Minggu, 04 Januari 2009

6VPE

my network diagram for 6VPE







what is 6VPE ?

IPv6 VPN Network through MPLS IPv4 network

for this topology I use IOS c7200-adventerprisek9-mz.122-33.SRC1.bin i need feature vpnv6 in BGP extension

1.create vrf vpnv6_a & vpnv6_b

2. Network VPN must overlap

3. use sonet interface for backbone


here configuration for PE1


Use vrf definition command to create vrf vpnv6_a & vpnv6_b

you must activate address family ipv6 for ipv6 vpn support

!

vrf definition vpnv6_a
rd 777:1
route-target export 777:1
route-target import 777:1
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
vrf definition vpnv6_b
rd 777:2
route-target export 777:2
route-target import 777:2
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!

Activate ipv6 unicast routing

!
ip cef
ipv6 unicast-routing
ipv6 cef
!

Configure Loopback Interface

!

interface Loopback0
ip address 202.162.208.1 255.255.255.255
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!

Activate MPLS using command mpls ip on PE to backbone interface


interface POS1/0

ip address 202.162.208.5 255.255.255.252
mpls ip
!

Configure vrf forwarding on PE to CE Interface In different vrf name you can configure IP overlap with other vrf for example interface in vrf vpnv6_a have the same IPv6 address with vrf vpnv6_b

!
interface FastEthernet2/0
vrf forwarding vpnv6_a
no ip address
speed auto
duplex auto
ipv6 address 2001:5C0:1::1/126
!
interface FastEthernet2/1
vrf forwarding vpnv6_b
no ip address
speed auto
duplex auto
ipv6 address 2001:5C0:1::1/126
!

Activate IGP between PE to P router

!

router ospf 1
log-adjacency-changes
network 202.162.208.0 0.0.0.255 area 0
!

Configure MP-BGP

router bgp 777

bgp log-neighbor-changes
neighbor 125.126.46.1 remote-as 777
neighbor 125.126.46.1 update-source Loopback0
!
address-family ipv4
no synchronization
redistribute static
neighbor 125.126.46.1 activate
neighbor 125.126.46.1 next-hop-self
no auto-summary
exit-address-family
!
address-family vpnv4
neighbor 125.126.46.1 activate
neighbor 125.126.46.1 send-community both
exit-address-family
!
address-family vpnv6
neighbor 125.126.46.1 activate
neighbor 125.126.46.1 send-community both
exit-address-family
!
address-family ipv4 vrf vpnv6_a
no synchronization
redistribute static
exit-address-family
!
address-family ipv6 vrf vpnv6_a
redistribute static
no synchronization
exit-address-family
!
address-family ipv4 vrf vpnv6_b
no synchronization
redistribute static
exit-address-family
!
address-family ipv6 vrf vpnv6_b
redistribute static
no synchronization
exit-address-family

Create IPv6 static route in VRF vpnv6_a & vpnv6_b with destination to CE router

!

ipv6 route vrf vpnv6_b 2001:D30:7::/64 2001:5C0:1::3
ipv6 route vrf vpnv6_a 2001:D30:7::/64 2001:5C0:1::3
!

for P router configure each interface with mpls ip and global IPv4 IGP

!
interface Loopback0
ip address 202.162.208.2 255.255.255.255
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface POS1/0
ip address 202.162.208.6 255.255.255.252
mpls ip
!
interface POS2/0
ip address 202.162.208.254 255.255.255.252
mpls ip
!
router ospf 1
log-adjacency-changes
network 202.162.208.0 0.0.0.255 area 0
!
ip classless
!


troubleshoot it











































now we check the packet passing P Router







see the all configuration at

http://sioduy.100webspace.net/6VPE/

Diposting oleh di

3 komentar:

IBNU mengatakan...

Jelaskan donk apa itu 6VPE mas

9 Januari 2009 pukul 00.14
sioduy mengatakan...

Intinya 6VPE itu bagaimana kita membuat jaringan VPN IPv6 di sisi client melewati jaringan MPLS IPv4 service provider tanpa harus dengan menggunakan mekanisme tunnel layer 3 untuk ipv6 pada umumnya.

14 Januari 2009 pukul 22.31
Anonim mengatakan...

salam sioduy,
you're good on the written stuff, just keep the good work. well done. do spare some time to visit KIOS, and lets collaborate :)

_abdi_

26 April 2009 pukul 10.42

Posting Komentar

Langganan: Posting Komentar (Atom)