[c-nsp] Managed internet VPN solution

Ibrahim Abo Zaid ibrahim.abozaid at gmail.com
Sun Apr 20 16:30:24 EDT 2008


Hi All

one of my clients has a managed Internet solution with his simple MPLS VPN
and Internet access in granted to a selected group of sites including HQ
through managed internet router hosted at his ISP but he has a bit weired
request as he needs a site to connect to the Internet using Internet
connection of other site not directly to  provider Internet gateway

i thought about two solution how this solution can be implemented

1-use PBR under this site PE interface and direct the Internet traffic to
the other site network using set key *set next-hop recursive* and point to
one of the remote site IPs so MPLS labels will do the work and route the
traffic to the remote CE and then to the Internet and of course reverse
reachability will be maintained .

2- isolate these two site into a different VRF and set up overlapping VPN
between the overall simple VPN and the special managed Internet VPN composed
of those 2 sites

any suggestion how this solution can be met will be welcomed :)


best regards
--Abo Zaid


More information about the cisco-nsp mailing list