ZXR10 8900 Series 10 Gigabit Routing Switch
Contents
1. PE2 PE2 PE2 PE2 config interface loopback10 config if ip address 1 1 1 3 255 255 255 255 config interface vlan40 config if ip address 148 1 1 3 255 255 255 0 PE2 config if mpls ip PE2 config interface vlan200 PE2 config if mpls xconnect 1 1 1 1 100 c PE2 config mpls ip PE2 config mpls ldp router id loopback10 force PE2 config mpls ldp target session 1 1 1 1 PE2 config router ospf 1 area 0 0 0 0 255 area 0 0 0 0 PE2 config router network 1 1 1 3 1 0 0 0 0 PE2 config router network 148 D 0 0 0 VPLS Configuration Example VPLS L2VPN interconnection needs to be implemented among CE1 CE2 and CE3 This is shown in Figure 30 FIGURE 30 VPLS CONFIGURATION EXAMPLE 1 oe Gei LS E Fei_1 3 vlan40 ya vlan300 X Gei_1 4 Gei_1 7 Gei 1 1 vlan10 vlan30 Gei Un vlan300 vlan100 vlan200 Fei_1 1 Fei_1 2 vlan100 vlan200 CE1 CE2 The configuration is as follows 58 Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 4 MPLS L2VPN Configuration Create VFI and configure VFI parameters such as vcid pwtype and peer Bind physical address to VLAN as shown in the figure bind gei_i 1i of PE1 to vlan 10 and gei_1 2 to vlan20 Configure interface addresses on vianiO of PE1 vian20 and vlan30 of P and vlan40 of PE2 Configure loopback addresses for PE1 P and PE2 Run IGP protocol such as OSPF on PE1 P2. in label distributed by local router for upstream LSR corresponding to FEC QutLabel out label distributed by downstream LSR for local router corresponding to FEC Dest destination network segment or host that is the bound FEC Pfxlen prefix length that is the mask of FEC Interface out interface NextHop next hop When a LSR receives a message it looks up the label forwarding table It searches the table according to InLabel of the message then the LSR replaces the Inlabel with Outlabel and sends the mes sage from the interface Label Distribution Protocol MPLS system RFC3031 defines the regulations of label distribu tion protocols Labels are distributed automatically Label distri bution protocols are used to mark the FEC between LSRs and mark the label mapping relationships There are the following types of protocols implementing label dis tribution function Label Distribution Protocol LDP Constrained Route LDP CR LDP Resource Reservation Protocol Traffic Extension RSVP TE Multiprotocol BGP MP BGP LDP is a protocol that generates labels dynamically It is based on UDP TCP protocols The protocol messages are routed hop by hop according to routing tables LDP marks the FEC between LSRs and it also marks the label mapping relationships then forms a LSP It associates FEC with LSP and maps FEC traffic to the LSP 16 Confidential and Proprietary Information
3. 66 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 5 MPLS OAM Configuration lt destination FEC type LDP IPv4 prefix address gt traffic eng MPLS TE tunnel destination This is destination address dotted decimal notation lt source This is source address source address gt lt ttl gt This sets TTL value ranging from 1 to 255 The default value is 30 lt reply mode gt Response mode of reply packet ipv4 or reply alert 3 Configuring ping mpls Command ZxR10 ping mpls ipv4 lt destination This checks LDP of address gt destination lt address st IPV4 and FEC of RSVP art gt lt address end gt lt increment gt Im in privileged mode lt tt gt pseudowire ipv4 address vc id lt vc id gt destination lt address start gt lt a ddress end gt lt increment gt traffic eng lt tunnel interface gt lt tunnel number gt ttl lt tt gt source lt source address gt rep eat lt count gt timeout lt seconds gt s ize lt datagram size gt reply mode lt reply mode gt interval lt msec gt Parameters lt destination FEC type LDP IPv4 prefix address gt traffic eng MPLS TE tunnel pseudowire This is ATOM VC type ipv4 address vc id lt vc id gt lt datagram This is the size of Ping mpls packet ranging size gt from 100 to 1500 100 by default interval lt msec This is timeout time in seconds ranging from gt 1 to 60 reply mode Re
4. Local binding means local label distribution and notifying to other LSRs Remote binding means that the label is notified by LSP peer For local network segment when a LSR receives the label imp null the LSR implements penultimate hop popping mecha nism Label forwarding table information on R1 is shown below Rl show mpls forwarding table Mpls Ldp Forwarding table InLabel OutLabel Dest Pfxlen Interface NextHop 18 Pop tag Lebel 2 32 vlan10 30 0 0 2 T7 16 tt 1 3 32 vlan10 300 02 16 Pop tag 20 0 0 4 30 vlan10 20 0 0 2 19 17 200 0 0 0 24 vlan10 30 0 0 2 Label Distribution Example for Specified Nerwork Segment As shown in Figure 16 R1 R2 and R3 are in the same MPLS do main R1 is a switch of G series R2 and R3 are routers Confidential and Proprietary Information of ZTE CORPORATION 23 ZXR10 8900 Series User Manual MPLS Volume ZTERHY FIGURE 16 LABEL DISTRIBUTION EXAMPLE ve 200 0 0 1 24 2 7 100 0 0 1 24 100 0 0 254 24 200 0 0 254 24 30 0 0 1 30 30 0 0 2 30 30 0 0 5 30 In MPLS VPN LDP only generates labels for MPLS Router ID LIB information on R1 is shown below Rl show mpls ldp bindings 1 1 1 1 32 local binding label imp null remote binding lsr 1 1 1 2 0 label 19 1 1 1 2 32 local binding label 18 remote binding lsr 1 1 1 2 0 label imp null inuse 1 1 1 3 32 local binding label 17 remote binding lsr 1 1 2 0 label 16 inuse 30 0 0 0 30 local
5. Confidential and Proprietary Information of ZTE CORPORATION 55 ZXR10 8900 Series User Manual MPLS Volume P ZxR10 Clear mac table vfi lt vfi name gt ZXR config Static pw lt pw name gt lt local label gt lt re mote label gt 13 ZXR10 config if mpls xconnect lt peer address gt static pw lt pw name gt 2 4 ZXR10 config vfi peer static pw lt peer ip address gt lt static pw name gt spoke tunnel lt tunnel number gt ZXR10 config vfi mtu lt mtu value gt HIT This configures to clear the corresponding MAC address table of designated VPLS on privileged mode 10 ZXR10 config mac learning strategy micode This configures MAC learning mode 11 ZXR10 config mac learn special This changes MAC learning mode to special 0 This configures static PW entry on local NE This configures L2VPN VPWS service using static PW By default TMPLS OAM function of MEG is not enabled This configures L2VPN VPLS service on VFI configuration mode The default attribute is hub This configures mtu of VFI on VFI configuration mode 16 ZXR10 config show static pw lt pw name gt brief This views static PW entry information Configuring Layer 2 Control Message Transparent Transmission VPLS Network Policy Gen ll 1 ZXR10 config vfi vcid lt vcid gt This configures VFI parameter vcid 2 ZXR10 config vfi pwtype ethernet This configures VFI ethernet vi
6. Src IP addr 10 10 12 1 Addresses bound to peer LDP Ident After setting up a normal LDP session use the following command to view the LDP label bindings that have been studied 26 Confidential and Proprietary Information of ZTE CORPORATION ZTEDY Chapter 2 MPLS Configuration zZxR10 Show mpls Idp bindings This displays LDP bindings that have been studied This example shows LDP label bindings that have been studied by R2 ZXR10_ R2 show mpls ldp bindings 0 10 1 1 255 255 255 295 local binding label 17 remote binding lsr 0 10 3 3 0 label 18 remote binding lsr 10 10 1 1 0 label imp null inuse 0 10 2 2 7255 255 255 255 local binding label imp null remote binding lsr 10 10 3 3 0 label 17 remote binding lsr 10 10 0 label 18 0 10 3 3 255 255 255 295 local binding labe 16 remote binding lsr 10 10 3 3 0 label imp null inuse remote binding lsr 10 10 0 label 17 O 10 12 0 255 255 255 0 local binding label imp null remote binding lsr 10 10 3 3 0 label 16 remote binding lsr 10 10 1 1 0 label imp null 0 10 23 0 255 255 255 0 local binding label imp null remote binding lsr 10 10 3 3 0 label imp null remote binding lsr 10 10 1 1 0 label 16 Local binding means local label distribution and notifies towards up stream Remote binding means label message notified from down stream LSR of which for local network
7. Switch Switch Switch Switch Switch Switch Chapter 1 Safety Instruction Table of Contents e Ee Ee E 1 SATAY Zeb t tee ee E 1 Safety Instruction Only duly trained and qualified personnel can install operate and maintain the devices During the device installation operation and maintenance please abide by the local safety specifications and related operation in structions otherwise physical injury may occur or devices may be broken The safety precautions mentioned in this manual are only supplement of local safety specifications The debug commands on the devices will affect the performance of the devices which may bring serious consequences So take care to use debug commands Especially the debug all com mand will open all debug processes so this command must not be used on the devices with services It is not recommended to use the debug commands when the user networks are in normal state ZTE Corporation will assume no responsibility for consequences re sulting from violation of general specifications for safety operations or of safety rules for design production and use of the devices Safety Signs The contents that users should pay attention to when they install operate and maintain devices are explained in the following for mats A warning Indicates the matters needing close attention If this is ignored serious injury accidents may happen or devices may be damaged Confidenti
8. neighbor 1 1 1 3 activate PE1 config router af exit PE1 config router exit PE1 config router ospf 1 PE1 config router network 1 1 1 1 0 0 0 0 area 0 PE1 config router network 175 0 0 0 0 0 0 3 area Configuration on P P config interface fei 0 1 P config if ip address 175 0 0 2 255 255 255 252 P config if mpls ip P config if exit P config interface fei 0 2 P config if ip address 176 0 0 1 255 255 255 252 P config if mpls ip P config if exit P config mpls ip P config router ospf 1 P config router network 175 0 0 0 0 0 0 3 area 0 P config router network 176 0 0 0 0 0 0 3 area 0 Configuration on PE2 PE2 config ip vrf vpn_a PE2 config vrf rd 100 1 PE2 config vrf route target import 100 1 PE2 config vrf route target export 100 1 PE2 config vrf exit 46 Confidential and Proprietary Information of ZTE CORPORATION HIT 2 loopbackl 65001 Chapter 3 MPLS L3VPN Configuration HIT PE2 config interface loopback1 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 config if config if exit config interfa config if config if config if exit config interfa config if config if config if exit config mpls ip config router config router config router config router config router mpls ce fei 2 1 ce fei 0 1 ip bgp 100 neighbor neighbor neighbor Jah Ek e address famil ip
9. 10 10 13 3 255 255 255 0 mpls traffic eng tunnels config if ip rsvp bandwidth 30000 10000 mpls traffic eng tunnels config interface loopbackl config if ip address 100 1 1 3 255 255 255 255 config mpls traffic eng tunnels config router ospf 1 config router mpls traffic eng router id loopback1l config router mpls traffic eng area 0 config router network 100 1 1 3 0 0 0 0 area 0 config router network 10 10 13 0 0 0 0 255 area 0 config router network 10 10 23 0 0 0 0 255 area 0 config router exit Configure Tunnel on R1 tunnell mode mpls traffic eng destination ipv4 100 1 1 3 mpls traffic eng bandwidth 20000 mpls traffic eng path option 2 explicit path mpls traffic eng path option 4 explicit path mpls traffic eng hot standby next address next address next address Confidential and Proprietary Information of ZTE CORPORATION 10 10 TO 10 HIT 13 3 se dE E strict strict strict SE Figures Figure 1 IP Forwarding cece eens eee eens eee tenet enna nena 4 Figure 2 ATM Fornwardimg eee e tees eee ee eeeeeneeneeas 5 Figure 3 Position Of MPLS eee ee eee eee ee eee rania 6 Figure 4 MPLS Working Principle eceeeee eee eee ee teen nena ees 7 Figure 5 MPLS Label Structure 7 Figure 6 MPLS babeliciriits mie cruseerctenta deere nition erties 8 Figure 7 MPLS Network Structure ecceeeeeee eee eeeee eee eee ees 9 Figure 8 Generating a Route Table 11 Fi
10. TRACE PING function to detect FEC IPV4UDP and RSVP of various types LSP TRACE PING re quest packet is a tagged UDP packet As for this packet the desti nation port is the well known port 3503 and source port is specified by sender Source address in IP layer is IP address of sender des tination address is 127 x x x 8 and TLV field contains downstream TLV to store label information for showing label information when 1SP TRACE PING succeeds Configure MPLS OAM Network node or link fault can be analyzed by executing command TRACE PING 1 Enabling Disabling Show ICMP Debugging Information Func tion ZXR10 config debug mpls Ispv This enables disable tlv error event packet show icmp debugging information function in global configuration mode When the function is enabled basic information of this echo packet can be shown when router sends or receives an MPLS echo packet The function is disabled by default Execute command no debug mpls Ispv tlv error even t packet to disable show debugging information function 2 Configuring trace mpls Command zxR10 trace mpls ipv4 des This checks LDP of tination address gt destination IPV4 and FEC of RSVP lt address start gt lt address end gt lt in in privileged mode crement gt ttl lt tt gt traffic eng lt tunnel interface gt lt tunnel number gt ttl lt tt gt lt source source address gt reply mode lt rep y mode gt Parameters
11. and PE2 to im plement interconnection of PE1 and PE2 and to learn loopback interface address route of the peer party Start MPLS on PE1 P and PE2 Configure mpls ip globally and specify the router id of mpls Idp Start mpls ip on vlan10 of PE1 vlan20 and vian30 of P and vlan40 of DEZ Configure target session on PE1 and PE2 to establish the Idp neighborhood relationship between PE1 and PE2 If P does not exist in networking the configuration is unnecessary Configure xconnect vfi on the interfaces of viani00 vlan200 and vlan300 on PE1 and PE2 connecting CE The following describes the configurations of each device PE1 configuration P mm Aa amp config config config config config config config config config Yyyy w A A a a ec a a a a a a a a a a a a a a config router network 1 1 config router network 175 1 config vfi vpls_a config vfi vcid 100 config vfi pwtype ethernet vlan config vfi peer 1 1 1 3 interface gei_1 1 config if switch access vlan 100 config if exit interface gei_1 2 config if switch access vlan 10 config if exit interface loopback10 config if ip address 1 1 1 1 255 255 255 255 interface vlan 100 config if xconnect vfi vpls a config if exit H interface vlan 10 config if ip address 175 1 1 1 255 255 255 0 config if mpls ip config if exi
12. balance is to implement load sharing and protect links when switches access to VPN through PE As shown in Figure 18 all VPN service traffic for example VPN traffic from PO and P1 goes to P4 through P2 and P3 After filtration service traffic goes back to PO and P1 from P4 and then goes to Internet For VPN A traffic from user A and user B to P2 and P3 and traffic going back to P2 and P3 from P4 are load balanced Confidential and Proprietary Information of ZTE CORPORATION 33 ZXR10 8900 Series User Manual MPLS Volume ZTEDHY FIGURE 18 MPLS L3VPN LOAD BALANCE User B ZXR10 8900 series switch support load balance traffic forwarded by VPN including the following types Load balance traffic forwarded according to inner label Load balance traffic forwarded according to outer label Load balance traffic forwarded according to common route MPLS L3VPN Load Balance on Smartgroup Link In current network services require more and more bandwidth A common situation is that a gigabit or 10 gigabit link can not meet the requirement of services In this situation ECMP and aggregation of multiple links can solve the problem in Layer 3 Aggregation of multiple physical links can solve the problem in Layer 2 MPLS VPN function is used widely in internal metropolitan core networks and enterprise networks In MPLS VPN network load balance on Smartgroup link has important function Smartgroup link may exist between CE and PE PE
13. binding label imp null remote binding lsr 1 1 1 2 0 label imp null 30 0 0 4 30 local binding label 16 remote binding lsr 1 1 1 2 0 label imp null inuse 100 0 0 0 24 local binding label imp null remote binding lsr 1 1 1 2 0 label 18 200 0 0 0 24 local binding label 19 remote binding lsr 1 1 1 2 0 label 17 inuse Configuration on R1 Rl configure terminal R1 config acl standard number 1 R1 R1 config mpls ldp access fec for 1 config mpls ldp access fec force R1 config std acl rule 1 permit 1 1 1 1 0 0 0 0 R1 config std acl rule 2 permit 1 1 1 2 0 0 0 0 R1 config std acl rule 3 permit 1 1 1 3 0 0 0 0 R1 config std acl exit Now LIB information on R1 is shown as follows Rl sh mpls ldp bindings 1 1 1 1 32 local binding label imp null remote binding lsr 1 1 1 2 0 label 19 Lede dl 2 32 24 Confidential and Proprietary Information of ZTE CORPORATION ZTEDY Chapter 2 MPLS Configuration local binding label 18 remote binding lsr 1 1 1 2 0 label imp null inuse 1 1 1 3 32 local binding label 17 remote binding lsr 1 1 1 2 0 label 16 inuse The above information shows that Ri only generates labels for router ID Configurations on R2 and R3 are similar with that on R1 MPLS Maintenance and Diagnosis To view MPLS configuration information use the following com mands To view enabled MPLS interfaces use the following command
14. config vfi vpls_a P config vfi vcid 100 P config vfi pwtype ethernet vlan P config vfi peer 1 1 1 1 P config vfi peer 1 1 1 3 P config interface gei_1 8 P config if switch access vlan 400 P config if exit P config interface vlan 400 P config if xconnect vfi vpls_a PE2 configuration PE2 config vfi vpls_a PE2 config vfi peer 1 1 1 2 In the two networking modes in Figure 30 and in Figure 31 the flat VPLS network is inside the MPLS network PWs connecting PEs in a VPLS instance are HUB PWs When a new PE is added into the VPLS instance no PW needs to be established between the PE and other PEs As shown in Figure 32 PE10 and PE 20 only establish PW relationship with P also called PE3 They do not need to establish PW relationship with PE1 and PE2 This PW type is called SPOKE PW FIGURE 32 VPLS CONFIGURATION EXAMPLE 3 Fei oi vlan400 DX Fei 3 3 vlan400 CE3 Fei vlan10 vlan30 Fei_2 3 0 vlan200 Fei_7 1 Fei_5 1 TELAT vlan200 vlan300 vlan100 CE1 CE4 CE2 Router IDs of PE10 and PE20 are 1 1 1 10 and 1 1 1 20 Configu ration is as follows P PE3 configuration P config vfi vpls_a P config vfi peer 1 1 1 10 spoke P config vfi peer 1 1 1 20 spoke Confidential and Proprietary Information of ZTE CORPORATION 61 ZXR10 8900 Series User Manual MPLS Volume ZTEDH For other configurations refer to PE1 PE10 configuration PE10 config vfi vpls_a PE10 confi
15. in each hop process is shortened the transmission time of data on a network is reduced and the network speed is improved Improving flexibility and scalability Since MPLS uses AnyToAny connection the network flexibility and scalability are improved With respect to flexibility special control policy can be customized to meet special requirements of different users and implement value added services The scalability includes the following two aspects more VPNs on a network and easy user expansion in the same VPN Convenience in user s application The MPLS technology will find wider application in networks of different carriers so that an enterprise user can set up a global VPN conveniently Improving security MPLS serves as a channel mechanism to implement transpar ent message transmission LSPs of MPLS have high reliability and security similar to frame relay and ATM Virtual Channel Connection VCC Enhancing service integration capability A network can support the integration of data audio and video services QoS guarantee of MPLS Related standards and drafts drawn by IETF for BGP MPLS VPN gt RFC 2547 BGP MPLS VPN gt Draft RFC 2547bis BGP MPLS VPN gt RFC 2283 multi protocol extension BGP4 Related Terms A BGP MPLS VPN network system covers the following types of network devices PE A Provider Edge PE refers to a router connected to a CE in a client site on a carrier s netwo
16. information of different network segments for different routing protocols Otherwise the router can not for ward the packets IP network is a connectionless network therefore its QoS is not well ensured ATM Forwarding Features ATM forwarding procedure is shown in Figure 2 4 Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 2 MPLS Configuration FIGURE 2 ATM FORWARDING VPISI VCI 1 switch switch switch VPI 2 VPI 26 VPI 20 VCI 44 VCI 44 VCI 30 ATM switches forward packets through VPI VCI The switches do not judge routing information when forwarding ATM cells When an ATM switch receives a packet it looks up VPI VCI table and forwards the packets in switching way When forwarding packets ATM switches have the following fea tures ATM chooses the path on the base of data link layer VPI VCI is effective for local switch The fast looking up is implemented by hardware ATM network is a connection oriented network so it can im plement QoS according to different VPIs VCIs ATM supports traffic control mechanism and different kinds of services such as real time service MPLS Features MPLS belongs to the third generation of network architecture It is a new switching standard of IP high speed backbone network brought forward by Internet Engineering Task Force IETF MPLS uses simplified ATM switching technology to implement switching in layer 2 and layer 3
17. neighbor 1 1 1 3 activate Configuration on PE2 PE2 PE2 PE2 PE2 PE2 PE2 config router bgp 100 config router neighbor 1 1 1 1 remote as 100 config router neighbor 1 1 1 1 activate config router neighbor 1 1 1 1 update source loopbackl config router address family vpnv4 config router af neighbor 1 1 1 1 activate d al 44 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 3 MPLS L3VPN Configuration Configuring MPLS L3VPN Load Balance To configure MPLS L3VPN load balance perform the following steps This enters BGP configuration mode 2 ZXR10 config router address family ipv4 vrf This enters address VPN IPv4 configuration mode 3 ZXR10 config router af V pn maximum paths This enables load balance lt number gt function and sets the number of balanced routes To disable load balance function use no vpn maximum paths command MPLS L3VPN Configuration Example As shown in Figure 26 in a MPLS domain PE1 P and PE2 run MPBGP MPLS and OSPF CE1 and PE1 run BGP CE2 and PE2 run OSPF FIGURE 26 MPLS L3VPN CONFIGURATION EXAMPLE fei_1 2 CE1 CE2 fei_1 2 fei_1 1 fei_1 1 vlan20 a fei_2 1 vlan10 h DZ PE2 2 wm S fei_0 1 Confidential and Proprietary Information of ZTE CORPORATION 45 ZXR10 8900 Series User Manual MPLS Volume Configuration on CE1 CE1 config interface fei_1 1 CE1 config if ip address 10 1 0 1 255 255 2
18. of this document shall not acquire any license to the subject matter herein ZTE CORPORATION reserves the right to upgrade or make technical change to this product without further notice Users may visit ZTE technical support website http ensupport zte com cn to inquire related information The ultimate right to interpret this product resides in ZTE CORPORATION Revision History Revision No Revision Date Revision Reason R1 3 20100205 Edition update Serial Number sjzl20093840 Contents About This Manual sssssssussnnnnnnnnnnnnnnnnnnnnnnnnnnn L Safety Instruction E Safety INS rUCOM eivi ENEE 1 EE LEET 1 MPLS Configuration ss eapseeuegeuggeseg NENNEN ewen D MPLS OVERVIEW de ge EEE EE RENE EE E MPLS FUNCOM sirrinin yaoa E vides adele vine 3 IP Forwarding Features 4 ATM Forwarding Features 4 MPLS Features EE 5 MPLS Working Principle cceeeee eect neste eee ee eee ea eeee 6 MPLS TERMS EE 7 MPLS Label tect ee ee Ee EE 7 Forward Equivalence Class 8 MPLS Network Structure ccccccsceseeee estes eee eeaeeaeeaaennees 9 LSP EstablishMent su SEdNRKEN ENEE NEEN ENNER NENNEN ENEE a dEH 9 LSP Establishment Procedure ccceceeeeeeeeee esses eaeeenees 10 Penultimate Hop POPping ccceccceceeeeeeeeeeeeeeeaeeaeeeeenees 12 Label Control and Management 13 Label Distribution Mode cccecceeeeeee eee eee eee e eee eaeeaeennees 14 Label Control Mode NNN 15 Label Holding Mode 15 Label F
19. packets are identified by value 0x8847 for unicast and value 0x8848 for multicast In PPP a new NCP MPLSCP is identified by value 0x8281 The S field of a label is shown in Figure 6 In a MPLS domain a message can be nested with multiple labels FIGURE 6 MPLS LABEL Link Layer Header Top Label abet Bottom Label Network Layer Header Gi CH Bottom of Stack When a message is encapsulated with multiple labels LSR deals the message with First In First Out FIFO rule That is LSR just forwards the message according to the top label Forward Equivalence Class Forward Equivalence Class FEC is a representation of a group of packets that share the same requirements for their transport All packets in such a group are provided with the same treatment During labeling binding of LDP different FECs correspond to differ ent labels Each node in MPLS domain identifiers the FEC to which the packet belongs according to the label When two groups of packets with the same source address and dif ferent destination addresses enter a MPLS domain MPLS judges the groups according to FEC and MPLS finds that the two groups belong to two FECs Therefore MPLS treats the groups in differ ent ways for example in different paths and reserving different resources The two groups are classified into different classes at the ingress of the MPLS domain and encapsulated different labels The nodes in the MPLS domain forward t
20. provider it is cheaper more flexible and allows new services to be provisioned more simply and quickly than traditional solutions Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 4 MPLS L2VPN Configuration Service providers which provide two layer VPN of MPLS are only in charge of the connectivity of layer two and they do not take part in routing computation of VPN subscription All connected two layer VPN has a problem that it needs to assign a connection between CE and PE for every CE to others For example if there are four CEs in one VPN it needs to establish six connections for all CEs The extension of two layer VPN of MPLS is not good Two layer VPN can be built through MP BGP extension or LDP ex tension and drafts of these two are respectively draft ietf l2vpn vpls bgp xx and draft ietf l2vpn vpls Idp xx In VPLS LDP plan it emphasizes in solving the problem of how to establish Virtual Circuit VC between two CEs Martini L2 VPN uses VC TYPE VC ID to distinguish VC VC TYPE indicates type of VC is ATM VLAN or PPP and VC ID is used to identity a VC solitarily In all VCs of one VC TYPE VC ID has uniqueness in the entire SP network PE which connects to two CEs switches VC ID through LDP and binds CE with its VC ID After LSP has been established successfully between two PEs and VC IDs of two sides have been switched and bound a VC is estab lished successfully Two CEs can transmit two l
21. segment the label is distributed as imp null The receiver discards the label at the last but one router Similar commands are shown in the following example ZXR10_Rl show mpls forwarding table Mpls Ldp Forwarding table nLabel OutLabel Dest Pfxlen Interface NextHop 8 Pop tag 10 10 2 2 32 vlan10 0 10 12 2 F 16 10 10 33 32 vlan10 10 10 122 6 Pop tag 10 10 23 0 24 vlan10 T010 12 2 ZXR10_R2 show mpls forwarding table Mpls Ldp Forwarding table nLabel OutLabel Dest Pfxlen Interface NextHop 7 Pop tag RAN KE EE 32 vlan10 L t CD lr 6 Pop tag LE EE 32 vlan20 10 10 23 3 ZXR10_R3 show mpls forwarding table Mpls Ldp Forwarding table nLabel OutLabel Dest Pfxlen Interface NextHop 8 17 LO 20 040 32 vlan20 10410 2342 7 Pop tag 10 10 2 2 32 vilan20 10 10 23 2 6 Pop tag 10 10 12 0 24 vlan20 10 10 23 2 InLabel means label bundled locally OutLabel means label studied from down stream If the label notified from down stream is imp null it will do Pop tag To view MPLS debugging information perform the following steps Confidential and Proprietary Information of ZTE CORPORATION 27 ZXR10 8900 Series User Manual MPLS Volume ZXR10 debug mpls Idp transport zZXR10 debug mpls Idp session zxR10 debug mpls idp messages ZxR10 debug mpls Idp bindings zxR10 debug mpls idp advertisements HIT This monitors the message LDP discovered This monitors the LDP session This monitors the message sending
22. the configuration is unnecessary If P does Configure mpls xconnect on interfaces vlan100 and vlan200 on PE1 and PE2 connecting CE The following describes the configurations of each device PE1 configuration config config config PE1 config interface loopback10 config if ip addr ss 1 1 1 1 255 255 255 255 interface vlan100 config if mpls xconnect 1 1 1 3 100 interface vlanl0 config if ip address 175 1 1 1 255 255 255 0 config if mpls ip mpls ip mpls ldp router id loopback10 force Confidential and Proprietary Information of ZTE CORPORATION 57 ZXR10 8900 Series User Manual MPLS Volume ZTEDHY DEI DEI DEI DEI config mpls ldp target session 1 1 1 3 config router ospf 1 config router network 1 1 1 1 0 0 0 0 1 1 0 0 0 0 1 area 0 0 0 0 config router network 175 255 area 0 0 0 0 P configuration P config interface loopback10 P config if ip address 1 1 1 2 255 255 255 255 P config interface vlan20 P config if ip address 175 1 1 2 255 255 255 0 P config if mpls ip P config interface vlan30 P config if ip address 148 1 1 2 255 255 255 0 P config if mpls ip P config mpls ip P config mpls ldp router id loopback10 force P config router ospf 1 P config router network 1 1 1 2 0 0 0 0 0 0 P config router network 148 1 1 0 0 0 0 255 area 0 0 P config router network 175 1 1 0 0 0 0 0 0 PE2 configuration
23. the procedure the session will be closed and TCP connection is interrputed 1 R1 and R2 send multicast Hello messages to protocol inter faces The messages are encapsulated by UDP and port num ber is 646 Meanwhile protocol interfaces on R1 and R2 mon itor Hello messages in real time to discover neighbors 2 After R1 and R2 receive Hello messages they judge whether the session is established with the peer If session has not been established they prepare to establish a session The session is a TCP connection establishment procedure using port number 646 Before establishing the TCP connection R1 Confidential and Proprietary Information of ZTE CORPORATION 17 ZXR10 8900 Series User Manual MPLS Volume ZTERHY and R2 choose a master according to IP addresses The router with bigger IP address will acts as the master The master initiates TCP connection Here suppose that IP address of R2 is bigger Therefore R2 sends TCP connection request 3 R2 sends an initialization message to establish session The message contains parameters to be negotiated 4 When R1 receives the message from R2 it checks the param eters If parameters pass the check R1 will send an initializa tion message and a keepalive message to R2 Parameters to be negotiated are included in the initialization message 5 R2 checks the message from R1 If parameters pass the check R2 will send an initialization message to R1 6 The session is establishe
24. 1 1 2 middle node Configuration of R1 config if config if config if config if config if config if config if config if config if config if config mpl config router ospf 1 config interface vlanl0 ip address 10 10 13 1 255 255 255 0 ip rsvp bandwidth 30000 10000 mpls traffic eng tunnels exit config interface vlan20 ip address 10 10 1J2 1 255 255 255 0 ip rsvp bandwidth 30000 10000 mpls traffic eng tunnels exit ip address 1001 10 12 255 255 255 255 exit s traffic eng tunnels config router mpls traffic eng area 0 config router mpls traffic eng router id loopback1l config router network 100 1 1 0 0 0 0 area 0 config router network 10 10 12 0 0 0 0 255 area 0 D A A A A A A A A A A A A A A A A A A A A R2 R2 R2 R2 R2 R2 R2 R2 R2 R2 R2 R2 config if config if config if config if config if config if config if config if config if config interface loopbackl config router network 10 10 13 0 0 0 0 255 area 0 config router exit Configuration of R2 config interface vlan20 ip address 10 10 12 2 255 255 255 0 mpls traffic eng tunnels ip rsvp bandwidth 30000 10000 exit config interface vlan30 ip address 10 10 23 2 255 255 255 0 mpls traffic eng tunnels mpls traffic eng backup path tunnel22 ip rsvp bandwidth 30000 10000 exit co
25. 10 8900 Series User Manual MPLS Volume ZTERH Figure 34 hot standby Configuration Example ssssssssssersresses 70 74 Confidential and Proprietary Information of ZTE CORPORATION Glossary ATM Asynchronous Transfer Mode BGP Border Gateway Protocol CE Customer Edge DU Downstream Unsolicited DoD Downstream on Demand FEC Forwarding Equivalence Class FIFO First In and First Out FR Frame Relay FRR Fast Reroute IETF Internet Engineering Task Force IPX Internetwork Packet Exchange protocol IS IS Intermediate System to Intermediate System LDP Label Distribution Protocol LER Label Edge Router LIB Label Information Base LSP Label Switched Path LSR Label Switched Router MPLS Multi Protocol Label Switching NCP Network Control Protocol OSPF Open Shortest Path First PE Provider Edge Confidential and Proprietary Information of ZTE CORPORATION 75 ZXR10 8900 Series User Manual MPLS Volume PPP Point to Point Protocol Qos Quality of Service RD Route Distinguisher RFC Request For Comments RSVP Resource ReSerVation Protocol TCP Transfer Control Protocol UDP User Datagram Protocol VC Virtual Circuit VCC Virtual Channel Connection VCI Virtual Circuit Identifier VPI Virtual Path Identifier VPLS Virtual Private LAN Service VPN Virtual Private Network VPWS Virtual Private Wire Service WAN Wi
26. 3 DOWNSTREAM ON DEMAND Label Control Mode There are two label control modes Independent Each LSR can notify label mapping messages to neighbor LSR at any time Ordered Only when a LSR receives specific label mapping messages of a particular FEC or when the LSR is the egress the LSR sends label mapping messages to upstream LSR Label Holding Mode Label holding mode means the mode to process label bindings that a LSR received but currently not in use There are two label holding modes liberal and conservative Suppose there are two LSRs named LSRi and LSR2 and LSR2 is not the next hop of LSR1 For a particular FEC when LSR1 receives label binding from LSR2 if LSR1 saves this binding this means that LSR1 uses liberal label holding mode If LSR1 discards the binding this means that LSR1 uses conservative label holding mode In liberal label holding mode a LSR can adapt itself to route changes quickly In conservative label holding mode a LSR can reduce the number of label bindings Confidential and Proprietary Information of ZTE CORPORATION 15 ZXR10 8900 Series User Manual MPLS Volume ZTEDHY Label Forwarding Table In a label forwarding table LSR stores binding information of FECs and labels A LSR maintains the label forwarding through label dis tribution protocol dynamically When forwarding messages LSR looks up the table A label forwarding table includes the following terms InLabel
27. 4 100 235 234 02 00 22 3 OSPF information between CE2 and PE2 is shown below PE2 show ip ospf neighbor process 2 OSPF Router with ID 10 2 0 2 Process ID 2 Neighbor 10 2 0 1 In the area 0 0 0 0 via interface Zei 2 1 10 2 0 1 Neighbor is BDR State FULL priority 1 Cost 1 Queue count Retransmit 0 DD 0 LS Req 0 Dead time 00 00 29 Options 0x42 In Full State for 02 02 42 IBGP connection between PE1 and PE2 is shown below PEl show ip bgp summary Neighbor Ver As MsgRcvd MsgSend Up Down s State PfxRcd 1 113 4 100 139 132 01 09 33 0 ECH 0s 4 65001 240 241 02 03 36 2 The Intags distributed by PE1 for VRF route are shown below PEl show ip protocol routing vrf vpn a Routes of vpn status codes valid gt best s stale Dest NextHop Intag Outtag gt 10 1 0 0 30 10 1 0 2 17 notag gt 10 1 0 2 32 10 1 0 2 16 notag zz 10 1 1 0 24 10 1 0 1 19 notag gt 10 240 0730 1 1 1 3 22 17 gt 10 2 1 0 24 1 1 1 3 23 19 The Intags of VRF routes on PE2 are shown below PE2 sh ip protocol routing vrf vpn_a Routes of vpn status codes valid gt best s stale Dest NextHop Intag Outtag gt 10 1 0 0 30 etek 22 17 gt 10 1 1 0 24 E D5 Ak 23 19 gt 10 2 0 0 30 0 2 0 2 17 notag 10 2 0 0 30 6 2 0 6 18 notag gt 10 2 0 2 32 052 052 16 notag gt 10 2 1 0 24 0 2 0 1 19 notag 48 Confidential and Proprietary Information of ZTE CORPORATION RtPrft 0 0 20 200 200 RtPrft 200 200 0 110 0 110 Protoco
28. 55 252 CE1 config if exit CE1 config interface fei_1 2 CE1 config if ip address 10 1 1 254 255 255 255 0 CE1 config if exit CE1 config router bgp 65001 CE1 config router redistribute connected CE1 config router neighbor 10 1 0 2 remote as 100 CE1 config router neighbor 10 1 0 2 activate Configuration on PE1 PE1 config ip vrf vpn_a PE1 config vrf rd 100 1 PE1 config vrf route target import 100 1 DEI config vrf route target export 100 1 DEI config vlan 10 PE1 config vlan switchport pvid gei_1 1 PE1 config vlan exit DEI config vlan 20 PE1 config vlan switchport pvid gei_1 2 PE1 config vlan exit PE1 config interface vlan 10 PE1 config if ip address 175 0 0 1 255 255 255 25 PE1 config if mpls ip PE1 config if exit PE1 config mpls ip PE1 config interface vlan 20 DEI config if ip vrf forwarding vpn_a PE1 config if ip address 10 1 0 2 255 255 255 252 PE1 config if exit PE1 config router bgp 100 PE1 config router neighbor 1 1 1 3 remote as 100 PE1 config router neighbor 1 1 1 3 activate PE1 config router neighbor 1 1 1 3 update source PE1 config router address family ipv4 vrf vpn a DEI config router af redistribute connected PE1 config router af neighbor 10 1 0 1 remote as PE1 config router af neighbor 10 1 0 1 activate PE1 config router af exit DEI config router address family vpnv4 PE1 config router af
29. CE1 successfully as shown below CE2 ping 10 1 1 1 sending 5 100 byte ICMP echos to 10 1 1 1 timeout is 2 seconds Success rate is 100 percent 5 5 round trip min avg max 0 0 10 Configuring EBGP between CE and PE To configure EBGP between a CE and a PE perform the following steps 1 ZXR10 config router bgp lt as number gt This enters BGP route configuration mode 2 XR10 config router address family ipv4 vrf This enters IPv4 address lt vpn name gt family configuration mode XR10 config router af neighbor lt ip address gt This configures an EBGP peer emote as lt as number gt Z Z r ZXR10 config router af redistribute connected This redistributes direct route to BGP R10 5 ZX config router af exit address family This exits IPv4 address family configuration mode Example This example shows how to configure EBGP between CE1 and PE1 as shown in Figure 24 42 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 3 MPLS L3VPN Configuration FIGURE 24 CONFIGURING EBGP BETWEEN CE AND PE 10 1 1 0 24 10 2 1 0 24 CE1 CE2 10 1 0 1 30 10 2 0 1 30 10 2 0 2 30 10 1 0 2 30 lt Configuration on CE1 CE1 config router bgp 65001 CE1 config router redistribute connected CE1 config router neighbor 10 1 0 2 remote as 100 CE1 config router neighbor 10 1 0 2 activate Configuration on PE1 PE1 config router bgp 100 PE1 c
30. CMP echos to 10 2 1 254 timeout is 2 seconds Success rate is 100 percent 5 5 round trip min avg max 0 0 0 PE1 can ping to the LAN connecting to CE1 successfully as shown below PEl ping vrf vpn a 10 1 1 254 sending 5 100 byte ICMP echos to 10 1 1 254 timeout is 2 seconds Success rate is 100 percent 5 5 round trip min avg max 0 0 0 ms PE1 can telnet to PE1 as shown below PEl telnet 10 1 0 1 vrf vpn VRF table on PE1 is shown below PEl show ip route vrf vpn a IPv4 Routing Table Dest Mask Gw Interface Owner pri metric 1041 00 255 255 255 252 10 1 0 2 vilan20 direct 0 0 1010 22 255 255 255 255 10 1 0 2 vilan20 address 0 0 10 1 1 0 255 255 255 0 10 1 0 1 vilan20 bgp 20 0 Confidential and Proprietary Information of ZTE CORPORATION 47 ZXR10 8900 Series User Manual MPLS Volume HIT LO 2552595299292 LH vlan10 bgp 200 0 10 22140 259 255 255 0 1 1 1 3 vlan10 bgp 200 0 VRF table on PE2 is shown below PE2 show ip route vrf vpn a IPv4 Routing Table Dest Mask Gw Interface Owner pri metric 105100 255 255 255 252 1 1 1 1 fei_0 1 bgp 200 0 101 3130 255 255 255 0 L 2332 Zei 0 1 bgp 200 0 10 2 0 0 255 255 255 252 10 2 0 2 fei_2 1 direct 0 0 10 2 0 2 255 255 255 255 10 2 0 2 fei 2 1 address 0 0 L H 255 255 255 0 10 2 0 1 fei 2 1 ospf 110 2 EBGP connection between CE1 and PE1 is shown below CEl show ip bgp summary Neighbor Ver As MsgRcvd MsgSend Up Down s State PfxRcd 10 1 0 2
31. E1 config router ospf 1 DEI config router network 1 1 1 1 0 0 0 0 area 0 0 0 0 DEI config router network 175 0 0 0 0 0 0 3 area 0 0 0 0 Configuration on P P config router ospf 1 P config router network 175 0 0 0 0 0 0 3 area 0 0 0 0 P config router network 176 0 0 0 0 0 0 3 area 0 0 0 0 Configuration on PE2 PE2 config router ospf 1 PE2 config router network 1 1 1 3 0 0 0 0 area 0 0 0 0 PE2 config router network 176 0 0 0 0 0 0 3 area 0 0 0 0 Configuring VRF on PE A VRF is used to relate information of a VPN Different VRFs on a PE are independent A VRF includes an interface table a routing table a label forwarding table and routing protocol information To create a VRF and configure related parameters perform the following steps ZXR10 config ip vrf lt vrf name gt This creates a VRF ZXR10 config vrf rd lt route distinguisher gt This configures RD 3 ZXR10 config vrf route target import export bot This configures router target h lt extended community gt aid Note RD is unique on local router and in the whole MPLS domain Mul tiple router targets can be configured on a router To associate VRF with an interface perform the following steps 4 ZXR10 config interface vlan lt v an number gt This enters Layer 3 interface configuration mode 5 ZXR10 config if ip vrf forwarding lt vrf name gt This associates VRF with an interface e ZXR10 config if ip add
32. It provides an identifier for each IP message and encapsulates the identifier to a new MPLS message together with the IP message deciding the transmission path and priority of the IP message The differences between MPLS and traditional WAN technology are in the label distribution method and label stack introduced by MPLS In MPLS the use of label stack brings new applications such as traffic engineering VPN and Fast Re Routing FRR Before forwarding the IP packet according to corresponding path the MPLS router reads the header identifier of the message instead of the IP address in each IP message Therefore the speed to Confidential and Proprietary Information of ZTE CORPORATION 5 ZXR10 8900 Series User Manual MPLS Volume ZTERHY forward packets is much faster and MPLS is called a layer 2 5 protocol as shown in Figure 3 FIGURE 3 POSITION OF MPLS MPLS ATM FR Ethernet PPP SDH ODH WCN CSMA MPLS can use different layer 2 protocols Till now MPLS task force has implemented standardization of identifiers used in FR ATM PPP link and IEEE802 3 LANs When MPLS runs in FR and ATM it also carries free connectivity in IP network to these connection orientated technologies The working mechanism of MPLS network is that it implements routing through IP outside the MPLS network and implements switching through looking up labels within MPLS network MPLS has the following advantages MPLS provides connection
33. MPLS Configuration forwards messages to destinations connecting to it directly For aggregated routes LER has to look up routing table for accurate routes In other situations Layer 2 information of messages is recorded in LFIB so there is no need to look up routing table The messages are switched directly As shown in Figure 11 RC is an egress LER to 47 1 0 0 16 so RC distributes a particular label 3 means implicit null for messages to 47 1 0 0 16 When RB receives the label 3 distributed by RC RB knows that it is the penultimate hop popping LSR FIGURE 11 PENULTIMATE Hop POPPING In EE H Dest Intf Out EoLA gt During forwarding procedure when RB receives a message with a label 50 from RA it looks up the label forwarding table RB finds that the out label is 3 so it removes the label in the message and sends the message to RC When RC receives the message without a label it looks up routing table directly and forwards the message Label Control and Management In MPLS there are two label distribution modes Downstream on Demand DoD Downstream Unsolicited DU In MPLS there are two label control modes Independent Ordered In MPLS there are two label holding modes Liberal Conservative Confidential and Proprietary Information of ZTE CORPORATION 13 ZXR10 8900 Series User Manual MPLS Volume ZTERHY By default devices of ZTE use DU mode indep
34. PLS L3VPN Load Balance on bruet FE neg et ieee beta hb 49 MPLS L3VPN Overview MPLS VPN is an MPLS based IP VPN It is a routing method of applying the MPLS technology to network routing and switching equipment to simplify core routers MPLS VPN uses the label switching combined with traditional routing technologies to im plement IP based VPN MPLS VPN can be used to construct broadband Intranet and Ex tranet and can meet multiple flexible service requirements MPLS VPN can utilize the powerful transmission capability of a com mon backbone network reduce the construction costs of the In tranet greatly improve the operation and management flexibility of user s networks and meanwhile can meet the requirements of users for secure realtime broadband and convenient information transmission In an IP based network MPLS has the following advantages Reducing costs MPLS simplifies the integration technology of ATM and IP effi ciently combines the Layer 2 and Layer 3 technologies reduces costs and protects user s investment at earlier stages Improving resource utilization Since label switching is used on the network user s LANs at different points can use repeated IP addresses to improve the utilization of IP resources Improving network speed Confidential and Proprietary Information of ZTE CORPORATION 29 ZXR10 8900 Series User Manual MPLS Volume ZTEDHY Since label switching is used the address search time
35. RATION 37 ZXR10 8900 Series User Manual MPLS Volume ZTERHY Configuring Static Route between CE and PE To configure a static route to CE on a PE use the following com mand ZXR10 config ip route vrf lt vrf name gt lt prefix of This configures a static route to destination ip address gt lt network mask gt lt next hop CE on a PE address gt To redistribute static route to BGP perform the following steps ZXR10 config router bgp lt as number gt This enters BGP route configuration mode ZXR10 config router address family ipv4 vrf This enters VRF address lt vrf name gt family configuration mode ZXR10 config router af redistribute static This redistributes the static route Example This example shows how to configure static route between CE and PE As shown in Figure 21 configure a static on PE1 and CE1 FIGURE 21 CONFIGURING STATIC ROUTE BETWEEN CE AND PE 10 1 1 0 24 10 2 1 0 24 fei_1 2 CEI Configuration on CE1 38 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 3 MPLS L3VPN Configuration CE1 config interface fei_1 1 CE1 config if ip address 10 1 0 1 255 255 255 252 CE1 config interface fei_1 2 CE1 config if ip address 10 1 1 254 255 255 255 0 CE1 config ip route 10 2 0 0 255 255 0 0 10 1 0 2 Configuration on PE1 DEI DEI DEI DEI config ip route vrf vpn a 10 1 0 0 255 255 0 0 10 1 0 1 config router bgp 100 config router add
36. ZTEDR ZXR10 8900 Series 10 Gigabit Routing Switch User Manual MPLS Volume Version 2 8 02 C ZTE Ce ION NO 55 Hi tech Road South ShenZhen P R China 80 URL http ensupport zte om cn E mail support zte com c LEGAL INFORMATION Copyright 2010 ZTE CORPORATION The contents of this document are protected by copyright laws and international treaties Any reproduction or distribution of this document or any portion of this document in any form by any means without the prior written consent of ZTE CORPO RATION is prohibited Additionally the contents of this document are protected by contractual confidentiality obligations All company brand and product names are trade or service marks or registered trade or service marks of ZTE CORPORATION or of their respective owners This document is provided as is and all express implied or statutory warranties representations or conditions are dis claimed including without limitation any implied warranty of merchantability fitness for a particular purpose title or non in fringement ZTE CORPORATION and its licensors shall not be liable for damages resulting from the use of or reliance on the information contained herein ZTE CORPORATION or its licensors may have current or pending intellectual property rights or applications covering the subject matter of this document Except as expressly provided in any written license between ZTE CORPORATION and its licensee the user
37. address 1 1 1 3 255 255 255 255 ip vrf forwarding vpn_a ip address 10 2 0 2 255 255 255 252 ip address 176 0 0 2 255 255 255 252 remote as 100 activate update source loopbackl y ipv4 vrf vpn a Lal ale ell el PE2 config router af redistribute ospf int redistribute connected PE2 config router af PE2 config router af PE2 config router PE2 config router af PE2 config router af PE2 config router PE2 config router PE2 config router PE2 config router PE2 config router PE2 config router PE2 config router PE2 config router c c exit address famil neighbor exit exit ospf 1 network 1 1 network 176 0 exit y vpnv4 1 1 1 activate rea 0 23 05 05 0504 0 0 0 0 0 3 area 0 ospf 2 vrf vpn a network 10 2 redistribute Configuration on CE2 CE2 config interfa ce fei 1 1 0 0 0 0 0 3 area 0 bgp int CE2 config if ip address 10 2 0 1 255 255 255 252 CE2 config if exit CE2 config interfa CE2 CE2 config if exit CE2 config router CE2 config router CE2 config router ce fei_1 2 ospf 1 network 10 network 10 2 2 0 1 config if ip address 10 2 1 254 255 255 255 0 3 area 0 0 0 0 0 D 0 0 0 255 area 0 CE1 can ping to the LAN connecting to CE2 successfully as shown below CEl ping 10 2 1 254 sending 5 100 byte I
38. al and Proprietary Information of ZTE CORPORATION 1 ZXR10 8900 Series User Manual MPLS Volume ZTERHY A Caution Indicates the matters needing attention during configuration Note Indicates the description hint tip and so on for configuration op erations 2 Confidential and Proprietary Information of ZTE CORPORATION Chapter 2 MPLS Configuration Table of Contents MPLS WERE Eed EE 3 PUPS TEC EE Fj CSP el D LEE 9 Label Control and Management sma gt sgega Kerg de Ee gg dE 13 COMTOQUMIMG MPLS ossirieensetisi inita EEE 18 MPLS Configuration Xam ples tegeenbkigu gt Kee Seege Rb eienn 21 MPLS Maintenance and Diagnosis ersrsisrisniicnannsiwienasna 25 MPLS Overview MPLS Function With the rapid development of network scale and user number people pay more attention to the problem that how to extend ser vice further on the network and how to improve the quality of services As the IP protocol is a connectionless protocol it is hard to provide enough throughputs and time delay according to the re quirements For IP protocol it just uses best effort mechanism to satisfy the users Without other measures to improve the current network conditions it is hard to develop new services greatly Among existing network technologies ATM has advantages for quality of services However the high cost of ATM network makes it hard to implement In addition although ATM switches are widely used as backbone nodes in n
39. ample shows the detailed LDP discovery information of R2 ZXR10 R2 show mpls ldp discovery detail Local LDP Identifier 0 120 2 220 Discovery Sources nterfaces VLAN10 ldp xmit recv LDP Id 10 10 1140 Sro IP addr 10 10 12 17 Transport IP addr 10 10 12 1 VLAN20 ldp xmit recv LDP Id 10 10 3 3 0 Sro IP addr 10 10 23 37 Transport IP addr 10 10 3 3 To view LDP session use the following command ZXxR10 Show mpls idp neighbor This displays the LDP session This example shows the LDP session information of R2 It must set up LDP session between LSRs before distributing the labels ZXR10 R2 show mpls ldp neighbor detail Peer LDP Ident 10 10 1 1 0 Local LDP Ident 10 10 2 2 0 TCP connection 10 10 12 1 1025 10 10 2 2 646 state Oper Msgs sent rcevd 240 240 Downstream Up Time 03 52 25 LDP discovery sources Vilanl0 Src IP addr 10 10 12 1 holdtime 15000 ms hello interval 5000 ms Addresses bound to peer LDP Ident TOS TO Ek Oe Ova Peer holdtime 180000 ms KA interval 60000 ms The message above indicates that there is a normal TCP link be tween LDPs with source IP address destination IP address and port numbers of the link When there is no normal TCP link ses sion it will show as follows ZXR10_R2 show mpls ldp neighbor Peer LDP Ident 10 10 1 1 0 Local LDP Ident 10 10 2 2 0 No TCP connection state Non Msgs sent rcvd 0 0 Downstream Up Time 00 00 45 LDP discovery sources Vlanl0
40. an parameter pwtype 3 ZXR10 config vfi l2protocol tunnel lt This configures mac control lacp port auth Ildp layer 2 message garp stp all bridge multicast transparent zdp ztp all transmission VPLS network forwarding policy ZXR10 config vfi show vfi lt vfi name gt This views a 56 Confidential and Proprietary Information of ZTE CORPORATION specific vfi detailed information HIT Chapter 4 MPLS L2VPN Configuration MPLS L2VPN Configuration Examples VPWS Configuration Example A network of VPWS is shown in Figure 29 FIGURE 29 VPWS CONFIGURATION PRI Fei_2 1 vlan20 Fei_1 2 Fei_1 1 vlan10 vlan100 Fei_4 1 vlan100 CEI EXAMPLE P Fei 3 1 PE vlan40 Fei_2 2 vlan30 Fei 3 2 vlan200 Fei_5 1 vlan200 CE2 The configuration requirements are as follows Configure interface addresses on fei_1 2 of PE1 fei_2 1 and fei_2 2 of P and fei_3 1 of PE2 Configure loopback addresses for PE1 P and PE2 Run IGP protocol such as OSPF on PE1 P and PE2 to imple ment interconnection of PE1 and PE2 and to learn the loopback interface address route of the peer party Start MPLS on PE1 P and PE2 and specify router id of mpls Idp Start mpls ip on vlaniO of PE1 vlan20 and vlan30 of P and vlan40 of PE2 Configure target session on PE1 and PE2 to establish dp neighborhood relationship between DEI and DEZ not exist in networking
41. and ATM VPLS combines the cost effectiveness of Ethernet with the ser vice delivery traffic engineering scalability and reliability of Multi Protocol Label Switching MPLS to provide a multipoint Layer 2 Ethernet VPN service VPNs are a value added premium service that a service provider can offer to its business customers VPNs allow service providers to connect multiple customer sites together securely over a common shared network The service keeps individual customer data private from other customers data using virtual connections across the shared network Traditionally VPNs are based on leased lines Frame Relay or ATM services but more recently on Ethernet IP and Multi Protocol Label Switching MPLS VPNs are major source of revenue for service providers as they provide flexibility scalability and integrate well with data services However VPNs use traditional bandwidth delivery services to con nect to the customer and are costly to provision and complex to manage The continued growth of the Internet and IP based ser vices combined with a move by customers to outsource more IT functions such as storage and backup is placing a strain on these fixed bandwidth VPN delivery models Ethernet provides simple flexible more scalable bandwidth than traditional fixed bandwidth solutions and has revolutionized Metro environment For the end user Ethernet is less expensive eas ier to connect and simpler to manage For service
42. and PE PE and P P and P ZXR10 8900 series switch supports MPLS L3VPN load balance on Smartgroup link Moreover ZXR10 8900 series switch supports different load balance policies in different situations ZXR10 8900 series switch can implement load balance on Smart group link composed of GE 10 GE and FE in the following modes 34 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 3 MPLS L3VPN Configuration According to IP address source IP destination IP and source destination IP According to label public network label private network pub lict private network label ZXR10 8900 series switch can support up to 32 Smartgroups There are up to 8 ports in each Smartgroup Balance efficiency ratio can reach 100 The convergence time is within 600ms Configuring MPLS L3VPN Configuring OSPF in MPLS Domain To configure OSPF in a MPLS domain perform the following steps ZXR10 config router ospf lt process id gt This starts OSPF process 2 ZXR10 config router network lt network number gt lt w This enables OSPF on an ild card gt area lt area id gt interface Example This example describes how to configure OSPF as IGP in a MPLS domain As shown in Figure 19 configure OSPF on PE1 P and PE2 FIGURE 19 CONFIGURING OSPF IN MPLS DOMAIN Configuration on PE1 Confidential and Proprietary Information of ZTE CORPORATION 35 ZXR10 8900 Series User Manual MPLS Volume ZTEDHY P
43. ata plane errors or provide information about unexpected events This method can discover and isolate black hole routes route loss or other faults in short time MPLS TRACE PING is an error report mechanism It simulates ICMP request and response mechanism to finally locate network fault Working principle of MPLS TRACE PING is shown in Figure 33 FIGURE 33 LSP TRACE WORKING PRINCIPLE LSR 2 LRS LSR 4 LSRS LSP headend LSR Onginating router When initiating an LSP TRACE PING request from LSR1 the desti nation is FEC Forwarding Equivalence Class in LSR6 and the route is shown in Figure 33 Firstly LSR1 sends an MPLS echo request to LSR2 Since TTL field in outer tag is 1 after receiving this re quest LSR2 finds that destination is not him Therefore it replies an MPLS echo reply packet with return to be 6 After receiving re ply packet LSR1 learns address of LSR2 LSR1 sends MPLS echo requests whose TTL values increment by 1 After receiving such Confidential and Proprietary Information of ZTE CORPORATION 65 ZXR10 8900 Series User Manual MPLS Volume ZTERHY request LSR5 takes out MPLS label and sends this echo request packet to LSR6 as a common IP packet After receiving this echo request packet LSR6 processes echo request and returns an MPLS echo reply packet with return value to be 3 to LSR1 along the re verse path In this way LSR1 can learn LSR addressees that LSR passes 8900 series switches can use LSP
44. ayer data through this VC For switching VC ID between PEs Martini draft extended LDP and added FEC type 128 types and 129 types of VC FEC Moreover two PEs which switches VC ID may be not connected directly LDP must use Remote peer to establish session and switch VC FEC and VC ID in this session CE1 CE2 and CE3 are connected through core network of MPLS In the view of subscribers they are connected through a LAN net FIGURE 28 NETWORK OF VPLS CEI MAC X work This is shown in Figure 28 MAC Z PEI p YE VPLS instances of PE1 PE2 and PE3 are connected to others and build an all connected of PW All VPLS instances in one VPLS do main use the same VC ID It is assumed that PE1 distributes a VC label of 102 to PE2 anda VC label of 103 to PE3 PE2 distributes a VC label of 201 to PE1 Confidential and Proprietary Information of ZTE CORPORATION 53 ZXR10 8900 Series User Manual MPLS Volume ZTERH and a VC label of 203 to PE3 PE3 distributes a VC label of 301 to PE1 and a VC label of 302 to PE2 A host which connects to CE1 sends a frame with source MAC ad dress X and destination MAC address Y to PE1 PE1 does not know which PE owns MAC address Y It adds label of 201 in this frame and sends it to PE2 Similarly it adds the label of 301 in this frame and sends it to PE3 After PE2 receives this frame it learns source MAC address X of this frame and binds MAC address X with VC label of 102 which was distr
45. cnvaverccrnces 62 MPLS L2VPN Overview L2VPN is a solution for transporting Layer 2 traffic over an IP MPLS backbone It extends the usability of the IP MPLS backbone by en abling it to offer both Layer 2 and Layer 3 services It can accom modate many types of Layer 2 frames including Ethernet Frame Relay ATM PPP and HDLC Service provider provides two forms of L2VPN services VPWS VPLS Virtual Private Wire Service Virtual Private Wire Service VPWS is based on infrastructure of MPLS net providing high speed Layer 2 transparent transmission between a pair of ports of the two routers VPWS is mainly com posed of PE router LDP and LSP Tunnel of the MPLS PE router possesses and maintains link information of Layer 2 transparent transmission connected directly to it PE router is responsible for making and removing labels on common packet of VPN clients so that PE router should be an edge label switch router Two ports of Layer 2 transparent transmission between two PE routers are of same type like Ethernet VLAN and ATMVC frame relay VC HDLC or PPP Each pair of such ports are represented by sole VC Label VCID LSP tunnel through MPLS net should be defined between two PE routers and should provide Tunnel Label transparently transmitting Confidential and Proprietary Information of ZTE CORPORATION 51 ZXR10 8900 Series User Manual MPLS Volume ZTERHY 52 data between two PE routers At the same time direct p
46. d During the procedure if any error messages are received the session will be closed and the TCP connection is interrupted Configuring MPLS Enabling MPLS To enable MPLS perform the following steps 18 ZXR10 config exioccontignampls ip ip This This enables LP LDP ZXR10 config interface vlan lt v an number gt This enters VLAN Layer 3 interface configuration mode ZXR10 config if mpls ip This enables MPLS LDP on VLAN Layer 3 interface Note To disable MPLS LDP globally use no mpls ip command in global configuration mode To disable MPLS LDP on an interface use no mpls ip command in interface configuration mode Configuring LDP Router ID To configure LDP router ID use the following command Confidential and Proprietary Information of ZTE CORPORATION ZTEDY Chapter 2 MPLS Configuration ZXR10 config mpls Idp router id lt interface name gt for This configures LDP router ID ce In default situation rules for selecting router ID of an LDP on ZXR10 8900 series switch are as follows When mpls idp router id command is used to designate ad dress of an interface as router ID and an interface has an IP address and is in UP status this interface will serve as the router ID Otherwise when there are loopback interfaces configured with an IP address maximum IP address among the IP addresses of all loopback interfaces will serve as router ID Otherwise maximum IP add
47. de Area Network 76 Confidential and Proprietary Information of ZTE CORPORATION
48. drive modes to establish a LSP Packet based The packet traffic reaching a LSR springs label distribution In this mode the cost for label distribution is direct proportion to the traffic Time delay exists for label distribution Topology based Confidential and Proprietary Information of ZTE CORPORATION 9 10 Step 1 ZXR10 8900 Series User Manual MPLS Volume ZTERHY Topology based drive is to distribute labels for corresponding routes of routing protocols When a LSR deals with route up date of OSPF or BGP the LSR modifies the entries in label for warding table meanwhile the LSR distributes labels for these entries As long as there is a route the label for this route is distributed Therefore there is no time delay when LSR for wards packets This mode is widely used Application based In this mode LSR distributes labels according to control service traffic with normal requirements The corresponding protocol is RSVP When a LSR deals with RSVP the LSR modifies the en tries in label forwarding table meanwhile the LSR distributes labels for these entries This mode requires application pro grams bring forward label request and stream rule in advance to obtain labels It also distributes labels for existed routes so there is no time delay However it is difficult to implement RSVP in the whole network so this mode is seldom used Comparing with packet based drive topology based drive has the following advan
49. ed as external layer label as follows In this case basic network topology and routing information of CE PE and P routers have already been formed A PE router has rout ing information of the backbone network and routing information of each VPN When a CE user on a VPN enters the network system can identify to which VPN CE belongs on the interface between CE and PE and will further read the next hop address information in the routing table of the VPN In addition forwarded packets will be marked with a VPN label internal layer label In this case the next hop address obtained is the address of a PE that is the peer of this PE To reach the destination PE the routing information of backbone network should be read from the source PE to obtain the address of the next P router and meanwhile forwarded user s packets will be tagged with a backbone network label external layer label In backbone network all P routers after the source PE read the external layer label to determine the next hop Therefore only simple label switching is performed on the backbone network When a packet reaches the last P router before arriving at the destination PE external layer label will be cancelled After packet reaches the destination PE PE will read internal layer label find the next hop CE in the corresponding VRF send packet to related interface and further transfer data to CE network of VPN MPLS L3VPN Load Balance MPLS L3VPN load
50. endent mode and liberal mode Label Distribution Mode In a MPLS system a downstream LSR distributes labels for specific FEC and informs upstream LSR That is labels are designated by down stream and distributed from down stream to up stream Note The neighbor downstream LSR and upstream LSR should come to an agreement about which label distribution mode is used Oth erwise LSP can not be established normally There are two label distribution modes in MPLS Downstream Un solicited DU and Downstream on Demand DoD DU Fora particular FEC a LSR does not need to get request messages for labels before designating and distributing labels As shown in Figure 12 RC does not need to wait for label request message from upstream to tell downstream LSR the binding infor mation of the FEC and label In the same way RB does not need wait for label request message from RA to tell RC the binding in formation of the FEC and label FIGURE 12 DOWNSTREAM UNSOLICITED Route triggering gt Downstream DoD For a particular FEC a LSR designates and distributes labels after it gets request messages for labels As shown in Figure 13 RC is the egress LER to 171 68 10 0 24 RC can not send label binding information to upstream neighbor RB forwardly RC has to wait for the request message from the upstream 14 Confidential and Proprietary Information of ZTE CORPORATION ZTEOA Chapter 2 MPLS Configuration FIGURE 1
51. etworks services that take ATM cells to desktop develop very slowly IP and ATM technologies meet difficulties with respective field and they need each other to have further development There is in evitability to combine the two technologies Therefore Multi Pro tocol Label Switching MPLS technology comes into being It in tegrates the advantages of switching technology in network core and IP routing technology in network edge MPLS uses label switching so routers only need to judge the labels when they forward packets MPLS supports protocols in network layer such as IPv6 IPX and IP as well as protocols in data link layer such as ATM FR and PPP Confidential and Proprietary Information of ZTE CORPORATION 3 ZXR10 8900 Series User Manual MPLS Volume ZTERHY IP Forwarding Features Features of traditional IP forwarding is shown in Figure 1 FIGURE 1 IP FORWARDING S2 ONE 75 een 47 1 0 0 16 s2 gn a IP uses hop by hop method for communication When a packet reaches a router the router looks up its routing table to forward the packet to the next router After forwarding the packet is not controlled by the router any longer When there is correct routing information in the routers along the whole path the packets can be forwarded correctly When looking up the routing table the router uses the longest matching principle Therefore it is difficult to implement fast for warding Routers have to collect
52. fei 0 1 config if ip address 30 0 0 2 255 255 255 252 config if mpls ip config if exit config interface fei 0 2 config if ip address 30 0 0 5 255 255 255 252 config if mpls ip config if exit config router ospf 1 config router network 1 1 1 Gs 0 0 0 0 area 0 config router network 30 0 0 config router network 30 ar config router exit config mpls ip oo oo 25 ww 2 2 2 2 2 2 c 2 2 2 2 2 2 2 2 2 2 2 2 Ee on R3 3 config interface loopbackl 3 config if ip address 1 1 1 3 255 255 255 255 3 config if exit 3 config mpls ldp router id loopbackl force 3 config interface fei 0 1 3 config if ip address 30 0 0 6 255 255 255 252 3 config if mpls ip 3 config if exit 3 config interface fei 2 1 3 config if ip address 200 0 0 254 255 255 255 0 3 config if exit 3 config router ospf 1 3 config router network 1 1 1 3 0 0 0 0 area 0 3 config router network 30 0 0 6 0 0 0 3 area 0 3 config router redistribute connected 3 config router exit 3 config mpls ip The information on interface of R1 which enables MPLS is shown below Rl show mpls interface interface of LDP Interface ER Tunnel Operational vlan10 Yes ldp No Yes Yes means the startup is normal LDP session information on R1 is shown below Rl show mpls ldp neighbor Peer LDP Ident 1 1 1 2 0 Local LDP Ident 1 1 1 1 0 TCP connectio
53. fig if switch access vlan 200 config if exit config interface gei_1 7 config if switch access vlan 300 config if exit config interface loopback10 config if ip address 1 1 1 3 255 255 255 255 config interface vlan 40 config if ip address 148 1 1 3 255 255 255 0 config if config config if config if mpls ip interface vlan 200 xconnect vfi vpls a exit PE2 config interface vlan 300 PE2 config if xconnect vfi vpls_a PE2 config if exit PE2 config mpls ip PE2 config mpls ldp router id loopback10 force PE2 config mpls ldp target session 1 1 1 1 PE2 config router ospf 1 PE2 config router network 1 area 0 0 0 0 1 1 3 0 0 0 0 config router network 148 1 1 0 0 0 0 PE2 255 area 0 0 0 0 Suppose that networking in Figure 30 is changed As shown in Figure 31 a CE4 is connected to P so that CE1 CE2 CE3 and CE4 are in the same VFI In the networking P can also be configured to a PE PE3 FIGURE 31 VPLS CONFIGURATION EXAMPLE 2 Fei_ 1 3 vlan300 Gei_1 2 Gei_1 4 Gei_1 7 Gei 17 vlan 10 Gei 1 8 vlan30 Gei Up vlan 300 CE3 vlan 100 vlan 400 vlan 200 Fei 1 1 Fei 1 4 Fei_1 2 vlan100 vlan 400 vlan200 Xx CE1 CE4 CE2 PE1 configuration 60 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 4 MPLS L2VPN Configuration PE1 config vfi vpls_a PE1 config vfi peer 1 1 1 2 P PE3 configuration P
54. figuration Examples MPLS Basic Configuration Example As shown in Figure 15 Ri R2 and R3 are in the same MPLS do main R1 is a switch of ZXR10 8900 series switch R2 and R3 are routers FIGURE 15 MPLS BASIC CONFIGURATION EXAMPLE 2 2 100 0 0 1 24 200 0 0 1 24 100 0 0 254 24 200 0 0 254 24 Ri R2 and R3 run OSPF and LDP to build a MPLS domain Configuration on R1 config interface loopbackl config if ip address 1 1 1 1 255 255 255 255 config if exit config mpls ldp router id loopbackl force config vlan 10 config vlan switchport pvid gei_1 1 config vlan exit config interface vlan 10 config if ip address 30 0 0 1 255 255 255 252 config if mpls ip config if exit config vlan 20 config vlan switchport pvid gei_1 2 config vlan exit config interface vlan 20 D A A A A A A A A A A A A A A Confidential and Proprietary Information of ZTE CORPORATION 21 ZXR10 8900 Series User Manual MPLS Volume ZTEDHY R1 config if ip address 100 0 0 254 255 255 255 0 R1 config if exit Rl config router ospf 1 R1 config router network 1 1 1 1 0 0 0 0 area 0 R1 config router network 30 0 0 1 0 0 0 3 area 0 R1 config router redistribute connected R1 config router exit R1 config mpls ip ee on R2 config interface loopbackl config if ip address 1 1 1 2 255 255 255 255 config if exit config mpls ldp router id loopbackl force config interface
55. g vfi peer 1 1 1 2 spoke For other configurations refer to PE1 PE20 configuration PE20 config vfi vpls_a PE20 config vfi peer 1 1 1 2 spoke Layer 2 Control Message Transparent Transmission VPLS Network Configuration Example Layer 2 control message forwarding policy is applied in a vfi ona PE device such as configuring Ildp and stp message transparent transmission ZXR10 config vfi test ZXR10 config vfi vcid 1 ZXR10 config vfi pwtype ethernet ZXR10 config vfi l2protocol tunnel lldp ZXR10 config vfi l2protocol tunnel stp MPLS L2VPN Maintenance and Diagnosis VPWS Maintenance and Diagnosis To configure VPWS maintenance and diagnosis perform the fol lowing steps ZxR10 Show mpls 2transport vc vcid This checks whether VC is lt vcidmin gt lt vcidmax gt interface lt interface established name gt lt loca I circuit id1 gt lt local circuit id2 gt destination lt p addr gt detail zZxR10 Show mpls Litransport binding This checks VC binding lt vc id gt lt ip address gt local label lt ocal label gt information remote label lt remote labe gt 62 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 4 MPLS L2VPN Configuration 3 ZXR10 debug mpls idp I2vpn event This monitors L2VPN event debug information 4 zxR10 debug mpls idp I2vpn fsm This monitors state machine of L2VPN VPLS Maintenance and Diagnosis To configure VPLS mai
56. gure 9 Generating a LIB ccc ccecce cece eee eee r pinnin rnin ean 11 Figure 10 Generating a LP 12 Figure 11 Penultimate Hop Popping 13 Figure 12 Downstream Unsolicited cc cceeeeeee eens eee eee es 14 Figure 13 Downstream on Demand 15 Figure 14 LDP Session Establishment 17 Figure 15 MPLS Basic Configuration Exvample 21 Figure 16 Label Distribution Example eeceeeeeee eee eeeee es 24 Figure 17 Structure of VPN IPV4 Address 31 Figure 18 MPLS L3VPN Load Balance 34 Figure 19 Configuring OSPF in MPLS Domain 35 Figure 20 Configuring VRF on BE 37 Figure 21 Configuring Static Route between CE and PE 38 Figure 22 Configuring RIP between CE and PE assssseseeress 40 Figure 23 Configuring OSPF between CE and DE 41 Figure 24 Configuring EBGP between CE and BE 43 Figure 25 Configuring MPBGh eee ee eee eeeeaeeees 44 Figure 26 MPLS L3VPN Configuration Example ccccceceeeeee eens 45 Figure 27 Configuration Example of MPLS L3VPN Load Balance on Smartgroup Link sceeeeeeeeee eee 49 Figure 28 Network Of VPLS ccece eect eset iiaa 53 Figure 29 VPWS Configuration Example eeeeeeeeeeeeeee es 57 Figure 30 VPLS Configuration Example 1 58 Figure 31 VPLS Configuration Example 2 eeeeeeeee eee es 60 Figure 32 VPLS Configuration Example 3 61 Figure 33 LSP TRACE Working Princple 65 Confidential and Proprietary Information of ZTE CORPORATION 73 ZXR
57. he groups of packets ac cording to labels When the packets leave the MPLS domain the Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 2 MPLS Configuration egress LSR removes the labels and forwards the packets to the destinations Opposed to conventional IP forwarding in MPLS the assignment of a particular packet to a particular FEC is done just once It is done when the packet enters MPLS domain MPLS Network Structure The structure of MPLS network is shown in Figure 7 FIGURE 7 MPLS NETWORK STRUCTURE Traditional IP forwarding LER MPLS domain e Label switching gt x Be C 77 neal e TTT Traditional IP LER forwarding Label Edge Router LER is at the edge of a MPLS domain LSR assigns labels for packets entering MPLS domain It implements functions such as traffic classification label mapping and label re moving Label Switch Path LSP initiation IP packets forwarding and Diff Serv Label Switch Router LSR is the core router in a MPLS domain It supports label switching and label distribution functions It partic ipates in establishing LSP and initiates next hop change Routers in MPLS domain run Label Distribution Protocol LDP to distribute labels for packets LSP Establishment A LSP is a forwarding path established according to MPLS It is composed of LSRs and links from source LSR to destination LSR which is similar to virtual circuit of ATM There are three
58. ibuted by PE1 Configuring MPLS L2VPN Configuring VPWS To configure VPWS perform the following steps ZXR10 config netcard vpn This configures micro code version It is required to reboot line interfaces with network processor after this command is configured ZXR10 config if mpls xconnect static pw lt This starts VPWS p address gt lt static p gt lt vc id gt tunnel lt tunnel configuration on layer 3 number gt mtu lt mtu value gt VLAN interface Configure remote interface address and tunnel ID establish VPWS between local interface and remote interface WVc id must be unique on local node and the corresponding interface on remote node must have the same vc id Network unique PW identifier is composed of remote node IP address and vc id With parameter tunnel number MPLS label is assigned by specified tunnel without parameter tunnel the label is assigned by LDP Mtu value can be specified by mtu parameter Configuring VPLS To configure VPLS perform the following steps 54 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 4 MPLS L2VPN Configuration ZXR10 config netcard vpn This configures micro code version It is required to reboot line interfaces with network processor after this command is configured When this command is saved reboot the rack instead of line interfaces ZXR10 config mac learn special This configures MAC address ZXR10 config vfi l
59. ion ARAMA AA Aes WWWWWW WWW WWW WwW Ww Ww maar gt A AS Ee interface smartgroup1l0 out_index 138 switchport mode trunk switchport trunk native vlan 1 Confidential and Proprietary Information of ZTE CORPORATION 49 ZXR10 8900 Series User Manual MPLS Volume smartgroup load balance pri label smartgroup mode 802 3ad end Configuration on P config interface smartgroup10 config if config if switchport mode trunk exit config interface gei_1 1 config if config if config if switchport mode trunk switchport trunk vlan 1 smartgroup 10 mode active exit config interface gei_1 2 config if config if config if config if switchport mode trunk switchport trunk vlan 1 smartgroup 10 mode active exit config interface smartgroup10 B P P Pi P P P P config if P Pi Pi P PI P P config if P config if smartgroup load balance pri label show running config interface smartgroupl0 Building configuration interface smartgroup1l0 out_index 38 switchport mode trunk switchport trunk native vlan 1 smartgroup load balance pri label smartgroup mode 802 3ad end 50 Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 4 MPLS L2VPN Configuration Table of Contents MPLS Ee Re E 51 ie Teen MPLS LoVe BEE 54 MPLS L2VPN Configuration Examples es 57 MPLS L2VPN Maintenance and DidQnosiS viii icnveiie
60. l connected connected bgp ext bgp int bgp int Protocol bgp int bgp int connected ospf connected ospf HIT Chapter 3 MPLS L3VPN Configuration Configuration Example of MPLS L3VPN Load Balance on Smartgroup Link As shown in Figure 27 PE1 and PE2 bear multiple private VLANs PE1 and PE2 connect to P There are two links between P and PE3 PE1 PE2 and PE3 runs LDP FIGURE 27 CONFIGURATION EXAMPLE OF MPLS L3VPN LOAD BALANCE ON SMARTGROUP LINK ege p Gei_1 5 Gei_1 3 Gei_1 5 Configuration points Configure interface smartgroup1 on P including gei_1 1 and gei_1 2 Configure interface smartgroupi on PE3 including gei_i 1 and gei_1 2 Enable VPN load balance function on smartgroup1 of P and PE3 Configure to Implement load balance mode according to private network VLAN View the configuration on P and PE3 with show command PE3 configuration config interface smartgroup10 config if switchport mode trunk config if exit config interface gei_1 1 config if switchport mode trunk config if switchport trunk vlan 1 config if smartgroup 10 mode active config if exit config interface gei_1 2 config if switchport mode trunk config if switchport trunk vlan 1 config if smartgroup 10 mode active config if exit config interface smartgroup1l0 config if smartgroup load balance pri label E3 config if show running config interface smartgroup1l0 uilding configurat
61. n 1 1 1 2 1024 1 1 1 1 646 state Oper Msgs sent rcvd 26 25 Downstream Up Time 00 16 07 LDP discovery sources vlanl0 Sro IP addr 30 0 0 2 Addresses bound to peer LDP Ident ANS 3070 022 30 0 0 5 22 Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 2 MPLS Configuration The above information shows that a TCP connection is established normally between LSRs If a TCP connection is not established normally the information is shown as below Rl show mpls ldp neighbor Peer LDP Ident 1 1 1 2 0 Local LDP Ident 1 1 1 1 0 No TCP connection state Non Msgs sent revd 0 0 Downstream Up Time 00 01 46 LDP discovery sources vlanl0 Sro IP addr 30 0 0 2 Addresses bound to peer LDP Ident LIB information on Ri is shown below Rl show mpls ldp bindings Lele A local binding label imp null remote binding lsr 1 1 2 0 label 18 1 1 1 2 32 local binding label 18 remote binding lsr 1 1 2 0 label imp null inuse 1 1 1 3 32 local binding label 17 remote binding lsr 1 1 1 2 0 label 16 inuse 30 0 0 0 30 local binding label imp null remote binding lsr 1 1 2 0 label imp null 30 0 0 4 30 local binding label 16 remote binding lsr 1 1 2 0 label imp null inuse 100 0 0 0 24 local binding label imp null remote binding lsr 1 1 2 0 label 19 200 0 0 0 24 local binding label 19 remote binding lsr 1 1 2 0 label 17 inuse
62. n is on tunnel interface of header node based on configuration of MPLS TE The configuration command is as follows Confidential and Proprietary Information of ZTE CORPORATION 69 ZXR10 8900 Series User Manual MPLS Volume ZTEDHY ZXR10 config if tunnel mpls This configures MPLS traffic eng hot standby protect TE HOT STANGBY lt primary path option gt secondary lt secondary path option gt lt primary path opti path option of protected master Isp on gt lt secondary path opt path option of hot standby Isp ion gt Maintenance and Diagnosis of MPLS TE HOT STANDBY ZXR10 8900 provides some commands to check working status of hot standby which are as follows ZXR10 config if show mpls traffic eng This views the tunnels tunnel id detailed information of hot standby Isp ZXR10 config if debug ip rsvp This is the diagnosis hot standby command of hot standby Configuration Example of MPLS TE HOT STANDBY FIGURE 34 HOT STANDBY CONFIGURATION EXAMPLE vlan10 vlan10 10 10 13 1 24 10 10 13 3 24 G 2 vlan20 vian30 R3 10 10 12 1 24 10 10 23 3 24 R1 vlan20 vlan30 10 10 12 2 24 R2 10 10 23 2 24 70 Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 6 MPLS TE HOT STANDBY Configuration The configuration task of the three routers in Figure 34 are shown as below Loop Task Tunnel back 100 1 1 1 end node Tunneli the destination address is 100 1 1 3 100
63. ndex ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Basic Configuration Volume I ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Basic Configuration Volume II ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Basic Configuration Volume III ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Ethernet Switching ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference IPv4 Routing Volume I ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference IPv4 Routing Volume II ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference IPv6 ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference MPLS ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Network Management ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference QoS ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Security ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Voice and Video ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Multicast ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference DPI ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference Firewall Confidential and Proprietary Information of ZTE CORPORATION Switch Switch Switch Switch Switch Switch Switch Switch Switch Switch
64. new label to replace the primary label 3 When egress LSR receives the packet it removes the label and implements traditional IP forwarding MPLS Terms MPLS Label Label is a fixed length and locally effective identifier It is used to identify an FEC that a group belongs to uniquely For example when load balance is configured the same FEC may correspond to multiple labels However only one label stands for the FEC The structure is shown in Figure 5 FIGURE 5 MPLS LABEL STRUCTURE Link Layer Header MPLS Label Network Layer Header Sbats I bit h tre 32 bits Confidential and Proprietary Information of ZTE CORPORATION 7 8 ZXR10 8900 Series User Manual MPLS Volume ZTERHY A label contains four fields Label field 20 bits long used to forward pointers Exp field 3 bits long reserved for defining experiments S field 1 bit long MPLS supports multiple layers of labels When the value of this field is 1 it means that this entry is a label that locates the bottom of the label stack When the value of this field is 0 it means that this entry is a label that locates any position of the label stack except the bottom TTL field 8 bits long used for coding time to live MPLS supports different protocols in data link layer MPLS label is encapsulated after data link layer message and before layer 3 data Each protocol has different protocol number defined for MPLS In Ethernet networks MPLS
65. nfig interface loopbackl R2 config if ip address 100 1 1 2 255 255 255 255 R2 config if exit R2 config mpls traffic eng tunnels R2 config router ospf 1 R2 R2 R2 R2 R2 R2 config router mpls traffic eng router id loopback1l config router mpls traffic eng area 0 config router network 10 10 12 0 0 0 0 255 area 0 config router network 100 1 1 2 0 0 0 0 area 0 config router network 10 10 23 0 0 0 0 255 area 0 config router exit Configuration of R3 R3 config int vlan30 R3 config if ip address 10 10 23 3 255 255 255 0 R3 config if mpls traffic eng tunnels R3 config if ip rsvp bandwidth 30000 10000 R3 config if mpls traffic eng tunnels R3 config if exit R3 config interface vlanl0 Confidential and Proprietary Information of ZTE CORPORATION 71 ZXR10 8900 Series User Manual MPLS Volume 72 config if config if config if config if exit config if exit R3 R3 R3 R3 R3 R3 R3 R3 R3 R3 R3 R3 R3 R3 R3 R3 R1 config interface R1 config if tunnel R1 config if tunnel R1 config if tunnel R1 config if tunnel identifier 1 R1 config if tunnel identifier 2 R1 config if tunnel R1 config if exit R1 R1 R1 R1 config ip explicit path identifier 1 config ip explicit path identifier 2 config ip explicit path identifier 2 next address config ip explicit path identifier 2 ip address
66. nfiguration and configuration example of MPLS L3VPN Chapter 4 MPLS L2VPN This chapter describes basic concept Configuration configuration and configuration example of MPLS L2VPN Chapter 5 MPLS OAM This chapter describes basic concept Configuration configuration and configuration example of MPLS OAM Chapter 6 MPLS This chapter describes basic concept TE HOT STANDBY configuration and configuration example of Configuration MPLS TE HOT STANDBY The following documentation is related to this manual ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch Hardware Installation Manual 2ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch Hardware Manual ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch User Manual Basic Configuration ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch User Manual Ethernet Switching ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch User Manual IPv4 Routing ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch User Manual IPv6 Confidential and Proprietary Information of ZTE CORPORATION I ZXR10 8900 Series User Manual MPLS Volume II HIT ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch User Manual MPLS ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch User Manual DPI ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Switch User Manual Firewall ZXR10 8900 Series V2 8 02 C 10 Gigabit Routing Command Reference I
67. ntenance and diagnosis perform the follow ing steps 1 exeosshow vfi lt vfi name gt o vfi lt vfi name gt This checks VFI This checks VFI information _ zXxR10 Show mpls l2transport vc vpls vcid This checks whether VC is lt vc id gt lt max vc id gt vfi lt vfi name gt destination established lt ip address gt detail 3 ZxR10 Show mpls 2transport binding This checks VC binding information 4 ZxR10 debug mpls Idp I2vpn event This monitors L2VPN event debug information 5 zxR10 debug mpls idp I2vpn fsm This monitors state machine of L2VPN Layer 2 Control Message Transparent Transmission VPLS Network Configuration Maintenance and Diagnosis To maintain layer 2 message transparent transmission perform the following step ZXR10 config vfi Show vfi lt vfi name gt This views a vfi detailed information including layer 2 message transparent transmission configuration policy Confidential and Proprietary Information of ZTE CORPORATION 63 ZXR10 8900 Series User Manual MPLS Volume ZTERHY This page is intentionally blank 64 Confidential and Proprietary Information of ZTE CORPORATION Chapter 5 MPLS OAM Configuration Table of Contents F nclion edel an E 65 Configure MPLS ER tegen Se Ree inne dinate ea Eegen 66 Function Introduction MPLS TRACE PING is used to detect MPLS LSP data plane fault It is quite simple and practical Router in internet can be used to report MPLS LSP d
68. o EA oo O CH 0 0 0 0 0 0 0 Configuration on PE1 PE1 config router ospf 2 vrf vpn_a PE1 config router network 10 1 0 0 0 0 0 3 area 0 0 0 0 DEI config router redistribute bgp int PE1 config router exit PE1 config router bgp 100 PE1 config router address family ipv4 vrf vpn_a DEI config router af redistribute ospf int PE1 config router af redistribute connected Configurations on CE2 and PE2 are similar to that on CE1 and PE1 Route information on CE1 is shown below CEl show ip route ospf IPv4 Routing Table Dest Mask Gw Interface Owner pri metric 10 2 0 0 255 255 255 252 10 1 0 2 fei_1 1 ospf 110 21 10 2 1 0 255 255 255 2 0 LD fei_1 2 ospf 110 1 Confidential and Proprietary Information of ZTE CORPORATION 41 ZXR10 8900 Series User Manual MPLS Volume ZTERHY The result shows that CE1 has learned route from CE2 through OSPF Route information on CE2 is shown below CE2 show ip route ospf IPv4 Routing Table Dest Mask Gw Interface Owner pri metric 10515050 255 255 255 252 1042 0 2 fei_1 1 ospf 110 1 10 1 1 0 255 255 255 0 10 52 02 fei_1 2 ospf 110 1 The result shows that CE2 has learned route from CE1 through OSPF CE1 can ping to the LAN connecting to CE2 successfully as shown below CEl ping 10 2 1 1 sending 5 100 byte ICMP echos to 10 2 1 1 timeout is 2 seconds Success rate is 100 percent 5 5 round trip min avg max 0 0 10 CE2 can ping to the LAN connecting to
69. of ZTE CORPORATION ZTEDH Chapter 2 MPLS Configuration LDP Session Establishment and Maintenance ZXR10 supports LDP regulations defined in RFC3036 including neighbor discovery label request label mapping label repeal la bel release and error management Neighbor discovery LSR sends Hello messages to neighbors periodically to discover LDP peers Session establishment and maintenance LSRs establish TCP connections and finish session initializations LSP establishment and maintenance LSRs distribute labels for FECs and establish LSPs Session repeal when session hold time ends the session is interrupted The detailed procedure of LDP session establishment is described as follows as shown in Figure 14 FIGURE 14 LDP SESSION ESTABLISHMENT Neighbor discovery sending Hello messages UDP port 646 IP 224 0 0 2 Establish TCP connections initiated by the router with bigger IP address TCP port 646 M Session initialization Master sends initialization message carrying parameters to be negotiated Slave checks whether to accept the parameters If it accepts slave sends initialization message containing parameters Then it sends a keepalive message z Master checks whether to accept the parameters If it accepts master sends a keepalive message R1 and R2 receive keepalive messages Session is established M If any error messages are received during
70. onfig router address family ipv4 vrf vpn_a PE1 config router af neighbor 10 1 0 1 remote as 65001 PE1 config router af neighbor 10 1 0 1 activate PE1 config router af redistribute connected Configuring MPBGP To configure MPBGP perform the following steps 1 ZXR10 config router bgp lt as number gt This enters BGP route configuration mode R10 3 0 config router neighbor lt ip address gt This activates a neighbor activate 2 7X config router neighbor lt ip address gt This configures a BGP remote as lt as number gt neighbor ZX 4 ZXR10 config router neighbor lt ip address gt This configures the source update source loopback lt 1 64 gt address of updated route Confidential and Proprietary Information of ZTE CORPORATION 43 ZXR10 8900 Series User Manual MPLS Volume ZTEDHY ZXR10 config router address family ipv4 vrf This enters IPv4 address lt vpn name gt family configuration mode ZXR10 config router af neighbor lt ip address gt This activates a neighbor activate Example This example shows how to configure MPBGP between PE1 and PE2 as shown in Figure 25 FIGURE 25 CONFIGURING MPBGP Configuration on PE1 DEI DEI DEI DEI DEI DEI config router bgp 100 config router neighbor 1 1 1 3 remote as 100 config router neighbor 1 1 1 3 activate config router neighbor 1 1 1 3 update source loopbackl config router address family vpnv4 config router af
71. onfiguration LLELULELLLLEULLLULLEULLLULELELULLELLET 65 FUNCtION INCrOCUCTION cece cece cece e reese eee eee ena eee awi 65 Configure MPLS CAN enee NEEN EE SNE ENEE 66 MPLS TE HOT STANDBY Configuration 69 MPLS TE HOT STANDBY Overvi W s ssserranrrnnrrrnnrrnnnnnnnnn 69 Basic Configuration of MPLS TE HOT STANGBY asce 69 Maintenance and Diagnosis of MPLS TE HOT STANDBY 70 Configuration Example of MPLS TE HOT STANDBY saec 70 Let Te 2 LEI E e Confidential and Proprietary Information of ZTE CORPORATION III ZXR10 8900 Series User Manual MPLS Volume ZTERHY This page is intentionally blank IV Confidential and Proprietary Information of ZTE CORPORATION Purpose Intended Audience What Is in This Manual Related Documentation About This Manual This manual is ZXR10 8900 Series V2 8 02 C 10 Gigabit Rout ing Switch User Manual MPLS Volume and applies to ZXR10 8902 8905 8908 8912 10 Gigabit routing switch This manual is intended for the following engineers On site maintenance engineers Network monitoring engineers System maintenance engineers This manual contains the following contents Chapter 1 Safety Describes safety instructions and signs used Instruction in this manual Chapter 2 MPLS This chapter describes basic concept Configuration configuration and configuration example of MPLS Chapter 3 MPLS L3VPN This chapter describes basic concept Configuration co
72. orientated services for IP network Integrated technologies of data link layer and network layer MPLS solves the problems about Internet extension QoS MPLS uses accurate matching instead of the longest match ing method to choose path through the short and fixed labels which improves forwarding rate When supporting IP services MPLS also provides high reliabil ity and QoS assurance MPLS establishes CR LSP through explicit routing function and signaling protocols with QoS parameters therefore traffic en gineering can be implemented effectively MPLS can support VPN with label nesting technology MPLS Working Principle In the network outside MPLS domain packets are forwarded in tra ditional IP forwarding way while within the MPLS domain packets are forwarded by label switching as shown in Figure 4 6 Confidential and Proprietary Information of ZTE CORPORATION ZTEDH Chapter 2 MPLS Configuration FIGURE 4 MPLS WORKING PRINCIPLE MPLS domain Label switching Traditional IP SC e BW Traditional IP forwarding forwarding Within the MPLS domain all routers run the label distribution pro tocol such as LDP and RSVP The procedure of forwarding an IP packet in the MPLS domain is described as follows 1 The ingress LSR receives the IP packet and assigns a label to this packet for identification 2 When the backbone LSRs receive the packet they look up label forwarding tables and use a
73. orwarding Table 16 Label Distribution Protocol ccccecceeeeeeeee esse eee eeeeeeeeaees 16 LDP Session Establishment and Maintenance 17 Configuring BS EE 18 Enabling ET 18 Configuring LDP Router ID cece eee eee ee eee ee teen eee ees 18 Configuring Label Distribution and Control c0eees 19 Configuring LDP Time Parameters eee ees 20 Configuring MD5 BDaseword eee ee eee e ee ee eee eeeeaees 20 Confidential and Proprietary Information of ZTE CORPORATION I ZXR10 8900 Series User Manual MPLS Volume ZTEDH Clearing LSR Peer Connection 20 MPLS Configuration Examples scceeeeeeeeeeeeeeeeeeeeeeeees 21 MPLS Basic Configuration Example es 21 Label Distribution Example for Specified Nerwork EELER eeh ER MPLS Maintenance and Diagnosls 25 MPLS L3VPN Configuration cccsscssesesseeeseneenes 29 MPLS ESVPN CMSEVIEW eege Ee EES Eege 29 Related Term lt iiscectscivercatagacieelshiaeseseanvacieenenneieasiaas 30 VPN IPv4 Address and Route Distinguisher 31 MPLS L3VPN Working Principles cceeeeeeee este eee ee es 32 MPLS L3VPN Load Balance 33 MPLS L3VPN Load Balance on Smartgroup Link 34 Configuring MPLS L3VPN ecceeeeeee teen eens teense eee eenee tana 35 Configuring OSPF in MPLS Domain 35 Configuring VRE ON BE egtNeRNSRENENEE ENNERWEE EEN 36 Configuring Static Route between CE and PE asscsscc 38 Configuring RIP between CE and PE eee ee
74. prefix The structure of VPN IPv4 address is shown in Figure 17 FIGURE 17 STRUCTURE OF VPN IPv4 ADDRESS 8 Byte Route Distinguisher 4 Byte IPv4 Address Type Administrator Assigned Number IPv4 Address Field Subfield Subfield Prefix b 2 Byte 6 Byte Type Field Value Field 8 byte RD is composed of a 2 byte Type field and a 6 byte Value field Type field determines the lengths of the Value field s two sub fields Administrator and Assigned Number as well as semantics of Administrator field The functions of the fields are described as follows Type filed It determines the lengths of other two domains If the value of the type field is 0 the administrator ADM sub field is four bytes and the Assignment Number AN subfield is two bytes If the value of the type field is 1 the administrator ADM sub field is two bytes and the Assignment Number AN subfield is four bytes Administrator subfield It identifies an administration allocation number If the value of the type field is 0 the administrator subfield contains an IPv4 address RFC2547bis recommends that the IP address of a router this address is normally configured as router ID should be used and this address is a public address Confidential and Proprietary Information of ZTE CORPORATION 31 32 ZXR10 8900 Series User Manual MPLS Volume ZTERHY If the value of the type field is 1 the administrator subfield con tains an AS numbe
75. r RFC2547bis recommends that the public AS number for IANA allocation should be the AS number of the ISP or the customer Assignment number subfield It is a number assigned by the ISPs If the type field is 0 the length of the Assignment number subfield is two bytes If the type field is 1 the length of the Assignment number subfield is four bytes An RD is only used between PEs to differentiate IPv4 addresses of different VPNs The ingress generates an RD and converts the received IPv4 route of the CE into a VPN IPv4 address Before advertising the route to the CE the egress PE converts the VPN IPv4 route into an IPv4 route MPLS L3VPN Working Principles Basic operation mode of MPLS VPN is the application of L3 tech nologies Each VPN has an independent VPN ID users of each VPN can only communicate with members in the same VPN and only VPN members can enter VPN On MPLS based VPNs service provider assigns a distinguisher to each VPN called Route Distinguisher RD Distinguisher is unique in network of service provider Forwarding table contains a unique address called VPN IP ad dress which is formed through connection of the RD and IP ad dress of the user VPN IP address is a unique one in network Address table is stored in forwarding table BGP is a routing information distribution protocol which uses multi protocol extension and common attributes to define VPN connectivity On MPLS based VPNs BGP only adve
76. r RB This information is recorded in LIB When RC receives a message with label 40 it knows that this message is to 47 1 0 0 16 When RB receives the binding information of 47 1 0 0 16 and la bel 40 from RC it keeps the label information and receiving in terface information in LIB Meanwhile RB distributes a label for 47 1 0 0 16 and sends this information to neighbors except the neighbor connecting to the receiving interface Suppose that RB sends a label 50 to RA Therefore there is such information in LIB of RB as shown below IntfiIn LabelIn Dest IntfOut LabelOut t 50 a7 1 20 20 2 40 This information means when RB receives a message with label 50 from interface 1 it changes the label to 40 and sends the message from interface 2 RB does not look up route in its routing table Confidential and Proprietary Information of ZTE CORPORATION 11 Step 3 ZXR10 8900 Series User Manual MPLS Volume ZTERHY When RA receives binding information RA acts in the same way as RB does LIB is always isochronous with routing tables Once a new non BGP route is generated in the routing table LSR distributes a la bel for this route LSR does not distribute labels for BGP routes Instead it distributes a label for the next hop of a BGP route After the interaction of labels finishes a LSP forms When LSRs forward messages they forward them according to labels instead of looking up routing tables as sho
77. ration on PE1 PE PE PE PE config router rip config router version 2 config router address family ipv4 vrf vpn_a config router af no auto summary PE1 config router af version 2 PE1 config router af network 10 1 0 0 0 0 0 3 DEI config router af redistribute bgp int DEI config router af exit DEI config router exit DEI config router bgp 100 PE1 config router address family ipv4 vrf vpn_a PE1 config router af redistribute rip PE1 config router af redistribute connected Configuring OSPF between CE and PE To configure OSPF between a CE and a PE perform the following steps 40 Confidential and Proprietary Information of ZTE CORPORATION ZIEOS Chapter 3 MPLS L3VPN Configuration ZXR10 config router ospf lt process id gt vrf This starts OSPF on a PE lt vrf name gt ZXR10 config router network lt network number gt lt w This enables OSPF on an ild card gt area lt area id gt interface G ZXR10 config router redistribute bgp int This redistributes IBGP to OSPF Example This example shows how to configure OSPF between CE1 and PE1 as shown in Figure 23 FIGURE 23 CONFIGURING OSPF BETWEEN CE AND PE 10 1 1 0 24 10 2 1 0 24 CE1 CE2 10 1 0 1 30 10 1 0 230 MMR TEE gt lt 10 2 0 1 30 Configuration on CE1 CE1 config router ospf 1 CE1 config router network 10 1 0 CE1 config router network 10 1 1 3 area 0 255 area O CH O
78. ress lt ip address gt lt netmask gt This configures an IP address 36 Confidential and Proprietary Information of ZTE CORPORATION ZTE Example Chapter 3 MPLS L3VPN Configuration Note For step 2 if an IP address is configured on this interface in ad vance after the VRF is associated with this interface the IP ad dress should be configured again This example shows how to configure VRF on PE As shown in Figure 20 Ri R2 and R3 are in the same MPLS do main R1 is a device of ZXR10 8900 series switch R2 and R3 are routers FIGURE 20 CONFIGURING VRF ON PE Configuration on PE1 PEl configure terminal DEI config ip vrf vpn_a PE1 config vrf rd 100 1 PE1 config vrf route target import 100 1 DEI config vrf route target export 100 1 PE1 config vrf exit PE1 config vlan 20 PE1 config vlan switchport pvid gei 1 2 PE1 config vlan exit PE1 config interface vlan 20 DEI config if ip vrf forwarding vpn_a PE1 config if ip address 10 1 0 2 255 255 255 252 Configuration on PE2 PE2 configure terminal PE2 config ip vrf vpn_a PE2 config vrf rd 100 1 PE2 config vrf route target import 100 1 PE2 config vrf route target export 100 1 PE2 config vrf exit PE2 config interface fei 2 1 PE2 config if ip vrf forwarding vpn_a PE2 config if ip address 10 2 0 2 255 255 255 252 Confidential and Proprietary Information of ZTE CORPO
79. ress family ipv4 vrf vpn_a config router af redistribute static Configuring RIP between CE and PE To configure RIP between CE and PE perform the following steps 1 ZXR10 config router rip This starts RIP process fe ZXR10 config router version 2 This configures RIP Version 2 R10 3 ZX config router address family ipv4 vrf This enters IPv4 address lt vrf name gt family configuration mode ZXR10 config router af no auto summary This disables automatic aggregation function R10 5 config router af version 2 This configures RIP Version 2 in IPv4 address family configuration mode ZXR10 config router af network lt network numbe This enables RIP on an r gt lt wild card gt interface 7 ZXR10 config router af redistribute connected This redistributes a direct route to RIP e ZXR10 config router af redistribute bgp int This redistributes IBGP to RIP Example This example shows how to configure RIP between CE1 and PE1 as shown in Figure 22 Confidential and Proprietary Information of ZTE CORPORATION 39 ZXR10 8900 Series User Manual MPLS Volume ZTERHY FIGURE 22 CONFIGURING RIP BETWEEN CE AND PE 10 1 1 0 24 10 2 1 0 24 CE1 Ki 10 1 0 2 30 10 1 0 1 30 Configuration on CE1 CE1 config router rip CE1 config router no auto summary CE1 config router version 2 CE1 config router network 10 1 0 0 0 0 0 3 CE1 config router redistribute connected Configu
80. ress of an interface in UP status is selected as router ID When force keyword is configured router ID designated by m pls Idp router id command will come into use when next router ID selection occurs Router ID selection occurs at the following situations LDP restarts Interface with address used by current router ID shuts down Address of interface with address used by current router ID is not configured When force keyword is configured effect of the command mpls Idp router id depends on the current status of the designated in terface When current status of designated interface is UP and other addresses are not the current router ID Router will force router ID to change into designated value intermit current session free label studied in the session and intermit the MPLS trans mission relating to binding with labels When current status of the designated interface is DOWN once it turns to UP Router will force router ID to change into des ignated value intermit current session free label studied in the session and intermit MPLS transmission relating to binding with labels Configuring Label Distribution and Control To generate and distribute labels perform the following steps Confidential and Proprietary Information of ZTE CORPORATION 19 ZXR10 8900 Series User Manual MPLS Volume ZTERHY ZXR10 config mpls Idp access fec for This configures the labels for lt prefix access list gt host
81. rk A PE router supports VPN and labeling function the labeling function can be provided by RSVP LDP or CR LDP P Provider P router is a router in the core of network which is not connected to any router in any customer site but is a part of the tunnel in a PE pair P router supports MPLS LSP or LDP but does not need to support VPN CE Customer Edge CE router which connects to the PE router on the network is on the network of ISP A CE router must connect with a PE router 30 Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 3 MPLS L3VPN Configuration VPN IPv4 Address and Route Distinguisher Layer 3 VPN may be connected to private networks through Inter net these private networks can use public or private addresses When private networks use private addresses the addresses be tween different private networks may be repeated To avoid repetition of private addresses public addresses can be used in network equipment to replace private addresses Solutions are provided in RFC2547bis and it uses present private net ID to create a new definite address This new address is one of the components in VPN IPv4 address family and is BGP address family of MP BGP In a VPN IPv4 ad dress there is a value used to differentiate different VPNs called Route Distinguisher RD A VPN IPv4 address is a 12 byte quantity composed of an 8 byte Route Distinguisher followed by a 4 byte IPv4 address
82. rocess of LDP label distribution protocol is also defined between two PE routers to transmit virtual link information Among them dis tributing VC Label through matching VCID is critical When data packet enters PE router at the port of Layer 2 transpar ent transmission PE router finds the corresponding Tunnel Label and VC Label through matching VCID PE router will put two layers labels on the data packet External layer is Tunnel Label indicat ing the route from this PE router to destination PE router Inter nal layer is VC Label indicating which corresponding router port of VCID belongs to on destination PE router PE router should monitor Layer 2 protocol state at each port such as frame relay LMI and ILMI of ATM When a fault occurs users can cancel VC Label through LDP label distribution protocol process so that Layer 2 transparent transmission is shut off avoiding pro ducing unidirectional unwanted data stream Such Layer 2 transparent transmission based on MPLS changes traditional confinement that Layer 2 link should be implemented through network switch It essentially forms a pattern of One Net Multi Service pattern and makes the operator provide Layer 2 and Layer 3 Services simultaneously in a MPLS net Virtual Private LAN Service Virtual Private LAN Service VPLS allows service providers to de liver VPN services based on Ethernet with the same level of support and reliability as existing services such as Frame Relay
83. route only network segments LDP can generate ZXR10 config mpls label range lt min label gt lt max This sets usable label range abel gt of LDP ZXR10 config mpls Idp advertise labels for This controls LDP distribute lt prefix access list gt to lt peer access list gt labels Configuring LDP Time Parameters To configure LDP time parameters perform the following steps ZXR10 config mpls Idp discovery hello holdtime This configures interval for lt holdtime gt interval lt jnterval gt sending LDP hello message between LSRs that connect directly and indirectly ZXR10 config mpls Idp holdtime lt seconds gt This configures the holding time when a LDP session can not receive successor LDP messages ZXR10 config mpls Idp backoff lt jinitial backoff gt lt ma This configures the ximum backoff gt parameters of backing off re establishing mechanism for LDP sessions Configuring MD5 Password To configure MD5 password use the following command password lt password gt ZXR10 config mpls Idp neighbor lt ip address gt This configures MD5 password 20 Clearing LSR Peer Connection To clear and re establish a LSR peer connection use the following command Confidential and Proprietary Information of ZTE CORPORATION ZTEDH Chapter 2 MPLS Configuration ZXR10 config clear mpls idp neighbor lt jp address gt This clears and re establishes a LSR peer connection MPLS Con
84. rtise informa tion to members in the same VPN and provide basic security by means of traffic split Data is forwarded by using LSP LSP defines a special path that cannot be changed to guarantee the security Such a label based mode can provide confidentiality as frame relay and ATM Service provider relates a special VPN to an interface and packet forward ing depends upon ingress labels VPN forwarding table contains a label corresponding to the VPN IP address Label is used to send data to the corresponding destina tion As label is used instead of IP address a user can maintain its dedicated address structure without the need of data transfer by means of Network Address Translation NAT According to data ingress corresponding router will select a special VPN forwarding table that only contains a valid destination address in VPN First CE provides routing information of client in net to PE router by static routing default routing or protocols like RIP OSPF IS IS or BGP Confidential and Proprietary Information of ZTE CORPORATION HIT Chapter 3 MPLS L3VPN Configuration Meanwhile CE transmits information of VPN IP and corresponding labels labels on VPN shortened into internal layer label as fol lows by adopting BGP between PEs Traditional IGP is adopted to learn routing information from each other between PE and P routers LDP is adopted to bind routing information and labels labels in the backbone network shorten
85. s 39 Configuring OSPF between CE and DE 40 Configuring EBGP between CE and BE 42 Configuring MPP 43 Configuring MPLS L3VPN Load Balance 45 MPLS L3VPN Configuration Example sceeeeeeeeee senna 45 Configuration Example of MPLS L3VPN Load Balance on Smartgro p LIN Ker sitiveresvedesrercen erected NEELA RENNE 49 MPLS L2VPN Configuration cccssccsseceeseeesserees DL MPLS L2VPN UMW sonerion NEEN NENNEN SNE RRE aa 51 Virtual Private Wire Gervice eee eens eee eaeeees 51 Virtual Private LAN Service cceeeeeeee teeta teeta eeaeee es 52 Configuring MPLS L2VPN ecceeeeeee eee e eens eee eeeeeeeenee tata 54 Configuring VW 54 Configuring VPLS asanggktieut g gEksegkh sensors ANEN dE EEN ege 54 Configuring Layer 2 Control Message Transparent Transmission VPLS Network Policy 56 MPLS L2VPN Configuration Examples 57 VPWS Configuration Example ccceeeeeeeeeeee eee eeeee es 57 VPLS Configuration Example c eeceeeee eee eeeee eee eeeee es 58 Layer 2 Control Message Transparent Transmission VPLS Network Configuration Example ssseeseseeese 62 MPLS L2VPN Maintenance and Diagnose 62 II Confidential and Proprietary Information of ZTE CORPORATION HIT VPWS Maintenance and Diagnose 62 VPLS Maintenance and DiagnoSis eeeeeeeeeeeeeee es 63 Layer 2 Control Message Transparent Transmission VPLS Network Configuration Maintenance and Diagnosis iorn E AAA 63 MPLS OAM C
86. sponse mode of reply packet ipv4 or reply mode reply alert Confidential and Proprietary Information of ZTE CORPORATION 67 ZXR10 8900 Series User Manual MPLS Volume ZTERHY This sets TTL value ranging from 1 to 255 destination This is destination address dotted decimal notation 68 Confidential and Proprietary Information of ZTE CORPORATION Chapter 6 MPLS TE HOT STANDBY Configuration Table of Contents MPLS TE HOT STANDBY OVSivVidW ASA REAES AER EAEREeER 69 Basic Configuration of MPLS TE HOT STANGBY snee 69 Maintenance and Diagnosis of MPLS TE HOT STANDBY 70 Configuration Example of MPLS TE HOT STANDBY accs 70 MPLS TE HOT STANDBY Overview Hot standby is the important function of MPLS traffic engineering It strengthens the function of RSVP TE sub system Hot standby is a kind of mechanism of redundancy link protection It creates one protection route for every piece of protection Isp and provides protection ability for whole route Hot standby can solve the failure problems about link node multi link and multi node in the complex network Compared with tra ditional IGP handling method hot standby can switch the packet from invalid Isp to standby Isp which reduces the loss of packets gradually Compared with FRR which only can provide local protec tion the end to end protection effect supported by hot standby is better Basic Configuration of MPLS TE HOT STANGBY Hot standby configuratio
87. t mpls ip mpls ldp router id loopback10 force mpls ldp target session 1 1 1 3 router ospf 1 0 0 0 0 area 0 0 0 0 D 0 0 0 255 area 0 0 0 0 P configuration config if config if config if config if config if config if config if config if config if P P P P P B IG P P P P P P B config interface gei_1 3 switch access vlan 20 exit config interface gei_1 4 switch access vlan 30 exit config interface loopback10 ip address 1 51 1 2 255 255 255 255 exit config interface vlan 20 ip address La kk 255 255 2550 mpls ip exit config interface vlan 30 Confidential and Proprietary Information of ZTE CORPORATION 59 ZXR10 8900 Series User Manual MPLS Volume P config if ip address P config if mpls ip P config if exit P config mpls ip P config mpls ldp router id P config router ospf 1 P config router network 1 1 P config router network 148 P config router network 175 ZTE 148 1 1 2 255 255 255 0 loopback10 force area 0 0 255 area 255 area 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 PE2 configuration PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 PE2 config vfi vpls config vfi vcid 100 config vfi pwtype ethernet vlan config vfi peer 1 1 1 1 config interface gei_1 5 config if switch access vlan 40 config if exit config interface gei_1 6 con
88. t vfi name gt This creates VFI and enters VFI configuration mode ZXR10 config vfi vcid lt vcid gt This configures vcid when VPLS instances of two PE routers belong to same VPLS region it is required to establish PW to continue the communication between VPLS instances PE establishes PW to identify mpls lining label or called VC label Mpls outer label which compose Isp together with VC label compose the PW of VPLS region with each other Vc id configured by vcid is used to identify the VPLS region when PE changes VC label ZXR10 config vfi pwtype ethernet This configures pwtype ethernet vian parameter Two PEs need to negotiate PW type when they establish PW There are two types of PWs in VPLS which are ethernet and ethernet vilan When PW types are different with each other PW can not be established ZXR10 config vfi peer lt peer ip address gt spoke This configures peer parameters It is required to designate all PE addresses in one VPLS region Spoke type is used to bed VPLS and span regions 7 ZXR10 config if xconnect vfi lt vfi name gt This starts VPLS configuration on L3 interface ZXR10 config mpls idp target session This configures expanding lt peer ip address gt LDP neighbor VPLS module function is based on LDP protocol To establish PW between indirect PEs it is important to establish LDP neighbor through switching TARGET HELLO of LDP and then distribute label of PW
89. tages Label distribution corresponds to control message therefore network cost is little Label is distributed before traffic arrives so there is no time delay The protocols used to distribute labels for LSRs are called signalling protocols Common signalling protocols include Label Distribution Protocol LDP Constrained Route LDP CR LDP Resource Reservation Protocol Traffic Extension RSVP TE Multiprotocol BGP MP BGP LSP Establishment Procedure In a MPLS domain LSP establishment procedure is described as follows 1 Each node runs dynamic routing protocols such as BGP OSPF and IS IS to generate a routing table 2 According to the routing table each node establishes a Label Information Base LIB under the control of LDP 3 Out labels and in labels from ingress LSR to egress LSR are mapped to form a LSP The detailed procedure is described as follows As shown in Figure 8 each router runs OSPF to generate a routing table RA RB and RC learn the route 47 1 0 0 16 to LER Confidential and Proprietary Information of ZTE CORPORATION ZTEDH Chapter 2 MPLS Configuration FIGURE 8 GENERATING A ROUTE TABLE CK Step 2 As shown in Figure 9 the routers run LDP to distribute labels FIGURE 9 GENERATING A LIB In ES po EAEI mfe KE e karami Out Out In In 1 2 x 1 47 As an egress LSR to 47 1 0 0 16 RC distributes a label 40 and sends it to upstream neighbo
90. to receiving from LDP neighbor This monitors the address and label notified from LDP neighbor This monitors the address and label notifying to LDP neighbor This example describes events related to mechanism discovered by LDP on Ri are monitored ZXR10_Rl debug mpls ldp transport events LDP transport events debugging is on ZXR10_R1 dp Send ldp hello dp Revd ldp hello ZXR10_R1 28 Confidential and Proprietary Information of ZTE CORPORATION Vlanl0 scr dst 10 10 12 1 0 0 0 0 224 0 0 2 intf id 257 Vianl0 from 10 10 12 2 10 10 2 2 0 intf_id 257 ZXR10_Rl debug mpls ldp transport connections LDP transport connection debugging is on ldp Hold timer expired for adj 0 will close adj ldp Closing Joe conn 10 10 12 1 1025 lt 510 10 2 22646 ldp Opening ldp conn 10 10 12 1 lt gt 10 10 2 2 ldp Opening ldp conn 10 10 12 1 lt gt 10 10 2 2 ldp ldp conn closed 10 10 12 17 1026 lt 210 10 2 2 646 Jeep ldp conn closed 10 10 12 1 1027 lt 210 10 2 2 646 ldp Opening ldp conn 10 10 12 1 lt gt 10 10 2 2 rap ldp conn is up 10 10 12 12 1028 lt gt 10 10 2 23646 MPLS VPN Advantages Chapter 3 MPLS L3VPN Configuration Table of Contents MPLS ES Ba E 29 Connomniig MPLS LOYPN oz csistescccetciasecaniegencscniedaceotuteimessans 35 Configuring MPLS L3VPN Load Balance snisrececciiesnisensreveteereias 45 MPLS L3VPN Connguration Example js incr veins eege deeg 45 Configuration Example of M
91. wn in Figure 10 FIGURE 10 GENERATING A LSP 12 In In Out Out e When RA receives a message with destination address 47 1 1 1 it looks up its routing table first and then it looks up label forwarding table When it finds that the FEC 47 1 0 0 16 corresponds to the label 50 RA adds the label to the header of the message and sends it from interface 2 When RB receives the message with label 50 from interface 1 it looks up the label forwarding table then RA changes the label to 40 and sends the message from interface 2 When RC receives the message with label 40 from interface 1 it looks up the label forwarding table RC finds that the destination of the message is a network segment connecting to itself directly Therefore RC removes the label and sends the IP message Penultimate Hop Popping In a MPLS domain when the egress LER receives message from its neighbor it looks up label forwarding table first and removes the label then it looks up routing table and forwards the IP message This decreases the performance of the LER and increases forward ing complexity Penultimate hop popping mechanism solves this problem By default LDP enables only penultimate hop popping mechanism for direct routes and aggregated routes For direct routes LER has to look up routing table to get next hop information before it Confidential and Proprietary Information of ZTE CORPORATION ZTEDY Chapter 2
92. zZxR10 Show mpls interface This displays the enabled MPLS interfaces This example describes how to view enabled MPLS interfaces of R2 Yes means the startup is normal ZXR10_R2 show mpls interface interface of LDP Interface LE Tunnel Operational VLAN10 Yes ldp No Yes VLAN20 Yes ldp No Yes To view MPLS LDP parameters mainly LDP timer parameter use the following command ZXxR10 Show mpls idp parameters This displays MPLS LDP parameters mainly LDP timer parameter This example displays LDP parameters message of R2 ZXR10_R2 show mpls ldp parameters Protocol version 1 Downstream label pool min label 16 max label 1048575 Session hold time 180 sec keep alive interval 60 sec Discovery hello holdtime 15 sec interval 5 sec Downstream on Demand max hop count 255 LDP initial maximum backoff 15 120 sec LDP loop detection off To view LDP discovery message use the following command Confidential and Proprietary Information of ZTE CORPORATION 25 ZXR10 8900 Series User Manual MPLS Volume ZTERHY ZXR10 Show mpls Idp discovery This displays the LDP discovery message This command is to show IP address Transport IP address used to set up TCP link by LDP neighbors discovered on the interfaces To set up the session router must get the reachable route to the router that is it can ping address xmit recv means sending re ceiving hello message on the interface and they are indispensable This ex
Download Pdf Manuals
Related Search