[c-nsp] Multicast over MPLS L2 VPN

david.ponsdesserre at uk.bnpparibas.com david.ponsdesserre at uk.bnpparibas.com
Fri Dec 15 07:39:15 EST 2006 

Ok people , here we go . 

I have this topology  below . PE1 and PE2 are my provider edge router ( 
Our mpls network ) . Ce1 and Ce2 are own by us as well and part of the 
same Vrf.
PE1 talks EBGP with CE1 . Ce1 talks Ebgp (multihop) with customer router1 
trough the customer Fw ,same thing on the other side . 

We have really specifics requirements here :

- if the link between customer router1 and customer router2 goes down we 
must be able to back up it by our Mpls network ( via Pe1 and Pe2) 
- If one the link between PE1 - Ce1 or PE2 - Ce2 goes down , we must back 
up it via the customer link . 

The problem i have are the customer Fws .They don't actually run any sort 
of dynamic routing if they have statics routes to reach, as an example, 
network A trough customer router1 . Well that is true in normal operation 
.. When the link between customer router1 and customer router 2 goes down , 
this is not true anymore as network A will be then coming from Ce1 by Ebgp 
and the traffic is black holed because of the static route on the Fw .

So here is what is working : 

- All the ebgp session are up and running and the routing is working fine 

What is not working is the failover testing when the 10 meg link on 
customer side is down . 

So i am stuck and i don't know what is the best design to fix the issue as 
i am not that knowledgeable in regards of nokia Fw . My clue will be to 
run Opsf on the Nokia firewall to make sure we are able to redirect the 
traffic correctly  .

Any comments are welcome guys .
Thanks 
david

                                10Meg link
customer 
router1----------------------------------------------------------------------customer 
router2-----------------network A
| |
| |
customer FW1                                                    customer 
FW2
| |
| |
CE1 CE2
| |
| |
PE1 PE2





Internet
ecralar at hotmail.com

Sent by: cisco-nsp-bounces at puck.nether.net
15/12/2006 10:42

To
shiraz.malik, cisco-nsp
cc
shirazam
Subject
Re: [c-nsp] Multicast over MPLS L2 VPN






Hello there,
Are You sure this is L2 VPN and not L2.5 (Layer 2 Routed Interworking) 
VPN? 
In latter case only IP packets can get through
and this would explain why OSPF and GRE and working while ISIS doesn't.
HTH
Cheers
Alex

----- Original Message ----- 
From: "Shiraz" <shiraz.malik at dancom.com.pk>
To: <cisco-nsp at puck.nether.net>
Cc: <shirazam at gmail.com>
Sent: Friday, December 15, 2006 9:24 AM
Subject: [c-nsp] Multicast over MPLS L2 VPN


> Hi all,
>
>
>
> As the subject says.I'm having problem in getting ISIS up between 2 
> routers
> connected to an MPLS provider (proving L2 VPN). It is an end-to-end 
> Ethernet
> connectivity of 10Mb and MPLS core of the provider is running on 7600 
> boxes.
>
>
>
> I haven't been able to run ISIS because according to the provider the
> circuit is not letting multicast traffic get from one side to the other 
> and
> vice versa. Though I've successfully run OSPF using P2MP non-broadcast 
and
> defining static OSPF neighbor but ISIS is what I'm running in the rest 
of
> network and would prefer the same on this circuit too. GRE tunnel also 
let
> me run OSPF/ISIS using unicast packets.
>
>
>
> Is/has anyone facing/faced such a problem? Any help?
>
>
>
> One end is on 3660 and other is on 7206VXR and while the provider core 
is 
> on
> 7600s.
>
>
>
> Thanks.
>
>
>
> --
>
> Shiraz A. Malik
>
>
>
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> 

_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/



This message and any attachments (the "message") is 
intended solely for the addressees and is confidential. 
If you receive this message in error, please delete it and
immediately notify the sender. Any use not in accord with
its purpose, any dissemination or disclosure, either whole
or partial, is prohibited except formal approval. The internet
can not guarantee the integrity of this message.
BNP PARIBAS (and its subsidiaries) shall (will) not
therefore be liable for the message if modified. 

**********************************************************************************************

BNP Paribas Private Bank London Branch is authorised
by CECEI & AMF and is regulated by the Financial Services
Authority for the conduct of its investment business in
the United Kingdom.

BNP Paribas Securities Services London Branch is authorised 
by CECEI & AMF and is regulated by the Financial Services 
Authority for the conduct of its investment business in 
the United Kingdom.
  
BNP Paribas Fund Services UK Limited is authorised and 
regulated by the Financial Services Authority

More information about the cisco-nsp mailing list