Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

TechLibrary
Navigation

Supported Platforms

Configuring Carrier-of-Carriers VPNs for Customers That Provide VPN Service

You can configure a carrier-of-carriers VPN service for customers who want VPN service. Carrier-of-Carriers VPNs shows how the routers in this type of service interconnect.

To configure the following routers in the customer’s and provider’s networks to enable carrier-of-carriers VPN service, you perform the steps in the following sections:

Configuring the Carrier-of-Carriers Customer’s PE Router

The carrier-of-carriers customer’s PE router is connected to the end customer’s CE router.

The following sections describe how to configure the carrier-of-carriers customer’s PE router:

Configuring MPLS

To configure MPLS on the carrier-of-carriers customer’s PE router, include the mpls statement:

mpls {interface interface-name;interface interface-name;}

You can include this statement at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring BGP

Include the labeled-unicast statement in the configuration for the IBGP session to the carrier-of-carriers customer’s CE router (see Configuring Carrier-of-Carriers VPNs for Customers That Provide VPN Service), and include the family-inet-vpn statement in the configuration for the IBGP session to the carrier-of-carriers PE router on the other side of the network:

bgp {group group-name {type internal;local-address address;neighbor address {family inet {labeled-unicast;resolve-vpn;}}}neighbor address {family inet-vpn {any;}}}

You can include these statements at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring OSPF

To configure OSPF on the carrier-of-carriers customer’s PE router, include the ospf statement:

ospf {area area-id {interface interface-name {passive;}interface interface-name;}}

You can include this statement at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring LDP

To configure LDP on the carrier-of-carriers customer’s PE router, include the ldp statement:

ldp {interface interface-name;}

You can include this statement at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring VPN Service in the Routing Instance

To configure VPN service for the end customer’s CE router on the carrier-of-carriers customer’s PE router, include the following statements:

instance-type vrf;interface interface-name;route-distinguisher address;vrf-import policy-name;vrf-export policy-name;protocols {bgp {group group-name {peer-as as-number;neighbor address;}}}

You can include these statements at the following hierarchy levels:

  • [edit routing-instances routing-instance-name]
  • [edit logical-systems logical-system-name routing-instances routing-instance-name]

Configuring Policy Options

To configure policy options to import and export routes to and from the end customer’s CE router, include the policy-statement and community statements:

policy-statement policy-name {term term-name {from {protocol bgp;community community-name;}then accept;}term term-name {then reject;}}policy-statement policy-name {term term-name {from protocol bgp;then {community add community-name;accept;}}term term-name {then reject;}}community community-name members value;

You can include these statements at the following hierarchy levels:

  • [edit policy-options]
  • [edit logical-systems logical-system-name policy-options]

Configuring the Carrier-of-Carriers Customer’s CE Router

The carrier-of-carriers customer’s CE router connects to the provider’s PE router. Complete the instructions in the following sections to configure the carrier-of-carriers customers’ CE router:

Configuring MPLS

In the MPLS configuration for the carrier-of-carriers customer’s CE router, include the interfaces to the provider’s PE router and to a P router in the customer’s network:

mpls {traffic-engineering bgp-igp;interface interface-name;interface interface-name;}

You can include these statements at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring BGP

In the BGP configuration for the carrier-of-carriers customer’s CE router, configure a group that includes the labeled-unicast statement to extend VPN service to the PE router connected to the end customer’s CE router:

bgp {group group-name {type internal;local-address address;neighbor address {family inet {labeled-unicast;}}}}

You can include the bgp statement at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

To configure a group to send labeled internal routes to the provider’s PE router, include the bgp statement:

bgp {group group-name {export internal;peer-as as-number;neighbor address {family inet {labeled-unicast;}}}}

You can include this statement at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring OSPF and LDP

To configure OSPF and LDP on the carrier-of-carriers customer’s CE router, include the ospf and ldp statements:

ospf {area area-id {interface interface-name {passive;}interface interface-name;}}ldp {interface interface-name;}

You can include these statements at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring Policy Options

To configure the policy options on the carrier-of-carriers customer’s CE router, include the policy-statement statement:

policy-statement policy-statement-name {term term-name {from protocol [ ospf direct ldp ];then accept;}term term-name {then reject;}}

You can include this statement at the following hierarchy levels:

  • [edit policy-options]
  • [edit logical-systems logical-system-name policy-options]

Configuring the Provider’s PE Router

The carrier-of-carriers provider’s PE routers connect to the carrier customer’s CE routers. Complete the instructions in the following sections to configure the provider’s PE router:

Configuring MPLS

In the MPLS configuration, specify at least two interfaces—one to the customer’s CE router and one to connect to the provider’s PE router on the other side of the provider’s network:

interface interface-name;interface interface-name;

You can include these statements at the following hierarchy levels:

  • [edit protocols mpls]
  • [edit logical-systems logical-system-name protocols mpls]

Configuring a PE-Router-to-PE-Router BGP Session

To configure a PE-router-to-PE-router BGP session on the provider’s PE routers to allow VPN-IPv4 routes to pass between the PE routers, include the bgp statement:

bgp {group group-name {type internal;local-address address;family inet-vpn {any;}neighbor address;}}

You can include this statement at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring IS-IS and LDP

To configure IS-IS and LDP on the provider’s PE routers, include the isis and ldp statements:

isis {interface interface-name;interface interface-name {passive;}}ldp {interface interface-name;}

You can include these statements at the following hierarchy levels:

  • [edit protocols]
  • [edit logical-systems logical-system-name protocols]

Configuring Policy Options

To configure policy statements on the provider’s PE router to export routes to and import routes from the carrier customer’s network, include the policy-statement and community statements:

policy-statement statement-name {term term-name {from {protocol bgp;community community-name;}then accept;}term term-name {then reject;}}policy-statement statement-name {term term-name {from protocol bgp;then {community add community-name;accept;}}term term-name {then reject;}}community community-name members value;

You can include these statements at the following hierarchy levels:

  • [edit policy-options]
  • [edit logical-systems logical-system-name policy-options]

Configuring a Routing Instance to Send Routes to the CE Router

To configure the routing instance on the provider’s PE router to send labeled routes to the carrier customer’s CE router, include the following statements:

instance-type vrf;interface interface-name;route-distinguisher value;vrf-import policy-name;vrf-export policy-name;protocols {bgp {group group-name {peer-as as-number;neighbor address {family inet {labeled-unicast;}}}}}

You can include these statements at the following hierarchy levels:

  • [edit routing-instances routing-instance-name]
  • [edit logical-systems logical-system-name routing-instances routing-instance-name]

Published: 2012-11-29

Supported Platforms

Published: 2012-11-29

Previous Page Next Page