 4 Optional Configure IPCP negotiation without an IP address or specify the IPCP proxy IP address To configure IPCP negotiation without an IP address ppp ipcp ignore local ip To specify the IPCP proxy IP address ppp ipcp proxy ip address By default IPCP negotiation without an IP address is not supported a...

Page 410: ...W class view pw class class name By default no PW classes exist 3 Optional Enable control word control word enable By default control word is disabled 4 Optional Specify the PW data encapsulation type pw type ethernet vlan By default the PW data encapsulation type is VLAN 5 Optional Enable sequencing for both incoming and outgoing packets on the PW sequencing both By default sequencing is disabled...

Page 411: ...wing configurations on PEs Configure BGP to advertise MPLS L2VPN label block information Create a BGP PW Configuring BGP to advertise MPLS L2VPN label block information Step Command Remarks 1 Enter system view system view N A 2 Enable BGP instance and enter BGP instance view bgp as number instance instance name By default BGP is disabled 3 Configure the remote PE as a BGP peer peer group name ip a...

Page 412: ...d L2VPN information rr filter ext comm list number By default the route reflector does not filter reflected L2VPN information 13 Optional Return to user view return N A 14 Optional Soft reset L2VPN BGP sessions refresh bgp instance instance name ip address mask length all external group group name internal export import l2vpn N A 15 Optional Reset L2VPN BGP sessions reset bgp instance instance nam...

Page 413: ...nnel policy tunnel policy name By default no tunnel policy is specified Configuring a remote CCC connection To configure a remote CCC connection perform the following configurations on the PE and P devices On the two PEs use the ccc command to specify the incoming and outgoing labels On each P device between the two PEs use the static lsp transit command to configure a static LSP for each directio...

Page 414: ... is a virtual interface To resolve the problem you can associate Track with the AC to detect failures on the link that connects the PE agg to the L3VPN or IP backbone When a failure occurs on the link the VE L2VPN interface is set to down Consequently the PW bound to the AC goes down If the PW has a backup PW traffic can be switched to the backup PW For more information about VE L2VPN interfaces a...

Page 415: ...ew N A 2 Enter cross connect group view xconnect group group name N A 3 Enter cross connect view connection connection name N A 4 Optional Specify the switchover mode and set the wait time for the switchover revertive wtr wtr time never By default the switchover mode is revertive and the switchover wait time is 0 seconds 5 Configure the dual receive feature for PW redundancy protection dual receiv...

Page 416: ... HDLC Ethernet and PPP In an IPv4 interworking scenario a PE extracts IPv4 packets from frames received from the AC and sends the packets to the peer PE through the PW The peer PE uses the link protocol of the connected AC to encapsulate the IPv4 packets and sends the packets through the AC This method hides the link types of ACs at the two ends To configure MPLS L2VPN interworking follow these re...

Page 417: ...ers or PW status changes occur For L2VPN event notifications to be sent correctly you must also configure SNMP on the device For more information about SNMP configuration see the network management and monitoring configuration guide for the device To enable SNMP notifications for L2VPN PW Step Command Remarks 1 Enter system view system view N A 2 Enable SNMP notifications for L2VPN PW snmp agent t...

Page 418: ...l offset advertise info statistics Display BGP L2VPN peer information display bgp instance instance name peer l2vpn ip address mask length group name group name log info ip address log info verbose verbose Display BGP L2VPN update group information display bgp instance instance name update group l2vpn ip address Reset BGP sessions for L2VPN reset bgp instance instance name as number ip address mas...

Page 419: ...ace gigabitethernet 1 1 1 PE xcg vpn1 vpn1 ac interface gigabitethernet 1 1 2 PE xcg vpn1 vpn1 quit Verifying the configuration Verify that two AC forwarding entries exist on the PE PE display l2vpn forwarding ac Total number of cross connections 1 Total number of ACs 2 AC Xconnect group Name Link ID GE1 1 1 vpn1 0 GE1 1 2 vpn1 1 Verify that CE 1 and CE 2 can ping each other Details not shown Conf...

Page 420: ...face gigabitethernet 1 1 1 PE GigabitEthernet1 1 1 default nexthop ip 10 1 1 1 PE GigabitEthernet1 1 1 quit Configure the IPCP proxy IP address as the IP address of CE 1 on Serial 1 1 0 the interface connected to CE 2 This interface does not need an IP address PE interface serial 1 1 0 PE Serial1 1 0 link protocol ppp PE Serial1 1 0 ppp ipcp proxy 10 1 1 1 PE Serial1 1 0 quit Create a cross connec...

Page 421: ...ic PW between PE 1 and PE 2 over the backbone to allow communication between CE 1 and CE 2 Figure 110 Network diagram Table 39 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 GE1 1 1 100 1 1 1 24 P Loop0 192 4 4 4 32 PE 1 Loop0 192 2 2 2 32 GE1 1 1 10 1 1 2 24 GE1 1 1 GE1 1 2 10 2 2 2 24 GE1 1 2 10 1 1 1 24 PE 2 Loop0 192 3 3 3 32 CE 2 GE1 1 1 100 1...

Page 422: ... PE1 ospf 1 area 0 PE1 ospf 1 area 0 0 0 0 network 10 1 1 1 0 0 0 255 PE1 ospf 1 area 0 0 0 0 network 192 2 2 2 0 0 0 0 PE1 ospf 1 area 0 0 0 0 quit PE1 ospf 1 quit Create a cross connect group named vpna create a cross connect named svc in the group and bind GigabitEthernet 1 1 1 to the cross connect PE1 xconnect group vpna PE1 xcg vpna connection svc PE1 xcg vpna svc ac interface gigabitethernet...

Page 423: ...f 1 area 0 0 0 0 network 10 2 2 2 0 0 0 255 P ospf 1 area 0 0 0 0 network 192 4 4 4 0 0 0 0 P ospf 1 area 0 0 0 0 quit P ospf 1 quit 4 Configure PE 2 Configure an LSR ID PE2 system view PE2 interface loopback 0 PE2 LoopBack0 ip address 192 3 3 3 32 PE2 LoopBack0 quit PE2 mpls lsr id 192 3 3 3 Enable L2VPN PE2 l2vpn enable Enable globally LDP PE2 mpls ldp PE2 ldp quit Configure GigabitEthernet 1 1 ...

Page 424: ... been established on PE 1 PE1 display l2vpn pw Flags M main B backup BY bypass H hub link S spoke link N no split horizon Total number of PWs 1 1 up 0 blocked 0 down 0 defect 0 idle 0 duplicate Xconnect group Name vpna Peer PW ID Rmt Site In Out Label Proto Flag Link ID State 192 3 3 3 3 100 200 Static M 0 Up Verify that a static PW has been established on PE 2 PE2 display l2vpn pw Flags M main B ...

Page 425: ... CE1 system view CE1 interface gigabitethernet 1 1 1 CE1 GigabitEthernet1 1 1 ip address 100 1 1 1 24 CE1 GigabitEthernet1 1 1 quit 2 Configure PE 1 Configure an LSR ID PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 192 2 2 2 32 PE1 LoopBack0 quit PE1 mpls lsr id 192 2 2 2 Enable L2VPN PE1 l2vpn enable Enable global LDP PE1 mpls ldp PE1 ldp quit Configure GigabitEthernet 1 1 2 t...

Page 426: ...onfigure the P device Configure an LSR ID P system view P interface loopback 0 P LoopBack0 ip address 192 4 4 4 32 P LoopBack0 quit P mpls lsr id 192 4 4 4 Enable global LDP P mpls ldp P ldp quit Configure GigabitEthernet 1 1 1 the interface connected to PE 1 and enable LDP on the interface P interface gigabitethernet 1 1 1 P GigabitEthernet1 1 1 ip address 10 1 1 2 24 P GigabitEthernet1 1 1 mpls ...

Page 427: ...create LSPs PE2 ospf PE2 ospf 1 area 0 PE2 ospf 1 area 0 0 0 0 network 192 3 3 3 0 0 0 0 PE2 ospf 1 area 0 0 0 0 network 10 2 2 0 0 0 0 255 PE2 ospf 1 area 0 0 0 0 quit PE2 ospf 1 quit Create a cross connect group named vpna create a cross connect named ldp in the group and bind GigabitEthernet 1 1 1 to the cross connect PE2 xconnect group vpna PE2 xcg vpna connection ldp PE2 xcg vpna ldp ac inter...

Page 428: ...State 192 2 2 2 3 1279 1279 LDP M 1 Up Verify that CE 1 and CE 2 can ping each other Details not shown Configuring IP interworking over an LDP PW Network requirements CE 1 and PE 1 are connected through Ethernet interfaces CE 2 and PE 2 are connected through serial interfaces and they use PPP as the link layer protocol Configure an LDP PW between PE 1 and PE 2 and enable interworking on PEs to all...

Page 429: ... 1 1 1 PE1 GigabitEthernet1 1 1 quit Configure GigabitEthernet 1 1 2 the interface connected to the P device and enable LDP on the interface PE1 interface gigabitethernet 1 1 2 PE1 GigabitEthernet1 1 2 ip address 10 1 1 1 24 PE1 GigabitEthernet1 1 2 mpls enable PE1 GigabitEthernet1 1 2 mpls ldp enable PE1 GigabitEthernet1 1 2 quit Configure OSPF for LDP to create LSPs PE1 ospf PE1 ospf 1 area 0 PE...

Page 430: ...thernet1 1 1 quit Configure GigabitEthernet 1 1 2 the interface connected to PE 2 and enable LDP on the interface P interface gigabitethernet 1 1 2 P GigabitEthernet1 1 2 ip address 10 2 2 2 24 P GigabitEthernet1 1 2 mpls enable P GigabitEthernet1 1 2 mpls ldp enable P GigabitEthernet1 1 2 quit Configure OSPF for LDP to create LSPs P ospf P ospf 1 area 0 P ospf 1 area 0 0 0 0 network 10 1 1 2 0 0 ...

Page 431: ...named vpna create a cross connect named ldp in the group enable interworking for the cross connect and bind Serial 1 1 0 to the cross connect PE2 xconnect group vpna PE2 xcg vpna connection ldp PE2 xcg vpna ldp interworking ipv4 PE2 xcg vpna ldp ac interface serial 1 1 0 Create an LDP PW for the cross connect to bind the AC to the PW PE2 xcg vpna ldp peer 192 2 2 2 pw id 3 PE2 xcg vpna ldp 192 2 2...

Page 432: ...een PE 1 and PE 2 to allow communication between CE 1 and CE 2 Figure 113 Network diagram Table 42 Interface and IP address assignment Device Interface IP address Device Interface IP address CE 1 GE1 1 1 100 1 1 1 24 P Loop0 192 4 4 4 32 PE 1 Loop0 192 2 2 2 32 GE1 1 1 10 1 1 2 24 GE1 1 1 GE1 1 2 10 2 2 2 24 GE1 1 2 10 1 1 1 24 PE 2 Loop0 192 3 3 3 32 CE 2 GE1 1 1 100 1 1 2 24 GE1 1 1 GE1 1 2 10 2...

Page 433: ... 2 and enable BGP to advertise L2VPN information to PE 2 PE1 bgp 100 PE1 bgp default peer 192 3 3 3 as number 100 PE1 bgp default peer 192 3 3 3 connect interface loopback 0 PE1 bgp default address family l2vpn PE1 bgp default l2vpn peer 192 3 3 3 enable PE1 bgp default l2vpn quit PE1 bgp default quit Create a cross connect group named vpnb create a local site named site 1 and create a BGP PW from...

Page 434: ...le P GigabitEthernet1 1 2 quit Configure OSPF for LDP to create LSPs P ospf P ospf 1 area 0 P ospf 1 area 0 0 0 0 network 10 1 1 2 0 0 0 255 P ospf 1 area 0 0 0 0 network 10 2 2 2 0 0 0 255 P ospf 1 area 0 0 0 0 network 192 4 4 4 0 0 0 0 P ospf 1 area 0 0 0 0 quit P ospf 1 quit 4 Configure PE 2 Configure an LSR ID PE2 system view PE2 interface loopback 0 PE2 LoopBack0 ip address 192 3 3 3 32 PE2 L...

Page 435: ...xcg vpnb auto vpn target 2 2 import extcommunity PE2 xcg vpnb auto site 2 range 10 default offset 0 PE2 xcg vpnb auto 2 connection remote site id 1 Bind GigabitEthernet 1 1 1 to the PW PE2 xcg vpnb auto 2 1 ac interface gigabitethernet 1 1 1 PE2 xcg vpnb auto 2 1 return 5 Configure CE 2 CE2 system view CE2 interface gigabitethernet 1 1 1 CE2 GigabitEthernet1 1 1 ip address 100 1 1 2 24 CE2 Gigabit...

Page 436: ...ent Device Interface IP address Device Interface IP address CE 1 GE1 1 1 100 1 1 1 24 P Loop0 192 4 4 4 32 PE 1 Loop0 192 2 2 2 32 GE1 1 1 10 1 1 2 24 GE1 1 1 GE1 1 2 10 2 2 2 24 GE1 1 2 10 1 1 1 24 PE 2 Loop0 192 3 3 3 32 CE 2 GE1 1 1 100 1 1 2 24 GE1 1 1 GE1 1 2 10 2 2 1 24 Configuration procedure 1 Configure CE 1 CE1 system view CE1 interface gigabitethernet 1 1 1 CE1 GigabitEthernet1 1 1 ip ad...

Page 437: ... ccc ac interface gigabitethernet 1 1 1 PE1 xcg ccc ccc quit PE1 xcg ccc quit 3 Configure the P device Configure an LSR ID P system view P interface loopback 0 P LoopBack0 ip address 192 4 4 4 32 P LoopBack0 quit P mpls lsr id 192 4 4 4 Configure GigabitEthernet 1 1 1 the interface connected to PE 1 and enable MPLS on the interface P interface gigabitethernet 1 1 1 P GigabitEthernet1 1 1 ip addres...

Page 438: ...f 1 area 0 0 0 0 network 10 2 2 0 0 0 0 255 PE2 ospf 1 area 0 0 0 0 network 192 3 3 3 0 0 0 0 PE2 ospf 1 area 0 0 0 0 quit PE2 ospf 1 quit Create a cross connect group named ccc and create a remote CCC connection that has incoming label 202 outgoing label 102 and next hop 10 2 2 2 PE2 xconnect group ccc PE2 xcg ccc connection ccc PE2 xcg ccc ccc ccc in label 202 out label 102 nexthop 10 2 2 2 Bind...

Page 439: ...ls not shown Configuring an intra domain multi segment PW Network requirements As shown in Figure 115 there is no public tunnel between PE 1 and PE 2 There is an MPLS TE tunnel between PE 1 and P and an MPLS TE tunnel between P and PE 2 Configure a multi segment PW within the backbone to allow communication between CE 1 and CE 2 The multi segment PW includes an LDP PW between PE 1 and P and a stat...

Page 440: ...d vpn1 create a cross connect named ldp in the group and bind GigabitEthernet 1 1 1 to the cross connect PE1 xconnect group vpn1 PE1 xcg vpn1 connection ldp PE1 xcg vpn1 ldp ac interface gigabitethernet 1 1 1 Create an LDP PW for the cross connect to bind the AC to the PW PE1 xcg vpn1 ldp peer 192 4 4 4 pw id 1000 PE1 xcg vpn1 ldp 192 4 4 4 1000 quit PE1 xcg vpn1 ldp quit PE1 xcg vpn1 quit 3 Confi...

Page 441: ...h an MPLS TE tunnel between P and PE 2 For more information see Configuring MPLS TE Create a cross connect group named vpn1 create a cross connect named svc in the group and bind GigabitEthernet 1 1 1 to the cross connect PE2 xconnect group vpn1 PE2 xcg vpn1 connection svc PE2 xcg vpn1 svc ac interface gigabitethernet 1 1 1 Create a static PW for the cross connect to bind the AC to the PW PE2 xcg ...

Page 442: ... PW ID Rmt Site In Out Label Proto Flag Link ID State 192 4 4 4 1000 200 100 Static M 1 Up Verify that CE 1 and CE 2 can ping each other Details not shown Configuring an inter domain multi segment PW Network requirements PE 1 and ASBR 1 belong to AS 100 PE 2 and ASBR 2 belong to AS 200 Set up an inter domain multi segment PW a method for inter AS Option B networking within the backbone to allow co...

Page 443: ...ion procedure 1 Configure CE 1 CE1 system view CE1 interface gigabitethernet 1 1 1 CE1 GigabitEthernet1 1 1 ip address 100 1 1 1 24 CE1 GigabitEthernet1 1 1 quit 2 Configure PE 1 Configure an LSR ID PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 192 1 1 1 32 PE1 LoopBack0 quit PE1 mpls lsr id 192 1 1 1 Enable L2VPN PE1 l2vpn enable Enable global LDP PE1 mpls ldp PE1 ldp quit Con...

Page 444: ...ure ASBR 1 Configure an LSR ID ASBR1 system view ASBR1 interface loopback 0 ASBR1 LoopBack0 ip address 192 2 2 2 32 ASBR1 LoopBack0 quit ASBR1 mpls lsr id 192 2 2 2 Enable L2VPN ASBR1 l2vpn enable Enable global LDP ASBR1 mpls ldp ASBR1 ldp quit Configure GigabitEthernet 1 1 2 the interface connected to PE 1 and enable LDP on the interface ASBR1 interface gigabitethernet 1 1 2 ASBR1 GigabitEthernet...

Page 445: ...o form a multi segment PW ASBR1 xconnect group vpn1 ASBR1 xcg vpn1 connection ldp ASBR1 xcg vpn1 ldp peer 192 1 1 1 pw id 1000 ASBR1 xcg vpn1 ldp 192 1 1 1 1000 quit ASBR1 xcg vpn1 ldp peer 192 3 3 3 pw id 1000 ASBR1 xcg vpn1 ldp 192 3 3 3 1000 quit ASBR1 xcg vpn1 ldp quit ASBR1 xcg vpn1 quit 4 Configure ASBR 2 Configure an LSR ID ASBR2 system view ASBR2 interface loopback 0 ASBR2 LoopBack0 ip add...

Page 446: ...quit ASBR2 bgp default quit ASBR2 route policy policy1 permit node 1 ASBR2 route policy policy1 1 apply mpls label ASBR2 route policy policy1 1 quit Create a cross connect group named vpn1 create a cross connect named ldp in the group and create two LDP PWs for the cross connect to form a multi segment PW ASBR2 xconnect group vpn1 ASBR2 xcg vpn1 connection ldp ASBR2 xcg vpn1 ldp peer 192 2 2 2 pw ...

Page 447: ...it 6 Configure CE 2 CE2 system view CE2 interface gigabitethernet 1 1 1 CE2 GigabitEthernet1 1 1 ip address 100 1 1 2 24 CE2 GigabitEthernet1 1 1 quit Verifying the configuration Verify that an LDP PW has been created on PE 1 PE1 display l2vpn pw Flags M main B backup BY bypass H hub link S spoke link N no split horizon Total number of PWs 1 1 up 0 blocked 0 down 0 defect 0 idle 0 duplicate Xconne...

Page 448: ... 2 2 1000 1151 1278 LDP M 0 Up 192 4 4 4 1000 1150 1279 LDP M 1 Up Verify that an LDP PW has been created on PE 2 PE2 display l2vpn pw Flags M main B backup BY bypass H hub link S spoke link N no split horizon Total number of PWs 1 1 up 0 blocked 0 down 0 defect 0 idle 0 duplicate Xconnect group Name vpn1 Peer PW ID Rmt Site In Out Label Proto Flag Link ID State 192 3 3 3 1000 1279 1150 LDP M 1 Up...

Page 449: ...ment circuit physical or virtual connects a CE and a PE such as an Ethernet link or a VLAN PW A pseudowire is a bidirectional virtual connection between two PEs An MPLS PW consists of two unidirectional MPLS LSPs in opposite directions Tunnel A tunnel can be an LSP tunnel an MPLS TE tunnel or a GRE tunnel It carries one or more PWs over an IP MPLS backbone If a PW is carried on an LSP or MPLS TE t...

Page 450: ...PE BGP auto discovery LDP PW To create a BGP auto discovery LDP PW configure BGP to automatically find the remote PE and use LDP to advertise the PW label binding to the remote PE After the two PEs receive the PW label binding from each other they establish a BGP auto discovery LDP PW The information advertised by BGP includes the ID for example LSR ID and VPLS ID of the advertising PE The receivi...

Page 451: ... label to the packet and adds the public tunnel header to the packet It then forwards the packet to the remote PE over the PW If the outgoing interface in the entry is a local interface the PE directly forwards the packet to the local interface If no match is found the PE floods the packet to all other ACs and PWs in the VSI After a PE receives a unicast packet from a PW the PE searches the MAC ad...

Page 452: ... static PWs and LDP PWs support H VPLS In H VPLS An edge domain provides access for a user network to the backbone domain The Network Provider Edge NPE devices are fully meshed in the backbone domain A PW between NPEs is referred to as an N PW A User facing Provider Edge UPE device only establishes a PW with the neighboring NPE A PW between a UPE and an NPE is referred to as a U PW H VPLS access m...

Page 453: ...wo NPEs Even if a U PW fails all customer sites connected to the UPE maintain the connectivity In the H VPLS using MPLS access as shown in Figure 121 the UPE is connected to two NPEs through primary and backup U PWs The UPE uses the primary U PW to forward traffic When the primary U PW fails the UPE uses the backup U PW to forward traffic Figure 121 UPE dual homing and redundancy in H VPLS using M...

Page 454: ... a spoke site is called a spoke PE A link AC or PW towards the hub site is called a hub link You must specify one and only one hub link in a VSI A link AC or PW towards a spoke site is called a spoke link In the hub spoke VPLS network a PE performs MAC address learning and forwarding as follows After receiving a packet from a spoke link the PE performs MAC address learning and forwards the packet ...

Page 455: ... H VPLS using MPLS access do not perform this task on the access NPEs of the UPEs Optional Configuring UPE dual homing Configuring static PW redundancy Configuring LDP PW redundancy N A Required Configuring MAC address learning N A Optional Enabling SNMP notifications for L2VPN PW N A Enabling L2VPN Before you enable L2VPN perform the following tasks Configure an LSR ID for the PE with the mpls ls...

Page 456: ... view vsi vsi name hub spoke By default no VSIs exist If you specify the hub spoke keyword for a VSI the VSI supports the hub spoke network model 3 Optional Configure a description for the VSI description text By default no description is configured for a VSI 4 Optional Set the default PW ID for the VSI default pw id default pw id By default no default PW ID is configured for the VSI 5 Set an MTU ...

Page 457: ...igured the default PW ID is used If no default PW ID is configured you must provide a PW ID in the peer command If a VSI is enabled with the hub spoke capability the hub spoke keyword in the vsi command PWs in the VSI are spoke links by default You can use the hub keyword in this command to specify the static PW as the hub link in the VSI You must specify the no split horizon keyword to disable sp...

Page 458: ...expected bandwidth is 10000000 kbps Configuring a BGP PW To configure a BGP PW perform the following configurations on PEs Configure BGP to advertise VPLS label block information Create a BGP PW Configuring BGP to advertise VPLS label block information Step Command Remarks 1 Enter system view system view N A 2 Enable BGP instance and enter BGP instance view bgp as number instance instance name By ...

Page 459: ...R does not filter reflected L2VPN information 13 Optional Return to user view return N A 14 Optional Soft reset L2VPN BGP sessions refresh bgp instance instance name ip address mask length all external group group name internal export import l2vpn N A 15 Optional Reset L2VPN BGP sessions reset bgp instance instance name as number ip address mask length all external group group name internal l2vpn ...

Page 460: ...mber instance instance name By default BGP is disabled 3 Configure the remote PE as a BGP peer peer group name ip address mask length as number as number By default no BGP peers exist 4 Create the BGP L2VPN address family and enter BGP L2VPN address family view address family l2vpn By default no BGP L2VPN address family exists 5 Enable BGP to exchange VPLS PE information with the specified peer or...

Page 461: ...ternal group group name internal l2vpn N A For more information about the peer as number peer enable peer allow as loop peer reflect client reflect between clients reflector cluster id refresh bgp l2vpn and reset bgp l2vpn commands see Layer 3 IP Routing Command Reference Creating a BGP auto discovery LDP PW Step Command Remarks 1 Enter system view system view N A 2 Enter VSI view vsi vsi name hub...

Page 462: ... a failure occurs on the link the VE L2VPN interface is set to down Consequently the PW bound to the AC goes down If the PW has a backup PW traffic can be switched to the backup PW For more information about VE L2VPN interfaces and L2VPN access to L3VPN or IP backbone see Configuring L2VPN access to L3VPN or IP backbone Binding a Layer 3 interface to a VSI After you bind a Layer 3 interface to a V...

Page 463: ...l label value out label label value pw class class name tunnel policy tunnel policy name By default no backup static PW exists If both the default PW ID in the default pw id command and a PW ID in the backup peer command are configured the PW ID in the backup peer command is used If only the default PW ID is configured the default PW ID is used If no default PW ID is configured you must provide a ...

Page 464: ...figuring MAC address learning Step Command Remarks 1 Enter system view system view N A 2 Enter VSI view vsi vsi name hub spoke N A 3 Enable MAC address learning for the VSI mac learning enable By default MAC address learning is enabled for a VSI 4 Set the maximum number of MAC addresses that the VSI can learn mac table limit mac limit By default the number of MAC addresses that a VSI can learn is ...

Page 465: ...y l2vpn bgp instance instance name peer ip address local vsi vsi name verbose Display BGP L2VPN peer group information display bgp instance instance name group l2vpn group name group name Display VPLS PE information discovered by BGP display bgp instance instance name l2vpn auto discovery peer ip address advertised received statistics route distinguisher route distinguisher pe address ip address a...

Page 466: ...able LDP run IGP OSPF in this example to establish LSPs Establish static PWs enable L2VPN create static PWs and specify labels 1 Configure PE 1 Configure an LSR ID PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 1 1 1 9 32 PE1 LoopBack0 quit PE1 mpls lsr id 1 1 1 9 Enable L2VPN PE1 l2vpn enable Enable global LDP PE1 mpls ldp PE1 ldp quit Configure GigabitEthernet 1 1 2 the interf...

Page 467: ...ic peer 2 2 2 9 pw id 3 in label 100 out label 100 PE1 vsi svc static 2 2 2 9 3 quit PE1 vsi svc static peer 3 3 3 9 pw id 3 in label 200 out label 200 PE1 vsi svc static 3 3 3 9 3 quit PE1 vsi svc static quit PE1 vsi svc quit Bind Layer 3 Ethernet interface GigabitEthernet 1 1 1 to VSI svc PE1 interface gigabitethernet 1 1 1 PE1 GigabitEthernet1 1 1 xconnect vsi svc PE1 GigabitEthernet1 1 1 quit ...

Page 468: ... pw id 3 in label 100 out label 100 PE2 vsi svc static 1 1 1 9 3 quit PE2 vsi svc static peer 3 3 3 9 pw id 3 in label 300 out label 300 PE2 vsi svc static 3 3 3 9 3 quit PE2 vsi svc static quit PE2 vsi svc quit Bind Layer 3 Ethernet interface GigabitEthernet 1 1 1 to VSI svc PE2 interface gigabitethernet 1 1 1 PE2 GigabitEthernet1 1 1 xconnect vsi svc PE2 GigabitEthernet1 1 1 quit 3 Configure PE ...

Page 469: ... PE3 vsi svc static peer 1 1 1 9 pw id 3 in label 200 out label 200 PE3 vsi svc static 1 1 1 9 3 quit PE3 vsi svc static peer 2 2 2 9 pw id 3 in label 300 out label 300 PE3 vsi svc static 2 2 2 9 3 quit PE3 vsi svc static quit PE3 vsi svc quit Bind Layer 3 Ethernet interface GigabitEthernet 1 1 1 to VSI svc PE3 interface gigabitethernet 1 1 1 PE3 GigabitEthernet1 1 1 xconnect vsi svc PE3 GigabitEt...

Page 470: ...figure an IGP and public tunnels on each PE Details not shown 2 Configure PE 1 Configure basic MPLS PE1 system view PE1 interface loopback 0 PE1 LoopBack0 ip address 1 1 1 9 32 PE1 LoopBack0 quit PE1 mpls lsr id 1 1 1 9 PE1 mpls ldp PE1 ldp quit Enable L2VPN PE1 l2vpn enable Configure VSI aaa that uses LDP as the PW signaling protocol and establish PWs to PE 2 and PE 3 PE1 vsi aaa PE1 vsi aaa pwsi...

Page 471: ...si aaa ldp peer 1 1 1 9 pw id 500 PE2 vsi aaa ldp 1 1 1 9 500 quit PE2 vsi aaa ldp peer 3 3 3 9 pw id 500 PE2 vsi aaa ldp 3 3 3 9 500 quit PE2 vsi aaa ldp quit PE2 vsi aaa quit Bind Layer 3 Ethernet interface GigabitEthernet 1 1 1 to VSI aaa PE2 interface gigabitethernet 1 1 1 PE2 GigabitEthernet1 1 1 xconnect vsi aaa PE2 GigabitEthernet1 1 1 quit 4 Configure PE 3 Configure basic MPLS PE3 system v...

Page 472: ... Name aaa Peer 2 2 2 9 PW ID 500 Signaling Protocol LDP Link ID 8 PW State Up In Label 1279 Out Label 1279 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x260000000 Tunnel NHLFE IDs 1028 Peer 3 3 3 9 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 1278 Out Label 1277 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x360000001 Tunnel NHLFE IDs 1029 BGP PW...

Page 473: ...s number 100 PE1 bgp default peer 2 2 2 9 connect interface loopback 0 PE1 bgp default peer 3 3 3 9 as number 100 PE1 bgp default peer 3 3 3 9 connect interface loopback 0 PE1 bgp default address family l2vpn PE1 bgp default l2vpn peer 2 2 2 9 enable PE1 bgp default l2vpn peer 3 3 3 9 enable PE1 bgp default l2vpn quit PE1 bgp default quit Enable L2VPN PE1 l2vpn enable Configure VSI aaa to use BGP ...

Page 474: ...9 as number 100 PE2 bgp default peer 3 3 3 9 connect interface loopback 0 PE2 bgp default address family l2vpn PE2 bgp default l2vpn peer 1 1 1 9 enable PE2 bgp default l2vpn peer 3 3 3 9 enable PE2 bgp default l2vpn quit PE2 bgp default quit Enable L2VPN PE2 l2vpn enable Configure VSI aaa to use BGP to establish BGP PWs to PE 1 and PE 3 PE2 vsi aaa PE2 vsi aaa auto discovery bgp PE2 vsi aaa auto ...

Page 475: ...to establish BGP PWs to PE 1 and PE 2 PE3 vsi aaa PE3 vsi aaa auto discovery bgp PE3 vsi aaa auto route distinguisher 1 1 PE3 vsi aaa auto vpn target 1 1 PE3 vsi aaa auto signaling protocol bgp PE3 vsi aaa auto bgp site 3 range 10 default offset 0 PE3 vsi aaa auto bgp quit PE3 vsi aaa auto quit PE3 vsi aaa quit Bind Layer 3 Ethernet interface GigabitEthernet 1 1 1 to VSI aaa PE3 interface gigabite...

Page 476: ...ink ID 9 Local Label Block 1293 10 0 Remote Label Block 1024 10 0 Export Route Target 1 1 Remote Site ID 3 Offset 0 RD 1 1 PW State Up Encapsulation BGP VPLS MTU 1500 Nexthop 3 3 3 9 Local VC Label 1296 Remote VC Label 1025 Link ID 10 Local Label Block 1293 10 0 Remote Label Block 1024 10 0 Export Route Target 1 1 BGP auto discovery LDP PW configuration example Network requirements CEs are connect...

Page 477: ...2 9 as number 100 PE1 bgp default peer 2 2 2 9 connect interface loopback 0 PE1 bgp default peer 3 3 3 9 as number 100 PE1 bgp default peer 3 3 3 9 connect interface loopback 0 PE1 bgp default address family l2vpn PE1 bgp default l2vpn peer 2 2 2 9 enable PE1 bgp default l2vpn peer 3 3 3 9 enable PE1 bgp default l2vpn quit PE1 bgp default quit Enable L2VPN PE1 l2vpn enable Configure VSI aaa to use...

Page 478: ...2 bgp default peer 3 3 3 9 as number 100 PE2 bgp default peer 3 3 3 9 connect interface loopback 0 PE2 bgp default address family l2vpn PE2 bgp default l2vpn peer 1 1 1 9 enable PE2 bgp default l2vpn peer 3 3 3 9 enable PE2 bgp default l2vpn quit PE2 bgp default quit Enable L2VPN PE2 l2vpn enable Configure VSI aaa to use BGP to discover remote PEs and use LDP to establish LDP PWs to PE 1 and PE 3 ...

Page 479: ...VPN PE3 l2vpn enable Configure VSI aaa to use BGP to discover remote PEs and use LDP to establish LDP PWs to PE 1 and PE 2 PE3 vsi aaa PE3 vsi aaa auto discovery bgp PE3 vsi aaa auto route distinguisher 1 1 PE3 vsi aaa auto vpn target 1 1 PE3 vsi aaa auto signaling protocol ldp PE3 vsi aaa auto ldp vpls id 100 100 PE3 vsi aaa auto ldp quit PE3 vsi aaa auto quit PE3 vsi aaa quit Bind Layer 3 Ethern...

Page 480: ...nication Notification method PW ID FEC Local Remote Local AII 1 1 1 9 2 2 2 9 Remote AII 2 2 2 9 1 1 1 9 PW Type Ethernet Ethernet Group ID 0 0 Label 1555 1555 Control Word Disabled Disabled VCCV CV Type VCCV CC Type MTU 1500 1500 PW Status PW forwarding PW forwarding Peer 3 3 3 9 VPLS ID 100 100 VSI Name aaa PW State Up PW Status Communication Notification method PW ID FEC Local Remote Local AII ...

Page 481: ...tem view UPE interface loopback 0 UPE LoopBack0 ip address 1 1 1 9 32 UPE LoopBack0 quit UPE mpls lsr id 1 1 1 9 UPE mpls ldp UPE ldp quit Enable L2VPN UPE l2vpn enable Configure VSI aaa to use LDP to establish a U PW to NPE 1 UPE vsi aaa UPE vsi aaa pwsignaling ldp UPE vsi aaa ldp peer 2 2 2 9 pw id 500 UPE vsi aaa ldp 2 2 2 9 500 quit UPE vsi aaa ldp quit UPE vsi aaa quit Bind Layer 3 Ethernet i...

Page 482: ... 4 4 4 9 500 quit NPE1 vsi aaa ldp quit NPE1 vsi aaa quit 4 Configure NPE 2 Configure basic MPLS NPE2 system view NPE2 interface loopback 0 NPE2 LoopBack0 ip address 3 3 3 9 32 NPE2 LoopBack0 quit NPE2 mpls lsr id 3 3 3 9 NPE2 mpls ldp NPE2 ldp quit Enable L2VPN NPE2 l2vpn enable Configure VSI aaa that uses LDP as the PW signaling protocol and establish N PWs to NPE 1 and NPE 3 NPE2 vsi aaa NPE2 v...

Page 483: ... NPE3 vsi aaa quit Bind Layer 3 Ethernet interface GigabitEthernet 1 1 1 to VSI aaa NPE3 interface gigabitethernet 1 1 1 NPE3 GigabitEthernet1 1 1 xconnect vsi aaa NPE3 GigabitEthernet1 1 1 quit Verifying the configuration Verify that PWs in up state have been established on each PE UPE display l2vpn pw verbose VSI Name aaa Peer 2 2 2 9 PW ID 500 Signaling Protocol LDP Link ID 8 PW State Up In Lab...

Page 484: ... CC VCCV BFD Tunnel Group ID 0x570000001 Tunnel NHLFE IDs 1032 NPE2 display l2vpn pw verbose VSI Name aaa Peer 2 2 2 9 PW ID 500 Signaling Protocol LDP Link ID 8 PW State Up In Label 1275 Out Label 1276 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x660000000 Tunnel NHLFE IDs 1031 Peer 4 4 4 9 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 1277 Out Label 1277 MTU 1...

Page 485: ...0000 Tunnel NHLFE IDs 1032 H VPLS UPE dual homing configuration example Network requirements To improve reliability of the H VPLS network the UPE establishes a U PW with NPE 1 and NPE 2 The U PW between UPE and NPE 1 is the primary PW and that between UPE and NPE 2 is the backup PW The backup PW works only when the primary PW fails The H VPLS uses LDP as the PW signaling protocol Figure 128 Networ...

Page 486: ...ernet 1 1 1 to VSI aaa UPE interface gigabitethernet 1 1 1 UPE GigabitEthernet1 1 1 xconnect vsi aaa UPE GigabitEthernet1 1 1 quit Bind the CE 2 facing Layer 3 Ethernet interface GigabitEthernet 1 1 2 to VSI aaa UPE interface gigabitethernet 1 1 2 UPE GigabitEthernet1 1 2 xconnect vsi aaa UPE GigabitEthernet1 1 2 quit 3 Configure NPE 1 Configure basic MPLS NPE1 system view NPE1 interface loopback ...

Page 487: ...dp 1 1 1 1 500 quit NPE2 vsi aaa ldp peer 2 2 2 2 pw id 500 NPE2 vsi aaa ldp 2 2 2 2 500 quit NPE2 vsi aaa ldp peer 4 4 4 4 pw id 500 NPE2 vsi aaa ldp 4 4 4 4 500 quit NPE2 vsi aaa ldp quit NPE2 vsi aaa quit 5 Configure NPE 3 Configure basic MPLS NPE3 system view NPE3 interface loopback 0 NPE3 LoopBack0 ip address 4 4 4 4 32 NPE3 LoopBack0 quit NPE3 mpls lsr id 4 4 4 4 NPE3 mpls ldp NPE3 ldp quit ...

Page 488: ...es Main VCCV CC VCCV BFD Tunnel Group ID 0x260000002 Tunnel NHLFE IDs 1027 Peer 3 3 3 3 PW ID 500 Signaling Protocol LDP Link ID 8 PW State Blocked In Label 1150 Out Label 1279 MTU 1500 PW Attributes Backup VCCV CC VCCV BFD Tunnel Group ID 0x360000003 Tunnel NHLFE IDs 1025 NPE1 display l2vpn pw verbose VSI Name aaa Peer 1 1 1 1 PW ID 500 Signaling Protocol LDP Link ID 8 PW State Up In Label 1279 O...

Page 489: ...79 Out Label 1150 MTU 1500 PW Attributes Main No split horizon VCCV CC VCCV BFD Tunnel Group ID 0x60000000 Tunnel NHLFE IDs 1026 Peer 2 2 2 2 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 1290 Out Label 1280 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x160000008 Tunnel NHLFE IDs 1027 Peer 4 4 4 4 PW ID 500 Signaling Protocol LDP Link ID 10 PW State Up In Label 1...

Page 490: ... 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x60000000 Tunnel NHLFE IDs 1026 Peer 3 3 3 3 PW ID 500 Signaling Protocol LDP Link ID 9 PW State Up In Label 1278 Out Label 1278 MTU 1500 PW Attributes Main VCCV CC VCCV BFD Tunnel Group ID 0x160000001 Tunnel NHLFE IDs 1027 ...

Page 491: ...ervices and P devices only forward packets based on labels Therefore you can use low end devices as P devices to reduce your investment Flexible networking MPLS L2VPN supports various user access modes such as Ethernet and frame relay It allows links that run different link layer protocols to communicate with each other through interworking L2VPN access to L3VPN or IP backbone can be implemented i...

Page 492: ...ure 129 1 Create a terminating virtual Ethernet VE interface on the PE agg to terminate MPLS L2VPN packets This interface is referred to as the VE L2VPN L2VE interface The functions and configurations of the interface are similar to those of the terminating interface Terminating int in Figure 129 2 Create an access VE interface on the PE agg to provide access to the backbone and configure the inte...

Page 493: ... MPLS L2VPN configuration see Configuring MPLS L2VPN and Configuring VPLS 2 Configure the MPLS L3VPN or IP backbone Configure PE 3 and PE 4 as PE devices in the MPLS L3VPN or IP backbone Configure CE 1 and CE 2 as CE devices in the MPLS L3VPN or IP backbone For more information about MPLS L3VPN configuration see Configuring MPLS L3VPN Configuring improved L2VPN access to L3VPN or IP backbone As sh...

Page 494: ...00000 kbps 6 Optional Restore the default settings for the interface default N A 7 Optional Bring up the interface undo shutdown By default the interface is up Configuring an L3VE interface Step Command Remarks 1 Enter system view system view N A 2 Create an L3VE interface and enter its view interface ve l3vpn interface number By default no L3VE interfaces exist You can create a maximum of 8192 L3...

Page 495: ...d on MPLS labels CE 1 and CE 2 belong to VPN 1 whose route target is 111 1 and RD is 200 1 CE 1 is connected to PE 1 through interface Serial 1 1 0 which uses PPP encapsulation CE 2 is connected to the MPLS L3VPN through interface GigabitEthernet 1 1 1 Perform the following configurations to allow communication between CE 1 and CE 2 Set up an LDP PW between PE 1 and PE agg so that CE 1 can access ...

Page 496: ...2 1 1 24 Configuration procedure 1 Configure IP addresses for interfaces as shown in Table 46 Details not shown 2 Create interfaces VE L2VPN 1 and VE L3VPN 1 on PE agg Create interface VE L2VPN 1 PEagg system view PEagg interface ve l2vpn 1 PEagg VE L2VPN1 quit Create interface VE L3VPN 1 PEagg interface ve l3vpn 1 PEagg VE L3VPN1 quit 3 Configure MPLS L2VPN a Configure OSPF on PE 1 P and PE agg a...

Page 497: ...LS LDP on PE 1 P and PE agg Configure PE 1 PE1 mpls lsr id 1 1 1 9 PE1 mpls ldp PE1 ldp lsp trigger all PE1 ldp quit PE1 interface pos 1 1 0 PE1 Pos1 1 0 mpls enable PE1 Pos1 1 0 mpls ldp enable PE1 Pos1 1 0 quit Configure the P device P mpls lsr id 2 2 2 9 P mpls ldp P ldp lsp trigger all P ldp quit P interface pos 1 1 0 P Pos1 1 0 mpls enable P Pos1 1 0 mpls ldp enable P Pos1 1 0 quit P interfac...

Page 498: ...erface of PE agg specify the default next hop as 100 1 1 2 PEagg interface ve l2vpn 1 PEagg VE L2VPN1 default nexthop ip 100 1 1 2 PEagg VE L2VPN1 quit On PE agg create a PW that supports interworking in the group and bind VE L2VPN 1 to the PW PEagg xconnect group 1 PEagg xcg 1 connection 1 PEagg xcg 1 1 ac interface ve l2vpn 1 PEagg xcg 1 1 interworking ipv4 PEagg xcg 1 1 peer 1 1 1 9 pw id 101 P...

Page 499: ...PN instance VPN1 and bind the VPN instance to the interface connected to the CE Configure PE agg PEagg ip vpn instance VPN1 PEagg vpn instance VPN1 route distinguisher 200 1 PEagg vpn instance VPN1 vpn target 111 1 both PEagg vpn instance VPN1 quit PEagg interface ve l3vpn 1 PEagg VE L3VPN1 ip binding vpn instance VPN1 PEagg VE L3VPN1 ip address 100 1 1 2 24 Configure PE 2 PE2 ip vpn instance VPN1...

Page 500: ... 1 1 as number 100 CE2 bgp address family ipv4 CE2 bgp ipv4 peer 100 2 1 1 enable CE2 bgp ipv4 import route direct CE2 bgp ipv4 quit CE2 bgp quit Configure PE 2 and specify CE 2 as the peer PE2 bgp 100 PE2 bgp ip vpn instance VPN1 PE2 bgp VPN1 peer 100 2 1 2 as number 65020 PE2 bgp VPN1 address family ipv4 PE2 bgp ipv4 VPN1 peer 100 2 1 2 enable PE2 bgp ipv4 VPN1 import route direct PE2 bgp ipv4 V...

Page 501: ... 2 56 data bytes press CTRL_C to break 56 bytes from 100 2 1 2 icmp_seq 0 ttl 128 time 1 073 ms 56 bytes from 100 2 1 2 icmp_seq 1 ttl 128 time 1 428 ms 56 bytes from 100 2 1 2 icmp_seq 2 ttl 128 time 19 367 ms 56 bytes from 100 2 1 2 icmp_seq 3 ttl 128 time 1 013 ms 56 bytes from 100 2 1 2 icmp_seq 4 ttl 128 time 0 684 ms Ping statistics for 100 2 1 2 5 packet s transmitted 5 packet s received 0 ...

Page 502: ...reate interface VE L3VPN 1 and configure an IP address for the interface PEagg interface ve l3vpn 1 PEagg VE L3VPN1 ip address 100 1 1 2 24 PEagg VE L3VPN1 quit 3 Configure MPLS L2VPN a Configure OSPF on PE 1 P and PE agg and advertise interface addresses Configure PE 1 PE1 system view PE1 ospf PE1 ospf 1 area 0 PE1 ospf 1 area 0 0 0 0 network 1 1 1 9 0 0 0 0 PE1 ospf 1 area 0 0 0 0 network 10 2 1...

Page 503: ...e pos 1 1 1 P Pos1 1 1 mpls enable P Pos1 1 1 mpls ldp enable P Pos1 1 1 quit Configure PE agg PEagg mpls lsr id 3 3 3 9 PEagg mpls ldp PEagg ldp lsp trigger all PEagg ldp quit PEagg interface pos 1 1 0 PEagg Pos1 1 0 mpls enable PEagg Pos1 1 0 mpls ldp enable PEagg Pos1 1 0 quit c Enable L2VPN on PE 1 and PE agg Configure PE 1 PE1 l2vpn enable Configure PE agg PEagg l2vpn enable d Create VSIs on ...

Page 504: ...E L2VPN1 xconnect vsi vpna 4 Configure OSPF process 2 to advertise routing information on the IP backbone Configure CE 1 CE1 ospf 2 CE1 ospf 2 area 0 CE1 ospf 2 area 0 0 0 0 network 100 1 1 0 0 0 0 255 CE1 ospf 2 area 0 0 0 0 quit CE1 ospf 2 quit Configure PE agg PEagg ospf 2 PEagg ospf 2 area 0 PEagg ospf 2 area 0 0 0 0 network 100 1 1 0 0 0 0 255 PEagg ospf 2 area 0 0 0 0 network 10 3 3 0 0 0 0 ...

Page 505: ...to verify their connectivity CE1 ping 100 2 1 2 Ping 100 2 1 2 100 2 1 2 56 data bytes press CTRL_C to break 56 bytes from 100 2 1 2 icmp_seq 0 ttl 128 time 1 073 ms 56 bytes from 100 2 1 2 icmp_seq 1 ttl 128 time 1 428 ms 56 bytes from 100 2 1 2 icmp_seq 2 ttl 128 time 19 367 ms 56 bytes from 100 2 1 2 icmp_seq 3 ttl 128 time 1 013 ms 56 bytes from 100 2 1 2 icmp_seq 4 ttl 128 time 0 684 ms Ping ...

Page 506: ...splays the path that an MPLS LSP tunnel or an MPLS TE tunnel travels from the ingress to the egress to locate errors on the tunnel MPLS tracert consecutively sends MPLS echo requests along the LSP tunnel with the TTL increasing from 1 to a specific value Each hop along the tunnel returns an MPLS echo reply to the ingress due to TTL timeout so the ingress can collect information about each hop alon...

Page 507: ...rt feature automatically traces an LSP tunnel at intervals It locates errors on the LSP tunnel verifies the consistency of the data plane and control plane and records the detected errors in system logs You can check the logs to monitor LSP connectivity If both BFD and periodic MPLS tracert are configured for an LSP and the periodic tracert feature detects a data plane and control plane inconsiste...

Page 508: ...al Yes Yes No Remote Yes No N A Follow these guidelines to configure BFD for an LSP tunnel To establish a static BFD session ensure that the local and remote discriminators configured locally are identical with the remote and local discriminators configured on the remote device respectively The source address of the BFD session is the MPLS LSR ID of the local device Before configuring BFD for the ...

Page 509: ...iodic MPLS tracert for LSPs Step Command Remarks 1 Enter system view system view N A 2 Enable BFD for MPLS mpls bfd enable By default BFD for MPLS is disabled 3 Enable periodic LSP tracert for an FEC mpls periodic tracert dest addr mask length a source ip exp exp value h ttl value m wait time rtos tos value t time out u retry attempt fec check By default periodic LSP tracert is disabled Configurin...

Page 510: ... on the remote device respectively The source address of the BFD session is the MPLS LSR ID of the local device Before you configure BFD for the LSP tunnel configure an MPLS LSR ID for the local device Make sure a route is available on the remote device to reach the MPLS LSR ID On a BFD session established in static mode the ingress node and egress node both operate in active mode On a BFD session...

Page 511: ...CCV packet by adding an MPLS router alert label before the PW label TTL expiry Identifies a VCCV packet by setting the TTL value of the PW label to 1 Connectivity Verification CV tools include the following types MPLS ping Uses MPLS ping to verify PW connectivity BFD Uses BFD to verify PW connectivity BFD packets use IP UDP encapsulation with IP UDP headers Raw BFD Uses BFD to verify PW connectivi...

Page 512: ... PW connectivity If you specify the raw bfd keyword in this command make sure you specify the VCCV CC type as control word 5 Specify the VCCV CC type vccv cc control word router alert ttl By default no VCCV CC type is specified 6 Return to system view quit N A 7 Enter cross connect group view xconnect group group name N A 8 Enter cross connect view connection connection name N A 9 Configure a PW s...

Page 513: ... VCCV CC type as control word 5 Specify the VCCV CC type vccv cc control word router alert ttl By default no VCCV CC type is specified 6 Return to system view quit N A 7 Enter VSI view vsi vsi name N A 8 Configure the VSI to establish static PWs and enter VSI static view pwsignaling static N A 9 Configure a VPLS PW specify the created PW class for it and enter VSI static PW view peer ip address pw...

Page 514: ...ord in this command make sure you specify the VCCV CC type as control word 5 Specify the VCCV CC type vccv cc control word router alert ttl By default no VCCV CC type is specified 6 Return to system view quit N A 7 Enter VSI view vsi vsi name N A 8 Configure the VSI to establish PWs using LDP and enter VSI LDP view pwsignaling ldp N A 9 Configure a VPLS PW specify the created PW class for it and e...

Page 515: ...nels display mpls bfd ipv4 ipv4 address mask length te tunnel tunnel number Display BFD information for PWs display l2vpn pw bfd peer peer ip pw id pw id BFD for LSP configuration example Network requirements Use LDP to establish an LSP from 1 1 1 9 32 to 3 3 3 9 32 and an LSP from 3 3 3 9 32 to 1 1 1 9 32 Use BFD to verify LSP connectivity Figure 133 Network diagram Configuration procedure 1 Conf...

Page 516: ...igabitEthernet1 1 1 mpls enable RouterA GigabitEthernet1 1 1 mpls ldp enable RouterA GigabitEthernet1 1 1 quit Configure Router B RouterB mpls lsr id 2 2 2 9 RouterB mpls ldp RouterB ldp quit RouterB interface gigabitethernet 1 1 1 RouterB GigabitEthernet1 1 1 mpls enable RouterB GigabitEthernet1 1 1 mpls ldp enable RouterB GigabitEthernet1 1 1 quit RouterB interface gigabitethernet 1 1 2 RouterB ...

Page 517: ...ocal Discr 513 Remote Discr 513 Source IP 1 1 1 9 Destination IP 3 3 3 9 Session State Up Session Role Active FEC Type LSP FEC Info Destination 3 3 3 9 Mask Length 32 NHLFE ID 1042 Local Discr 514 Remote Discr 514 Source IP 1 1 1 9 Destination IP 127 0 0 1 Session State Up Session Role Passive The output shows that two BFD sessions have been established between Router A and Router C One session ve...

Page 518: ...nd has one or more interfaces directly connected to a service provider network It does not support MPLS Provider edge device A PE device resides at the edge of a service provider network and is connected to one or more CEs All MPLS VPN services are processed on PEs Provider device A P device is a core device on a service provider network It is not directly connected to any CEs A P device has only ...

Page 519: ...ance contains the VPN membership and routing rules of associated sites VPN IPv4 address Each VPN independently manages its address space The address spaces of VPNs might overlap For example if both VPN 1 and VPN 2 use the addresses on subnet 10 110 10 0 24 address space overlapping occurs BGP cannot process overlapping VPN address spaces For example if both VPN 1 and VPN 2 use the subnet 10 110 10...

Page 520: ...PE can receive routes Like RDs route target attributes can be one of the following formats 16 bit AS number 32 bit user defined number For example 100 1 32 bit IPv4 address 16 bit user defined number For example 172 1 1 1 1 32 bit AS number 16 bit user defined number where the minimum value of the AS number is 65536 For example 65536 1 MCE overview The Multi VPN Instance CE MCE feature allows you ...

Page 521: ...nfiguration task list Tasks at a glance Configuring VPN instances Required Creating a VPN instance Required Associating a VPN instance with an interface Optional Configuring route related attributes for a VPN instance Configuring routing on an MCE Required Configuring routing between an MCE and a VPN site Required Configuring static routing between an MCE and a PE Configuring VPN instances VPN ins...

Page 522: ...gured for a VPN instance 6 Optional Configure an SNMP context for the VPN instance snmp context name context name By default no SNMP context is configured Associating a VPN instance with an interface After creating and configuring a VPN instance associate the VPN instance with the interface connected to the CE To associate a VPN instance with an interface Step Command Remarks 1 Enter system view s...

Page 523: ...ribute are accepted The specified routing policy must have been created For information about routing policies see Layer 3 IP Routing Configuration Guide 6 Apply an export routing policy export route policy route policy By default routes to be advertised are not filtered The specified routing policy must have been created For information about routing policies see Layer 3 IP Routing Configuration ...

Page 524: ...common static route 3 Optional Configure the default preference for static routes ip route static default preference default preference The default preference is 60 Configuring RIP between an MCE and a VPN site A RIP process belongs to the public network or a single VPN instance If you create a RIP process without binding it to a VPN instance the process belongs to the public network Binding RIP p...

Page 525: ...ed into OSPF 4 Create an OSPF area and enter OSPF area view area area id By default no OSPF areas exist 5 Enable OSPF on the interface attached to the specified network in the area network ip address wildcard mask By default an interface neither belongs to any area nor runs OSPF Configuring IS IS between an MCE and a VPN site An IS IS process belongs to the public network or a single VPN instance ...

Page 526: ...GP instance view bgp as number instance instance name By default BGP is not enabled 3 Enter BGP VPN instance view ip vpn instance vpn instance name Configuration commands in BGP VPN instance view are the same as those in BGP instance view For more information see Layer 3 IP Routing Configuration Guide 4 Configure an EBGP peer peer group name ipv4 address mask length as number as number By default ...

Page 527: ...ance on the MCE and redistribute the IGP routes of each VPN instance on the VPN site 1 Configure the MCE Step Command Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance name By default BGP is not enabled 3 Enter BGP VPN instance view ip vpn instance vpn instance name N A 4 Configure an IBGP peer peer group name ipv4 address mask length as number a...

Page 528: ...ed value route policy route policy name By default no routes are redistributed into BGP A VPN site must advertise VPN network addresses to the connected MCE Configuring routing between an MCE and a PE MCE PE routing configuration includes these tasks Binding the MCE PE interfaces to VPN instances Performing route configurations Redistributing VPN routes into the routing protocol running between th...

Page 529: ...iew system view N A 2 Create an OSPF process for a VPN instance and enter OSPF view ospf process id router id router id vpn instance vpn instance name N A 3 Disable routing loop detection vpn instance capability simple By default routing loop detection is enabled You must disable routing loop detection for a VPN OSPF process on the MCE Otherwise the MCE does not receive OSPF routes from the PE 4 R...

Page 530: ...interface isis enable process id By default no IS IS process is enabled on the interface Configuring EBGP between an MCE and a PE Step Command Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance name By default BGP is not enabled 3 Enter BGP VPN instance view ip vpn instance vpn instance name N A 4 Configure the PE as an EBGP peer peer group name i...

Page 531: ... any peer 7 Redistribute the VPN routes of the VPN site import route protocol process id all processes allow direct med med value route policy route policy name By default no routes are redistributed into BGP Displaying and maintaining MCE Execute display commands in any view Task Command Display VPN instance information display ip vpn instance instance name vpn instance name For commands that dis...

Page 532: ...get 10 1 MCE vpn instance vpn1 quit MCE ip vpn instance vpn2 MCE vpn instance vpn2 route distinguisher 20 1 MCE vpn instance vpn2 vpn target 20 1 MCE vpn instance vpn2 quit Bind interface GigabitEthernet 1 1 1 to VPN instance vpn1 and configure an IP address for the interface MCE interface gigabitethernet 1 1 1 MCE GigabitEthernet1 1 1 ip binding vpn instance vpn1 CE VPN 1 Site 2 CE VPN 2 Site 1 P...

Page 533: ...24 to the interface connected to MCE and 192 168 0 1 24 to the interface connected to VPN 1 Details not shown On VR 1 configure a default route with the next hop as 10 214 10 3 VR1 system view VR1 ip route static 0 0 0 0 0 0 0 0 10 214 10 3 On the MCE configure a static route to 192 168 0 0 24 specify the next hop as 10 214 10 2 and bind the static route to VPN instance vpn1 MCE ip route static vp...

Page 534: ... 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 192 168 10 0 24 RIP 100 1 10 214 20 2 GE1 1 2 224 0 0 0 4 Direct 0 0 0 0 0 0 NULL0 224 0 0 0 24 Direct 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 The output shows that the MCE has learned the private route of VPN 2 through RIP MCE...

Page 535: ...24 PE1 GigabitEthernet1 1 1 2 quit Configure the IP address of the interface Loopback 0 as 101 101 10 1 for the MCE and as 100 100 10 1 for PE 1 Specify the loopback interface address as the router ID for the MCE and PE 1 Details not shown Enable OSPF process 10 on the MCE and bind the process to VPN instance vpn1 MCE ospf 10 router id 101 101 10 1 vpn instance vpn1 Disable OSPF routing loop detec...

Page 536: ...ect 0 0 0 0 0 0 NULL0 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 Verify that PE 1 has learned the RIP route of VPN 2 through OSPF PE1 display ip routing table vpn instance vpn2 Destinations 13 Routes 13 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 30 1 1 0 24 Direct 0 0 30 1 1 2 GE1 1 1 2 30 1 1 0 32 Direct 0 0 30 1 1 2 GE1 1 1 2 30 1 1 2 32 Direct...

Page 537: ... IPv6 and the PE P interface of a PE runs IPv4 Figure 138 Network diagram for the IPv6 MPLS L3VPN model IPv6 MCE overview In IPv6 MPLS L3VPN networks IPv6 MCE advertises IPv6 routes between internal networks and PEs and forwards IPv6 packets The fundamentals of IPv6 MCE are the same as those of MCE For more information see MCE overview IPv6 MCE configuration task list Tasks at a glance Configuring...

Page 538: ...stance vpn instance name By default no VPN instances exist 3 Configure an RD for the VPN instance route distinguisher route distinguisher By default no RD is configured for a VPN instance 4 Optional Configure a description for the VPN instance description text By default no description is configured for a VPN instance The description should contain the VPN instance s related information such as it...

Page 539: ... view 3 Configure route targets vpn target vpn target 1 8 both export extcommunity import extcommunity By default no route targets are configured 4 Set the maximum number of active routes routing table limit number warn threshold simply alert By default the maximum number of active routes is 500100 Setting the maximum number of active routes for a VPN instance can prevent the PE from storing too m...

Page 540: ...work layer protocols on related interfaces to ensure IP connectivity Configuring routing between an MCE and a VPN site You can configure IPv6 static routing RIPng OSPFv3 IPv6 IS IS or EBGP between an MCE and a VPN site Configuring IPv6 static routing between an MCE and a VPN site An MCE can reach a VPN site through an IPv6 static route IPv6 static routing on a traditional CE is globally effective ...

Page 541: ... route protocol process id allow ibgp allow direct cost cost value route policy route policy name By default no routes are redistributed into RIPng 4 Return to system view quit N A 5 Enter interface view interface interface type interface number N A 6 Enable RIPng on the interface ripng process id enable By default RIPng is disabled Configuring OSPFv3 between an MCE and a VPN site An OSPFv3 proces...

Page 542: ... Remarks 1 Enter system view system view N A 2 Create an IPv6 IS IS process for a VPN instance and enter IS IS view isis process id vpn instance vpn instance name Perform this configuration on the MCE On a VPN site configure common IPv6 IS IS 3 Configure a network entity title for the IS IS process network entity net By default no NET is configured 4 Create the IS IS IPv6 unicast address family an...

Page 543: ...bgp as number instance instance name N A 3 Configure the MCE as an EBGP peer peer group name ipv6 address prefix length as number as number By default no BGP peers exist 4 Enter BGP IPv6 unicast address family view address family ipv6 unicast N A 5 Enable BGP to exchange IPv6 unicast routes with the specified peer peer group name ipv6 address prefix length enable By default BGP does not exchange I...

Page 544: ... the VPN site as a client of the RR the MCE 8 Redistribute remote site routes advertised by the PE into BGP import route protocol process id all processes allow direct med med value route policy route policy name By default no routes are redistributed into BGP 2 Configure a VPN site Step Command Remarks 1 Enter system view system view N A 2 Enter BGP instance view bgp as number instance instance n...

Page 545: ...g tag value description text By default no IPv6 static routes are configured 3 Optional Set the default preference for IPv6 static routes ipv6 route static default preference default preference The default value is 60 Configuring RIPng between an MCE and a PE Step Command Remarks 1 Enter system view system view N A 2 Create a RIPng process for an IPv6 VPN instance and enter RIPng view ripng proces...

Page 546: ... instance and enter IS IS view isis process id vpn instance vpn instance name N A 3 Configure a network entity title network entity net By default no NET is configured 4 Create the IS IS IPv6 unicast address family and enter its view address family ipv6 unicast By default the IS IS IPv6 unicast address family is not created 5 Redistribute VPN routes import route protocol process id allow ibgp allo...

Page 547: ...umber instance instance name By default BGP is not enabled 3 Enter BGP VPN instance view ip vpn instance vpn instance name N A 4 Configure the PE as an IBGP peer peer group name ipv6 address prefix length as number as number By default no BGP peers or peer groups exist 5 Enter BGP VPN IPv6 unicast address family view address family ipv6 unicast N A 6 Enable BGP to exchange IPv6 unicast routes with...

Page 548: ...E 1 On MCE configure VPN instances vpn1 and vpn2 and specify an RD and route targets for each VPN instance MCE system view MCE ip vpn instance vpn1 MCE vpn instance vpn1 route distinguisher 10 1 MCE vpn instance vpn1 vpn target 10 1 MCE vpn instance vpn1 quit MCE ip vpn instance vpn2 MCE vpn instance vpn2 route distinguisher 20 1 MCE vpn instance vpn2 vpn target 20 1 CE VPN 1 Site 2 CE VPN 2 Site ...

Page 549: ...figure routing between the MCE and VPN sites The MCE is connected to VPN 1 directly and no routing protocol is enabled in VPN 1 Therefore you can configure IPv6 static routes On VR 1 assign IPv6 address 2001 1 2 64 to the interface connected to the MCE and 2012 1 2 64 to the interface connected to VPN 1 Details not shown On VR 1 configure a default route with the next hop as 2001 1 1 VR1 system vi...

Page 550: ...xtHop Preference 0 Interface GE1 1 1 Cost 0 Destination 2001 1 1 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 2012 1 64 Protocol Static NextHop 2001 1 2 Preference 60 Interface GE1 1 1 Cost 0 Destination FE80 10 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 Destination FF00 8 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 MCE display ip...

Page 551: ...thernet1 1 3 1 ipv6 address 2001 2 3 64 MCE GigabitEthernet1 1 3 1 quit On the MCE bind subinterface GigabitEthernet 1 1 3 2 to the VPN instance vpn2 MCE interface gigabitethernet 1 1 3 2 MCE GigabitEthernet1 1 3 2 ip binding vpn instance vpn2 Configure the subinterface to terminate VLAN 20 MCE GigabitEthernet1 1 3 2 vlan type dot1q vid 20 Configure an IPv6 address for the subinterface MCE Gigabit...

Page 552: ...ea 0 0 0 0 MCE GigabitEthernet1 1 3 1 quit On PE 1 enable OSPFv3 process 10 and bind it to VPN instance vpn1 PE1 ospfv3 10 vpn instance vpn1 PE1 ospf 10 router id 100 100 10 1 PE1 ospf 10 quit Enable OSPFv3 on subinterface GigabitEthernet 1 1 1 1 PE1 interface gigabitethernet 1 1 1 1 PE1 GigabitEthernet1 1 1 1 ospfv3 10 area 0 0 0 0 PE1 GigabitEthernet1 1 1 1 quit Verifying the configuration Verif...

Page 553: ... Interface InLoop0 Cost 0 Destination 2002 2 64 Protocol Direct NextHop Preference 0 Interface GE1 1 1 2 Cost 0 Destination 2002 2 4 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 2012 64 Protocol O_ASE2 NextHop FE80 200 5EFF FE01 1C06 Preference 15 Interface GE1 1 1 2 Cost 10 Destination FE80 10 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 Destinati...

Page 554: ...the label information for other nodes The label information is prefix specific and manually configured It includes the incoming label outgoing label and next hop The label stack on the ingress node specifies all the other nodes that the forwarding path traverses Adjacency method Each node on the SRLSP has the label information for its adjacencies The label information is manually configured and in...

Page 555: ...E tunnel bind the created static SRLSP to the MPLS TE tunnel interface 6 On the ingress node of the MPLS TE tunnel configure static routing or PBR to direct traffic to the MPLS TE tunnel For information about configuring MPLS TE see Configuring MPLS TE For information about configuring MPLS see Configuring basic MPLS The following table lists the SRLSP specific tasks Tasks at a glance Remarks Requ...

Page 556: ...a local public IP address as the next hop address when configuring an adjacency path Configuring a static SRLSP Perform this task only on the ingress node of a static SRLSP To use a static SRLSP to forward MPLS TE traffic you must first perform the following operations 1 Create an MPLS TE tunnel interface on the ingress node 2 Bind the static SRLSP to the tunnel interface For information about con...

Page 557: ...splay mpls static sr lsp lsp lsp name adjacency adjacency path name Static SRLSP configuration examples Network requirements As shown in Figure 141 Router A Router B Router C Router D Router E and Router F run IS IS Establish an MPLS TE tunnel over a static SRLSP from Router A to Router D to transmit data between the IP networks The static SRLSP traverses three segments Router A Router B Router B ...

Page 558: ...9 32 GE1 1 3 40 1 1 1 24 GE1 1 1 30 1 1 1 24 Router D Loop0 4 4 4 9 32 GE1 1 2 20 1 1 2 24 GE1 1 1 100 1 2 1 24 GE1 1 3 50 1 1 1 24 GE1 1 2 30 1 1 2 24 Router E Loop0 5 5 5 9 32 Router F Loop0 6 6 6 9 32 GE1 1 1 200 1 1 1 24 GE1 1 1 200 1 2 1 24 GE1 1 2 40 1 1 2 24 GE1 1 2 50 1 1 2 24 Configuration procedure 1 Configure IP addresses and masks for interfaces Details not shown 2 Configure IS IS to a...

Page 559: ...B interface gigabitethernet 1 1 2 RouterB GigabitEthernet1 1 2 mpls enable RouterB GigabitEthernet1 1 2 quit RouterB interface gigabitethernet 1 1 3 RouterB GigabitEthernet1 1 3 mpls enable RouterB GigabitEthernet1 1 3 quit Configure Router C RouterC system view RouterC mpls lsr id 3 3 3 9 RouterC mpls te RouterC te quit RouterC interface gigabitethernet 1 1 1 RouterC GigabitEthernet1 1 1 mpls ena...

Page 560: ...cy adjacency 1 in label 30 nexthop 30 1 1 2 RouterC static sr mpls adjacency adjacency 2 in label 31 nexthop 50 1 1 2 RouterC static sr mpls adjacency adjacency 3 in label 32 nexthop 20 1 1 1 On Router D bind label 40 to next hop 30 1 1 1 RouterD static sr mpls adjacency adjacency 1 in label 40 nexthop 30 1 1 1 On Router E bind label 50 to next hop 40 1 1 1 RouterE static sr mpls adjacency adjacen...

Page 561: ... static routes to direct traffic to the MPLS TE tunnels Configure a static route on Router A to direct traffic destined for 100 1 2 0 24 to MPLS TE tunnel 0 RouterA ip route static 100 1 2 0 24 tunnel 0 preference 1 Configure a static route on Router E to direct traffic destined for 200 1 2 0 24 to MPLS TE tunnel 0 RouterE ip route static 200 1 2 0 24 tunnel 0 preference 1 Verifying the configurat...

Page 562: ...atic Static CRLSP Name Resv Style Tunnel mode Reverse LSP name Reverse LSP LSR ID Reverse LSP Tunnel ID Class Type Tunnel Bandwidth Reserved Bandwidth Setup Priority 0 Holding Priority 0 Affinity Attr Mask Explicit Path Backup Explicit Path Metric Type TE Record Route Record Label FRR Flag Backup Bandwidth Flag Backup Bandwidth Type Backup Bandwidth Route Pinning Retry Limit 3 Retry Interval 2 sec...

Page 563: ...553 StaticCR 20 GE1 1 2 RouterC display mpls lsp FEC Proto In Out Label Interface Out NHLFE StaticCR 30 GE1 1 1 StaticCR 40 GE1 1 3 ...

Page 564: ...ntax choices separated by vertical bars from which you select one choice multiple choices or none 1 n The argument or keyword and argument combination before the ampersand sign can be entered 1 to n times A line that starts with a pound sign is comments GUI conventions Convention Description Boldface Window names button names field names and menu items are in Boldface For example the New User wind...

Page 565: ...epresents a wireless terminator unit Represents a wireless terminator Represents a mesh access point Represents omnidirectional signals Represents directional signals Represents a security product such as a firewall UTM multiservice security gateway or load balancing device Represents a security module such as a firewall load balancing NetStream SSL VPN IPS or ACG module Examples provided in this ...

Page 566: ...s provide a mechanism for accessing software updates through the product interface Review your product documentation to identify the recommended software update method To download product updates go to either of the following Hewlett Packard Enterprise Support Center Get connected with updates page www hpe com support e updates Software Depot website www hpe com support softwaredepot To view and u...

Page 567: ...r self repair CSR programs allow you to repair your product If a CSR part needs to be replaced it will be shipped directly to you so that you can install it at your convenience Some parts do not qualify for CSR Your Hewlett Packard Enterprise authorized service provider will determine whether a repair can be accomplished by CSR For more information about CSR contact your local service provider or ...

Page 568: ...number edition and publication date located on the front cover of the document For online help content include the product name product version help edition and publication date located on the legal notices page ...

Page 569: ... TE traffic forwarding automatic route advertisement IGP shortcut 75 MPLS TE tunnel traffic direction automatic route advertisement 98 VPLS BGP label block information advertisement 448 VPLS BGP PE information advertisement 450 affinity MPLS TE tunnel constraints 88 aging VPLS MAC address aging 440 algorithm MPLS TE CSPF path calculation 72 applying IPv6 MPLS L3VPN PBR 337 MPLS L3VPN PBR 230 archi...

Page 570: ...ributes 529 IPv6 MPLS L3VPN VPN instance route related attributes 326 MCE VPN instance route related attributes 512 MPLS L3VPN BGP export target attribute 196 510 MPLS L3VPN BGP import target attribute 196 510 MPLS L3VPN VPN instance route related attributes 217 MPLS TE attribute advertisement 72 MPLS TE link attribute 86 MPLS TE link attribute advertisement IGP TE extension 87 MPLS TE link attrib...

Page 571: ... s carrier configuration same AS 367 IPv6 MPLS L3VPN configuration 322 324 341 341 IPv6 MPLS L3VPN inter AS option A configuration 351 IPv6 MPLS L3VPN inter AS option B 356 IPv6 MPLS L3VPN inter AS option C configuration 361 IPv6 MPLS L3VPN loopback interface address redistribution 339 IPv6 MPLS L3VPN multirole host configuration 375 IPv6 MPLS L3VPN OSPFv3 sham link configuration 377 IPv6 MPLS L3V...

Page 572: ...ating MPLS TE backup CRLSP establishment PCE path calculation 96 MPLS TE CRLSP establishment PCE path calculation 73 95 MPLS TE CSPF path calculation 72 MPLS TE tunnel CRLSP configuration PCE calculation 95 carrier s carrier IPv6 MPLS L3VPN configuration same AS 367 MPLS L3VPN 204 MPLS L3VPN configuration different ASs 279 MPLS L3VPN configuration same AS 272 MPLS L3VPN Level 1 carrier 204 MPLS L3...

Page 573: ... AS number substitution SoO attribute 339 385 IPv6 MPLS L3VPN BGP VPNv6 route control 332 IPv6 MPLS L3VPN carrier s carrier same AS 367 IPv6 MPLS L3VPN inter AS IPv6 VPN 334 IPv6 MPLS L3VPN inter AS IPv6 VPN option A 334 IPv6 MPLS L3VPN inter AS IPv6 VPN option B 335 IPv6 MPLS L3VPN inter AS IPv6 VPN option C 336 IPv6 MPLS L3VPN inter AS IPv6 VPN option C ASBR 337 IPv6 MPLS L3VPN inter AS IPv6 VPN...

Page 574: ...PPP encapsulation 399 MPLS L2VPN attachment circuit AC Layer 3 interface VLAN encapsulation 398 MPLS L2VPN BGP label block information advertisement 401 MPLS L2VPN BGP PW 401 422 MPLS L2VPN BGP PW remote CCC connection 403 MPLS L2VPN cross connect configuration 399 MPLS L2VPN cross connect interworking 406 MPLS L2VPN cross connect attachment circuit AC binding 404 MPLS L2VPN cross connect Layer 3 ...

Page 575: ...CRLSP backup 100 136 MPLS TE CRLSP flooding interval 92 MPLS TE CRLSP flooding thresholds 92 MPLS TE CRLSP path selection metric type 90 MPLS TE CRLSP route pinning 91 MPLS TE CRLSP tunnel reoptimization 91 MPLS TE DS TE 84 MPLS TE FRR 101 MPLS TE FRR bypass tunnel on PLR 101 MPLS TE FRR manual bypass tunnel 140 MPLS TE FRR node fault detection 105 MPLS TE FRR optimal bypass tunnel selection inter...

Page 576: ...LS 2 controlling LDP label distribution control mode 31 MPLS L2VPN control word 394 MPLS TE CRLSP path selection 90 MPLS TE tunnel setup 92 creating IPv6 MCE VPN instance 528 IPv6 MPLS L3VPN OSPF sham link 339 IPv6 MPLS L3VPN VPN instance 325 MCE VPN instance 512 MPLS L2VPN BGP PW 402 MPLS L3VPN OSPF sham link 233 MPLS L3VPN VPN instance 216 VPLS BGP PW 449 VPLS LDP PW BGP auto discovery 451 CRLSP...

Page 577: ...DP FRR configuration 52 IPv4 LDP label acceptance control 43 IPv4 LDP label advertisement control 47 IPv4 LDP LSP configuration 39 IPv6 LDP configuration 55 IPv6 LDP label acceptance control 60 IPv6 LDP label advertisement control 64 IPv6 LDP LSP configuration 55 IPv6 MCE configuration 527 527 538 IPv6 MCE VPN instance 528 IPv6 MCE VPN instance route related attributes 529 IPv6 MCE VPN instance in...

Page 578: ...S L3VPN nested VPN configuration 287 MPLS L3VPN OSPF sham link configuration 305 MPLS L3VPN PE CE EBGP 220 MPLS L3VPN PE CE IBGP 222 MPLS L3VPN PE CE IS IS 220 MPLS L3VPN PE CE OSPF 219 MPLS L3VPN PE CE RIP 219 MPLS L3VPN PE CE routing 218 MPLS L3VPN PE CE static routing 218 MPLS L3VPN PE PE routing 223 MPLS L3VPN GRE tunnel configuration 245 MPLS TE auto FRR configuration 145 MPLS TE bidirectiona...

Page 579: ...AS VPN option C 200 202 MPLS L3VPN PE CE EBGP 220 egress MPLS egress LSR 2 MPLS egress node label type advertisement 7 MPLS L3VPN egress PE VPN label processing mode 234 enabling L2VPN PW SNMP notification 407 LDP globally 26 LDP on interface 26 LDP SNMP notification 38 MPLS 6 MPLS forwarding split horizon 10 MPLS forwarding statistics 9 MPLS forwarding statistics FTN 9 MPLS forwarding statistics ...

Page 580: ...exclusive tunnel configuration 190 IPv6 MPLS L3VPN packet forwarding 322 IPv6 MPLS L3VPN PBR application 337 IPv6 MPLS L3VPN PBR configuration 337 LDP GR 21 LDP NSR 22 MPLS FEC 1 MPLS FEC label format 1 MPLS forwarding plane 2 MPLS forwarding split horizon 10 MPLS forwarding statistics 9 MPLS forwarding statistics enable FTN 9 MPLS forwarding statistics enable label 10 MPLS L3VPN packet forwarding...

Page 581: ...configuration 190 preferred tunnel selection order configuration 191 tunnel policy configuration 188 190 tunnel selection order configuration 191 H HDLC MPLS L2VPN attachment circuit AC Layer 3 interface HDLC encapsulation 399 MPLS L2VPN PPP HDLC over MPLS 393 hello LDP session protection 34 RSVP GR 173 RSVP GR configuration 178 RSVP hello extension 175 RSVP TE hello message 171 hierarchical VPLS ...

Page 582: ...nter AS tunnel establishment RSVP TE 118 inter AS VPN IPv6 MPLS L3VPN configuration 334 IPv6 MPLS L3VPN option A 334 IPv6 MPLS L3VPN option A configuration 351 IPv6 MPLS L3VPN option B 335 356 IPv6 MPLS L3VPN option C 336 IPv6 MPLS L3VPN option C configuration 361 MPLS L3VPN configuration 225 MPLS L3VPN option A 200 200 225 MPLS L3VPN option A configuration 255 MPLS L3VPN option B 200 201 225 MPLS...

Page 583: ...route backup IPv4 route 214 MPLS L3VPN inter AS VPN option B 200 201 MPLS L3VPN inter AS VPN option C 200 202 MPLS L3VPN loopback address redistribution 233 MPLS L3VPN VPN IPv4 address 195 509 MPLS OAM BFD for LSP 505 MPLS OAM configuration 496 IPv6 LDP configuration 55 LDP LSP configuration 55 MPLS L3VPN See IPv6 MPLS L3VPN MPLS L3VPN loopback interface 338 MPLS L3VPN loopback interface address r...

Page 584: ...e 324 VPN instance creation 325 VPN instance route related attributes 326 VPN instance interface association 325 IS IS LDP IS IS synchronization 37 MCE PE IS IS 519 MCE VPN site IS IS 515 MPLS L3VPN PE CE IS IS configuration 220 MPLS TE attribute advertisement 72 MPLS TE link attribute advertisement IS IS TE 88 ISP MPLS L3VPN inter AS VPN 200 MPLS L3VPN inter AS VPN option A 200 MPLS L3VPN nested ...

Page 585: ...nfiguration 17 25 display 38 enable 26 FRR 23 FRR configuration 37 GR 21 GR configuration 35 GR helper 21 GR restarter 21 hello parameters 26 IGP synchronization 23 35 IPv4 configuration 39 IPv4 FRR configuration 52 IPv4 label acceptance control 43 IPv4 label advertisement control 47 IPv4 LSP configuration 39 IPv6 configuration 55 IPv6 label acceptance control 60 IPv6 label advertisement control 6...

Page 586: ... local connection IP interworking 409 MPLS L2VPN network connection 390 loop LDP loop detection max hop count 33 LDP loop detection path vector 33 MPLS L3VPN routing loop avoidance 211 MPLS TE loop detection 93 VPLS PW full mesh forwarding 442 VPLS split horizon forwarding 442 loopback IPv6 MPLS L3VPN address redistribution 339 IPv6 MPLS L3VPN loopback interface 338 MPLS L3VPN loopback address red...

Page 587: ... TTL propagation 8 MPLS TTL expired message send 9 M MAC addressing VPLS MAC address aging 440 VPLS MAC address learning 440 454 VPLS MAC address withdrawal 440 maintaining IPv6 MPLS L3VPN 340 L2VPN access IP backbone L3VPN 485 MCE 521 MPLS 11 MPLS L2VPN 407 MPLS L3VPN 238 MPLS TE 107 RSVP 178 VPLS 455 make before break MPLS TE 75 MAM MPLS TE DS TE bandwidth constraint model 77 manual MPLS E FRR b...

Page 588: ...k protection 77 MP IBGP MPLS L3VPN hub spoke network configuration 249 MPLS basic concepts 1 basics configuration 1 5 control plane 2 display 11 egress node label type advertisement 7 enable 6 exclusive tunnel configuration 190 FEC 1 FEC label format 1 forwarding plane 2 forwarding process 4 forwarding split horizon enable 10 forwarding statistics enable 9 forwarding statistics enable FTN 9 forwar...

Page 589: ...display 189 tunnel policy configuration 188 188 190 tunnel selection order configuration 191 MPLS L2VPN attachment circuit AC configuration 398 attachment circuit AC Layer 3 interface 398 basic concepts 389 BGP label block information advertisement 401 BGP PW configuration 401 422 BGP PW creation 402 BGP PW remote CCC connection 403 configuration 389 397 408 control word 394 cross connect configur...

Page 590: ...guration 260 inter AS option C configuration 265 inter AS VPN 200 inter AS VPN configuration 225 inter AS VPN option A 225 inter AS VPN option B 225 inter AS VPN option C 226 inter AS VPN option C ASBR 228 inter AS VPN option C PE 227 IPv6 See IPv6 MPLS L3VPN IPv6 MCE configuration 527 527 538 loopback address redistribution 233 loopback interface configuration 233 LPU load sharing mode 237 mainta...

Page 591: ...role host configuration 375 IPv6 MPLS L3VPN OSPFv3 sham link configuration 377 IPv6 MPLS L3VPN GRE tunnel configuration 348 MCE configuration 521 MPLS L3VPN basic configuration 239 MPLS L3VPN BGP AS number substitution configuration 309 MPLS L3VPN carrier s carrier configuration different ASs 279 MPLS L3VPN carrier s carrier configuration same AS 272 MPLS L3VPN configuration 194 215 239 MPLS L3VPN...

Page 592: ...VPN configuration 287 MPLS L3VPN OSPF sham link configuration 305 MPLS L3VPN GRE tunnel configuration 245 MPLS OAM BFD for MPLS TE tunnel 500 MPLS OAM for MPLS TE tunnel 499 MPLS OAM ping for MPLS TE tunnel 499 MPLS OAM tracert for MPLS TE tunnel 500 PCE configuration 95 PCE discovery 95 PCEP session parameter configuration 97 preferred tunnel configuration 190 preferred tunnel selection order con...

Page 593: ... IPv6 MCE VPN instance interface association 528 IPv6 MCE PE EBGP 536 IPv6 MCE PE IBGP 537 IPv6 MCE PE IPv6 IS IS 536 IPv6 MCE PE IPv6 static routing 535 IPv6 MCE PE OSPFv3 535 IPv6 MCE PE RIPng 535 IPv6 MCE PE routing 535 IPv6 MCE VPN site EBGP 532 IPv6 MCE VPN site IBGP 533 IPv6 MCE VPN site IPv6 IS IS 532 IPv6 MCE VPN site OSPFv3 531 IPv6 MCE VPN site RIPng 531 IPv6 MCE VPN site static routing ...

Page 594: ...NSR 22 LDP NSR configuration 35 LDP operation 18 LDP over MPLS TE 24 LDP packet DSCP value 37 LDP session parameters 27 LDP session protection 34 LDP session reset 38 LDP SNMP notification 38 LDP terminology 17 LDP IGP synchronization 23 35 LDP OSPF synchronization 35 MCE routing configuration 513 MCE VPN instance 511 MCE VPN instance route related attributes 512 MCE VPN instance interface associa...

Page 595: ...l processing mode 234 MPLS L3VPN FRR 213 MPLS L3VPN FRR configuration 235 MPLS L3VPN FRR configuration IPv4 route VPNv4 route backup 317 MPLS L3VPN FRR configuration VPNv4 route IPv4 route backup 319 MPLS L3VPN FRR configuration VPNv4 route route backup 315 MPLS L3VPN HoVPN configuration 231 297 MPLS L3VPN HoVPN network 208 MPLS L3VPN hub spoke network configuration 249 MPLS L3VPN inter AS option ...

Page 596: ...LS TE DS TE 78 84 MPLS TE FRR 77 101 MPLS TE FRR bypass tunnel on PLR 101 MPLS TE FRR manual bypass tunnel 140 MPLS TE FRR node fault detection 105 MPLS TE FRR optimal bypass tunnel selection interval 106 MPLS TE IETF DS TE configuration 151 MPLS TE inter AS tunnel establishment RSVP TE 118 MPLS TE make before break 75 MPLS TE route pinning 76 MPLS TE SNMP notification 106 MPLS TE traffic forwardi...

Page 597: ...configuration 171 174 179 RSVP GR configuration 185 RSVP TE tunnel establishment 179 static CRLSP configuration 164 165 static SR over MPLS configuration 544 545 static SRLSP configuration 547 nonstop routing NSR LDP NSR 22 LDP NSR configuration 35 notifying L2VPN PW SNMP notification 407 LDP notification message 17 LDP SNMP notification 38 MPLS L3VPN SNMP notification 238 MPLS SNMP notifications ...

Page 598: ... value 177 static SR over MPLS configuration 544 545 parameter LDP keepalive 27 LDP link hello 26 LDP session 27 LDP targeted hello 26 MPLS TE PCEP session 97 path LDP loop detection path vector 33 MPLS TE CRLSP establishment PCE path calculation 73 MPLS TE CRLSP path selection 90 MPLS TE CSPF calculation 72 MPLS TE route pinning 76 MPLS TE tunnel automatic bandwidth adjustment 76 MPLS TE tunnel l...

Page 599: ...RIP 519 MCE PE routing configuration 518 MCE PE static routing 518 MPLS L2VPN attachment circuit AC configuration 398 MPLS L2VPN attachment circuit AC Layer 3 interface 398 MPLS L2VPN provider edge device PE 389 MPLS L3VPN architecture 194 508 MPLS L3VPN egress PE VPN label processing mode 234 MPLS L3VPN HoVPN configuration 231 MPLS L3VPN inter AS VPN option C ASBR 228 MPLS L3VPN inter AS VPN opti...

Page 600: ...LDP label advertisement control 47 configuring IPv4 LDP LSP 39 configuring IPv6 LDP label acceptance control 60 configuring IPv6 LDP label advertisement control 64 configuring IPv6 LDP LSP 55 configuring IPv6 MCE 527 538 configuring IPv6 MCE routing 530 configuring IPv6 MCE VPN instance 528 configuring IPv6 MCE VPN instance route related attributes 529 configuring IPv6 MCE PE EBGP 536 configuring ...

Page 601: ...DP IPv4 session parameter Extended Discovery 28 configuring LDP IPv6 session parameter Extended Discovery 28 configuring LDP IS IS synchronization 37 configuring LDP label acceptance policy 32 configuring LDP label advertisement policy 31 configuring LDP label distribution control mode 31 configuring LDP loop detection 33 configuring LDP LSP generation policy 30 configuring LDP MD5 authentication ...

Page 602: ...me AS 272 configuring MPLS L3VPN FRR 235 configuring MPLS L3VPN FRR IPv4 route VPNv4 route backup 317 configuring MPLS L3VPN FRR VPNv4 route IPv4 route backup 319 configuring MPLS L3VPN FRR VPNv4 route route backup 315 configuring MPLS L3VPN HoVPN 231 297 configuring MPLS L3VPN hub spoke network 249 configuring MPLS L3VPN inter AS option A 255 configuring MPLS L3VPN inter AS option B 260 configuri...

Page 603: ...configuring MPLS TE PCEP session parameters 97 configuring MPLS TE RSVP TE RSVP resource reservation style 94 configuring MPLS TE stateful PCE on PCC 96 configuring MPLS TE traffic forwarding 97 configuring MPLS TE tunnel dynamic CRLSP 86 configuring MPLS TE tunnel static CRLSP 85 configuring MPLS TE tunnel affinity attribute 88 configuring MPLS TE tunnel constraints 88 configuring MPLS TE tunnel ...

Page 604: ...ng MPLS OAM 505 displaying MPLS TE 107 displaying RSVP 178 displaying static CRLSP 165 displaying static LSP 13 displaying static SRLSP 547 displaying tunnel information 189 displaying VPLS 455 enabling L2VPN PW SNMP notification 407 enabling LDP globally 26 enabling LDP on interface 26 enabling LDP SNMP notification 38 enabling MPLS 6 enabling MPLS forwarding split horizon 10 enabling MPLS forwar...

Page 605: ...S L2VPN BGP PW 401 MPLS L2VPN BGP PW configuration 422 MPLS L2VPN BGP PW remote CCC connection 403 MPLS L2VPN control word 394 MPLS L2VPN data encapsulation type 392 MPLS L2VPN inter domain multi segment PW 396 MPLS L2VPN intra domain multi segment PW 396 MPLS L2VPN LDP PW 401 MPLS L2VPN LDP PW configuration 414 MPLS L2VPN LDP PW IP interworking 418 MPLS L2VPN LDP PW redundancy 406 MPLS L2VPN mult...

Page 606: ... message RSVP TE 171 ResvErr message RSVP TE 171 ResvTear message RSVP TE 171 RIP MCE PE RIP 519 MCE VPN site RIP 514 MPLS L3VPN PE CE RIP configuration 219 RIPng IPv6 MCE PE RIPng 535 IPv6 MCE VPN site RIPng 531 IPv6 MPLS L3VPN PE CE RIPng 327 route IPv6 MCE VPN instance route related attributes 529 IPv6 MPLS L3VPN BGP VPNv6 route control 332 IPv6 MPLS L3VPN inter AS IPv6 VPN configuration 334 IP...

Page 607: ... sham link configuration 377 IPv6 MPLS L3VPN packet forwarding 322 IPv6 MPLS L3VPN PE CE EBGP 330 IPv6 MPLS L3VPN PE CE IBGP 331 IPv6 MPLS L3VPN PE CE IPv6 IS IS 329 IPv6 MPLS L3VPN PE CE OSPFv3 327 IPv6 MPLS L3VPN PE CE RIPng 327 IPv6 MPLS L3VPN PE CE routing 327 IPv6 MPLS L3VPN PE CE static routing 327 IPv6 MPLS L3VPN PE PE routing 332 IPv6 MPLS L3VPN routing information advertisement 323 IPv6 M...

Page 608: ...ass tunnel 140 MPLS TE IETF DS TE configuration 151 MPLS TE inter AS tunnel establishment RSVP TE 118 MPLS TE make before break 75 MPLS TE route pinning 76 MPLS TE traffic forwarding 74 97 MPLS TE tunnel establishment RSVP TE 112 MPLS TE tunnel establishment static CRLSP 108 MPLS TE tunnel traffic direction automatic route advertisement 98 MPLS TE tunnel traffic direction PBR 98 MPLS TE tunnel tra...

Page 609: ...arameters 27 LDP session reset 38 MPLS OAM BFD mode dynamic 496 MPLS OAM BFD mode static 496 MPLS TE PCEP session parameters 97 RSVP TE SESSION_ATTRIBUTE object 171 setting LDP Link Hello timer 27 LDP session reset 38 LDP Targeted Hello timer for peer 27 MPLS MTU 6 MPLS TE tunnel holding priority 89 MPLS TE tunnel setup priority 89 MPLS TE tunnel setup retry 93 RSVP packet DSCP value 177 setting u...

Page 610: ...2 13 configuration restrictions 14 display 13 static SRLSP configuration 547 statistics MPLS forwarding statistics 9 MPLS forwarding statistics enable FTN 9 MPLS forwarding statistics enable label 10 strict explicit path MPLS TE configuration 89 substituting IPv6 MPLS L3VPN BGP AS number substitution configuration 381 IPv6 MPLS L3VPN BGP AS number substitution SoO attribute configuration 385 IPv6 ...

Page 611: ...sive tunnel configuration 190 IPv6 MPLS L3VPN GRE tunnel configuration 348 MPLS L2VPN public tunnel 389 MPLS L3VPN GRE tunnel configuration 245 MPLS OAM BFD for LSP 505 MPLS OAM BFD for MPLS TE tunnel 500 MPLS OAM configuration 496 MPLS OAM for LSP tunnel configuration 497 MPLS OAM for MPLS TE tunnel 499 MPLS OAM ping for MPLS TE tunnel 499 MPLS TE auto FRR configuration 145 MPLS TE bidirectional ...

Page 612: ...iguration 422 MPLS L2VPN LDP PW configuration 414 MPLS L2VPN mode 392 MPLS L2VPN PW LDP PW IP interworking 418 VPLS VLAN interface 445 VPLS AC configuration 445 architecture 439 BGP label block information advertisement 448 BGP PW configuration 448 462 BGP PW creation 449 BGP VPLS PE information advertisement 450 broadcast traffic flooding 441 broadcast traffic forwarding 441 configuration 439 444...

Page 613: ... LDP PWs 453 UPE dual homing configuration redundant static PWs 453 VSI configuration 446 VSI AC binding 452 VSI Layer 3 interface binding 452 VPN exclusive tunnel configuration 190 hierarchy of VPN See HoVPN IPv6 MPLS L3VPN See IPv6 MPLS L3VPN Layer 2 MPLS VPN See MPLS L2VPN MPLS L3VPN See MPLS L3VPN MPLS L3VPN multirole host 207 MPLS L3VPN VPN IPv4 address 195 509 preferred tunnel configuration ...