Cisco MPLS

From HackerNet
Revision as of 10:55, 22 November 2015 by Helikopter (talk | contribs) (→‎Show)
Jump to: navigation, search

Multiprotocol Label Switching

IOS

mpls ldp session protection
mpls ldp router-id loopback0
interface gi1/1
mpls ip

Synk med routing protokoll

router isis 1
mpls ldp sync

NX-OS

Förutsättningar

install feature-set mpls
feature-set mpls
feature mpls ldp

Aktivera på interface

interface e1/1
mpls ip

ID

interface loopback 1
 ip address 10.0.0.1/24
mpls ldp configuration
 session protection
 router-id loopback 1

Synk med routing protokoll

router isis P1
mpls ldp sync

L3VPN

feature mpls l3vpn

Add IBGP neighbor

router bgp 1.1
neighbor 10.0.0.10 remote-as 1.1
address-family vpnv4 unicast
send-community extended

Autentisering

Med autentisering kan man säkra LDP-kommunikationen

IOS

ip access-list standard <namn>
permit <granne1>
mpls ldp password required for <access-list>
mpls ldp neighbor <granne1> password <password>

NX-OS

ip prefix-list <namn> permit <granne1>/32
mpls ldp configuration
password required for <prefix-list>
password option 1 for <prefix-list> key-chain <key-chain-name>

Show

show mpls ip binding
show mpls interfaces
show mpls ldp discovery
show mpls ldp neighbor