Selective Route Import/Export in MPLS VPN

Champs
I have multiple brach locations and 3 DC locations.DC locations host my internal applications , DC's  also have central Internet breakout for the region. My requirement is to have full mesh MPLS-VPN but at same time brach location Internet access should be from nearest IDC in the region  if nearest IDC is not availalbe it should go to second nearest DC for internet.I have decided which are primary and seconday DC for Internet breakout. How can this be achieved in MPLS-VPN scenario.Logically i feel , i have to announce specific LAN subnet and default route(with different BGP attribute like AS Path)  from all 3 DCs. Spokes in the specific region should be able to import default route  from primary DC and secondary DCs only  using some route filter?
Regards
V

Hello Aaron,
the route example works for all routers except the one, where the VRF vpn2 is configured. What you can do for management purposes is either to connect through a neighbor router using packet leaking or configure another Loopback into VRF vpn2.
The last option (and my recommendation) is to establish another separate IP connection from your NMS to the MPLS core. Once VRFs are failing (for whatever reason, f.e. erroneously deleted) you might just not get connectivity to your backbone anymore to repair what went wrong.
So I would create an "interconnection router" with an interface in the VRF vpn2 and one interface in global IP routing table. This way you will still be able to access PEs, even if VRFs or MBGP is gone.
Hope this helps! Please rate all posts.
Regards, Martin

Similar Messages

  • Full internet routing in an internet MPLS VPN

    Is it possible and advisable to run the full internet routing table in a seperate MPLS VRF. A default route is not an option
    With kind regards,
    Mike

    Hi,
    It is not advisable to have full Internet Routing table in a vrf.It is possible that you may run out of memory since different routers have different vrf routes holding capacity.e.g if you are using 12000 series and you have only one vrf configured then you can hold the entire Internet routing table in one vrf.
    Which router you have ? Is it 12000 ?How many vrfs you have ? How many routes have you per vrf ?
    You need to consider the above questions before making the decision.
    -Waris

  • Selective member import/export using dllexport and default constructor

    We can only export some methods in the class(https://msdn.microsoft.com/es-es/library/8d7d1303-b9e9-47ca-96cc-67bf444a08a9%28v=vs.100%29)
    What if we export only some methods in the class and not exported the default constructor(Will it get generated by the compiler in external app which use this dll?).The class may have some private data member as well which are not exposed in the published
    header file(Which we distribute with DLL).
    How the memory gets allocated to those private data members which are not exposed as the default constructor is not exported? 
    Niranjan

    We can only export some methods in the class(https://msdn.microsoft.com/es-es/library/8d7d1303-b9e9-47ca-96cc-67bf444a08a9%28v=vs.100%29)
    What if we export only some methods in the class and not exported the default constructor(Will it get generated by the compiler in external app which use this dll?).The class may have some private data member as well which are not exposed in the published
    header file(Which we distribute with DLL).
    How the memory gets allocated to those private data members which are not exposed as the default constructor is not exported? 
    Niranjan

  • VRF Import/Export - how to filter routes

    Hi,
    Is there another way of filtering the routes you want to import into a vrf because the 'route-target export' and 'route-target import' imports ALL the routes tagged with the given 'asn:xx'. I wanted to have only selected routes imported from one vrf to another. Vrf 'import map' command does not work for me?
    Does filtering makes sense or practical at vrf-vrf level? Where do you use 'import map' command?
    thanks
    resti

    Hi Harold,
    Actually my needs are a little different. Instead of leaking between 2 VRFs, I need to leak to global. Have a default in my VRF that gets imported to global table.
    Goals:
    1. At hub and spoke both sites, let ISP connection run in a separate VRF. Gets a little extra security from internet.
    2. When ISP connection is active, let each site route its traffic out to internet directly. However when the local ISP connection fails, remove the default route that points to ISP so that OSPF learned default from the hub site routes all traffic to hub and puts on internet.
    What's working:
    DMVPN tunnels work fine across INET VRF.
    What's not working:
    1. The IP SLA tracked route leak to global VRF is not working. Traffic doesn't go out to internet directly using local connection.
    I followed following example for this configuration.
    http://www.cisco.com/c/en/us/support/docs/multiprotocol-label-switching-mpls/multiprotocol-label-switching-vpns-mpls-vpns/47807-routeleaking.html
    Any suggestions? Is it possible or supported configuration?
    Below is a diagram of my setup.
    Below is my relevant config snapshot. 2.2.2.1 is actually my another FW in front in the lab that does all NAT and provides internet connection to this lab.
    ip sla auto discovery
    ip sla 1
     icmp-echo 8.8.8.8 source-ip 2.2.2.2
     vrf INET
    ip sla schedule 1 life forever start-time now
    ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/1 2.2.2.1 track 1
    ip route vrf INET 0.0.0.0 0.0.0.0 2.2.2.1
    Lab-RTR#sh ip sla sumary
    IPSLAs Latest Operation Summary
    Codes: * active, ^ inactive, ~ pending
    ID           Type        Destination       Stats       Return      Last
                                               (ms)        Code        Run
    *1           icmp-echo   8.8.8.8           RTT=32      OK          4 seconds ago
    Lab-RTR#sh ip route | in 0.0.0.0
    Gateway of last resort is 10.254.2.99 to network 0.0.0.0
    O*E1  0.0.0.0/0 [110/221] via 10.254.2.99, 00:00:59, Tunnel2
    As you can see, its learning default from Tunnel instead of taking the static default.

  • Managing Route-Map based MPLS VPN

    1) How to derive the VPN information of the MPLS VPN configured using route-maps? As I understand, stitching route-maps information to derive VPN is complex as it is difficult to derive & correlate the filters tied to each of the route-maps that are tied to a VRF :(
    2) Is there any MIB to get from the MIB
    a) Route-maps tied to each VRF
    b) What is the filter associated with each route-map?
    c) Definition of each of the above filter
    It would have been nice if the route-maps' name had global-significance within AS, so that we could have treated route-maps, pretty much like the route-tragets. Alas, I doubt it is :(
    It should be noted here that if the MPLS VPN is configured using route targets, the VPN information derivation is fairly straight forward throught MplsVpn MIB.
    So, the question is what is the simplest way to derive the MPLS VPN info given that they are configured using route-maps in BGP for labelled-route-distribution & for the pkt association with the VRFs.
    Thanks,
    Suresh R

    Each CE in a customer VPN is also added to the management VPN by selecting the Join the management VPN option in the service request user interface.
    The function of the management route map is to allow only the routes to the specific CE into the management VPN. The Cisco IOS supports only one export route map and one import route map per VRF.
    http://www.cisco.com/en/US/products/sw/netmgtsw/ps4748/products_user_guide_chapter09186a0080353ac3.html

  • Redundant access from MPLS VPN to global routing table

    Several our customers have MPLS VPNs deployed over our infrastructure. Part of them requires access to Internet (global routing table in our case).
    As I'm not aware of any methods how to dynamicaly import/export routes between VRF/Global routing tables, at the moment there are static routes configured - one inside VRF pointing to global next hop, another one in global routing table, pointing to interface inside VRF.
    Task is to configure redundant access to Internet. By redundancy I mean using several exit points (primary and backup), what physically represents separate boxes.
    Here comes tricky part - both global static routes (on both boxes, meaning) are valid and reachable in all cases - no matter if specific prefix is reachable in VRF or not. What I'd like to achieve is that specific static route becomes valid only if specific prefix is reachable inside VRF. Yea, sounds like dynamic routing :), I know
    OK, hope U got the idea. Any solutions/recommendations ? Running all Internet routing inside VRF isn't an option, at least for now :(

    Hi Andris,
    I did not mean to have a VRF on the CE. The CE would have both PVCs in the global routing table - his ONLY routing table in fact. One PVC would be used to announce routes into the customer specific VPN (VRF configured on the PE). The other PVC would allow for internet access through the PE (global IP routing table on the PE).
    dot1q will be ok as well.
    This way the CE can be a normal BGP peer to the PE, i.e. there is no MPLS VPN involved here. This allows all options of customer-ISP connectivity.
    Example:
    PE config:
    interface Serial0/0
    encapsulation frame-relay
    interface Serial0/0.1 point-to-point
    description customer VPN access
    ip vrf customer
    ip address 10.1.1.1 255.255.255.252
    interface Serial0/0.2 point-to-point
    description customer Internet access
    ip address 192.168.1.1 255.255.255.252
    router rip
    address-family ipv4 vrf customer
    version 2
    network 10.0.0.0
    no auto-summary
    redistribute bgp 65000 metric 5
    router bgp 65000
    neighbor 192.168.1.2 remote-as 65001
    address-family ipv4 vrf customer
    redistribute rip
    CE config:
    interface Serial0/0
    encapsulation frame-relay
    interface Serial0.1 point-to-point
    description VPN access
    ip address 10.1.1.2 255.255.255.252
    interface Serial0.2 point-to-point
    description Internet access
    ip address 192.168.1.2 255.255.255.252
    router bgp 65001
    neighbor 192.168.1.1 remote-as 65000
    router rip
    version 2
    network 10.0.0.0
    no auto-summary
    Of course you can replace RIP with whatever is suitable for you. And don´t sue me when you do not apply required BGP filters for internet access... ;-)
    The other option ("mini internet") would be feasible as well. Just make sure your BGP filters are NEVER messed up and additionally apply a limit on the numbers of prefixes in your VRF mini-internet.
    Regards
    Martin

  • Injecting Global default Routes into a MPLS VPN

    Hi,
    I have a PE router running MPBGP which receives two default routes to the internet through an IPV4 BGP session. I need to import these routes in to a VRF and export them to different customer VRFs so that these VRFs are able to access Internet.
    I have used the feature called "BGP Support for IP Prefix Import from Global Table into a VRF Table" (URL:http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00803b8db9.html#wp1063870)
    and imported these routes into a VRF.
    The issue is these routes are not propagated to any of the other PE routers which has customer VRFs configured.
    Has anybody tried this or a similar method to inject a dynamic default route into a MPLS VPN.
    Any suggestions would be highly appreciated.
    Thanks
    Subhash

    Hi Subhash,
    is there anything preventing you from terminating your internet BGP sessions in a VRF? Then everything should go smoothly, i.e. standard VRF import/export.
    So possibility A) create a VRF Internet, move bgp neighbor commands there and use filters preventing anything but the default route, then use route targets to distribute the default route into other VRFs.
    Possibility B) use static routing with packet leaking. Could look like this:
    ip route vrf Internet 0.0.0.0 0.0.0.0 global
    ip route vrf Internet 0.0.0.0 0.0.0.0 global 250
    ip route Serial0/0 !assuming this is where the customer router connects.
    Note: the BGP peer IP does not have to be directly connected! There has to be a LDP label for it though. so include your BGP peers network into your IGP and the backup will work, when you loose the link to the peer.
    Hope this helps! Please rate all posts.
    Regards, Martin

  • Import/export route targets from E-BGP ?

    hi all,
    a newbie question again,
    can i import/export rte target in a vrf from/to ebgp session,
    in all my readings i only see samples from import/export with iBGP peering
    thanks for answer

    Yes you can do it this way as well, without the MP-EBGP peering between the both AS's RR's. (You have missed the multi-hop neighbor statement)
    This will achieve the RT exchange between the PE's, so next you will have to import that RT on the other side.
    Once you have the RT with the routes exchanged you will have VPN labels as well populated for the routes on the remote side.
    Now you will have to implement a method to assign an IGP label on top of the VPN label (this label should be for the PE's loopback of AS 100 who advertised this route to AS 200)
    In your case, you can use the send-label command at the ASBR's for the IGP route of the PE;s in their AS' with a label. For this you can redistribute IGP into BGP and again BGP into IGP (with a route-map matching only PE's loopback in their AS and the remote AS).
    So you will effectively have 2 labels to switch traffic between the AS's (IGP and the VPN label).
    HTH-Cheers,
    Swaroop

  • Import/Exporting iVRF routes in IPsec iVRF/FVRF environment

    Hi,
    I am currently terminating a number of IPsec VPNs into customers' 'inside' VRFs (iVRFs) with the 'classic' crypto-map applied in a separate Front-Door VRF (FVRF) on an ASR1k. I now want to export a VPN route from one iVRF into another VRF using MP-BGP. This works as expected in as far as the VPN prefix makes it into the BGP table, but not into the RIB - it would appear that this may be by design and a route with a next-hop in the FVRF (i.e. the VPN RRI route) cannot be exported from the VRF and imported into another VRF. Is there any workaround for this; the only one solution which looks like it might work is to import/export these routes using another VRF and back-to-back VASI interfaces, using ordinary BGP to leak routes. Another possible solution is also to use sVTIs instead of classic crypto (thus avoiding the RRI route), but this doesn't address the need to support classic crypto.
    Cheers,
    Matt

    Hi,
    I am currently terminating a number of IPsec VPNs into customers' 'inside' VRFs (iVRFs) with the 'classic' crypto-map applied in a separate Front-Door VRF (FVRF) on an ASR1k. I now want to export a VPN route from one iVRF into another VRF using MP-BGP. This works as expected in as far as the VPN prefix makes it into the BGP table, but not into the RIB - it would appear that this may be by design and a route with a next-hop in the FVRF (i.e. the VPN RRI route) cannot be exported from the VRF and imported into another VRF. Is there any workaround for this; the only one solution which looks like it might work is to import/export these routes using another VRF and back-to-back VASI interfaces, using ordinary BGP to leak routes. Another possible solution is also to use sVTIs instead of classic crypto (thus avoiding the RRI route), but this doesn't address the need to support classic crypto.
    Cheers,
    Matt

  • HT5537 How do you import/export garage band projects using the latest version of iTunes when there is no apps in the left column to select garageband?

    I am perfectly aware of how to do this using the old version of itunes.
    however i just got a new macbook pro retina... and it came with the latest version of itunes.
    and i was trying to import/export garage band files between my ipad and mac via itunes.
    and the option for apps, that is usually on the left side where you can then select garage band from in itunes, isnt there in the new version of itunes.
    has anyone got a work around for this?
    thanks.
    nic

    Nic, for me the iTunes window looks like this, when I connect my iPad 3:
    I select the iPad in the "devices" section of the Sidebar (use: "View > Show Sidebar" if the sidebar is hidden).
    Click the "Apps" tab in the "Devices" pane.
    Scroll all the way down in the Devices pane to "File Sharing" "Apps" section.
    Then do I click "GarageBand" to select the documents in the right panel.
    Which part is different for you? Perhaps you could post a screenshot?
    Regards
    Léonie

  • Configuring MPLS VPN using static routing

    Hi,
    I am managed to set up a BGP/MPLS VPN in a laboratory using CS3620 routers running IOS 12.2(3) with ISIS. I am thinking of using static routes among the PE and P routers instead of a IGP. Does anyone know if Cisco routers supports static configuration of LSP? I have tried but could not get it work.

    You can very well run MPLS with static routing in the core, as in Cisco we have to meet 2 criterias to have a MPLS forwarding Table.
    1) Creating the LIB
    This thing lies in having LDP neighborship netween two peers and you have Label bindings.
    This is irrespective of what is the best next hop to reach the advertising peers LDP_ID.
    2) Creating the LFIB
    Now after considering all the Label bindings, the LDP_ID which can be reached out an interface
    as a next hop, those Label bindings get installed in the LFIB.
    So considering the above two points, we have to be careful in static routes
    only for interfaces like Ethernet (Multiaccess Segments).
    As in CEF when you give a static route pointing to an Ethernet Interface, CEF creates a
    GLean Adjacency (Meaning there could be multiple hosts as the next hop on this segement, and it will glean for the right next-hop)
    Now you may observe that when you give a static route only pointing to an Ethernet interface,
    you LDP adjacency may come up and you may exchange the bindings with each other. But the Label Forarding Table is not created. This is bcos of this being a Multiaccess interface. And you have
    Glean For it. If its a Normal WAN interface like Serial or POS, then there is no problem of
    GLean and you would have a Valid Cached Adjacency.
    So to avoid probelems with Ethernet interfaces you can simply specify the next-hop-ip address.
    For Eg: ip route 10.10.31.250 255.255.255.255 10.10.31.226 (Without the Interface)
    ip route 10.10.31.250 255.255.255.255 fa0/0 10.10.31.226 (Or with the Interface)
    Only Difference in both is in the first one it has to do a recursive lookup for the outgoing interface. Otherwise both work well. And you can have static routes in your network
    running MPLS.
    And doing this CEF would would work as it should and you would have a Valid Cached Adjacency.
    So this is applicable for Cisco devices which use CEF, including 6500 with SUP720.
    HTH-Cheers,
    Swaroop

  • Selective excel table import/export

    I need to run an SQL script that will selectively (select * from <TABLE> where <"TransactionRunDate" older than 6 months from SystemDate>) remove all rows from three table and simultaneously write them into excel sheets. Then, I need an SQL script that can restore the data from these Excel tables into the Oracle tables (on demand)
    How can I do this without right clicking import/export on the GUI (SQLDeveloper), but with SQL script alone?
    Edited by: user10403078 on Oct 7, 2008 11:32 PM

    I would half agree with daniel and half not agree.
    You can't but you can. As for whether you should is a different matter.
    I say you can because it's possible to do something like you are looking for. You could even get it to write out Excel workbooks with worksheets using Microsofts office XML format and then use an ODBC connection to read the data back again into an Oracle database using Heterogeneous services, but it's complicated and not easily demonstrated with what little time I have.
    However, an alternative is to write the data out to CSV files and then use External tables to read those CSV files back again. Example...
    Firstly, here's my table with some data in it, some of which is more than 6 months old...
    SQL> select * from table1;
            ID CREATED_DATE        TXT
             1 13/12/2007 09:31:08 Old Fred
             2 01/02/2008 09:31:08 Old Bob
             3 22/03/2008 09:31:08 Old Jim
             4 11/05/2008 09:31:08 Young Fred
             5 30/06/2008 09:31:08 Young Bob
             6 19/08/2008 09:31:08 Young Jim
             7 08/10/2008 09:31:08 New Me
    7 rows selected.Now, I create a DELETE trigger on that table so if any rows are deleted this will fire. To allow for rows less than 6 months old to be deleted without being archived to file I put a check in the trigger too...
    SQL> ed
    Wrote file afiedt.buf
      1  create or replace trigger trg_del
      2  after delete on table1
      3  for each row
      4  declare
      5    v_dir  VARCHAR2(30) := 'TEST_DIR';
      6    v_file VARCHAR2(30) := 'table1_archive.csv';
      7    v_fh   UTL_FILE.FILE_TYPE;
      8  begin
      9    IF months_between(sysdate, :OLD.created_date) >= 6 THEN
    10      -- Only archive a deleted row if it's greater than 6 months old
    11      v_fh := UTL_FILE.FOPEN(v_dir, v_file, 'a', 32767);
    12      UTL_FILE.PUT_LINE(v_fh, TO_CHAR(:OLD.ID,'fm9999')||','||TO_CHAR(:OLD.CREATED_DATE,'YYYYMMDDHH24MISS')||',"'||:OLD.TXT||'"');
    13      UTL_FILE.FCLOSE(v_fh);
    14    END IF;
    15* end;
    SQL> /
    Trigger created.So now, I have a trigger that will write deleted rows of data out in CSV format to a file called table1_archive.csv.
    Now I can create an external table that can read that CSV file...
    SQL> ed
    Wrote file afiedt.buf
      1  CREATE TABLE table1_archive (
      2         id            NUMBER,
      3         created_date  DATE,
      4         txt           VARCHAR(200)
      5         )
      6  ORGANIZATION EXTERNAL (
      7    TYPE oracle_loader
      8    DEFAULT DIRECTORY TEST_DIR
      9      ACCESS PARAMETERS (
    10      RECORDS DELIMITED BY NEWLINE
    11      BADFILE 'bad_%a_%p.bad'
    12      LOGFILE 'log_%a_%p.log'
    13      FIELDS TERMINATED BY ',' OPTIONALLY ENCLOSED BY '"'
    14      MISSING FIELD VALUES ARE NULL
    15      REJECT ROWS WITH ALL NULL FIELDS
    16        (id
    17        ,created_date date "yyyymmddhh24miss"
    18        ,txt)
    19      )
    20      LOCATION ('table1_archive.csv')
    21    )
    22  PARALLEL
    23  REJECT LIMIT 0
    24* NOMONITORING
    SQL> /
    Table created.
    {code}
    And now we can prove it works...
    Firstly, delete rows from the table that are 6 months or more old...
    {code}
    SQL> delete from table1
      2  where months_between(sysdate, created_date) >= 6;
    3 rows deleted.
    SQL> select * from table1;
            ID CREATED_DATE        TXT
             4 11/05/2008 09:31:08 Young Fred
             5 30/06/2008 09:31:08 Young Bob
             6 19/08/2008 09:31:08 Young Jim
             7 08/10/2008 09:31:08 New Me
    {code}
    So those rows have been deleted, now let's check they're in the archive CSV file...
    {code}
    SQL> select * from table1_archive;
            ID CREATED_DATE        TXT
             1 13/12/2007 09:31:08 Old Fred
             2 01/02/2008 09:31:08 Old Bob
             3 22/03/2008 09:31:08 Old Jim
    SQL>
    {code}
    There they are, and that CSV file can also be read by Excel if required.
    Let's just check that we don't archive rows that are deleted if they are less than 6 months old...
    {code}
    SQL> delete from table1 where id = 6;
    1 row deleted.
    SQL> select * from table1;
            ID CREATED_DATE        TXT
             4 11/05/2008 09:31:08 Young Fred
             5 30/06/2008 09:31:08 Young Bob
             7 08/10/2008 09:31:08 New Me
    SQL> select * from table1_archive;
            ID CREATED_DATE        TXT
             1 13/12/2007 09:31:08 Old Fred
             2 01/02/2008 09:31:08 Old Bob
             3 22/03/2008 09:31:08 Old Jim
    SQL>
    {code}
    So that row was deleted without being archived.  Just what I intended.

  • Inter-VPN routing with export map for host routes

    Hi,
    I am trying to export host routes from a connected network from one VRF to multiple other VRFs. This is to allow the leaking specific host routes for management purposes. However, I suspect that the /32 host route(s) actually need to be present in the management VRF so the RTs are added accordingly, rather than just specified in the match clause of the MGMT VRF export map.
    Ideally here, I only want to export 10.111.111.254/32 from the connected network 10.111.111.0/24 in the MGMT VRF. The only way around this I can see it to move 10.111.111.0/24 behind another device, and add specific host route(s) within the MGMT VRF for the 10.111.111.X/32 host routes (which are redistributed into the MGMT VRF), using the additional device as the next-hop.
    ip vrf MGMT
    rd 1:1
    export map MGMT-EXPORT-MAP
    route-target export 1:1
    route-target import 1:1
    route-target import 1:1001
    ip vrf CUST-B
    rd 1:2
    export map CUSTOMERS-EXPORT-MAP
    route-target export 1:2
    route-target import 1:2
    route-target import 1:1000
    interface FastEthernet0/0.100
    encapsulation dot1Q 100
    ip vrf forwarding MGMT
    ip address 10.111.111.1 255.255.255.0
    interface FastEthernet0/0.200
    encapsulation dot1Q 101
    ip vrf forwarding CUST-B
    ip address 10.96.2.1 255.255.254.0
    router bgp 65000
    bgp router-id 1.1.1.1
    no bgp default ipv4-unicast
    bgp log-neighbor-changes
    address-family ipv4 vrf CUST-B
      redistribute connected
      no synchronization
    exit-address-family
    address-family ipv4 vrf MGMT
      redistribute connected
      no synchronization
    exit-address-family
    ip prefix-list CUSTOMERS seq 5 permit 10.96.2.0/23
    ip prefix-list ONPREMISE seq 5 permit 10.111.111.0/24
    ip prefix-list ONPREMISE seq 10 permit 10.111.111.254/32
    route-map CUSTOMERS-EXPORT-MAP permit 10
    match ip address prefix-list CUSTOMERS
    set extcommunity rt  1:1001 additive
    route-map MGMT-EXPORT-MAP permit 10
    match ip address prefix-list ONPREMISE
    set extcommunity rt  1:1000 additive
    Cheers,
    Matt

    Hi Matt
    Yes the X/32 routes needs to be present in the VRF Routing-Table and if they are to be learnt statically then the MP-iBGP config for that particular VRF address-family has to redistribute static routes as well.
    Regards
    Varma

  • Filtering methods inside a VRF in MPLS VPN

    Hi,
    we have a network with MPLS VPN and several VRFs involved.
    Inside a certain VRF I need to avoid that two particular networks can talk to each other.
    Can you give me a hint of what can be a solution to implement this ?
    Thanks
    Regards
    Marco

    Hi Marco,
    To prevent connectivity between two networks where a MPLS VPN is involved you can apply the same methods as in a "normal" router network. Just think of the complete MPLS VPN (PE to PE) as being one big "router simulator".
    You could either implement ACLs on the interfaces connecting to the PE or filter routing updates between sites - depending on your topology. When filtering routing updates seems the way to go, you should also have a look into selective import or export. With the help of a route-map one can selectively insert single networks into a VPN by selectively attaching route-targets to BGP updates.
    Regards, Martin

  • Implemting a Sprint MPLS/VPN

    Hello
    I'm implmenting a Sprint MPLS/VPN network. This is a point to point between two of my locations. The connection is handed of to me as a serial connection and I will be connecting to cisco 2800 on bothe ends. Does anyone have what a sample config might look like for my Cisco rotuer?
    Thanks in advance

    HI, [Pls Rate if HELPS]
    In addition to JOE POST,
    You need to configure as normal CE Router. You can handover your Network Traffic either via some DYNAMIC Routing Protocols (BGP, EIGRP, OSPF, RIP) or Static Routing at LAST MILE towards your Service Provider.
    At the Service Provider Side, the Connected Interface with your CE will be added with "ip vrf forwarding " command. Where seperate Routing instance will be maintained on top of Global Routing Table. The MPLS Labels are swapped over their Backbone / partner - NNI to carry your traffic over a Label Switched Path.
    For an MPLS to work, the IP-CEF will be enabled. This kind of MPLS Technology, will enable fast processing of Packets and Traffic over the Large Scale Network.
    Similarly the RT & RD Values are used to distinguish the Customer Prefixes. The RT export and Import will be done at end - to - end at Service Provider Side Routers to make the HO & BO to communicate.
    The CE Router will not involve any MPLS / VRF Configuration Technology.
    Hope I am Informative.
    Pls Rate if HELPS
    Best Regards,
    Guru Prasad R

Maybe you are looking for

  • How to populate optional items in SELECT BOX

    // REGISTRATION.JSP// <%@ page import="java.util.Enumeration" %> <%@ page import="java.util.Vector" %> <%@ page import="java.util.*" %> <%@ page import="java.lang.*" %> <%@ page import="java.sql.*" %> <%@ page import="beans.register2" %> <jsp:useBean

  • Labview for Linux OS version

    Hi:     I am want to use Labview Linux OS on ARM9 CPU.Which version of Labview  can do? How starting?? autocar

  • Cant import from cd

    In my itunes library i have 207 songs.a friend of mine copied for me in a dvd cd some winamp media files and some mp3s.I press file-add file to library i select a song i press open and i see in itunes number 208 for songs.But a second after,it goes b

  • Palm T|X Windows XP Outlook 2007 .iCal and handheld calendar do not sync

    Hi there, I have a Palm T|X that I am running with a Windows XP Pro PC. I recently upgraded to Outlook 2007 so that I could access an iCal calendar. I downloaded the new Palm Outlook 2007 conduits upgrade. My contacts, notes, tasks and calendar are s

  • Help need to generate query

    Hi, I have the following info from a table named X. Col1 Col2 Col3 Col4 IT01 20 01 X IT01 20 50 X IT01 30 01 X IT01 30 50 X If Col4 has value 'X' all the 4 combinations of Col2 & Col3, The result should be displayed as Col1 Col4 IT01 X If the actual