CCIE Service Provider Fundamentals Workbook.v1.2

CCIE Service Provider

Fundamentals

CCIE Service Provider Fundamentals • Service Provider Lab Overview • Bridging and Switching • IGP Routing • BGP Routing • Multicast Routing • MPLS

• Advanced MPLS • QOS • Security

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

2

Service Provider Lab Overview Service Provider Lab Design • Ethernet, Frame-Relay, ATM, PPP, and PPPoE • RIP, EIGRP, OSPF, ISIS • Multiple BGP AS • Intra-AS and Inter-AS MPLS VPN • AToM and L2TPv3 Interworking • MVPN, PIM-SM, PIM-SSM

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

3

Bridging and Switching • Catalyst 3560 • Frame-Relay

• ATM • PPP • PPPoE

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

4

Bridging and Switching: Catalyst 3560 Catalyst 3560 Overview • SP lab will contain 3560’s with IOS 12.2 • Multi-Layer switch running native IOS • 3560’s will provide all LAN switching • 3560’s will be connected via an 802.1Q trunk • VTP server and client will be used

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

5

Bridging and Switching: Catalyst 3560 Catalyst 3560 Layer 2 • Initial configuration will be done • Verify all required vlans and trunks are in place • Review initial configuration: • show vtp status • show vlan • show interface Fa0/1 switchport • show run interface Fa 0/1

Catalyst 3560 Layer 3 You may be asked to create a routed interface using either a switchport interface or a vlan interface.

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

6

Bridging and Switching: Catalyst 3560 Catalyst 3560 Routing • Routing can be done on virtual or physical interfaces • Configure vlan 12 with IP 172.16.12.2/24 3560 Vlan Interface Routing ip routing ! interface vlan 12 ip address 172.16.12.2 255.255.255.0 • Configure Fa0/1 with IP 172.16.12.2/24 3560 Switchport Interface Routing ip routing ! interface FastEthernet 0/1 no switchport ip address 172.16.12.12 255.255.255.0

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

7

Bridging and Switching: Frame-Relay Frame-Relay Overview • Layer 2 WAN technology • Switches traffic using DLCI’s to create a logical end-to-end PVC

Frame-Relay Terms and Operation • PVC – Permanent Virtual Circuit, logical end to end VC or L2 VPN • DLCI – Data Link Connection Identifier, locally significant • LMI – Local Management Interface signaling between switch and router • LMI Types – Cisco (default) DLCI 1023, ANSI DLCI 0, and Q933A DLCI 0 • NNI – Network to Network Interface – signaling between switches

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

8

Bridging and Switching: Frame-Relay Frame-Relay Configuration • Configured on Physical Serial Interface or Logical sub-interface • DLCI can be dynamically (default) or statically assigned • With NBMA, L2 to L3 mapping is required • In Point-to-Point, mapping not required, only one L2 address exists

R1 Physical Configuration for Non-Broadcast Multiple Access (NBMA) interface Serial0 best, i - internal, Network Next Hop Metric LocPrf Weight Path * > i172.10.0.0/16 10.10.12.1 0 100 0 I * i172.30.0.0/16 10.10.13.3 0 100 0 64500 i R2# show ip bgp 172.30.0.0 10.10.13.3 (inaccessible) from 10.10.12.1 (10.10.12.1) Origin IGP, localpref 100, valid, external, internal

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

67

BGP Routing BGP Next Hop: Multi-Access Media When BGP detects a prefix Next-Hop address is on the same subnet as an advertised peer, the Next-Hop remains unchanged. This is a BGP efficiency mechanism.

R3# show ip bgp 172.20.0.0 BGP routing table entry for 172.20.0.0/16, version 8 10.10.123.2 from 10.10.123.1 (10.10.10.1) Origin IGP, localpref 100, valid, external, best

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

68

BGP Routing Configuring IBGP and EBGP Peering Establish an IBGP session between R1 and R2 in AS 12, and between R3 and R4 in AS 34, using their Loopback 0 interfaces as the source address. Establish an EBGP session between R1 and R3, and between R2 and R4. To distribute internal links, use OSPF Area 0 in AS 12 and ISIS Area 49.3434 in AS 34.

AS 12 should advertise their Loopback0 addresses with community value 12:12. AS 34 should advertise their Loopback0 addresses with community value 34:34.

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

69

BGP Routing IBGP and EBGP Peering Solution: R1 R1 Solution interface loo0 ip add 1.1.1.1 255.255.255.255 ! interface fa 0/0.12 ip add 172.16.12.1 255.255.255.0 ! interface fa 0/0.13 ip add 172.16.13.1 255.255.255.0 ! router ospf 100 router-id 1.1.1.1 network 1.1.1.1 0.0.0.0 area 0 network 172.16.12.1 0.0.0.0 area 0 ! ip bgp-community new-format 172.16.13.3 *> 4.4.4.4/32 172.16.13.3 *i 2.2.2.2

Metric LocPrf Weight Path 0 32768 i 0 100 0 i 0 100 0 34 i 0 0 34 i 0 34 i 0 100 0 34 i

R1# show ip bgp 3.3.3.3 BGP routing table entry for 3.3.3.3/32, version 5 Paths: (2 available, best #2, table Default-IP-Routing-Table) Advertised to non peer-group peers: 2.2.2.2 34 2.2.2.2 (metric 2) from 2.2.2.2 (2.2.2.2) Origin IGP, metric 0, localpref 100, valid, internal Community: 34:34 34 172.16.13.3 from 172.16.13.3 (3.3.3.3) Origin IGP, metric 0, localpref 100, valid, external, best Community: 34:34

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

74

BGP Routing IBGP and EBGP Peering Verification: R3 R1# show ip bgp summary BGP router identifier 3.3.3.3, local AS number 34 Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 4.4.4.4 4 34 161 161 6 0 0 02:24:53 3 172.16.13.1 4 12 152 152 6 0 0 02:26:36 2 R3#show ip bgp Network Next Hop * i1.1.1.1/32 4.4.4.4 *> 172.16.13.1 * i2.2.2.2/32 4.4.4.4 *> 172.16.13.1 *> 3.3.3.3/32 0.0.0.0 r>i4.4.4.4/32 4.4.4.4

Metric LocPrf Weight Path 0 100 0 12 i 0 0 12 i 0 100 0 12 i 0 12 i 0 32768 i 0 100 0i

R3#show ip bgp 1.1.1.1 BGP routing table entry for 1.1.1.1/32, version 2 Paths: (2 available, best #2, table Default-IP-Routing-Table) Advertised to non peer-group peers: 4.4.4.4 12 4.4.4.4 (metric 20) from 4.4.4.4 (4.4.4.4) Origin IGP, metric 0, localpref 100, valid, internal Community: 12:12 12 172.16.13.1 from 172.16.13.1 (1.1.1.1) Origin IGP, metric 0, localpref 100, valid, external, best Community: 12:12

CCIE Service Provider Fundamentals Morgan Stepp | [email protected]

75

BGP Routing Configuring BGP Route Reflection BGP Loop avoidance prevents routes received from an IBGP neighbor to be advertised to another IBGP neighbor. This requires that all IBGP routers in the network be connected in logical full mesh to allow for route propagation. Route reflectors are used to eliminate the full mesh requirement and allow for building IBGP networks that scale. R1 IBGP Route Reflection Configuration router bgp 12