Often, customers do not want their sites to have full interconnectivity. This means they do not want or need the sites to be fully meshed. A typical scenario involves one main site at a company with many remote sites. The remote sites or spokes need connectivity to the main or hub site, but they do not need to communicate between them directly. Perhaps the connectivity is possible but not wanted for security reasons. This scenario is commonly referred to as the hub-and-spoke scenario. It can also be achieved across MPLS VPN, but care must be taken. The following is needed:
The spoke sites can communicate only with the hub site.
Spoke-to-spoke traffic needs to be sent to the hub site first.
To achieve this, adhere to the following ...