Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
Inter-AS VPN Option C (So...

Inter-AS VPN Option C (Solution 2)

Latest reply: Jul 11, 2021 17:08:45 3652 21 6 0 1
View the author 1#

Hey there,

The following is an eNSP experiment of Inter-AS VPN Option C (Solution 2). The eNSP project is in the attachment. If you have any questions, please feel free to comment. Thank you!

Topology

option c2

The core of the Option C solution is to enable PEs/RRs in different MPLS domains to establish EBGP peer relationships and transmit data through labels.

Compared with solution 1, solution 2 requires less configurations. The ABSR does not need to establish an IBGP peer relationship with PE/RR. Through import EBGP routes to IBP on the ABSR, PE/RR in the local AS can learn the PE/RR addresses of the peer AS and assign LDP labels to these addresses. 

The below is the Main configuration (Configurations on the left and right MPLS domains are symmetrical. The following shows only the configuration on the left. . For all the configuration, please see the attachment.):

R1(PE)

#

ip vpn-instance A

 ipv4-family

  route-distinguisher 100:1

  vpn-target 100:1 export-extcommunity

  vpn-target 100:1 import-extcommunity

#

ip vpn-instance B

 ipv4-family

  route-distinguisher 100:2

  vpn-target 100:2 export-extcommunity

  vpn-target 100:2 import-extcommunity

#

mpls lsr-id 1.1.1.1

mpls

#

mpls ldp

#

interface GigabitEthernet0/0/0

 ip address 10.1.12.1 255.255.255.0 

 mpls

 mpls ldp

#

interface GigabitEthernet0/0/1

 ip binding vpn-instance A

 ip address 10.1.17.1 255.255.255.0 

#

interface GigabitEthernet0/0/2

 ip binding vpn-instance B

 ip address 10.1.18.1 255.255.255.0 

#

interface GigabitEthernet1/0/0

 ip address 10.1.13.1 255.255.255.0 

 mpls

 mpls ldp

#

interface LoopBack0

 ip address 1.1.1.1 255.255.255.255 

#

bgp 100

 peer 2.2.2.2 as-number 100 

 peer 2.2.2.2 connect-interface LoopBack0

 #

 ipv4-family unicast

  undo synchronization

  undo peer 2.2.2.2 enable

 # 

 ipv4-family vpnv4

  policy vpn-target

  peer 2.2.2.2 enable

  peer 2.2.2.2 next-hop-invariable 

 #

 ipv4-family vpn-instance A 

  peer 10.1.17.7 as-number 1 

 #

 ipv4-family vpn-instance B 

  import-route ospf 1

#

ospf 1 vpn-instance B

 import-route bgp

 area 0.0.0.0 

  network 10.1.18.1 0.0.0.0 

#

rip 1

 version 2

 network 10.0.0.0

 network 1.0.0.0

#

------------------------------------------------

RR1

#

mpls lsr-id 2.2.2.2

mpls

#

mpls ldp

#

interface GigabitEthernet0/0/0

 ip address 10.1.12.2 255.255.255.0 

 mpls

 mpls ldp

#

interface GigabitEthernet0/0/1

 ip address 10.1.23.2 255.255.255.0 

 mpls

 mpls ldp

#

interface NULL0

#

interface LoopBack0

 ip address 2.2.2.2 255.255.255.255 

#

bgp 100

 peer 1.1.1.1 as-number 100 

 peer 1.1.1.1 connect-interface LoopBack0

 peer 5.5.5.5 as-number 200 

 peer 5.5.5.5 ebgp-max-hop 100 

 peer 5.5.5.5 connect-interface LoopBack0

 #

 ipv4-family unicast

  undo synchronization

  undo peer 1.1.1.1 enable

  undo peer 5.5.5.5 enable

 # 

 ipv4-family vpnv4

  undo policy vpn-target

  peer 1.1.1.1 enable

  peer 1.1.1.1 reflect-client

  peer 1.1.1.1 next-hop-invariable 

  peer 5.5.5.5 enable

  peer 5.5.5.5 next-hop-invariable 

#

rip 1

 version 2

 network 10.0.0.0

 network 2.0.0.0

#

-------------------------------------------------------

AR3(ASBR)

#

mpls lsr-id 3.3.3.3

mpls

 lsp-trigger bgp-label-route

#

mpls ldp

#

interface GigabitEthernet0/0/0

 ip address 34.34.34.3 255.255.255.0 

 mpls

#

interface GigabitEthernet0/0/1

 ip address 10.1.23.3 255.255.255.0 

 mpls

 mpls ldp

#

interface GigabitEthernet1/0/0

 ip address 10.1.13.3 255.255.255.0 

 mpls

 mpls ldp

#

interface LoopBack0

 ip address 3.3.3.3 255.255.255.255 

#

bgp 100

 peer 34.34.34.4 as-number 200 

 #

 ipv4-family unicast

  undo synchronization

  network 1.1.1.1 255.255.255.255 

  network 2.2.2.2 255.255.255.255 

  peer 34.34.34.4 enable

  peer 34.34.34.4 route-policy asbr export

  peer 34.34.34.4 label-route-capability

#

rip 1

 version 2

 network 3.0.0.0

 network 10.0.0.0

 import-route bgp

#

route-policy asbr permit node 10 

 apply mpls-label

#

MPLS

This article contains more resources

You need to log in to download or view. No account? Register

x

Like (6) Dislike (0) Favorite(1) Share Report
Previous: simulation
Next: Inter-AS VPN Option C (Solution 1)
(0) (0)
2#
sofiamartin
Created May 28, 2020 13:33:28

After the Coronavirus crisis, everyone is managing things over the internet and hackers are taking full leverage of the situation. Spam and malware attacks are drastically increasing therefore; a VPN is the need of the hour. I found and connect to the FastestVPN, it is a safe, affordable and secure VPN for Android and iOS.
https://fastestvpn.com/download/android-vpn
View more
  • x
  • convention:
(0) (0)
3#
Unicef
MVE Created May 28, 2020 14:35:49

Helpful
View more
  • x
  • convention:
(0) (0)
4#
wissal
MVE Created Jun 26, 2020 04:56:53

Good job.
View more
  • x
  • convention:

Saqib123
Saqib123 Created Feb 23, 2021 16:56:16 (0) (0)
 
Saqib123
Saqib123 Created Feb 23, 2021 16:56:25 (0) (0)
 
(0) (0)
5#
Herediano
Created Jun 27, 2020 05:29:32

Thanks
View more
  • x
  • convention:
(0) (0)
6#
erikasambi
Created Jun 27, 2020 12:17:04

good post
View more
  • x
  • convention:
(2) (0)
7#
erikasambi
Created Jun 27, 2020 12:17:10

thanks a lot
View more
  • x
  • convention:

shakeela
shakeela Created Mar 12, 2021 16:59:20 (0) (0)
 
shakeela
shakeela Created Mar 12, 2021 16:59:25 (0) (0)
 
(0) (0)
8#
Null_0
Created Feb 10, 2021 11:11:06

I shall try this lab and see how I can break it (so that I can fix it myself, I mean no disrespect please).
Very interesting and educational.
View more
  • x
  • convention:
(0) (0)
9#
Null_0
Created Feb 10, 2021 11:16:15

Good day guys. Please help me and if I can not be assisted here then please point me to the right person to ask.
How do I make this post a favorite so that it is bookmarked ?
View more
  • x
  • convention:
(0) (0)
10#
alexander.grosello
Created Feb 23, 2021 16:53:01

Good post
View more
  • x
  • convention:
12
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.