[c-nsp] Extending MPLS over external providers cloud

Per Carlson perc69+cnsp at gmail.com
Wed Aug 6 03:10:59 EDT 2008


On Wed, Aug 6, 2008 at 05:14,  <lists at daniels.id.au> wrote:

> ... here I
> have a cloud in the middle connecting several (20-30) DSL sites to a head
> office (hub and spoke), and the thought of having to manage multiple
> tunnels (one per vrf), per site is making me cringe..

We have successfully used PPP/L2TP in a similar scenario (multiple
VRF-Lites over one logical IP-interface). What you need is a CPE
supporting "L2TP Client Initiated Tunneling"[1] (available from
12.3(2)T), and a PE able to terminate PPP/L2TP and running MPLS at the
same time (we are using a 7200 running 12.2(31)SB/Enterprise for
this).

The L2TP-session is terminated in one VRF on the PE-router and the
PPP-sessions are directed into other VRF's based on the RADIUS reply.
Yup, you will need a RADIUS- (or TACACS+) server for this.

[1] http://www.cisco.com/en/US/docs/ios/12_3t/12_3t2/feature/guide/gtvoltun.html

-- 
Pelle


More information about the cisco-nsp mailing list