Sunday, November 8, 2009

CSC Hierarchical MPLS VPN mVPN (CSC multicast)



Brief Explanation -
Between the two customer BGP-AS1's, the below example is configured  -
1. PIM-SM with AutoRP (and AutoRP Listener)
  (we can either run PIM-SM or PIM-SSM or PIM-BIDIR; PIM-Dense is not supported in the core)
2. MSDP is used between PE1 and PE2.
3. MDT Default group 226.1.1.1

Between Carrier AS -
1. we run MDT 239.1.1.2
2. and use SSM (we can either run PIM-SM or PIM-SSM or PIM-BIDIR; PIM-Desne is not supported in the core)

CE's use sparse-dense mode. (any mode can be used including pure Dense mode).

Configs

CE1#
CE1#
CE1#
CE1#
CE1#r
Building configuration...

Current configuration : 1518 bytes
!
version 12.3
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname CE1
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
no aaa new-model
ip subnet-zero
!
!
ip cef
no ip domain lookup
!
ip multicast-routing
!
!
!
!
interface Loopback0
ip address 10.156.1.1 255.255.255.255
ip pim sparse-dense-mode
!
interface FastEthernet0/0
ip address 10.10.10.1 255.255.255.0
ip pim sparse-dense-mode
duplex auto
speed auto
!
router ospf 1
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
!
end

CE1#ping 225.1.1.2 repeat 5

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 225.1.1.2, timeout is 2 seconds:

Reply to request 0 from 20.20.20.2, 1532 ms
Reply to request 0 from 20.20.20.2, 1556 ms
Reply to request 1 from 20.20.20.2, 1620 ms
Reply to request 1 from 20.20.20.2, 1712 ms
Reply to request 2 from 20.20.20.2, 1520 ms
Reply to request 2 from 20.20.20.2, 1520 ms
Reply to request 3 from 20.20.20.2, 340 ms
Reply to request 3 from 20.20.20.2, 472 ms
Reply to request 4 from 20.20.20.2, 1836 ms
Reply to request 4 from 20.20.20.2, 1864 ms
CE1#
---------------------------------------------------

PE1#r
Building configuration...

Current configuration : 3152 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname PE1
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip vrf EHDF-DIC
rd 9:9
route-target export 9:9
route-target export 8:8
route-target import 9:9
route-target import 8:8
mdt default 226.1.1.1

!
ip multicast-routing
ip multicast-routing vrf EHDF-DIC
no mpls traffic-eng auto-bw timers frequency 0
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 1.1.1.1 255.255.255.255
ip pim sparse-mode
no clns route-cache
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
no clns route-cache
!
interface FastEthernet1/0
ip vrf forwarding EHDF-DIC
ip address 10.10.10.254 255.255.255.0
ip pim sparse-dense-mode
duplex auto
speed auto
no clns route-cache
!
interface FastEthernet1/1
ip address 11.11.11.1 255.255.255.0
ip pim sparse-mode
duplex auto
speed auto
mpls ip
no clns route-cache
!
router ospf 2 vrf EHDF-DIC
log-adjacency-changes
redistribute bgp 1 subnets
network 10.10.10.254 0.0.0.0 area 0
!
router ospf 1
router-id 11.11.11.1
log-adjacency-changes
network 1.1.1.1 0.0.0.0 area 0
network 11.11.11.1 0.0.0.0 area 0
!
router bgp 1
bgp router-id 1.1.1.1
bgp log-neighbor-changes
neighbor 4.4.4.4 remote-as 1
neighbor 4.4.4.4 update-source Loopback0
!
address-family ipv4
no neighbor 4.4.4.4 activate
no auto-summary
no synchronization
bgp redistribute-internal
bgp scan-time 5
exit-address-family
!
address-family vpnv4
neighbor 4.4.4.4 activate
neighbor 4.4.4.4 send-community extended
exit-address-family
!
address-family ipv4 vrf EHDF-DIC
redistribute ospf 2 vrf EHDF-DIC match internal external 1 external 2
no auto-summary
no synchronization
exit-address-family
!
ip classless
!
no ip http server
!
ip pim autorp listener
ip pim send-rp-announce Loopback0 scope 255
ip pim send-rp-discovery Loopback0 scope 255
ip msdp peer 4.4.4.4 connect-source Loopback0 remote-as 1
ip msdp cache-sa-state
!
!
!
!
!
end

PE1#

------------------------


P1#r
Building configuration...

Current configuration : 2108 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname P1
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip multicast-routing
no mpls traffic-eng auto-bw timers frequency 0
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 100.100.100.100 255.255.255.255
ip pim sparse-mode
no clns route-cache
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
no clns route-cache
!
interface FastEthernet1/0
ip address 11.11.11.100 255.255.255.0
ip pim sparse-mode
duplex auto
speed auto
mpls ip
no clns route-cache
!
interface FastEthernet1/1
ip address 12.12.12.100 255.255.255.0
ip pim sparse-mode
duplex auto
speed auto
mpls ip
no clns route-cache
!
router ospf 1
router-id 100.100.100.100
log-adjacency-changes
network 11.11.11.100 0.0.0.0 area 0
network 12.12.12.100 0.0.0.0 area 0
network 100.100.100.100 0.0.0.0 area 0
!
ip classless
!
no ip http server
!
ip pim autorp listener
!
!
!
!
!
!

!
end

P1#

-------------------------------

CSC-CE1#
CSC-CE1#r
Building configuration...

Current configuration : 3518 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname CSC-CE1
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip multicast-routing
no mpls traffic-eng auto-bw timers frequency 0
mpls label range 400 499
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 2.2.2.2 255.255.255.255
ip pim sparse-mode
no clns route-cache
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
no clns route-cache
!
interface FastEthernet1/0
ip address 12.12.12.2 255.255.255.0
ip pim sparse-mode
duplex auto
speed auto
mpls ip
no clns route-cache
!
interface FastEthernet1/1
no ip address
shutdown
duplex half
speed 10
no clns route-cache
!
interface Serial2/0
ip address 200.1.1.1 255.255.255.0
ip pim sparse-mode
mpls bgp forwarding
no fair-queue
serial restart-delay 0
no clns route-cache
!
!
router ospf 1
log-adjacency-changes
redistribute bgp 1 subnets
passive-interface Serial2/0
network 2.2.2.2 0.0.0.0 area 0
network 12.12.12.2 0.0.0.0 area 0
network 200.1.1.1 0.0.0.0 area 0
!
router bgp 1
bgp log-neighbor-changes
neighbor 200.1.1.200 remote-as 2
!
address-family ipv4
redistribute ospf 1 metric 888
neighbor 200.1.1.200 activate
neighbor 200.1.1.200 next-hop-self
neighbor 200.1.1.200 allowas-in
neighbor 200.1.1.200 prefix-list PFL_2.2_1.1 out
neighbor 200.1.1.200 send-label
no auto-summary
no synchronization
bgp redistribute-internal
bgp scan-time 5
exit-address-family
!
ip classless
!
no ip http server
!
ip pim autorp listener
!
!
ip prefix-list PFL_2.2_1.1 seq 5 permit 1.1.1.1/32
!
!
access-list 1 permit any
!
route-map RM_ALLOW_BGP permit 10
match ip address 1
!
route-map RM_ALLOW_BGP permit 20
!
!
!
end

CSC-CE1#

-------------------------------------


CSC-PE1#
CSC-PE1#r
Building configuration...

Current configuration : 3502 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname CSC-PE1
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip vrf DU
rd 1:1
route-target export 1:1
route-target import 1:1
mdt default 239.1.1.2

!
ip multicast-routing
ip multicast-routing vrf DU
no mpls traffic-eng auto-bw timers frequency 0
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 20.1.1.200 255.255.255.255
ip pim sparse-mode
no clns route-cache
!
interface FastEthernet0/0
no ip address
duplex half
no clns route-cache
!
interface FastEthernet1/0
no ip address
shutdown
duplex half
speed auto
no clns route-cache
!
interface FastEthernet1/1
no ip address
shutdown
duplex half
speed auto
mpls ip
no clns route-cache
!
interface Serial2/0
ip vrf forwarding DU
ip address 200.1.1.200 255.255.255.0
ip pim sparse-mode
mpls bgp forwarding
serial restart-delay 0
no clns route-cache
!
interface Serial2/1
ip address 21.1.1.200 255.255.255.0
ip pim sparse-mode
mpls ip
serial restart-delay 0
no clns route-cache
!
!
router ospf 1
log-adjacency-changes
network 20.1.1.0 0.0.0.255 area 0
network 21.1.1.0 0.0.0.255 area 0
network 200.1.1.0 0.0.0.255 area 0
!
router bgp 2
no synchronization
bgp router-id 20.1.1.200
bgp log-neighbor-changes
bgp scan-time 5
neighbor 20.1.1.201 remote-as 2
neighbor 20.1.1.201 update-source Loopback0
no auto-summary
!
address-family vpnv4
neighbor 20.1.1.201 activate
neighbor 20.1.1.201 send-community extended
exit-address-family
!
address-family ipv4 vrf DU
neighbor 200.1.1.1 remote-as 1
neighbor 200.1.1.1 activate
neighbor 200.1.1.1 as-override
neighbor 200.1.1.1 send-label
no auto-summary
no synchronization
exit-address-family
!
ip classless
!
no ip http server
!
ip pim ssm range ACL_PIM_SSM
!
!
ip access-list standard ACL_PIM_SSM
permit 239.0.0.0 0.255.255.255
!
!
!
!
end

CSC-PE1#

------------------------------------


CSC-P#
CSC-P#
CSC-P#
CSC-P#r
Building configuration...

Current configuration : 2727 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname CSC-P
!
boot-start-marker
boot-end-marker
!
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip multicast-routing
no mpls traffic-eng auto-bw timers frequency 0
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 20.1.1.1 255.255.255.255
ip pim sparse-mode
no clns route-cache
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
no clns route-cache
!
interface FastEthernet1/0
no ip address
shutdown
duplex half
speed auto
no clns route-cache
!
interface FastEthernet1/1
no ip address
shutdown
duplex half
speed auto
no clns route-cache
!
interface Serial2/0
ip address 21.1.1.1 255.255.255.0
ip pim sparse-mode
mpls ip
serial restart-delay 0
no clns route-cache
!
interface Serial2/1
ip address 22.1.1.1 255.255.255.0
ip pim sparse-mode
mpls ip
serial restart-delay 0
no clns route-cache
!

router ospf 1
log-adjacency-changes
network 20.1.1.0 0.0.0.255 area 0
network 21.1.1.0 0.0.0.255 area 0
network 22.1.1.0 0.0.0.255 area 0
!
ip classless
!
no ip http server
!
ip pim ssm range ACL_PIM_SSM
!
!
ip access-list standard ACL_PIM_SSM
permit 239.0.0.0 0.255.255.255
!
!

!
!
end

CSC-P#

----------------------


CSC-PE2#
CSC-PE2#r
Building configuration...

Current configuration : 3462 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname CSC-PE2
!
boot-start-marker
boot-end-marker
!
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip vrf DU
rd 1:1
route-target export 1:1
route-target import 1:1
mdt default 239.1.1.2

!
ip multicast-routing
ip multicast-routing vrf DU
no mpls traffic-eng auto-bw timers frequency 0
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 20.1.1.201 255.255.255.255
ip pim sparse-mode
no clns route-cache
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
no clns route-cache
!
interface FastEthernet1/0
no ip address
shutdown
duplex half
speed auto
no clns route-cache
!
interface FastEthernet1/1
no ip address
shutdown
duplex half
speed auto
no clns route-cache
!
interface Serial2/0
ip address 22.1.1.201 255.255.255.0
ip pim sparse-mode
mpls ip
serial restart-delay 0
no clns route-cache
!
interface Serial2/1
ip vrf forwarding DU
ip address 201.1.1.201 255.255.255.0
ip pim sparse-mode
mpls bgp forwarding
serial restart-delay 0
no clns route-cache
!
!
router ospf 1
log-adjacency-changes
network 20.1.1.0 0.0.0.255 area 0
network 22.1.1.0 0.0.0.255 area 0
network 201.1.1.0 0.0.0.255 area 0
!
router bgp 2
no synchronization
bgp router-id 20.1.1.201
bgp log-neighbor-changes
bgp scan-time 5
neighbor 20.1.1.200 remote-as 2
neighbor 20.1.1.200 update-source Loopback0
no auto-summary
!
address-family vpnv4
neighbor 20.1.1.200 activate
neighbor 20.1.1.200 next-hop-self
neighbor 20.1.1.200 send-community extended
exit-address-family
!
address-family ipv4 vrf DU
neighbor 201.1.1.1 remote-as 1
neighbor 201.1.1.1 activate
neighbor 201.1.1.1 as-override
neighbor 201.1.1.1 send-label
no auto-summary
no synchronization
exit-address-family
!
ip classless
!
no ip http server
!
ip pim ssm range ACL_PIM_SSM
!
!
ip access-list standard ACL_PIM_SSM
permit 239.0.0.0 0.255.255.255
!
!
!
!
control-plane
!
!

end

CSC-PE2#

---------------------------


CSC-CE2#r
Building configuration...

Current configuration : 3293 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname CSC-CE2
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip multicast-routing
no mpls traffic-eng auto-bw timers frequency 0
mpls label range 500 599
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 3.3.3.3 255.255.255.255
ip pim sparse-mode
ip router isis
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
no clns route-cache
!
interface FastEthernet1/0
no ip address
shutdown
duplex half
speed 10
no clns route-cache
!
interface FastEthernet1/1
ip address 32.32.32.3 255.255.255.0
ip pim sparse-mode
ip router isis
duplex auto
speed auto
mpls ip
!
interface Serial2/0
ip address 201.1.1.1 255.255.255.0
ip pim sparse-mode
mpls bgp forwarding
no fair-queue
serial restart-delay 0
no clns route-cache
!

!
router isis
net 49.0001.3333.3333.3333.00
is-type level-2-only
redistribute bgp 1
!
router bgp 1
bgp log-neighbor-changes
neighbor 201.1.1.201 remote-as 2
!
address-family ipv4
redistribute isis level-2 metric 777
neighbor 201.1.1.201 activate
neighbor 201.1.1.201 next-hop-self
neighbor 201.1.1.201 allowas-in
neighbor 201.1.1.201 send-label
no auto-summary
no synchronization
bgp scan-time 5
exit-address-family
!
ip classless
!
no ip http server
!
ip pim autorp listener
!
!
ip prefix-list PFL_3.3_4.4 seq 10 permit 4.4.4.4/32
!
!
!
route-map RM_ALLOW_BGP permit 10
match ip address prefix-list PFL_3.3_4.4
!
!
!

!
!
end

CSC-CE2#

-----------------


P2#
P2#
P2#r
Building configuration...

Current configuration : 2009 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname P2
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip multicast-routing
no mpls traffic-eng auto-bw timers frequency 0
mpls label range 600 699
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 200.200.200.200 255.255.255.255
ip pim sparse-mode
ip router isis
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
no clns route-cache
!
interface FastEthernet1/0
ip address 32.32.32.200 255.255.255.0
ip pim sparse-mode
ip router isis
duplex auto
speed auto
mpls ip
!
interface FastEthernet1/1
ip address 24.24.24.200 255.255.255.0
ip pim sparse-mode
ip router isis
duplex auto
speed auto
mpls ip
!
router isis
net 49.0001.2222.2222.2222.00
is-type level-2-only
!
ip classless
!
no ip http server
!
ip pim autorp listener
!
!
!
!

!
!
end

P2#

--------------------


PE2#
PE2#
PE2#r
Building configuration...

Current configuration : 2913 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname PE2
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
ip subnet-zero
ip cef
!
!
no ip domain-lookup
!
ip vrf EHDF-IMPZ
rd 8:8
route-target export 8:8
route-target export 9:9
route-target import 8:8
route-target import 9:9
mdt default 226.1.1.1

!
ip multicast-routing
ip multicast-routing vrf EHDF-IMPZ
no mpls traffic-eng auto-bw timers frequency 0
mpls label range 700 799
call rsvp-sync
!
!
!
!
!
!
!
!
interface Loopback0
ip address 4.4.4.4 255.255.255.255
ip pim sparse-mode
ip router isis
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
no clns route-cache
!
interface FastEthernet1/0
ip address 24.24.24.4 255.255.255.0
ip pim sparse-mode
ip router isis
duplex auto
speed auto
mpls ip
!
interface FastEthernet1/1
ip vrf forwarding EHDF-IMPZ
ip address 20.20.20.254 255.255.255.0
ip pim sparse-dense-mode
duplex auto
speed auto
no clns route-cache
!
router isis
net 49.0001.4444.4444.4444.00
is-type level-2-only
!
router bgp 1
bgp router-id 4.4.4.4
bgp log-neighbor-changes
neighbor 1.1.1.1 remote-as 1
neighbor 1.1.1.1 update-source Loopback0
!
address-family ipv4
no neighbor 1.1.1.1 activate
no auto-summary
no synchronization
exit-address-family
!
address-family vpnv4
neighbor 1.1.1.1 activate
neighbor 1.1.1.1 send-community extended
exit-address-family
!
address-family ipv4 vrf EHDF-IMPZ
neighbor 20.20.20.2 remote-as 65002
neighbor 20.20.20.2 activate
no auto-summary
no synchronization
exit-address-family
!
ip classless
!
no ip http server
!
ip pim autorp listener
ip pim send-rp-announce Loopback0 scope 255
ip pim send-rp-discovery Loopback0 scope 255
ip msdp peer 1.1.1.1 connect-source Loopback0 remote-as 1
ip msdp cache-sa-state
!
!
!
!

!
!

end

PE2#

---------------------------


CE2#
CE2#r
Building configuration...

Current configuration : 1655 bytes
!
version 12.3
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname CE2
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
no aaa new-model
ip subnet-zero
!
!
ip cef
no ip domain lookup
!
ip multicast-routing
!
!
!
!
interface Loopback0
ip address 10.152.1.1 255.255.255.0
ip pim sparse-dense-mode
ip igmp join-group 225.1.1.1
!
interface FastEthernet1/0
ip address 20.20.20.2 255.255.255.0
ip pim sparse-dense-mode
ip igmp join-group 225.1.1.2
duplex auto
speed auto
!
router bgp 65002
no synchronization
bgp log-neighbor-changes
bgp scan-time 5
redistribute connected
neighbor 20.20.20.254 remote-as 1
no auto-summary
!
ip http server
ip classless
!
end

CE2#

1 comment:

  1. Check out CSC on both IOS as well as IOS-XR

    http://blog.codergenie.com/blog/post/2014/02/21/MPLS-VPN-CSC-Fundamentals.aspx

    ReplyDelete