Customized BGP Route Selection Using BGP/MPLS VPNs

Similar documents
Analyzing Capabilities of Commercial and Open-Source Routers to Implement Atomic BGP

For internal circulation of BSNLonly

Implementing MPLS VPN in Provider's IP Backbone Luyuan Fang AT&T

MPLS-based Layer 3 VPNs

How Routers Forward Packets

Implementing Cisco MPLS

Introduction Inter-AS L3VPN

Table of Contents. Cisco Configuring a Basic MPLS VPN

- Multiprotocol Label Switching -

MPLS VPN Implementation

Configuring MPLS Hub-and-Spoke Layer 3 VPNs

How To Make A Network Secure

IMPLEMENTING CISCO MPLS V2.3 (MPLS)

IMPLEMENTING CISCO MPLS V3.0 (MPLS)

Tackling the Challenges of MPLS VPN Testing. Todd Law Product Manager Advanced Networks Division

DD2491 p MPLS/BGP VPNs. Olof Hagsand KTH CSC

Notice the router names, as these are often used in MPLS terminology. The Customer Edge router a router that directly connects to a customer network.

Implementing VPN over MPLS

Introducing Basic MPLS Concepts

IPv6 over IPv4/MPLS Networks: The 6PE approach

RFC 2547bis: BGP/MPLS VPN Fundamentals

Enterprise Network Simulation Using MPLS- BGP

Why Is MPLS VPN Security Important?

IPv6 over MPLS VPN. Contents. Prerequisites. Document ID: Requirements

Implementing MPLS VPNs over IP Tunnels on Cisco IOS XR Software

MPLS Inter-AS VPNs. Configuration on Cisco Devices

MP PLS VPN MPLS VPN. Prepared by Eng. Hussein M. Harb

Introduction to MPLS-based VPNs

Understanding Route Redistribution & Filtering

MPLS-based Virtual Private Network (MPLS VPN) The VPN usually belongs to one company and has several sites interconnected across the common service

DD2491 p BGP-MPLS VPNs. Olof Hagsand KTH/CSC

Implementing MPLS VPNs over IP Tunnels

Moonv6 Test Suite. MPLS Provider Edge Router (6PE) Interoperablility Test Suite. Technical Document. Revision 0.1

White Paper. Cisco MPLS based VPNs: Equivalent to the security of Frame Relay and ATM. March 30, 2001

Configuring a Basic MPLS VPN

Kingston University London

AMPLS - Advanced Implementing and Troubleshooting MPLS VPN Networks v4.0

SEC , Cisco Systems, Inc. All rights reserved.

AT&T Managed IP Network Service (MIPNS) MPLS Private Network Transport Technical Configuration Guide Version 1.0

Implementing Cisco Service Provider Next-Generation Edge Network Services **Part of the CCNP Service Provider track**

IP/MPLS-Based VPNs Layer-3 vs. Layer-2

MPLS VPN Route Target Rewrite

MPLS/BGP Network Simulation Techniques for Business Enterprise Networks

MPLS VPN Services. PW, VPLS and BGP MPLS/IP VPNs

Quidway MPLS VPN Solution for Financial Networks

Cisco Exam CCIE Service Provider Written Exam Version: 7.0 [ Total Questions: 107 ]

Building Trusted VPNs with Multi-VRF

MPLS Implementation MPLS VPN

Overlay Networks and Tunneling Reading: 4.5, 9.4

Cisco Exam Implementing Cisco Service Provider Next-Generation Egde Network Services Version: 7.0 [ Total Questions: 126 ]

UNDERSTANDING JUNOS OS NEXT-GENERATION MULTICAST VPNS

Measuring IP Network Routing Convergence. A new approach to the problem

Demonstrating the high performance and feature richness of the compact MX Series

Transition to IPv6 in Service Providers

MPLS VPN over mgre. Finding Feature Information. Prerequisites for MPLS VPN over mgre

Provisioning Cable Services

MikroTik RouterOS Introduction to MPLS. Prague MUM Czech Republic 2009

Building A Cheaper Peering Router. (Actually it s more about buying a cheaper router and applying some routing tricks)

BGP Multipath Load Sharing for Both ebgp and ibgp in an MPLS-VPN

S ITGuru Exercise (3: Building the MPLS BGP VPN) Spring 2006

MPLS WAN Explorer. Enterprise Network Management Visibility through the MPLS VPN Cloud

WAN Topologies MPLS. 2006, Cisco Systems, Inc. All rights reserved. Presentation_ID.scr Cisco Systems, Inc. All rights reserved.

MPLS Security Considerations

MPLS L3 VPN Supporting VoIP, Multicast, and Inter-Provider Solutions

HP Networking BGP and MPLS technology training

IMPLEMENTING CISCO IP ROUTING V2.0 (ROUTE)

Exterior Gateway Protocols (BGP)

PRASAD ATHUKURI Sreekavitha engineering info technology,kammam

Using OSPF in an MPLS VPN Environment

SBSCET, Firozpur (Punjab), India

MPLS VPN Security in Service Provider Networks. Peter Tomsu Michael Behringer Monique Morrow

Cisco 7600/Catalyst 6500: Scaling Up for MPLS VPN Service with 10 Gigabit Ethernet

Multi Protocol Label Switching (MPLS) is a core networking technology that

Transitioning to BGP. ISP Workshops. Last updated 24 April 2013

Frame Mode MPLS Implementation

How To Understand The Benefits Of An Mpls Network

Fundamentals Multiprotocol Label Switching MPLS III

How To Import Ipv4 From Global To Global On Cisco Vrf.Net (Vf) On A Vf-Net (Virtual Private Network) On Ipv2 (Vfs) On An Ipv3 (Vv

MPLS VPN. Agenda. MP-BGP VPN Overview MPLS VPN Architecture MPLS VPN Basic VPNs MPLS VPN Complex VPNs MPLS VPN Configuration (Cisco) L86 - MPLS VPN

Expert Reference Series of White Papers. An Overview of MPLS VPNs: Overlay; Layer 3; and PseudoWire

Internetworking II: VPNs, MPLS, and Traffic Engineering

Can Forwarding Loops Appear when Activating ibgp Multipath Load Sharing?

MPLS VPN Security BRKSEC-2145

MPLS. Cisco MPLS. Cisco Router Challenge 227. MPLS Introduction. The most up-to-date version of this test is at:

Solutions Guide. Ethernet-based Network Virtualization for the Enterprise

MPLS Concepts. MPLS Concepts

To Add Paths or not to Add Paths

Lab 4.2 Challenge Lab: Implementing MPLS VPNs

l.cittadini, m.cola, g.di battista

MPLS Multi-Vendor Provisioning. Presented by Brian O Sullivan Director, Product Management Dorado Software October 21, 2003

Expert Reference Series of White Papers. Cisco Service Provider Next Generation Networks

Multiprotocol Label Switching Load Balancing

Disaster Recovery Design Ehab Ashary University of Colorado at Colorado Springs

MPLS Layer 2 VPNs Functional and Performance Testing Sample Test Plans

Transcription:

Customized BGP Route Selection Using BGP/MPLS VPNs Laurent Vanbever Université catholique de Louvain, BE!"#$%&'()"&*%+%$,#-./#+"0&(*% Pierre Francois (UCLouvain, BE), Olivier Bonaventure (UCLouvain, BE) and Jennifer Rexford (Princeton, USA) Cisco Systems, Routing Symposium Monday, Oct. 5 2009

Customized BGP Route Selection Using BGP/MPLS VPNs Introduction and motivation Implementing CRS Practical considerations and solutions Conclusion

Customized BGP Route Selection Using BGP/MPLS VPNs Introduction and motivation Implementing CRS Practical considerations and solutions Conclusion

BGP Route Selection:One-route-fits-all model A BGP router selects one best route for each destination Globally, AS E knows 4 paths towards D Locally, some routers only know one path (e.g., C1...C3) A C1 R6 C2 E R3 R5 R4 R7 R8 B D C3 R9 C 4

BGP Route Selection:One-route-fits-all model Many ISPs have a rich path diversity It is common to have 5-10 paths per prefix Different paths have different properties It could be in terms of security, policies, etc. A prop.1 C1 R6 C2 E R3 R5 R4 R7 R8 B prop.2 prop.3 D C3 R9 C prop.4 5

BGP Route Selection:One-route-fits-all model Clients may want different paths to the same prefix If C1 is a competitor of C, he d prefer to reach D via A or B C1 may even want to pay an extra fee for that I d prefer 3 A prop.1 I d prefer 4 C1 C2 E R3 R5 R4 R6 R7 R8 B prop.2 prop.3 D I d prefer 1 C3 R9 C prop.4 6

BGP Route Selection:One-route-fits-all model With vanilla BGP, you can t match customers preferences to available paths Customers of a given PE receive the same path I d prefer 3 A prop.1 I d prefer 4 C1 C2 E R3 R5 R4 R6 R7 R8 B prop.2 prop.3 D I d prefer 1 C3 R9 C prop.4 7

CRS: Customized Route Selection Under CRS, one router can offer different interdomain routes to different neighbors C1 reaches D via B, C2 reaches D via C I d prefer 3 A prop.1 I d prefer 4 C1 C2 E R3 R5 R4 R6 R7 R8 B prop.2 prop.3 D I d prefer 1 C3 R9 C prop.4 8

Customized BGP Route Selection Using BGP/MPLS VPNs Introduction and motivation Implementing CRS Potential issues and solutions Conclusion

Two notions: class and service A class is a set of routes sharing a property e.g., all the routes learned via provider X One route can belong to more than one class A service is the union of one or more classes Some classes can be preferred over others e.g., service Y is the union of class 1 and class 2 where preference is given to class 1 10

What do we need to implement CRS with BGP MPLS VPNs? Mechanisms to disseminate and differentiate paths Multiprotocol BGP is used as dissemination protocol Route Targets (RT) are used to identify classes Route Distinguishers (RD) are used to ensure diversity Customized route selection mechanisms at ASBR Use Virtual Routing and Forwarding (VRF) instances to build services Traffic forwarding on the chosen paths MPLS tunneling 11

How do we implement CRS with BGP MPLS VPNs? A C1 R6 C2 E R4 R7 B D R3 R8 C3 R5 R9 C C1 wants to reach D via B, C2 via C Define two services on : prefer B (resp. C) routes Define three classes: learned via A, B or C 12

How do we implement CRS with BGP MPLS VPNs? A C1 C2 E R3 R4 R6 R7 R8 B D C3 R5 R9 C 13

How do we implement CRS with BGP MPLS VPNs? A C1 C2 E R3 R4 R6 R7 R8 B D C3 R5 R9 C Consider peers as VPNs and put them in VRFs 13

How do we implement CRS with BGP MPLS VPNs? Route Targets 101: learned via A 102: learned via B 103: learned via C A C1 R6 C2 E R3 R4 R7 R8 B D C3 R5 R9 C Consider peers as VPNs and put them in VRFs Use RT to identify classes 13

How do we implement CRS with BGP MPLS VPNs? Route Targets 101: learned via A 102: learned via B 103: learned via C A C1 C2 E R6 RD R41 RD 2R7 B D R3 RD 3 R8 C3 RD R54 R9 C Consider peers as VPNs and put them in VRFs Use RT to identify classes Use different RD to differentiate routes 13

How do we implement CRS with BGP MPLS VPNs? C1 C2 prefer B routes import RT: 101,102,103; from 102: set pref:=200; R4 E R3 A R6 R7 R8 B Route Targets 101: learned via A 102: learned via B 103: learned via C D C3 prefer C routes R5 import RT: 101,102,103; from 103: set pref:=200; Define services by using VRFs import filters R9 C 14

How do we implement CRS with BGP MPLS VPNs? Route Targets 101: learned via A 102: learned via B 103: learned via C A C1 R6 C2 E R4 R7 B D R3 R8 C3 R5 R9 C MPLS is used for forwarding Two levels label stack R3 only knows label to reach the PEs 15

CRS applied to classical policies Define three classes Providers (RT 100) Peers (RT 101) Customers (RT 102) PROV PROV Define two services PEER VRF Provider/Peer ( ) import RT 102; VRF Customers ( ) import RT 100,101,102; R3 CUST CUST Thanks to VRF isolation, policies violations vanish 16

Customized BGP Route Selection Using BGP/MPLS VPNs Introduction and motivation Implementing CRS Practical considerations and solutions Conclusions

Is CRS pushing a M120 to the limit? RT:100 UUT RT:101 RT:102 RT:103 ebgp MP-iBGP, OSPF, LDP Four services are defined on the Unit Under Test (UUT) Each service is fed with one class (one RT) In each class, ~300k routes (1 path per route) In the end, 1.200.000 routes in RIB & FIB 18

Is CRS pushing a M120 to the limit? UUT was a Juniper M120 [JunOS 9.3.8] Routing Engine (RE) has 4 GB DRAM Forwarding Engine Boards (FEB) have 512 MB DRAM RE FEB empty 17% 9% fully-loaded (1.200.000 routes) 38% 39% FIB could handle more than 2.000.000 routes Enough to support a few services without modifications 19

More services? scalability and...scalability Routes dissemination overhead All PEs receive all VPN routes Routes storage overhead RIB Modest performance demand Add more DRAM to support CRS? FIB CRS s biggest challenge Sharing between the VRFs in the FIB? 20

How could we improve CRS FIB s scaling: Selective VRF Download By default, all VRFs are installed on all line cards 1111111111111111111112%341156717'0.08"'0/&19:;111<%3/$=11117'0.08"'0/&19:; >./'1>'"'%11111111111195;112/'".11?&'%$$#4'111111@AB<19<C;1D%"411111C#EE%$ 11F11G&.0&%111111111111FH111111I1111111111J1111111KIF11111111!"111111111KL 11M11G&.0&%111111111111FN111111I1111111111J1111111KIF11111111!"111111111KL Customers ask for the same services? Connect them on the same line card Download VRFs only to line cards that need them It could be a management nightmare... 21

How could we improve CRS FIB s scaling: Cross-VRF Lookup Specific routing for a small set of prefixes? Create one small VRF per service Add default entry towards a default VRF The price to pay is 2 IP lookups VRF1 *>10/8 via 0/0 via default VRF2 *>10/8 via 0/0 via default Default... *>10/8 via R3... R R3 22

How could we improve CRS FIB s scaling: Distributed VRF Distribute VRFs among routers which can afford extra load PEs do not maintain complete VRFs anymore PEs default route traffic towards these routers Increase in latency and load Distributed version of Cross-VRF Lookup R maintain small VRFs and default rest to or detour path direct path R 23

Customized BGP Route Selection Using BGP/MPLS VPNs Introduction and motivation Implementing CRS Practical considerations and solutions Conclusion

CRS is feasible Implementable It can be realized on today s routers It uses well known BGP MPLS/VPNs techniques Scalable (for a few services) Modest message and storage overhead Lab experiments tend to confirm that Guaranteed interdomain convergence Extra flexibility does not compromise global routing stability 1 1 Proof in SIGMETRICS'09 paper by Y. Wang, M. Schapira, and J. Rexford 25

Customized BGP Route Selection Using BGP/MPLS VPNs Questions? Cisco Systems, Routing Symposium Monday, Oct. 5 2009

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information