Home > BOOTCAMP, MPLS > HARI 5 MPLS

HARI 5 MPLS

December 8, 2011 Leave a comment Go to comments

Issue mamakai MPLS  adalah scalability , bisa banyak IP lan yang sama ( beda VRF ) , bisa melewatkan protocol apapun ( FR, Ethernet, IP : BGP, STatik , OSPF dsb ) , dan tidak memerlukan routing lookup.

Tahap setting : set IGP  , set BGP ( MP-BGP) , dan MPLS .

*******************

Lab 1 – MPLS Backbone
Lab 2 – MPLS VPN
Lab 3 – MPLS VPN – PE CE Static Routing
Lab 4 – MPLS VPN – PE CE RIP Routing
Lab 5 – MPLS VPN – PE CE EIGRP Routing
Lab 6 – MPLS VPN – PE CE BGP Routing
Lab 7 – MPLS VPN – PE CE OSPF Routing
Lab 8 – MPLS VPN – PE CE OSPF – Shamlink
Lab 9 – MPLS VPN – AToM – Frame Relay
Lab 10 – MPLS VPN – AToM – VLAN Ethernet 1
Lab 11 – MPLS VPN – AToM – VLAN Ethernet 2
Lab 12 – MPLS VPN – AToM – Ethernet Dot1q
Lab 13 – MPLS VPN – AToM – PPP

****************

LAB 1 – MPLS Backbone


Scenario :  mengaktifkan mpls , setting IGP di P , PE , setting BGP di PE dan set Vrf di PE ( LAB 2)

Konfig IP

P

interface Loopback0

 ip address 10.10.10.10 255.255.255.255

interface FastEthernet0/0

 ip address 192.168.10.2 255.255.255.252

interface FastEthernet0/1

 ip address 192.168.20.1 255.255.255.252

PE1

interface Loopback0

 ip address 10.10.10.1 255.255.255.255

interface FastEthernet0/0

 description –LINK TO P ROUTER–

 ip address 192.168.10.1 255.255.255.252

interface FastEthernet0/1

 description –LINK BCA.KIRI–

 ip vrf forwarding BCA.KIRI

 ip address 192.168.0.1 255.255.255.252

 PE2

interface Loopback0

 ip address 10.10.10.2 255.255.255.255

interface FastEthernet0/0

 ip address 192.168.20.2 255.255.255.252

mpls ip

interface FastEthernet0/1

 description –LINK BCA.KANAN–

 ip vrf forwarding BCA.KANAN

 ip address 192.168.0.2 255.255.255.252

konfig IGP dalam hal ini dipakai OSPF

P

router ospf 1

 log-adjacency-changes

 network 10.10.10.10 0.0.0.0 area 0

 network 192.168.10.2 0.0.0.0 area 0

 network 192.168.20.1 0.0.0.0 area 0

PE1

router ospf 1

 log-adjacency-changes

 network 10.10.10.1 0.0.0.0 area 0

 network 192.168.10.1 0.0.0.0 area 0

PE 2

router ospf 1

 log-adjacency-changes

 network 10.10.10.2 0.0.0.0 area 0

 network 192.168.20.2 0.0.0.0 area 0

 

Mengaktifkan MPLS di P dan PE :

P

interface FastEthernet0/0

mpls ip

interface FastEthernet0/1

  mpls ip

PE1

interface FastEthernet0/0

mpls ip

PE2

interface FastEthernet0/0

mpls ip

 

Verifikasi :

PE1

Gateway of last resort is not set

 

     192.168.10.0/30 is subnetted, 1 subnets

C       192.168.10.0 is directly connected, FastEthernet0/0

     192.168.20.0/30 is subnetted, 1 subnets

O       192.168.20.0 [110/20] via 192.168.10.2, 00:07:09, FastEthernet0/0

     10.0.0.0/32 is subnetted, 3 subnets

O       10.10.10.10 [110/11] via 192.168.10.2, 00:07:09, FastEthernet0/0

O       10.10.10.2 [110/21] via 192.168.10.2, 00:07:09, FastEthernet0/0

C       10.10.10.1 is directly connected, Loopback0

PE1(config-if)#do sh ip bgp sum

BGP router identifier 10.10.10.1, local AS number 65000

BGP table version is 1, main routing table version 1

 

PE1#sh ip bgp sum

BGP router identifier 10.10.10.1, local AS number 65000

BGP table version is 1, main routing table version 1

 

Neighbor        V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd

10.10.10.2      4 65000      18      19        1    0    0 00:17:37        0

PE1#

PE2

 

PE2#sh ip route

Codes: C – connected, S – static, R – RIP, M – mobile, B – BGP

       D – EIGRP, EX – EIGRP external, O – OSPF, IA – OSPF inter area

       N1 – OSPF NSSA external type 1, N2 – OSPF NSSA external type 2

       E1 – OSPF external type 1, E2 – OSPF external type 2

       i – IS-IS, su – IS-IS summary, L1 – IS-IS level-1, L2 – IS-IS level-2

       ia – IS-IS inter area, * – candidate default, U – per-user static route

       o – ODR, P – periodic downloaded static route

 

Gateway of last resort is not set

 

     192.168.10.0/30 is subnetted, 1 subnets

O       192.168.10.0 [110/20] via 192.168.20.1, 00:17:87, FastEthernet0/0

     192.168.20.0/30 is subnetted, 1 subnets

C       192.168.20.0 is directly connected, FastEthernet0/0

     10.0.0.0/32 is subnetted, 3 subnets

O       10.10.10.10 [110/11] via 192.168.20.1, 00:17:87, FastEthernet0/0

C       10.10.10.2 is directly connected, Loopback0

O       10.10.10.1 [110/21] via 192.168.20.1, 00:17:87, FastEthernet0/0

Sh ip bgp sum

BGP table version is 1, main routing table version 1

 

Neighbor        V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd

10.10.10.1      4 65000      19      20        1    0    0 00:16:32        0

PE2#

 

Neighbor        V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd

10.10.10.2      4 65000      59      60        0    0    0 00:55:49 (NoNeg)

 

PE2#sh mpls forwarding-table

Local  Outgoing    Prefix            Bytes tag  Outgoing   Next Hop

tag    tag or VC   or Tunnel Id      switched   interface

16     Pop tag     192.168.10.0/30   0          Fa0/0      192.168.20.1

17     16          10.10.10.1/32     0          Fa0/0      192.168.20.1

18     Pop tag     10.10.10.10/32    0          Fa0/0      192.168.20.1

 

PE1#ping 10.10.10.10 so lo 0

 

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 10.10.10.10, timeout is 2 seconds:

Packet sent with a source address of 10.10.10.1

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 4/32/88 ms

PE1#ping 10.10.10.2

 

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 10.10.10.2, timeout is 2 seconds:

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 12/61/176 ms

PE1#ping 10.10.10.2 so lo 0

 

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 10.10.10.2, timeout is 2 seconds:

Packet sent with a source address of 10.10.10.1

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 12/74/164 ms

PE1#

********************************

 

LAB 2 MPLS VPN

SKENARIO :

Pada PE : Create VRF , konfigur IP address dan Vrf menuju CE , mengaktifkan MP-BGP , menambah routing PE – CE

Pada CE : configure IP dan default GW

ip vrf BCA.KIRI

 rd 65000:2

 route-target export 65000:2

 route-target import 65000:2

ip vrf BRI.KIRI

 rd 65000:1

 route-target export 65000:1

 route-target import 65000:1

 

PE2

ip vrf BCA.KANAN

 rd 65000:2

 route-target export 65000:2

 route-target import 65000:2

ip vrf BRI.KANAN

 rd 65000:1

 route-target export 65000:1

 route-target import 65000:1

 

PE2

E2(config-router)#address-family vpnv4

PE2(config-router-af)#neighbor 10.10.10.1 activate

*Mar  1 00:20:11.871: %BGP-5-ADJCHANGE: neighbor 10.10.10.1 Down Address family activated

*Mar  1 00:20:15.487: %BGP-5-ADJCHANGE: neighbor 10.10.10.1 Up

PE2(config-router-af)#do sh run | s bgp

router bgp 65000

 no synchronization

 bgp log-neighbor-changes

 neighbor 10.10.10.1 remote-as 65000

 neighbor 10.10.10.1 update-source Loopback0

 no auto-summary

 !

 address-family vpnv4

  neighbor 10.10.10.1 activate

  neighbor 10.10.10.1 send-community extended

 exit-address-family

—————–

 

PE1>ena

PE1#sh ip vrf

  Name                             Default RD          Interfaces

  BCA.KIRI                         65000:2             Fa0/1

  BRI.KIRI                         65000:1             Fa1/0

 

 

PE1#sh ip vrf interface

Interface              IP-Address      VRF                              Protocol

Fa0/1                  192.168.0.1     BCA.KIRI                         up

Fa1/0                  192.168.0.1     BRI.KIRI                         up

 

PE 2

 

PE2#sh ip vrf

  Name                             Default RD          Interfaces

  BCA.KANAN                        65000:2             Fa0/1

  BRI.KANAN                        65000:1             Fa1/0

PE2#sh ip vrf interface

Interface              IP-Address      VRF                              Protocol

Fa0/1                  192.168.0.5     BCA.KANAN                        up

Fa1/0                  192.168.0.5     BRI.KANAN                        up

 

*************************

Lab 3 MPLS VPN – CE PE Static Routing

SKENARIO : MPLS dengan konfigurasi PE dan CE memakai routing static

PE1

 

 address-family ipv4 vrf BRI.KIRI

  redistribute connected

  redistribute static

 address-family ipv4 vrf BCA.KIRI

  redistribute connected

  redistribute static

ip forward-protocol nd

ip route vrf BCA.KIRI 10.0.0.1 255.255.255.255 192.168.0.2

ip route vrf BRI.KIRI 10.0.0.1 255.255.255.255 192.168.0.2

PE2

 address-family ipv4 vrf BRI.KANAN

  redistribute connected

  redistribute static

address-family ipv4 vrf BCA.KANAN

  redistribute connected

  redistribute static

 

ip route vrf BCA.KANAN 10.0.0.2 255.255.255.255 192.168.0.6

ip route vrf BRI.KANAN 10.0.0.2 255.255.255.255 192.168.0.6

 

 

 Ping dari CE

BCA-KIRI#ping 10.0.0.2

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 10.0.0.2, timeout is 2 seconds:

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 100/346/688 ms

 Ping VRF BRI.KANAN ke 10.0.0.1 ( BRI.KIRI)

PE2#ping vrf BRI.KANAN 10.0.0.1

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 10.0.0.1, timeout is 2 seconds:

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 204/384/572 ms

 **********************************
LAB 4 MPLS VPN – PE CE EIGRP Routing

Note : redistribute bgp 65000 metric transparent | transparent jika ujung CE lainnya bukan RIP, lebih baik di define saja.

PE1

router rip
version 2
!
address-family ipv4 vrf BRI-KIRI
redistribute bgp 65000 metric transparent
network 192.168.0.0
no auto-summary
exit-address-family

router bgp 65000
address-family ipv4 vrf BRI-KIRI
redistribute rip
no synchronization
exit-address-family

PE2
router rip
version 2
!
address-family ipv4 vrf BRI-KANAN
redistribute bgp 65000 metric transparent
network 192.168.0.0
no auto-summary
exit-address-family

router bgp 65000
address-family ipv4 vrf BRI-KANAN
redistribute rip
no synchronization
exit-address-family

R7

R7(config)#router rip
version 2
net 10.0.0.0
net 192.168.0.0
no auto

Verifikasi
R7#sh ip route
10.0.0.0/32 is subnetted, 2 subnets
C 10.0.0.7 is directly connected, Loopback0
R 10.0.0.5 [120/5] via 192.168.0.5, 00:00:00, FastEthernet0/0
192.168.0.0/30 is subnetted, 2 subnets
R 192.168.0.0 [120/5] via 192.168.0.5, 00:00:00, FastEthernet0/0
C 192.168.0.4 is directly connected, FastEthernet0/0

*************************************
LAB 5 MPLS VPN – PE CE EIGRP Routing

Note : be aware dg metric dan AS redistribusi

PE1 :

router eigrp 65000
address-family ipv4 vrf BRI-KIRI
PE1(config-router-af)#net 192.168.0.0
PE1(config-router-af)#redistribute bgp 65000 metric 1 1 1 1 1
PE1(config-router-af)#autonomous-system 100
PE1(config-router-af)#end

PE1#conf t
router bgp 65000
address-family ipv4 vrf BRI-KIRI
PE1(config-router-af)#redistribute eigrp 100

R7 :

R7(config)#router eigrp 100
net 0.0.0.0
no auto

PE1 :

router eigrp 65000
address-family ipv4 vrf BRI-KANAN
PE1(config-router-af)#net 192.168.0.0
PE1(config-router-af)#redistribute bgp 65000 metric 1 1 1 1 1
PE1(config-router-af)#autonomous-system 100
PE1(config-router-af)#end

PE1#conf t
router bgp 65000
address-family ipv4 vrf BRI-KANAN
PE1(config-router-af)#redistribute eigrp 100

R5

R5(config)#router eigrp 100
net 0.0.0.0
no auto

Verifikasi

R7#sh ip route
10.0.0.0/8 is variably subnetted, 3 subnets, 2 masks
D 10.0.0.0/8 is a summary, 00:00:09, Null0
C 10.0.0.7/32 is directly connected, Loopback0
D 10.0.0.5/32 [90/158720] via 192.168.0.5, 00:00:07, FastEthernet0/0
192.168.0.0/30 is subnetted, 2 subnets
D 192.168.0.0 [90/30720] via 192.168.0.5, 00:00:07, FastEthernet0/0
C 192.168.0.4 is directly connected, FastEthernet0/0

**********************************

LAB 6 MPLS – VPN PE CE BGP Routing

PE1 :
Router BGP 65000
!
address-family ipv4 vrf BRI-KIRI
neighbor 192.168.0.6 remote-as 100
neighbor 192.168.0.6 activate
neighbor 192.168.0.6 as-override

Contoh Konfigurasi di R7
Router BGP 100
neighbor 192.168.0.5 remote-as 65000
network 10.0.0.7 mask 255.255.255.255

*******************************

LAB 7 MPLS VPN – PE CE OSPF Routing

PE1

Router ospf 100 vrf BRI-KIRI
network 192.168.0.1 0.0.0.0 area 0
redistribute bgp 65000 subnets

Router BGP 65000
!
address-family ipv4 vrf BRI-KIRI
redistribute OSPF 100 vrf BRI-KIRI match internal external 1 internal 2

R7

Router ospf 1
network 0.0.0.0 area 0

**********************************

LAB 8 – MPLS VPN – PE CE OSPF – Shamlink

Skenario : Issue tipe attribut routing IOA  OSPF yang membuat jalur terpilih bukan jalur MPLS, melainkan jalur Backdoor.

PE1 :
interface Loopback100
ip vrf forwarding BCA-KIRI
ip address 100.100.100.1 255.255.255.255
!
router ospf 100 vrf BCA-KIRI
router-id 100.100.100.1
log-adjacency-changes
area 0 sham-link 100.100.100.1 100.100.100.3
redistribute bgp 65000 subnets
network 192.168.0.1 0.0.0.0 area 0
!
router bgp 65000
!
address-family ipv4 vrf BCA-KIRI
network 100.100.100.1 mask 255.255.255.255
exit-address-family
!
PE2
interface Loopback100
ip vrf forwarding BCA-KANAN
ip address 100.100.100.3 255.255.255.255
!
router ospf 100 vrf BCA-KANAN
router-id 100.100.100.3
log-adjacency-changes
area 0 sham-link 100.100.100.3 100.100.100.1
!
router bgp 65000
!
address-family ipv4 vrf BCA-KANAN
redistribute ospf 100 vrf BCA-KANAN match internal external 1 external 2
network 100.100.100.3 mask 255.255.255.255

Advertisement
Categories: BOOTCAMP, MPLS

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

Follow

Get every new post delivered to your Inbox.