Carrier Supp
QoS服务策略的band
Dec
24
Carrier Supporting Carrier(CSC)-Hierarchical MPLS VPNs 
在IP Only Customer Carrier和MPLS Enabled Customer Carrier中,并不是真正意义的层次化MPLS VPN结构,接下来我就说说层次化的VPN结构,在这个模型中Carrier网络给客户提供的是MPLS VPN接入,也就是说两个Carrier通过一级运营商的MPLS VPN连接起来后,他们又提供MPLS VPN接入。和前面两个模型不同的地方如下:
1、R6和R3为客户创建VRF vpna RD 1:1 RT 1:1
2、将连接客户的接口划到VRF中
3、在Carrier的两台路由器上R1与R3,R5与R6上启用MP-BGP,将路由相互发到VPN中
4、在R1与R5上分别配置MP-BGP的RR,将R3与R6作为VPN的客户端。
详细MPLS Lable表如下:
Rack1R3#traceroute vrf vpna 6.6.6.6
Type escape sequence to abort.
Tracing the route to 6.6.6.6
1 150.1.13.1 [MPLS: Labels 101/606 Exp 0] 812 msec 788 msec 1240 msec
2 150.1.12.2 [MPLS: Labels 202/606 Exp 0] 928 msec 1008 msec 600 msec
3 150.1.45.4 [MPLS: Labels 408/606 Exp 0] 584 msec 528 msec 896 msec
4 150.1.45.5 [MPLS: Labels 504/606 Exp 0] 992 msec 508 msec 492 msec
5 6.6.6.6 780 msec 1432 msec 1156 msec
Rack1R3#
Rack1R3#show mpls forwarding-table
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
300 101 150.1.6.6/32 0 Se1/2 point2point
301 103 150.1.5.5/32 0 Se1/2 point2point
302 Pop tag 150.1.1.1/32 0 Se1/2 point2point
303 Pop tag 150.1.12.0/24 0 Se1/2 point2point
304 102 150.1.56.0/24 0 Se1/2 point2point
305 104 150.1.45.0/24 0 Se1/2 point2point
306 Aggregate 3.3.3.3/32[V] 5104
Rack1R3#
Rack1R1#show mpls forwarding-table
Local Outgoing Prefix Bytes Label Outgoing Next Hop
Label Label or VC or Tunnel Id Switched interface
100 Pop Label 150.1.3.3/32 2352 Se2/1 point2point
101 202 150.1.6.6/32 4256 Se2/0 150.1.12.2
102 200 150.1.56.0/24 0 Se2/0 150.1.12.2
103 203 150.1.5.5/32 0 Se2/0 150.1.12.2
104 201 150.1.45.0/24 0 Se2/0 150.1.12.2
Rack1R1#
Rack1R2#show mpls forwarding-table
Local Outgoing Prefix Bytes Label Outgoing Next Hop
Label Label or VC or Tunnel Id Switched interface
200 407 150.1.56.0/24[V] 0 Fa0/0 150.1.24.4
201 401 150.1.45.0/24[V] 0 Fa0/0 150.1.24.4
202 408 150.1.6.6/32[V] 9414 Fa0/0 150.1.24.4
203 406 150.1.5.5/32[V] 14167 Fa0/0 150.1.24.4
204 Pop Label 150.1.4.4/32 0 Fa0/0 150.1.24.4
205 Aggregate 150.1.12.0/24[V] 0 AS1
206 100 150.1.3.3/32[V] 13880 Se2/0 150.1.12.1
208 Pop Label 150.1.1.1/32[V] 11135 Se2/0 150.1.12.1
214 Pop Label 150.1.13.0/24[V] 0 Se2/0 150.1.12.1
Rack1R2#
Rack1R4#show mpls for
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
400 Pop tag 150.1.2.2/32 0 Et0/0 150.1.24.2
401 Aggregate 150.1.45.0/24[V] 0
403 205 150.1.12.0/24[V] 0 Et0/0 150.1.24.2
405 208 150.1.1.1/32[V] 13889 Et0/0 150.1.24.2
406 Pop tag 150.1.5.5/32[V] 14618 Se1/0.1 point2point
407 Pop tag 150.1.56.0/24[V] 0 Se1/0.1 point2point
408 504 150.1.6.6/32[V] 13736 Se1/0.1 point2point
409 206 150.1.3.3/32[V] 14082 Et0/0 150.1.24.2
410 214 150.1.13.0/24[V] 0 Et0/0 150.1.24.2
Rack1R4#
Rack1R5#show mpls forwarding-table
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
500 405 150.1.1.1/32 0 Se1/0.1 point2point
501 409 150.1.3.3/32 5384 Se1/0.1 point2point
502 403 150.1.12.0/24 0 Se1/0.1 point2point
503 410 150.1.13.0/24 0 Se1/0.1 point2point
504 Pop tag 150.1.6.6/32 4286 Et0/0 150.1.56.6
Rack1R5#
Rack1R6#show mpls for
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
600 Pop tag 150.1.5.5/32 0 Et0/0 150.1.56.5
601 501 150.1.3.3/32 0 Et0/0 150.1.56.5
602 500 150.1.1.1/32 0 Et0/0 150.1.56.5
603 503 150.1.13.0/24 0 Et0/0 150.1.56.5
604 502 150.1.12.0/24 0 Et0/0 150.1.56.5
605 Pop tag 150.1.45.0/24 0 Et0/0 150.1.56.5
606 Aggregate 6.6.6.6/32[V] 4744
Rack1R6#
Rack1R6#traceroute vrf vpna 3.3.3.3
Type escape sequence to abort.
Tracing the route to 3.3.3.3
1 150.1.56.5 [MPLS: Labels 501/306 Exp 0] 528 msec 828 msec 984 msec
2 150.1.24.4 [MPLS: Labels 409/306 Exp 0] 2060 msec 1032 msec 920 msec
3 150.1.12.2 [MPLS: Labels 206/306 Exp 0] 848 msec 1004 msec 928 msec
4 150.1.12.1 [MPLS: Labels 100/306 Exp 0] 664 msec 544 msec 604 msec
5 3.3.3.3 1092 msec 1224 msec 384 msec
Rack1R6#
作者:Tony Liu(admin#myccie.net)
地址:http://myccie.net/read.php?104
版权所有。转载时必须链接形式注明作者和原始出处及本声明!
1、R6和R3为客户创建VRF vpna RD 1:1 RT 1:1
2、将连接客户的接口划到VRF中
3、在Carrier的两台路由器上R1与R3,R5与R6上启用MP-BGP,将路由相互发到VPN中
4、在R1与R5上分别配置MP-BGP的RR,将R3与R6作为VPN的客户端。
详细MPLS Lable表如下:
Rack1R3#traceroute vrf vpna 6.6.6.6
Type escape sequence to abort.
Tracing the route to 6.6.6.6
1 150.1.13.1 [MPLS: Labels 101/606 Exp 0] 812 msec 788 msec 1240 msec
2 150.1.12.2 [MPLS: Labels 202/606 Exp 0] 928 msec 1008 msec 600 msec
3 150.1.45.4 [MPLS: Labels 408/606 Exp 0] 584 msec 528 msec 896 msec
4 150.1.45.5 [MPLS: Labels 504/606 Exp 0] 992 msec 508 msec 492 msec
5 6.6.6.6 780 msec 1432 msec 1156 msec
Rack1R3#
Rack1R3#show mpls forwarding-table
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
300 101 150.1.6.6/32 0 Se1/2 point2point
301 103 150.1.5.5/32 0 Se1/2 point2point
302 Pop tag 150.1.1.1/32 0 Se1/2 point2point
303 Pop tag 150.1.12.0/24 0 Se1/2 point2point
304 102 150.1.56.0/24 0 Se1/2 point2point
305 104 150.1.45.0/24 0 Se1/2 point2point
306 Aggregate 3.3.3.3/32[V] 5104
Rack1R3#
Rack1R1#show mpls forwarding-table
Local Outgoing Prefix Bytes Label Outgoing Next Hop
Label Label or VC or Tunnel Id Switched interface
100 Pop Label 150.1.3.3/32 2352 Se2/1 point2point
101 202 150.1.6.6/32 4256 Se2/0 150.1.12.2
102 200 150.1.56.0/24 0 Se2/0 150.1.12.2
103 203 150.1.5.5/32 0 Se2/0 150.1.12.2
104 201 150.1.45.0/24 0 Se2/0 150.1.12.2
Rack1R1#
Rack1R2#show mpls forwarding-table
Local Outgoing Prefix Bytes Label Outgoing Next Hop
Label Label or VC or Tunnel Id Switched interface
200 407 150.1.56.0/24[V] 0 Fa0/0 150.1.24.4
201 401 150.1.45.0/24[V] 0 Fa0/0 150.1.24.4
202 408 150.1.6.6/32[V] 9414 Fa0/0 150.1.24.4
203 406 150.1.5.5/32[V] 14167 Fa0/0 150.1.24.4
204 Pop Label 150.1.4.4/32 0 Fa0/0 150.1.24.4
205 Aggregate 150.1.12.0/24[V] 0 AS1
206 100 150.1.3.3/32[V] 13880 Se2/0 150.1.12.1
208 Pop Label 150.1.1.1/32[V] 11135 Se2/0 150.1.12.1
214 Pop Label 150.1.13.0/24[V] 0 Se2/0 150.1.12.1
Rack1R2#
Rack1R4#show mpls for
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
400 Pop tag 150.1.2.2/32 0 Et0/0 150.1.24.2
401 Aggregate 150.1.45.0/24[V] 0
403 205 150.1.12.0/24[V] 0 Et0/0 150.1.24.2
405 208 150.1.1.1/32[V] 13889 Et0/0 150.1.24.2
406 Pop tag 150.1.5.5/32[V] 14618 Se1/0.1 point2point
407 Pop tag 150.1.56.0/24[V] 0 Se1/0.1 point2point
408 504 150.1.6.6/32[V] 13736 Se1/0.1 point2point
409 206 150.1.3.3/32[V] 14082 Et0/0 150.1.24.2
410 214 150.1.13.0/24[V] 0 Et0/0 150.1.24.2
Rack1R4#
Rack1R5#show mpls forwarding-table
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
500 405 150.1.1.1/32 0 Se1/0.1 point2point
501 409 150.1.3.3/32 5384 Se1/0.1 point2point
502 403 150.1.12.0/24 0 Se1/0.1 point2point
503 410 150.1.13.0/24 0 Se1/0.1 point2point
504 Pop tag 150.1.6.6/32 4286 Et0/0 150.1.56.6
Rack1R5#
Rack1R6#show mpls for
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
600 Pop tag 150.1.5.5/32 0 Et0/0 150.1.56.5
601 501 150.1.3.3/32 0 Et0/0 150.1.56.5
602 500 150.1.1.1/32 0 Et0/0 150.1.56.5
603 503 150.1.13.0/24 0 Et0/0 150.1.56.5
604 502 150.1.12.0/24 0 Et0/0 150.1.56.5
605 Pop tag 150.1.45.0/24 0 Et0/0 150.1.56.5
606 Aggregate 6.6.6.6/32[V] 4744
Rack1R6#
Rack1R6#traceroute vrf vpna 3.3.3.3
Type escape sequence to abort.
Tracing the route to 3.3.3.3
1 150.1.56.5 [MPLS: Labels 501/306 Exp 0] 528 msec 828 msec 984 msec
2 150.1.24.4 [MPLS: Labels 409/306 Exp 0] 2060 msec 1032 msec 920 msec
3 150.1.12.2 [MPLS: Labels 206/306 Exp 0] 848 msec 1004 msec 928 msec
4 150.1.12.1 [MPLS: Labels 100/306 Exp 0] 664 msec 544 msec 604 msec
5 3.3.3.3 1092 msec 1224 msec 384 msec
Rack1R6#
相关日志
IP Sec和SSL VPN
Cisco ASA K8升级K9(DES-3DES/AES)
Creating Site-to-Site VPNs with Pre-Shared Keys
ASA Site-to-Site VPN基本配置
ASA WebVPN基本配置
IP Sec和SSL VPN
Cisco ASA K8升级K9(DES-3DES/AES)
Creating Site-to-Site VPNs with Pre-Shared Keys
ASA Site-to-Site VPN基本配置
ASA WebVPN基本配置
作者:Tony Liu(admin#myccie.net)
地址:http://myccie.net/read.php?104
版权所有。转载时必须链接形式注明作者和原始出处及本声明!
, Skin by