© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.27-1 Integrating Internet Access with MPLS VPNs Implementing Internet Access as a Separate VPN.

Презентация:



Advertisements
Похожие презентации
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Integrating Internet Access with MPLS VPNs Implementing Separate Internet Access and VPN Services.
Advertisements

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Integrating Internet Access with MPLS VPNs Introducing Internet Access Models with MPLS VPNs.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Complex MPLS VPNs Introducing Central Services VPNs.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Complex MPLS VPNs Introducing Managed CE Router Service.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing the MPLS VPN Routing Model.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Implementation Configuring an MP-BGP Session Between PE Routers.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Module Summary Advanced VRF features allow selective import or export of routes. Overlapping.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Implementation Configuring VRF Tables.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Forwarding MPLS VPN Packets.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Categorizing VPNs.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Complex MPLS VPNs Introducing Overlapping VPNs.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Implementation Configuring Small-Scale Routing Protocols Between PE and CE Routers.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v Route Selection Using Policy Controls Using Multihomed BGP Networks.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing VPNs.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Implementation Using MPLS VPN Mechanisms of Cisco IOS Platforms.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v Customer-to-Provider Connectivity with BGP Understanding Customer-to-Provider Connectivity.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v Customer-to-Provider Connectivity with BGP Connecting a Multihomed Customer to Multiple Service.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v Scaling Service Provider Networks Scaling IGP and BGP in Service Provider Networks.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v BGP Transit Autonomous Systems Configuring a Transit AS.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing MPLS VPN Architecture.
Транксрипт:

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Integrating Internet Access with MPLS VPNs Implementing Internet Access as a Separate VPN

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Outline Overview Internet Access as a Separate VPN Implementing Redundant Internet Gateway Access Implementing Classical Internet Access for a VPN Customer Implementing Internet Access from Every Customer Site Implementing Wholesale Internet Access Running an Internet Backbone in a VPN Summary

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v A provider Internet gateway is connected as a CE router to the MPLS VPN backbone. The Internet gateway does not insert full Internet routing into the Internet VPN. –Only the default route and the local (regional) routes are inserted. Every customer site that needs Internet access is assigned to the same Internet VPN as the Internet gateway. Internet Access as a Separate VPN

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Internet Access as a Separate VPN (Cont.) The Internet VPN is isolated from the P routers.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Example: Configuring the Internet Gateway in a Separate VPN

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v The default route should be advertised by all Internet gateways only if they can reach the upstream ISP core. Redundant Internet Access

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Classical Internet Access for a VPN Customer

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Classical Internet Access for a VPN Customer (Cont.)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Configure Internet VRF for every location. Internet Access from Every Customer Site

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v A separate VPN is created for each upstream ISP. Each ISP gateway announces the default route to the VPN. Customers are assigned into the VRF that corresponds to the VPN of the desired upstream ISP. Changing an ISP is as easy as reassigning an interface into a different VRF (and attending to address allocation issues). Wholesale Internet Access

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Benefits: Supports all Internet access service types Can support all customer requirements, including a BGP session with the customer, accomplished through advanced BGP setup Drawbacks: Full Internet routing cannot be carried in the VPN; default routes are needed that can lead to suboptimal routing. Internet gateway routers act as CE routers on the VPN backbone; implementing overlapping Internet and VPN backbones requires care. Limitations of Running an Internet Backbone in a VPN

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v Summary MPLS VPN architecture supports defining the Internet as a VPN. –Redundant Internet access is easy to achieve. –The classical Internet access model can be easily implemented using the Internet VPN. Internet access from every customer site can be implemented by configuring the Internet VRF on a second interface at every location Wholesale Internet access can be implemented by creating a separate VPN for every upstream ISP. Internet VPNs supports all customer requirements, including full Internet routing.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v