miércoles, 21 de septiembre de 2011

Ejemplo MPLS VPN con GNS3 Parte 1


MPLS (Multiprotocol Label Switching), un protocolo de conmutación de paquetes  en el cual se realiza una conmutación rápida de paquetes utilizando numeros de etiquetas las cuales son agregadas a los paquetes de capa 3, el objetivo principal de MPLS es la propiedad ATOM (Any Transport Over MPLS), es decir  otorgar transporte a todo tipo de trafico por medio de MPLS, a continuacion la topologia a utilizar:




Se configurara cada Router con una Loopback y con interfaces punto a punto el objetivo de la loopback es funcionar como Id para OSPF y MPLS.

Configuraremos enlaces punto a punto entre entre todos los equipos simulando un anillo  de una red  Metro Ethernet y configuraremos el IGP ospf con proceso 100 para todos los equipos

Activaremos el comando mpls ip en cada una de las interfaces adjacentes entre equipos de red estos equipos simularan ser los PE (Providers Edge) de nuestra red mpls es decir el borde del proveedor

En la Parte 2  Configuraremos Multiprotocol BGP para interconectar por medio de una vpn de mpls o una  VPN L3

A continuación las configuraciones aplicadas



PE-01#
hostname PE-01
!
interface Loopback0
 description MPLS ID
 ip address 10.192.97.4 255.255.255.255
!
interface Ethernet0/0
 ip address 10.210.102.1 255.255.255.252
 ip ospf network point-to-point
 mpls ip
!

router ospf 100
 log-adjacency-changes
 network 10.192.97.4 0.0.0.0 area 0
 network 10.210.102.0 0.0.0.3 area 0

P-02#

hostname P-02
!

interface Loopback0
 description MPLS ID
 ip address 10.192.97.2 255.255.255.255
!
interface Ethernet0/0
 ip address 10.210.102.2 255.255.255.252
 ip ospf network point-to-point
 mpls ip
!
interface Ethernet0/1
 ip address 10.210.12.1 255.255.255.252
 ip ospf network point-to-point
 mpls ip
!
interface Ethernet0/2
 ip address 10.210.23.1 255.255.255.252
 ip ospf network point-to-point
 mpls ip
!

router ospf 100
 log-adjacency-changes
 network 10.192.97.2 0.0.0.0 area 0
 network 10.210.12.0 0.0.0.3 area 0
 network 10.210.23.0 0.0.0.3 area 0
 network 10.210.102.0 0.0.0.3 area 0

P-01#
hostname P-01
!
interface Loopback0

 description MPLS ID
 ip address 10.192.97.1 255.255.255.255
!
interface Ethernet0/0
 ip address 10.210.13.1 255.255.255.252
 ip ospf network point-to-point
 mpls ip
!
interface Ethernet0/1
 ip address 10.210.12.2 255.255.255.252
 ip ospf network point-to-point
 mpls ip


router ospf 100
 log-adjacency-changes
 network 10.192.97.1 0.0.0.0 area 0
 network 10.210.12.0 0.0.0.3 area 0
 network 10.210.13.0 0.0.0.3 area 0

P-03#
hostname P-03

interface Loopback0
 description MPLS ID
 ip address 10.192.97.3 255.255.255.255
!
interface Ethernet0/0
 ip address 10.210.13.2 255.255.255.252
 ip ospf network point-to-point
 mpls ip
!
interface Ethernet0/1
 ip address 10.210.203.1 255.255.255.252
 ip ospf network point-to-point
 mpls ip
!
interface Ethernet0/2
 ip address 10.210.23.2 255.255.255.252
 ip ospf network point-to-point
 mpls ip

router ospf 100
 log-adjacency-changes
 network 10.192.97.3 0.0.0.0 area 0
 network 10.210.13.0 0.0.0.3 area 0
 network 10.210.23.0 0.0.0.3 area 0
 network 10.210.203.0 0.0.0.3 area 0

PE-02#
hostname PE-02
!
interface Loopback0
 description MPLS ID
 ip address 10.192.97.5 255.255.255.255
!



interface Ethernet0/1
 ip address 10.210.203.2 255.255.255.252
 ip ospf network point-to-point
 mpls ip
!

router ospf 100
 log-adjacency-changes
 network 10.192.97.5 0.0.0.0 area 0
 network 10.210.203.0 0.0.0.3 area 0



Verificamos el correcto funcionamiento de OSPF:


PE-01#show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface
10.192.97.2       0   FULL/  -        00:00:37    10.210.102.2    Ethernet0/0


P-02#show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface
10.192.97.4       0   FULL/  -        00:00:36    10.210.102.1    Ethernet0/0
10.192.97.3       0   FULL/  -        00:00:34    10.210.23.2     Ethernet0/2
10.192.97.1       0   FULL/  -        00:00:33    10.210.12.2     Ethernet0/1


P-01#         show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface
10.192.97.3       0   FULL/  -        00:00:37    10.210.13.2     Ethernet0/0
10.192.97.2       0   FULL/  -        00:00:37    10.210.12.1     Ethernet0/1


P-03#show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface
10.192.97.5       0   FULL/  -        00:00:36    10.210.203.2    Ethernet0/1
10.192.97.2       0   FULL/  -        00:00:34    10.210.23.1     Ethernet0/2
10.192.97.1       0   FULL/  -        00:00:38    10.210.13.1     Ethernet0/0


PE-02#show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface
10.192.97.3       0   FULL/  -        00:00:31    10.210.203.1    Ethernet0/1

Verificamos las adjacencias de MPLS con los siguientes comandos:


PE-01#show mpls ldp neighbor
    Peer LDP Ident: 10.192.97.2:0; Local LDP Ident 10.192.97.4:0
        TCP connection: 10.192.97.2.646 - 10.192.97.4.61800
        State: Oper; Msgs sent/rcvd: 47/46; Downstream
        Up time: 00:29:31
        LDP discovery sources:
          Ethernet0/0, Src IP addr: 10.210.102.2
        Addresses bound to peer LDP Ident:
          10.210.102.2    10.210.12.1     10.210.23.1     10.192.97.2


P-02#show mpls ldp neighbor
    Peer LDP Ident: 10.192.97.4:0; Local LDP Ident 10.192.97.2:0
        TCP connection: 10.192.97.4.61800 - 10.192.97.2.646
        State: Oper; Msgs sent/rcvd: 46/47; Downstream
        Up time: 00:29:42
        LDP discovery sources:
          Ethernet0/0, Src IP addr: 10.210.102.1
        Addresses bound to peer LDP Ident:
          10.210.102.1    10.192.97.4
    Peer LDP Ident: 10.192.97.1:0; Local LDP Ident 10.192.97.2:0
        TCP connection: 10.192.97.1.646 - 10.192.97.2.17801
        State: Oper; Msgs sent/rcvd: 46/47; Downstream
        Up time: 00:29:38
        LDP discovery sources:
          Ethernet0/1, Src IP addr: 10.210.12.2
        Addresses bound to peer LDP Ident:
          10.210.13.1     10.210.12.2     10.192.97.1
    Peer LDP Ident: 10.192.97.3:0; Local LDP Ident 10.192.97.2:0
        TCP connection: 10.192.97.3.28906 - 10.192.97.2.646
        State: Oper; Msgs sent/rcvd: 46/47; Downstream
        Up time: 00:29:36
        LDP discovery sources:
          Ethernet0/2, Src IP addr: 10.210.23.2
        Addresses bound to peer LDP Ident:
          10.210.13.2     10.210.203.1    10.210.23.2     10.192.97.3


P-01#show mpls ldp neighbor
    Peer LDP Ident: 10.192.97.2:0; Local LDP Ident 10.192.97.1:0
        TCP connection: 10.192.97.2.17801 - 10.192.97.1.646
        State: Oper; Msgs sent/rcvd: 47/46; Downstream
        Up time: 00:29:41
        LDP discovery sources:
          Ethernet0/1, Src IP addr: 10.210.12.1
        Addresses bound to peer LDP Ident:
          10.210.102.2    10.210.12.1     10.210.23.1     10.192.97.2
    Peer LDP Ident: 10.192.97.3:0; Local LDP Ident 10.192.97.1:0
        TCP connection: 10.192.97.3.35292 - 10.192.97.1.646
        State: Oper; Msgs sent/rcvd: 46/46; Downstream
        Up time: 00:29:39
        LDP discovery sources:
          Ethernet0/0, Src IP addr: 10.210.13.2
        Addresses bound to peer LDP Ident:
          10.210.13.2     10.210.203.1    10.210.23.2     10.192.97.3


P-03#show mpls ldp neighbor
    Peer LDP Ident: 10.192.97.1:0; Local LDP Ident 10.192.97.3:0
        TCP connection: 10.192.97.1.646 - 10.192.97.3.35292
        State: Oper; Msgs sent/rcvd: 46/46; Downstream
        Up time: 00:29:43
        LDP discovery sources:
          Ethernet0/0, Src IP addr: 10.210.13.1
        Addresses bound to peer LDP Ident:
          10.210.13.1     10.210.12.2     10.192.97.1
    Peer LDP Ident: 10.192.97.2:0; Local LDP Ident 10.192.97.3:0
        TCP connection: 10.192.97.2.646 - 10.192.97.3.28906
        State: Oper; Msgs sent/rcvd: 47/46; Downstream
        Up time: 00:29:43
        LDP discovery sources:
          Ethernet0/2, Src IP addr: 10.210.23.1
        Addresses bound to peer LDP Ident:
          10.210.102.2    10.210.12.1     10.210.23.1     10.192.97.2
    Peer LDP Ident: 10.192.97.5:0; Local LDP Ident 10.192.97.3:0
        TCP connection: 10.192.97.5.50440 - 10.192.97.3.646
        State: Oper; Msgs sent/rcvd: 46/46; Downstream
        Up time: 00:29:37
        LDP discovery sources:
          Ethernet0/1, Src IP addr: 10.210.203.2
        Addresses bound to peer LDP Ident:
          10.210.203.2    10.192.97.5


PE-02#show mpls ldp neighbor
    Peer LDP Ident: 10.192.97.3:0; Local LDP Ident 10.192.97.5:0
        TCP connection: 10.192.97.3.646 - 10.192.97.5.50440
        State: Oper; Msgs sent/rcvd: 47/46; Downstream
        Up time: 00:29:40
        LDP discovery sources:
          Ethernet0/1, Src IP addr: 10.210.203.1
        Addresses bound to peer LDP Ident:
          10.210.13.2     10.210.203.1    10.210.23.2     10.192.97.3

Eso es todo por esta entrega, en la Parte 2 se hará uso de esta topologia para implementar VPN con MPLS por medio de MuliProtocol BGP lo cual tiene gran aplicación en la industria  y en la mayoría de los proveedores de internet.