Notes
Slide Show
Outline
Click here for the presentation source
1
Using MPLS/VPN for Policy Routing
  • Walt Prue With Significant Help From Ken Lindahl and Jim Warner


  • Sponsored by CENIC (Corporation for Education Network Initiatives in California
2
Introduction
  • Cisco suggested MPLS/VPN as a possible solution  to CENIC’s policy routing needs.
  •  CENIC needs to know if it will scale to the requirements of the network.
3
Agenda
  • Define Problem
  • Examine Cisco’s ability to solve our problem
  • Viability of Cisco’s solution
  • Junipers Compatibility with Cisco’s MPLS/VPN
4
Overview
  • Does it scale to 100,000+ routes?
  • Can the existing equipment be used?
  • Can it be maintained?
  • Can CENIC introduce technology with minimal disruption?
  • Can Junipers play too?
5
Vocabulary
  • MPLS (MultiProtocol Label Switching)
  • VPN (Virtual Private Network)
  • VRF (VPN Routing and Forwarding)
  • PE (Provider Edge) router
  • P (Provider) router
  • CE (Customer Edge) router
6
MPLS
7
MPLS Issues
  • MPLS over ethernet
  • MTU discovery
  • TTL
  • Traceroute Across MPLS Enabled Net
  •  MPLS and ATM
8
MPLS/VPN
9
Policy Routing on CENIC
10
Routing Connectivity Matrix
11
Cisco’s MPLS/VPN
  • Current rel. 12 software can’t support  100,000 routes
  • Engine 1 gigabit ethernet ports couldn’t support MPLS/VPN
  • MPLS/VPN doesn’t currently support multicast
  • Cisco can forward MPLS traffic at near OC-12 line rates with engine 0 line cards
  • A workaround solution exists for multicast and 100,000 routes problem
12
Configuring and Maintaining MPLS/VPN
  • Configuring and syntax was straight forward (see below)
  • Troubleshooting was reasonable but a bit different than net engineers are used to
  • Installing on existing network would be disruptive
  • Each campus would need two logical ports for access to multicast and ISP service (use to reduce installation disruption )
  • Cisco has MPLS/VPN Tools Available
13
Syntax (Global)
14
Per CE I/F
15
Per Trunk I/F
16
Routing
17
Routing (cont.)
18
Junipers and MPLS/VPN
  • Compatible if LDP used instead of TAG distribution
  • A bit more complex to configure
  • Can handle 200,000+ routes
  • Can forward at OC-12 Line Rates
19
Summary
  • MPLS/VPN can be used to solve our policy routing problems
  • Ciscos can’t do MPLS/VPN with full routes or supporting multicast today
  • With a modified network design MPLS/VPN may be our solution
20
Where to Get More Information
  • RFC2547 BGP/MPLS VPNs
  • RFC 3031 Muliprotocol Label Switching Architecture
  • MPLS and VPN Architectures – Cisco Press
  • Juniper Documentation CD-ROM Release 5.0