Configuring an Integrated IP RAN (PWE3 + L3VPN) with Ethernet NodeBs

Networking Requirements

The integrated L2VPN access to L3VPN solution allows Ethernet NodeBs to communicate with Radio Network Controllers (RNCs). It terminates the L2VPN and connects the L3VPN on a SR by creating a Virtual Ethernet group (VE-group). PW redundancy is configured to protect PWs on the L2VPN and VPN FRR is configured to protect links on the L3VPN, providing reliable connections for services. H-VPLS or PWE3 can be used to construct the L2VPN. This example uses PWE3. This scheme has the following characteristics.

L2VPN Type	PWE3
PW Redundancy Mode	Independent mode
Type of the PW Between SR1 and SR2	Bypass PW
Tunnel Type and Tunnel Protection	TE tunnel with tunnel protection
Implementation Characteristics	Two-level protection (tunnel protection and PW protection) is provided, improving reliability.
	PW redundancy in independent mode allows a public network fault to trigger only the public network link switchover.
	MAC address learning is not required. IP-interworking is supported.

Figure 1 Networking diagram for configuring an integrated IP RAN (PWE3 + L3VPN) with Ethernet NodeBs

Device	Interface	Peer Device	IP Address
CSG	GE1/0/1	SR1	172.0.1.1/24
	GE1/0/2	SR2	172.0.4.1/24
	GE1/0/3	NodeB	–
SR1	GE1/0/0	SR2	172.0.2.2/24
	GE1/0/1	CSG	172.0.1.2/24
	GE1/0/3	RSG1	172.0.3.1/24
	GE1/0/4	RSG2	172.0.8.0/24
SR2	GE1/0/0	SR1	172.0.2.1/24
	GE1/0/2	CSG	172.0.4.2/24
	GE1/0/3	RSG2	172.0.6.1/24
	GE1/0/4	RSG1	172.0.7.1/24
RSG1	GE1/0/0	RSG2	–
	GE1/0/1	SR1	172.0.3.2/24
	GE1/0/2	SR2	172.0.7.2/24
	GE1/0/3	RNC	–
RSG2	GE1/0/0	RSG1	–
	GE1/0/1	SR2	172.0.6.2/24
	GE1/0/2	SR1	172.0.8.2/24/24
	GE1/0/3	RNC	–

Configuration Roadmap

The configuration roadmap is as follows:

Configure IP addresses and routes.
Configure MPLS and public network tunnels:
- Configure a TE tunnel protection group on the CSG and SRs.
- Configure LSPs between SRs and RSGs.
Configure PW redundancy in independent mode:
- Configure MPLS LDP remote sessions between the CSG and SRs.
- Configure service PWs.
- Configure an mPW and associate the bypass PW with the mPW.
- Configure BFD to monitor the mPW.
- Configure VRRP to determine the primary PW.
Configure an L3VPN.
- Configure VPN instances on SR1 and RSGs.
- Configure a VE group on SRs and bind the VPN instance to the L3VE sub-interfaces.
- Establish MP-IBGP peer relationships between SRs and RSGs.
- Import direct VPN routes to SRs and RSGs.
- Configure VPN FRR.
Configure BFD to detect faults on public network links.
Configure VRRP on RSGs to determine their roles in the VRRP backup group.

Data Preparation

To complete the configuration, you need the following data:

Interface number, interface IP address, and OSPF process ID
LSR ID
L2VC destination address, VC ID, and VC type
BFD session name, local discriminator, and remote discriminator
VE group number
VRRP backup group number and priority

Procedure

Assign an IP address to and configure a routing protocol on each interface.
1. Assign an IP address to each interface.
2. Configure a routing protocol on the CSG, SR1, SR2, RSG1, and RSG2 to make them routable. In this example, OSPF is used.
After the configuration is complete, run the display ip routing-table command on the CSG, SRs, and RSGs. You can view the routes learned from each other. Note that when configuring OSPF, you need to advertise 32-bit loopback interface addresses (LSR IDs) of the CSG, SRs, and RSGs.

The detailed configuration is not mentioned here.

Configure basic MPLS functions and public network tunnels.

NOTE:

Configure explicit paths between the CSG and SR1 and between the CSG and SR2.
Configure LSPs between SRs and between SRs and RSGs.
Enable RSVP GR, LDP GR, and OSPF GR to enhance the switching performance.

Enable MPLS TE and RSVP-TE and configure CSPF and OSPF TE.

# Configure the CSG.

[CSG] mpls lsr-id 1.1.1.1

[CSG] mpls

[CSG-mpls] mpls te

[CSG-mpls] mpls rsvp-te

[CSG-mpls] mpls rsvp-te hello

[CSG-mpls] mpls rsvp-te hello full-gr

[CSG-mpls] mpls te cspf

[CSG-mpls] quit

[CSG] interface GigabitEthernet1/0/1

[CSG-GigabitEthernet1/0/1] mpls

[CSG-GigabitEthernet1/0/1] mpls te

[CSG-GigabitEthernet1/0/1] mpls rsvp-te

[CSG-GigabitEthernet1/0/1] mpls rsvp-te hello

[CSG-GigabitEthernet1/0/1] quit

[CSG] interface GigabitEthernet1/0/2

[CSG-GigabitEthernet1/0/2] mpls

[CSG-GigabitEthernet1/0/2] mpls te

[CSG-GigabitEthernet1/0/2] mpls rsvp-te

[CSG-GigabitEthernet1/0/2] mpls rsvp-te hello

[CSG-GigabitEthernet1/0/2] quit

[CSG] ospf 100

[CSG-ospf-100] opaque-capability enable

[CSG-ospf-100] graceful-restart

[CSG-ospf-100] area 0

[CSG-ospf-100-area-0.0.0.0] mpls-te enable

[CSG-ospf-100-area-0.0.0.0] quit

[CSG-ospf-100] quit

# Configure SR1.

[SR1] mpls lsr-id 2.2.2.2

[SR1] mpls

[SR1-mpls] mpls te

[SR1-mpls] mpls rsvp-te

[SR1-mpls] mpls rsvp-te hello

[SR1-mpls] mpls rsvp-te hello full-gr

[SR1-mpls] mpls te cspf

[SR1-mpls] quit

[SR1] mpls ldp

[SR1-mpls-ldp] graceful-restart

[SR1-mpls-ldp] quit

[SR1] interface gigabitEthernet1/0/1

[SR1-GigabitEthernet1/0/1] mpls

[SR1-GigabitEthernet1/0/1] mpls te

[SR1-GigabitEthernet1/0/1] mpls rsvp-te

[SR1-GigabitEthernet1/0/1] mpls rsvp-te hello

[SR1-GigabitEthernet1/0/1] quit

[SR1] interface gigabitEthernet1/0/3

[SR1-GigabitEthernet1/0/3] mpls

[SR1-GigabitEthernet1/0/3] mpls ldp

[SR1-GigabitEthernet1/0/3] quit

[SR1] interface GigabitEthernet1/0/0

[SR1-GigabitEthernet1/0/0] mpls

[SR1-GigabitEthernet1/0/0] mpls ldp

[SR1-GigabitEthernet1/0/0] quit

[SR1] interface GigabitEthernet1/0/4

[SR1-GigabitEthernet1/0/4] mpls

[SR1-GigabitEthernet1/0/4] mpls ldp

[SR1-GigabitEthernet1/0/4] quit

[SR1] ospf 100

[SR1-ospf-100] opaque-capability enable

[SR1-ospf-100] graceful-restart

[SR1-ospf-100] area 0

[SR1-ospf-100-area-0.0.0.0] mpls-te enable

[SR1-ospf-100-area-0.0.0.0] quit

[SR1-ospf-100] quit

# Configure SR2.

[SR2] mpls lsr-id 3.3.3.3

[SR2] mpls

[SR2-mpls] mpls te

[SR2-mpls] mpls rsvp-te

[SR2-mpls] mpls rsvp-te hello

[SR2-mpls] mpls rsvp-te hello full-gr

[SR2-mpls] mpls te cspf

[SR2-mpls] quit

[SR2-mpls-ldp] mpls ldp

[SR2] graceful-restart

[SR2-mpls-ldp] quit

[SR2] interface gigabitEthernet1/0/2

[SR2-GigabitEthernet1/0/2] mpls

[SR2-GigabitEthernet1/0/2] mpls te

[SR2-GigabitEthernet1/0/2] mpls rsvp-te

[SR2-GigabitEthernet1/0/2] mpls rsvp-te hello

[SR2-GigabitEthernet1/0/2] quit

[SR2] interface gigabitEthernet1/0/3

[SR2-GigabitEthernet1/0/3] mpls

[SR2-GigabitEthernet1/0/3] mpls ldp

[SR2-GigabitEthernet1/0/3] quit

[SR2] interface GigabitEthernet1/0/0

[SR2-GigabitEthernet1/0/0] mpls

[SR2-GigabitEthernet1/0/0] mpls ldp

[SR2-GigabitEthernet1/0/0] quit

[SR2] interface GigabitEthernet1/0/4

[SR2-GigabitEthernet1/0/4] mpls

[SR2-GigabitEthernet1/0/4] mpls ldp

[SR2-GigabitEthernet1/0/4] quit

[SR2] ospf 100

[SR2-ospf-100] opaque-capability enable

[SR2-ospf-100] graceful-restart

[SR2-ospf-100] area 0

[SR2-ospf-100-area-0.0.0.0] mpls-te enable

[SR2-ospf-100-area-0.0.0.0] quit

[SR2-ospf-100] quit

# Configure RSG1.

[RSG1] mpls lsr-id 4.4.4.4

[RSG1] mpls

[RSG1-mpls] quit

[RSG1] mpls ldp

[RSG1-mpls-ldp] graceful-restart

[RSG1-mpls-ldp] quit

[RSG1] interface GigabitEthernet1/0/1

[RSG1-GigabitEthernet1/0/1] mpls

[RSG1-GigabitEthernet1/0/1] mpls ldp

[RSG1-GigabitEthernet1/0/1] quit

[RSG1] interface GigabitEthernet1/0/2

[RSG1-GigabitEthernet1/0/2] mpls

[RSG1-GigabitEthernet1/0/2] mpls ldp

[RSG1-GigabitEthernet1/0/2] quit

[RSG1] ospf 100

[RSG1-ospf-100] opaque-capability enable

[RSG1-ospf-100] graceful-restart

[RSG1-ospf-100] quit

# Configure RSG2.

[RSG2] mpls lsr-id 5.5.5.5

[RSG2] mpls

[RSG2-mpls] quit

[RSG2] mpls ldp

[RSG2-mpls-ldp] graceful-restart

[RSG2-mpls-ldp] quit

[RSG2] interface GigabitEthernet1/0/1

[RSG2-GigabitEthernet1/0/1] mpls

[RSG2-GigabitEthernet1/0/1] mpls ldp

[RSG2-GigabitEthernet1/0/1] quit

[RSG2] interface GigabitEthernet1/0/2

[RSG2-GigabitEthernet1/0/2] mpls

[RSG2-GigabitEthernet1/0/2] mpls ldp

[RSG2-GigabitEthernet1/0/2] quit

[RSG2] ospf 100

[RSG2-ospf-100] opaque-capability enable

[RSG2-ospf-100] graceful-restart

[RSG2-ospf-100] quit

Configure explicit paths for the primary and backup MPLS TE tunnels.

# Configure the CSG.

[CSG] explicit-path to_sr1

[CSG-explicit-path-to_sr1] next hop 172.0.1.2

[CSG-explicit-path-to_sr1] next hop 2.2.2.2

[CSG-explicit-path-to_sr1] quit

[CSG] explicit-path to_sr2

[CSG-explicit-path-to_sr2] next hop 172.0.4.2

[CSG-explicit-path-to_sr2] next hop 3.3.3.3

[CSG-explicit-path-to_sr2] quit

# Configure SR1.

[SR1] explicit-path to_csg

[SR1-explicit-path-to_csg] next hop 172.0.1.1

[SR1-explicit-path-to_csg] next hop 1.1.1.1

[SR1-explicit-path-to_csg] quit

# Configure SR2.

[SR2] explicit-path to_csg

[SR2-explicit-path-to_csg] next hop 172.0.4.1

[SR2-explicit-path-to_csg] next hop 1.1.1.1

[SR2-explicit-path-to_csg] quit

Configure MPLS TE tunnel interfaces and hot backup.

# Configure the CSG.

[CSG] interface tunnel 1/0/1

[CSG-Tunnel1/0/1] ip address unnumbered interface loopback 0

[CSG-Tunnel1/0/1] tunnel-protocol mpls te

[CSG-Tunnel1/0/1] destination 2.2.2.2

[CSG-Tunnel1/0/1] mpls te tunnel-id 100

[CSG-Tunnel1/0/1] mpls te record-route

[CSG-Tunnel1/0/1] mpls te signal-protocol rsvp-te

[CSG-Tunnel1/0/1] mpls te path explicit-path to_sr1

[CSG-Tunnel1/0/1] mpls te backup hot-standby wtr 15

[CSG-Tunnel1/0/1] mpls te reserved-for-binding

[CSG-Tunnel1/0/1] mpls te commit

[CSG-Tunnel1/0/1] quit

[CSG] interface tunnel 1/0/2

[CSG-Tunnel1/0/2] ip address unnumbered interface loopback 0

[CSG-Tunnel1/0/2] tunnel-protocol mpls te

[CSG-Tunnel1/0/2] destination 3.3.3.3

[CSG-Tunnel1/0/2] mpls te tunnel-id 200

[CSG-Tunnel1/0/2] mpls te record-route

[CSG-Tunnel1/0/2] mpls te signal-protocol rsvp-te

[CSG-Tunnel1/0/2] mpls te path explicit-path to_sr2

[CSG-Tunnel1/0/2] mpls te backup hot-standby wtr 15

[CSG-Tunnel1/0/2] mpls te reserved-for-binding

[CSG-Tunnel1/0/2] mpls te commit

[CSG-Tunnel1/0/2] quit

# Configure SR1.

[SR1] interface tunnel 1/0/1

[SR1-Tunnel1/0/1] ip address unnumbered interface loopback 0

[SR1-Tunnel1/0/1] tunnel-protocol mpls te

[SR1-Tunnel1/0/1] destination 1.1.1.1

[SR1-Tunnel1/0/1] mpls te tunnel-id 100

[SR1-Tunnel1/0/1] mpls te record-route

[SR1-Tunnel1/0/1] mpls te signal-protocol rsvp-te

[SR1-Tunnel1/0/1] mpls te path explicit-path to_csg

[SR1-Tunnel1/0/1] mpls te backup hot-standby wtr 15

[SR1-Tunnel1/0/1] mpls te reserved-for-binding

[SR1-Tunnel1/0/1] mpls te commit

[SR1-Tunnel1/0/1] quit

# Configure SR2.

[SR2] interface tunnel 1/0/2

[SR2-Tunnel1/0/2] ip address unnumbered interface loopback 0

[SR2-Tunnel1/0/2] tunnel-protocol mpls te

[SR2-Tunnel1/0/2] destination 1.1.1.1

[SR2-Tunnel1/0/2] mpls te tunnel-id 200

[SR2-Tunnel1/0/1] mpls te record-route

[SR2-Tunnel1/0/2] mpls te signal-protocol rsvp-te

[SR2-Tunnel1/0/2] mpls te path explicit-path to_csg

[SR2-Tunnel1/0/1] mpls te backup hot-standby wtr 15

[SR2-Tunnel1/0/2] mpls te reserved-for-binding

[SR2-Tunnel1/0/2] mpls te commit

[SR2-Tunnel1/0/2] quit

Configure a tunnel policy.

# Configure the CSG.

[CSG] tunnel-policy policy1

[CSG-tunnel-policy-policy1] tunnel binding destination 2.2.2.2 te Tunnel1/0/1

[CSG-tunnel-policy-policy1] tunnel binding destination 3.3.3.3 te Tunnel1/0/2

[CSG-tunnel-policy-policy1] quit

# Configure SR1.

[SR1] tunnel-policy policy1

[SR1-tunnel-policy-policy1] tunnel binding destination 1.1.1.1 te Tunnel1/0/1

[SR1-tunnel-policy-policy1] quit

# Configure SR2.

[SR2] tunnel-policy policy1

[SR2-tunnel-policy-policy1] tunnel binding destination 1.1.1.1 te Tunnel1/0/2

[SR2-tunnel-policy-policy1] quit

Configure PW redundancy.

Configure MPLS LDP remote sessions between the CSG and SRs.

NOTE:

In this configuration example, TE tunnels are configured between the CSG and SRs, and thus MPLS LDP is not required. PWE3, however, uses extended LDP signaling to distribute VPN labels. Therefore, MPLS LDP remote sessions have to be configured between the CSG and SRs. An LDP LSP is configured to directly connect SRs, and thus no LDP remote session needs to be configured between SRs.

# Configure the CSG.

[CSG] mpls ldp

[CSG-mpls-ldp] quit

[CSG] mpls ldp remote-peer 2.2.2.2

[CSG-mpls-ldp-remote-2.2.2.2] remote-ip 2.2.2.2

[CSG-mpls-ldp-remote-2.2.2.2] quit

[CSG] mpls ldp remote-peer 3.3.3.3

[CSG-mpls-ldp-remote-3.3.3.3] remote-ip 3.3.3.3

[CSG-mpls-ldp-remote-3.3.3.3] quit

# Configure SR1.

[SR1] mpls ldp

[SR1-mpls-ldp] quit

[SR1] mpls ldp remote-peer 1.1.1.1

[SR1-mpls-ldp-remote-1.1.1.1] remote-ip 1.1.1.1

[SR1-mpls-ldp-remote-1.1.1.1] quit

# Configure SR2.

[SR2] mpls ldp

[SR2-mpls-ldp] quit

[SR2] mpls ldp remote-peer 1.1.1.1

[SR2-mpls-ldp-remote-1.1.1.1] remote-ip 1.1.1.1

[SR2-mpls-ldp-remote-1.1.1.1] quit

# Verify the configuration. Run the display mpls ldp session all command on the CSG and SRs to check whether the LDP session status is Operational. If the LDP session status is Operational, the LDP session is established. Use the CSG as an example.

[CSG] display mpls ldp session all

 LDP Session(s) in Public Network
 Codes: LAM(Label Advertisement Mode), SsnAge Unit(DDDD:HH:MM)
 A '*' before a session means the session is being deleted.
 ------------------------------------------------------------------------------
 PeerID             Status      LAM  SsnRole  SsnAge      KASent/Rcv
 ------------------------------------------------------------------------------
 2.2.2.2:0          Operational DU   Passive  0000:00:47  190/190
 3.3.3.3:0          Operational DU   Passive  0000:00:47  190/190
 ------------------------------------------------------------------------------
 TOTAL: 2 session(s) Found.

Configure service PWs.

# Configure the CSG.

[CSG] mpls l2vpn

[CSG-l2vpn] quit

[CSG] interface GigabitEthernet1/0/3

[CSG-GigabitEthernet1/0/3] undo shutdown

[CSG-GigabitEthernet1/0/3] quit

[CSG] interface GigabitEthernet1/0/3.10

[CSG-GigabitEthernet1/0/3.10] vlan-type dot1q 10

[CSG-GigabitEthernet1/0/3.10] mpls l2vc 2.2.2.2 100 tunnel-policy policy1

[CSG-GigabitEthernet1/0/3.10] mpls l2vc 3.3.3.3 200 secondary tunnel-policy policy1

[CSG-GigabitEthernet1/0/3.10] mpls l2vpn redundancy independent

[CSG-GigabitEthernet1/0/3.10] mpls l2vpn stream-dual-receiving

[CSG-GigabitEthernet1/0/3.10] quit

# Configure SR1.

[SR1] mpls l2vpn

[SR1-l2vpn] quit

[SR1] interface virtual-ethernet 1/0/0

[SR1-Virtual-Ethernet1/0/0] ve-group 1 l2-terminate

[SR1-Virtual-Ethernet1/0/0] quit

[SR1] interface virtual-ethernet 1/0/0.1

[SR1-Virtual-Ethernet1/0/0.1] vlan-type dot1q 10

[SR1-Virtual-Ethernet1/0/0.1] mpls l2vc 1.1.1.1 100 tunnel-policy policy1

[SR1-Virtual-Ethernet1/0/0.1] mpls l2vc 3.3.3.3 300 bypass

[SR1-Virtual-Ethernet1/0/0.1] quit

# Configure SR2.

[SR2] mpls l2vpn

[SR2-l2vpn] quit

[SR2] interface virtual-ethernet 1/0/0

[SR2-Virtual-Ethernet1/0/0] ve-group 1 l2-terminate

[SR1-Virtual-Ethernet1/0/0] quit

[SR2] interface virtual-ethernet 1/0/0.1

[SR2-Virtual-Ethernet1/0/0.1] mpls l2vc 1.1.1.1 200 tunnel-policy policy1

[SR2-Virtual-Ethernet1/0/0.1] mpls l2vc 2.2.2.2 300 bypass

[SR2-Virtual-Ethernet1/0/0.1] quit

Configure an mPW and a bypass PW, and then associate the bypass PW with the mPW.

# Configure SR1.

[SR1] interface loopback 1

[SR1-LoopBack1] mpls l2vc 3.3.3.3 400 control-word admin

[SR1-LoopBack1] quit

[SR1] interface virtual-ethernet 1/0/0.1

[SR1-Virtual-Ethernet1/0/0.1] mpls l2vc bypass track admin-vc interface LoopBack1

[SR1-Virtual-Ethernet1/0/0.1] quit

# Configure SR2.

[SR2] interface loopback 1

[SR2-LoopBack1] mpls l2vc 2.2.2.2 400 control-word admin

[SR2-LoopBack1] quit

[SR2] interface virtual-ethernet 1/0/0.1

[SR2-Virtual-Ethernet1/0/0.1] mpls l2vc bypass track admin-vc interface LoopBack1

[SR2-Virtual-Ethernet1/0/0.1] quit

# Verify the configuration. Run the display mpls l2vc brief command on the CSG and SRs. You can view that service PWs and the mPW are in the Up state. Use SR1 as an example.

[SR1] display mpls l2vc brief

 Total ldp vc : 3     3 up       0 down

 *Client Interface     : Virtual-Ethernet1/0/0.1
  Administrator PW     : no
  AC status            : up
  VC State             : up
  Label state          : 0
  Token state          : 0
  VC ID                : 100
  VC Type              : VLAN
  session state        : up
  Destination          : 1.1.1.1
  link state           : up

 *Client Interface     : Virtual-Ethernet1/0/0.1
  Administrator PW     : no
  AC status            : up
  VC State             : up
  Label state          : 0
  Token state          : 0
  VC ID                : 300
  VC Type              : VLAN
  session state        : up
  Destination          : 3.3.3.3
  link state           : up

 *Client Interface     : LoopBack1
  Administrator PW     : yes
  AC status            : up
  VC State             : up
  Label state          : 0
  Token state          : 0
  VC ID                : 400
  VC Type              : IP-interworking
  session state        : up
  Destination          : 3.3.3.3
  link state           : up

Configure BFD to monitor the mPW.

# Configure SR1.

[SR1] bfd

[SR1-bfd] quit

[SR1] bfd bypass bind pw interface loopback 1

[SR1-bfd-lsp-session-SR1] discriminator local 2

[SR1-bfd-lsp-session-SR1] discriminator remote 2

[SR1-bfd-lsp-session-SR1] commit

[SR1-bfd-lsp-session-SR1] quit

# Configure SR2.

[SR2] bfd

[SR2-bfd] quit

[SR2] bfd bypass bind pw interface loopback 1

[SR2-bfd-lsp-session-SR2] discriminator local 2

[SR2-bfd-lsp-session-SR2] discriminator remote 2

[SR2-bfd-lsp-session-SR2] commit

[SR2-bfd-lsp-session-SR2] quit

# Verify the configuration. Run the display bfd session all command on SRs. You can view that BFD sessions are in the Up state. Use SR1 as an example.

[SR1] display bfd session all

--------------------------------------------------------------------------------
Local Remote PeerIpAddr      State     Type        InterfaceName
--------------------------------------------------------------------------------
2     2      --.--.--.--     Up        S_PW(M)     LoopBack1
--------------------------------------------------------------------------------
     Total UP/DOWN Session Number : 1/0

Configure VRRP to determine the primary PW.

NOTE:

If PW redundancy in independent mode is used, VRRP has to be configured on SRs to determine which SR is the master in the VRRP backup group. After PWs are associated with mVRRP, the primary PW is determined.

# Configure SR1.

[SR1] interface gigabitethernet 1/0/0

[SR1-GigabitEthernet1/0/0] vrrp vrid 20 virtual-ip 172.0.2.3

[SR1-GigabitEthernet1/0/0] admin-vrrp vrid 20 ignore-if-down

[SR1-GigabitEthernet1/0/0] vrrp vrid 20 priority 150

[SR1-GigabitEthernet1/0/0] quit

[SR1] interface virtual-ethernet 1/0/0.1

[SR1-Virtual-Ethernet1/0/0.1] mpls l2vc track admin-vrrp interface gigabitethernet 1/0/0 vrid 20 pw-redundancy

[SR1-Virtual-Ethernet1/0/0.1] quit

# Configure SR2.

[SR2] interface gigabitethernet 1/0/0

[SR2-GigabitEthernet1/0/0] vrrp vrid 20 virtual-ip 172.0.2.3

[SR2-GigabitEthernet1/0/0] admin-vrrp vrid 20 ignore-if-down

[SR2-GigabitEthernet1/0/0] quit

[SR2] interface virtual-ethernet 1/0/0.1

[SR2-Virtual-Ethernet1/0/0.1] mpls l2vc track admin-vrrp interface gigabitethernet 1/0/0 vrid 20 pw-redundancy

[SR2-Virtual-Ethernet1/0/0.1] quit

# Verify the configuration. Run the display vrrp command on SRs. You can view the role of each SR in the VRRP backup group. Use SR1 as an example. The default VRRP priority value is 100, and thus SR1 whose VRRP priority value is set to 150 functions as the master in the VRRP backup group.

[SR1] display vrrp

  GigabitEthernet1/0/0 | Virtual Router 1
    State : Master
    Virtual IP : 172.0.2.3
    Master IP : 172.0.2.2
    PriorityRun : 150
    PriorityConfig : 150
    MasterPriority : 150
    Preempt : YES   Delay Time : 0
    TimerRun : 1
    TimerConfig : 1
    Auth Type : NONE
    Virtual Mac :  0000-5e00-0101
    Check TTL : YES
    Config type : admin-vrrp
    Create time : 2010-09-05 15:25:47
    Last change time : 2010-09-05 15:25:51

[RSG1] display vrrp

  Vlanif10 | Virtual Router 1
    State : Master
    Virtual IP : 120.0.1.3
    Master IP : 120.0.1.1
    PriorityRun : 150
    PriorityConfig : 150
    MasterPriority : 150
    Preempt : YES   Delay Time : 0
    TimerRun : 1
    TimerConfig : 1
    Auth Type : NONE
    Virtual Mac :  0000-5e00-0101
    Check TTL : YES
    Config type : normal-vrrp
    Create time : 2010-09-14 19:39:27
    Last change time : 2010-09-14 19:39:30

Configure an L3VPN.

Configure a VPN instance on SR1 and RSG1, and then bind the VPN instance to interfaces.

# The configuration on SR1 is as follows, the same as the configuration on SR2.

[SR1] ip vpn-instance vpna

[SR1-vpn-instance-vpna] ipv4-family

[SR1-vpn-instance-vpna-af-ipv4] route-distinguisher 1:1

[SR1-vpn-instance-vpna-af-ipv4] vpn-target 1:1

[SR1-vpn-instance-vpna-af-ipv4] quit

[SR1] interface virtual-ethernet 1/0/1

[SR1-Virtual-Ethernet1/0/1] ve-group 1 l3-access

[SR1-Virtual-Ethernet1/0/1] quit

[SR1] interface virtual-ethernet 1/0/1.1

[SR1-Virtual-Ethernet1/0/1.1] vlan-type dot1q 10

[SR1-Virtual-Ethernet1/0/1.1] ip binding vpn-instance vpna

[SR1-Virtual-Ethernet1/0/1.1] ip address 120.0.0.2 24

[SR1-Virtual-Ethernet1/0/1.1] quit

# The configuration on RSG1 is as follows, the same as the configuration on RSG2.

[RSG1] ip vpn-instance vpna

[RSG1-vpn-instance-vpna] ipv4-family

[RSG1-vpn-instance-vpna-af-ipv4] route-distinguisher 1:1

[RSG1-vpn-instance-vpna-af-ipv4] vpn-target 1:1

[RSG1-vpn-instance-vpna-af-ipv4] quit

[RSG1] interface GigabitEthernet1/0/3

[RSG1-GigabitEthernet1/0/3] portswitch

[RSG1-GigabitEthernet1/0/3] port link-type trunk

[RSG1-GigabitEthernet1/0/3] port trunk allow-pass vlan 10

[RSG1-GigabitEthernet1/0/3] quit

[RSG1] interface GigabitEthernet1/0/0

[RSG1-GigabitEthernet1/0/0] portswitch

[RSG1-GigabitEthernet1/0/0] port link-type trunk

[RSG1-GigabitEthernet1/0/0] port trunk allow-pass vlan 10

[RSG1-GigabitEthernet1/0/0] quit

[RSG1] vlan 10

[RSG1-vlan10] quit

[RSG1] interface Vlanif 10

[RSG1-Vlanif10] ip binding vpn-instance vpna

[RSG1-Vlanif10] ip address 120.0.1.1 24

[RSG1-Vlanif10] quit

Establish MP-IBGP peer relationships between SRs and RSGs.

# The configuration on SR2 is as follows, the same as the configuration on SR1.

[SR2] bgp 100

[SR2-bgp] graceful-restart

[SR2-bgp] peer 2.2.2.2 as-number 100

[SR2-bgp] peer 2.2.2.2 connect-interface LoopBack0

[SR2-bgp] peer 4.4.4.4 as-number 100

[SR2-bgp] peer 4.4.4.4 connect-interface LoopBack0

[SR2-bgp] peer 5.5.5.5 as-number 100

[SR2-bgp] peer 5.5.5.5 connect-interface LoopBack0

[SR2-bgp] ipv4-family vpnv4

[SR2-bgp-af-vpnv4] peer 2.2.2.2 enable

[SR2-bgp-af-vpnv4] peer 4.4.4.4 enable

[SR2-bgp-af-vpnv4] peer 5.5.5.5 enable

[SR2-bgp-af-vpnv4] quit

# The configuration on RSG1 is as follows, the same as the configuration on RSG2.

[RSG1] bgp 100

[RSG1-bgp] graceful-restart

[RSG1-bgp] peer 2.2.2.2 as-number 100

[RSG1-bgp] peer 2.2.2.2 connect-interface LoopBack0

[RSG1-bgp] peer 3.3.3.3 as-number 100

[RSG1-bgp] peer 3.3.3.3 connect-interface LoopBack0

[RSG1-bgp] peer 5.5.5.5 as-number 100

[RSG1-bgp] peer 5.5.5.5 connect-interface LoopBack0

[RSG1-bgp] ipv4-family vpnv4

[RSG1-bgp-af-vpnv4] peer 2.2.2.2 enable

[RSG1-bgp-af-vpnv4] peer 3.3.3.3 enable

[RSG1-bgp-af-vpnv4] peer 5.5.5.5 enable

[RSG1-bgp-af-vpnv4] quit

Import direct VPN routes to SRs and RSGs.

# The configuration on SR2 is as follows, the same as the configuration on SR1.

[SR2-bgp] ipv4-family vpn-instance vpna

[SR2-bgp-vpna] import-route direct

[SR2-bgp-vpna] quit

[SR2-bgp] quit

# The configuration on RSG1 is as follows, the same as the configuration on RSG2.

[RSG1-bgp] ipv4-family vpn-instance vpna

[RSG1-bgp-vpna] import-route direct

[RSG1-bgp-vpna] quit

[RSG1-bgp] quit

Configure VPN FRR.

# The configuration of RSG1 is as follows, the same as the configuration on SRs and RSG2.

[RSG1] ip vpn-instance vpna

[RSG1-vpn-instance-vpna-af-ipv4] vpn frr route-policy vpna

[RSG1-vpn-instance-vpna-af-ipv4] quit

[RSG1-vpn-instance-vpna] route-policy vpna permit node 5

[RSG1-route-policy] apply backup-nexthop auto

[RSG1-route-policy] quit

Configure VRRP on SR1 and SR2 to determine a gateway for Ethernet NodeBs.

# Configure SR1.

[SR1] interface virtual-ethernet 1/0/1.1

[SR1-Virtual-Ethernet1/0/1.1] vrrp vrid 10 virtual-ip 120.0.0.3

[SR1-Virtual-Ethernet1/0/1.1] vrrp vrid 10 track admin-vrrp interface gigabitethernet1/0/0 vrid 20

[SR1-Virtual-Ethernet1/0/1.1] quit

# Configure SR2.

[SR2] interface virtual-ethernet 1/0/1.1

[SR1-Virtual-Ethernet1/0/1.1] vrrp vrid 10 virtual-ip 120.0.0.3

[SR2-Virtual-Ethernet1/0/1.1] vrrp vrid 10 track admin-vrrp interface gigabitethernet1/0/0 vrid 20

[SR2-Virtual-Ethernet1/0/1.1] quit

Configure VRRP on RSGs to determine their roles in the VRRP backup group.

# Configure RSG1.
```
[RSG1] interface Vlanif 10
```
```
[RSG1-Vlanif10] vrrp vrid 1 virtual-ip 120.0.1.3
```
```
[RSG1-Vlanif10] vrrp vrid 1 priority 150
```
```
[RSG1-Vlanif10] quit
```
# Configure RSG2.
```
[RSG2] interface Vlanif 10
```
```
[RSG2-Vlanif10] vrrp vrid 1 virtual-ip 120.0.1.3
```
```
[RSG2-Vlanif10] quit
```
NOTE:
Configure the RNC as follows:
- Configure an Eth-Trunk link to determine the active and standby links.
- Configure a VLANIF interface and assign an IP address to the VLANIF interface. Ensure that the IP address is in the same network segment with the virtual IP addresses configured on RSGs.
On an Ethernet NodeB, you need to create a sub-interface on an Ethernet interface, encapsulate 802.1Q on the sub-interface, and associate a VLAN ID with the sub-interface.

Configuration Files

Configuration file of the CSG

#
 sysname CSG
#
 mpls lsr-id 1.1.1.1
 mpls
  mpls te
  mpls rsvp-te
  mpls rsvp-te hello
  mpls rsvp-te hello full-gr
  mpls te cspf
#
 mpls l2vpn
#
#
 explicit-path to_sr1
  next hop 172.0.1.2
  next hop 2.2.2.2
#
 explicit-path to_sr2
  next hop 172.0.4.2
  next hop 3.3.3.3
#
mpls ldp
 graceful-restart
#
#
 mpls ldp remote-peer 2.2.2.2
 remote-ip 2.2.2.2
#
 mpls ldp remote-peer 3.3.3.3
 remote-ip 3.3.3.3
#
interface GigabitEthernet1/0/1
 undo shutdown
 ip address 172.0.1.1 255.255.255.0
 mpls
 mpls te
 mpls rsvp-te
 mpls rsvp-te hello
#
interface GigabitEthernet1/0/2
 undo shutdown
 ip address 172.0.4.1 255.255.255.0
 mpls
 mpls te
 mpls rsvp-te
 mpls rsvp-te hello
#
interface GigabitEthernet1/0/3
 undo shutdown
#
interface GigabitEthernet1/0/3.10
 vlan-type dot1q 10
 mpls l2vc 2.2.2.2 100 tunnel-policy policy1
 mpls l2vc 3.3.3.3 200 tunnel-policy policy1 secondary
 mpls l2vpn redundancy independent
 mpls l2vpn stream-dual-receiving
#
interface LoopBack0
 ip address 1.1.1.1 255.255.255.255
#
interface Tunnel1/0/1
 ip address unnumbered interface LoopBack0
 tunnel-protocol mpls te
 destination 2.2.2.2
 mpls te tunnel-id 100
 mpls te record-route
 mpls te signal-protocol rsvp-te
 mpls te path explicit-path to_sr1
 mpls te backup hot-standby wtr 15
 mpls te reserved-for-binding
 mpls te commit
#
interface Tunnel1/0/2
 ip address unnumbered interface LoopBack0
 tunnel-protocol mpls te
 destination 3.3.3.3
 mpls te tunnel-id 200
 mpls te record-route
 mpls te signal-protocol rsvp-te
 mpls te path explicit-path to_sr2
 mpls te backup hot-standby wtr 15
 mpls te reserved-for-binding
 mpls te commit
#
ospf 100
 opaque-capability enable
 graceful-restart
 area 0.0.0.0
  network 1.1.1.1 0.0.0.0
  network 172.0.1.0 0.0.0.255
  network 172.0.4.0 0.0.0.255
  mpls-te enable
#
tunnel-policy policy1
 tunnel binding destination 2.2.2.2 te Tunnel1/0/1
 tunnel binding destination 3.3.3.3 te Tunnel1/0/2
#
bfd master bind pw interface GigabitEthernet1/0/3.10 remote-peer 2.2.2.2 pw-ttl auto-calculate
 discriminator local 2
 discriminator remote 2
 commit
#
return

Configuration file of SR1

#
 sysname SR1
#
ip vpn-instance vpna
 ipv4-family
  route-distinguisher 1:1
  vpn frr route-policy vpna
  vpn-target 1:1 export-extcommunity
  vpn-target 1:1 import-extcommunity
#
 bfd
#
 mpls lsr-id 2.2.2.2
 mpls
  mpls te
  mpls rsvp-te
  mpls rsvp-te hello
  mpls rsvp-te hello full-gr
  mpls te cspf
#
 mpls l2vpn
#
 explicit-path to_csg
  next hop 172.0.1.1
  next hop 1.1.1.1
#
mpls ldp
 graceful-restart
#
#
 mpls ldp remote-peer 1.1.1.1
 remote-ip 1.1.1.1
#
interface GigabitEthernet1/0/0
 undo shutdown
 ip address 172.0.2.2 255.255.255.0
 vrrp vrid 20 virtual-ip 172.0.2.3
 admin-vrrp vrid 20 ignore-if-down
 vrrp vrid 20 priority 150
 mpls
 mpls ldp
#
interface GigabitEthernet1/0/1
 undo shutdown
 ip address 172.0.1.2 255.255.255.0
 mpls
 mpls te
 mpls rsvp-te
 mpls rsvp-te hello
#
#
interface GigabitEthernet1/0/3
 undo shutdown
 ip address 172.0.3.1 255.255.255.0
 mpls
 mpls ldp
#
interface GigabitEthernet1/0/4
 undo shutdown
 ip address 172.0.8.1 255.255.255.0
 mpls
 mpls ldp
#
interface Virtual-Ethernet1/0/0
 ve-group 1 l2-terminate
#
interface Virtual-Ethernet1/0/0.1
 mpls l2vc 1.1.1.1 100 tunnel-policy policy1
 mpls l2vc track admin-vrrp interface GigabitEthernet1/0/0 vrid 20 pw-redundancy
 mpls l2vc 3.3.3.3 300 bypass
 mpls l2vc bypass track admin-vc interface LoopBack1
#
interface Virtual-Ethernet1/0/1
 ve-group 1 l3-access
#
interface Virtual-Ethernet1/0/1.1
 vlan-type dot1q 10
 ip binding vpn-instance vpna
 ip address 120.0.0.2 255.255.255.0
 vrrp vrid 10 virtual-ip 120.0.0.3
 vrrp vrid 10 track admin-vrrp interface GigabitEthernet1/0/0 vrid 20 
#
interface LoopBack0
 ip address 2.2.2.2 255.255.255.255
#
interface LoopBack1
 mpls l2vc 3.3.3.3 400 control-word admin
#
interface Tunnel1/0/1
 ip address unnumbered interface LoopBack0
 tunnel-protocol mpls te
 destination 1.1.1.1
 mpls te tunnel-id 100
 mpls te record-route
 mpls te signal-protocol rsvp-te
 mpls te path explicit-path to_csg
 mpls te backup hot-standby wtr 15
 mpls te reserved-for-binding
 mpls te commit
#
bgp 100
 graceful-restart
 peer 3.3.3.3 as-number 100
 peer 3.3.3.3 connect-interface LoopBack0
 peer 4.4.4.4 as-number 100
 peer 4.4.4.4 connect-interface LoopBack0
 peer 5.5.5.5 as-number 100
 peer 5.5.5.5 connect-interface LoopBack0
 #
 ipv4-family unicast
  undo synchronization
  peer 3.3.3.3 enable
  peer 4.4.4.4 enable
  peer 5.5.5.5 enable
 #
 ipv4-family vpnv4
  policy vpn-target
  peer 3.3.3.3 enable
  peer 4.4.4.4 enable
  peer 5.5.5.5 enable
 #
 ipv4-family vpn-instance vpna
  import-route direct
#
ospf 100
 opaque-capability enable
 graceful-restart
 area 0.0.0.0
  network 2.2.2.2 0.0.0.0
  network 172.0.1.0 0.0.0.255
  network 172.0.3.0 0.0.0.255
  network 172.0.2.0 0.0.0.255
  network 172.0.8.0 0.0.0.255
  mpls-te enable
#
route-policy vpna permit node 5
 apply backup-nexthop auto
#
tunnel-policy policy1
 tunnel binding destination 1.1.1.1 te Tunnel1/0/1
#
bfd bypass bind pw interface LoopBack1
 discriminator local 2
 discriminator remote 2
 commit
#
return

Configuration file of SR2

#
 sysname SR2
#
ip vpn-instance vpna
 ipv4-family
  route-distinguisher 1:1
  vpn frr route-policy vpna
  vpn-target 1:1 export-extcommunity
  vpn-target 1:1 import-extcommunity
#
 bfd
#
 mpls lsr-id 3.3.3.3
 mpls
  mpls te
  mpls rsvp-te
  mpls rsvp-te hello
  mpls rsvp-te hello full-gr
  mpls te cspf
#
 mpls l2vpn
#
 explicit-path to_csg
  next hop 172.0.4.1
  next hop 1.1.1.1
#
mpls ldp
 graceful-restart
#
#
 mpls ldp remote-peer 1.1.1.1
 remote-ip 1.1.1.1
#
interface GigabitEthernet1/0/0
 undo shutdown
 ip address 172.0.2.1 255.255.255.0
 vrrp vrid 20 virtual-ip 172.0.2.3
 admin-vrrp vrid 20 ignore-if-down
 mpls
 mpls ldp
#
interface GigabitEthernet1/0/1
 undo shutdown
#
interface GigabitEthernet1/0/2
 undo shutdown
 ip address 172.0.4.2 255.255.255.0
 mpls
 mpls te
 mpls rsvp-te
#
interface GigabitEthernet1/0/3
 undo shutdown
 ip address 172.0.6.1 255.255.255.0
 mpls
 mpls ldp
#
interface GigabitEthernet1/0/4
 undo shutdown
 ip address 172.0.7.1 255.255.255.0
 mpls
 mpls ldp
#
interface Virtual-Ethernet1/0/0
 ve-group 1 l2-terminate
#
interface Virtual-Ethernet1/0/0.1
 mpls l2vc 1.1.1.1 200 tunnel-policy policy1
 mpls l2vc track admin-vrrp interface GigabitEthernet1/0/0 vrid 20 pw-redundancy
 mpls l2vc 2.2.2.2 300 bypass
 mpls l2vc bypass track admin-vc interface LoopBack1
#
interface Virtual-Ethernet1/0/1
 ve-group 1 l3-access
#
interface Virtual-Ethernet1/0/1.1
 vlan-type dot1q 10
 ip binding vpn-instance vpna
 ip address 120.0.0.4 255.255.255.0
 vrrp vrid 10 virtual-ip 120.0.0.3
 vrrp vrid 10 track admin-vrrp interface GigabitEthernet1/0/0 vrid 20 
#
interface LoopBack0
 ip address 3.3.3.3 255.255.255.255
#
interface LoopBack1
 mpls l2vc 2.2.2.2 400 control-word admin
#
interface Tunnel1/0/2
 ip address unnumbered interface LoopBack0
 tunnel-protocol mpls te
 destination 1.1.1.1
 mpls te tunnel-id 200
 mpls te record-route
 mpls te signal-protocol rsvp-te
 mpls te path explicit-path to_csg
 mpls te backup hot-standby wtr 15
 mpls te reserved-for-binding
 mpls te commit
#
bgp 100
 graceful-restart
 peer 2.2.2.2 as-number 100
 peer 2.2.2.2 connect-interface LoopBack0
 peer 4.4.4.4 as-number 100
 peer 4.4.4.4 connect-interface LoopBack0
 peer 5.5.5.5 as-number 100
 peer 5.5.5.5 connect-interface LoopBack0
 #
 ipv4-family unicast
  undo synchronization
  peer 2.2.2.2 enable
  peer 4.4.4.4 enable
  peer 5.5.5.5 enable
 #
 ipv4-family vpnv4
  policy vpn-target
  peer 2.2.2.2 enable
  peer 4.4.4.4 enable
  peer 5.5.5.5 enable
 #
 ipv4-family vpn-instance vpna
  import-route direct
#
ospf 100
 opaque-capability enable
 graceful-restart
 area 0.0.0.0
  network 3.3.3.3 0.0.0.0
  network 172.0.2.0 0.0.0.255
  network 172.0.7.0 0.0.0.255
  network 172.0.4.0 0.0.0.255
  network 172.0.6.0 0.0.0.255
  mpls-te enable
#
tunnel-policy policy1
 tunnel binding destination 1.1.1.1 te Tunnel1/0/2
#
route-policy vpna permit node 5
 apply backup-nexthop auto
#
tunnel-policy policy1
 tunnel binding destination 1.1.1.1 te Tunnel1/0/2
#
bfd bypass bind pw interface LoopBack1
 discriminator local 2
 discriminator remote 2
 commit
#
return

Configuration file of RSG1

#
 sysname RSG1
#
 vlan batch 10
#
ip vpn-instance vpna
 ipv4-family
  route-distinguisher 1:1
  vpn frr route-policy vpna
  vpn-target 1:1 export-extcommunity
  vpn-target 1:1 import-extcommunity
#
 mpls lsr-id 4.4.4.4
#
 mpls l2vpn
#
mpls ldp
 graceful-restart
#
interface Vlanif10
 ip binding vpn-instance vpna
 ip address 120.0.1.1 255.255.255.0
 vrrp vrid 1 virtual-ip 120.0.1.3
 vrrp vrid 1 priority 150
#
interface GigabitEthernet1/0/0
 portswitch
 undo shutdown
 port link-type trunk
 port trunk allow-pass vlan 10
#
interface GigabitEthernet1/0/1
 undo shutdown
 ip address 172.0.3.2 255.255.255.0
 mpls
 mpls ldp
#
interface GigabitEthernet1/0/2
 undo shutdown
 ip address 172.0.7.2 255.255.255.0
 mpls
 mpls ldp
#
interface GigabitEthernet1/0/3
 portswitch
 undo shutdown
 port link-type trunk
 port trunk allow-pass vlan 10
#
interface LoopBack0
 ip address 4.4.4.4 255.255.255.255
#
bgp 100
 graceful-restart
 peer 2.2.2.2 as-number 100
 peer 2.2.2.2 connect-interface LoopBack0
 peer 3.3.3.3 as-number 100
 peer 3.3.3.3 connect-interface LoopBack0
 peer 5.5.5.5 as-number 100
 peer 5.5.5.5 connect-interface LoopBack0
 #
 ipv4-family unicast
  undo synchronization
  peer 2.2.2.2 enable
  peer 3.3.3.3 enable
  peer 5.5.5.5 enable
 #
 ipv4-family vpnv4
  policy vpn-target
  peer 2.2.2.2 enable
  peer 3.3.3.3 enable
  peer 5.5.5.5 enable
 #
 ipv4-family vpn-instance vpna
  import-route direct
#
ospf 100
 opaque-capability enable
 graceful-restart
 area 0.0.0.0
  network 4.4.4.4 0.0.0.0
  network 172.0.3.0 0.0.0.255
  network 172.0.7.0 0.0.0.255
  mpls-te enable
#
route-policy vpna permit node 5
 apply backup-nexthop auto
#
return

Configuration file of RSG2

#
 sysname RSG2
#
 vlan batch 10
#
ip vpn-instance vpna
 ipv4-family
  route-distinguisher 11
  vpn frr route-policy vpna
  vpn-target 11 export-extcommunity
  vpn-target 11 import-extcommunity
#
 mpls lsr-id 5.5.5.5
#
 mpls l2vpn
#
mpls ldp
 graceful-restart
#
interface Vlanif10
 ip binding vpn-instance vpna
 ip address 120.0.1.2 255.255.255.0
 vrrp vrid 1 virtual-ip 120.0.1.3
#
interface GigabitEthernet1/0/0
 portswitch
 undo shutdown
 port link-type trunk
 port trunk allow-pass vlan 10
#
interface GigabitEthernet1/0/1
 undo shutdown
 ip address 172.0.6.2 255.255.255.0
 mpls
 mpls ldp
#
interface GigabitEthernet1/0/2
 undo shutdown
 ip address 172.0.8.2 255.255.255.0
 mpls
 mpls ldp
#
interface GigabitEthernet1/0/3
 portswitch
 undo shutdown
 port link-type trunk
 port trunk allow-pass vlan 10
#
interface LoopBack0
 ip address 5.5.5.5 255.255.255.255
#
bgp 100
 graceful-restart
 peer 2.2.2.2 as-number 100
 peer 2.2.2.2 connect-interface LoopBack0
 peer 3.3.3.3 as-number 100
 peer 3.3.3.3 connect-interface LoopBack0
 peer 4.4.4.4 as-number 100
 peer 4.4.4.4 connect-interface LoopBack0
 #
 ipv4-family unicast
  undo synchronization
  peer 2.2.2.2 enable
  peer 3.3.3.3 enable
  peer 4.4.4.4 enable
 #
 ipv4-family vpnv4
  policy vpn-target
  peer 2.2.2.2 enable
  peer 3.3.3.3 enable
  peer 4.4.4.4 enable
 #
 ipv4-family vpn-instance vpna
  import-route direct
#
ospf 100
 opaque-capability enable
 graceful-restart
 area 0.0.0.0
  network 5.5.5.5 0.0.0.0
  network 172.0.8.0 0.0.0.255
  network 172.0.6.0 0.0.0.255
  mpls-te enable
#
route-policy vpna permit node 5
 apply backup-nexthop auto
#
return

from the best of networking http://ift.tt/1IJm5uv

(Visited 1,276 times, 1 visits today)

Networking Requirements

Configuration Roadmap

Data Preparation

Procedure

Configuration Files

Share this:

Leave a Reply