MPLS PDF

Customized Cisco Course Part 6
Implementing Cisco MPLS
Abdelaziz ESSOUFY
18-26 October2010
MPLS Concepts
Introducing Basic MPLS Concepts
Foundations of Traditional IP Routing

Routing protocols are used to distribute Layer 3
routing information.
Forwarding decision is made based on:
Packet header
Local routing table
Routing lookups are independently performed at
every hop.
Basic MPLS Features

MPLS leverages both IP routing and CEF
switching.
MPLS is a forwarding mechanism in which packets
are forwarded based on labels.
MPLS was designed to support multiple Layer 3
protocols
Typically, MPLS labels correspond to destination
networks (equivalent to traditional IP forwarding).
Benefits of MPLS
MPLS supports multiple applications including:
Unicast and multicast IP routing
VPN
TE
QoS
AToM
MPLS decreases forwarding overhead on core
routers.
MPLS can support forwarding of non-IP protocols.
MPLS Architecture: Control Plane
MPLS Architecture: Data Plane
MPLS Devices: LSRs
The LSR forwards labeled packets in the MPLS domain.

The edge LSR forwards labeled packets in the MPLS domain,
and it forwards IP packets into and out of the MPLS domain.
Label Switch Routers:

Architecture of LSRs
LSR Architecture Example
MPLS router functionality is divided into two major

parts: the control plane and the data plane.
LSRs:
Architecture of Edge LSRs
Basic MPLS Example
MPLS core routers swap labels and forward packets based on simple
label lookups.
MPLS edge routers also perform a routing table lookup, and add or
remove labels.
MPLS Concepts
Introducing MPLS Labels and Label Stacks
MPLS Label Format
MPLS uses a 32-bit label field that contains the

information that follows:
20-bit label (a number)
3-bit experimental field (typically used to carry IP precedence
value)
1-bit bottom-of-stack indicator (indicates whether this is the
last label before the IP header)
8-bit TTL (equal to the TTL in the IP header)
MPLS Labels: Frame-Mode MPLS
MPLS Label Stack

Usually only one label is assigned to a packet, but
multiple labels in a label stack are supported.
These scenarios may produce more than one label:
MPLS VPNs (two labels): The top label points to the
egress router, and the second label identifies the VPN.
MPLS TE (two or more labels): The top label points to
the endpoint of the traffic engineering tunnel and the
second label points to the destination.
MPLS VPNs combined with MPLS TE (three or more
labels).
Example: MPLS Label Stack
The outer label is used for switching the packet in the MPLS
network (points to the TE destination).
Inner labels are used to separate packets at egress points (points
to egress router and identifies VPN).
Example: MPLS Label Stack Format
The PID in a Layer 2 header specifies that the payload starts

with a label (labels) followed by an IP header.
The bottom-of-stack bit indicates whether the label is the last
label in the stack.
The receiving router uses the top label only.
MPLS Label Operations

An LSR can perform these functions:
Insert (impose or push) a label or a stack of
labels on ingress edge LSR
Swap a label with a next-hop label or a stack of
labels in the core
Remove (pop) a label on egress edge LSR
MPLS Label Operations: Frame Mode
On ingress, a label is assigned and imposed.

LSRs in the core swap labels based on the contents of the label
forwarding table.
On egress, the label is removed and a routing lookup is used to forward
the packet.
Label Assignment and Distribution
Discovering LDP Neighbors
LDP Neighbor Session Establishment

LDP establishes a session in two steps:
Hello messages are periodically sent on all MPLS-enabled
interfaces.
MPLS-enabled routers respond to received hello
messages by attempting to establish a session with the
source of the hello messages.
LDP link hello message is a UDP packet sent to the all
routers on this subnet multicast address (224.0.0.2).
TCP is used to establish the session.
Both TCP and UDP use well-known LDP port number 646.
LDP Neighbor Discovery
An LDP session is established from the router with the higher

IP address.
LDP Session Negotiation
Peers first exchange initialization messages.

The session is ready to exchange label mappings after
receiving the first keepalive.
Frame-Mode MPLS Implementation on Cisco IOS Platforms
Introducing CEF Switching
Cisco IOS Platform Switching Mechanisms

The Cisco IOS platform supports three IP switching
mechanisms:
Routing table driven switchingprocess switching
Full lookup for every packet
Cache driven switchingfast switching
Most recent destinations entered in the cache
First packet always process-switched
Topology driven switching
CEF (prebuilt FIB table)
CEF Switching Review
Configuring IP CEF
Router(config)#
ip cef [distributed]
This command starts CEF switching and creates the FIB
table.
The distributed keyword configures distributed CEF
(running on VIP or line cards).
All CEF-capable interfaces run CEF switching.
Router(config-if)#
no ip route-cache cef
Disables CEF switching on an interface
Usually not needed
Monitoring IP CEF
Router#show ip cef detail

IP CEF with switching (Table Version 6), flags=0x0
6 routes, 0 reresolve, 0 unresolved (0 old, 0 new)
9 leaves, 11 nodes, 12556 bytes, 9 inserts, 0 invalidations
0 load sharing elements, 0 bytes, 0 references
2 CEF resets, 0 revisions of existing leaves
refcounts: 543 leaf, 544 node
Adjacency Table has 4 adjacencies
0.0.0.0/32, version 0, receive
192.168.3.1/32, version 3, cached adjacency to Serial0/0.10
0 packets, 0 bytes
tag information set
local tag: 28
fast tag rewrite with Se0/0.10, point2point, tags imposed: {28}
via 192.168.3.10, Serial0/0.10, 0 dependencies
next hop 192.168.3.10, Serial0/0.10
valid cached adjacency
tag rewrite with Se0/0.10, point2point, tags imposed: {28}
Frame-Mode MPLS Implementation on Cisco IOS Platforms
Configuring and monitoring Frame-Mode

MPLS
MPLS Configuration Tasks

Mandatory:
Enable CEF switching
Configure LDP on every label-enabled interface
Optional:
Configure the MPLS ID
Configure MTU size for labeled packets
Configure IP TTL propagation
Configure conditional label advertising
Configuring the MPLS ID on a Router

Router(config)#
mpls ldp router-id interface [force]
Specifies a preferred interface for determining the

LDP router ID:
Parameters
interface: Causes the IP address of the specified interface
to be used as the LDP router ID, provided that the interface
is operational
force: Alters the behavior of the mpls ldp router-id
command to force the use of the named interface as the
LDP router ID
Configuring MPLS on a Frame-Mode

Interface
Router(config-if)#
mpls ip
Enables label switching on a frame-mode interface

Starts LDP on the interface
Router(config-if)#
mpls label protocol [tdp | ldp | both]
Starts selected label distribution protocol on the specified

interface

Interface: Example 1

Interface: Example 2
Configuring a Label-Switching MTU

Router(config-if)#
mpls mtu bytes

Label switching increases the maximum MTU requirements on
an interface because of the additional label header.
Interface MTU is automatically increased on WAN interfaces;
IP MTU is automatically decreased on LAN interfaces.
Label-switching MTU can be increased on LAN interfaces
(resulting in jumbo frames) to prevent IP fragmentation.
The jumbo frames are not supported by all LAN switches.
Configuring Label-Switching MTU: Example
MPLS Monitoring Commands

Router#
show mpls ldp parameters

Displays LDP parameters on the local router
Router#
show mpls interfaces

Displays MPLS status on individual interfaces
Router#
show mpls ldp discovery

Displays all discovered LDP neighbors
LDP Monitoring Commands

Router#
show mpls ldp neighbor

Displays individual LDP neighbors
Router#
show mpls ldp neighbor detail

Displays more details about LDP neighbors
Router#
show mpls ldp bindings

Displays LIB
show mpls ldp bindings [network {mask | length} [longer-prefixes]]
[local-label label [- label]} [remote-label label [- label] [neighbor address]
[local]
MPLS VPN Technology
Introducing VPNs
Traditional Router-Based Networks
Traditional router-based networks connect customer sites

through routers connected via dedicated point-to-point links.
Virtual Private Networks
VPNs replace dedicated point-to-point links with emulated

point-to-point links sharing common infrastructure.
Customers use VPNs primarily to reduce their operational
costs.
VPN Terminology
VPN Terminology (Cont.)
MPLS VPN Technology
Introducing MPLS VPN Architecture
MPLS VPN Architecture:

Terminology
Note:
PE Router = Edge LSR
P Router = LSR
PE Router Architecture
PE router in an MPLS VPN uses virtual routing tables to

implement the functionality of customer dedicated PE routers.
Propagation of Routing Information

Across the P-Network
Question:
How will PE routers exchange customer routing information?
Option #1: Run a dedicated IGP for each customer across the P-network.
This is the wrong answer for these reasons:
The solution does not scale.
P routers carry all customer routes.

Across the P-Network (Cont.)
Question:
Option #2: Run a single routing protocol that will carry all customer routes
inside the provider backbone.
Better answer, but still not good enough:
P routers carry all customer routes.

Question:
Option #3: Run a single routing protocol that will carry all customer
routes between PE routers. Use MPLS labels to exchange
packets between PE routers.
The best answer:
P routers do not carry customer routes; the solution is scalable.

Question: Which protocol can be used to carry customer routes between

PE routers?
Answer:
The number of customer routes can be very large. BGP is the only
routing protocol that can scale to a very large number of routes.
Conclusion:
BGP is used to exchange customer routes directly between PE routers.

Question: How will information about the overlapping subnetworks of two

customers be propagated via a single routing protocol?
Answer:
Extend the customer addresses to make them unique.
Route Distinguishers
The 64-bit route distinguisher is prepended to an IPv4
address to make it globally unique.
The resulting address is a VPNv4 address.
VPNv4 addresses are exchanged between PE routers
via BGP.
BGP that supports address families other than IPv4
addresses is called MP-BGP.
A similar process is used in IPv6:
64-bit route distinguisher is prepended to a 16-byte IPv6
address.
The resulting 24-byte address is a unique VPNv6 address.
Route Distinguishers (Cont.)
Route Distinguishers (Cont.)
RDs: Usage in an MPLS VPN

The RD has no special meaning.
The RD is used only to make potentially overlapping IPv4
addresses globally unique.
The RD is used as a VPN identifier, but this design could not
support all topologies required by the customers.
RTs: Why Are They Needed?

Some sites have to participate in more than
one VPN.
The RD cannot identify participation in more than one VPN.
RTs were introduced in the MPLS VPN architecture to
support complex VPN topologies.
A different method is needed in which a set of identifiers
can be attached to a route.
MPLS VPN Technology
Introducing the MPLS VPN Routing Model
MPLS VPN Routing Requirements

CE routers have to run standard IP routing software.
PE routers have to support MPLS VPN services and IP
routing.
P routers have no VPN routes.
MPLS VPN Routing:

CE Router Perspective
The CE routers run standard IP routing software and exchange routing

updates with the PE router.
EBGP, OSPF, RIPv2, EIGRP, and static routes are supported.
The PE router appears as another router in the C-network.
MPLS VPN Routing:

Overall Customer Perspective
To the customer, the PE routers appear as core routers

connected via a BGP backbone.
The usual BGP and IGP design rules apply.
The P routers are hidden from the customer.
MPLS VPN Routing:

P Router Perspective
P routers do not participate in MPLS VPN routing

and do not carry VPN routes.
P routers run backbone IGP with the PE routers
and exchange information about global
subnetworks (core links and loopbacks).
MPLS VPN Routing:

PE Router Perspective
PE routers:
Exchange VPN routes with CE routers via per-VPN routing protocols
Exchange core routes with P routers and PE routers via core IGP
Exchange VPNv4 routes with other PE routers via MP-IBGP sessions
Support for Existing Internet Routing
PE routers can run standard IPv4 BGP in the global routing table:
PE routers exchange Internet routes with other PE routers.
CE routers do not participate in Internet routing.
P routers do not need to participate in Internet routing.
Routing Tables on PE Routers
PE routers contain a number of routing tables:

The global routing table contains core routes (filled with core IGP) and
Internet routes (filled with IPv4 BGP).
The VRF tables contains routes for sites of identical routing
requirements from local (IPv4 VPN) and remote
(VPNv4 via MP-BGP) CE routers.
End-to-End Routing Update Flow
PE routers receive IPv4 routing updates from CE routers and

install them in the appropriate VRF table.
End-to-End Routing Update Flow (Cont.)
PE routers export VPN routes from VRF tables into MP-BGP and
propagate them as VPNv4 routes to other PE routers.
MPLS VPN Implementation
Using MPLS VPN Mechanisms of Cisco IOS

Platforms
VRF Table
A VRF is the routing and forwarding instance for a set
of sites with identical connectivity requirements.
Data structures associated with a VRF are as follows:
IP routing table
CEF table
Set of rules and routing protocol parameters
(routing protocol contexts)
List of interfaces that use the VRF
Other information associated with a VRF is as follows:

Route distinguisher
Set of import and export route targets
Need for Routing Protocol Contexts

There are two backbones with
overlapping addresses.
RIP is running in both VPNs.

RIP in VPN A has to be different from
RIP in VPN B.
Cisco IOS software supports only one
RIP process per router.
VPN-Aware Routing Protocols

Routing context = routing protocol run in one VRF:
Supported by VPN-aware routing protocols:
External BGP (EBGP), EIGRP, OSPF, RIP version 2 (RIPv2),
IS-IS, static routes
Implemented as several instances of a single routing

process (EIGRP, EBGP, RIPv2, IS-IS) or as several
routing processes (OSPF)
Independent per-instance router variables for each
instance
VRF Table
Contains routes that should be available to a
particular set of sites
Analogous to standard Cisco IOS software routing
table; supports same set of mechanisms
VPN interfaces (physical interface, subinterfaces,
logical interfaces) assigned to VRFs:
Many interfaces per VRF
Each interface assignable to only one VRF
BGP Route PropagationOutbound
Two VPNs are attached to the same PE router.

Each VPN is represented by a VRF.
BGP Route PropagationOutbound (Cont.)
BGP-speaking CE routers announce their prefixes to the PE router via BGP.

The instance of BGP process associated with the VRF of the PE-CE interface
collects the routes and inserts them into the VRF routing table.
BGP Route PropagationOutbound (Cont.)
The route distinguishers are prepended during the route export to the
BGP routes from the VRF instance of the BGP process to convert them
into VPNv4 prefixes. Route targets are attached to these prefixes.
VPNv4 prefixes are propagated to other PE routers.
BGP Route PropagationInbound
VPNv4 prefixes are received from other PE routers.

The VPNv4 prefixes are inserted into proper VRF routing tables based
on their route targets and import route targets configured in VRFs.
The route distinguisher is removed during this process.
BGP Route PropagationInbound (Cont.)
Routes are received from backbone MP-BGP and imported into a VRF.
IPv4 routes are forwarded to EBGP CE neighbors attached to
that VRF.
Non-BGP Route PropagationOutbound
RIP-speaking CE routers announce their prefixes to the PE router via RIP.

The instance of RIP process associated with the VRF of the PE-CE interface
collects the routes and inserts them into the VRF routing table.
Non-BGP Route PropagationOutbound

(Cont.)
The RIP routes entered in the VRF routing table are redistributed into BGP
for further propagation into the MPLS VPN backbone.
Redistribution between RIP and BGP has to be configured for proper
MPLS VPN operation.
Non-BGP Route PropagationInbound
MP-IBGP routes imported into a VRF are redistributed into the instance
of RIP configured for that VRF.
Redistribution between BGP and RIP has to be configured for
end-to-end RIP routing between CE routers.
Non-BGP Route PropagationInbound

(Cont.)
Routes redistributed from BGP into a VRF instance of RIP are sent to
RIP-speaking CE routers.
Configuring VRF Tables
VRF Configuration Tasks

VRF configuration tasks:
Create a VRF table
Assign RD to the VRF
Specify export and import route targets
(Optional) Configure a VPN ID
Assign interfaces to VRFs
Creating VRF Tables and Assigning RDs

Router(config)#
ip vrf name
This command creates a new VRF or enters

configuration of an existing VRF.
VRF names are case-sensitive.
VRF is not operational unless you configure RD.
VRF names have only local significance.
Router(config-vrf)#
rd route-distinguisher
This command assigns a route distinguisher to a VRF.

You can use ASN:nn or A.B.C.D:nn format for RD.
Each VRF in a PE router has to have a unique RD.
Specifying Export and Import RTs

Router(config-vrf)#
route-target export RT
Specifies an RT to be attached to every route exported from
this VRF to Multiprotocol Border Gateway Protocol
Allows specification of many export RTsall to be attached
to every exported route
Router(config-vrf)#
route-target import RT
Specifies an RT to be used as an import filter (Only routes
matching the RT are imported into the VRF.)
Allows specification of many import RTs (any route where at
least one RT attached to the route matches any import RT is
imported into the VRF.)
Because of implementation issues, at least one export route target must also be
an import route target of the same VRF in Cisco IOS Release 12.4(T) and earlier.
Specifying Export and Import RTs (Cont.)

Router(config-vrf)#
route-target both RT
In cases where the export RT matches the import

RT, use this form of the route-target command.
Sample router configuration for simple customer VPN:
ip vrf Customer_ABC
rd 65173:15
route-target export 65173:15
route-target import 65173:15
Assigning an Interface to a VRF Table

Router(config-if)#
ip vrf forwarding vrf-name
This command associates an interface with the

specified VRF.
The existing IP address is removed from the interface
when the interface is put into VRFthe IP address must
be reconfigured.
CEF switching must be enabled on the interface.
Sample router configuration:
ip cef
!
interface serial 0/0
ip vrf forwarding Customer_ABC
ip address 10.0.0.1 255.255.255.252
MPLS VPN Network Example
The network supports two VPN customers.

Customer A runs RIP and BGP with the service
provider; customer B uses only RIP.
Both customers use network 10.0.0.0.
MPLS VPN Network Example (Cont.)
Configuring an MP-BGP Session Between

PE Routers
Configuring BGP Address Families

The BGP process in an MPLS VPN-enabled router
performs three separate tasks:
Global BGP routes (Internet routing) are exchanged as in
traditional BGP setup.
VPNv4 prefixes are exchanged through MP-BGP.
VPN routes are exchanged with CE routers through perVRF External Border Gateway Protocol sessions.
Address families (routing protocol contexts) are

used to configure these three tasks in the same
BGP process.
Configuring BGP Address Families (Cont.)

Router(config)#
router bgp as-number
Selects global BGP routing process

Router(config-router)#
address-family vpnv4
Selects configuration of VPNv4 prefix exchanges

under MP-BGP sessions
address-family ipv4 vrf vrf-name
Selects configuration of per-VRF PE-CE EBGP

parameters
BGP Neighbors
MP-BGP neighbors are configured under the BGP
routing process:
These neighbors need to be activated for each global
address family that they support.
Per-address-family parameters can be configured for
these neighbors.
VRF-specific EBGP neighbors are configured

under corresponding address families.
Configuring MP-BGP
MPLS VPN MP-BGP configuration steps:
Configure MP-BGP neighbor under BGP routing
process.
Configure BGP address family VPNv4.
Activate configured BGP neighbor for VPNv4 route
exchange.
Specify additional parameters for VPNv4 route
exchange (filters, next hops, and so on).
Configuring MP-IBGP
Router(config)#

neighbor ip-address remote-as as-number
neighbor ip-address update-source interface-type
interface-number
All MP-BGP neighbors have to be configured under global BGP
routing configuration.
MP-IBGP sessions have to run between loopback interfaces.
This command starts configuration of MP-BGP routing for VPNv4
route exchange.
The parameters that apply only to MP-BGP exchange of VPNv4
routes between already configured IBGP neighbors are configured
under this address family.
Configuring MP-IBGP (Cont.)

Router(config-router-af)#
neighbor ip-address activate
The BGP neighbor defined under BGP router configuration

has to be activated for VPNv4 route exchange.
neighbor ip-address next-hop-self
The next-hop-self keyword can be configured on the MP-IBGP

session for MPLS VPN configuration if EBGP is being run
with a CE neighbor.
MP-BGP Community Propagation

neighbor ip-address send-community [standard | extended

| both]
This command with the extended option is enabled by default

by Cisco IOS software after the BGP neighbor has been
activated for VPNv4 route exchange.
The command can be used to enable propagation of standard
BGP communities attached to VPNv4 prefixes.
Usage guidelines:
Extended BGP communities attached to VPNv4 prefixes
have to be exchanged between MP-BGP neighbors for
proper MPLS VPN operation.
To propagate standard BGP communities between
MP-BGP neighbors, use the both option.
MP-BGP BGP Community Propagation

(Cont.)
Disabling IPv4 Route Exchange

no bgp default ipv4-unicast
The exchange of IPv4 routes between BGP

neighbors is enabled by defaultevery configured
neighbor will also receive IPv4 routes.
This command disables the default exchange of
IPv4 routesneighbors that need to receive IPv4
routes have to be activated for IPv4 route
exchange.
Use this command when the same router carries
Internet and VPNv4 routes and you do not want to
propagate Internet routes to some PE neighbors.
Disabling IPv4 Route Exchange (Cont.)

Neighbor 172.16.32.14 receives only Internet routes.
Neighbor 172.16.32.15 receives only VPNv4 routes.
Neighbor 172.16.32.27 receives Internet and VPNv4 routes.
router bgp 65173
no bgp default ipv4-unicast
neighbor 172.16.32.14 remote-as 65173
! Activate IPv4 route exchange
neighbor 172.16.32.14 activate
! Step#2 VPNv4 route exchange
Configuring Small-Scale Routing Protocols

Between PE and CE Routers
PE-CE Routing Protocols

PE-CE routing protocols are configured for
individual VRFs.
Per-VRF routing protocols can be configured in
two ways:
Per-VRF parameters are specified in routing contexts,
which are selected with the address-family command.
A separate OSPF process has to be started for each VRF.
Prior to Cisco IOS Release 12.3(4)T, the overall

number of routing processes per router was
limited to 32, of which only 28 were available for
VRF assignment.
Configuring the VRF Routing Context

Within BGP
Router(config)#

... Non-BGP redistribution ...
Select the per-VRF BGP context with the

address-family command.
Configure CE External Border Gateway Protocol
neighbors in VRF context, not in global BGP
configuration.
All non-BGP per-VRF routes have to be
redistributed into a per-VRF BGP context to be
propagated by MP-BGP to other PE routers.
Configuring Per-VRF Static Routes

Router(config)#
ip route vrf vrf-name prefix mask [interface interfacenumber] [next-hop-address]
This command configures per-VRF static routes.

The route is entered in the VRF table.
You must specify a next-hop IP address if you are
not using a point-to-point interface.
Sample router configuration:
ip route vrf Customer_ABC 10.0.0.0 255.0.0.0 serial0/0 10.250.0.2
!
router bgp 65173
address-family ipv4 vrf Customer_ABC
redistribute static
Configuring RIP PE-CE Routing

A routing context is configured for each VRF
running RIP.
RIP parameters have to be specified in the VRF.
Some parameters configured in the RIP process
are propagated to routing contexts (for example,
RIP version).
Only RIPv2 is supported.
Configuring RIP PE-CE Routing:

RIP Metric Propagation
Router(config)#
router rip
version 2
redistribute bgp as-number metric transparent
BGP routes must be redistributed back into RIP.

The RIP hop count has to be manually set for routes redistributed
into RIP.
For end-to-end RIP networks, the following applies:
On the sending end, the RIP hop count is copied into the BGP MED.
On the receiving end, the metric transparent option copies
the BGP MED into the RIP hop count, resulting in a consistent end-toend RIP hop count.
When you are using RIP with other protocols, the metric must be
manually set.
Configuring RIP PE-CE Routing:

Example
Monitoring MPLS VPN Operations
Monitoring VRFs
Router#
show ip vrf
Displays the list of all VRFs configured in the router

Router#
show ip vrf detail
Displays detailed VRF configuration

Router#
show ip vrf interfaces
Displays interfaces associated with VRFs
Monitoring VRFs:
show ip vrf
Router#show ip vrf
Name
SiteA2
SiteB
SiteX
Router#
Default RD
103:30
103:11
103:20
Interfaces
Serial1/0.20
Serial1/0.100
Ethernet0/0
Monitoring VRFs:
show ip vrf detail
Router#show ip vrf detail
VRF SiteA2; default RD 103:30
Interfaces:
Serial1/0.20
Connected addresses are not in global routing table
No Export VPN route-target communities
Import VPN route-target communities
RT:103:10
No import route-map
Export route-map: A2
VRF SiteB; default RD 103:11
Interfaces:
Serial1/0.100
Connected addresses are not in global routing table
Export VPN route-target communities
RT:103:11
Import VPN route-target communities
RT:103:11
RT:103:20
No import route-map
No export route-map
Monitoring VRFs:
show ip vrf interfaces
Router#show ip vrf interfaces

Interface
IP-Address
Serial1/0.20
150.1.31.37
Serial1/0.100
150.1.32.33
Ethernet0/0
192.168.22.3
VRF
SiteA2
SiteB
SiteX
Protocol
up
up
up
Monitoring VRF Routing

Router#
show ip protocols vrf vrf-name
Displays the routing protocols configured in a VRF

Router#
show ip route vrf vrf-name
Displays the VRF routing table

Router#
show ip bgp vpnv4 vrf vrf-name
Displays per-VRF BGP parameters
Monitoring VRF Routing:

show ip protocols vrf
Router#show ip protocol vrf SiteX
Routing Protocol is "rip"
Sending updates every 30 seconds, next due in 10 seconds
Invalid after 180 seconds, hold down 180, flushed after 240
Outgoing update filter list for all interfaces is
Incoming update filter list for all interfaces is
Redistributing: rip, bgp 65031
Default version control: send version 2, receive version 2
Interface
Send Recv Triggered RIP Key-chain
Ethernet0/0
2
2
Routing for Networks:
192.168.22.0
Routing Information Sources:
Gateway
Distance
Last Update
Distance: (default is 120)

show ip route vrf
Router#show ip route vrf SiteA2
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2,
* - candidate default, U - per-user static route, o - ODR
P - periodic downloaded static route
Gateway of last resort is not set
O
O
B
B
B
B
203.1.20.0/24 [110/782] via 150.1.31.38, 02:52:13, Serial1/0.20

203.1.2.0/32 is subnetted, 1 subnets
203.1.2.1 [110/782] via 150.1.31.38, 02:52:13, Serial1/0.20
203.1.1.0/32 is subnetted, 1 subnets
203.1.1.1 [200/1] via 192.168.3.103, 01:14:32
203.1.135.0/24 [200/782] via 192.168.3.101, 02:05:38
203.1.134.0/24 [200/1] via 192.168.3.101, 02:05:38
203.1.10.0/24 [200/1] via 192.168.3.103, 01:14:32
rest deleted

show ip bgp vpnv4 vrf neighbors
Router#show ip bgp vpnv4 vrf SiteB neighbors
BGP neighbor is 150.1.32.34, vrf SiteB, remote AS 65032, external link
BGP version 4, remote router ID 203.2.10.1
BGP state = Established, up for 02:01:41
Last read 00:00:56, hold time is 180, keepalive interval is 60 seconds
Neighbor capabilities:
Route refresh: advertised and received
Address family IPv4 Unicast: advertised and received
Received 549 messages, 0 notifications, 0 in queue
Sent 646 messages, 0 notifications, 0 in queue
Route refresh request: received 0, sent 0
Minimum time between advertisement runs is 30 seconds
For address family: VPNv4 Unicast
Translates address family IPv4 Unicast for VRF SiteB
BGP table version 416, neighbor version 416
Index 4, Offset 0, Mask 0x10
Community attribute sent to this neighbor
2 accepted prefixes consume 120 bytes
Prefix advertised 107, suppressed 0, withdrawn 63
rest deleted
Monitoring MP-BGP Sessions
Router#
show ip bgp neighbors
This command displays global BGP neighbors and

the protocols negotiated with these neighbors.
Monitoring MP-BGP Sessions:

show ip bgp neighbors
Router#show ip bgp neighbor 192.168.3.101
BGP neighbor is 192.168.3.101, remote AS 3, internal link
BGP version 4, remote router ID 192.168.3.101
BGP state = Established, up for 02:15:33
Last read 00:00:33, hold time is 180, keepalive interval is 60 seconds
Neighbor capabilities:
Route refresh: advertised and received
Address family IPv4 Unicast: advertised and received
Address family VPNv4 Unicast: advertised and received
Received 1417 messages, 0 notifications, 0 in queue
Sent 1729 messages, 2 notifications, 0 in queue
Route refresh request: received 9, sent 29
Minimum time between advertisement runs is 5 seconds
For address family: IPv4 Unicast
... Continued
Monitoring MP-BGP Sessions:

show ip bgp neighbors (Cont.)
Router#show ip bgp neighbor 192.168.3.101
... Continued
For address family: VPNv4 Unicast
NEXT_HOP is always this router
Community attribute sent to this neighbor
Connections established 7; dropped 6
Last reset 02:18:33, due to Peer closed the session
... Rest deleted
Monitoring an MP-BGP VPNv4 Table

Router#
show ip bgp vpnv4 all
Displays whole VPNv4 table.

Router#
show ip bgp vpnv4 vrf vrf -name
Displays only BGP parameters (routes or neighbors)

associated with specified VRF.
Any BGP show command can be used with these
parameters.
Router#
show ip bgp vpnv4 rd route-distinguisher
Displays only BGP parameters (routes or neighbors)

associated with the specified RD.
Monitoring an MP-BGP VPNv4 Table:

show ip bgp vpnv4 vrf-name
Router#show ip bgp vpnv4 vrf SiteA2
BGP table version is 416, local router ID is 192.168.3.102
Status codes: s suppressed, d damped, h history, * valid, > best, i
- internal
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
Next Hop
Metric LocPrf Weight Path
Route Distinguisher: 103:30 (default for vrf SiteA2)
*> 150.1.31.36/30
0.0.0.0
0
32768 ?
*>i150.1.31.128/30 192.168.3.101
0
100
0 ?
*>i150.1.31.132/30 192.168.3.101
0
100
0 ?
*>i203.1.1.1/32
192.168.3.103
1
100
0 65031
i
*> 203.1.2.1/32
150.1.31.38
782
32768 ?
*>i203.1.10.0
192.168.3.103
1
100
0 65031
i
*> 203.1.20.0
150.1.31.38
782
32768 ?
*>i203.1.127.3/32
192.168.3.101
1
100
0 ?
*>i203.1.127.4/32
192.168.3.101
782
100
0 ?
*>i203.1.134.0
192.168.3.101
1
100
0 ?
*>i203.1.135.0
192.168.3.101
782
100
0 ?
Monitoring an MP-BGP VPNv4 Table:

show ip bgp vpnv4 rd route-distinguisher
Router#show ip bgp vpnv4 rd 103:30 203.1.127.3
BGP routing table entry for 103:30:203.1.127.3/32, version
164
Paths: (1 available, best #1, table SiteA2)
Not advertised to any peer
Local, imported path from 103:10:203.1.127.3/32
192.168.3.101 (metric 10) from 192.168.3.101
(192.168.3.101)
Origin incomplete, metric 1, localpref 100, valid,
internal, best
Extended Community: RT:103:10
Monitoring per-VRF CEF and LFIB

Structures
Router#
show ip cef vrf vrf-name
Displays per-VRF CEF table

Router#
show ip cef vrf vrf-name ip-prefix detail
Displays details of an individual CEF entry,

including label stack
Router#
show mpls forwarding vrf vrf-name
Displays labels allocated by an MPLS VPN for

routes in the specified VRF

Structures (Cont.)
Router#show ip cef vrf SiteA2 203.1.1.1 255.255.255.255 detail
203.1.1.1/32, version 57, cached adjacency to Serial1/0.2
0 packets, 0 bytes
tag information set
local tag: VPN-route-head
fast tag rewrite with Se1/0.2, point2point, tags imposed: {26 39}
via 192.168.3.103, 0 dependencies, recursive
next hop 192.168.3.10, Serial1/0.2 via 192.168.3.103/32
valid cached adjacency
tag rewrite with Se1/0.2, point2point, tags imposed: {26 39}
The show ip cef command can also display the label stack associated
with the MP-IBGP route.

Structures (Cont.)
Router#show mpls forwarding vrf SiteA2
Local Outgoing
Prefix
Bytes tag
tag
tag or VC
or Tunnel Id
switched
26
Aggregate
150.1.31.36/30[V] 0
37
Untagged
203.1.2.1/32[V]
0
point2point
38
Untagged
203.1.20.0/24[V] 0
point2point
Outgoing
interface
Next Hop
Se1/0.20
Se1/0.20
Router#show mpls forwarding vrf SiteA2 tags 37 detail

Local Outgoing
Prefix
Bytes tag Outgoing
tag
tag or VC
or Tunnel Id
switched
interface
37
Untagged
203.1.2.1/32[V]
0
Se1/0.20
point2point
MAC/Encaps=0/0, MTU=1504, Tag Stack{}
VPN route: SiteA2
Per-packet load-sharing
Next Hop
Monitoring Labels Associated

with VPNv4 Routes
Router#
show ip bgp vpnv4 [ all | rd value | vrf vrf-name ] labels
Displays labels associated with VPNv4 routes

Router#show ip bgp vpnv4 all labels
Network
Next Hop
Route Distinguisher: 100:1 (vrf1)
2.0.0.0
10.20.0.60
10.0.0.0
10.20.0.60
12.0.0.0
10.20.0.60
10.20.0.60
13.0.0.0
10.15.0.15
In label/Out label
34/nolabel
35/nolabel
26/nolabel
26/nolabel
nolabel/26
Other MPLS VPN Monitoring Commands

Router#
telnet host /vrf vrf-name
Performs PE-CE Telnet through specified VRF

Router#
ping vrf vrf-name ip-address
Performs ping based on VRF routing table

Router#
trace vrf vrf-name ip-address
Performs VRF-based traceroute

MPLS PDF

Transféré par

Informations du document

Description originale:

Titre original

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

MPLS PDF

Transféré par

Droits d'auteur :

Formats disponibles

Customized Cisco Course Part 6

Implementing Cisco MPLS

Introducing Basic MPLS Concepts

Foundations of Traditional IP Routing

Basic MPLS Features

MPLS Architecture: Control Plane

MPLS Architecture: Data Plane

MPLS Devices: LSRs

The LSR forwards labeled packets in the MPLS domain.

Label Switch Routers:

LSR Architecture Example

MPLS router functionality is divided into two major

Basic MPLS Example

Introducing MPLS Labels and Label Stacks

MPLS Label Format

MPLS uses a 32-bit label field that contains the

MPLS Labels: Frame-Mode MPLS

MPLS Label Stack

Example: MPLS Label Stack

Example: MPLS Label Stack Format

The PID in a Layer 2 header specifies that the payload starts

MPLS Label Operations

MPLS Label Operations: Frame Mode

On ingress, a label is assigned and imposed.

Label Assignment and Distribution

Discovering LDP Neighbors

LDP Neighbor Session Establishment

LDP Neighbor Discovery

An LDP session is established from the router with the higher

LDP Session Negotiation

Peers first exchange initialization messages.

Frame-Mode MPLS Implementation on Cisco IOS Platforms

Introducing CEF Switching

Cisco IOS Platform Switching Mechanisms

CEF Switching Review

Router#show ip cef detail

Frame-Mode MPLS Implementation on Cisco IOS Platforms

Configuring and monitoring Frame-Mode

MPLS Configuration Tasks

Configuring the MPLS ID on a Router

mpls ldp router-id interface [force]

Specifies a preferred interface for determining the

Configuring MPLS on a Frame-Mode

Enables label switching on a frame-mode interface

mpls label protocol [tdp | ldp | both]

Starts selected label distribution protocol on the specified

Configuring MPLS on a Frame-Mode

Configuring MPLS on a Frame-Mode

Configuring a Label-Switching MTU

mpls mtu bytes

Configuring Label-Switching MTU: Example

MPLS Monitoring Commands

show mpls ldp parameters

show mpls interfaces

show mpls ldp discovery

LDP Monitoring Commands

show mpls ldp neighbor

show mpls ldp neighbor detail

show mpls ldp bindings

MPLS VPN Technology

Traditional Router-Based Networks

Traditional router-based networks connect customer sites