Super Lab OSPF-BGP-MPLS

1

Task:

  1. Configure OSPF Area 0 Backbone MPLS,Make sure int loopback0 advertised into OSPF
    2. Configre MPLS LDP , Loopback0 should be become LDP ID
    3. Configre IBGP AS 500 backbone MPLS, R5 and R3 are Route-Reflector-Client (use loopback0 peering address)
    4. Configure MP-BGP (VPNv4) AS 500, R5 and R3 are Route-Reflector-Client
    5. Configure VPN ABC , R1-R9 and R7-R12
    RD 500:100
    RT import 500:100
    RT export 500:100
    6. Configure VPN XYZ , R5-R10 , R3-R13 , R6-R11 , R7-R11
    RD 500:200
    RT import 500:200
    RT export 500:200
    7. Configure on R7, VPN XYZ always choose R6 as exit point

Lab:

1. Konfigurasikan OSPF Area 0 Backbone MPLS, Pastikan interface loopback0 di advertised ke dalam OSPF

R1

css<br /> router ospf 10<br /> network 10.10.12.0 0.0.0.255 area 0<br /> network 10.10.14.0 0.0.0.255 area 0<br /> network 10.10.0.1 0.0.0.0 area 0<br />

R2

css<br /> router ospf 10<br /> network 10.10.12.0 0.0.0.255 area 0<br /> network 10.10.23.0 0.0.0.255 area 0<br /> network 10.10.0.2 0.0.0.0 area 0<br />

R3

css<br /> router ospf 10<br /> network 10.10.23.0 0.0.0.255 area 0<br /> network 10.10.38.0 0.0.0.255 area 0<br /> network 10.10.35.0 0.0.0.255 area 0<br /> network 10.10.0.3 0.0.0.0 area 0<br />

R4

css<br /> router ospf 10<br /> network 10.10.14.0 0.0.0.255 area 0<br /> network 10.10.45.0 0.0.0.255 area 0<br /> network 10.10.0.4 0.0.0.0 area 0<br />

R5

css<br /> router ospf 10<br /> network 10.10.45.0 0.0.0.255 area 0<br /> network 10.10.35.0 0.0.0.255 area 0<br /> network 10.10.56.0 0.0.0.255 area 0<br /> network 10.10.0.5 0.0.0.0 area 0<br />

R6

css<br /> router ospf 10<br /> network 10.10.56.0 0.0.0.255 area 0<br /> network 10.10.67.0 0.0.0.255 area 0<br /> network 10.10.0.6 0.0.0.0 area 0<br />

R7

css<br /> router ospf 10<br /> network 10.10.67.0 0.0.0.255 area 0<br /> network 10.10.78.0 0.0.0.255 area 0<br /> network 10.10.0.7 0.0.0.0 area 0<br />

R8

css<br /> router ospf 10<br /> network 10.10.78.0 0.0.0.255 area 0<br /> network 10.10.38.0 0.0.0.255 area 0<br /> network 10.10.0.8 0.0.0.0 area 0<br />
Pastikan masing-masing router Backbone berhasil PING

2. Konfigurasikan MPLS LDP, LDP ID adalah Loopback0

Konfigurasi MPLS LDP R1 sampai R8

“`css
mpls ip
mpls label protocol ldp
mpls ldp router-id lo0

interface e0/0<br /> desc connected to backbone AS 500<br /> mpls ip<br /> int e0/1<br /> desc connected to backbone AS 500<br /> mpls ip<br /> “`

3. Konfiguras iBGP AS 500 backbone MPLS, R5 dan R3 adalah Route Reflector (gunakan loopback0 untuk peeringnya)

Konfigurasi iBGP R3 (Route reflector)

css<br /> router bgp 500<br /> neigh 10.10.0.1 remote-as 500<br /> neigh 10.10.0.1 update-source lo0<br /> neigh 10.10.0.1 route-reflector-client<br /> neigh 10.10.0.2 remote-as 500<br /> neigh 10.10.0.2 update-source lo0<br /> neigh 10.10.0.2 route-reflector-client<br /> neigh 10.10.0.4 remote-as 500<br /> neigh 10.10.0.4 update-source lo0<br /> neigh 10.10.0.4 route-reflector-client<br /> neigh 10.10.0.5 remote-as 500<br /> neigh 10.10.0.5 update-source lo0<br /> neigh 10.10.0.5 route-reflector-client<br /> neigh 10.10.0.6 remote-as 500<br /> neigh 10.10.0.6 update-source lo0<br /> neigh 10.10.0.6 route-reflector-client<br /> neigh 10.10.0.7 remote-as 500<br /> neigh 10.10.0.7 update-source lo0<br /> neigh 10.10.0.7 route-reflector-client<br />

Konfigurasi iBGP R5 (Route reflector)

css<br /> router bgp 500<br /> neigh 10.10.0.1 remote-as 500<br /> neigh 10.10.0.1 update-source lo0<br /> neigh 10.10.0.1 route-reflector-client<br /> neigh 10.10.0.2 remote-as 500<br /> neigh 10.10.0.2 update-source lo0<br /> neigh 10.10.0.2 route-reflector-client<br /> neigh 10.10.0.4 remote-as 500<br /> neigh 10.10.0.4 update-source lo0<br /> neigh 10.10.0.4 route-reflector-client<br /> neigh 10.10.0.3 remote-as 500<br /> neigh 10.10.0.3 update-source lo0<br /> neigh 10.10.0.3 route-reflector-client<br /> neigh 10.10.0.6 remote-as 500<br /> neigh 10.10.0.6 update-source lo0<br /> neigh 10.10.0.6 route-reflector-client<br /> neigh 10.10.0.7 remote-as 500<br /> neigh 10.10.0.7 update-source lo0<br /> neigh 10.10.0.7 route-reflector-client<br />

Konfigurasi iBGP R1 sampai R8 (kecuali R3 & R5)

css<br /> router bgp 500<br /> neigh 10.10.0.3 remote-as 500<br /> neigh 10.10.0.3 update-source lo0<br /> neigh 10.10.0.5 remote-as 500<br /> neigh 10.10.0.5 update-source lo0<br />

4. Konfigurasikan MP-BGP (VPNv4) AS 500, R5 and R3 adalah Route Reflector

Konfigurasi MP-BGP R3

css<br /> router bgp 500<br /> address-family vpnv4<br /> neighbor 10.10.0.1 activate<br /> neighbor 10.10.0.2 activate<br /> neighbor 10.10.0.4 activate<br /> neighbor 10.10.0.5 activate<br /> neighbor 10.10.0.6 activate<br /> neighbor 10.10.0.7 activate<br /> neighbor 10.10.0.1 route-reflector-client<br /> neighbor 10.10.0.2 route-reflector-client<br /> neighbor 10.10.0.4 route-reflector-client<br /> neighbor 10.10.0.5 route-reflector-client<br /> neighbor 10.10.0.6 route-reflector-client<br /> neighbor 10.10.0.7 route-reflector-client<br />

Konfigurasi MP-BGP R5

css<br /> router bgp 500<br /> address-family vpnv4<br /> neighbor 10.10.0.1 activate<br /> neighbor 10.10.0.2 activate<br /> neighbor 10.10.0.4 activate<br /> neighbor 10.10.0.3 activate<br /> neighbor 10.10.0.6 activate<br /> neighbor 10.10.0.7 activate<br /> neighbor 10.10.0.1 route-reflector-client<br /> neighbor 10.10.0.2 route-reflector-client<br /> neighbor 10.10.0.4 route-reflector-client<br /> neighbor 10.10.0.3 route-reflector-client<br /> neighbor 10.10.0.6 route-reflector-client<br /> neighbor 10.10.0.7 route-reflector-client<br />

Konfigurasi MP-BGP R1 sampai R8 (kecuali R3 & R5)

css<br /> router bgp 500<br /> address-family vpnv4<br /> neighbor 10.10.0.3 activate<br /> neighbor 10.10.0.5 activate<br />
5. Konfigurasikan VPN ABC, R1-R9 dan R7-R12, dan pastikan masing-masing customer dapat saling berkomunikasi
RD 500:100
RT import 500:100
RT export 500:100

Konfigurasi vrf R1

css<br /> vrf definition ABC<br /> rd 500:100<br /> address-family ipv4<br /> route-target import 500:100<br /> route-target 500:100<br />

Enable vrf di interface

css<br /> int e0/2<br /> vrf forwarding ABC<br /> ip address 172.10.19.1 255.255.255.0<br />

Redistribute EIGRP dengan BGP

css<br /> router eigrp 100<br /> address-family ipv4 vrf ABC autonomous-system 100<br /> redistribute bgp 500 metric 1 1 1 1 1<br /> network 172.10.19.0 0.0.0.255<br /> no auto-summary<br />

Redistribute BGP dengan EIGRP

css<br /> router bgp 500<br /> address-family ipv4 vrf ABC<br /> redistribute eigrp 100<br />

Konfigurasi EIGRP R9

css<br /> router eigrp 100<br /> network 172.10.0.9 0.0.0.0<br /> network 172.10.19.0 0.0.0.255<br /> no auto-summary<br />

Konfigurasi vrf R7

css<br /> vrf definition ABC<br /> rd 500:100<br /> address-family ipv4<br /> route-target import 500:100<br /> route-target 500:100<br />

Enable vrf di interface

css<br /> int e0/2<br /> vrf forwarding ABC<br /> ip address 172.10.127.7 255.255.255.0<br />

Redistribute ospf dengan bgp

css<br /> router ospf 100 vrf ABC<br /> network 172.10.127.0 0.0.0.255 area 0<br /> redistribute bgp 500 subnets<br />

Redistribute bgp dengan ospf

css<br /> router bgp 500<br /> address-family ipv4 vrf ABC<br /> redistribute ospf 100 vrf ABC<br />

Konfigurasi OSPF di R12

css<br /> router ospf 10<br /> network 172.10.127.0 0.0.0.255 area 0<br /> network 172.10.127.0 0.0.0.255 area 0<br />

6. Konfigurasikan VPN XYZ, R5-R10, R3-R13, R6-R11, R7-R11
RD 500:200
RT import 500:200
RT export 500:200

####R5-10###
Konfigurasi vrf di R5

css<br /> R5<br /> vrf definition XYZ<br /> rd 500:200<br /> address-family ipv4<br /> route-target import 500:200<br /> route-target 500:200<br />

Enable vrf di interface

css<br /> int e0/2<br /> vrf forwarding XYZ<br /> ip address 172.10.105.5 255.255.255.0<br />

Konfigurasi static routing untuk vrf

css<br /> ip route vrf XYZ 172.10.0.10 255.255.255.255 172.10.105.10<br />

Redistribute bgp dengan static routing

css<br /> router bgp 500<br /> address-family ipv4 vrf XYZ<br /> redistribute static<br />

Konfigurasi static routing R10

css<br /> ip route 0.0.0.0 0.0.0.0 172.10.105.5<br />

###R3-R13###
Konfigurasi vrf R3

css<br /> vrf definition XYZ<br /> rd 500:200<br /> address-family ipv4<br /> route-target import 500:200<br /> route-target 500:200<br />

Enable vrf di interface

css<br /> interface e0/2<br /> vrf forwarding XYZ<br /> ip address 172.10.133.3 255.255.255.0<br />

Redistribute rip dengan bgp

css<br /> router rip<br /> address-family ipv4 vrf XYZ<br /> version 2<br /> no auto-summary<br /> network 172.10.133.0<br /> redistribute bgp 500 metric 1<br />

Redistribute bgp dengan rip

css<br /> router bgp 500<br /> address-family ipv4 vrf XYZ<br /> redistribute rip<br />

Konfigurasi RIP di R13

css<br /> router rip<br /> version 2<br /> no auto-summary<br /> network 172.10.133.0<br /> network 172.10.0.13<br />

###R6-R11###
Konfigurasi vrf di R6

css<br /> vrf definition XYZ<br /> rd 500:200<br /> address-family ipv4<br /> route-target import 500:200<br /> route-target 500:200<br />

Enable vrf di interface

css<br /> interface e0/3<br /> vrf forwarding XYZ<br /> ip address 172.10.116.6 255.255.255.0<br />

Konfigurasi eBGP di R6

css<br /> router bgp 500<br /> no bgp default ipv4-unicast<br /> address-family ipv4 vrf XYZ<br /> network 172.10.116.0 mask 255.255.255.0<br /> neighbor 172.10.116.1 remote-as 11<br /> neighbor 172.10.116.1 activate<br />

Konfigurasi eBGP di R11

css<br /> router bgp 11<br /> neigh 172.10.116.6 remote-as 500<br /> neigh 172.10.117.7 remote-as 500<br /> network 172.10.0.11 mask 255.255.255.255<br />

###R7-R11###
Konfigurasi vrf di R7

css<br /> vrf definition XYZ<br /> rd 500:200<br /> address-family ipv4<br /> route-target import 500:200<br /> route-target 500:200<br />

Enable vrf di interface

css<br /> interface e0/3<br /> vrf forwarding XYZ<br /> ip address 172.10.117.7 255.255.255.0<br />

Konfigurasi eBGP di R7

css<br /> router bgp 500<br /> no bgp default ipv4-unicast<br /> address-family ipv4 vrf XYZ<br /> network 172.10.117.0 mask 255.255.255.0<br /> neigh 172.10.117.1 remote-as 11<br /> neigh 172.10.117.1 activate<br />

Konfigurasi eBGP di R11

css<br /> router bgp 11<br /> neigh 172.10.116.6 remote-as 500<br /> neigh 172.10.117.7 remote-as 500<br /> network 172.10.0.11 mask 255.255.255.255<br />

7. Konfigurasi di R6, VPN XYZ untuk exit point menggunakan R7

Default jalur menggunakan R6 sebagai exit-point

R11#traceroute 172.10.0.13

Type escape sequence to abort.
Tracing the route to 172.10.0.13

1 172.10.116.6 [AS 500] 0 msec 4 msec 0 msec
2 10.10.67.7 [MPLS: Labels 18/29 Exp 0] 0 msec 0 msec 4 msec
3 10.10.78.8 [MPLS: Labels 18/29 Exp 0] 0 msec 0 msec 0 msec
4 172.10.133.3 [AS 500] [MPLS: Label 29 Exp 0] 4 msec 0 msec 4 msec
5 172.10.133.13 [AS 500] 0 msec
R11#sh ip bgp
BGP table version is 9, local router ID is 172.10.0.11
Status codes: s suppressed, d damped, h history, * valid, > best, i – internal,
r RIB-failure, S Stale
Origin codes: i – IGP, e – EGP, ? – incomplete

Network          Next Hop            Metric LocPrf Weight Path
*  172.10.0.10/32   172.10.117.7                           0 500 ?
*>                  172.10.116.6                           0 500 ?
*> 172.10.0.11/32   0.0.0.0                  0         32768 i
*  172.10.0.13/32   172.10.117.7                           0 500 ?
*>                  172.10.116.6                           0 500 ?
r  172.10.116.0/24  172.10.117.7                           0 500 i
r>                  172.10.116.6             0             0 500 i
r  172.10.117.0/24  172.10.117.7             0             0 500 i
r>                  172.10.116.6                           0 500 i
*  172.10.133.0/24  172.10.117.7                           0 500 ?
*>                  172.10.116.6                           0 500 ?
R11#

Pemilihan jalur BGP menggunakan AS_PATH, Konfigurasi di R6

css<br /> ip prefix-list ethernet3 seq 5 permit 172.10.116.0/24<br /> route-map AS_PREPEND permit 10<br /> match ip address prefix-list ethernet3<br /> set as-path prepend 1 1 1<br /> router bgp 500<br /> address-family ipv4 vrf XYZ<br /> neigh 172.10.116.1 route-map AS_PREPEND out<br />

Hasil setelah pemilihan jalur

R11#traceroute 172.10.0.13

<

p>Type escape sequence to abort.
Tracing the route to 172.10.0.13

1 172.10.117.7 [AS 500] 0 msec 0 msec 4 msec
2 10.10.78.8 [MPLS: Labels 18/29 Exp 0] 0 msec 4 msec 0 msec
3 172.10.133.3 [AS 500] [MPLS: Label 29 Exp 0] 0 msec 0 msec 0 msec
4 172.10.133.13 [AS 500] 4 msec 4 msec *
R11#sh ip bgp
BGP table version is 14, local router ID is 172.10.0.11
Status codes: s suppressed, d damped, h history, * valid, > best, i – internal,
r RIB-failure, S Stale
Origin codes: i – IGP, e – EGP, ? – incomplete

Network          Next Hop            Metric LocPrf Weight Path
*> 172.10.0.10/32   172.10.117.7                           0 500 ?
*> 172.10.0.11/32   0.0.0.0                  0         32768 i
*> 172.10.0.13/32   172.10.117.7                           0 500 ?
r> 172.10.116.0/24  172.10.117.7                           0 500 i
r                   172.10.116.6             0             0 500 1 1 1 i
r> 172.10.117.0/24  172.10.117.7             0             0 500 i
*> 172.10.133.0/24  172.10.117.7                           0 500 ?
R11#

(noted: tujuan dari penggunaan vrf adalah masing masing client yang menggunakan vrf yang sama bisa saling berkomunikasi)

Tinggalkan Balasan

Isikan data di bawah atau klik salah satu ikon untuk log in:

Logo WordPress.com

You are commenting using your WordPress.com account. Logout /  Ubah )

Foto Google

You are commenting using your Google account. Logout /  Ubah )

Gambar Twitter

You are commenting using your Twitter account. Logout /  Ubah )

Foto Facebook

You are commenting using your Facebook account. Logout /  Ubah )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.