MPLS VPN - Inter-AS Option AB [Cisco IOS and NX-OS Software]

Table Of Contents

MPLS VPN—Inter-AS Option AB

Contents

Prerequisites for MPLS VPN—Inter-AS Option AB

Restrictions for MPLS VPN—Inter-AS Option AB

Information About MPLS VPN—Inter-AS Option AB

MPLS VPN—Inter-AS Option AB Introduction

Benefits of MPLS VPN—Inter-AS Option AB

MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding in Non-CSC Networks

Route Distribution for VPN 1

Packet Forwarding for VPN 1

Route Distribution for VPN 2

MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding for CSC

Route Distribution for VPN 1

Packet Forwarding for VPN 1

How to Configure Inter-AS Option AB

Configuring an Inter-AS Option AB Connection

Configuring the VRFs on the ASBR Interface for Each VPN Customer

Configuring the MP-BGP Session Between ASBR Peers

Configuring the Routing Policy for VPNs that Need Inter-AS Connections

Changing an Inter-AS Option A Deployment to an Option AB Deployment

Configuration Examples for MPLS VPN—Inter-AS Option AB

Inter-AS AB Network Configuration: Examples

CE1: Example

CE2: Example

PE1: Example

Route Reflector 1: Example

ASBR1: Example

ASBR 3: Example

PE2: Example

CE3: Example

CE 4: Example

Inter-AS AB CSC Configuration: Examples

CE1: Example

CE2: Example

CE3: Example

CE 4: Example

PE1: Example

CSC-CE1: Example

CSC-PE1: Example

PE 2: Example

CSC-CE2: Example

ASBR1: Example

CSC-PE 3: Example

CSC-CE3: Example

CSC-CE 4: Example

PE 3: Example

PE 4: Example

Additional References

Related Documents

Standards

MIBs

RFCs

Technical Assistance

Feature Information for MPLS VPN—Inter-AS Option AB

Glossary

MPLS VPN—Inter-AS Option AB

First Published: December 17, 2007

Last Updated: October 2, 2009

The MPLS VPN—Inter-AS Option AB feature combines the best functionality of an Inter-AS Option (10) A and Inter-AS Option (10) B network to allow a Multiprotocol Label Switching (MPLS) Virtual Private Network (VPN) service provider to interconnect different autonomous systems to provide VPN services. These networks are defined in RFC 4364 section 10 "Multi-AS Backbones," option "a" and option "b" respectively.

When different autonomous systems are interconnected in an MPLS VPN—Inter-AS Option AB configuration, the entire network configuration is scaled and simplified, and maintains IP Quality of Service (QoS) functions between Autonomous System Boundary Router (ASBR) peers.

In an Inter-AS Option A network, ASBR peers are connected by multiple sub-interfaces with at least one interface VPN that spans the two autonomous systems. These ASBRs associate each sub-interface with a VRF and a BGP session to signal unlabeled IP prefixes. As a result, traffic between the back-to-back VRFs is IP. In this scenario, the VPNs are isolated from each other and because the traffic is IP, QoS mechanisms that operate on IP traffic can be applied to achieve customer Service Level Agreements (SLAs). The downside of this configuration is that there needs to be one BGP session for each sub-interface (and at least one subinterface for each VPN), which causes scalability concerns as this network grows.

In an Inter-AS Option B network, ASBR peers are connected by one or more sub-interfaces that are enabled to receive MPLS traffic. A Multi-protocol Border Gateway Protocol (MP-BGP) session is used to distribute labeled VPN prefixes between the ASBR. As a result, the traffic that flows between them is labeled. The downside of this configuration is that because the traffic is MPLS, QoS mechanisms that can only be applied to IP traffic cannot be applied and the VRFs cannot be isolated.

Finding Feature Information in This Module

Your Cisco IOS software release may not support all of the features documented in this module. For the latest feature information and caveats, see the release notes for your Cisco IOS software release. To reach links to specific feature documentation in this module and to see a list of the releases in which each feature is supported, use the "Feature Information for MPLS VPN—Inter-AS Option AB" section.

Finding Support Information for Platforms and Cisco IOS and Catalyst OS Software Images

Use Cisco Feature Navigator to find information about platform support and Cisco IOS and Catalyst OS software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.

Contents

•Prerequisites for MPLS VPN—Inter-AS Option AB

•Restrictions for MPLS VPN—Inter-AS Option AB

•Information About MPLS VPN—Inter-AS Option AB

•How to Configure Inter-AS Option AB

•Configuration Examples for MPLS VPN—Inter-AS Option AB

•Additional References

•Feature Information for MPLS VPN—Inter-AS Option AB

•Glossary

Prerequisites for MPLS VPN—Inter-AS Option AB

Follow the appropriate configuration tasks outlined in the following documents:

•Configuring MPLS Layer 3 VPNs

•MPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses

•MPLS VPN Inter-AS with ASBRs Exchanging IPv4 Routes and MPLS Labels

Perform the following requirements before configuring the MPLS VPN—Inter-AS Option AB feature.

•Enable Cisco Express Forwarding, which is required for MPLS VPN routing and forwarding operation.

•Identify the VPNs for the MPLS VPN—Inter-AS Option AB network and configure the VRFs to which these VPNs belong. These VRFs are used for Inter-AS Option AB connections on the ASBR interface.

Restrictions for MPLS VPN—Inter-AS Option AB

This feature has the following restrictions:

•The In Service Software Upgrade (ISSU) feature can only be configured on the active Route Processor (RP) if the standby RP supports this feature. The ISSU feature can be configured if both the active and standby RP support this feature.

•Carrier Supporting Carrier (CSC) MPLS load-balancing on ASBR Option AB VRF interfaces is not supported.

•VPNv6 is not supported.

Information About MPLS VPN—Inter-AS Option AB

This section provides an introduction to the MPLS VPN—Inter-AS Option AB feature and describes its benefits:

•MPLS VPN—Inter-AS Option AB Introduction, page 2

•Benefits of MPLS VPN—Inter-AS Option AB, page 2

•MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding in Non-CSC Networks

•MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding for CSC

MPLS VPN—Inter-AS Option AB Introduction

MPLS VPN service providers need to interconnect different autonomous systems to provide service for multiple VPN customers. The MPLS VPN—Inter-AS Option AB feature allows the different autonomous systems to interconnect by using a single MP-BGP session in the global routing table to carry control plane traffic. This MP-BGP session signals VPN prefixes between two ASBRs for each virtual routing and forwarding (VRF) instance. The data plane traffic is on a VRF interface. This traffic can either be IP or MPLS.

Note Inter-AS connections can be configured between ASBRs that either have or do not have connections between different providers.

Benefits of MPLS VPN—Inter-AS Option AB

The MPLS VPN—Inter-AS Option AB feature provides the following benefits for service providers:

•Network configuration can be simplified because only one BGP session is configured for each VRF on the ASBR.

•One BGP session reduces CPU utilization.

•Networks can be scaled because a single MP-BGP session, which is enabled globally on the router, reduces the number of sessions required by multiple VPNs, while continuing to keep VPNs isolated and secured from each other.

•IP QoS functions between ASBR peers are maintained for customer SLAs.

•Dataplane traffic is isolated on a per-VRF basis for security purposes.

MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding in Non-CSC Networks

The following sections describe MPLS VPN—Inter-AS Option AB operation:

•Route Distribution for VPN 1

•Packet Forwarding for VPN 1

•Route Distribution for VPN 2

Note All imported routes are accomplished by configuring the appropriate route targets (RTs).

The following attributes describe the topology of the sample MPLS VPN—Inter-AS Option AB network shown in Figure 1:

•Customer edge 1 (CE1) and CE3 belong to VPN 1.

•CE2 and CE 4 belong to VPN 2.

•Provider edge 1 (PE1) uses route distinguisher 1 (RD 1) for VPN 1 (VRF 1) and RD 2 for VPN 2 (VRF 2).

•PE2 uses RD 3 for VPN 1 (VRF 1) and RD 4 for VPN 2 (VRF 2).

•ASBR1 has VRF 1 provisioned with RD 5 and VRF 2 provisioned with RD 6.

•ASBR2 has VRF 1 provisioned with RD 7 and VRF 2 provisioned and RD 8.

•ASBR1 and ASBR2 have three links between them:

–VRF 1

–VRF 2

–MP-BGP session

Note The VRFs configured on the ASBRs are called "Option AB VRFs." The eBGP peers on the ASBRs are called "Option AB Peers."

Figure 1 MPLS VPN Inter-AS Option AB Topology

Route Distribution for VPN 1

A route distinguisher (RD) is an identifier attached to a route that identifies which VPN belongs to each route. Each routing instance must have a unique RD autonomous system associated with it. The RD is used to place a boundary around a VPN so that the same IP address prefixes can be used in different VPNs without having these IP address prefixes overlap.

Note An RD statement is required if the instance type is a VRF.

The following process describes the route distribution process for VPN 1 in Figure 1. Prefix "N" is used in this process to indicate the IP address of a VPN.

1. CE1 advertises the prefix N to PE1.

2. PE1 advertises a VPN prefix RD 1:N to ASBR1 through MP internal BGP (iBGP).

3. ASBR1 imports the prefix into VPN 1 and creates a prefix RD 5:N.

4. ASBR1 advertises the imported prefix RD 5:N to ASBR2. ASBR1 sets itself as the next hop for prefix RD 5:N and allocates a local label that is signaled with this prefix.

5. ASBR1 advertises the route with the export RT configured on the VRF rather than the originally received RTs. By default, ASBR1 does not advertise the source prefix RD 1:N to ASBR2. This advertisement is suppressed because the prefix is being imported into an Option AB VRF.

Note In an Option 10B connection, the source prefix can be advertised to another ASBR on which ASBR1 has an Option 10B connection. An ASBR with an Option 10B connection maintains all VPNv4 routes in its BGP table.

6. ASBR2 receives the prefix RD 5:N and imports it into VPN 1 as RD 7:N.

7. ASBR2 advertises the route with the export RT configured on the VRF rather than the originally received RTs.

8. While importing the prefix, ASBR2 sets the next hop of RD 7:N to the ASBR1 interface IP address in VRF 1. The next hop table ID is also set to VRF 1. When installing the MPLS forwarding entry for RD 7:N, the outgoing label is not installed in forwarding by default. This enables the traffic between the ASBRs to be IP.

9. ASBR2 advertises the imported prefix RD 7:N to PE2. It sets itself as the next hop for this prefix and also allocates a local label that is signaled with the prefix. By default, ASBR2 does not advertise the source prefix RD 5:N to PE2. This advertisement is suppressed because the prefix is being imported into an Option AB VRF.

10. PE2 imports the RD 7:N into VRF 1 as RD 3:N.

Packet Forwarding for VPN 1

The following packet forwarding process works the same as it does in an Option A scenario. The ASBR acts like the PE by terminating the VPN and then forwards its traffic as standard IP packets with no VPN label to the next PE, which in turn repeats the VPN process. Each PE router, therefore, treats the adjacent PE router as a CE router, and the standard Layer 3 MPLS VPN mechanisms are used for route redistribution with each autonomous system; that is, the PEs use external BGP (eBGP) to distribute unlabeled IPv4 addresses to each other.

Note Prefix "N" is used in this process to indicate the IP address of a VPN.

1. CE3 sends a packet destined for N to PE2.

2. PE2 encapsulates the packet with the VPN label allocated by ASBR2 and the IGP label needed to tunnel the packet to ASBR2.

3. The packet arrives on ASBR2 with the VPN label. ASBR2 removes the VPN label and sends the packet as IP to ASBR1 on the VRF 1 interface.

4. The IP packet arrives at ASBR1 on the VRF 1 interface. ASBR1 then encapsulates the packet with the VPN label allocated by PE1 and the IGP label needed to tunnel the packet to PE1.

5. The packet arrives on PE1 with the VPN label. PE1 disposes the VPN label and forwards the IP packet to CE1.

Route Distribution for VPN 2

The following information describes the route distribution process for VPN 2 in Figure 1:

1. CE2 advertises prefix N to PE1, where N is the VPN IP address.

2. PE1 advertises a VPN prefix RD 2:N to ASBR1 through MP-iBGP.

3. ASBR1 imports the prefix into VPN 2 and creates a prefix RD 6:N.

4. ASBR1 advertises the imported prefix RD 6:N to ASBR2. It sets itself as the next hop for this prefix and also allocates a local label that is signaled with the prefix. By default, ASBR1 does not advertise the source prefix RD 2:N to ASBR2. This advertisement is suppressed as the prefix is being imported into an Option AB VRF.

Note In the case of an Option 10B connection, the source prefix can be advertised to another ASBR on which ASBR1 has an Option 10B connection. An ASBR with an Option 10B connection maintains all VPNv4 routes in its BGP table.

5. ASBR2 receives the prefix RD 6:N and imports it into VPN 2 as RD 8:N.

6. While importing the prefix, ASBR2 sets the next hop of RD 8:N to ASBR1s interface address in VRF 2. The next hop table ID is also set to that of VRF 2. While installing the MPLS forwarding entry for RD 8:N, by default the outgoing label is not installed in forwarding. This enables traffic between the ASBRs to be IP.

7. ASBR2 advertises the imported prefix RD 8:N to PE2. It sets itself as the next hop for this prefix and also allocates a local label that is signaled with the prefix. By default, ASBR2 does not advertise the source prefix RD 6:N to PE2. This advertisement is suppressed because the prefix is being imported into an Option AB VRF.

8. PE2 imports the RD 8:N into VRF 2 as RD 4:N.

MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding for CSC

The following sections describe MPLS VPN—Inter-AS Option AB operation for a CSC scenario for VPN 1. These sections are similar to those found in "MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding in Non-CSC Networks" section for VPN 1, except for the method in which MPLS labels are handled between the two ASBRs.

•Route Distribution for VPN 1

•Packet Forwarding for VPN 1

Note VPN 2 is not shown or discussed in this section.

Figure 2 shows how VPN 1 provides VPN service to a small customer carrier that in turn provides a VPN service to its customer. This configuration implies that VPN 1 is used to provide a Label Switched Path (LSP) between the PE (PE 3 and PE 4) loopback interfaces of the small customer carrier.

Figure 2 MPLS VPN Inter-AS Option AB CSC Topology

Note The RD, RT, VRF, and Link provisioning in this section is the same as in the "MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding in Non-CSC Networks" section example for VPN 1.

Route Distribution for VPN 1

The following information describe the route distribution process for VPN 1 in Figure 1. Prefix "N" is used in these steps to indicate the IP address of a VPN.

1. CE1 advertises PE 3 loopback N to PE1.

2. PE1 advertises a VPN prefix RD 1:N to ASBR1 through MP-iBGP.

3. ASBR1 imports the prefix into VPN 1 and creates a prefix RD 5:N.

4. ASBR1 advertises the imported prefix RD 5:N to ASBR2. It sets itself as the next hop for this prefix and also allocates a local label that is signaled with the prefix.

5. ASBR1 advertises the route with the export RT configured on the VRF rather than the originally received RTs. By default, ASBR1 does not advertise the source prefix RD 1:N to ASBR2. This advertisement is suppressed as the prefix is being imported into an Option AB VRF.

Note In an Option 10B connection, the source prefix can be advertised to another ASBR on which ASBR1 has an Option 10B connection. An ASBR with an Option 10B connection maintains all VPNv4 routes in its BGP table.

6. ASBR2 receives the prefix RD 5:N and imports it into VPN 1 as RD 7:N.

7. ASBR2 advertises the route with the export RT configured on the VRF rather than the originally received RTs.

8. While importing the prefix, ASBR2 sets the next hop of RD 7:N to ASBR1 interface address in VRF 1. The next hop table ID is also set to that of VRF 1.

Note In a CSC scenario, an outgoing MPLS label can be installed in forwarding by making a configuration change. See "How to Configure Inter-AS Option AB" section.

9. While installing the MPLS forwarding entry for RD 7:N, the outgoing label is installed during the forwarding process, which enables the traffic between the ASBRs to be MPLS traffic.

10. ASBR2 advertises the imported prefix RD 7:N to PE2. It sets itself as the next hop for this prefix and also allocates a local label that is signaled with the prefix. By default, ASBR2 does not advertise the source prefix RD 5:N to PE2. This advertisement is suppressed as the prefix is being imported into an Option AB VRF.

11. PE2 imports the RD 7:N into VRF 1 as RD 3:N.

Packet Forwarding for VPN 1

The packet forwarding process shown below works the same as it does in an Option A scenario. See "MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding in Non-CSC Networks" section for more information about Option A.

1. PE 4 sends an MPLS packet destined for N to CE2.

2. CE2 swaps the MPLS label and sends a packet destined for N to PE2.

3. PE2 encapsulates the packet with the VPN label allocated by ASBR2 and the IGP label needed to tunnel the packet to ASBR2.

4. The packet arrives on ASBR2 with the VPN label. ASBR2 swaps the received VPN label with the outgoing label received from ASBR1 and sends the MPLS packet on to the VRF 1 interface.

5. The MPLS packet arrives at ASBR1 on the VRF 1 interface. ASBR1 then swaps the received MPLS label with a label stack consisting of the VPN label allocated by PE1 and the IGP label needed to tunnel the packet to PE1.

6. The packet arrives on PE1 with the VPN label. PE1 disposes the VPN label and forwards the MPLS packet to CE1. CE1 in turn swaps the label and forwards the labeled packet to PE 3.

How to Configure Inter-AS Option AB

The following sections describe how to configure the Inter-AS Option AB feature on an ASBR for either an MPLS VPN or an MPLS VPN that supports CSC:

•Configuring an Inter-AS Option AB Connection

•Changing an Inter-AS Option A Deployment to an Option AB Deployment

Configuring an Inter-AS Option AB Connection

The following sections are required and describe how to configure an Inter-AS Option AB connection on an ASBR:

•Configuring the VRFs on the ASBR Interface for Each VPN Customer

•Configuring the MP-BGP Session Between ASBR Peers

•Configuring the Routing Policy for VPNs that Need Inter-AS Connections

Note See the Configuring MPLS Layer 3 VPNs feature module for more information on configuring PE and CE routers in an MPLS VPN.

Configuring the VRFs on the ASBR Interface for Each VPN Customer

Use the following steps to configure the VRFs on the ASBR interface for each VPN customer so that these VPNs have connectivity over the MPLS VPN—Inter-AS Option AB network.

SUMMARY STEPS

1. enable

2. configure terminal

3. interface type number

4. ip vrf forwarding vrf-name

5. mpls bgp forwarding (Optional)

6. end

Note The mpls bgp forwarding command is used only on the ASBR interface for VRFs that support CSC.

Use all of the steps in the following procedure to configure additional VRFs that need to be configured on the ASBR interface and the VRFs that need to be configured on the peer ASBR interface.

DETAILED STEPS
Command or Action

Purpose

Step 1

enable
Example:

Router> enable

Enables privileged EXEC mode.

•Enter your password if prompted.

Step 2

configure terminal
Example:

Router# configure terminal

Enters global configuration mode.
Step 3
interface type number
Example:
Router(config)# interface Ethernet 5/0
Specifies the interface to configure and enters interface configuration mode.

•The type argument specifies the type of interface to be configured.

•The number argument specifies the port, connector, or interface card number.
Step 4
ip vrf forwarding vrf-name
Example:
Router(config-if)# ip vrf forwarding vpn1
Associates a VRF with the specified interface or subinterface.

•The vrf-name argument is the name assigned to a VRF.
Step 5
mpls bgp forwarding
Example:
Router(config-if)# mpls bgp forwarding
(Optional) This step applies to a CSC network only. Configures BGP to enable MPLS forwarding on connecting interfaces for VRFs that must support MPLS traffic.
Step 6
end
Example:
Router(config-if)# end
(Optional) Exits to privileged EXEC mode.
Configuring the MP-BGP Session Between ASBR Peers

BGP propagates reachability information for VPN-IPv4 prefixes among PE routers by means of the BGP multiprotocol extensions (see RFC 2283, Multiprotocol Extensions for BGP-4), which define support for address families other than IPv4. Using the extensions ensures that the routes for a given VPN are learned only by other members of that VPN, enabling members of the VPN to communicate with each other.

Follow the steps in this section to configure the MP-BGP session on the ASBR.

SUMMARY STEPS

1. enable

2. configure terminal

3. router bgp as-number

4. neighbor {ip-address | peer-group-name} remote-as as-number

5. address-family vpnv4 [unicast]

6. neighbor {ip-address | peer-group-name} activate

7. neighbor {ip-address | peer-group-name} inter-as-hybrid

8. exit-address-family

9. end

Use all of the steps in the following procedure to configure the MP BGP session on the peer ASBR.

DETAILED STEPS
Command or Action

Purpose

Step 1

enable
Example:

Router> enable

Enables privileged EXEC mode.

•Enter your password if prompted.

Step 2

configure terminal
Example:

Router# configure terminal

Enters global configuration mode.
Step 3
router bgp as-number
Example:
Router(config)# router bgp 100
Configures a BGP routing process and places the router in router configuration mode.

The as-number argument indicates the number of an autonomous system that identifies the router to other BGP routers and tags the routing information passed along. Valid numbers are from 0 to 65535. Private autonomous system numbers that can be used in internal networks range from 64512 to 65535.
Step 4
neighbor {ip-address | peer-group-name} remote-as as-number
Example:
Router(config-router)# neighbor 192.168.0.1 
remote-as 200
Adds an entry to the BGP or multiprotocol BGP neighbor table.

•The ip-address argument specifies the IP address of the neighbor.

•The peer-group-name argument specifies the name of a BGP peer group.

•The as-number argument specifies the autonomous system to which the neighbor belongs.
Step 5
address-family vpn4 [unicast]
Example:
Router(config-router)# address-family vpn4
Enters address family configuration mode for configuring routing sessions, such as BGP, that use standard VPNv4 address prefixes.

•The unicast keyword specifies IPv4 unicast address prefixes.
Step 6
neighbor {ip-address | peer-group-name} activate
Example:
Router(config-router-af)# neighbor 192.168.0.1 
activate
Enables the exchange of information with a neighboring router.

•The ip-address argument specifies the IP address of the neighbor.

•The peer-group-name argument specifies the name of a BGP peer group.
Step 7
neighbor {ip-address | peer-group-name} inter-as-hybrid
Example:
Router(config-router-af)# neighbor 192.168.0.1 
inter-as-hybrid
Configures eBGP peer router (ASBR) as an Inter-AS Option AB peer.

•The ip-address argument specifies the IP address of the neighbor.

•The peer-group-name argument specifies the name of a BGP peer group.

•If any prefixes are imported into Option AB VRFs, then the imported paths are advertised to this peer.

•If any prefixes are received from this peer and are imported into Option AB VRFs, then the imported paths are advertised to iBGP peers.

Note Advertised routes have RTs that are configured on the VRF. Advertised routes do not have their original RTs.
Step 8
exit-address-family
Example:
Router(config-router-af)# exit-address-family
Exits from the address family configuration submode.
Step 9
end
Example:
Router(config-router-af)# end
(Optional) Exits to privileged EXEC mode.
Configuring the Routing Policy for VPNs that Need Inter-AS Connections

Use the steps in this section to configure VRFs for the VPNs that need Inter-AS connections between ASBR peers, by configuring the appropriate routing policy and Option AB configuration.

SUMMARY STEPS

1. enable

2. configure terminal

3. vrf definition vrf-name

4. rd route-distinguisher

5. address-family ipv4

6. route-target {import | export | both} route-target-ext-community

7. inter-as-hybrid [csc]

8. inter-as-hybrid [csc] next-hop ip-address

9. exit

Use all of the steps in the following procedure to configure additional VPNs that need Inter-AS Option AB connectivity on this ASBR and the peer ASBR.

DETAILED STEPS
Command or Action

Purpose

Step 1

enable
Example:

Router> enable

Enables privileged EXEC mode.

•Enter your password if prompted.

Step 2

configure terminal
Example:

Router# configure terminal

Enters global configuration mode.
Step 3
vrf definition vrf-name
Example:
Router(config)# vrf definition vpn1 
Defines the VPN routing instance by assigning a VRF name and enters VRF configuration mode.

•The vrf-name argument is the name assigned to a VRF.
Step 4
rd route-distinguisher
Example:
Router(config-vrf)# rd 100:1
Creates routing and forwarding tables.

•The route-distinguisher argument adds an 8-byte value to an IPv4 prefix to create a VPN IPv4 prefix. You can enter an RD in either of these formats:

–16-bit autonomous system number: your 32-bit number, for example, 101:3

–32-bit IP address: your 16-bit number, for example, 192.168.122.15:1
Step 5

address-family ipv4
Example:

Router(config-vrf)# address-family ipv4

Enters VRF address family configuration mode to specify an address family for a VRF.

•The ipv4 keyword specifies an IPv4 address family for a VRF.
Step 6
route-target {import | export | both} 
route-target-ext-community
Example:
Router(config-vrf-af)# route-target import 
100:1
Creates a route-target extended community for a VRF.

•The import keyword imports routing information from the target VPN extended community.

•The export keyword exports routing information to the target VPN extended community.

•The both keyword imports routing information from and exports routing information to the target VPN extended community.

•The route-target-ext-community argument adds the route-target extended community attributes to the VRF list of import, export, or both (import and export) route-target extended communities.
Step 7
inter-as-hybrid [csc]
Example:
Router(config-vrf-af)# inter-as-hybrid
Specifies the VRF as an Option AB VRF, which has the following effects:

•Routes imported to this VRF can be advertised to Option AB peers and VPNv4 iBGP peers.

•When routes received from Option AB peers and are imported into the VRF, the next hop table ID of the route is set to the table ID of the VRF.

•If the csc keyword is not used, a per-VRF label is allocated for imported routes.

•When routes are received from Option AB peers and are imported next into the VRF, the learned out label can only be installed in forwarding when the csc keyword is used.

The csc keyword implies the following:

•A per-prefix label is allocated for imported routes.

•For routes received from Option AB peers that are imported into the VRF, the learned out label is installed in forwarding.
Step 8
inter-as-hybrid [csc] next-hop ip-address
Example:
Router(config-vrf-af)# inter-as-hybrid next-hop 
192.168.1.0
(Optional) Specifies the next hop IP address to be set on paths that are imported into the VRF and that are received from an Option AB peer. The next hop context is also set to the VRF, which imports these paths.

The csc keyword implies the following:

•A per-prefix label is allocated for imported routes.

•For routes received from Option AB peers that are imported into the VRF, the learned outlabel is installed in forwarding.
Step 9
exit
Example:
Router(config-vrf-af)# exit
Exits to global configuration mode.
Changing an Inter-AS Option A Deployment to an Option AB Deployment

In an Option A deployment, the VRF instances are back-to-back between the ASBR routers and there is direct connectivity between PE routers of different autonomous systems. The PE routers are attached by multiple physical or logical interfaces, each of which is associated with a given VPN (through a VRF instance).

In the Option AB deployment, the different autonomous systems interconnect by using a single MP-BGP session in the global routing table to carry control plane traffic.

Use the following steps to change an MPLS VPN Inter-AS Option A deployment to an Option AB deployment.

1. Configure the MP-BGP session on the ASBR. BGP multiprotocol extensions are used to define support for address families other than IPv4 so that the routes for a given VPN are learned only by other members of that VPN, enabling members of the VPN to communicate with each other. See "Configuring the MP-BGP Session Between ASBR Peers" section for detailed configuration information.

2. Identify the VRFs that need an upgrade from Option A and configure them for Option AB by using the inter-as-hybrid command. See "Configuring the Routing Policy for VPNs that Need Inter-AS Connections" section for detailed configuration information.

3. Use the following steps in this section to remove the configuration for the eBGP (peer ASBR) neighbor.

SUMMARY STEPS

1. enable

2. configure terminal

3. router bgp as-number

4. address-family ipv4 vrf vrf-name

5. no neighbor {ip-address | peer-group-name}

6. exit-address-family

7. end

Repeat all the steps in the following procedure to remove the configuration for additional eBGP (peer ASBR) neighbors.

DETAILED STEPS
Command or Action

Purpose

Step 1

enable
Example:

Router> enable

Enables privileged EXEC mode.

•Enter your password if prompted.

Step 2

configure terminal
Example:

Router# configure terminal

Enters global configuration mode.
Step 3
router bgp as-number
Example:
Router(config)# router bgp 100
Configures a BGP routing process and places the router in router configuration mode.

•The as-number argument indicates the number of an autonomous system that identifies the router to other BGP routers and tags the routing information passed along. Valid numbers are from 0 to 65535. Private autonomous system numbers that can be used in internal networks range from 64512 to 65535.
Step 4
address-family ipv4 vrf vrf-name
Example:
Router(config-router)# address-family ipv4 vrf 
vpn4
Configures each VRF that is identified in the MP-BGP session on the ASBR so that the routes for a given VPN are learned only by other members of that VPN, enabling members of the VPN to communicate with each other. Enters address family configuration mode to specify an address family for a VRF.
Step 5
no neighbor {ip-address | peer-group-name}
Example:
Router(config-router-af)# no neighbor 
192.168.0.1
Removes the configuration for the exchange of information with the neighboring eBGP (ASBR) router.

•The ip-address argument specifies the IP address of the neighbor.

•The peer-group-name argument specifies the name of a BGP peer group.
Step 6
exit-address-family
Example:
Router(config-router-af)# exit-address-family
Exits from address family configuration mode.
Step 7
end
Example:
Router(config-router-af)# end
(Optional) Exits to privileged EXEC mode.
Configuration Examples for MPLS VPN—Inter-AS Option AB

The following sections describe standard and CSC MPLS VPN configurations between two ASBR peers that use the Inter-AS AB feature:

•Inter-AS AB Network Configuration: Examples

•Inter-AS AB CSC Configuration: Examples

Inter-AS AB Network Configuration: Examples

The following examples show the configuration of an inter-AS option AB network that uses non overlapping IP addresses:

•CE1: Example

•CE2: Example

•PE1: Example

•Route Reflector 1: Example

•ASBR1: Example

•ASBR 3: Example

•PE2: Example

•CE3: Example

•CE 4: Example

CE1: Example
!
ip cef distributed
!
interface lo0
 ip address 192.168.13.13 255.255.255.255
 no shutdown
!
interface et4/0
 ip address 192.168.36.1 255.255.255.0
 no shutdown
!
router ospf 300
 nsf enforce global
 redistribute connected subnets
 auto-cost reference-bandwidth 1000
 passive-interface et4/0
 network 192.168.13.13 0.0.0.0 area 300
! 
router bgp 300
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 no synchronization  
 neighbor 192.168.36.2 remote-as 100
 neighbor 192.168.36.2 advertisement-interval 5
 address-family ipv4 no auto-summary
 redistribute connected   
 neighbor 192.168.36.2 activate
CE2: Example
!
ip cef distributed
!
interface lo0
 ip address 192.168.14.14 255.255.255.255
 no shutdown
!
interface et1/6
 ip address 192.168.37.1 255.255.255.0
 no ipv6 address
 no shutdown
!
router ospf 400
 nsf enforce global
 redistribute connected subnets
 auto-cost reference-bandwidth 1000
 passive-interface et1/6
 network 192.168.14.14 0.0.0.0 area 400
! 
router bgp 400
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 no synchronization 
 neighbor 192.168.0.2 remote-as 100
 neighbor 192.168.0.2 advertisement-interval 5  
 address-family ipv4  no auto-summary  
 redistribute connected   
 neighbor 192.168.0.2 activate
!
PE1: Example
!
ip cef distributed
!
ip vrf vpn1 
   rd 100:1 
   route-target import 100:1
   route-target import 200:1
   route-target export 100:1
!
ip vrf vpn2 
   rd 100:2 
   route-target import 100:2
   route-target import 200:2
   route-target export 100:2
!
mpls ldp router-id lo0 force   
mpls ldp graceful-restart   
mpls ip   
mpls ip propagate-ttl
mpls ldp advertise-labels
mpls label protocol ldp
!
interface lo0
 ip address 192.168.17.17 255.255.255.255
 no shutdown
!
interface gi3/1
 ip vrf forwarding vpn1
 ip address 192.168.36.2 255.255.255.0
 no shutdown
!
interface gi3/8
 mpls ip
 mpls label protocol ldp
 ip address 192.168.31.2 255.255.255.0
!
interface gi3/10
 mpls ip
 mpls label protocol ldp
 ip address 192.168.40.1 255.255.255.0
 no shutdown
!
interface gi3/13
 ip vrf forwarding vpn2
 ip address 192.168.0.2 255.0.0.0
 no shutdown
!
router ospf 100
 nsf enforce global
 redistribute connected subnets
 auto-cost reference-bandwidth 1000
 passive-interface gi3/1
 passive-interface gi3/13
 network 192.168.0.0 0.0.255.255 area 10
 network 192.168.17.17 0.0.0.0 area 100
 network 192.168.0.0 0.0.255.255 area 100
! 
router bgp 100
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 no bgp default ipv4-unicast
 no synchronization
 neighbor 192.168.19.19 remote-as 100
 neighbor 192.168.19.19 update-source Loopback0
 address-family ipv4 vrf vpn1  
no auto-summary  
 redistribute connected   
 neighbor 192.168.36.1 remote-as 300
 neighbor 192.168.36.1 activate
 neighbor 192.168.36.1 advertisement-interval 5
 address-family ipv4 vrf vpn2  no auto-summary
 redistribute connected   
 neighbor 192.168.37.1 remote-as 400
 neighbor 192.168.37.1 activate
 neighbor 192.168.37.1 advertisement-interval 5
 address-family vpnv4
 bgp scan-time import 5 
 neighbor 192.168.19.19 activate
 neighbor 192.168.19.19 send-community extended
!
Route Reflector 1: Example
!
ip cef distributed
mpls ldp router-id lo0 force   
mpls ldp graceful-restart   
mpls ip   
mpls ip propagate-ttl
mpls ldp advertise-labels
mpls ip
mpls label protocol ldp
!
interface lo0
 ip address 192.168.19.19 255.255.255.255
 no shutdown
!
interface gi3/3
 mpls ip
 mpls label protocol ldp
 ip address 192.168.40.2 255.255.255.0
 no shutdown
!
router ospf 100
 nsf enforce global
 redistribute connected subnets
 auto-cost reference-bandwidth 1000
 network 192.168.19.19 0.0.0.0 area 100
 network 192.168.0.0 0.0.255.255 area 100 ! 
router bgp 100
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart  
 neighbor 192.168.11.11 remote-as 100
 neighbor 192.168.11.11 update-source Loopback0
 neighbor 192.168.17.17 remote-as 100
 neighbor 192.168.17.17 update-source Loopback0
 neighbor 192.168.11.11 route-reflector-client
 address-family ipv4
 no neighbor 192.168.17.17 activate
 neighbor 192.168.11.11 route-reflector-client
 address-family vpnv4
 bgp scan-time import 5
 neighbor 192.168.11.11 activate
 neighbor 192.168.11.11 send-community extended
 neighbor 192.168.17.17 activate
 neighbor 192.168.17.17 send-community extended
 neighbor 192.168.11.11 route-reflector-client
 neighbor 192.168.17.17 route-reflector-client
!
ASBR1: Example
!
ip cef distributed
!
ip vrf vpn1 
   rd 100:1 
   route-target import 100:1
   route-target import 200:1
   route-target export 100:1 
   inter-as-hybrid next-hop 192.168.32.2
exit
ip vrf vpn2 
   rd 100:2 
   route-target import 100:2
   route-target import 200:2
   route-target export 100:2 
   inter-as-hybrid next-hop 192.168.33.2
exit
mpls ldp router-id lo0 force   
mpls ldp graceful-restart   
mpls ip   
mpls ip propagate-ttl
mpls ldp advertise-labels
 mpls ip
 mpls label protocol ldp
interface lo0
 ip address 192.168.11.11 255.255.255.255
 no ipv6 address
ip route-cache distributed
ip route-cache cef distributed
no shutdown 
interface gi3/8
mpls ip
 mpls label protocol ldp
 ip address 192.168.13.1 255.255.255.0
 no ipv6 address
ip route-cache distributed
ip route-cache cef distributed
no shutdown 
interface gi3/10  
   ip vrf forwarding vpn1
 ip address 192.168.32.1 255.255.255.0
 no ipv6 address
ip route-cache distributed
ip route-cache cef distributed
no shutdown 
interface gi3/11  
   ip vrf forwarding vpn2
 ip address 192.168.33.1 255.255.255.0
 no ipv6 address
ip route-cache distributed
ip route-cache cef distributed
no shutdown 
interface gi3/46
 ip address 192.168.34.1 255.255.255.0
 no ipv6 address
ip route-cache distributed
ip route-cache cef distributed
no shutdown
router ospf 100
nsf enforce global
 redistribute connected subnets
auto-cost reference-bandwidth 1000
passive-interface gi3/10
passive-interface gi3/11
passive-interface gi3/46
network 192.168.0.0 0.0.255.255 area 100
network 192.168.11.11 0.0.0.0 area 100 
router bgp 100
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 no synchronization
 no bgp default route-target filter
 bgp router-id 192.168.11.11
 neighbor 192.168.34.2 remote-as 200
 neighbor 192.168.34.2 advertisement-interval 5
 neighbor 192.168.19.19 remote-as 100
 neighbor 192.168.19.19 update-source Loopback0
 address-family ipv4
  no auto-summary
 address-family ipv4 vrf vpn1
  no auto-summary
 address-family ipv4 vrf vpn2
  no auto-summary
 address-family vpnv4
  bgp scan-time import 5
  neighbor 192.168.34.2 activate
  neighbor 192.168.34.2 send-community both
  neighbor 192.168.34.2 inter-as-hybrid
  neighbor 192.168.19.19 activate
  neighbor 192.168.19.19 send-community extended !
ip route vrf vpn1 192.168.12.12 255.255.255.255 gi3/10 192.168.32.2
ip route vrf vpn2 192.168.12.12 255.255.255.255 gi3/11 192.168.33.2
!
ASBR 3: Example
!
ip cef distributed
!
ip vrf vpn1 
   rd 200:1 
   route-target import 100:1
   route-target import 200:1
   route-target export 200:1 
   inter-as-hybrid next-hop 192.168.32.1
!
ip vrf vpn2 
   rd 200:2 
   route-target import 100:2
   route-target import 200:2
   route-target export 200:2 
   inter-as-hybrid next-hop 192.168.33.1
!
mpls ldp router-id lo0 force   
mpls ldp graceful-restart   
mpls ip   
mpls ip propagate-ttl
mpls ldp advertise-labels
mpls label protocol ldp
!
interface lo0
 ip address 192.168.12.12 255.255.255.255
 no shutdown
!
interface po2/1/0
 mpls ip
 mpls label protocol ldp
 ip address 192.168.35.1 255.255.255.0
 crc 16
 clock source internal
 no shutdown
!
interface gi3/10
 ip vrf forwarding vpn1
 ip address 192.168.32.2 255.255.255.0
 no shutdown
!
interface gi3/11
 ip vrf forwarding vpn2
 ip address 192.168.33.2 255.255.255.0
 no shutdown
!
interface gi3/45
 ip address 192.168.34.2 255.255.255.0
 no shutdown
!
router ospf 200
nsf enforce global
redistribute connected subnets
auto-cost reference-bandwidth 1000
passive-interface gi3/10
passive-interface gi3/11
passive-interface gi3/45
network 192.168.0.0 0.0.255.255 area 200 network 192.168.12.12 0.0.0.0 area 200 
router bgp 200
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 no synchronization
 no bgp default route-target filter
 bgp router-id 192.168.12.12
 neighbor 192.168.34.1 remote-as 100
 neighbor 192.168.34.1 advertisement-interval 5
 neighbor 192.168.20.20 remote-as 200
 neighbor 192.168.20.20 update-source Loopback0
 address-family ipv4
 no auto-summary
 address-family ipv4 vrf vpn1
  no auto-summary
 address-family ipv4 vrf vpn2
  no auto-summary
 address-family vpnv4
  bgp scan-time import 5
  neighbor 192.168.34.1 activate
  neighbor 192.168.34.1 send-community both
  neighbor 192.168.34.1 inter-as-hybrid
  neighbor 192.168.20.20 activate
  neighbor 192.168.20.20 send-community extended !
ip route vrf vpn1 192.168.11.11 255.255.255.255 gi3/10 192.168.32.1   
ip route vrf vpn2 192.168.11.11 255.255.255.255 gi3/11 192.168.33.1
!
PE2: Example
!
ip cef distributed
!
ip vrf vpn1 
   rd 200:1 
   route-target import 100:1
   route-target import 200:1
   route-target export 200:1
!
ip vrf vpn2 
   rd 200:2 
   route-target import 100:2
   route-target import 200:2
   route-target export 200:2
!
mpls ldp router-id lo0 force   
mpls ldp graceful-restart   
mpls ip   
mpls ip propagate-ttl
mpls ldp advertise-labels
mpls label protocol ldp
!
interface lo0
 ip address 192.168.18.18 255.255.255.255
 no shutdown
!
interface po1/0/0
 mpls ip
 mpls label protocol ldp
 ip address 192.168.35.2 255.255.255.0
 crc 16
 clock source internal
 no shutdown
!
interface gi3/2
 ip vrf forwarding vpn1
 ip address 192.168.38.2 255.255.255.0
 no shutdown
!
interface gi3/8
 mpls ip
 mpls label protocol ldp
 ip address 192.168.4.1 255.255.255.0
 no shutdown
!
interface gi3/10
 ip vrf forwarding vpn2
 ip address 192.168.39.2 255.255.255.0
 no shutdown
!
router ospf 200
 nsf enforce global
 redistribute connected subnets
 auto-cost reference-bandwidth 1000
 passive-interface gi3/10
 passive-interface gi3/2
 network 192.168.0.0 0.0.255.255 area 200
 network 192.168.18.18 0.0.0.0 area 200
 network 192.168.0.0 0.0.255.255 area 200 ! 
 router bgp 200
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 no bgp default ipv4-unicast
 no synchronization
 neighbor 192.168.20.20 remote-as 200
 neighbor 192.168.20.20 update-source Loopback0
 address-family ipv4 vrf vpn1 
    no auto-summary  
    redistribute connected   
    neighbor 192.168.38.1 remote-as 500 
    neighbor 192.168.38.1 activate 
    neighbor 192.168.38.1 advertisement-interval 5
 address-family ipv4 vrf vpn2 
    no auto-summary  
    redistribute connected   
    neighbor 192.168.9.1 remote-as 600 
    neighbor 192.168.9.1 activate 
    neighbor 192.168.9.1 advertisement-interval 5
 address-family vpnv4 
    bgp scan-time import 5  
    neighbor 192.168.20.20 activate 
    neighbor 192.168.20.20 send-community extended
!
CE3: Example
!
ip cef distributed
!
interface lo0
 ip address 192.168.15.15 255.255.255.255
 no shutdown
!
interface gi0/2
 ip address 192.168.38.1 255.255.255.0
 no shutdown
!
router ospf 500
 nsf enforce global
 redistribute connected subnets
 auto-cost reference-bandwidth 1000
 passive-interface gi0/2
 network 192.168.15.15 0.0.0.0 area 500
! 
router bgp 500
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 no synchronization
 neighbor 192.168.38.2 remote-as 200
 neighbor 192.168.38.2 advertisement-interval 5
 address-family ipv4  
 no auto-summary  
 redistribute connected   
 neighbor 192.168.38.2 activate
!
CE 4: Example
!
ip cef distributed
!
interface lo0
 ip address 192.168.16.16 255.255.255.255
 no shutdown
!
interface et6/2
 ip address 192.168.9.1 255.255.255.0
 no shutdown
!
router ospf 600
 nsf enforce global
 redistribute connected subnets
 auto-cost reference-bandwidth 1000
 passive-interface et6/2
 network 192.168.16.16 0.0.0.0 area 600
! 
router bgp 600
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 no synchronization
 neighbor 192.168.39.2 remote-as 200
 neighbor 192.168.39.2 advertisement-interval 5
 address-family ipv4  no auto-summary  
 redistribute connected   
 neighbor 192.168.39.2 activate
!
Inter-AS AB CSC Configuration: Examples

The following examples show the configuration of an inter-AS option AB network with CSC:

•CE1: Example

•CE2: Example

•CE3: Example

•CE 4: Example

•PE1: Example

•CSC-CE1: Example

•CSC-PE1: Example

•PE 2: Example

•CSC-CE2: Example

•ASBR1: Example

•CSC-PE 3: Example

•CSC-CE3: Example

•CSC-CE 4: Example

•PE 3: Example

•PE 4: Example

CE1: Example
!
ip cef distributed
!         
interface Loopback0
 ip address 192.168.20.20 255.255.255.255
!
interface Ethernet3/3
 ip address 192.168.41.2 255.255.255.0
!
!         
router bgp 500
 bgp router-id 192.168.20.20
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.4.1 remote-as 300
 !        
 address-family ipv4
  redistribute connected
  neighbor 192.168.4.1 activate
  neighbor 192.168.4.1 advertisement-interval 5
  no auto-summary
  no synchronization
 exit-address-family
!
CE2: Example
!
ip cef distributed
!
interface Loopback0
 ip address 192.168.21.21 255.255.255.255
!
interface Ethernet0/0/7
 ip address 192.168.42.2 255.255.255.0
!         
router bgp 600
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart  neighbor 192.168.42.1 remote-as 400
 !        
 address-family ipv4
  redistribute connected
  neighbor 192.168.42.1 activate
  neighbor 192.168.42.1 advertisement-interval 5
  no auto-summary
  no synchronization
 exit-address-family
!
CE3: Example
!
ip cef distributed
!
interface Loopback0
 ip address 192.168.22.22 255.255.255.255
!         
interface Ethernet6/2
 ip address 192.168.43.2 255.255.255.0
!
router bgp 500
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart neighbor 192.168.43.1 remote-as 300
 !        
 address-family ipv4
  redistribute connected
  neighbor 192.168.43.1 activate
  neighbor 192.168.43.1 advertisement-interval 5
  no auto-summary
  no synchronization
 exit-address-family
! 
CE 4: Example
!
ip cef distributed
!         
interface Loopback0
 ip address 192.168.23.23 255.255.255.255
!
!         
interface Ethernet0/0/7
 ip address 192.168.44.2 255.255.255.0
!         
router bgp 600
 bgp router-id 192.168.23.23
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
neighbor 192.168.44.1 remote-as 400
 !        
 address-family ipv4
  redistribute connected
  neighbor 192.168.44.1 activate
  neighbor 192.168.44.1 advertisement-interval 5
  no auto-summary
  no synchronization
 exit-address-family
! 
PE1: Example
!
ip cef distributed
!
ip vrf vpn3
 rd 300:3
 route-target export 300:3
 route-target import 300:3
!
mpls ldp graceful-restart
!
mpls label protocol ldp
!
mpls ip
!
interface Loopback0
 ip address 192.168.192.10 255.255.255.255
!         
interface Ethernet3/1
 ip vrf forwarding vpn3
 ip address 192.168.4.1 255.255.255.0
!
interface Ethernet5/3
 ip address 192.168.3.1 255.255.255.0
 mpls label protocol ldp
 mpls ip
!      
!         
router ospf 300
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 redistribute connected subnets
 network 192.168.192.10 0.0.0.0 area 300
 network 192.168.0.0 0.0.255.255 area 300
!         
router bgp 300
 no bgp default ipv4-unicast
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.19.19 remote-as 300  
 neighbor 192.168.19.19 update-source Loopback0
 !        
 address-family vpnv4
  neighbor 192.168.19.19 activate
  neighbor 192.168.19.19 send-community extended
  bgp scan-time import 5
 exit-address-family
 !        
 address-family ipv4 vrf vpn3
  redistribute connected
  neighbor 192.168.41.2 remote-as 500
  neighbor 192.168.41.2 activate
  neighbor 192.168.41.2 as-override
  neighbor 192.168.41.2 advertisement-interval 5
  no auto-summary
  no synchronization
 exit-address-family
! 
CSC-CE1: Example
!
ip cef distributed
!
mpls ldp graceful-restart
mpls label protocol ldp
!
mpls ip
!
interface Loopback0
 ip address 192.168.11.11 255.255.255.255
!
!         
interface Ethernet3/4
 ip address 192.168.30.2 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!         
router ospf 300
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 redistribute connected subnets
 redistribute bgp 300 metric 3 subnets
 passive-interface FastEthernet1/0
 network 192.168.11.11 0.0.0.0 area 300
 network 192.168.0.0 0.0.255.255 area 300
 distance ospf intra-area 19 inter-area 19 
!         
router bgp 300
 bgp router-id 192.168.11.11
 no bgp default ipv4-unicast
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.13.1 remote-as 100
 !        
 address-family ipv4
  redistribute ospf 300 metric 4 match internal external 1 external 2
  neighbor 192.168.13.1 activate
  neighbor 192.168.13.1 send-label
  no auto-summary
  no synchronization
 exit-address-family
! 
CSC-PE1: Example
!
ip vrf vpn1
 rd 100:1
 route-target export 100:1
 route-target import 100:1
 route-target import 100:5
 route-target import 200:1
!
ip vrf vpn2
 rd 100:2
 route-target export 100:2
 route-target import 100:2
 route-target import 100:6
 route-target import 200:2
!         
mpls ldp graceful-restart
mpls label protocol ldp
!
mpls ip
!         
interface Loopback0
 ip address 192.168.12.12 255.255.255.255
!         
!         
interface FastEthernet4/0/0
 ip address 192.168.34.1 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!         
interface FastEthernet4/0/1
 ip vrf forwarding vpn1
 ip address 192.168.13.1 255.255.255.0
 mpls bgp forwarding
!   
!         
interface FastEthernet4/1/0
 ip vrf forwarding vpn2
 ip address 192.168.33.1 255.255.255.0
 mpls bgp forwarding
!         
router ospf 100
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 nsf enforce global
 redistribute connected subnets
 network 192.168.12.12 0.0.0.0 area 100
 network 192.168.0.0 0.0.255.255 area 100
!         
router bgp 100
 bgp router-id 192.168.12.12
 no bgp default ipv4-unicast
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.15.15 remote-as 100
 neighbor 192.168.15.15 update-source Loopback0
 !        
 address-family vpnv4
  neighbor 192.168.15.15 activate
  neighbor 192.168.15.15 send-community extended
  bgp scan-time import 5
 exit-address-family
 !        
 address-family ipv4 vrf vpn2
  neighbor 192.168.33.2 remote-as 400
  neighbor 192.168.33.2 update-source FastEthernet4/1/0
  neighbor 192.168.33.2 activate
  neighbor 192.168.33.2 as-override
  neighbor 192.168.33.2 advertisement-interval 5
  neighbor 192.168.33.2 send-label
  no auto-summary
  no synchronization
 exit-address-family
 !        
 address-family ipv4 vrf vpn1
  neighbor 192.168.31.2 remote-as 300
  neighbor 192.168.31.2 update-source FastEthernet4/0/1
  neighbor 192.168.31.2 activate
  neighbor 192.168.31.2 as-override
  neighbor 192.168.31.2 advertisement-interval 5
  neighbor 192.168.31.2 send-label
  no auto-summary
  no synchronization
 exit-address-family
! 
PE 2: Example
ip cef distributed
!
ip vrf vpn4
 rd 400:4
 route-target export 400:4
 route-target import 400:4
!
!
mpls ldp graceful-restart
mpls label protocol ldp
!
mpls ip
!
interface Loopback0
 ip address 192.168.13.13 255.255.255.255
!         
!         
interface Ethernet4/1/2
 ip vrf forwarding vpn4
 ip address 192.168.42.1 255.255.255.0
!         
!         
interface Ethernet4/1/6
 ip address 192.168.32.1 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!     
!         
router ospf 400
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 nsf enforce global
 redistribute connected subnets
 network 192.168.13.13 0.0.0.0 area 400
 network 192.168.0.0 0.0.255.255 area 400
!         
router bgp 400
 bgp router-id 192.168.13.13
 no bgp default ipv4-unicast
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.25.25 remote-as 400
 neighbor 192.168.25.25 update-source Loopback0
 !        
 address-family vpnv4
  neighbor 192.168.25.25 activate
  neighbor 192.168.25.25 send-community extended
  bgp scan-time import 5
 exit-address-family
 !        
 address-family ipv4 vrf vpn4
  redistribute connected
  neighbor 192.168.42.2 remote-as 600
  neighbor 192.168.42.2 activate
  neighbor 192.168.42.2 as-override
  neighbor 192.168.42.2 advertisement-interval 5
  no auto-summary
  no synchronization
 exit-address-family
! 
CSC-CE2: Example
!
ip cef distributed
!
mpls ldp graceful-restart
mpls label protocol ldp
!
mpls ip         
interface Loopback0
 ip address 192.168.14.14 255.255.255.255
!
!         
interface GigabitEthernet8/16
 ip address 192.168.33.2 255.255.255.0
 mpls bgp forwarding
!
!         
interface GigabitEthernet8/24
 ip address 192.168.32.2 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!     
!         
router ospf 400
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 nsf enforce global
 redistribute connected subnets
 redistribute bgp 400 metric 3 subnets
 passive-interface GigabitEthernet8/16
 network 192.168.14.14 0.0.0.0 area 400
 network 192.168.0.0 0.0.255.255 area 400
 distance ospf intra-area 19 inter-area 19 
!         
router bgp 400
 bgp router-id 192.168.14.14
 no bgp default ipv4-unicast
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.33.1 remote-as 100
 !        
 address-family ipv4
  no synchronization
  redistribute connected
  redistribute ospf 400 metric 4 match internal external 1 external 2
  neighbor 192.168.33.1 activate
  neighbor 192.168.33.1 advertisement-interval 5
  neighbor 192.168.33.1 send-label
  no auto-summary
 exit-address-family
! 
ASBR1: Example
!
ip vrf vpn5
 rd 100:5
 route-target export 100:5
 route-target import 100:5
 route-target import 100:1
 route-target import 200:5
 inter-as-hybrid csc next-hop 192.168.35.2
!
ip vrf vpn6
 rd 100:6
 route-target export 100:6
 route-target import 100:6
 route-target import 100:2
 route-target import 200:6
 inter-as-hybrid csc next-hop 192.168.36.2
!
mpls ldp graceful-restart
mpls label protocol ldp
!         
!         
interface Loopback0
 ip address 192.168.15.15 255.255.255.255
!         
interface GigabitEthernet2/3
 ip vrf forwarding vpn5
 ip address 192.168.35.1 255.255.255.0
 mpls bgp forwarding
!         
interface GigabitEthernet2/4
 ip vrf forwarding vpn6
 ip address 192.168.36.1 255.255.255.0
 mpls bgp forwarding
! 
!         
interface GigabitEthernet2/5
 ip address 192.168.34.2 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!         
!         
interface GigabitEthernet2/16
 ip address 192.168.37.1 255.255.255.0
 mpls bgp forwarding
!         
!         
router ospf 100
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 nsf enforce global
 redistribute connected subnets
 network 192.168.15.15 0.0.0.0 area 100
 network 192.168.0.0 0.0.255.255 area 100
!         
router bgp 100
 bgp router-id 192.168.15.15
 no bgp default ipv4-unicast
 no bgp default route-target filter
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.12.12 remote-as 100
 neighbor 192.168.12.12 update-source Loopback0
 neighbor 192.168.0.2 remote-as 200
 neighbor 192.168.0.2 disable-connected-check
 !        
 address-family ipv4
  no synchronization
  no auto-summary
 exit-address-family
 !        
 address-family vpnv4
  neighbor 192.168.12.12 activate
  neighbor 192.168.12.12 send-community extended
  neighbor 192.168.0.2 activate
  neighbor 192.168.0.2 send-community extended
  neighbor 192.168.0.2 inter-as-hybrid
 exit-address-family
 !        
 address-family ipv4 vrf vpn5
  no synchronization
 exit-address-family
 !        
 address-family ipv4 vrf vpn6
  no synchronization
 exit-address-family
!         
ip route 192.168.16.16 255.255.255.255 GigabitEthernet2/16 192.168.0.2
ip route vrf vpn5 192.168.16.16 255.255.255.255 GigabitEthernet2/3 192.168.35.2
ip route vrf vpn6 192.168.16.16 255.255.255.255 GigabitEthernet2/4 192.168.36.2
!
ip vrf vpn5
 rd 200:5
 route-target export 200:5
 route-target import 200:5
 route-target import 200:1
 route-target import 100:1
 route-target import 100:5
 inter-as-hybrid csc next-hop 192.168.35.1
!
ip vrf vpn6
 rd 200:6
 route-target export 200:6
 route-target import 200:6
 route-target import 200:2
 route-target import 100:2
 route-target import 100:6
 inter-as-hybrid csc next-hop 192.168.36.1
!
mpls ldp graceful-restart
mpls label protocol ldp
!     
!         
interface Loopback0
 ip address 192.168.16.16 255.255.255.255
!  
!         
interface GigabitEthernet3/1
 ip vrf forwarding vpn5
 ip address 192.168.35.2 255.255.255.0
 mpls bgp forwarding
!         
interface GigabitEthernet3/2
 ip vrf forwarding vpn6
 ip address 192.168.36.2 255.255.255.0
 mpls bgp forwarding
!      !         
interface GigabitEthernet3/14
 ip address 192.168.0.2 255.0.0.0
 mpls bgp forwarding
!         
interface GigabitEthernet3/15
 ip address 192.168.38.2 255.255.255.0
 mpls label protocol ldp
 mpls ip     
!         
router ospf 200
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 nsf enforce global
 redistribute connected subnets
 network 192.168.16.16 0.0.0.0 area 200
 network 192.168.0.0 0.0.255.255 area 200
!         
router bgp 200
 bgp router-id 192.168.16.16
 no bgp default ipv4-unicast
 no bgp default route-target filter
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.17.17 remote-as 200
 neighbor 192.168.17.17 update-source Loopback0
 neighbor 192.168.37.1 remote-as 100
 neighbor 192.168.37.1 disable-connected-check
 !        
 address-family ipv4
  no synchronization
  no auto-summary
 exit-address-family
 !        
 address-family vpnv4
  neighbor 192.168.17.17 activate
  neighbor 192.168.17.17 send-community extended
  neighbor 192.168.37.1 activate
  neighbor 192.168.37.1 send-community extended
  neighbor 192.168.37.1 inter-as-hybrid
 exit-address-family
 !        
 address-family ipv4 vrf vpn5
  no synchronization
 exit-address-family
 !        
 address-family ipv4 vrf vpn6
  no synchronization
 exit-address-family
!         
ip route 192.168.15.15 255.255.255.255 GigabitEthernet3/14 192.168.37.1
ip route vrf vpn5 192.168.15.15 255.255.255.255 GigabitEthernet3/1 192.168.35.1
ip route vrf vpn6 192.168.15.15 255.255.255.255 GigabitEthernet3/2 192.168.36.1
!
CSC-PE 3: Example
ip vrf vpn1
 rd 200:1
 route-target export 200:1
 route-target import 200:1
 route-target import 200:5
 route-target import 100:1
!
ip vrf vpn2
 rd 200:2
 route-target export 200:2
 route-target import 200:2
 route-target import 200:6
 route-target import 100:2
!         
mpls ldp graceful-restart
mpls label protocol ldp
!
mpls ip  
!         
interface Loopback0
 ip address 192.168.17.17 255.255.255.255
!         
interface FastEthernet4/0/2
 ip vrf forwarding vpn2
 ip address 192.168.5.1 255.255.255.0
 mpls bgp forwarding
!         
!         
interface FastEthernet4/0/4
 ip vrf forwarding vpn1
 ip address 192.168.9.1 255.255.255.0
 mpls bgp forwarding
!         
!         
interface FastEthernet4/0/7
 ip address 192.168.38.1 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!         
router ospf 200
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 nsf enforce global
 redistribute connected subnets
 network 192.168.17.17 0.0.0.0 area 200
 network 192.168.0.0 0.0.255.255 area 200
!         
router bgp 200
 bgp router-id 192.168.17.17
 no bgp default ipv4-unicast
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.16.16 remote-as 200
 neighbor 192.168.16.16 update-source Loopback0
 !        
 address-family vpnv4
  neighbor 192.168.16.16 activate
  neighbor 192.168.16.16 send-community extended
  bgp scan-time import 5
 exit-address-family
 !        
 address-family ipv4 vrf vpn2
  neighbor 192.168.55.0 remote-as 400
  neighbor 192.168.55.0 update-source FastEthernet4/0/2
  neighbor 192.168.55.0 activate
  neighbor 192.168.55.0 as-override
  neighbor 192.168.55.0 advertisement-interval 5
  neighbor 192.168.55.0 send-label
  no auto-summary
  no synchronization
 exit-address-family
 !        
 address-family ipv4 vrf vpn1
  neighbor 192.168.39.2 remote-as 300
  neighbor 192.168.39.2 update-source FastEthernet4/0/4
  neighbor 192.168.39.2 activate
  neighbor 192.168.39.2 as-override
  neighbor 192.168.39.2 advertisement-interval 5
  neighbor 192.168.39.2 send-label
  no auto-summary
  no synchronization
 exit-address-family
! 
CSC-CE3: Example
!
interface Loopback0
 ip address 192.168.18.18 255.255.255.255
! 
!         
interface Ethernet3/3
 ip address 192.168.40.2 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!         
!         
interface FastEthernet5/0
 ip address 192.168.39.2 255.255.255.0
 mpls bgp forwarding
!         
!         
router ospf 300
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 redistribute connected subnets
 redistribute bgp 300 metric 3 subnets
 network 192.168.18.18 0.0.0.0 area 300
 network 192.168.0.0 0.0.255.255 area 300
 distance ospf intra-area 19 inter-area 19 
!         
router bgp 300
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.9.1 remote-as 200
 !        
 address-family ipv4
  redistribute connected
  redistribute ospf 300 metric 4 match internal external 1 external 2
  neighbor 192.168.9.1 activate
  neighbor 192.168.9.1 advertisement-interval 5
  neighbor 192.168.9.1 send-label
  no auto-summary
  no synchronization
 exit-address-family
! 
CSC-CE 4: Example
!
ip cef distributed
!
mpls ldp graceful-restart
mpls label protocol ldp
!
mpls ip
!         
interface Loopback0
 ip address 192.168.24.24 255.255.255.255
! 
!         
interface FastEthernet1/1
 ip address 192.168.55.0 255.255.255.0
 mpls bgp forwarding
!         
!         
interface Ethernet3/5
 ip address 192.168.56.2 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!         
!         
router ospf 400
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 redistribute connected subnets
 redistribute bgp 400 metric 3 subnets
 network 192.168.24.24 0.0.0.0 area 400
 network 192.168.0.0 0.0.255.255 area 400
!         
router bgp 400
 bgp log-neighbor-changes
 neighbor 192.168.5.1 remote-as 200
 !        
 address-family ipv4
  redistribute connected
  redistribute ospf 400 metric 4 match internal external 1 external 2
  neighbor 192.168.5.1 activate
  neighbor 192.168.5.1 advertisement-interval 5
  neighbor 192.168.5.1 send-label
  no auto-summary
  no synchronization
 exit-address-family
PE 3: Example
!
ip cef distributed
!
ip vrf vpn3
 rd 300:3 
 route-target export 300:3
 route-target import 300:3
 mpls ip
!         
!         
mpls ldp graceful-restart
mpls label protocol ldp
!
!         
interface Loopback0
 ip address 192.168.19.19 255.255.255.255
!      
!         
interface Ethernet5/1/1
 ip vrf forwarding vpn3
 ip address 192.168.43.1 255.255.255.0
!         
!         
interface Ethernet5/1/4
 ip address 192.168.40.1 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!     
!         
router ospf 300
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 nsf enforce global
 redistribute connected subnets
 network 192.168.19.19 0.0.0.0 area 300
 network 192.168.0.0 0.0.255.255 area 300
 network 192.168.0.0 0.0.255.255 area 300
!         
router bgp 300
 bgp router-id 192.168.19.19
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.192.10 remote-as 300
 neighbor 192.168.192.10 update-source Loopback0
 !        
 address-family ipv4
  no neighbor 192.168.192.10 activate
  no auto-summary
  no synchronization
 exit-address-family
 !        
 address-family vpnv4
  neighbor 192.168.192.10 activate
  neighbor 192.168.192.10 send-community extended
  bgp scan-time import 5
 exit-address-family
 !        
 address-family ipv4 vrf vpn3
  neighbor 192.168.43.2 remote-as 500
  neighbor 192.168.43.2 activate
  neighbor 192.168.43.2 as-override
  neighbor 192.168.43.2 advertisement-interval 5
  no auto-summary
  no synchronization
 exit-address-family
PE 4: Example
!
ip cef distributed
!
ip vrf vpn4
 rd 400:4
 route-target export 400:4
 route-target import 400:4
!
mpls ldp graceful-restart
mpls ldp protocol ldp
!
mpls ip
!
interface Loopback0
 ip address 192.168.25.25 255.255.255.255
!         
!         
interface Ethernet5/0/4
 ip address 192.168.56.1 255.255.255.0
 mpls label protocol ldp
 mpls ip  
!         
!         
interface Ethernet5/0/7
 ip vrf forwarding vpn4
 ip address 192.168.44.1 255.255.255.0
!         
!         
router ospf 400
 log-adjacency-changes
 auto-cost reference-bandwidth 1000
 nsf enforce global
 redistribute connected subnets
 network 192.168.25.25 0.0.0.0 area 400
 network 192.168.0.0 0.0.255.255 area 400
!         
router bgp 400
 bgp router-id 192.168.25.25
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 neighbor 192.168.13.13 remote-as 400
 neighbor 192.168.13.13 ebgp-multihop 7
 neighbor 192.168.13.13 update-source Loopback0
 !        
 address-family ipv4
  no neighbor 192.168.13.13 activate
  no auto-summary
  no synchronization
 exit-address-family
 !        
 address-family vpnv4
  neighbor 192.168.13.13 activate
  neighbor 192.168.13.13 send-community extended
  bgp scan-time import 5
 exit-address-family
 !        
 address-family ipv4 vrf vpn4
  neighbor 192.168.44.2 remote-as 600
  neighbor 192.168.44.2 activate
  neighbor 192.168.44.2 as-override
  neighbor 192.168.44.2 advertisement-interval 5
  no auto-summary
  no synchronization
 exit-address-family
! 
Additional References

The following sections provide references related to the MPLS VPN—Inter-AS Option AB feature.

•Related Documents

•Standards

•MIBs

•RFCs

•Technical Assistance

Related Documents

Related Topic

Document Title

MPLS VPNs

Configuring MPLS Layer 3 VPNs

MPLS VPN Interautonomous Systems

•MPLS VPN Inter-AS with ASBRs Exchanging VPN-IPv4 Addresses

•MPLS VPN Inter-AS with ASBRs Exchanging IPv4 Routes and MPLS Labels

Standards

Standard

Title

No new or modified standards are supported by this feature, and support for existing standards has not been modified by this feature.

—

MIBs

MIB

MIBs Link

No new or modified MIBs are supported by this feature, and support for existing MIBs has not been modified by this feature.

To locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:

http://www.cisco.com/go/mibs

RFCs

RFC

Title

RFC 2283

Multiprotocol Extensions for BGP-4

RFC 4366

BGP/MPLS IP Virtual Private Networks

Technical Assistance

Description

Link

The Cisco Support website provides extensive online resources, including documentation and tools for troubleshooting and resolving technical issues with Cisco products and technologies.

To receive security and technical information about your products, you can subscribe to various services, such as the Product Alert Tool (accessed from Field Notices), the Cisco Technical Services Newsletter, and Really Simple Syndication (RSS) Feeds.

Access to most tools on the Cisco Support website requires a Cisco.com user ID and password.

http://www.cisco.com/techsupport

Feature Information for MPLS VPN—Inter-AS Option AB

Table 1 lists the release history for this feature.

Not all commands may be available in your Cisco IOS software release. For release information about a specific command, see the command reference documentation.

Use Cisco Feature Navigator to find information about platform support and software image support. Cisco Feature Navigator enables you to determine which Cisco IOS and Catalyst OS software images support a specific software release, feature set, or platform. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.

Note Table 1 lists only the Cisco IOS software release that introduced support for a given feature in a given Cisco IOS software release train. Unless noted otherwise, subsequent releases of that Cisco IOS software release train also support that feature.

Table 1 Feature Information for MPLS VPN—Inter-AS Option AB

Feature Name

Release

Feature Information

MPLS VPN—Inter-AS Option AB

12.2(33)SRC

This feature combines the best functionality of an inter-AS option (10) A and inter-AS option (10) B network to allow an MPLS VPN service provider to interconnect different autonomous systems to provide VPN services.

In 12.2(33)SRC, this feature was introduced.

15.0(1)M

This feature was introduced in 15.0(1)M. The following commands were introduced or modified:

•neighbor inter-as-hybrid

•inter-as-hybrid

Glossary

autonomous system—A collection of networks under a common administration sharing a common routing strategy.

BGP—Border Gateway Protocol. An interdomain routing protocol that exchanges network reachability information with other BGP systems (which may be within the same autonomous system or between multiple autonomous systems).

CE router—customer edge router. A router that is part of a customer network and that interfaces to a provider edge (PE) router. CE routers do not recognize associated MPLS VPNs.

CSC—Carrier Supporting Carrier. A hierarchical VPN model that allows small Service Providers, or customer carriers, to interconnect their IP or MPLS networks over an MPLS backbone. This eliminates the need for customer carriers to build and maintain their own MPLS backbone.

eBGP—external Border Gateway Protocol. A BGP between routers located within different autonomous systems. When two routers, located in different autonomous systems, are more than one hop away from one another, the eBGP session between the two routers is considered a multihop BGP.

iBGP—internal Border Gateway Protocol. A BGP between routers within the same autonomous system.

IGP—Interior Gateway Protocol. Internet protocol used to exchange routing information within a single autonomous system. Examples of common Internet IGP protocols include IGRP, OSPF, IS-IS, and RIP.

IP—Internet Protocol. Network layer protocol in the TCP/IP stack offering a connectionless internetwork service. IP provides features for addressing, type-of-service specification, fragmentation and reassembly, and security. Defined in RFC 791.

LFIB—Label Forwarding Information Base. Data structure used in MPLS to hold information about incoming and outgoing labels and associated Forwarding Equivalence Class (FEC) packets.

MP-BGP—Multiprotocol BGP.

MPLS—Multiprotocol Label Switching. The name of the IETF working group responsible for label switching, and the name of the label switching approach it has standardized.

NLRI—Network Layer Reachability Information. The BGP sends routing update messages containing NLRI to describe a route and how to get there. In this context, an NLRI is a prefix. A BGP update message carries one or more NLRI prefixes and the attributes of a route for the NLRI prefixes; the route attributes include a BGP next hop gateway address and extended community values.

NSF—Nonstop forwarding enables routers to continuously forward IP packets following a Route Processor takeover or switchover to another Route Processor. NSF maintains and updates Layer 3 routing and forwarding information in the backup Route Processor to ensure that IP packets and routing protocol information are forwarded continuously during the switchover and route convergence process.

PE router—provider edge router. A router that is part of a service provider's network. It is connected to a customer edge (CE) router. All MPLS VPN processing occurs in the PE router.

QoS—quality of service. Measure of performance for a transmission system that indicates its transmission quality and service availability.

RD—route distinguisher. An 8-byte value that is concatenated with an IPv4 prefix to create a unique VPN-IPv4 prefix.

RT—route target. Extended community attribute used to identify the VRF routing table into which a prefix is imported.

SLA—Service Level Agreement given to VPN subscribers.

VPN—Virtual Private Network. A secure MPLS-based network that shares resources on one or more physical networks (typically implemented by one or more service providers). A VPN contains geographically dispersed sites that can communicate securely over a shared backbone network.

VRF—VPN routing and forwarding instance. Routing information that defines a VPN site that is attached to a PE router. A VRF consists of an IP routing table, a derived forwarding table, a set of interfaces that use the forwarding table, and a set of rules and routing protocols that determine what goes into the forwarding table.

CCDE, CCENT, CCSI, Cisco Eos, Cisco HealthPresence, Cisco IronPort, the Cisco logo, Cisco Lumin, Cisco Nexus, Cisco Nurse Connect, Cisco Pulse, Cisco StackPower, Cisco StadiumVision, Cisco TelePresence, Cisco Unified Computing System, Cisco WebEx, DCE, Flip Channels, Flip for Good, Flip Mino, Flipshare (Design), Flip Ultra, Flip Video, Flip Video (Design), Instant Broadband, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn, Cisco Capital, Cisco Capital (Design), Cisco:Financed (Stylized), Cisco Store, and Flip Gift Card are service marks; and Access Registrar, Aironet, AllTouch, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, Continuum, EtherFast, EtherSwitch, Event Center, Explorer, Fast Step, Follow Me Browsing, FormShare, GainMaker, GigaDrive, HomeLink, iLYNX, Internet Quotient, IOS, iPhone, iQuick Study, IronPort, the IronPort logo, Laser Link, LightStream, Linksys, MediaTone, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, Network Registrar, PCNow, PIX, PowerKEY, PowerPanels, PowerTV, PowerTV (Design), PowerVu, Prisma, ProConnect, ROSA, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.

All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0908R)

Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.

© 20079 Cisco Systems, Inc. All rights reserved.

Hierarchical Navigation

Cisco IOS and NX-OS Software

MPLS VPN - Inter-AS Option AB

Downloads

Table Of Contents

MPLS VPN—Inter-AS Option AB

Contents

Prerequisites for MPLS VPN—Inter-AS Option AB

Restrictions for MPLS VPN—Inter-AS Option AB

Information About MPLS VPN—Inter-AS Option AB

MPLS VPN—Inter-AS Option AB Introduction

Benefits of MPLS VPN—Inter-AS Option AB

MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding in Non-CSC Networks

Route Distribution for VPN 1

Packet Forwarding for VPN 1

Route Distribution for VPN 2

MPLS VPN—Inter-AS Option AB Route Distribution and Packet Forwarding for CSC

Route Distribution for VPN 1

Packet Forwarding for VPN 1

How to Configure Inter-AS Option AB

Configuring an Inter-AS Option AB Connection

Configuring the VRFs on the ASBR Interface for Each VPN Customer

SUMMARY STEPS

DETAILED STEPS

Configuring the MP-BGP Session Between ASBR Peers

SUMMARY STEPS

DETAILED STEPS

Configuring the Routing Policy for VPNs that Need Inter-AS Connections

SUMMARY STEPS

DETAILED STEPS

Changing an Inter-AS Option A Deployment to an Option AB Deployment

SUMMARY STEPS

DETAILED STEPS

Configuration Examples for MPLS VPN—Inter-AS Option AB

Inter-AS AB Network Configuration: Examples

CE1: Example

CE2: Example

PE1: Example

Route Reflector 1: Example

ASBR1: Example

ASBR 3: Example

PE2: Example

CE3: Example

CE 4: Example

Inter-AS AB CSC Configuration: Examples

CE1: Example

CE2: Example

CE3: Example

CE 4: Example

PE1: Example

CSC-CE1: Example

CSC-PE1: Example

PE 2: Example

CSC-CE2: Example

ASBR1: Example

CSC-PE 3: Example

CSC-CE3: Example

CSC-CE 4: Example

PE 3: Example

PE 4: Example

Additional References

Related Documents

Standards

MIBs

RFCs

Technical Assistance

Feature Information for MPLS VPN—Inter-AS Option AB

Glossary

All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0908R)