Preparing SP Lab-Part2 12feb09vb D-3928

Preparing for the Cisco CCIE
Service Provider Lab Exam

Part II of III
Preparing for the Cisco CCIE SP Lab Exam: Part 2
2009 Cisco Systems, Inc. All rights reserved.
Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork
Disclaimer
This presentation is the second of a threepart introduction to the Cisco CCIE Service
Provider lab exam.
Although this presentation is not to be
considered a course, it will give you some
useful information and tips for preparing to
take your lab exam.
Topics Overview (covered in a three part series)

Part I
Session 1
Session 2
Session 3
Part II
Session 4
Session 5
Session 6
Part III
Session 7
Session 8
Session 9
Lab Overview
Layer 2 Protocol
IGP Protocol
BGP Protocol
MPLS, VPN, and TE
SP Multicast
QOS and Security
Sample Questions
Resources and Test-Taking Tips
Session 4
CCIE Service
Provider Lab:
BGP Protocol
CCIE Service Provider Lab Exam:

BGP Terminology
Autonomous system (AS) and private AS
Border Gateway Protocol (BGP) neighbor, TCP connection (port
179), External Border Gateway Protocol (EBGP), and Internal
Border Gateway Protocol (IBGP)
Attributes
AS path
Weight
Origin
Multi-exit discriminator (MED)
Local preference
Community
Route reflector, client, confederation, and cluster

Synchronization and dampening

BGP Route Selection Sequence
1. Ignore IBGP routes that are not synchronized.
2. Ignore a route if the next hop is not known.
3. Prefer the route with the largest weight.
4. Prefer the route with the largest local preference.
5. Prefer the route that was locally originated via network, aggregate,
or redistribution from an internal gateway protocol (IGP).
6. Prefer the route with the shortest AS path; if using bgp bestpath
as-path, then skip this step. When using the as-set option for
aggregated routes, then the as_set counts as one regardless of
the number of AS entries in the set; confederation sub AS
numbers are not used to determine the AS path length.

BGP Route Selection Sequence (Cont.)
6. Prefer the route with the lowest origin. For example, IGP < EGP
< Incomplete.
7. Prefer the route with the lowest MED; this comparison is only
between routes advertised by the same external AS.
8. Prefer EBGP routes to IBGP routes.
9. Prefer the path with lowest IGP metric to the BGP next hop.
10. Prefer the oldest route.
11. Prefer the path received from the router with the lowest router ID.

BGP Commands
Router commands
router bgp (AS number)
address-family ipv4 unicast
network x.x.x.x mask y.y.y.y
neighbor x.x.x.x remote-as yy
redistribute (routing protocol)
Global commands
Ip as-path access-list (number)
ip community-list (number/name)
route-map (name)
access-list (number)

BGP Commands (Cont.)
Verification and troubleshooting commands
show ip bgp
show ip bgp neighbor
show ip bgp summary
show tcp brief
clear ip bgp
debug ip bgp events
debug ip bgp updates

BGP Practice
Features to practice
EBGP and IBGP definition
Multihome, path chosen on local preference, MED, and AS
path
Multipath
Aggregation and redistribution
Policy on community
Routes reflection and confederation
Dampening reduction
10
Session 5
CCIE Service
Provider Lab:
MPLS, VPN, and TE
11

MPLS Fundamentals
Based on the label swapping-and-forwarding paradigm.
As a packet enters a Multiprotocol Label Switching (MPLS)
network, it is assigned a label based on its forwarding
equivalence class (FEC), as determined at the edge of the
MPLS network.
FECs are groups of packets forwarded over the same
label-switched path (LSP).
Need a mechanism that will create and distribute labels to
establish LSP paths.
Separated into two planes:
Control plane: Responsible for maintaining correct label tables
among label switch routers (LSRs).
Forwarding plane: Uses label carried by packet and label table
maintained by LSR to forward the packet.
12

MPLS Terminology
FEC
Label, label stack, experimental (EXP), and LSP
Label encapsulation (PPP, Frame Relay, Ethernet, 802.1Q,
and ATM)
Label swap, pop, untag, push, and aggregate
Label distribution
Label merge
13

MPLS Label Distribution Methods
Label Distribution Protocol (LDP) and Tag Distribution Protocol
(TDP)
IGP is needed in the network to provide the network prefix.
Use a TCP session to establish connection.
Resource Reservation Protocol (RSVP)

Additions to RSVP signaling protocol.
Leverage the admission control mechanism of RSVP to create
an LSP with bandwidth.
Label requests are sent in Path messages, and binding is done
with Resv messages.
Multiprotocol Border Gateway Protocol (MP-BGP)

Multiprotocol extensions to BGP.
Routers need to be BGP peers.
Label mapping information is carried as part of BGP Network
Layer Reachability Information (NLRI).
Static
14

MPLS Commands
Configuration commands
Ip cef
mpls ip
mpls label protocol ldp/tdp
mpls ldp router-id interface (type) (number)
mpls atm vpi (number)
mpls atm control-vc (vpi/vci)
Troubleshooting commands
show mpls forwarding-table
show mpls interface
show mpls ip binding
show mpls atm-ldp summary
15

MPLS VPN Terminology
PE: provider edge router
P: provider router
CE: customer edge router
VPN: virtual private network
VRF: virtual routing and forwarding instance
VPNv4: VPN version 4
Address family used in BGP to carry MPLS-VPN routes.
RD: route distinguisher

Used to uniquely identify the same network and mask from
different VRFs.
RT: route target

Used to control import and export policies, and to build arbitrary
VPN topologies for customers.
16

MPLS VPN Operation
MP-BGP session facilitates the advertisement of VPNv4 prefixes and labels
between MP-BGP peers.
At the advertising PE, BGP allocates labels for VPN prefixes and installs them
in the label forwarding information base (LFIB; MPLS forwarding table).
At the receiving PE, if BGP accepts VPN prefixes with labels, then BGP installs
VPN prefixes in the VRF FIB (Cisco Express Forwarding table).
VPNv4 traffic is encapsulated in MPLS packets between PEs.
CE
CE
PE
VRF
iBGPVPNv4
Label Exchange
VRF
LDP
LDP
iBGPVPNv4
PE
CE
LDP
iBGPVPNv4
PE
CE
VRF
CE
17

MPLS Inter-AS VPN
A simple method to deploy inter-AS MPLS VPN is backto-back VRFs.
RFC 2547bis defines three Inter-AS MPLS VPN
methods in options (a), (b), and (c) for large, complex
inter-AS VPN deployment.
ASBR2
ASBR1
1. Back-to-back
VRFs
PE
1
AS #1
2. MP-eBGP for
VPNv4
AS #2
PE2
3. Multihop MP-eBGP
between RRs
CE1
VPN-A
4. Non-VPN Transit
Provider
CE2
VPN-A
18

MPLS VPN Commands
PE commands
Ip vrf (name)
rd mm:nn
route-target import/export xx:yy
router bgp (as number)
address-family vpnv4
neighbor x.x.x.x activate
neighbor x.x.x.x send-community extended
neighbor x.x.x.x send-label
PE interface commands
Ip vrf forwarding (name)
19

MPLS VPN Commands (Cont.)
PE-CE commands
router ospf (ID) vrf (name)
network x.x.x.x area yy
router rip
address-family ipv4 vrf (name)
network x.x.x.x
show ip cef vrf (name)
show ip vrf detail
show ip bgp vpnv4 all
show ip bgp vpnv4 vrf (name)
show ip (igp) (vrf)
20

MPLS VPN Practice
Intra-AS MPLS VPN
PE-CE routing in Open Shortest Path First (OSPF), BGP, and
Routing Information Protocol (RIP)
BGP route reflection for VPNv4
Multihomed VPN sites
EBGP and IBGP multipath load balancing
Extranet VPN, Internet-access VPN, and VRF-aware Network
Address Translation (NAT) VPN
Inter-AS VPN, MP-EBGP for VPNv4, and multihop MP-EBGP
between route reflectors
Carriers carrier
21

MPLS Layer 2 VPN Pseudowire Model
Customer
Site
PSN Tunnel
Pseudowires
PWES
PE
Customer
Site
Customer
Site
PWES
PE
PWES
PWES
Customer
Site
Emulated Service
A pseudowire (PW) is a connection between two PE devices that connects two
pseudowire emulated service (PWES) end points of the same type.
Ethernet
802.1Q (VLAN)
ATM VC or VP
HDLC
PWES
PPP
Frame Relay VC
22

MPLS Layer 2 VPN Deployment Method
Any transport over MPLS
MPLS in the core.
Targeted LDP session between PEs.
Targeted LDP session distributes pseudowire labels.
PE uses per-platform label space for both link and
targeted LDP sessions.
Layer 2 TP V3
Transparent Layer 2 traffic transport.
Operates over native IP backbone network.
Supports multiple Layer 2 data-link emulation types.
Generic Routing Encapsulation (GRE)

23

MPLS Layer 2 VPN Commands
Configuration commands
pseudowire-class (name)
encapsulation mpls/l2tpv3
xconnect x.x.x.x yy pw-class (name)
show mpls ldp discovery
show mpls l2transport binding
ping mpls pseudowire
show l2tun tunnel
show l2tun tunnel session
24

MPLS Traffic Engineering
Information distribution
IGP extensions flood available bandwidth information; OSPF uses Type 10
(area-local) Opaque LSAs; and Intermediate System-to-Intermediate System
(IS-IS) uses new type, length, values (TLVs).
Path selection and calculation

Traffic engineering (TE) headend does a Constrained Shortest Path First
(CSPF) calculation to find the best path. The path can also be explicitly
configured.
Path setup
RSVP is used to set up TE LSP; Path messages (from head to tail) carry
LABEL_REQUEST; Resv messages (from tail to head) carry LABEL.
Trunk admission control

On receipt of a Path message, the router will check to see if there is bandwidth
available to honor the reservation. On receipt of a Resv message, the router
actually reserves the bandwidth for the TE LSP.
Forwarding traffic to the tunnel

25

MPLS TE Forwarding Traffic to Tunnel
Static routing
Policy routing
Auto route
Forwarding adjacency
R8
R3
R4
R2
R1
R5
R6
R7
26

MPLS TE Commands
Global commands
Ip cef
mpls traffic-eng tunnels
OSPF and IS-IS commands

mpls traffic-eng router-id loopback x
mpls traffic-eng area (number)
mpls traffic-eng level x
metric-type wide
Interface commands
Ip rsvp bandwidth (number)
27

MPLS TE Commands (Cont.)
Tunnel commands
tunnel destination (Tail Router ID)
tunnel mode mpls traffic-eng
tunnel mpls traffic-eng bandwidth (number)
tunnel mpls path-option (num) explicit/dynamic
Traffic routing commands

Ip route (net) (mask) tunnel (number)
tunnel mpls traffic-eng autoroute announce
tunnel mpls traffic-eng forwarding-adjacency
Show commands
show mpls traffic-eng tunnel
show mpls traffic-eng link-management
28
Session 6
CCIE Service
Provider Lab:
SP Multicast
29

Multicast Terminology
Multicast addressing, administratively scoped
addresses, and Source Specific Multicast (SSM)
range
Shared distribution tree and source path tree
Reverse Path Forwarding (RPF)
Rendezvous point (RP)
Dense mode, sparse mode, register, join, prune, and
shortest path tree (SPT) switchover
Internet Group Management Protocol (IGMP)
SSM, bidirectional Protocol Independent Multicast
(PIM), and multicast VPN (MVPN)
30

Multicast Sparse Mode
Must configure an RP.
Uses the explicit join model.
Traffic flows only to where it is needed.
Router state is created only along flow paths.
Works for both sparsely or densely populated networks.
RP
Source
Traffic Flow
Shared Tree
Source Tree
Receiver
31

Multicast RP
Static
Configured on every router with the same RP address.
Auto RP
Candidate RPs and mapping agents must be configured.
Two specially Internet-Assigned Numbers Authority (IANA)-assigned
groups use Cisco-Announce - 224.0.1.39 and Cisco-Discovery 224.0.1.40.
Bootstrap router (BSR)

Candidate bootstrap routers (C-BSRs) must be configured.
C-RPs send C-RP announcements to the BSR.
BSR periodically sends BSR messages to all routers.
Anycast RP
Two or more routers have the same RP address.
Senders and receivers join and register with the closest RP.
Multicast Source Discovery Protocol (MSDP) session(s) run between all
RPs.
32

Interdomain Multicast
MBGP: Multicast BGP
Defined in RFC 2283.
Address Family Identifier
(AFI) = 1 (IPv4), Sub-AFI = 2
(NLRI is used for multicast
RPF check).
AS5
RP
G
AS7
RP
F
172.16.5.1
172.16.6.1
Source
MSDP
MSDP peers talk via TCP
connections (port 639).
172.16.3.1
172.16.4.1
D
Source-Active (SA)
messages used to advertise
active sources in a domain.
RP
A
RP or receiver last-hop join

interdomain source tree.
BGP Peer
MSDP Peer
SA Message
AS100
33

Multicast VPN
MPLS VPN between PEs in
core.
IP multicast enabled in
MPLS VPN core.
Multicast virtual routing and
forwarding (MVRF) defined
per VRF multicast routing
and forwarding.
CE
MVPN traffic encapsulated

in Generic Routing
Encapsulation (GRE) tunnel.
CE
B
2
B
1
PE
PE
PE
MPLS
VPN
Core
Default
MDT
Multicast domain formed

between PEs.
MVRF tunnel interface joins
into multicast distribution
tree (MDT).
CE
C
E
CE
F
Data
MDT
PE
D
C
CE
D
PE
C
CE
34

Multicast Commands
Global commands
ip multicast-routing
ip multicast-routing vrf (name)
ip pim rp-address x.x.x.x
ip pim rp-candidate (interface)
Ip pim bsr-candidate (interface)
Ip pim send-rp-announce (interface)
Ip pim send-rp-discovery (interface)
ip msdp originator-id (interface)
Ip msdp peer x.x.x.x
Interface commands
Ip pim sparse-mode/dense-mode
Ip igmp join-group x.x.x.x
35

Multicast Commands (Cont.)
Multicast BGP commands
address-family ipv4 multicast
network x.x.x.x mask y.y.y.y
neighbor x.x.x.x activate
MVPN commands
mdt-default x.x.x.x
mdt-data x.x.x.x
Show commands
show ip mroute
show ip pim interface
show ip pim neighbor
show ip pim rp mapping
show ip bgp ipv4 multicast
show ip msdp peer
show ip mroute vrf (name)
36

Multicast Practice
Sparse mode and dense mode

IGMP
Static RP, BSR, auto RP, and anycast-RP
Interdomain multicast, MSDP, and MP-BGP
SSM and bidirectional PIM
Multicast VPN
37
This presentation will be continued in a Part III.
To view this content and more information please visit the

Cisco Learning Network at
http://www.cisco.com/go/learningnetwork
38

Preparing SP Lab-Part2 12feb09vb D-3928

Transféré par

Informations du document

Titre original

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

Preparing SP Lab-Part2 12feb09vb D-3928

Transféré par

Droits d'auteur :

Formats disponibles

Preparing for the Cisco CCIE

Service Provider Lab Exam

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

Topics Overview (covered in a three part series)

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Route reflector, client, confederation, and cluster

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Resource Reservation Protocol (RSVP)

Multiprotocol Border Gateway Protocol (MP-BGP)

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

Preparing for the Cisco CCIE SP Lab Exam: Part 2

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public: Created for the Cisco Learning Network www.cisco.com/go/learningnetwork

CCIE Service Provider Lab Exam:

RD: route distinguisher

RT: route target

2009 Cisco Systems, Inc. All rights reserved.