MPLS and VPN Architectures

Book description

A practical guide to understanding, designing, and deploying MPLS and MPLS-enabled VPNs

  • In-depth analysis of the Multiprotocol Label Switching (MPLS) architecture

  • Detailed discussion of the mechanisms and features that constitute the architecture

  • Learn how MPLS scales to support tens of thousands of VPNs

  • Extensive case studies guide you through the design and deployment of real-world MPLS/VPN networks

  • Configuration examples and guidelines assist in configuring MPLS on Cisco® devices

  • Design and implementation options help you build various VPN topologies

  • Multiprotocol Label Switching (MPLS) is an innovative technique for high-performance packet forwarding. There are many uses for this new technology, both within a service-provider environment and within the enterprise network, and the most widely deployed usage today is the enabling of Virtual Private Networks (VPNs). With the introduction of MPLS-enabled VPNs, network designers are able to better scale their networks than with the methods available in the past.

    Network engineers and administrators need quick, effective education on this technology to efficiently deploy MPLS-enabled VPNs within their networks. With that goal in mind, MPLS and VPN Architectures provides an in-depth discussion particular to Cisco's MPLS architecture. This book covers MPLS theory and configuration, network design issues, and case studies as well as one major MPLS application: MPLS-based VPNs. The MPLS/VPN architecture and all its mechanisms are explained with configuration examples, suggested design and deployment guidelines, and extensive case studies.

    MPLS and VPN Architectures is your practical guide to understanding, designing, and deploying MPLS and MPLS-based VPNs.

    Table of contents

    1. Copyright
      1. Dedications
    2. About the Authors
    3. About the Technical Reviewers
    4. Acknowledgments
    5. I. MPLS Technology and Configuration
      1. 1. Multiprotocol Label Switching (MPLS) Architecture Overview
        1. Scalability and Flexibility of IP-based Forwarding
          1. Network Layer Routing Paradigm
          2. Differentiated Packet Servicing
          3. Independent Forwarding and Control
          4. External Routing Information Propagation
        2. Multiprotocol Label Switching (MPLS) Introduction
          1. MPLS Architecture—The Building Blocks
          2. Label Imposition at the Network Edge
          3. MPLS Packet Forwarding and Label Switched Paths
        3. Other MPLS Applications
        4. Summary
      2. 2. Frame-mode MPLS Operation
        1. Frame-mode MPLS Data Plane Operation
          1. MPLS Label Stack Header
          2. Label Switching in Frame-mode MPLS
            1. MPLS Label Switching with Label Stack
        2. Label Bindings and Propagation in Frame-mode MPLS
          1. LDP/TDP Session Establishment
          2. Label Binding and Distribution
          3. Convergence in a Frame-mode MPLS Network
        3. Penultimate Hop Popping
        4. MPLS Interaction with the Border Gateway Protocol
        5. Summary
      3. 3. Cell-mode MPLS Operation
        1. Control-plane Connectivity Across an LC-ATM Interface
          1. MPLS Control-plane Connectivity in Cisco IOS Software
          2. Control-plane Implementation in an ATM Switch
        2. Labeled Packet Forwarding Across an ATM-LSR Domain
        3. Label Allocation and Distribution Across an ATM-LSR Domain
          1. VC Merge
          2. Convergence Across an ATM-LSR Domain
        4. Summary
      4. 4. Running Frame-mode MPLS Across Switched WAN Media
        1. Frame-mode MPLS Operation Across Frame Relay
        2. Frame-mode MPLS Operation Across ATM PVCs
          1. Frame-mode and Cell-mode MPLS Across the Same ATM Interface
        3. Summary
      5. 5. Advanced MPLS Topics
        1. Controlling the Distribution of Label Mappings
        2. MPLS Encapsulation Across Ethernet Links
          1. IP MTU Path Discovery
          2. Ethernet Switches and MPLS MTU
        3. MPLS Loop Detection and Prevention
          1. Loop Detection and Prevention in Frame-mode MPLS
            1. Frame-mode: Data Plane Loop Detection
            2. Frame-mode: Control Plane Loop Prevention
          2. Loop Detection and Prevention in Cell-mode MPLS
            1. Cell-mode: Control Plane Loop Detection/Prevention
            2. Cell-mode–—Data Plane Loop Detection
        4. Traceroute Across an MPLS-enabled Network
        5. Route Summarization Within an MPLS-enabled Network
        6. Summary
      6. 6. MPLS Migration and Configuration Case Study
        1. Migration of the Backbone to a Frame-mode MPLS Solution
        2. Pre-migration Infrastructure Checks
          1. Cisco Express Forwarding (CEF) Requirements
        3. Addressing the Internal BGP Structure
        4. Migration of Internal Links to MPLS
        5. Removal of Unnecessary BGP Peering Sessions
        6. Migration of an ATM-based Backbone to Frame-mode MPLS
          1. Cell-mode MPLS Migration
        7. Summary
    6. 2. MPLS-based Virtual Private Networks
      1. 7. Virtual Private Network (VPN) Implementation Options
        1. Virtual Private Network Evolution
          1. Modern Virtual Private Networks
        2. Business Problem-based VPN Classification
        3. Overlay and Peer-to-peer VPN Model
          1. Overlay VPN Model
          2. Peer-to-peer VPN Model
            1. Shared-router Approach to Peer-to-peer VPN Model
            2. Dedicated-router Approach to Peer-to-peer Model
            3. Comparison of Peer-to-peer Models
        4. Typical VPN Network Topologies
          1. Hub-and-spoke Topology
          2. Partial- or Full-mesh Topology
          3. Hybrid Topology
          4. Simple Extranet Topology
          5. Central-services Extranet
          6. VPDN Topology
          7. Managed Network VPN Topology
        5. Summary
      2. 8. MPLS/VPN Architecture Overview
        1. Case Study: Virtual Private Networks in SuperCom Service Provider Network
        2. VPN Routing and Forwarding Tables
        3. Overlapping Virtual Private Networks
        4. Route Targets
        5. Propagation of VPN Routing Information in the Provider Network
          1. Multiprotocol BGP in the SuperCom Network
        6. VPN Packet Forwarding
        7. Summary
      3. 9. MPLS/VPN Architecture Operation
        1. Case Study: Basic MPLS/VPN Intranet Service
        2. Configuration of VRFs
        3. Route Distinguishers and VPN-IPv4 Address Prefixes
          1. Configuration of the Route Distinguisher
        4. BGP Extended Community Attribute
          1. Route Target BGP Extended Community
            1. Configuration of Import and Export Policies
          2. Site of Origin BGP Extended Community
            1. Configuration of the SOO
          3. BGP Extended Community Attribute Format
        5. Basic PE to CE Link Configuration
          1. PE to CE Link Configuration—Static Routing
          2. PE to CE Link Configuration—RIP Version 2
        6. Association of Interfaces to VRFs
        7. Multiprotocol BGP Usage and Deployment
          1. Configuration of Multiprotocol BGP
          2. Enhanced BGP Decision Process for VPN-IPv4 Prefixes
        8. Outbound Route Filtering (ORF) and Route Refresh Features
          1. Automatic Route Filtering on PE-routers
          2. Refreshing Routing Information Between PE-routers
          3. ORF for PE-routers
        9. MPLS/VPN Data Plane—Packet Forwarding
        10. Summary
      4. 10. Provider Edge (PE) to Customer Edge (CE) Connectivity Options
        1. VPN Customer Access into the MPLS/VPN Backbone
        2. BGP-4 Between Service Provider and Customer Networks
        3. Open Shortest Path First (OSPF) Between PE- and CE-routers
        4. Separation of VPN Customer Routing Information
        5. Propagation of OSPF Routes Across the MPLS/VPN Backbone
          1. BGP Extended Community Attribute for OSPF Routes
        6. PE-to-CE Connectivity—OSPF with Site Area 0 Support
        7. PE-to-CE Connectivity—OSPF Without Site Area 0 Support
        8. VPN Customer Connectivity—MPLS/VPN Design Choices
          1. Migrating Customers Using iBGP in Their Network to MPLS/VPN Service
          2. Autonomous System Number Override
        9. Summary
      5. 11. Advanced MPLS/VPN Topologies
        1. Intranet and Extranet Integration
        2. Central Services Topology
        3. MPLS/VPN Hub-and-spoke Topology
          1. Deployment of the AllowAS-in Feature
        4. Summary
      6. 12. Advanced MPLS/VPN Topics
        1. MPLS/VPN: Scaling the Solution
        2. Routing Convergence Within an MPLS-enabled VPN Network
          1. Convergence Within the Service Provider Backbone
            1. Service Provider Backbone Convergence—Router-based Topology
            2. Service Provider Backbone Convergence—ATM-based Topology
          2. Convergence Between VPN Sites
        3. Advertisement of Routes Across the Backbone
          1. BGP for VPN-IPv4 and IPv4 Routing Information
          2. Full Mesh of MP-iBGP Between PE-routers
          3. Separation of MP-iBGP Sessions Between PE-routers
        4. Introduction of Route Reflector Hierarchy
          1. Route Reflection of PE Routes to Aid Scaling
          2. Route Reflector Partitioning
          3. Standard Community Filtering on PE-routers
          4. Route Target Attribute-based Filtering on Route Reflectors
          5. Route Reflection and ORF Capability
        5. BGP Confederations Deployment
          1. BGP Confederations—Single IGP Environment
          2. BGP Confederations—Multiple IGP Environment
        6. PE-router Provisioning and Scaling
        7. Additional Connectivity Requirements—Internet Access
        8. Internet Connectivity Through Firewalls
        9. Internet Access—Static Default Routing
        10. Separate BGP Session Between PE- and CE-routers
        11. Internet Connectivity Through Dynamic Default Routing
          1. Dynamic Default Routing—Route Target Assignment
          2. Association of the Global Routing Table with a VRF
        12. Additional Lookup in the Global Routing Table
        13. Internet Connectivity Through a Different Service Provider
        14. Summary
      7. 13. Guidelines for the Deployment of MPLS/VPN
        1. Introduction to MPLS/VPN Deployment
        2. IGP to BGP Migration of Customer Routes
        3. Multiprotocol BGP Deployment in an MPLS/VPN Backbone
          1. VPN Routes and Next-hop Forwarding
          2. PE-router Loopback Address Configuration
            1. Summarization of PE Loopback Addresses
        4. MPLS/VPN Deployment on LAN Interfaces
        5. Network Management of Customer Links
          1. Advertisement of Routes with Different Extended Communities
          2. Use of Standard BGP Communities for Route Filtering
          3. Advertisement of Routes with Different Route Targets Using Export Maps
        6. Use of Traceroute Across an MPLS/VPN Backbone
        7. Summary
      8. 14. Carrier's Carrier and Inter-provider VPN Solutions
        1. Carrier's Carrier Solution Overview
        2. Carrier's Carrier Architecture—Topologies
          1. ISP with No MPLS Deployment Within POP Sites
          2. ISP with MPLS Deployed Within POP Sites
        3. Hierarchical Virtual Private Networks
        4. Inter-provider VPN Solutions
          1. Inter-provider VPN—Exchange of VPN-IPv4 Across Boundaries
          2. Inter-provider VPN—Multi-hop eBGP Between Customer Sites
        5. Summary
      9. 15. IP Tunneling to MPLS/VPN Migration Case Study
        1. Existing VPN Solution Deployment—IP Tunneling
        2. Definition of VPNs and Routing Policies for PE-routers
        3. Definition of VRFs Within the Backbone Network
        4. VRF and Routing Polices for SampleNet VPN Sites
        5. VRF and Routing Policies for SampleNet Internet Access
        6. VRF and Routing Policies for Internet Access Customers
        7. MPLS/VPN Migration—Staging and Execution
          1. Migration of the SampleNet Central Site
        8. Configuration of MP-iBGP on BGP Route Reflectors
        9. Configuration of MP-iBGP on TransitNet PE-routers
        10. Migration of VPN Sites onto the MPLS/VPN Solution
        11. Summary
      10. A. Tag-switching and MPLS Command Reference

    Product information

    • Title: MPLS and VPN Architectures
    • Author(s): Jim CCIE #2069 Guichard, Ivan CCIE #1354 Pepelnjak
    • Release date: October 2000
    • Publisher(s): Cisco Press
    • ISBN: 9781587050022