BRKMPL-1101 - 2012 - San Diego PDF

Introduction to MPLS
BRKMPL-1101
BRKMPL-1101 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public
2
Session Goals
Objectives
Understand history and business drivers for MPLS

Learn about MPLS customer and market segments
Understand the problems MPLS is addressing
Understand the major MPLS technology components
Understand typical MPLS applications
Understand benefits of deploying MPLS
Learn about MPLS futures; where MPLS is going
3
Agenda
Topics
Introduction
MPLS Technology Basics
MPLS Layer-3 VPNs
MPLS Layer-2 VPNs
Advanced Topics
Summary
4
Introduction
What is MPLS?
Brief Summary
Its all about labels
Use the best of both worlds
Layer-2 (ATM/FR): efficient forwarding and traffic engineering
Layer-3 (IP): flexible and scalable
MPLS forwarding plane
Use of labels for forwarding Layer-2/3 data traffic
Labeled packets are being switched instead of routed
Leverage layer-2 forwarding efficiency
MPLS control/signaling plane
Use of existing IP control protocols extensions + new protocols
to exchange label information
Leverage layer-3 control protocol flexibility and scalability
6
Technology Comparison
Key Characteristics of IP, Native Ethernet, and MPLS
IP Native Ethernet MPLS
Destination address based Destination address based Label based

Forwarding table learned Forwarding table learned Forwarding table learned from
Forwarding from control plane from data plane control plane
TTL support No TTL support TTL support
Ethernet Loop avoidance Routing Protocols

Control Plane Routing Protocols
and signaling protocols MPLS protocols
Packet Encapsulation IP Header 802.3 Header MPLS shim header
QoS 8 bit TOS field in IP header 3-bit 802.1p field in VLAN tag 3 bit TC field in label
OAM IP ping, traceroute E-OAM MPLS OAM
7
Evolution of MPLS
Technology Evolution and Main Growth Areas Today
Evolved from tag switching in 1996 to full IETF Optimize MPLS

standard, covering over 130 RFCs for Cloud
Key application initially were Layer-3 VPNs, Optimize MPLS for
followed by Traffic Engineering (TE), packet transport
and Layer-2 VPNs
Optimize MPLS for video
Complete base MPLS portfolio
Bring MPLS to Market
First Large Scale

First L2VPN
L3VPNs L2VPN
Deployments
Deployed Deployments
Large Scale Large Scale

Cisco ships First MPLS TE First LSM First MPLS TP
L3VPN MPLS TE
MPLS Deployments Deployments Deployments
Deployments Deployments
1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014
8
Market Segments
MPLS Business Drivers and Typical Deployment Characteristics
Business Drivers Business Goals MPLS Capabilities
S Networking service reliability S Leverage single network for scalable

S Cost effective service delivery of multiple services
Layer-3 VPN
bandwidth S Optimize network capacity to meet Layer-2 VPN
Service Provider S Flexible enablement of current and future growth of service
MPLS TE
existing and new services bandwidth
MPLS OAM, QoS
S Deliver premium services with
guaranteed SLAs
S Mergers and acquisitions S Network Segmentation

S Network consolidation S Network integration
Enterprise S Shared services
Layer-3 VPN
S Compliance
S Multi-tenant hosting S Leverage single data center
S Data Center Interconnect infrastructure for multiple users and
services Layer-2 VPN
Data Center Layer-3 VPN
S Deliver geographic independent
services from any data center
9
Cisco Platform Coverage
MPLS Support by Cisco Platforms (Typical Deployments)
Aggregation
Access Core Backbone WAN Edge
Distribution
Enterprise ISR/G2
NEXUS 7K
6500
ASR1K
Data Center
NEXUS 7K NEXUS 7K 6500 ASR9000
6500 6500
7600
ASR901
ASR903
Service Provider
ASR9000
ASR9000 CRS GSR GSR ASR1K
ME3800X ASR9000
7600 7600
10
MPLS Technology Basics
Technology Building Blocks of MPLS
Topics
Basics of MPLS Signaling and Forwarding
MPLS reference
architecture Service (Clients) Management
MPLS Labels Layer-3 VPNs Layer-2 VPNs
MPLS signaling and
MPLS MIBs and OAM

forwarding operations Transport
MPLS Traffic Engineering

IP/MPLS (LDP/RSVP-TE/BGP)
MPLS OAM and MIBs
MPLS Forwarding
12
MPLS Reference Architecture
Different Type of Nodes in a MPLS Network
P (Provider) router
Label switching router (LSR) MPLS Domain
Switches MPLS-labeled
packets P P
CE PE PE CE
PE (Provider Edge) router
Edge router (LER)
CE CE
Imposes and removes
MPLS labels PE P P PE
CE (Customer Edge) router

Label switched trac
Connects customer network
to MPLS network
13
MPLS Shim Labels
Label Definition and Encapsulation
Labels used for making MPLS Label
forwarding decision 0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
Multiple labels can be used
for MPLS packet Label # 20bits TC S TTL-8bits
encapsulation TC = Trac Class: 3 Bits; S = Boom of Stack; TTL = Time to Live

Creation of a label stack
Outer label always used for MPLS Label Encapsulaon
switching MPLS packets in LAN MAC Label Header MAC Header Label Layer 3 Packet
network
Remaining inner labels used
to specific services MPLS Label Stack
(e.g., VPNs)
LAN MAC Label Header MAC Header Label Label S Layer 3 Packet
Boom of Stack Bit Set
14
MPLS QoS
QoS Marking in MPLS Labels
MPLS label contains 3 TC bits
Used for packet classification and
prioritization
Similar to Type of Service (ToS)
field in IP packet (DSCP values) MPLS DiServ Marking IP DiServ Marking
in Trac Class Bits
DSCP values of IP packet mapped
into TC bits of MPLS label
At ingress PE router TC DSCP
Most providers have defined 35 Layer-2 Header MPLS Header Layer 3 Header
service classes (TC values)
Different DSCP <-> TC mapping
schemes possible
Uniform mode, pipe mode, and
short pipe mode
15
Basic MPLS Forwarding Operations
How Labels Are Being Used to Establish End-to-end Connectivity
Label imposition (PUSH)
By ingress PE router; Label Imposion (Push) Label Disposion
classify and label packets Label Swap Label Swap (PoP)
Based on Forwarding L1 L1 L2 L2 L3 L3
Equivalence Class (FEC) L2/L3 Packet
Label swapping or switching CE PE

P P
PE CE
By P router; forward packets
using labels; indicates
service class & destination
CE CE
Label disposition (POP)
By egress PE router; PE P P PE
remove label and forward
original packet to
destination CE
16
MPLS Path (LSP) Setup and Traffic Forwarding
MPLS Traffic Forwarding and MPLS Path (LSP) Setup
LSP signaling
Either LDP* or RSVP IP MPLS
Leverages IP routing Destination address based Label based

Forwarding table learned Forwarding table learned
Routing table (RIB) Forwarding
from control plane from control plane
TTL support TTL support
Exchange of labels
OSPF, IS-IS, BGP
Label bindings Control Plane OSPF, IS-IS, BGP
LDP, RSVP
Downstream MPLS node Packet

IP Header One or more labels
advertises what label to use Encapsulation
to send traffic to node
QoS 8 bit TOS field in IP header 3 bit TC field in label
MPLS forwarding
MPLS Forwarding table OAM IP ping, traceroute MPLS OAM
(FIB)
* LDP signaling assumed for next the examples
17
MPLS Path (LSP) Setup
Signaling Options
LDP signaling LDP RSVP

Leverages existing routing LSP or TE Tunnel
Forwarding path LSP
RSVP signaling Primary and, optionally, backup
Based on TE topology
Aka MPLS RSVP/TE Forwarding Based on IP routing database
database
Shortest-path and/or other
Calculation Shortest-Path based
constraints
Enables enhanced (CSPF calculation)
capabilities, such as Packet
Single label One or two labels
Fast ReRoute (FRR) Encapsulation
Initiated by head-end node

towards tail-end node
By each node independently
Uses routing protocol
Signaling Uses existing routing extensions/information
protocols/information
Supports bandwidth reservation
Supports link/node protection
18
IP Packet Forwarding Example
Basic IP Packet Forwarding
IP routing information Forwarding Table

Forwarding Table Forwarding Table Address
exchanged between
I/F
Prex
Address Address
I/F I/F 128.89
nodes
Prex Prex 0

128.89 1 128.89 0 171.69 1

Via IGP (e.g., OSFP, 171.69 1 171.69 1
IS-IS)
Packets being 128.89
forwarded based on 0
destination IP address 1
0
128.89.25.4 Data
128.89.25.4 Data
Lookup in routing table

1
128.89.25.4 Data 128.89.25.4 Data
(RIB) 171.69
19
Step 1: IP Routing (IGP) Convergence
Exchange of IP routes
Forwarding Table Forwarding Table Forwarding Table
OSPF, IS-IS, EIGRP, In Address Out Out In Address Out Out In Address Out Out
Label Prex Iface Label Label Prex Iface Label Label Prex Iface Label
etc. 128.89 1 128.89 0 128.89 0
Establish IP 171.69

1

171.69

1

reachability
0 128.89
0 0
1
0
1
You Can Reach 128.89 Thru Me
You Can Reach 128.89 and 1
1
171.69 Thru Me
Roung Updates (OSPF,

You Can Reach 171.69 Thru Me
EIGRP, ) 171.69
20
Step 2A: Assignment of Local Labels
Each MPLS node

assigns a local label to Forwarding Table Forwarding Table Forwarding Table
In Address Out Out In Address Out Out In Address Out Out
each route in local Label Prex Iface Label Label Prex Iface Label Label Prex Iface Label
- 128.89 1 20 128.89 0 30 128.89 0 -
routing table - 171.69 1 21 171.69 1
In label
0 128.89
0 0
1
0
1
1
1
171.69
21
Step 2B: Assignment of Remote Labels
Local label mapping Forwarding Table Forwarding Table Forwarding Table

are sent to connected In
Label
Address Out Out
Prex Iface Label
In
Label
Address Out Out
Prex Iface Label
In
Label
Address Out Out
Prex Iface Label
nodes - 128.89 1 20 20 128.89 0 30 30 128.89 0 -
- 171.69 1 21 21 171.69 1 36
Receiving nodes
update forwarding
table 1
0
0 128.89
0
Out label 1
0
Use Label 30 for 128.89

Use Label 20 for 128.89 and 1
1
Label Distribuon
Protocol (LDP) 171.69
(Downstream Allocaon)
22
MPLS Traffic Forwarding
Hop-by-hop Traffic Forwarding Using Labels
Ingress PE node adds Forwarding Table Forwarding Table Forwarding Table

label to packet (push) In
Label
Address Out Out
Prex Iface Label
In
Label
Address Out Out
Prex Iface Label
In
Label
Address Out Out
Prex Iface Label
Via forwarding table - 128.89 1 20 20 128.89 0 30 30 128.89 0 -

- 171.69 1 21 21 171.69 1 36
Downstream node use
label for forwarding

0 128.89
decision (swap) 0 0
128.89.25.4 Data
Outgoing interface 1 1
0
30 128.89.25.4 Data
Out label 128.89.25.4 Data 20 128.89.25.4 Data 1

1
Egress PE removes label

Forwarding based on Label
and forwards original 171.69
packet (pop)
23
MPLS TE Fast ReRoute (FRR)
Implementing Network Failure Protection Using MPLS RSVP/TE
Steady state
Router A Router B Router D Router E
Primary tunnel:
ABDE
Backup tunnel:
B C D (pre-provisioned)
Failure of link between
router B and D
Router X Router Y
Traffic rerouted over Router C
backup tunnel Primary Tunnel
Recovery time* ~ 50 ms Backup Tunnel
*Actual Time VariesWell Below 50 ms in Lab Tests, Can Also Be Higher
24
MPLS SNMP MIBs
SNMP Management Access to MPLS Resources
MPLS-LSR-STD-MIB
Provides LSP end-point and LSP cross-connect information
Frequently used: none L
MPLS-LDP-STD-MIB
Provides LDP session configuration and status information
Frequently used: LDP session status Trap notifications
MPLS-L3VPN-STD-MIB
Provides VRF configuration and status information and associated interface mappings
Frequently used: VRF max-route Trap notifications
MPLS-TE-STD-MIB
Provides TE tunnel configuration and status information
Frequently used: TE Tunnel status Trap notifications
25
MPLS OAM
Tools for Reactive and Proactive Trouble Shooting of MPLS Connectivity
MPLS LSP Ping
Used for testing end-to-end MPLS connectivity similar to IP ping
Can we used to validate reach ability of LDP-signaled LSPs, TE tunnels, and PWs
MPLS LSP Trace
Used for testing hop-by-hop tracing of MPLS path similar to traceroute
Can we used for path tracing LDP-signaled LSPs and TE tunnels
MPLS LSP Multipath (ECMP) Tree Trace
Used to discover of all available equal cost LSP paths between PEs
Unique capability for MPLS OAM; no IP equivalent!
Auto IP SLA
Automated discovery of all available equal cost LSP paths between PEs
LSP pings are being sent over each discovered LSP path
26
Summary
Key Takeaways
MPLS networks consist of PE routers at in/egress and P routers in core
Traffic is encapsulated with label(s) at ingress (PE router)
Labels are removed at egress (PE router)
MPLS forwarding operations include label imposition (PUSH), swapping,
and disposition (POP)
LDP and RSVP can be used for signaling label mapping information to set
up an end-to-end Label Switched Path (LSP)
RSVP label signaling enables setup of TE tunnels, supporting enhanced
traffic engineering capabilities; traffic protection and path management
MPLS OAM and MIBs can be used for MPLS connectivity validation and
troubleshooting
27
MPLS Virtual Private Networks
Technology Overview
MPLS Virtual Private Networks
Topics
Definition of MPLS VPN

service Service (Clients) Management
Basic MPLS VPN Layer-3 VPNs Layer-2 VPNs

deployment scenario
MPLS MIBs and OAM

Technology options Transport
MPLS Forwarding
29
What Is a Virtual Private Network?
Definition
Set of sites which communicate with each other in a secure way
Typically over a shared public or private network infrastructure
Defined by a set of administrative policies
Policies established by VPN customers themselves (DIY)
Policies implemented by VPN service provider (managed/unmanaged)
Different inter-site connectivity schemes possible
Full mesh, partial mesh, hub-and-spoke, etc.
VPN sites may be either within the same or in different organizations
VPN can be either intranet (same org) or extranet (multiple orgs)
VPNs may overlap; site may be in more than one VPN
30
MPLS VPN Example
Basic Building Blocks
VPN policies
Configured on PE routers PE-CE VPN Signaling PE-CE
Link Link
(manual operation)
VPN signaling CE
PE P
VPN
P PE
CE
Between PEs VPN
VPN
Exchange of VPN policies

Policy
Policy
VPN
VPN traffic forwarding CE

VPN
Policy Policy CE

Additional VPN-related PE P P PE
MPLS label encapsulation
PE-CE link
Connects customer network Label Switched Trac
to MPLS network; either
layer-2 or layer-3
31
MPLS VPN Models
Technology Options
MPLS Layer-3 VPNs MPLS VPN Models

Peering relationship
between CE and PE
MPLS Layer-2 VPNs MPLS Layer-3 VPNs
MPLS Layer-2 VPNs
CE connected to PE via IP-based
Interconnect of layer-2 Point-to-Point Mul-Point connecon (over any layer-2 type)
Layer-2 VPNs Layer-2 VPNs Stac roung
Attachment Circuits (ACs) PE-CE roung protocol; eBGP, OSPF,
CE connected to CE connected to PE IS-IS
PE via p2p L2 via Ethernet
connecon (FR, connecon (VLAN) CE roung has peering relaonship with
ATM) PE router; PE routers are part of
CEs peer with each
customer roung
CEs peer with other via fully/
each other (IP paral mesh PE routers maintain customer-specic
roung) via p2p Layer-2 VPN roung tables and exchange
layer-2 VPN connecon customer=specic roung informaon
connecon CE-CE roung; no
CE-CE roung; no SP involvement
SP involvement
32
MPLS Layer-3 Virtual Private Networks
End-to-end Layer-3 Services Over MPLS Networks
Topics
Technology components
Service (Clients) Management
VPN control plane
mechanisms Layer-3 VPNs Layer-2 VPNs
VPN forwarding plane
MPLS MIBs and OAM

Deployment use cases Transport
Business VPN services

Network segmentation
Data Center access MPLS Forwarding
34
MPLS Layer-3 VPN Overview
Technology Components
VPN policies
Separation of customer routing via virtual VPN routing table (VRF)
In PE router, customer interfaces are connected to VRFs
VPN signaling
Between PE routers: customer routes exchanged via BGP (MP-iBGP)
VPN traffic forwarding
Separation of customer VPN traffic via additional VPN label
VPN label used by receiving PE to identify VPN routing table
PE-CE link
Can be any type of layer-2 connection (e.g., FR, Ethernet)
CE configured to route IP traffic to/from adjacent PE router
Variety of routing options; static routes, eBGP, OSPF, IS-IS
35
Virtual Routing and Forwarding Instance
Virtual Routing Table and Forwarding to Separate Customer Traffic
Virtual routing and forwarding

table
On PE router CE
VPN 1 VRF Green
Separate instance of routing
(RIB) and forwarding table PE
Typically, VRF created for each CE MPLS Backbone

customer VPN
VPN 2
VRF Blue
Separates customer traffic
VRF associated with one or
more customer interfaces
VRF has its own routing
instance for PE-CE configured
routing protocols
E.g., eBGP
36
VPN Route Distribution
Exchange of VPN Policies Among PE Routers
Full mesh of BGP sessions

among all PE routers PE-CE
BGP Route Reector
PE-CE
BGP Route Reflector Link Link
Multi-Protocol BGP CE
PE P P PE
CE
extensions (MP-iBGP) to
carry VPN policies Blue VPN
Policy
BlueVPN
Policy`
Red VPN
PE-CE routing options
Red VPN
CE Policy Policy CE
Static routes PE P P PE
eBGP
OSPF
IS-IS Label Switched Trac
37
VPN Control Plane Processing
VRF Parameters
Make customer routes unique:
Route Distinguisher (RD):
8-byte field, VRF parameters;
unique value to make VPN IP
routes unique
VPNv4 address: RD + VPN
IP prefix
Selective distribute VPN routes:
Route Target (RT): 8-byte
field, VRF parameter, unique
value to define the import/
export rules for VPNv4 routes
MP-iBGP: advertises VPNv4
prefixes + labels
38
VPN Control Plane Processing
Interactions Between VRF and BGP VPN Signaling
1. CE1 redistribute IPv4 route BGP adversement:

to PE1 via eBGP VPN-IPv4 Addr = RD:16.1/16
BGP Next-Hop = PE1
2. PE1 allocates VPN label for Route Target = 100:1
eBGP:
prefix learnt from CE1 to 16.1/16
Label=42 eBGP:
16.1/16
create unique VPNv4 route IP Subnet IP Subnet
3. PE1 redistributes VPNv4 CE1

PE1 P P
Blue VPN
PE2
CE2
route into MP-iBGP, it sets

itself as a next hop and
relays VPN site routes to VRF
ip vrfparameters:
blue-vpn
PE2 Name = blue-vpn
RD 1:100
RD = 1:100 export 1:100
route-target
4. PE2 receives VPNv4 route Import Route-Target
route-target = 100:1
import 1:100
Export Route-Target = 100:1
and, via processing in local
VRF (green), it redistributes
original IPv4 route to CE2
39
VPN Forwarding Plane Processing
Forwarding of Layer-3 MPLS VPN Packets
1. CE2 forwards IPv4 packet to PE2
2. PE2 imposes pre-allocated VPN
label to IPv4 packet received from
CE2
IPv4 IGP VPNv4 IPv4 IGP VPNv4 IPv4 IGP VPNv4 IPv4 IPv4
Learned via MP-IBGP Label C Label Label B Label Label A Label
IPv4
3. PE2 imposes outer IGP label A IPv4
Packet Packet
(learned via LDP) and forwards P1
PE1 Blue VPN P2 PE2
labeled packet to next-hop CE1 CE2

P-router P2

4. P-routers P1 and P2 swap outer
IGP label and forward label
packet to PE1 VRF
ip vrfparameters:
Name
blue-vpn
= blue-vpn
RD 1:100
RD = 1:100 export 1:100
A->B (P2) and B->C (P1) route-target
Import Route-Target
route-target = 1:100
import 1:100
Export Route-Target = 1:100
5. Router PE1 strips VPN label and
IGP labels and forwards IPv4
packet to CE1
40
Service Provider Deployment Scenario
MPLS Layer-3 VPNs for Offering Layer-3 Business VPN Services
Deployment Use Case Managed VPN Service
Delivery of IP VPN services Unmanaged VPN Service

to business customers
Core Core
VPN
Edge Edge
Benefits CPE CPE

Leverage same network for
multiple services and
customers (CAPEX) Network Segment CPE Edge Core
Highly scalable
MPLS Node CE PE P
Service enablement only
requires edge node Typical Platforms ASR1K ASR9K CRS-1
configuration (OPEX) ISR/G2 7600 GSR
Different IP connectivity ASR1K ASR9K
can be easily configured; ASR903
e.g., full/partial mesh ME3800X
41
Enterprise Deployment Scenario
MPLS Layer-3 VPNs for Implementing Network Segmentation
Deployment Use Case

MPLS VPNs for L3 Network Segmentaon
Segmentation of enterprise
network to provide selective Core Core
VPN
Edge Edge
Access Access
connectivity for specific user
groups and organizations
Benefits
Network Segment Access Edge Core
Network segmentation only
MPLS Node CE PE P
requires edge node
configuration Typical Platforms ASR1K 7600 CRS-1
Flexible routing; different IP ISR/G2 ASR1K GSR

connectivity can be easily ASR9K
configured; e.g., full/partial 7600
mesh 6500
42
Data Center Deployment Scenario
MPLS Layer-3 VPNs for Segmented L3 Data Center Access and Interconnect
Deployment Use Case MPLS VPNs terminang on DC aggregaon
Segmented WAN Layer-3 MPLS VPNs

at Data Center edge at DC edge
Access
Layer-3 segmentation in Top Of Rack Distribuon Core Core Edge
Data Center
Benefits Data Center
Only single Data Center Network Segment Distribution Core Edge
edge node needed for
MPLS Node CE or PE P or CE PE
segmented layer-3 access
Typical Platforms N7K N7K ASR9K
Enables VLAN/Layer-2
6500 6500 7600
scale (> 4K)
43
Summary
Key Takeaways
MPLS Layer-3 VPNs provide IP connectivity among CE sites

MPLS VPNs enable full-mesh, hub-and-spoke, and hybrid IP connectivity
CE sites connect to the MPLS network via IP peering across PE-CE links
MPLS Layer-3 VPNs are implemented via VRFs on PE edge nodes
VRFs providing customer routing and forwarding segmentation
BGP used for signaling customer VPN (VPNv4) routes between PE nodes
To ensure traffic separation, customer traffic is encapsulated in an
additional VPN label when forwarded in MPLS network
Key applications are layer-3 business VPN services, enterprise network
segmentation, and segmented layer-3 Data Center access
44
End-to-end Layer-2 Services Over MPLS Networks
Topics
L2VPN technology options
P2P VPWS services (PWs) Service (Clients) Management
Overview & Technology Basics
VPN control plane Layer-3 VPNs Layer-2 VPNs
MPLS MIBs and OAM

Transport
MP2MP VPLS services
Overview & Technology Basics
VPN control plane

Deployment use cases
MPLS Forwarding
L2 Business VPN services

Data Center Interconnect
46
Technology Options
VPWS services
MPLS Layer-2 VPNs
Point-to-point
Referred to as Point-to-Point Mulpoint-to-Mulpoint
Pseudowires (PWs)* Layer-2 VPNs (PWs) Layer-2 VPNs (VPLS)
VPLS services CE connected to PE via CE connected to PE via

p2p L2 connecon Ethernet connecon (VLAN)
Multipoint-to-Multipoint (e.g., FR, ATM) CEs peer with each other via
CEs peer with each other fully/paral mesh Layer-2
(IP roung) via p2p layer-2 VPN connecon
VPN connecon CE-CE roung; no MPLS
CE-CE roung; no MPLS network involvement
network involvement
* Used to be referred to as Any Transport over MPLS or AToM as well.

47
Virtual Private Wire Services (VPWS)
Overview of Pseudowire (PW) Architecture
Based on IETFs Pseudo-

Wire (PW) Reference Model Aachment Aachment
Circuit (AC) Circuit (AC)
Enables transport of any
Pseudo-Wire 1
Layer-2 traffic over MPLS CE
PE P P PE
CE
Includes additional VC label Layer-2 Layer-2
encapsulation and
translation of L2 packets CE
Pseudo-Wire 2
CE
ATM, ATM, FR, or PPP Layer-2 Layer-2
PE P P PE
PE-CE link is referred to as
Attachment Circuit (AC)
Emulated Layer-2 Service
Support for L2 interworking
Label Switched Trac
PWs are bi-directional
48
Virtual Private Wire Services (VPWS)
VPN policies
Virtual cross-connect (Xconnect)
Maps customer interface (AC) to PW (1:1 mapping)
VPN signaling
Targeted LDP* or BGP session between ingress and egress PE router
Virtual Connection (VC)-label negotiation, withdrawal, error notification
1 or 2 labels used for encapsulation + 1 (IGP) label for forwarding: VC label + optional control word
Inner de-multiplexer (VC) label: identifies L2 circuit (packet)
Control word: replaces layer-2 header at ingress; used to rebuild layer-2 header at egress
Outer tunnel (IGP) label: to get from ingress to egress PE using MPLS LSP
PE-CE link
Referred to as Attachment Circuit (AC)
Can be any type of layer-2 connection (e.g., FR, ATM)
* LDP is assumed as signaling protocol for next examples
49
VPWS Control Plane Processing
Signaling of a New Pseudo-Wire
1. New Virtual Circuit (VC) cross-
connect connects customer L2
interface (AC) to new PW via
VC ID and remote PE ID
2. New targeted LDP session 3 Label Mapping Messages
between PE1 and PE2 is 4 4

established, in case one 2 LDP session
does not already exist CE

PE P P PE
CE
3. PE binds VC label with Layer-2 Layer-2
customer layer-2 interface and 1 1
sends label-mapping to
remote PE
Emulated Layer-2 Service
4. Remote PE receives LDP label
binding message and matches
VC ID with local configured VC
cross-connect
50
VPWS Forwarding Plane Processing
Forwarding of Layer-2 Traffic Over PWs
1. CE2 forwards L2 packet to PE2.
2. PE2 pushes VC (inner) label to L2
packet received from CE2
Optionally, a control word is added L2
Tunnel VC
Label C Label L2
Tunnel VC
Label B Label L2
Tunnel VC
Label A Label L2 L2
as well (not shown)

3. PE2 pushed outer (Tunnel) label Layer-2 P1 P2 Layer-2
CE1 Packet PE1 PE2 Packet CE2
and forwards packet to P2
4. P2 and P1 forward packet using
outer (tunnel) label (swap)
5. Router PE2 pops Tunnel label and,
based on VC label, L2 packet is
forwarded to customer interface to
CE1, after VC label is removed
In case control word is used, new
layer-2 header is generated first
51
Virtual Private LAN Services
Overview of VPLS Architecture
Architecture for Ethernet

Multipoint Services over Aachment
Circuit (AC)
Aachment
Circuit (AC)
MPLS
VPLS network acts like a CE

PE P P PE
CE
virtual switch that emulates Layer-2 Layer-2
conventional L2 bridge
Fully meshed or Hub- CE CE
Spoke topologies Layer-2 Layer-2

PE P P PE
supported
PE-CE link is referred to
Emulated Virtual Switch
as Attachment Circuit (AC)
Label Switched Trac
Always Ethernet
Pseudo-Wire
52
Virtual Private LAN Services (VPLS)
VPN policies
Virtual Switching Instance or VSI
One or more customer interfaces are connected to VSI
One or more PWs for interconnection with related VSI instances on remote PE
VPN signaling
Full mesh of targeted LDP* (VC exchange) and/or BGP sessions (discovery and VC exchange)
Virtual Connection (VC)-label negotiation, withdrawal, error notification
1 VC label used for encapsulation + 1 (IGP) label for forwarding
Inner de-multiplexer (VC) label: identifies VSI
Outer tunnel (IGP) label: to get from ingress to egress PE using MPLS LSP
PE-CE link
Referred to as Attachment Circuit (AC)
Ethernet VCs are either port mode or VLAN ID
* LDP is assumed as signaling protocol for next examples
53
VPLS Forwarding Plane Processing
Forwarding of Layer-2 Traffic Over VPLS Network
MAC learning:
For new L2 packets L2
Tunnel VSI
Label C Label L2
Tunnel VSI
Label B Label L2
Tunnel VSI
Label A Label L2 L2
VSI forwarding table updated

Packets flooded to all PEs PE P P PE
CE CE
over PWs
Layer-2 Layer-2
Layer-2 Packet Forwarding:
For L2 packets with known
destination MAC addresses CE CE
Lookup in VSI forwarding Layer-2

PE P P PE
Layer-2
table
L2 packet forwarded onto
PWs to remote PE/VSI Emulated Virtual Switch
Label Switched Trac

Full Mesh of Pseudo-Wires
54
Service Provider Deployment Scenario
PWs for Offering Layer-2 Business VPN Services
Deployment Use Case

Delivery of E-LINE Layer-2 VPN Service
services to business
customers Edge Core MPLS Core Edge
NID
Network
NID
Benefits Ethernet

Ethernet
xconnect xconnect
Leverage same network
for multiple services and
customers (CAPEX) Network Segment NID * Edge Core
Highly scalable MPLS Node CE U-PE P
Service enablement only Typical Platforms M3400 ME3800X CRS-1

requires edge node
configuration (OPEX) ASR901 ASR903 GSR
ASR9K ASR9K
* NID : Network Interface Device
55
Data Center Deployment Scenario
VPLS for Layer-2 Data Center Interconnect (DCI) Services Data Center
DC
Deployment Use Case Edge
E-LAN services for Data Data Center Core Core Edge

Center interconnect DC Data Center
Edge Edge
Benefits DC
Ethernet Edge
Single WAN uplink to
connect to multiple Core Core Edge
Ethernet
Data Centers
Easy implementation of
Network Segment DC Edge Core Edge
segmented layer-2 traffic
between Data Centers MPLS Node CE P PE
Typical Platforms ASR9K CRS-1 ASR9K

7600 GSR 7600
6500 ASR9K
56
Summary
Key Takeaways
L2VPNs enable transport of any Layer-2 traffic over MPLS network

L2 packets encapsulated into additional VC label
Both LDP and BGP can be used L2VPN signaling
PWs suited for implementing transparent point-to-point connectivity
between Layer-2 circuits (E-LINE services)
VPLS suited for implementing transparent point-to-multipoint connectivity
between Ethernet links/sites (E-LAN services)
Typical applications of L2VPNs are layer-2 business VPN services and
Data Center interconnect
57
Advanced Topics
Latest MPLS Technology Developments, Trends, and Futures
MPLS And IPv6
IPv6 Support for Native MPLS Deployments and MPLS Layer-3 Services
IPv6 traffic carried over IPv4

MPLS network IPv6 IPv4 MPLS IPv6
Encapsulation of IPv6 into

6PE P P 6PE
IPv4 LSP (6PE) CE CE
Encapsulation of IPv6 into

MPLS layer-3 VPN (6VPE)
Translation of IPv6 to IPv4 IPv6 IPv4 MPLS IPv6
at PE edge
6VPE P v6VPN P 6VPE
CE CE

59
Label Switched Multicast (LSM)
Point-to-Multi-Point MPLS Signaling and Connectivity
What is Label Switched Multicast?
Uni-Direconal
MPLS extensions to provide LSP
P2MP connectivity
RSVP extensions and multicast
MPLS / IP
LDP
IP/MPLS
Why Label-Switched Multicast?
Enables MPLS capabilities, which
can not be applied to IP multicast
traffic (e.g., FRR) P2MP or MP2MP
Benefits of Label-Switched LSP Tree
Multicast Label Switched

Efficient IP multicast traffic Mulcast (LSM)
forwarding IP/MPLS
Enables MPLS traffic protection and
BW control of IP multicast traffic
MPLS Transport Profile (TP)
Bi-Directional MPLS Tunnel Extensions For Transport Oriented Connectivity
What is MPLS TP?
Bi-Direconal
Point-to-point static LSPs which MPLS TP Tunnel
are co-routed
Bi-directional TP tunnel
Why MPLS TP? PE P P PE
CE CE
Migration of TDM legacy
networks often assume
continuation of connection-
oriented operations model
MPLS TP enables packet-based Transport
transport with connection-
oriented connectivity IP/MPLS MPLS-TP
Benefits of MPLS TP (LDP/RSVP-TE/BGP) (Stac/RSVP-TE)
Meets transport-oriented
operations requirements MPLS Forwarding
Enables seamless migration to
dynamic MPLS
61
Futures
New MPLS Developments on the Horizon
MPLS and Cloud

Integraon
VPN Data Center
Integraon
MPLS Transport
Evoluon
MPLS TP and GMPLS
Integraon
62
Summary
Final Notes and Wrap Up
Summary
Key Takeaways
Its all about labels
Label-based forwarding and protocol for label exchange
Best of both worlds L2 deterministic forwarding and scale/flexible L3 signaling
Key MPLS applications are end-to-end VPN services
Secure and scalable layer 2 and 3 VPN connectivity
MPLS supports advanced traffic engineering capabilities
QoS, bandwidth control, and failure protection
MPLS is a mature technology with widespread deployments
Defacto for most SPs, large enterprises, and increasingly in Data Centers
Ongoing technology evolution
IPv6, optimized video transport, TP transport evolution, and cloud integration
64
Consider MPLS When
Decision Criteria
Is there a need for network segmentation?

Segmented connectivity for specific locations, users, applications, etc.
Is there a need for flexible connectivity?
E.g., Flexible configuration of full-mesh or hub-and-spoke connectivity
Is there a need for implementing/supporting multiple (integrated) services?
Leverage same network for multiple services
Are there specific scale requirements?
Large number of users, customer routes, etc.
Is there a need for optimized network availability and performance?
Node/link protection, pro-active connectivity validation
Bandwidth traffic engineering and QoS traffic prioritization
65
References
Further Readings on MPLS Technology
Cisco Live 2012
MPLS Sessions
BRKMPL-1101 Introduction to MPLS
BRKMPL-2100 Deploying MPLS Traffic Engineering
BRKMPL-2101 Deploying MPLS-based Layer 2 Virtual Private Networks
BRKMPL-2102 Deploying MPLS-based IP VPNs
BRKMPL-2108 Global MPLS WAN Redesign Case Study
BRKMPL-2109 MPLS Solutions for Cloud Networking
BRKMPL-3101 Advanced Topics and Future Directions in MPLS
LTRMPL-2104 Implementing MPLS in Service Provider Networks: Introduction
LTRMPL-2105 Implementing MPLS in Service Provider Networks: Advanced
LTRMPL-2106 Enterprise Network Virtualization using IP and MPLS Technologies
TECMPL-3002 MPLS Transport Profile (MPLS-TP) - Enabling evolution of transport
networks
67
Terminology Reference
Acronyms Used in MPLS Reference Architecture
Terminology Description
AC Attachment Circuit. An AC Is a Point-to-Point, Layer 2 Circuit Between a CE and a PE.
AS Autonomous System (a Domain)
CoS Class of Service
ECMP Equal Cost Multipath
IGP Interior Gateway Protocol
LAN Local Area Network
LDP Label Distribution Protocol, RFC 3036.
LER Label Edge Router. An Edge LSR Interconnects MPLS and non-MPLS Domains.
LFIB Labeled Forwarding Information Base
LSP Label Switched Path
LSR Label Switching Router
NLRI Network Layer Reachability Information
P Router An Interior LSR in the Service Provider's Autonomous System
PE Router An LER in the Service Provider Administrative Domain that Interconnects the Customer Network and the Backbone Network.
PSN Tunnel Packet Switching Tunnel
68
Terminology Reference
Acronyms Used in MPLS Reference Architecture
Terminology Description
Pseudo-Wire A Pseudo-Wire Is a Bidirectional Tunnel" Between Two Features on a Switching Path.
PWE3 Pseudo-Wire End-to-End Emulation
QoS Quality of Service
RD Route Distinguisher
RIB Routing Information Base
RR Route Reflector
RT Route Target
RSVP-TE Resource Reservation Protocol based Traffic Engineering
VPN Virtual Private Network
VFI Virtual Forwarding Instance
VLAN Virtual Local Area Network
VPLS Virtual Private LAN Service
VPWS Virtual Private WAN Service
VRF Virtual Route Forwarding Instance
VSI Virtual Switching Instance
69
Further Reading
MPLS References at Cisco Press and cisco.com
http://www.cisco.com/go/mpls
http://www.ciscopress.com
MPLS and VPN Architectures Cisco Press
Jim Guichard, Ivan Papelnjak
Traffic Engineering with MPLS Cisco Press
Eric Osborne, Ajay Simha
Layer 2 VPN Architectures Cisco Press
Wei Luo, Carlos Pignataro, Dmitry Bokotey, and Anthony Chan
MPLS QoS Cisco Press
Santiago Alvarez
70
Complete Your Online
Session Evaluation
Give us your feedback and
you could win fabulous
prizes.
Winners announced daily.
Receive 20 Passport points
for each session evaluation
you complete.
Complete your session
evaluation online now (open
Dont forget to activate your
a browser through our
Cisco Live Virtual account for access to
wireless network to access
all session material, communities, and
our portal) or visit one of the on-demand and live activities throughout
Internet stations throughout the year. Activate your account at the
the Convention Center. Cisco booth in the World of Solutions or visit
www.ciscolive.com.
71
Presentation_ID 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public
Label Distribution Protocol For your
reference only
Overview
MPLS nodes need to exchange label information with each other
Ingress PE node (Push operation)
Needs to know what label to use for a given FEC to send packet to neighbor
Core P node (Swap operation)
Needs to know what label to use for swap operation for incoming labeled packets
Egress PE node (Pop operation)
Needs to tell upstream neighbor what label to use for specific FEC type LDP used for exchange of label
(mapping) information
Label Distribution Protocol (LDP)
Defined in RFC 3035 and RFC3036; updated by RFC5036
LDP is a superset of the Cisco-specific Tag Distribution Protocol
Note that, in addition LDP, also other protocols are being used for label information
exchange
Will be discussed later
73
reference only
Some More Details

Assigns, distributes, and installs (in forwarding) labels for prefixes advertised by unicast routing
protocols
OSPF, IS-IS, EIGRP, etc.
Also used for Pseudowire/PW (VC) signaling
Used for L2VPN control plane signaling
Uses UDP (port 646) for session discovery and TCP (port 646) for exchange of LDP messages
LDP operations
LDP Peer Discovery
LDP Session Establishment
MPLS Label Allocation, Distribution, and Updating MPLS forwarding
Information repositories used by LDP
LIB: Label Information Database (read/write)
RIB: Routing Information Database/routing table (read-only)
74
reference only
Operations Details
LDP startup
Local labels assigned to RIB MPLS Node A MPLS Node B
prefixes and stored in LIB
LDP Control Plane
Session Setup
Peer discovery and session RIB

LIB LIB
RIB
setup Label Binding

Exchange
Exchange of MPLS label

bindings LDP Interacons
with
MPLS Forwarding
Programming of MPLS
forwarding MPLS
Forwarding
CEF/MFI
MPLS
Forwarding
CEF/MFI
Based on LIB info

CEF/MFI updates
75
Why MPLS QoS For your
reference only
The Need for Differentiated Services
Typically different traffic types (packets) sent over MPLS networks

E.g., Web HTTP, VoIP, FTP, etc.
Not all traffic types/flows have the same performance requirements
Some require low latency to work correctly; e.g., video
MPLS QoS used for traffic prioritization to guarantee minimal traffic loss
and delay for high priority traffic
Involves packet classification and queuing
MPLS leverages mostly existing IP QoS architecture
Based on Differentiated Services (DiffServ) model; defines per-hop behavior
based on IP Type of Service (ToS) field
76
MPLS Uniform Mode For your
reference only
QoS Field Assignments in MPLS Network
End-to-end behavior:
Original IP DSCP value not
preserved CE CE
At ingress PE:
PE P P PE
IP DSCP value copied in
EXP value of MPLS label
EXP value changed in the MPLS
EXP 3
MPLS
EXP 2
MPLS core MPLS MPLS MPLS
EXP 3 EXP 3 EXP 2
Based on traffic load and IP DSCP IP IP IP IP IP
congestion 3 DSCP 3 DSCP 3 DSCP 3 DSCP 2 DSCP
2
At egress PE:
EXP value copied back into
IP DSCP value
77
MPLS Pipe Mode For your
reference only
Original IP DSCP is
preserved CE CE
At ingress PE:
PE P P PE
EXP value set based on
ingress classification
EXP changed in the MPLS MPLS
EXP 3
MPLS
EXP 2
MPLS
EXP 2
core MPLS MPLS MPLS MPLS
EXP 3 EXP 3 EXP 3 EXP 2
Based on traffic load and IP DSCP IP DSCP IP DSCP IP DSCP IP DSCP IP DSCP
3 3
congestion 3 3 3 3
At egress PE:
EXP value not copied back
into IP DSCP value
78
MPLS Short Pipe Mode For your
reference only
Original IP DSCP is
preserved CE CE
At ingress PE: PE P P PE
EXP value set based on
ingress classification
EXP changed in the MPLS MPLS
EXP 3
MPLS
EXP 2
core MPLS
EXP 3
MPLS
EXP 3
MPLS
EXP 2
Based on traffic load and IP DSCP IP DSCP IP DSCP IP DSCP IP DSCP IP DSCP
3 3 3 3 3 3
congestion
At egress PE:
Original IP DSCP value
used for QoS processing
79
Why MPLS Traffic Engineering? For your
reference only
Drivers for MPLS Traffic Management
Need for better utilization of available network bandwidth

Optimize traffic distribution throughout network
Network capacity management
Protection against link and node failures
Fast rerouting around failures to minimize (service) traffic loss
Optimize aggregate availability of network
Delivery of premium services and enhanced SLAs
Ability to support guaranteed high availability and bandwidth for services
Congestion in network due to changing traffic patterns
Optimize high bandwidth traffic flows; streaming video, database backup, etc.
80
The Problem with Shortest-Path Forwarding
Alternate Path Under Utilization As a Result of Least-Cost Routing
Some links are DS3, some

are OC-3 Node Next-Hop Cost
B B 10
Router A has 40M of traffic C C 10
for router F, 40M of traffic D

E
C
B
20
20
for router G F B 30
G B 30
Massive (44%) packet loss Router B Router F
at router Brouter E! OC-3

35 M
b Dr
ops
OC-3
Router A ! Router E
Changing to traffic Tra
c
DS3
Router G
b
80 M
forwarding to A->C->D->E OC-3
OC-3 DS3
wont help
Router C
DS3 Router D
81
How MPLS TE Solves the Problem For your
reference only
Optimized Path Computation Via Additional Costs Metrics
Router A sees all links

Router A computes paths
Node Next-Hop Cost
B B 10
on properties other than C

D
C
C
10
20
just shortest cost E B 20
F Tunnel 0 30
Creation of 2 tunnels G Tunnel 1 30
No link oversubscribed! Router B Router F
OC-3 OC-3
Router A Router E
DS3
b Router G
40 M
OC-3
OC-3 40 Mb DS3
Router C
DS3 Router D
82
TE Tunnel Signaling For your
reference only
RSVP Signaling of MPLS Connectivity
Tunnel signaled with TE extensions
to RSVP IP/MPLS
Head end
Soft state maintained with
downstream PATH messages
Soft state maintained with upstream
RESV messages L=16
Tail end
New RSVP objects RESV
LABEL_REQUEST (PATH) PATH
LABEL (RESV)
EXPLICIT_ROUTE Input Out Label,
TE LSP
RECORD_ROUTE (PATH/RESV) Label Interface
SESSION_ATTRIBUTE (PATH) 17 16, 0

LFIB populated using RSVP labels
allocated by RESV messages
83
MPLS Traffic Engineering For your
reference only
Technology Building Blocks
Link information Distribution*
ISIS-TE
Head end
OSPF-TE
Path Calculation (CSPF)* IP/MPLS
At head-end node
Path Setup (RSVP-TE)
Unidirectional forwarding traffic
down Tunnel
Auto-route
Static
PBR
CBTS / PBTS Mid-point Tail end
Forwarding Adjacency TE LSP
Tunnel select
* Oponal
84
Distribution of Link Information For your
reference only
Additional Metrics for Path Computation
Additional link characteristics
Interface address IP/MPLS
Neighbor address
Physical bandwidth
Maximum reservable bandwidth
Unreserved bandwidth
(at eight priorities)
TE metric
Administrative group (attribute flags)
IS-IS or OSPF flood link information TE Topology
database
TE nodes build a topology database
Not required if using off-line path
computation
85
Path Calculation For your
reference only
Calculation of Optimal Network Path, Based on Multiple Metrics
TE nodes can perform Find shortest path

constraint-based routing to R8 with 8Mbps
IP/MPLS
Constraints and topology R1
database as input to path 15

5
3
10 R8
computation 10
10
8
Shortest-path-first 10
algorithm ignores links not

meeting constraints
Tunnel can be signaled
once a path is found TE Topology
database
Not required if using offline

path computation n Link with insucient bandwidth
n Link with sucient bandwidth
86
TE Tunnel Signaling For your
reference only
End-to-end Signaling of TE Tunnel in MPLS Network
Tunnel signaled with TE extensions
to RSVP IP/MPLS
Head end
Soft state maintained with
downstream PATH messages
Soft state maintained with upstream
RESV messages L=16
Tail end
New RSVP objects RESV
LABEL_REQUEST (PATH) PATH
LABEL (RESV)
EXPLICIT_ROUTE Input Out Label,
TE LSP
RECORD_ROUTE (PATH/RESV) Label Interface
SESSION_ATTRIBUTE (PATH) 17 16, 0

LFIB populated using RSVP labels
allocated by RESV messages
87
Service Provider Deployment Scenario For your
reference only
Implementing Sub-Second Failure Protection Using MPLS TE FRR

Deployment Use Case
P MPLS P
Implementing sub-second PE

PE
CE CE
failure protection in MPLS
P P
core network

Benefits
Sub-second failover
protection against link Network Segment CPE Edge Core
failures in core network MPLS Node CE PE P

Can be less than 50 ms Typical Platforms ASR1K ASR9K CRS-1
Predictable traffic flows ISR/G2 7600 GSR
after core link failures ASR1K ASR9K
ASR903
ME3800X
88
MPLS Management For your
reference only
Overview
Basic CLI (Craft interface):
CLI used for basic configuration and trouble shooting (show commands)
Traditional management tools:
SNMP MIBs to provide management information for SNMP (NMS)
management applications
MIB counters, Trap notifications, etc.
New management tools:
MPLS OAM; used for reactive trouble shooting
LSP Ping and LSP Trace for trouble shooting MPLS label switched paths
Automated MPLS OAM; used for proactive trouble shooting
Automated LSP ping/trace via Auto IP SLA
89
Presentation_ID 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public

BRKMPL-1101 - 2012 - San Diego PDF

Загружено:

Сведения о документе

Оригинальное название

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

BRKMPL-1101 - 2012 - San Diego PDF

Загружено:

Авторское право:

Доступные форматы

Introduction to MPLS

Understand history and business drivers for MPLS

IP Native Ethernet MPLS

Destination address based Destination address based Label based

Ethernet Loop avoidance Routing Protocols

Packet Encapsulation IP Header 802.3 Header MPLS shim header

OAM IP ping, traceroute E-OAM MPLS OAM

Evolved from tag switching in 1996 to full IETF Optimize MPLS

Complete base MPLS portfolio

Bring MPLS to Market

First Large Scale

Large Scale Large Scale

Business Drivers Business Goals MPLS Capabilities

S Networking service reliability S Leverage single network for scalable

S Mergers and acquisitions S Network Segmentation

MPLS Labels Layer-3 VPNs Layer-2 VPNs

MPLS signaling and

MPLS MIBs and OAM

MPLS Traffic Engineering

CE (Customer Edge) router

encapsulation TC = Trac Class: 3 Bits; S = Boom of Stack; TTL = Time to Live

Boom of Stack Bit Set

Equivalence Class (FEC) L2/L3 Packet

Label swapping or switching CE PE

Leverages IP routing Destination address based Label based

Downstream MPLS node Packet

LDP signaling LDP RSVP

Initiated by head-end node

IP routing information Forwarding Table

Packets being 128.89

Lookup in routing table

Roung Updates (OSPF,

Each MPLS node

Local label mapping Forwarding Table Forwarding Table Forwarding Table

Use Label 30 for 128.89

Ingress PE node adds Forwarding Table Forwarding Table Forwarding Table

Via forwarding table - 128.89 1 20 20 128.89 0 30 30 128.89 0 -

Downstream node use

label for forwarding

Out label 128.89.25.4 Data 20 128.89.25.4 Data 1

Egress PE removes label

*Actual Time VariesWell Below 50 ms in Lab Tests, Can Also Be Higher

Definition of MPLS VPN

Basic MPLS VPN Layer-3 VPNs Layer-2 VPNs

MPLS MIBs and OAM

Exchange of VPN policies

VPN traffic forwarding CE

MPLS Layer-3 VPNs MPLS VPN Models

MPLS MIBs and OAM

Business VPN services

Virtual routing and forwarding

Typically, VRF created for each CE MPLS Backbone

Full mesh of BGP sessions

BGP Route Reflector Link Link

1. CE1 redistribute IPv4 route BGP adversement:

3. PE1 redistributes VPNv4 CE1

Deployment Use Case Managed VPN Service

Delivery of IP VPN services Unmanaged VPN Service

Deployment Use Case

Flexible routing; different IP ISR/G2 ASR1K GSR

Deployment Use Case MPLS VPNs terminang on DC aggregaon

Segmented WAN Layer-3 MPLS VPNs

MPLS Layer-3 VPNs provide IP connectivity among CE sites