MPLS designMassimiliano Sbaraglia

INDICE

- MPLS layer 2 VPN diagram flowchart- MPLS layer 2 VPN pseudowire VPWS diagram- MPLS layer 2 VPN VPLS diagram- MPLS layer 2 EVPN diagram- MPLS layer 3 VPN diagram protocols- MPLS layer 3 VPN Hub and Spoke diagram

!- MPLS SeamLess model diagram 1- MPLS SeamLess model diagram 2- MPLS SeamLess model diagram 3- MPLS SeamLess model diagram 4- MPLS SeamLess model diagram 5

MPLS layer 2 VPN diagram flowchart

L2 VPN

VPWS VPLS

Point-to-Point Multi-Point Services

Virtual Private Wire Services Virtual Private Lan Services

FrameRelay

ATMAAL5

PPPHDLC

Ethernet Ethernetcircuit layer 2 payload carrier

MPLS layer 2 VPN Pseudowire VPWS diagram

Sw1

Sw2

LAN RED

LAN PINK

PE1 PE2PMPLS + LDP or RSVP MPLS + LDP or RSVP

LSP Label Switched Path

pseudowire red

pseudowire pink

LAN RED

LAN PINK

ETH circuitETH circuit

ETH circuit ETH circuit

Only one Egress Point to Pseudowire

No need MAC address to Pseudowire binding

No Loop prevention because we have P2P connection

Sw3

Sw4

MPLS layer 2 VPN VPLS diagram

LAN RED

LAN PINK

PE1

ETH circuit

ETH circuit

PE2

PE3

LAN RED

LAN PINK

ETH circuit

ETH circuit

PW-12 RED

PW-13 RED PW-23 RED

PW-12 PINK

PW-13 PINK

PW-23 PINK

MPLS VPLS Backbone

LAN RED LAN PINK

ETHcircuit

ETHcircuit

Need MAC address to Pseudowire binding

PE keep MAC address of the customer learned via data-plane

Full-Mesh Pseudowire is necessary

VFI

VFI

VFI

VFI VFI

VFI

VFI

VFI

VFI

VFIVFI

VFI

VFI = Virtual Forwardind Instance

NO STP in the Core MPLS Services Provider

Loop Prevention via Split-Horizon rule (enable by default on the Core Network)

Learning of PE in the same VPN is possible via «auto-discovery» if the number of PE is too much high; auto-discovery is achivied via radius server or via BGP Kompella signaling

MPLS layer 2 EVPN diagram

PE1 PE2

PE3PE4

LAN REDMPLS + MP-BGP

MPLS + MP-BGPMPLS + MP-BGP

VPLS not permitted active-active flow based

Customer can be dual-homed to the same or different PE with either links used on active-standby mode for all vlan or Vlan-based load balanced can be achivied

EVPN support active-active flow-based load balancing and the same vlan can be used on both PE devices actively

EVPN support fast convergence in customer links, PE links and/or node failure scenario

ETH circuitMAC address learned via Data Plane

MAC addresses are advertised over MP-BGPControl Plane ETH circuit

MAC address learned via Data Plane

MPLS layer 3 VPN diagram

PE1 PE2PMPLS + LDP or RSVP MPLS + LDP or RSVP

CE1 CE2

IGP or BGP or static IGP or BGP or static

VPN-A

VPN-B

LSP Label Switched Path

VRF-A VRF-A

IPv4 unicast address family

VPNv4 unicast address family

MDT Multicast address family via GRE tunnels

IPv6 address family

MP-iBGP (Router Reflecor)

QoS

VRF-A VRF-A

Inner-Label (BGP Label)

RD Route Distinguisher (customer address prefix)

RT Route Target (import-export VRF Leaking))

Egress-Label (TopMost Label)

MPLS Backbone

IGP routing

VPN-A

VPN-B

VRF-B VRF-B

Inner-Label (BGP Label) Egress-Label (TopMost Label)

VRF-B VRF-B

MPLS layer 3 VPN Hub and Spoke diagram

PE1 PE2

PE3

HUB

Spoke1Spoke2

MPLS LSP

MPLS LSP MPLS LSP

VPN-AVPN-B

VPN-C

VRF-ART A

VRF-BRT B

VRF-CRT C

import RT A

import RT B

import RT C import RT C

VRF AVRF BTo HUB

VRF CTo SPOKE

On Hub and Spoke different RT value are configured

Hub imports all the Spokes RT value

Spokes imports the Hub RT value but not the other Spokes RT value

SEAMLESS MPLS model diagram 1

MPLS + LDP + IGP

SEAMLESS MPLS Domain

NO MPLSIP EthernetTDM based

NO MPLSIP EthernetTDM based

MPLS + LDP + IGP

LSP label switched path

Core Level

AggregationLevel

AggregationLevel

With Single AS multi-area Seamless MPLS, IBGP labeled unicast is used to build inter-domain LSP

With Inter AS Seamless MPLS, IBGP labeled unicast is used to build inter-domain LSP inside the AS

EBGP labeled unicast is used to extend the end-to-end LSP across the AS boundary

NO hierarchical BGP LSP (BGP Labeled RFC 3107)

Access Domain Access Domain

Compatible with small network of core-aggregation node integrated in a single IGP/LDP domain (less than 500 or 1000 nodes)

AGGR CORE AGGR

SEAMLESS MPLS model diagram 2

MPLS + LDP + IGP

SEAMLESS MPLS Domain

MPLS + LDP + IGP

LSP label switched path

Core Level

AggregationLevelABR rules with BGP NHS

AggregationLevelABR rules with BGP NHS

With Single AS multi-area Seamless MPLS, IBGP labeled unicast is used to build inter-domain LSP

With Inter AS Seamless MPLS, IBGP labeled unicast is used to build inter-domain LSP inside the AS

EBGP labeled unicast is used to extend the end-to-end LSP across the AS boundary

Access Level Access

Level

MPLS + LDP + IGP

LSP label switched path

Hierarchical IBGP LSP label switched path

BGP + Label (RFC3107) BGP + Label (RFC3107)

Different IGP from Aggregation Core DomainEs. other area OSPF or different process IGP

MPLS + LDP + IGP

LSP label switched path

Compatible with small network of core-aggregation node integrated in a single IGP/LDP domain (less than 500 or 1000 nodes)

Different IGP from Aggregation Core DomainEs. other area OSPF or different process IGP

AGGR AGGRCOREACCACC

SEAMLESS MPLS model diagram 3

MPLS + LDP + IGP

LSP label switched path

Core LevelABR rules with BGP NHS

AggregationLevel

AggregationLevel

Access Level

Access Level

Hierarchical IBGP LSP label switched path

Core LevelABR rules with BGP NHS

NO MPLSIP EthernetTDM based

NO MPLSIP EthernetTDM based

MPLS + LDP + IGP MPLS + LDP + IGP

LSP label switched path LSP label switched path

BGP + Label (RFC3107)BGP + Label (RFC3107)

single AS multi-areaor Inter-AS

single AS multi-areaor Inter-AS

Different IGP from Core DomainEs. other area OSPF or different process IGP

Different IGP from Core DomainEs. other area OSPF or different process IGP

SEAMLESS MPLS Domain

single AS multi-areaor Inter-AS

AGGR AGGRCORE COREACC ACC

SEAMLESS MPLS model diagram 4

MPLS + LDP + IGP

LSP label switched path

Core LevelABR rules with BGP NHS

Aggregation LevelABR with BGP NHP

Aggregation LevelABR rules with BGP NHSAccess

Level

Access Level

Hierarchical IBGP LSP label switched path

Core LevelABR rules with BGP NHS

MPLS + LDP + IGP MPLS + LDP + IGP

LSP label switched path LSP label switched path

BGP + Label (RFC3107)BGP + Label (RFC3107)

single AS multi-areaor Inter-AS

single AS multi-areaor Inter-AS

Different IGP than other DomainEs. other area OSPF or different process IGP

SEAMLESS MPLS Domain

MPLS + LDP + IGP MPLS + LDP + IGP

BGP + Label (RFC3107)

LSP label switched path LSP label switched path

BGP + Label (RFC3107)

Different IGP than other DomainEs. other area OSPF or different process IGP

Different IGP than other DomainEs. other area OSPF or different process IGP

Different IGP than other DomainEs. other area OSPF or different process IGP

single AS multi-areaor Inter-AS single AS multi-area

or Inter-AS

Different IGP than other DomainEs. other area OSPF or different process IGP

single AS multi-areaor Inter-AS

ACC ACCAGGR AGGRCORE CORE

SEAMLESS MPLS model diagram 5

MPLS + LDP + IGP

LSP label switched path

Core LevelABR rules with BGP NHS

Aggregation LevelABR with BGP NHP

Aggregation LevelABR rules with BGP NHS

Access Level

Access Level

Hierarchical IBGP LSP label switched path

Core LevelABR rules with BGP NHS

MPLS + LDP + IGP MPLS + LDP + IGP

LSP label switched path LSP label switched path

BGP + Label (RFC3107)BGP + Label (RFC3107)

single AS multi-areaor Inter-AS

single AS multi-areaor Inter-AS

Different IGP than other DomainEs. other area OSPF or different process IGP

SEAMLESS MPLS Domain

MPLS + LDP + IGP MPLS + LDP + IGP

LSP label switched path LSP label switched path

Different IGP than other DomainEs. other area OSPF or different process IGP

Different IGP than other DomainEs. other area OSPF or different process IGP

single AS multi-areaor Inter-AS

NO BGP NO BGP

Loopback access addresses areredistributed into the network domain

Loopback access addresses areredistributed into the network domain

redistributionredistribution

redistribution redistribution

CORE COREAGGR AGGRACC ACC