SG

SG

Jumat, 16 Desember 2011

MPLS-VPN with EIGRP

Konfigurasi IP addressnya adalah sebagai berikut:



berikut adalah contoh konfigurasinya:

Pertama:
configure semua interface (PE1-Core-PE2)

***Core***
!
interface Loopback0
 ip address 192.168.100.1 255.255.255.255
!
interface GigabitEthernet1/0
 ip address 192.168.10.10 255.255.255.252
!
interface GigabitEthernet2/0
 ip address 192.168.10.13 255.255.255.252


***PE1***
interface Loopback0
 ip address 192.168.100.2 255.255.255.255
!
interface GigabitEthernet1/0
 ip address 192.168.10.9 255.255.255.252


***PE2***

interface Loopback0
 ip address 192.168.100.3 255.255.255.255
!
interface GigabitEthernet1/0
 ip address 192.168.10.14 255.255.255.252

config antar P dan PE menggunakan OSPF 

***Core***
router ospf 1
 network 192.168.10.0 0.0.0.255 area 0
 network 192.168.100.1 0.0.0.0 area 0


***PE1***


router ospf 1

 network 192.168.10.0 0.0.0.255 area 0
 network 192.168.100.2 0.0.0.0 area 0



***PE2***

router ospf 1
 network 192.168.10.0 0.0.0.255 area 0
 network 192.168.100.3 0.0.0.0 area 0

untuk pengecekan : ketikan show ip route

PE1#sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
 D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
 N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
 E1 - OSPF external type 1, E2 - OSPF external type 2
 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
 ia - IS-IS inter area, * - candidate default, U - per-user static route
 o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

 192.168.10.0/30 is subnetted, 2 subnets
C       192.168.10.8 is directly connected, GigabitEthernet1/0
O       192.168.10.12 [110/2] via 192.168.10.10, 00:23:16, GigabitEthernet1/0
 192.168.100.0/32 is subnetted, 3 subnets
O       192.168.100.1 [110/2] via 192.168.10.10, 00:23:16, GigabitEthernet1/0
C       192.168.100.2 is directly connected, Loopback0
O       192.168.100.3 [110/3] via 192.168.10.10, 00:23:16, GigabitEthernet1/0
PE1#

PE2#sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
 D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
 N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
 E1 - OSPF external type 1, E2 - OSPF external type 2
 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
 ia - IS-IS inter area, * - candidate default, U - per-user static route
 o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

 192.168.10.0/30 is subnetted, 2 subnets
O       192.168.10.8 [110/2] via 192.168.10.13, 00:18:13, GigabitEthernet1/0
C       192.168.10.12 is directly connected, GigabitEthernet1/0
 192.168.100.0/32 is subnetted, 3 subnets
O       192.168.100.1 [110/2] via 192.168.10.13, 00:18:23, GigabitEthernet1/0
O       192.168.100.2 [110/3] via 192.168.10.13, 00:18:13, GigabitEthernet1/0
C       192.168.100.3 is directly connected, Loopback0
PE2#

Config BGPnya

***PE1***
router bgp 100
 no synchronization
 bgp log-neighbor-changes
 neighbor 192.168.100.3 remote-as 100
 neighbor 192.168.100.3 update-source Loopback0
 no auto-summary



***PE2***
router bgp 100
 no synchronization
 bgp log-neighbor-changes
 neighbor 192.168.100.2 remote-as 100
 neighbor 192.168.100.2 update-source Loopback0
 no auto-summary



PE1# sh ip bgp summary
BGP router identifier 192.168.100.2, local AS number 100
BGP table version is 1, main routing table version 1

Neighbor        V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
192.168.100.3   4   100      28      36        1    0    0 00:30:32        0
PE1#

PE2#sh ip bgp summary
BGP router identifier 192.168.100.3, local AS number 100
BGP table version is 1, main routing table version 1

Neighbor        V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
192.168.100.2   4   100      35      28        1    0    0 00:23:27        0
PE2#

Configurasi MPLS


***P***
ip cef
!
mpls label protocol ldp
!
interface GigabitEthernet1/0
 ip address 192.168.10.10 255.255.255.252
 mpls ip
!
interface GigabitEthernet2/0
 ip address 192.168.10.13 255.255.255.252
 mpls ip

***PE1***
ip cef
!
mpls label protocol ldp
!
mpls ldp router-id Loopback0 force
!
interface GigabitEthernet1/0
 ip address 192.168.10.9 255.255.255.252
 mpls ip



***PE2***



ip cef
!
mpls label protocol ldp
!
mpls ldp router-id Loopback0 force
!
interface GigabitEthernet1/0
 ip address 192.168.10.14 255.255.255.252
 mpls ip

core#show mpls ldp neighbor
 Peer LDP Ident: 192.168.100.3:0; Local LDP Ident 192.168.100.1:0
 TCP connection: 192.168.100.3.26601 - 192.168.100.1.646
 State: Oper; Msgs sent/rcvd: 45/36; Downstream
 Up time: 00:32:49
 LDP discovery sources:
 GigabitEthernet2/0, Src IP addr: 192.168.10.14
 Addresses bound to peer LDP Ident:
 192.168.10.14   192.168.100.3
 Peer LDP Ident: 192.168.100.2:0; Local LDP Ident 192.168.100.1:0
 TCP connection: 192.168.100.2.31760 - 192.168.100.1.646
 State: Oper; Msgs sent/rcvd: 45/44; Downstream
 Up time: 00:32:32
 LDP discovery sources:
 GigabitEthernet1/0, Src IP addr: 192.168.10.9
 Addresses bound to peer LDP Ident:
 192.168.10.9    192.168.100.2
core#

PE1#sh mpls ldp neighbor
 Peer LDP Ident: 192.168.100.1:0; Local LDP Ident 192.168.100.2:0
 TCP connection: 192.168.100.1.646 - 192.168.100.2.31760
 State: Oper; Msgs sent/rcvd: 43/44; Downstream
 Up time: 00:31:35
 LDP discovery sources:
 GigabitEthernet1/0, Src IP addr: 192.168.10.10
 Addresses bound to peer LDP Ident:
 192.168.10.10   192.168.100.1   192.168.10.13
PE1#

PE2#show mpls ldp neighbor
 Peer LDP Ident: 192.168.100.1:0; Local LDP Ident 192.168.100.3:0
 TCP connection: 192.168.100.1.646 - 192.168.100.3.26601
 State: Oper; Msgs sent/rcvd: 37/45; Downstream
 Up time: 00:25:54
 LDP discovery sources:
 GigabitEthernet1/0, Src IP addr: 192.168.10.13
 Addresses bound to peer LDP Ident:
 192.168.10.10   192.168.100.1   192.168.10.13
PE2#

Configurasi VRF di PE1 dan PE2


***PE1***


ip vrf cnc1


 rd 100:1
 route-target export 100:1
 route-target import 100:1
!
interface GigabitEthernet2/0
 ip vrf forwarding cnc1
 ip address 192.168.10.2 255.255.255.252
 negotiation auto

***PE2***
ip vrf cnc1
 rd 100:1
 route-target export 100:1
 route-target import 100:1
!
interface GigabitEthernet2/0
 ip vrf forwarding cnc1
 ip address 192.168.10.17 255.255.255.252
 negotiation auto

Di PE1 dan PE2, CEnya menggunakan EIGRP
***PE1***
router eigrp 100
 auto-summary
 !
 address-family ipv4 vrf cnc1
 redistribute bgp 100 metric 1000 100 255 1 1500
 network 10.0.0.0
 network 192.168.10.0
 network 192.168.100.0
 auto-summary
 autonomous-system 100
 eigrp router-id 192.168.100.2
 exit-address-family

***PE2***
router eigrp 100
 auto-summary
 !
 address-family ipv4 vrf cnc1
 redistribute bgp 100 metric 1000 100 255 1 1500
 network 10.0.0.0
 network 192.168.10.0
 network 192.168.100.0
 auto-summary
 autonomous-system 100
 eigrp router-id 192.168.100.3
 exit-address-family

PE1#sh ip route vrf cnc1

Routing Table: cnc1
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
 D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
 N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
 E1 - OSPF external type 1, E2 - OSPF external type 2
 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
 ia - IS-IS inter area, * - candidate default, U - per-user static route
 o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

 192.168.10.0/30 is subnetted, 2 subnets
C       192.168.10.0 is directly connected, GigabitEthernet2/0
B       192.168.10.16 [200/0] via 192.168.100.3, 00:04:17
 10.0.0.0/32 is subnetted, 2 subnets
D       10.14.200.1 [90/130816] via 192.168.10.1, 00:02:21, GigabitEthernet2/0
B       10.14.200.2 [200/130816] via 192.168.100.3, 00:02:23
PE1#

PE2#sh ip route vrf cnc1

Routing Table: cnc1
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
 D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
 N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
 E1 - OSPF external type 1, E2 - OSPF external type 2
 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
 ia - IS-IS inter area, * - candidate default, U - per-user static route
 o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

 192.168.10.0/30 is subnetted, 2 subnets
B       192.168.10.0 [200/0] via 192.168.100.2, 00:04:54
C       192.168.10.16 is directly connected, GigabitEthernet2/0
 10.0.0.0/32 is subnetted, 2 subnets
B       10.14.200.1 [200/130816] via 192.168.100.2, 00:02:16
D       10.14.200.2
 [90/130816] via 192.168.10.18, 00:02:36, GigabitEthernet2/0
PE2#

Aktifkan MP-BGP


***PE1***
router bgp 100
 bgp router-id 192.168.100.2
 bgp log-neighbor-changes
 neighbor 192.168.100.3 remote-as 100
 neighbor 192.168.100.3 update-source Loopback0
 !
 address-family ipv4
 neighbor 192.168.100.3 activate
 no auto-summary
 no synchronization
 exit-address-family
 !
 address-family vpnv4
 neighbor 192.168.100.3 activate
 neighbor 192.168.100.3 send-community both
 exit-address-family
 !
 address-family ipv4 vrf cnc1
 redistribute connected
 redistribute eigrp 100
 no synchronization
 exit-address-family

***PE2***
router bgp 100
 bgp router-id 192.168.100.3
 bgp log-neighbor-changes
 neighbor 192.168.100.2 remote-as 100
 neighbor 192.168.100.2 update-source Loopback0
 !
 address-family ipv4
 neighbor 192.168.100.2 activate
 no auto-summary
 no synchronization
 exit-address-family
 !
 address-family vpnv4
 neighbor 192.168.100.2 activate
 neighbor 192.168.100.2 send-community both
 exit-address-family
 !
address-family ipv4 vrf cnc1
 redistribute connected
 redistribute eigrp 100
 no synchronization
 exit-address-family

Configurasi di masing-masing CE


***cnc1_a***

router eigrp 100
 network 10.0.0.0
 network 192.168.10.0
 no auto-summary

***cnc1_b***

router eigrp 100
 network 10.0.0.0
 network 192.168.10.0
 no auto-summary

***ceknya dengan tes ping, traceroute dan telnet
cnc1_a#sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
 D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
 N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
 E1 - OSPF external type 1, E2 - OSPF external type 2
 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
 ia - IS-IS inter area, * - candidate default, U - per-user static route
 o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

 192.168.10.0/30 is subnetted, 2 subnets
C       192.168.10.0 is directly connected, GigabitEthernet1/0
D       192.168.10.16 [90/3072] via 192.168.10.2, 00:03:48, GigabitEthernet1/0
 10.0.0.0/32 is subnetted, 2 subnets
C       10.14.200.1 is directly connected, Loopback0
D       10.14.200.2 [90/131072] via 192.168.10.2, 00:03:19, GigabitEthernet1/0
cnc1_a#

cnc1_b#sh ip rou
cnc1_b#sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
 D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
 N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
 E1 - OSPF external type 1, E2 - OSPF external type 2
 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
 ia - IS-IS inter area, * - candidate default, U - per-user static route
 o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

 192.168.10.0/30 is subnetted, 2 subnets
D       192.168.10.0 [90/3072] via 192.168.10.17, 00:03:38, GigabitEthernet1/0
C       192.168.10.16 is directly connected, GigabitEthernet1/0
 10.0.0.0/32 is subnetted, 2 subnets
D       10.14.200.1
 [90/131072] via 192.168.10.17, 00:03:15, GigabitEthernet1/0
C       10.14.200.2 is directly connected, Loopback0
cnc1_b#

cnc1_a#ping 10.14.200.2

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.14.200.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 332/425/600 ms
cnc1_a#

cnc1_b#ping 10.14.200.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.14.200.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 256/367/452 ms
cnc1_b#

cnc1_a#traceroute 10.14.200.2

Type escape sequence to abort.
Tracing the route to 10.14.200.2

 1 192.168.10.2 116 msec 100 msec 92 msec
 2 192.168.10.10 [MPLS: Labels 16/24 Exp 0] 284 msec 372 msec 340 msec
 3 192.168.10.17 [MPLS: Label 24 Exp 0] 236 msec 220 msec 236 msec
 4 192.168.10.18 1484 msec 324 msec *
cnc1_a#

cnc1_b#traceroute 10.14.200.1

Type escape sequence to abort.
Tracing the route to 10.14.200.1

 1 192.168.10.17 76 msec 140 msec 116 msec
 2 192.168.10.13 [MPLS: Labels 17/24 Exp 0] 260 msec 1060 msec 332 msec
 3 192.168.10.2 [MPLS: Label 24 Exp 0] 260 msec 244 msec 260 msec
 4 192.168.10.1 404 msec 364 msec 524 msec
cnc1_b#

cnc1_a#telnet 10.14.200.2
Trying 10.14.200.2 ... Open

User Access Verification

Password:
cnc1_b>

cnc1_b#telnet 10.14.200.1
Trying 10.14.200.1 ... Open

User Access Verification

Password:
cnc1_a>


sekian dulu untuk postingnya...














Diposting oleh



di







































Tidak ada komentar:















Posting Komentar


















        

      









Langganan:
Posting Komentar (Atom)