Escolar Documentos
Profissional Documentos
Cultura Documentos
Provider's IP Backbone
Luyuan Fang
luyuanfang@att.com
AT&T
L. Fang
Outline
!
!
Scalability
VPN security
Load sharing between PE-CE links
L. Fang
Provisioning
Performance
Fault Management
49th IETF, San Diego, CA, December 2000
L. Fang
BGP/MPLS VPN
Configuration:
VPN Red
X1
CE1
PE1
CE2
Y1
CE3
VPN Red
P1
PE3
X2
CE5
CE4
P4
P3
L. Fang
Y1
VPN Red
VPN Green
X1
VPN Green
PE4
VPN Green
Y2
CE6
4
VPN A
P2
PE1
PE2
VPN A
X
CE1
Y
PE3
P1
CE2
P4
PE4
P3
Advantage: simplicity
Consider: availability of LDP
49th IETF, San Diego, CA, December 2000
Using RSVP TE Tunnel through Multi OSPF areas (PE-PE) for setting up the
LSP, with back-up tunnel for failure protection
RSVP tunnels are unidirectional, alternative path can be taken for each
direction
VPN enabled on VPN PE routers
VPN A
X
P2
PE1
CE1
PE3
OSPF area A
P1
PE2
CE2
P4
P3
OSPF area 0
VPN A
Y
PE4
OSPF area B
L. Fang
!
!
P2
PE1
CE1
PE3
P1
P5
OSPF area 0
VPN A
CE2
P4
P3
OSPF area A
PE2
PE4
OSPF area B
L. Fang
Multi-vendor inter-operability
!
!
!
L. Fang
Scalability
!
!
Multi-AS inter-working
!
L. Fang
Security
!
!
!
L. Fang
Performance
!
LSR MIB, VPN MIB, MBGP MIB, RSVP TE MIB,TDP MIB, FTN
MIB,
Security
49th IETF, San Diego, CA, December 2000
10
Fault management
!
!
Example:
P2
PE1
VPN A
CE1
PE3
P1
PE2
CE2
P4
P3
VPN A
Y
PE4
Config: LDP in the core for all P and PE router; IGP: OSPF; iBGP full mesh between PEs
LSP: OSPF shortest path: PE1-P1-P3-P4-PE2; no TE tunnels.
Problem: All links and nodes are up, but P3 label switching fails. LSP failure results in VPN failure.
Solution required: PE1 and PE2 to to be notified of the LSP failure
LSP needs to be re-established through recovery mechanism, force LSP <> OSPF path
L. Fang
11
Summary
!
Deployment Challenges
!
!
!
L. Fang
12