Çağrı yücel koç Üniversitesi [email protected]
DESCRIPTION
INET-TR 2002 / MPLS & MPLS VPN Çoklu Protokol Etiket Anahtarlama (Multi Protocol Label Switching - MPLS) ve MPLS Özel Sanal A ğlar (MPLS - VPN). Çağrı Yücel Koç Üniversitesi [email protected]. Gündem. Geleneksel IP Yönlendirme MPLS’in Getirdikleri MPLS Çalışma Prensibi - PowerPoint PPT PresentationTRANSCRIPT
-
INET-TR 2002 / MPLS & MPLS VPN
oklu Protokol Etiket Anahtarlama(Multi Protocol Label Switching - MPLS) ve MPLS zel Sanal Alar (MPLS - VPN)
ar Ycel Ko niversitesi [email protected]
-
GndemGeleneksel IP YnlendirmeMPLSin GetirdikleriMPLS alma PrensibiKonfigrasyon rneizel Sanal A (VPN) eitleriMPLS/Sanal A alma PrensipleriKonfigrasyon rneiMPLSin gelecei ve dier kullanm alanlar
-
Geleneksel IP YnlendirmesiYnlendirme tablosu, ynlendirme protokolleri tarafndan veya statik tanmlarla oluturulur.
Her atlamada (hop) var adresi yeniden kontrol edilerek ynlendirme karar verilir.
Paketin a iinde izleyecei yol, dinamik olarak her hop zerinde, anlk olarak belirlenir.ABCDXYZ
-
MPLS zellikleri ve Kullanm Alanlar2. ve 3. seviye ynlendirmenin (switching ve routing) olumlu ynlerini bir araya getirir.Ynlendirici ykn azaltarak hz ve performans art salar.
U noktalar arasnda, esnek ve kolay idare edilebilir zel sanal a (VPN) tanmlamalarna izin verir.U noktalar arasnda trafiin istenen bir yol ve bunun alternatifleri zerinden gitmesini salar (Traffic Engineering).ATM cihazlar zerinde IP trafii iletimini kolaylatrr.
-
MPLS alma PrensibiYnlendiriciler bir ynlendirme protokol kullanarak a yapsn olutururlar.Her ynlendirici, ynlendirme tablosundaki her a tanm iin bir etiket (label) retir.LDP/TDP protokol kullanlarak, MPLS operasyonuna katlan ynlendiriciler arasnda etiket bilgileri deitirilir.Etiket deiimi sonucunda, her ynlendiricide, paketler iin gelen-giden etiket iftleri oluturulara, Etiket Ynlendirme Bilgi Tabanna (LFIB) eklenir.
Aa giren paketlere, var adreslerine gre, izleyecei yola (Forwarding Equivalance Class FEC) uygun bir etiket eklenir.A zerindeki dier ynlendiriciler, sadece gelen paketin etiketine bakp, bunu, karlk gelen yeni etiket ile deitirerek (label switching) ynlendirme yaparlar. MPLS andaki son ynlendiriciye kadar ayrca 3. seviye kontrol yaplmaz.
MPLS protokol detaylar RFC 3031 de tanmlanmtr (http://www.ietf.org/rfc/rfc3031.txt)
-
Etiket Anahtarlama (Label Switching)IP PaketiD: 192.168.0.1IP PaketiIP PaketiD: 192.168.1.1IP PaketiIP PaketiPHP 23 30 18 15Edge-LSRLSR192.168.0.0 23192.168.1.0 25 30 1515 -ABCDEFGHM
-
MPLS Etiket Yerleimi ve Yaps
-
MPLS KonfigurasyonuCisco ynlendiricilerde MPLS konfigurasyon rnei
ip cef tag-switching advertise-tags interface e0/1 tag-switching ip
Router#show tag-switching tdp bindings Matching entries: tib entry: 10.92.0.0/16, rev 28 local binding: tag: 30 remote binding: tsr: 172.27.32.29:0, tag: 18 tib entry: 10.102.0.0/16, rev 29 local binding: tag: 26 remote binding: tsr: 172.27.32.29:0, tag: imp-null(1)
-
Sanal A (VPN) Tanm ve eitleriGenel (public) a altyaps zerinde, zel (private) a hizmeti salanmasi Sanal zel A (VPN) olarak adlandrlr.
-
MPLS Sanal A zellikleriCE YnlendiricisiPE YnlendiricisiP YnlendiricisiPE YnlendiricisiCE YnlendiricisiMPLS AA MterisiA MterisiB MterisiB MterisiABCDE
-
MPLS Sanal A YaplanmasCE YnlendiricisiPE YnlendiricisiP YnlendiricisiPE YnlendiricisiCE YnlendiricisiMPLS AA MterisiA MterisiB MterisiB Mterisi(OSPF)(OSPF)(RIP)(RIP)192.168.1.0/24172.0.1.0/16192.168.1.0/24192.168.2.0/24ABCDE
-
MPLS rten Sanal A (Overlapping VPN)CE YnlendiricisiPE YnlendiricisiP YnlendiricisiPE YnlendiricisiCE YnlendiricisiMPLS AA MterisiA MterisiB MterisiB MterisiMerkezi ServisABCDE
-
MPLS Sanal A (VRF Kavram)MPLS AA MterisiA MterisiB MterisiB MterisiVRF AVRF BMP-BGPRIPRIPPE YnlendiricisiA MterisiVRF AVRF BABCDEVRF : Sanal Ynlendirme Aktarma (Virtual Routing Forwarding)VRF tanm ynlenidirici ierisinde snrldr.
-
MPLS Sanal A IP Paketlerinin TanmasMPLS AA MterisiB MterisiB MterisiVRF BMP-BGPRIPRIPPE YnlendiricisiVRF B192.168.1.0/24192.168.2.0/24192.168.2.0/24ABCD
-
MPLS Sanal A (Route Target Tanmlamalar)MPLS AA MterisiB MterisiB MterisiMP-BGPRIPPE YnlendiricisiA MterisiVRF A_AnkaraVRF B_AnkaraABVRF A_IstanbulVRF B_IstanbulVRF A_AnkaraRT Export 100:20RT Import 100:20VRF B_Ankara RT Export 100:30RT Import 100:30VRF A_IstanbulRT Export 100:20RT Import 100:20VRF B_Istanbul RT Export 100:30RT Import 100:30CDE
-
MPLS Sanal A (Route Target Tanmlamalar)MPLS AA MterisiB MterisiB MterisiRIPPE YnlendiricisiA MterisiVRF A_AnkaraVRF B_AnkaraABVRF A_IstanbulVRF B_IstanbulVRF A_AnkaraRT Export 100:20RT Import 100:20VRF B_Ankara RT Export 100:30RT Import 100:30RT Import 100:50RT Export 100:51VRF A_IstanbulRT Export 100:20RT Import 100:20RT Import 100:50RT Export 100:51VRF B_Istanbul RT Export 100:30RT Import 100:30CDEMerkezi ServisVRF MerkezRT Export 100:50RT Import 100:50RT Import 100:51
-
MPLS Sanal A rnek KonfigrasyonISTANBUL Ynlendiricisi
ip cef
tag-switching tdp router-id loopback0
ip vrf A_Istanbul rd 100:1 route-target export 100:1 route-target import 100:1ip vrf B_Istanbul rd 100:2 route-target both 100:2
interface loopback 0 ip address 10.1.0.1 255.255.255.255
interface s0/0 tag-switching ip ip unnumbered loopack 0
interface e1/0 ip address 10.2.0.1 255.255.255.0 ip vrf forwarding A_Istanbul interface e1/1 ip address 10.3.0.1 255.255.255.0 ip vrf forwarding B_Istanbulrouter rip version 2 address-family ipv4 vrf A_Istanbul version 2 redistribute bgp 100 metric 1 network 10.0.0.0 no auto-summary exit-address-family address-family ipv4 vrf B_Istanbul ... exit-address-family
router bgp 100 no bgp default ipv4-unicast neighbor 10.1.0.2 remote as 100 neighbor 10.1.0.2 update-source loopback0 address-family ipv4 vrf A_Istanbul redistribute rip metric 1 no auto-summary no synchronization exit-address-family address-family ipv4 vrf B_Istanbul ... exit-address-family address-family vpnv4 neighbor 10.1.0.2 activate neighbor 10.1.0.2 send-community extended exit-address-family (RIP Kullanm)
-
MPLS Sanal A rnek KonfigrasyonISTANBUL Ynlendiricisi
ip cef
tag-switching tdp router-id loopback0
ip vrf A_Istanbul rd 100:1 route-target export 100:1 route-target import 100:1ip vrf B_Istanbul rd 100:2 route-target both 100:2
interface loopback 0 ip address 10.1.0.1 255.255.255.255
interface s0/0 tag-switching ip ip unnumbered loopack 0
interface e1/0 ip address 10.2.0.1 255.255.255.0 ip vrf forwarding A_Istanbul interface e1/1 ip address 10.3.0.1 255.255.255.0 ip vrf forwarding B_Istanbulrouter ospf 100 vrf A_Istanbul redistribute bgp 100 metric 20 network 10.2.0.0 0.0.0.255 area 1router ospf 200 vrf B_Istanbul redistribute bgp 100 metric 20 network 10.3.0.0 0.0.0.255 area 2
router bgp 100 no bgp default ipv4-unicast neighbor 10.1.0.2 remote as 100 neighbor 10.1.0.2 update-source loopback0 address-family ipv4 vrf A_Istanbul redstribute ospf 100 match internal no auto-summary no synchronization exit-address-family address-family ipv4 vrf B_Istanbul ... exit-address-family address-family vpnv4 neighbor 10.1.0.2 activate neighbor 10.1.0.2 send-community extended exit-address-family (OSPF Kullanm)
-
MPLS Sanal A zleme rneiRouter#show ip route vrf A_IstanbulCodes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate default U - per-user static route, o - ODR T - traffic engineered routeGateway of last resort is not setB 51.0.0.0/8 [200/0] via 13.13.13.13, 00:24:19C 50.0.0.0/8 is directly connected, Ethernet1/3B 11.0.0.0/8 [20/0] via 50.0.0.1, 02:10:22B 12.0.0.0/8 [200/0] via 13.13.13.13, 00:24:20
Router#show ip bgp vpnv4 allBGP table version is 18, local router ID is 14.14.14.14Status codes: s suppressed, d damped, h history, * valid, > best, i - internalOrigin codes: i - IGP, e - EGP,? - incompleteNetworkNext HopMetricLocPrfWeight PathRoute Distinguisher: 100:1 *> 11.0.0.050.0.0.10 0101 i*>i12.0.0.013.13.13.13 0100 0102 i*> 50.0.0.050.0.0.100101 i*>i51.0.0.013.13.13.130100 0102 i
-
Gelecekte MPLSTrafik Mhendislii (Traffic Engineering)Kalite Hizmeti (QoS)
MPLS zerinden Herhangi Bir Ulam (AToM Any Transport over MPLS)ATM AAL5 over MPLSEthernet over MPLSFrame Relay over MPLSHDLC over MPLSPPP over MPLS
-
KaynaklarRFC 3031: Multiprotocol Label Switching Architecture (IETF)
RFC 2547: BGP/MPLS VPNs
MPLS and MPLS VPN Architectures, I.Pepelnjak, J.Guichard, Cisco Press
Advanced MPLS Design and Implementation, Vivek Alwayn, Cisco Press
Presentation: http://www.cagri.net/mpls.ppt
-
INET-TR 2002 / MPLS & MPLS VPN
oklu Protokol Etiket Anahtarlama(Multi Protocol Label Switching - MPLS) ve MPLS zel Sanal Alar (MPLS - VPN)
Teekkrler
ar Ycel Ko niversitesi [email protected]