Service provider "StoryTellers" is intrigued by your performance so far, before they allow you to even look at their production MPLS backbone there is another lab they would like you to configure another lab. By using MPLS VPN's it's possible to send customer routes over the provider network. OSPF will be configured in the service provider domain (Router SP1, SP2 and SP3), the customer will be using EIGRP.
c3640-jk9s-mz.124-16.bin
You need to register to download the GNS3 Topology File. (Registration is Free!)
Do I understand correctly that 3.3.3.3/30 is the broadcast address for subnet 3.3.3.0/30?
Also, is 4.4.4.4/30 the subnet address for 4.4.4.4/30?
If so, how can these be assigned to interfaces? I keep getting "bad mask" errors when I try.
For now, I will just use /29, and see how that goes...
I am a member and I have done the registration and yet I do not see any download link? Can someone advise?
Hi
Only i can download the topology.But i need the configuration of the each router.Can anyone share the configuration for the above topology as i am in need.
Thanks in advance
Mr.KD
About the loopbacks, I messed up on that one...you are correct Doug. 3.3.3.3/30 is a broadcast address. I changed the loopbacks all to /25's, it doesn't matter much what kind of address you have on the loopbacks.
Frank, the download link is at the bottom of every article...below the topology picture.
Mr.Kd, what kind of config would you like to see here? a basic config which has the IP addresses or a final configuration with the working solution? Right now I don't supply any configs but I think I will in the future...it's very time consuming to create 'startup' configs and 'final' configs as well.
Hi Rene
I am new to MPLS and so i just want to know how to configure MPLS for the above topology.So i request for the configuration so that i will get some ideas and i can create my own topologies.
Thanks For Your Reply
KD
Dear All
Please Can anyone the configuration for the above topology.Please upload r paste the configuration as comment.
Thanks in Advance
Kd
I did this one of top of my head, but it should be pretty accurate. I didn't include the OSPF part for the backbone, just the MPLS.
// SP1, SP2 and SP3 should have MPLS enabled on the interfaces towards each other...NOT to the customer!
router (config)# interface f0/0
router (config)# mpls ip
// force MPLS to use the loopback's router ID:
router (config) mpls ldp router-id loopback0
// now the VRF part. A VRF is like a 'virtual routing table', kinda like a VLAN but now for L3. Let's create the VRF first, you need to do this on SP1 and SP3:
router (config)# ip vrf CUSTOMER
Router(config-vrf)#
// now we setup the RD (route distinguisher) which is needed to make the customers prefixes unique in our MPLS VPN setup.
Router(config-vrf)# rd 100:1
// Next step is to configure the correct route-target. The RT is what 'creates' the VPN:
Router(config-vrf)# route-target import 1:100
Router(config-vrf)# route-target export 1:100
// Now we need to add the interfaces pointing towards the customer into the correct VRF, do this on SP1 and SP3 (example is for SP1):
Router(config)# interface f1/0
Router(config-if)# ip vrf forwarding CUSTOMER
// you need to reassign the IP address...but it will tell you.
Try to ping the customer router from the VRF: (example SP1)
// ping vrf CUSTOMER 192.168.45.5
// Now you need to enable routing between the PE routers and the customer router, and we are using EIGRP. The difference is you need to specify the VRF when configuring EIGRP, this is how you do it:
Router(config)# Router EIGRP 100
Router(config-router)#address-family ipv4 vrf CUSTOMER
// then add all the network statements there...
// At this moment, you should have a working EIGRP between the SP and the Customer.
// You should have MPLS running on the SP routers.
// The next step is to get BGP going between SP1 and SP3, we'll use multi-protocol BGP (MP-BGP) to get those prefixes to the other side. You don't need to configure BGP on SP2!
// example is for SP1
Router(config)#router bgp 1
Router(config-router)# neighbor 4.4.4.4 remote-as 1
Router(config-router)# neighbor 4.4.4.4 update-source loopback0
// we need to send community information:
Router(config-router)# address-family vpnv4
Router(config-router-af)# neighbor 4.4.4.4 activate
Router(config-router-af)# neighbor 4.4.4.4 send-community extended
// Now we want to get those prefixes to the other side, we need to redistribute from EIGRP to BGP and the other way around.
Router(config)#router bgp 1
Router(config-router)#address-family ipv4 unicast
Router(config-router-af)#redistribute eigrp 100
// and from BGP to EIGRP, remember that you NEED to supply the metrics for EIGRP!
Router(config)# Router EIGRP 100
Router(config-router)#address-family ipv4 vrf CUSTOMER
Router(config-router-af)#redistribute bgp 1 metric 64000 100 255 1 1500
That should be it, these commands should be enough to help you to complete the lab.
Just keep in mind, MPLS itself is just a single command (mpls ip) but there is a lot of knowledge you need beforehand:
- IP Routing
- BGP
- OSPF / EIGRP
- VRF's
This might make it more difficult.
I'll create a video how to solve this lab real soon, this one seems to be popular...
Good luck!
I just added the video solution + final configs.
Now see if you can do the advanced MPLS VPN lab after this 
Dear Rene
Thanks a lot for the Video Tutorials and now i got some idea how to configure the MPLS and awaiting for more topologies to come
Thanks a lot
KD
Glad you like it With the same topology you can try to have RIP, OSPF or BGP exchanged for the customer...it's kinda the same but a little bit different.
Good luck
Dear Rene
I configured the same and working fine.But i have some doubts to clarify.
Can you please explain,what is the use of RD and Route-Target and please explain using which criteria we assigned RD 100:1 and Route-Target 1:100.
Please excuse if it is a silly question.
Thanks in Advance
KD
No problem.
The RD (Route Distinguisher) is to make a prefix "unique".
Let's say you have Customer A and Customer B...and they both use the 10.0.0.0/8 prefix then you have a problem.
By adding a RD to the prefix you create a "unique" value.
You can pick whatever number you like for the RD, i just made something up.
The Route-Target is used to determine what prefixes you want to import or export, this is what makes the VPN.
Let's say you have Customer A and Customer B, they each have 2 sites.
You can use RT 100:1 for Customer A so the 2 sites can talk to each other.
Use RT 200:2 for Customer B so the 2 sites can talk to each other.
Now let's say Customer A and B want to connect to each other, they each have a HQ site and the 2 HQ's need to be able to communicate with each other.
You can create another RT, for example 102:12 and use it to let the HQ's communicate with each other.
If you try the Advanced MPLS lab it will make more sense
Dear Rene
Thanks a lot for ur xplanation.
I just want to know
using the above topology but with some modification like below
SP1 >> Ethernet Switch >> HQ_A n Branch_B
SP3 >> Ethernet Switch >> HQ_B n Branch_A
If i make a scenario like this can i create 2 VLANS, 1 for HQ_A n Branch_A and the next VLAN for HQ_B n Branch_B in the SP1 n SP3.
And For HQ_A n Branch_A routing protocol EIGRP
and for HQ_B n Branch_B routing protocol RIP
Will it works like this.Please suggest ur ideas.
I think there is no modification in the P ie SP2.
Please suggest and gimme some ideas to work it out.
If everything goes fine shall i share the lab with the configuration over here.
Thanks & Regards
KD
Hi KD,
So if I understand correctly...you want to do this
SP1 SWITCH vlan 10+20
Connect HQ-A in Vlan10
Connect Branch-B in vlan 20
SP3 SWITCH vlan 10+20
Connect HQ-B in vlan 20
Connect Branch-A in vlan 10
If you would build a trunk from the switch to the router and create sub-interfaces on the SP routers...that would work, but why would you want to do this? This isn't something you would see or do in a real life situation..
Keep in mind a switch is a layer2 vlan, and a VRF is kinda like a "layer 3 vlan"
Rene
This won't work since we don't have BGP yet. We should ping either from SP3 or .12.1
BTW, thanks! You're doing a good job.
thanks! you are right, just fixed the IP address in the article
/o all,
From the start of the posts I noted a one side of a coin and then the other. I see that some issues were addressed with the "config" and then a video added. Hats off to Rene; I've been looking at topologies in manuals, books, PDFs and building from them and having to look up a log of stuff along the way. I have found many errors from Authors and I have learned a lot more by having to look things up to make it work. I lost several hours worth of study time from today this evening, but I then went the extra mile to ensure that I save my topologies correctly, as I will work on something and then switch over for a while due to something I read. It can be good to have config's to compare against but I am really glad that when I download a lab I have to build out from the image.
Rene, if you decide to add completed configs, can you still have it so we have to... well there is always write erase... wr reload .
Bogard
(very long day, pardon typos...)
;D
Need sleep... I see there are two different labs ... thanks again.
Bogard
Hi Bogard,
Seems you had a long day of labs 
About the configs..I'm trying to add a startup-config to make life easier, and a final config to compare your result against.
Of course there's always the video solution to follow your progress.
Good luck
Rene
Dear Rene
How r u. Seems to be no labs updated for MPLS for a long time. Is it possible to share our labs....
Hi Mr Kd!
I'm doing fine thanks, I hope you as well
I've been kinda busy with work so I didn't have time for MPLS labs...if you have some topologies and tasks please send them over, i'll wrap them into a nice article for the site!
Rene
Speaking for myself... I would welcome more labs. The more the better. In response to Rene's post regarding the start up config, I have several in as text files that I use for a always needed basics... if your using DHCP Pool & exclusions, router - EIGRP/OSPF/ect {AS#'s} XXXX. Line COn 0 settings... ect.
Thanks again for the site,
JCB
What program is being used to manage the console windows with the tabs
I'm using Ubuntu with the Gnome Terminal Tabs or Konsole. Check my blogpost here with the video:
http://gns3vault.com/161-terminal-tabs-in-linux-ubuntu.html
Ok so I am new to this and would like to know how to get the IOS images to work. I have found a bunch of IOS .bin files and tried loading them into the GSN3 program but when I try to load the topology from the file above it tells me that my IOS files are in bad paremeter. Any ideas and where did you guys get yours??
Thanks
DT- really the only solution if you're unable to get the same IOS version is to build the lab from scratch. I do the same thing with my labs. Doesn't take too much longer....
To configure IBGP between SP1 & SP3 why didnt you use inside the address family ?
The BGP configuration between SP1 and SP3 is a normal default BGP setup:
router bgp 1
no synchronization
bgp log-neighbor-changes
neighbor 4.4.4.4 remote-as 1
neighbor 4.4.4.4 update-source Loopback0
no auto-summary
The only additional requirement is that you enable address family VPN because you need the RD along with the prefix.
very good practice
it's interesting to note when configuring the bgp vpnv4 send-community parameter that can appear an error message regarding the peering between bgp neighbors along the loopback interface. As i experienced the problem during the configuration i received a message like :" G;P-4-VPNV4NH_MASK : Nexthop 4.4.4.4 may not be reachable from neigbor 2.2.2.2 - not /32 mask". After wonder around some possible causes of the problem i remembered that changing the ospf network type we can influence the appearance of the mask of loopback interface. As we were running ospf i changed that under lo0 and everything worked like charme.So bgp expect always an host mask to form neighborship over vpnv4 address-family and if we pass it a network mask the neighborship will fail anyway.
Hi Lev,
Quick question, on the routers where you saw this error you already had MPLS LDP enabled on the interface? If so...what happens when you disable MPLS and keep the /24 on the interface without changing the OSPF network type?
Rene
Hi Rene,
yes the mpls part was completed, and the behaviour is the same without mpls enabled. I've paid more attention this time to the error and i noted that the redistribution of eigrp into bgp trigger the notification. It's like if eigrp routes before to reach bgp are influenced by ospf net-type. But i honestly can't figured out why because until have no redistribution seems everything fine...what you think about it?
Hi Lev,
Interesting. I thought it was only MPLS that had trouble with the /32. It's something i'll check in a lab...interesting
I have just logged out and in again, i can see them now.
Many thanks
Hi Rene,
I m also not able to see the topology file. Is it a zip. file or sth else? i have downloaded topologies for some other labs like VRF-Lite but that one. Could you please have a look?
Even if im already registered i only see this:
You need to register to be able to download the GNS3 Topology File. (Registration is Free!)
Thanks.
Hello Ersan,
If you login you can see them right below the Video. two zip files...startup and final configurations.
Just in case here's the download link:
http://gns3vault.com/attachments/article/79/MPLSVPNBasic.zip
Good luck!
Rene
Hi, Firstly I'd like to thank you for this lab, the resources and the videos, they've been very helpful. I've been working through the lab solution on your videos and I've gotten right to the end of Part 3. However the final 2 pings don't work for me. Even when I download the Final Configs from here, the last 2 pings don't work for me. Does anyone know why? Or what I could do to check?
I have been following the commands in the videos one by one and everything looks identical to your results e.g. if I run the "show ip route vrf CUSTOMER" command I get the same result as in the video. As I said it's just the last two pings to ensure that the HQ and the Branch have end to end connectivity that is failing.
Thanks,
John
Apologies, I just loaded up the topology and the configs again, and the ping is working this time. It's a bit of a mystery to be honest as I haven't done anything differently from last time. At least it's working now anyway, so thanks again!
Hi John,
There are a number of things to check when you are troubleshooting MPLS:
1. Check the BGP adjacency between the PE routers.
2. Check the VRF routing table and see if you can ping from the PE by using the VRF table (ping vrf
3. Check the BGP and IGP (OSPF, RIP, EIGRP) table/database to see if your redistribution is ok.
4. You can also check if there's a label by using the "show mpls ldp bindings" command.
It depends on the ISP solution, it's possible that you will get an Ethernet connection from the ISP to the customer.
For some of the labs I chose FastEthernet because you won't have any layer1 or layer2 issues. If the lab is about MPLS I don't want people to start struggling with layer1 or layer2 frame-relay issues or anything else so they only have to focus on MPLS
Question: Why use two Routing Protocols Within the Service Provider. Is this a realistic scenario ?? would the service Provider simple use a BGP route between them and the Customer?? Just curious. .
This is a good example of a real MPLS network. This is what happens:
- Within the MPLS "core" we will run an IGP like OSPF to advertise all the loopback interfaces.
- All the PE routers will run IBGP to exchange routing information.
- Beween the PE and CE (customer) routers you can use whatever routing protocol you like...OSPF, EIGRP but also BGP. It depends on the customer requirements.
Keep in mind that whatever the customer advertises to you will be stored in a VRF (virtual routing table).
I notice that mostly all the labs use Fast-Ethernet or Ethernet for making connection would WAN links be a more realistic representation of ISP connections over distance to the Customer or is their a draw back to this approach ??
I use the Ethernet / FastEthernet links to keep things simple. In this lab I'm just focusing on the MPLS part and it would be bad if you also have to think about layer 2 issues with PPP, HDLC or Frame-Relay
Hi Rene,
I would like to thank you for the free video lab's. I took a look at all the labs. I wached the basic mpls vpn video and I appreciated so much that I tried to implment it in my own and it took me so much time to be able to do it.
I have only a small feedback, namely when implementing the video's. My remak is that you type very fast and ypu give very little explanation fo the command you are enering. I am CCNA and have a baisc MPLS and routing protocols and theri implementation.
So, please try to have more time during you explanation especially for the beginners and your video's will be very valuable and competitive. May thanks for help.
Hi Mobazi,
Thanks for your kind words and comments. In my future videos I'll make sure to type a bit slower and take my time to explain things. I do "assume" however that people have read/learned a bit about the background theory of the protocols because it's hard to explain theory + the implementation at the same time I hope it's helpful to you and i'll do my best in the future!
Rene
excellent LAB loved watching it..... Appreciation and thank you for the effort.... One thing I would like to notify here is I am not able to download the zip files attached to LAB can you please help....
Hi Mohammed,
Once you have registered and logged in you should be able to see the attachments of the bottom of each article. Can you see them?
Rene
