Cisco | MPLS - L3VPN - NEW
MPLS (Multi Protocol Label Swithing)
MPLS pada dasarnya terdiri dari 3 jenis router:
- Router P (Provider), yang befungsi sebagai MPLS domain yg terhubung dengan router-router lain dimiliki oleh service provider.
- Router PE (Provider Edge) yg terhubung langsung dengan router customer dan juga sekaligus dengan router serive provider, yg menjembatani antar network berbasis IP dengan network berbasi MPLS serta memberikan pelabelan pada paket IP yg masuk kedalam MPLS domain dan melepas pelablen yg keluar dari dari MPLS domain.
- Router CE (Customer Edge), merupaka router yg terdapat disisi customer, pd routing CE tidak terdapat konfigurasi MPLS, hanya saja konfigurasi routing statik, ato dynamic OSPF/EIGRP. Yang mana didalam LAB topology ini seperti router BCA dan BRI.
Konfigurasi Masing-Masing Router
STEP-1 (Konfigurasi IP address)
hostname BCA1
INTerface loopback 0
ip address 192.168.254.1 255.255.255.255
EX
INTerface GI0/0
no
ip address 10.1.1.1 255.255.255.0
exi
hostname PE1
INTerface loopback 0
ip address 192.168.254.2 255.255.255.255
EX
INTerface GI0/2
no
ip address 10.1.1.2 255.255.255.0
exi
INTerface GI0/0
no
ip address 10.2.2.2 255.255.255.0
exi
hostname P1
INTerface loopback 0
ip address 192.168.254.3 255.255.255.255
EX
INTerface GI0/2
no shut
ip address 10.6.6.1 255.255.255.0
exi
INTerface GI0/0
no shut
ip address 10.2.2.1 255.255.255.0
exi
INTerface GI0/1
no shut
ip address 10.3.3.1 255.255.255.0
exi
hostname P2
INTerface loopback 0
ip address 192.168.254.7 255.255.255.255
EX
INTerface Gi0/1
no shut
ip address 10.6.6.2 255.255.255.0
exi
INTerface Gi0/2
no shut
ip address 10.7.7.1 255.255.255.0
exi
INTerface Gi0/0
no shut
ip address 10.8.8.1 255.255.255.0
exi
hostname P3
INTerface loopback 0
ip address 192.168.254.4 255.255.255.255
EX
INTerface GI0/2
no shut
ip address 10.4.4.2 255.255.255.0
exi
INTerface GI0/0
no shut
ip address 10.3.3.2 255.255.255.0
exi
INTerface GI0/1
no shut
ip address 10.7.7.2 255.255.255.0
exi
hostname PE2
INTerface loopback 0
ip address 192.168.254.5 255.255.255.255
EX
INTerface GI0/0
no shu
ip address 10.4.4.1 255.255.255.0
exi
INTerface GI0/1
no shut
ip address 10.5.5.2 255.255.255.0
exi
hostname PE3
INTerface loopback 0
ip address 192.168.254.8 255.255.255.255
EX
INTerface GI0/0
no shu
ip address 10.8.8.2 255.255.255.0
exi
INTerface GI0/1
no shut
ip address 10.9.9.1 255.255.255.0
exi
TAHAP-2(Konfig OSPF di router PE1, PE2, PE3, P1, P2, P3)
PE1
router ospf 1
router-id 192.168.254.2
network 192.168.254.2 0.0.0.0 area 0
exit
inter gi0/0
ip ospf network point-to-point
ip ospf 1 area 0
exit
PE2
router ospf 1
router-id 192.168.254.5
network 192.168.254.5 0.0.0.0 area 0
net
exit
inter gi0/0
ip ospf network point-to-point
ip ospf 1 area 0
exit
PE3
router ospf 1
router-id 192.168.254.8
network 192.168.254.8 0.0.0.0 area 0
net
exit
inter gi0/0
ip ospf network point-to-point
ip ospf 1 area 0
exit
P1
router ospf 1
router-id 192.168.254.3
network 192.168.254.3 0.0.0.0 area 0
exit
inter gi0/0
ip ospf network point-to-point
ip ospf 1 area 0
exit
inter gi0/1
ip ospf network point-to-point
ip ospf 1 area 0
exit
inter gi0/2
ip ospf network point-to-point
ip ospf 1 area 0
exit
P2
router ospf 1
router-id 192.168.254.7
network 192.168.254.7 0.0.0.0 area 0
net
EXIT
inter gi0/0
ip ospf network point-to-point
ip ospf 1 area 0
exit
inter gi0/1
ip ospf network point-to-point
ip ospf 1 area 0
exit
inter gi0/2
ip ospf network point-to-point
ip ospf 1 area 0
exit
P3
router ospf 1
router-id 192.168.254.4
network 192.168.254.4 0.0.0.0 area 0
net
EXIT
inter gi0/0
ip ospf network point-to-point
ip ospf 1 area 0
exit
inter gi0/1
ip ospf network point-to-point
ip ospf 1 area 0
exit
inter gi0/2
ip ospf network point-to-point
ip ospf 1 area 0
exit
TAHAP-3 (Konfig MPLS LDP di router PE1,PE2,PE3,P1,P2,P3
PE1
mpls label protocol ldp
mpls ldp router-id lo0 force
int gi0/0
mpls ip
exi
P1
mpls label protocol ldp
mpls ldp router-id lo0 force
int ra gi0/0-2
mpls ip
exi
P2
mpls label protocol ldp
mpls ldp router-id lo0 force
int ra gi0/0-2
mpls ip
exi
P3
mpls label protocol ldp
mpls ldp router-id lo0 force
int ra gi0/0-2
mpls ip
exi
PE2
mpls label protocol ldp
mpls ldp router-id lo0 force
int gi0/0
mpls ip
exi
PE3
mpls label protocol ldp
mpls ldp router-id lo0 force
int gi0/0
mpls ip
exi
VERIFIKASI:
#sh mpls ldp neighbor
#sh mpls forwarding-table
# sh mpls ldp discovery
#sh ip cef x.x.x.x/prefix detail #(FIB/ Cek paket lewat)
TAHAP-4 (Konfigurasi BGP router PE1, PE2, PE3)
PE1
router bgp 65123
neighbor iBGP peer-group
nei iBGP remote-as 65123
neighbor iBGP update-source lo0
nei 192.168.254.5 peer-group iBGP
nei 192.168.254.8 peer-group iBGP
address-family vpnv4
neighbor 192.168.254.5 activate
neighbor 192.168.254.8 activate
exit
PE2
router bgp 65123
neighbor iBGP peer-group
nei iBGP remote-as 65123
neighbor iBGP update-source lo0
nei 192.168.254.2 peer-group iBGP
nei 192.168.254.8 peer-group iBGP
address-family vpnv4
neighbor 192.168.254.2 activate
neighbor 192.168.254.8 activate
exit
PE3
router bgp 65123
neighbor iBGP peer-group
nei iBGP remote-as 65123
neighbor iBGP update-source lo0
nei 192.168.254.2 peer-group iBGP
nei 192.168.254.5 peer-group iBGP
address-family vpnv4
neighbor 192.168.254.2 activate
neighbor 192.168.254.5 activate
exi
Verifikasi (iBGP router PE1.PE2 dan PE3)
TAHAP 5: (Konfigurasi VRF interface PE1, PE2 dan PE3)
PE1
ip vrf BCA
rd 10:100
route-target import 10:100
route-target export 10:100
exit
router ospf 100 VRf BCA
router-id 192.168.255.2
exit
int gi0/2
ip vrf forwarding BCA
no sh
ip add 10.1.1.2 255.255.255.0
ip ospf network point-to-point
ip ospf 100 area 0
exit
PE2
ip vrf BCA
rd 10:100
route-target import 10:100
route-target export 10:100
exit
router ospf 100 VRf BCA
router-id 192.168.255.5
exit
int gi0/1
ip vrf forwarding BCA
ip address 10.5.5.2 255.255.255.0
ip ospf network point-to-point
ip ospf 100 area 0
exit
PE3
ip vrf BCA
rd 10:100
route-target import 10:100
route-target export 10:100
exit
router ospf 100 VRf BCA
router-id 192.168.255.8
exit
int gi0/1
ip vrf forwarding BCA
no sh
ip add 10.9.9.2 255.255.255.0
ip ospf network point-to-point
ip ospf 100 area 0
exit
TAHAP 6: Redistribute BGP to OPSF dan OSPF to BGP PE1, PE2 dan PE3
PE1
router ospf 100 vrf BCA
router-id 192.168.255.2
redistribute bgp 65123 subnets
exit
router bgp 65123
address-family ipv4 vrf BCA
redistribute ospf 100
exit
PE2
router ospf 100 vrf BCA
router-id 192.168.255.5
redistribute bgp 65123 subnets
exit
router bgp 65123
address-family ipv4 vrf BCA
redistribute ospf 100
exit
PE3
router ospf 100 vrf BCA
router-id 192.168.255.7
redistribute bgp 65123 subnets
exit
router bgp 65123
address-family ipv4 vrf BCA
redistribute ospf 100
exit
VERIFIKASI: (PE1, PE2 dan PE3)
sh ip route vrf BCA
TAHAP- 7 (Konfig IP address router CE)
host BCA-1
int gi0/0
no sh
ip add 10.1.1.1 255.255.255.0
ip ospf network point-to-point
ip ospf 100 area 0
exit
int gi0/1
no sh
ip add 10.87.10.1 255.255.255.0
exit
router ospf 100
redistribute connected subnets
exit
host BCA-2
int gi0/0
no sh
ip add 10.5.5.1 255.255.255.0
ip ospf network point-to-point
ip ospf 100 area 0
exit
int gi0/1
no sh
ip add 10.87.20.1 255.255.255.0
exit
router ospf 100
redistribute connected subnets
exit
Verifikasi:
TAHAP-8 (Tambhakan routing statik di router BCA-1, BCA-2, PE1 dan PE2, supaya network 10.87.10.0/24 dan 10.87.20.0/24 bisa reach antar BCA-1 dan BCA-2
PE1
ip route vrf BCA 10.87.20.0 255.255.255.0 10.5.5.1
PE2
ip route vrf BCA 10.87.10.0 255.255.255.0 10.1.1.1
BCA-1
ip route 10.87.20.0 255.255.255.0 10.5.5.1
BCA-2
ip route 10.87.10.0 255.255.255.0 10.1.1.1
Verifkasi: (dirouter CE, BCA-1)
Success...!!!
SKENARIO II (DI AREA BRI, menggunakan OSPF routing)
BRI-1
interface GigabitEthernet0/0
ip address 10.10.10.1 255.255.255.0
ip ospf network point-to-point
ip ospf 200 area 0
no shut
exit
interface GigabitEthernet0/1
ip address 10.89.10.1 255.255.255.0
no shut
exit
router ospf 200
network 10.89.10.0 0.0.0.255 area 1
exit
BRI-2
interface GigabitEthernet0/0
ip address 10.11.11.1 255.255.255.0
ip ospf network point-to-point
ip ospf 200 area 0
no shut
exit
interface GigabitEthernet0/1
ip address 10.89.20.1 255.255.255.0
no shut
exit
router ospf 200
network 10.89.20.0 0.0.0.255 area 1
PE-1
ip vrf BRI
rd 10:200
route-target export 10:200
route-target import 10:200
ip vrf forwarding BRI
ip address 10.10.10.2 255.255.255.0
ip ospf network point-to-point
ip ospf 200 area 0
no shut
exit
(redistribute BGP ke OSPF)
router ospf 200 vrf BRI
(redistribute OSPF ke BGP)
router bgp 65123
address-family ipv4 vrf BRI
redistribute ospf 200
exit
PE-2
ip vrf BRI
rd 10:200
route-target export 10:200
route-target import 10:200
interface GigabitEthernet0/2
ip vrf forwarding BRI
ip address 10.11.11.2 255.255.255.0
ip ospf network point-to-point
ip ospf 200 area 0
no shut
exit
(redistribute BGP ke OSPF)
router ospf 200 vrf BRI
redistribute bgp 65123 subnets
exit
(redistribute OSPF ke BGP)
router bgp 65123
address-family ipv4 vrf BRI
redistribute ospf 200
exit
VERIFKASI:
PE1, PE2
sh ip route vrf BRI
sh ip route vrf BCA
Sukses...!!!
SKENARIO-3 (Jika ingin di area BRI-3 ditambah segment user, mak berikut config nya) LIHAT TOPOLOGY
PE-3
ip vrf BRI
rd 10:200
route-target export 10:200
route-target import 10:200
exit
exit
router ospf 200 vrf BRI
redistribute bgp 65123 subnets
exit
router bgp 65123
address-family ipv4 vrf BRI
redistribute ospf 200
exit
exit
interface GigabitEthernet0/1
ip vrf forwarding BRI
ip address 10.12.12.2 255.255.255.0
ip ospf network point-to-point
ip ospf 200 area 0
no shut
exit
BRI-3
hostname BRI-3
interface GigabitEthernet0/0
ip address 10.12.12.1 255.255.255.0
ip ospf network point-to-point
ip ospf 200 area 0
no shut
exit
interface GigabitEthernet0/1
ip address 10.89.30.1 255.255.255.0
no shut
exit
router ospf 200
network 10.89.30.0 0.0.0.255 area 1
exit
VERIFIKASI
Done, Sukccess...!!!
Posting Komentar untuk "Cisco | MPLS - L3VPN - NEW"