MPLS Training

undefined
undefined
undefined
undefined
undefined
undefined
undefined
MPLS Training
LSP (inet.3)
RSVP
Message
Path
request label
Resv
send label
PathErr/ResvErr
PathTear/ResvTear
ERO
for strict path
commands
show rsvp interface
show rsvp neighbors
show mpls lsp [ detail ]
show rsvp sessions
show route table inet.3 [ extensive]
LDP
Route Preference
RSVP 7
LDP 9
MPLS Label
(mpls.0)
32 bits
Label 20 bits = 1M labels
EXP = 3 bits, S = 1 bits
TTL = 8 bits, copy from IP TTL
0-15 reserved
>16 VPN label
push/swap/pop
LSR
Ingress/Egress/Transit/Penultimate
commands
show route table mpls.0
show route forwarding family mpls
Control Plane (BGP)
bgp.l3vpn.0
L3VPN
bgp.l2vpn.0
L2VPN/VPLS
show route adv bgp x.x.x.x (to other PE)
show route rec bgp x.x.x.x (from other PE)
show route table bgp.l3vpn/bgp.l2vpn (from all PEs)
Routing
(inet.0)
IGP
Static
Dynamic
RIP
OSPF
Area 0
ISIS
NET 49.000x...
from loopback IP
L1/L2
ref-bandwidth
default metric=10 all links
wide-metric
default narrow-matric 0-63
commands
show isis interface
show isis adj
show isis database
show isis route
show route protocol isis
BGP
iBGP
peer loopback, TTL=64
Need full mesh -or-
use Route Reflector
iBGP -> iBGP
iBGP -> eBGP
change next-hop
eBGP
peer interface, TTL = 1
eBGP -> eBGP
eBGP -> iBGP
not change next-hop
Route Selection
1. Local-pref (high)
2. AS-Path (short)
3. Origin
4. MED (low)
....
Control Traffic
out: use local-pref
in: use AS-Path or MED
commands
show bgp summary
show route rec bgp x.x.x.x
show route adv bgp x.x.x.x
But no BGP in inet.0 for MPLS VPN
because use inet-vpn unicast
Route Preference
Static 0
OSPF int 10
ISIS L1 int 15
ISIS L2 int 18
OSPF ext 150
ISIS L1 ext 160
ISIS L2 ext 165
BGP 170
Misc.
VRRP
upto 255 groups per vlan
default priority = 100
accept-data (allow icmp to vip)
Bridge-domain/IRB
change router ro switch
Firewall Filter
no from = match all
no then = discard
reject: send icmp unreachable
discard: silently
filter input (1 filter)
filter input-list (>1 filter)
Services
RD / RT
RD
Type 0 (2 bytes:4 bytes) 65001:1000
Type 1 (4 bytes:2 bytes) 1.1.1.1:1000
use to differentiate routes
1 VPN = 1 RD
RT
1 of BGP communities
same format with RD 65001:1000
use for route selection
1 VPN ≥ 1 RT
L3VPN
RD+IPv4
show route table xxx.inet.0
RT
vrf-target target:65001:100
vrf-import / vrf-export
Route Policy
policy-options policy-statement
from
protocol bgp/ospf/rip/etc.
route-filter
then
terminate: accept/reject
flow: next term/next policy
modify: local-pref/metric/community/etc.
CE → xxx.inet.0
(import/export)
under protocols/group/neighbor
BGP/OSPF/RIP/etc.
show route rec bgp/rip x.x.x.x(CE)
rcv routes-->[import policy]-->xxx.inet.0
show route adv bgp/rip x.x.x.x(CE)
xxx.inet.0-->[export policy]-->adv routes
xxx.inet.0 → MPLS
(vrf-import / vrf-export)
show route rec bgp x.x.x.x
bgp.l3vpn.0 -->[vrf-import]-->xxx.inet.0
show route adv bgp x.x.x.x
xxx.inet.0-->[vrf-export]-->bgp.l3vpn.0
2 PE same routes
vrf-export + local-pref
1 PE but 2 CE
export/import under protocols/neighbor
L2VPN
Point-to-Point
Just forward
Pseudowire
Not learn MAC
RD+Site ID
interface xx unit xx { encap vlan-ccc; family ccc; }
show l2vpn connection -or-
show route forw family mpls (to see label)
Require same encap
ethernet
ethernet-vlan
Different VLAN
(config at interface)
input-vlan-map
output-vlan-map
VPLS
Multipoint
Learn MAC
RD+Site ID
interface xx unit xx { encap vlan-vpls; family vpls; }
show vpls connection
No encap for VPLS
Different VLAN
(config under routing-instance)
vlan-id xxx (normalize vlan)
vlan-id none (remove vlan tag)
MAC Table
show vpls mac-table (to see local port + lsi)
show route forw family vpls (to see lsi --> label)
2 standards
Junos support both
BGP
L2VPN
draft-kompella
VPLS
rfc 4761
LDP
L2Circuit
draft-martini, rfc 4906
VPLS
rfc 4762
need full-mesh LDP peers,
scalability and configuration issues
Forwarding Data
Receive routes from many PE, which one is the best?
(from route pref, local-pref, as-path, etc.)
I know best route & next-hop, then I know LSP
I know LSP and I know Label, but this is TOP label
How about VPN Label?
VPN label send via BGP between PE
Finally, I got 2 labels, LSP label & VPN label
LSP label = PE & P
VPN label = only PE
Concept
ISIS
all routers (P & PE)
inet.0
BGP
PE to PE
full-mesh or route reflector
peer with loopback
RSVP
PE to PE
also full-mesh
to 1 PE = 1 LSP
1 LSP > 1 paths
Primary
Strict
Secondary
Strict
Loose
inet.3
PE-PE
Interface
family iso
family mpls
BGP
family inet-vpn unicast
bgp.l3vpn.0
family l2vpn signaling
bgp.l2vpn.0
Control Plane
exchange route with BGP
Data Plane
forward packet with MPLS label
mpls.0
21