BRKCRT-2601 - VRF, MPLS and MPBGP Fundamentals (2017 Las Vegas) - 90 Mins

VRF, MPLS and MP-
BGP Fundamentals
BRKCRT-2601
Jason Gooley, CCIEx2 (RS, SP) #38759

Twitter: @Jason_Gooley
LinkedIn: http://www.linkedin.com/in/jgooley
Agenda
Introduction to Virtualization
VRF-Lite
MPLS & BGP Free Core
Multiprotocol BGP (MP-BGP)
Conclusion
Q&A
Cisco Spark
Questions?
Use Cisco Spark to chat with the
speaker after the session
How
1. Find this session in the Cisco Live Mobile App
2. Click Join the Discussion
3. Install Spark or go directly to the space
4. Enter messages/questions in the space
Cisco Spark spaces will be cs.co/ciscolivebot#BRKCRT-2601

available until July 3, 2017. E.g: session ID = BRKCRT-2601
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
3 networks walk into a
BRKCRT-2601 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
What is a VRF?
Enterprise Network Virtualization
Key Building Blocks
Device Partitioning Virtualized Interconnect
Si
VRF
VRF
Global
Virtualizing the Routing Extending and Maintaining the

and Forwarding of the Device Virtualized Devices/Pools over Any Media
Device Partioning
Layer 2 vs. Layer 3 Virtualization
VRF VRF
VRF
Global
VLANVirtual LAN VRFVirtual Routing and Forwarding
Virtualize at Layer 2 forwarding Virtualize at Layer 3 forwarding

Associates to one or more L2 interfaces on switch Associates to one or more Layer 3 interfaces on
router/switch
Has its own MAC forwarding
table and spanning-tree instance per VLAN Each VRF has its own
Interconnect options? Forwarding table (CEF)
VLANs are extended via a physical cable or virtual Routing process (RIP, EIGRP, OSPF, BGP)
802.1q trunk
Interconnect options (VRF-Lite)?
802.1q, GRE, sub-interfaces, physical cables,
signaling
Path Isolation
Functional Components
Per VRF:
Device virtualization Virtual Routing Table
Virtual Forwarding Table
Control plane virtualization
Data plane virtualization

VRF
Services virtualization
VRF
Global
Data path virtualization
Hop-by-Hop - VRF-Lite End-to-End
Multi-Hop - VRF-Lite GRE
MPLS-VPN 802.1q
MPLS VPN over IP IP/MPLS
MPLS VPN over DMVPN
MPLS VPN o GRE/mGRE
VRF-Lite
What is VRF-Lite? Per VRF:
Functional Components Virtual Routing Table
Virtual Forwarding Table
WAN/Campus
VRF VRF
VRF VRF
VRF VRF
802.1q, GRE, DLCI
A VRF supports its own Routing Information Base (RIB) and Forwarding Information Base (FIB)
Leverages Virtual encapsulation for separation:
Ethernet/802.1Q, GRE, Frame Relay
Routing protocols are VRF aware
RIP/v2, EIGRP, OSPF, BGP, static (per VRF)
Layer 3 interfaces can only belong to a single VRF
VRF-Lite
Things to Remember
VLAN 10
VLAN 20
End-to-End segmentation is done on a per VRF
and per hop basis VLAN 11 VLAN 12
VLAN 21 VLAN 22
MP-BGP or control plane signaling is not

required IGPs
VLAN 14
VLAN 13
VLAN 24
VLAN 23
Labels are not required (i.e. MPLS)
VLAN 16
VLAN 15 VLAN 26
VLAN 25
Scaling should be limited to a small number of
VRFs
VRF-Lite Per VRF:
Virtual Routing Table
Sub-interface Example Virtual Forwarding Table
Locally Significant
Lo1 R1 R2 Lo1
.1 .2
VLAN 12
VRF-R VRF-R
1.1.1.1 Lo2 VLAN 112 Lo2 2.2.2.2
VRF-E VRF-E
VLAN 212
VRF-O VRF-O
Lo3 .1 .2 Lo3
F0/0.X IGPs:
VLAN X
VRF-R = RIP
VLAN 114
VLAN 214
VLAN 223
VLAN 123
VLAN 14
VLAN 23
10.1.X.0/24
VRF-E = EIGRP
Sub-interface/VLAN/VRF Mapping
VRF-O = OSPF
.4 .3
Lo1 Lo1
VLAN 34
VRF-R VRF-R
4.4.4.4 Lo2 VRF-E
VLAN 134
VRF-E Lo2 3.3.3.3
VLAN 234
VRF-O VRF-O
.4 .3
Lo3 R4 R3 Lo3
VRF-Lite Sub-interface Configuration
Command Line Interface (CLI) Review
ip vrf VRF-R
rd 1:1
interface FastEthernet0/0.12
ip vrf forwarding VRF-R
interface Loopback1
ip vrf forwarding VRF-R
ip vrf VRF-E
rd 2:2
ip vrf forwarding VRF-E
VRF
interface Loopback2
ip vrf forwarding VRF-E VRF
ip vrf VRF-O VRF
rd 3:3
ip vrf forwarding VRF-O
interface Loopback3
ip vrf forwarding VRF-O
VRF-Lite Sub-interface Configuration
Command Line Interface (CLI) Review VRF Definition Example
vrf definition VRF-R
rd 1:1
address-family ipv4
vrf forwarding VRF-R
interface Loopback1
vrf forwarding VRF-R
vrf definition VRF-O

rd 3:3 VRF
address-family ipv4
VRF
VRF
vrf forwarding VRF-O
interface Loopback3
vrf forwarding VRF-O
Multiprotocol VRF Conversion Configuration
vrf upgrade-cli multi-af-mode {common-policies
| non-common-policies} [vrf vrf-name]
PE1(config)#vrf upgrade-cli multi-af-mode common-policies

You are about to upgrade to the multi-AF VRF syntax commands.
You will lose any IPv6 addresses configured on interfaces
belonging to upgraded VRFs.
Are you sure ? [yes]:

Number of VRFs upgraded: 1
interface Ethernet0/1 VRF

vrf forwarding VRF VRF
ip address 10.1.78.7 255.255.255.0
VRF
PE1(config)#do sh run | se vrf
vrf definition VRF
rd 7:1
route-target export 7:1
route-target import 5:1
VRF Aware RIP Configuration
Leverage what you already know!
router rip
version 2
network 1.0.0.0
network 10.0.0.0
no auto-summary
router rip
!
address-family ipv4 vrf VRF-R
network 1.0.0.0
network 10.0.0.0
no auto-summary
version 2
exit-address-family
VRF
RIP leverages address-family ipv4 vrf ______
VRF Aware EIGRP Configuration
router eigrp 10
network 1.1.1.1 0.0.0.0
network 10.1.112.0 0.0.0.255
no auto-summary
router eigrp 10 (AS can be the same or different as one of the VRFs!!!)
auto-summary
!
address-family ipv4 vrf VRF-E
network 1.1.1.1 0.0.0.0
network 10.1.112.0 0.0.0.255
no auto-summary
autonomous-system 10
exit-address-family
VRF
EIGRP leverages address-family ipv4 vrf ______
Set unique autonomous system number per VRF
VRF Aware OSPF Configuration
router ospf 1
log-adjacency-changes
network 1.1.1.1 0.0.0.0 area 1
network 10.1.212.0 0.0.0.255 area 0
router ospf 2 vrf VRF-O

log-adjacency-changes
network 1.1.1.1 0.0.0.0 area 1
network 10.1.212.0 0.0.0.255 area 0
VRF
OSPF leverages vrf ______ after the unique
process number
Live Exploration
No Sub-interface Support? No Problem!
GRE Example
VRF-Lite can also leverage GRE tunnels
Lo11 R1 R2 as a segmentation technology Lo1
.1 .2
Tunnel 12
Each VRF uses a unique GRE tunnel
VRF-R VRF-R
1.1.1.1 Lo12 Tunnel 112
GRE tunnel interface is VRF aware

VRF-E VRF-E
Tunnel 212
VRF-O VRF-O
Lo13 .1 .2 Lo13
Tunnel X
Tunnel 114 10.1.X.0/24
Tunnel 214
Tunnel 223
Tunnel 123
Tunnel 14
Tunnel 23
Tunnel/VRF Mapping
.4 .3
Lo11 Lo11
Tunnel 34
VRF-R VRF-R
4.4.4.4 Lo12 VRF-E
Tunnel 134
VRF-E Lo12 3.3.3.3
Tunnel 234
VRF-O VRF-O
.4 .3
Lo13 R4 R3 Lo13
Configuration Note: Each GRE Tunnel Could Require Unique Source/Destination IP (Platform Dependent)
VRF-Lite Tunnel Configuration
ip vrf VRF-S
rd 11:11
interface Loopback101 ip route vrf VRF-S 2.2.2.2 255.255.255.255 10.1.12.2

ip address 11.11.11.11 255.255.255.255 (Global Routing Table)
interface Tunnel12
ip vrf forwarding VRF-S
ip address 10.1.12.1 255.255.255.0
tunnel source Loopback101
tunnel destination 22.22.22.22
ip vrf VRF-S
rd 22:22
VRF
interface Loopback102
ip address 22.22.22.22 255.255.255.255 (Global Routing Table)
interface Tunnel12
ip vrf forwarding VRF-S ip route vrf VRF-S 1.1.1.1 255.255.255.255 10.1.12.1
ip address 10.1.12.2 255.255.255.0
tunnel source Loopback102
tunnel destination 11.11.11.11
Layer 2 Serial Link? No Problem?
Back-to-Back Frame Relay Example
VRF-Lite can also leverage Frame Relay
Lo111 R1 R2 Sub-interfaces
Lo1
as a segmentation
.1 .2 technology
Serial1/0.12
1.1.1.1 Lo112 VRF-R

VRF-E
Serial1/0.112
VRF-R
VRF-E
Each VRF uses a unique Frame-Relay
Serial1/0.212
VRF-O VRF-O
sub-interface and DLCI
Lo113 .1 .2 Lo3
Serial1/0.X
Serial1/1.114 Serial1/1.X Frame Relay sub-interface is VRF aware
Serial1/1.214
Serial1/1.223
Serial1/1.123
Serial1/1.14
Serial1/1.23
10.1.X.0/24
FR VC/VRF Mapping
.4 .3
Lo111 Lo111
Serial1/0.34
VRF-R VRF-R
4.4.4.4 Lo112 VRF-E
Serial1/0.134
VRF-E Lo112 3.3.3.3
Serial1/0.234
VRF-O VRF-O
.4 .3
Lo113 R4 R3 Lo113
Configuration Note: Leveraging Back-to-Back Frame-Relay Configuration
VRF-Lite Back-to-Back Frame Relay Configuration
ip vrf VRF-B
rd 111:111 router bgp 1
address-family ipv4 vrf VRF-B
interface Serial1/0 neighbor 10.1.12.2 remote-as 2
encapsulation frame-relay neighbor 10.1.12.2 activate
no keepalive no synchronization
network 1.1.1.1 mask 255.255.255.255
Interface Serial1/0.12 point-to-point exit-address-family
ip vrf forwarding VRF-B
ip address 10.1.12.1 255.255.255.0
frame-relay interface-dlci 201
ip vrf VRF-B
rd 222:222
interface Serial1/0
encapsulation frame-relay VRF
no keepalive
router bgp 2
Interface Serial1/0.12 point-to-point address-family ipv4 vrf VRF-B
ip vrf forwarding VRF-B neighbor 10.1.12.1 remote-as 1
ip address 10.1.12.2 255.255.255.0 neighbor 10.1.12.1 activate
frame-relay interface-dlci 201 no synchronization
network 2.2.2.2 mask 255.255.255.255
exit-address-family
Live Exploration
VRF-Lite
Summary
Create a VRF in router for RIB/FIB and interface

segmentation
No MPLS, LDP, or MP-BGP required
Optimal solution when VRF count is small (~ <8)
Supports multicast and QoS solutions
Leverage current routing protocol knowledge and
apply it to PE-CE VRF Routing
MPLS & BGP Free Core
What Is MPLS?
Most
Painful
Learn
Study
What Is MPLS?
Multi-Protocol: The ability to carry any payload
Multi
Have: IPv4, IPv6, Ethernet, ATM, FR
Protocol
Uses Labels to tell a node what to do with a
Label packet; separates forwarding (hop by hop
behavior) from routing (control plane)
Routing based on IPv4/IPv6 lookup.
Switching Everything else is label switching.
MPLS
Component Overview
CE routers owned by customer Customer Customer

CE SP Demarcation
PE routers owned by SP Site 1
P routers owned by SP Provider CE
Site 3
Customer peers to PE via IP Site 2 PE PE
P
Exchanges routing with SP via routing CE
protocol (or static route)* IP Routing Peer (BGP, Static, IGP)
SP advertises CE routes to other CEs * Labels are not exchanged with the SP
IP Routing
IGP vs. BGP
Exchange of IP routes for Forwarding Table Forwarding Table Forwarding Table
Loopback Reachability In Address Out Out In Address Out Out In Address Out Out
Label Prefix Iface Label Label Prefix Iface Label Label Prefix Iface Label
OSPF, IS-IS, EIGRP, etc. 10.2.1.1 F0/0 10.2.1.1 NA 10.2.1.1 F0/0

iBGP neighbor peering over IGP
transport
F0/0 10.2.1.1
Route towards BGP Next-Hop F0/0 PE2

F0/0
PE1 BGP Update:
P You Can Reach 10.2.1.1 Thru Me
You Can Reach 2.2.2.2 Through Me By routing towards 2.2.2.2
Routing Updates You Can Reach 2.2.2.2 Thru Me

(OSPF)
MPLS Label Switched Path (LSP) Setup with LDP
Assignment of Remote Labels
Local label mappings are sent to Forwarding Table Forwarding Table Forwarding Table
connected nodes In Address Out Out
Label Prefix IfaceLabel
In Address Out Out In Address Out Out
Label Prefix IfaceLabel Label Prefix IfaceLabel
- 2.2.2.2 F0/0 20 20 2.2.2.2 F0/0 30 30 10.2.1.1 F0/0 -
Receiving nodes update forwarding -
table
Out label
F0/0 10.2.1.1
F0/0 VRF
LDP label advertisement happens in F0/0 PE2
parallel (downstream unsolicited) PE1
P
Use Label 20 for 2.2.2.2

Use Label 30 for 2.2.2.2
Label Distribution
BGP Update:
Protocol (LDP) You Can Reach 10.2.1.1 Thru Me
(Downstream By routing towards 2.2.2.2
Allocation)
MPLS Traffic Forwarding with LDP
Hop-by-hop Traffic Forwarding Using Labels
Ingress PE node adds label to Forwarding Table Forwarding Table Forwarding Table
In Address Out Out In Address Out Out In Address Out Out
packet (push) Label Prefix IfaceLabel Label Prefix IfaceLabel Label Prefix IfaceLabel
- 2.2.2.2 F0/0 20 20 2.2.2.2 F0/0 30 30 10.2.1.1 F0/0 -
Via MPLS forwarding table
- -

Downstream P node uses label
for forwarding decision (swap) F0/0 10.2.1.1
Outgoing interface F0/0
PE2
VRF
F0/0
Out label PE1
P
Egress PE removes label and 10.2.1.1 Data 20 2.2.2.2 Data 30 2.2.2.2 Data 10.2.1.1 Data
forwards original packet (pop)

Forwarding based on Label towards BGP
Next-Hop (Loopback of far end router) BGP Update:
You Can Reach 10.2.1.1 Thru Me
By routing towards 2.2.2.2
BGP Free Core
Component Overview
Site 1
VPNv4 iBGP Relationship Site 2
10.1.1.0/24 10.2.1.0/24
CE1 CE2
P1 P2
PE1 PE2
P3 P4
OSPF Area 0
Redistribute Redistribute
IGP/Static Into BGP IGP/Static Into BGP
1. Always route towards BGP Next-Hop

2. Routes will be valid on PE Routers
3. Will label switch towards BGP Next-Hop of PE with MPLS enabled
End-to-End BGP and redistribution of routes into OSPF core not necessary!
Bringing It All Together
10.1.1.0/24 10.2.1.0/24
Site 1 Next-Hop=CE1
VPNv4 iBGP Relationship
Next-Hop=CE2 Site 2
10.1.1.0/24 10.2.1.0/24
CE1 CE2
VRF VRF
10.2.1.0/24 P1 P2 10.1.1.0/24
Next-Hop=PE1 PE1 PE2 Next-Hop=PE2
P3 P4
OSPF Area 0
Redistribute Redistribute
IGP/Static Into BGP IGP/Static Into BGP
1. PE receives an IPv4 update on a VRF interface (eBGP/OSPF/RIP/EIGRP)

2. PE translates it into VPNv4 address (96-bit address) (64-bit RD + 32 bit IPv4 address)
Assigns an RT per VRF configuration
Rewrites next-hop attribute to itself
Assigns a label based on VRF and/or interface
3. PE sends MP-iBGP update to other PE routers

Why an RD and VPNv4 Address?
Use Case VPNv4 iBGP Relationship
Cust A Site 1 111:1:10.1.1.0/24

10.2.1.0/24
Cust A Site 2
10.1.1.0/24
10.1.1.0/24 111:1:10.2.1.0/24 10.2.1.0/24
CE1 CE2
VRF A P1 P2 VRF A
PE1 PE2
Cust B Site 1 VRF B VRF B Cust B Site 2
10.1.1.0/24 P3 P4 10.2.1.0/24
CE1 OSPF Area 0 222:1:10.1.1.0/24 CE2
10.1.1.0/24 10.2.1.0/24
222:1:10.2.1.0/24
1. PE routers service multiple customers

2. Once PE redistributes customer routes into MP-BGP, they must be unique
3. RD is prepended to each prefix to make routes unique
VPNv4 prefixes are the combination of a 64-bit RD and a 32-bit IPv4 prefix. VPNv4 prefixes are 96-bits in length
Why are Route Targets Important?
Use Case VPNv4 iBGP Relationship
VRF A
VRF B
Cust A Site 1 Import 222:1 Cust A Site 2
Import 333:1 Import 111:1
10.1.1.0/24 Export 222:1 10.1.2.0/24
CE1 Import 444:1 CE1
Export 111:1
VRF A P1 P2 VRF B
PE1 PE2
Cust A Site 3 VRF C VRF D Cust A Site 4
10.1.3.0/24 VRF C P3 P4 10.1.4.0/24
CE1 VRF D
Import 111:1 OSPF Area 0 CE1
Import 111:1
Export 333:1
Export 444:1
1. Route Targets dictate which VRF will receive what routes

2. Can be used to allow specific sites access to centralized services
3. Cust A Site 2, Site 3 and Site 4 will not be able to exchange routes with each other
Route Targets are a 64-bit value and are carried in BGP as an extended community
MPLS VPN and MP-BGP
CE
Customer 1 VRF VRF-1 P P VRF VRF-1
PE PE CE
EIGRP, OSPF, RIPv2, BGP, Static
VPN Backbone IGP
CE P CE
Customer 2 P
VRF VRF-2
VRF VRF-2
VRF Configuration (PE)
! PE Router Multiple VRFs MP-iBGP VPNv4
ip vrf VRF-1 MP-iBGP Configuration (PE) Label Exchange
! PE router
rd 65100:10
router bgp 65102
route-target import 65102:10
no bgp default ipv4-unicast
route-target export 65102:10
ip vrf VRF-2 neighbor 2.2.2.2 remote-as 65102
rd 65100:20 !
route-target import 65102:20 address-family vpnv4
route-target export 65102:20 neighbor 2.2.2.2 activate
! neighbor 2.2.2.2 send-community extended
Interface FastEthernet0/1.10 exit-address-family
ip vrf forwarding VRF-1 !
Interface FastEthernet0/1.20 address-family ipv4 vrf VRF-1
ip vrf forwarding VRF-2 redistribute rip
exit-address-family
Live Exploration
MPLS VPN Technology Summary
MPLS VPN Connection Model
Global Address Space
CE P P
VPN 2 VRF Green PE
PE
EIGRP, OSPF, RIPv2, BGP, Static
VPN Backbone IGP
VPN 1 P P
VRF Blue
CE
MP-iBGP VPNv4 Label Exchange

CE Routers PE Routers P Routers
VRF Associates to one or more MPLS Edge routers P routers are in the core of
interfaces on PE the MPLS cloud
Has its own routing table and MPLS forwarding to P routers
forwarding table (CEF) P routers do not need to run BGP
IGP/BGP IP to CE routers
VRF has its own instance for the Do not have knowledge of VPNs
routing protocol Distributes VPN information through MP-
(static, RIP, BGP, EIGRP, OSPF) BGP to other PE routers with VPNv4 Switch packets based on labels
addresses, extended community, VPN (swap/pop) not IP
labels
Push labels onto incoming IP packets

Closing Thoughts
Break MPLS into smaller, more manageable chunks to accelerate learning
Leverage current routing protocol knowledge learning PE-CE VRF routing
MP-BGP and traditional IPv4 BGP configuration is very similar
If routes are not present on CE routers check route-target import/export,
communities and redistribution between IPv4 VRF address-families under IGP
and BGP
If routes are present but you are having problems with reachability, check MPLS
configuration
Remember on PE devices you are living in a VRF world (Ping, Traceroute etc.)
HAVE FUN !!!!! Remember, its a journey not a destination!
Order a copy of Programming and Automating Cisco Networks here:
http://www.amazon.com/Programming-Automating-Cisco-Networks-
programmability/dp/1587144654/ref=sr_1_1?ie=UTF8&qid=1450796338&s
r=8-1&keywords=Jason+Gooley
Complete Your Online
Session Evaluation
Give us your feedback to be
entered into a Daily Survey
Drawing. A daily winner will
receive a $750 gift card.
Complete your session surveys
through the Cisco Live mobile
app or on www.CiscoLive.com/us.
Dont forget: Cisco Live sessions will be

available for viewing on demand after the
event at www.CiscoLive.com/Online.
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Continue Your Education
Demos in the Cisco campus
Walk-in Self-Paced Labs
Lunch & Learn
Meet the Engineer 1:1 meetings
Related sessions
What Is MPLS?
Master
Share Practice
Learn
Thank you
Live Exploration Diagrams
VRF-Lite Per VRF:
Virtual Routing Table
Sub-interface Example Virtual Forwarding Table
Locally Significant
Lo1 R1 R2 Lo1
.1 .2
VLAN 12
VRF-R VRF-R
1.1.1.1 Lo2 VLAN 112 Lo2 2.2.2.2
VRF-E VRF-E
VLAN 212
VRF-O VRF-O
Lo3 .1 .2 Lo3
E0/0.X IGPs:
VLAN X
VRF-R = RIP
VLAN 114
VLAN 214
VLAN 223
VLAN 123
VLAN 14
VLAN 23
10.1.X.0/24
VRF-E = EIGRP
Sub-interface/VLAN/VRF Mapping
VRF-O = OSPF
.4 .3
Lo1 Lo1
VLAN 34
VRF-R VRF-R
4.4.4.4 Lo2 VRF-E
VLAN 134
VRF-E Lo2 3.3.3.3
VLAN 234
VRF-O VRF-O
.4 .3
Lo3 R4 R3 Lo3
No Sub-interface Support/No Problem
GRE Example
VRF Lite can also leverage GRE tunnels
Lo11 R1 R2 as a segmentation technology Lo1
.1 .2
Tunnel 12
Each VRF uses a unique GRE tunnel
VRF-R VRF-R
1.1.1.1 Lo12 Tunnel 112
GRE tunnel interface is VRF aware

VRF-E VRF-E
Tunnel 212
VRF-O VRF-O
Lo13 .1 .2 Lo13
Tunnel X
Tunnel 114 10.1.X.0/24
Tunnel 214
Tunnel 223
Tunnel 123
Tunnel 14
Tunnel 23
Tunnel/VRF Mapping
.4 .3
Lo11 Lo11
Tunnel 34
VRF-R VRF-R
4.4.4.4 Lo12 VRF-E
Tunnel 134
VRF-E Lo12 3.3.3.3
Tunnel 234
VRF-O VRF-O
.4 .3
Lo13 R4 R3 Lo13
Configuration Note: Each GRE Tunnel Could Require Unique Source/Destination IP (Platform Dependent)
Layer 2 Serial Link/No Problem
Back-to-Back Frame Relay Example
VRF Lite can also leverage Frame Relay
Lo111 R1 R2 Sub-interfaces
Lo1
as a segmentation
.1 .2 technology
Serial1/0.12
1.1.1.1 Lo112 VRF-R

VRF-E
Serial1/0.112
VRF-R
VRF-E
Each VRF uses a unique Frame-Relay
Serial1/0.212
VRF-O VRF-O
sub-interface and DLCI
Lo113 .1 .2 Lo3
Serial1/0.X
Serial1/1.114 Serial1/1.X Frame Relay sub-interface is VRF aware
Serial1/1.214
Serial1/1.223
Serial1/1.123
Serial1/1.14
Serial1/1.23
10.1.X.0/24
FR VC/VRF Mapping
.4 .3
Lo111 Lo111
Serial1/0.34
VRF-R VRF-R
4.4.4.4 Lo112 VRF-E
Serial1/0.134
VRF-E Lo112 3.3.3.3
Serial1/0.234
VRF-O VRF-O
.4 .3
Lo113 R4 R3 Lo113
Configuration Note: Leveraging Back-to-Back Frame-Relay Configuration
Bringing It All Together
VRF Instance VRF Instance

Site 1
iBGP Relationship Site 2
E0/1
10.1.1.0/24 10.2.1.0/24
CE1 E0/1 CE2
E0/1 E0/0
E0/2 E0/2 E0/2 E0/1
10.1.1.0/24 P1 P2 10.2.1.0/24
E0/2
Next-Hop=R8 E0/1
PE1 E0/1 E0/1
PE2 Next-Hop=R6
E0/3 E0/0 E0/3
E0/3
P4 P3 E0/3
OSPF Area 0
R8
R&S Related Cisco Education Offerings
Course Description Cisco Certification
CCIE R&S Advanced Workshops (CIERS-1 & Expert level trainings including: instructor led workshops, self CCIE Routing & Switching
CIERS-2) plus assessments, practice labs and CCIE Lab Builder to prepare candidates
Self Assessments, Workbooks & Labs for the CCIE R&S practical exam.
Implementing Cisco IP Routing v2.0 Professional level instructor led trainings to prepare candidates for the CCNP Routing & Switching
Implementing Cisco IP Switched CCNP R&S exams (ROUTE, SWITCH and TSHOOT). Also available in
Networks V2.0 self study eLearning formats with Cisco Learning Labs.
Troubleshooting and Maintaining
Cisco IP Networks v2.0
Interconnecting Cisco Networking Devices: Configure, implement and troubleshoot local and wide-area IPv4 and IPv6 CCNA Routing & Switching
Part 2 (or combined) networks. Also available in self study eLearning format with Cisco Learning
Lab.
Interconnecting Cisco Networking Devices: Installation, configuration, and basic support of a branch network. Also CCENT Routing & Switching
Part 1 available in self study eLearning format with Cisco Learning Lab.
For more details, please visit: http://learningnetwork.cisco.com

Questions? Visit the Learning@Cisco Booth
Network Programmability Cisco Education Offerings
Course Description Cisco Certification
Developing with Cisco Network Programmability Provides Application Developers with comprehensive curriculum to Cisco Network Programmability
(NPDEV) develop infrastructure programming skills; Developer (NPDEV) Specialist
Addresses needs of software engineers who automate network Certification
infrastructure and/or utilize APIs and toolkits to interface with SDN
controllers and individual devices
Designing and Implementing Cisco Network Provides network engineers with comprehensive soup-to-nuts curriculum Cisco Network Programmability
Programmability (NPDESI) to develop and validate automation and programming skills; Design and Implementation
Directly addresses the evolving role of network engineers towards more (NPDESI) Specialist Certification
programmability, automation and orchestration
Programming for Network Engineers (PRNE) Learn the fundamentals of Python programming within the context of Recommended pre-requisite for
performing functions relevant to network engineers. Use Network NPDESI and NPDEV Specialist
Programming to simplify or automate tasks Certifications
Cisco Digital Network Architecture This training provides students with the guiding principles and core None
Implementation Essentials (DNAIE) elements of Ciscos Digital Network Architecture (DNA) architecture and its
solution components including; APIC-EM, NFV, Analytics, Security and
Fabric.
For more details, please visit: http://learningnetwork.cisco.com

Questions? Visit the Learning@Cisco Booth

BRKCRT-2601 - VRF, MPLS and MPBGP Fundamentals (2017 Las Vegas) - 90 Mins

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

BRKCRT-2601 - VRF, MPLS and MPBGP Fundamentals (2017 Las Vegas) - 90 Mins

Uploaded by

Copyright:

Available Formats

VRF, MPLS and MP-

Jason Gooley, CCIEx2 (RS, SP) #38759

Cisco Spark spaces will be cs.co/ciscolivebot#BRKCRT-2601

Device Partitioning Virtualized Interconnect

Virtualizing the Routing Extending and Maintaining the

VLANVirtual LAN VRFVirtual Routing and Forwarding

Virtualize at Layer 2 forwarding Virtualize at Layer 3 forwarding

Data plane virtualization

Multi-Hop - VRF-Lite GRE

MPLS VPN over IP IP/MPLS

MPLS VPN over DMVPN

MPLS VPN o GRE/mGRE

802.1q, GRE, DLCI

MP-BGP or control plane signaling is not

vrf definition VRF-O

PE1(config)#vrf upgrade-cli multi-af-mode common-policies

Are you sure ? [yes]:

interface Ethernet0/1 VRF

Set unique autonomous system number per VRF

router ospf 2 vrf VRF-O

GRE tunnel interface is VRF aware

interface Loopback101 ip route vrf VRF-S 2.2.2.2 255.255.255.255 10.1.12.2

1.1.1.1 Lo112 VRF-R

Configuration Note: Leveraging Back-to-Back Frame-Relay Configuration

Create a VRF in router for RIB/FIB and interface

CE routers owned by customer Customer Customer

Route towards BGP Next-Hop F0/0 PE2

Routing Updates You Can Reach 2.2.2.2 Thru Me

Use Label 20 for 2.2.2.2

forwards original packet (pop)

1. Always route towards BGP Next-Hop

1. PE receives an IPv4 update on a VRF interface (eBGP/OSPF/RIP/EIGRP)

3. PE sends MP-iBGP update to other PE routers

Cust A Site 1 111:1:10.1.1.0/24

1. PE routers service multiple customers

1. Route Targets dictate which VRF will receive what routes

MP-iBGP VPNv4 Label Exchange

Push labels onto incoming IP packets

Dont forget: Cisco Live sessions will be

GRE tunnel interface is VRF aware

1.1.1.1 Lo112 VRF-R

Configuration Note: Leveraging Back-to-Back Frame-Relay Configuration

VRF Instance VRF Instance

For more details, please visit: http://learningnetwork.cisco.com

For more details, please visit: http://learningnetwork.cisco.com

You might also like