MSR系列路由器MPLS L3VPN跨域方案A配置
关键词:MSR;MPLS;BGP;VPN;跨域;OptionA
一、组网需求:
peA和asbrA在AS1,peB和asbrB在AS2;peA和peB都下挂着vpna和vpnb的站点,peA下挂vpna和vpnb站点1,peB下挂vpna和vpnb站点2。
设备清单:MSR系列路由器4台
二、组网图:
三、配置步骤:
设备和版本:MSR系列、Version 5.20, Release 1509
peA配置:
#
router id
#
ip vpn-instance
vpna
route-distinguisher 3:1
vpn-target 1:1 export-extcommunity
vpn-target 1:1 import-extcommunity
#
ip vpn-instance
vpnb
route-distinguisher 3:2
vpn-target 2:2 export-extcommunity
vpn-target 2:2 import-extcommunity
#
mpls lsr-id
#
mpls
#
mpls ldp
#
interface Ethernet0/0
port link-mode route
ip address
mpls
mpls ldp
#
interface Ethernet0/1
port link-mode route
ip binding vpn-instance vpna
ip address 192.168.1.1 255.255.255.0
#
interface Ethernet1/0
port link-mode route
ip binding vpn-instance vpnb
ip address 172.32.1.1 255.255.255.0
#
interface
LoopBack0
ip address
#
bgp 1
undo synchronization
peer
peer
#
ipv4-family vpnv4
peer
#
ipv4-family vpn-instance vpna
import-route direct
#
ipv4-family vpn-instance vpnb
import-route direct
#
ospf 1
are
network
network
#
asbrA配置:
router id
#
ip vpn-instance vpna
route-distinguisher 1:1
vpn-target 1:1
export-extcommunity
vpn-target 1:1
import-extcommunity
#
ip vpn-instance vpnb
route-distinguisher 1:2
vpn-target 2:2
export-extcommunity
vpn-target 2:2
import-extcommunity
#
mpls lsr-id
#
mpls
#
mpls ldp
#
interface
Ethernet0/0.1 //asbr间用子接口区分不同vpn流量
vlan-type dot1q vid 1
ip binding vpn-instance vpna
ip address
#
interface
Ethernet0/0.2 //asbr间用子接口区分不同vpn流量
vlan-type dot1q vid 2
ip binding vpn-instance vpnb
ip address
#
interface Ethernet0/1
port link-mode route
ip address
mpls
mpls ldp
#
interface
LoopBack0
ip address
#
bgp 1
undo synchronization
peer
peer
#
ipv4-family vpnv4
peer
#
ipv4-family vpn-instance vpna //asbr间使用PE-CE模式传vpna路由
peer
#
ipv4-family vpn-instance vpnb //asbr间使用PE-CE模式传vpna路由
peer
#
ospf 1
are
network
network
#
asbrB配置:
#
router id
#
ip vpn-instance vpna
route-distinguisher 2:1
vpn-target 1:1
export-extcommunity
vpn-target 1:1 import-extcommunity
#
ip vpn-instance vpnb
route-distinguisher 2:2
vpn-target 2:2
export-extcommunity
vpn-target 2:2
import-extcommunity
#
mpls lsr-id
#
mpls
#
mpls ldp
#
interface Ethernet0/0.1 //asbr间用子接口区分不同vpn流量
vlan-type dot1q vid 1
ip binding vpn-instance vpna
ip address
#
interface Ethernet0/0.2 //asbr间用子接口区分不同vpn流量
vlan-type dot1q vid 2
ip binding vpn-instance vpnb
ip address
#
interface Ethernet0/1
port link-mode route
ip address
mpls
mpls ldp
#
interface
LoopBack0
ip address
#
bgp 2
undo synchronization
peer
peer
#
ipv4-family vpnv4
peer
#
ipv4-family vpn-instance vpna //asbr间使用PE-CE模式传vpna路由
peer
#
ipv4-family vpn-instance vpnb //asbr间使用PE-CE模式传vpnb路由
peer
#
ospf 1
are
network
network
#
peB配置:
router id
#
ip vpn-instance vpna
route-distinguisher 4:1
vpn-target 1:1
export-extcommunity
vpn-target 1:1
import-extcommunity
#
ip vpn-instance vpnb
route-distinguisher 4:2
vpn-target 2:2
export-extcommunity
vpn-target 2:2 import-extcommunity
#
mpls lsr-id
#
mpls
#
mpls ldp
#
interface Ethernet0/0
port link-mode route
ip address
mpls
mpls ldp
#
interface Ethernet0/1
port link-mode route
ip binding vpn-instance vpna
ip address 192.168.2.1 255.255.255.0
#
interface Ethernet1/0
port link-mode route
ip binding vpn-instance vpnb
ip address 172.32.2.1 255.255.255.0
#
interface
LoopBack0
ip address
#
bgp 2
undo synchronization
peer
peer
#
ipv4-family vpnv4
peer
#
ipv4-family vpn-instance vpna
import-route direct
#
ipv4-family vpn-instance vpnb
import-route direct
#
ospf 1
are
network
network
#
四、配置关键点:
1. asbr间需要用不同链路隔离不同vpn流量,可以使用不同物理链路或逻辑链路如子接口或E1/T1通道;
2. asbr间互相把对方认为CE,所以要配置在bgp的vpn实例视图下配置。
五、实验分析