Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Session Goals
Objectives
Understand history and business drivers for MPLS
Learn about MPLS customer and market segments
Understand the problems MPLS is addressing
Understand the major MPLS technology components
Understand typical MPLS applications
Understand benefits of deploying MPLS
Learn about MPLS futures; where MPLS is going
Agenda
Introduction
MPLS Technology Basics
MPLS Layer-3 VPNs
MPLS Layer-2 VPNs
Summary
Introduction
What Is MPLS?
Multi-Protocol: The ability to carry any
Multi payload
(Planned)
First Large Scale
First L2VPN First Segment
L3VPNs L2VPN
Deployments Routing
Deployed Deployments
Deployments
1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015
MPLS Technology Basics
Topics
Basics of MPLS Signaling and Forwarding
MPLS reference architecture
Service (Clients) Management
MPLS Labels
Layer-3 VPNs Layer-2 VPNs
MPLS signaling and forwarding
operations
MPLS OAM
Transport
MPLS Traffic Engineering
IP/MPLS (LDP/RSVP-TE/BGP/OSPF/IS-IS)
MPLS OAM
MPLS Forwarding
MPLS Reference Architecture
Different Type of Nodes in a MPLS Network
P (Provider) router
Label switching router (LSR) MPLS Domain
Most providers have defined 35 service Layer-2 Header MPLS Header Layer 3 Header
classes (TC values)
Different DSCP <-> TC mapping schemes
possible
Uniform mode, pipe mode, and short pipemode
Basic MPLS Forwarding Operations
How Labels Are Being Used to Establish End-to-end Connectivity
Label imposition (Push) Label Imposition Label Swap Label Swap Label Disposition
By ingress PE router; classify and label (Push) (PoP)
packets
Based on Forwarding Equivalence Class
(FEC)
P P
CE PE PE CE
Label swapping L1
L2 L3
simultaneously
Initiated by head-end node
They work differently, they solve towards tail-end node
By each node independently
different problems Signaling Uses existing routing
Uses routing protocol
extensions/information
protocols/information
Dual-protocol deployments are very Supports bandwidth reservation
Supports link/node protection
common
MPLS Path (LSP) Setup with LDP
Step 1: IP Routing (IGP) Convergence
Exchange of IP routes Forwarding Table Forwarding Table Forwarding Table
OSPF, IS-IS, EIGRP, etc. In Address
Label Prefix
Out Out
Iface Label
In Address
Label Prefix
Out Out
Iface Label
In Address
Label Prefix
Out Out
Iface Label
128.89 1 128.89 0 128.89 0
Establish IP reachability 171.69 1 171.69 1
0 128.89
1
0
0
0 128.89.25.4 Data
1 128.89.25.4 Data
1
128.89.25.4 Data 128.89.25.4 Data
171.69
MPLS Path (LSP) Setup with LDP
Step 2: Assignment of Remote Labels
Local label mapping are sent to Forwarding Table Forwarding Table Forwarding Table
In Address Out Out In Address Out Out In Address Out Out
connected nodes Labe Prefix Iface Labe Labe Prefix Iface Labe Labe Prefix Iface Labe
l l l l l l
Receiving nodes update forwarding -
-
128.89
171.69
1
1
20
21
20 128.89
21 171.69
0
1
30
36
30 128.89 0 -
table
Out label
128.89
0 0
LDP label advertisement happens in 1
R1
R8
TE
Topology
database
MPLS Path (RSVP) Setup
IGP: Find shortest (lowest cost) path n Link with insufficient bandwidth
to all nodes Find
shortest n Link with sufficient bandwidth
path to R8
with 8Mbps
TE: Per node, find the shortest IP/MPLS
10 8
10
10
TE
Topology
database
MPLS Path (RSVP) Setup
Set up the calculated path using
RSVP (Resource ReSerVation
Protocol) IP/MPLS
Head end
Once labels are learned, theyre
programmed just like LDP labels
At the forwarding level, you cant tell
whether your label came from RSVP
L=16
or LDP RESV Tail end
All the hard work is in the control plane
No per-packet forwarding hit for any of PATH
this
Auto IP SLA
Automated discovery of all available equal cost LSP paths between PEs
LSP pings are being sent over each discovered LSP path
Summary
Key Takeaways
MPLS networks consist of PE routers at in/egress and P routers in core
Traffic is encapsulated with label(s) at ingress (PE router)
Labels are removed at egress (PE router)
MPLS forwarding operations include label imposition (PUSH), swapping, and
disposition (POP)
LDP and RSVP can be used for signaling label mapping information to set up an
end-to-end Label Switched Path (LSP)
RSVP label signaling enables setup of TE tunnels, supporting enhanced traffic
engineering capabilities; traffic protection and path management
MPLS Virtual Private
Networks
MPLS Virtual Private Networks
Topics
Definition of MPLS VPN service
Service (Clients) Management
Basic MPLS VPN deployment
scenario Layer-3 VPNs Layer-2 VPNs
Technology options
MPLS OAM
Transport
IP/MPLS (LDP/RSVP-TE/BGP/OSPF/IS-IS)
MPLS Forwarding
What Is a Virtual Private Network?
Definition
Set of sites which communicate with each other in a secure way
Typically over a shared public or private network infrastructure
Defined by a set of administrative policies
Policies established by VPN customers themselves (DIY)
Policies implemented by VPN service provider (managed/unmanaged)
Different inter-site connectivity schemes possible
Full mesh, partial mesh, hub-and-spoke, etc.
VPN sites may be either within the same or in different organizations
VPN can be either intranet (same org) or extranet (multiple orgs)
VPNs may overlap; site may be in more than one VPN
MPLS VPN Example
Basic Building Blocks
VPN policies
PE-CE BGP Route Reflector PE-CE
Configured on PE routers (manual Link Link
operation)
PE VPN PE
VPN signaling CE
Signaling
CE
Between PEs VPN VPN
Policy Policy
Exchange of VPN policies VPN
VPN
CE Policy Policy CE
VPN traffic forwarding
Additional VPN-related MPLS label PE PE
encapsulation
PE-CE link
Connects customer network to MPLS
network; either layer-2 or layer-3
MPLS VPN Models
Technology Options
MPLS VPN Models
MPLS Layer-3 VPNs
Peering relationship between CE and
PE MPLS Layer-2 VPNs MPLS Layer-3 VPNs
MPLS Layer-2 VPNs CE connected to PE via IP-
Interconnect of layer-2 Attachment Point-to-Point Multi-Point based connection (over any
Layer-2 VPNs Layer-2 VPNs layer-2 type)
Circuits (ACs)
Static routing
CE CE
connected connected to PE-CE routing protocol;
to PE via L2 PE Ethernet eBGP, OSPF, IS-IS
(Eth, FR, connection CE routing has peering
ATM, etc) relationship with PE router; PE
CE-CE L2
connection routers are part of customer
(Eth) mp
CE-CE L2 connectivity routing
p2p CE-CE PE routers maintain customer-
connectivity routing; no specific routing tables and
CE-CE SP exchange customer=specific
routing; no involvement routing information
SP
involvement
Topic covered in detail in
BRKMPL-2102 (WED)
MPLS OAM
Deployment use cases Transport
Business VPN services
Network segmentation IP/MPLS (LDP/RSVP-TE/BGP/OSPF/IS-IS)
Data Center access
MPLS Forwarding
MPLS Layer-3 VPN Overview
Technology Components
VPN policies
Separation of customer routing via virtual VPN routing table (VRF)
In PE router, customer interfaces are connected to VRFs
VPN signaling
Between PE routers: customer routes exchanged via BGP (MP-BGP)
PE-CE link
Can be any type of layer-2 connection (e.g., FR, Ethernet)
CE configured to route IP traffic to/from adjacentPE router
Variety of routing options; static routes, eBGP, OSPF, IS-IS
Virtual Routing and Forwarding Instance
Virtual Routing Table and Forwarding to Separate Customer Traffic
Virtual routing and forwarding table
On PE router
Separate instance of routing (RIB) and CE
VPN 1 VRF
forwarding table
Green
PE
Typically, VRF created for each
MPLS Backbone
customer VPN CE
Separates customer traffic
VPN 2 VRF
VRF associated with one or more Blue
customer interfaces
VRF has its own routing instance for PE-
CE configured routing protocols
E.g., eBGP
VPN Route Distribution
Exchange of VPN Policies Among PE Routers
Full mesh of BGP sessions among
BGP Route Reflector
all PE routers PE-CE
Link
PE-CE
Link
Or BGP Route Reflector (common)
PE PE
CE CE
Multi-Protocol BGP extensions (MP-
iBGP) to carry VPN policies Blue VRF Blue VRF
Static routes PE PE
eBGP
OSPF
IS-IS
EIGRP
VPN Control Plane Processing
Make customer routes unique:
Route Distinguisher (RD):
8-byte field, VRF parameters; unique value to make VPN IP routes unique
VPNv4 address: RD + VPN IP prefix
Selective distribute VPN routes:
Route Target (RT):
8-byte field, VRF parameter, unique value to define the import/export rules for VPNv4
routes
MP-iBGP: advertises VPNv4 prefixes + labels
VPN Control Plane Processing
Interactions Between VRF and BGP VPN Signaling
BGP advertisement:
CE1 redistribute IPv4 route to PE1 via VPN-IPv4 Addr = RD:16.1/16
eBGP BGP Next-Hop = PE1
Route Target = 100:1
Label=42
PE1 allocates VPN label for prefix learnt eBGP: eBGP:
16.1/16
from CE1 to create unique VPNv4 route 16.1/16
IGP Label(PE2)
VPN Label
IP
IP packet
packet
IGP Label(PE2) VPN Label
PE1 receives IP packet P1 VPN Label P2 IP PE2
Lookup is done in site VRF packet
IP
BGP route with Next-Hop and
Label is found packet
BGP next-hop (PE2) is reachable CE3
through IGP route with
associated label
Thank you