[c-nsp] MPLS down to the CPE

Andrew Miehs andrew at 2sheds.de
Sat Jul 6 04:58:15 EDT 2013


On Sat, Jul 6, 2013 at 6:16 AM, Mark Tinka <mark.tinka at seacom.mu> wrote:

> On Tuesday, March 05, 2013 03:23:43 PM Saku Ytti wrote:
>
> > Not at all. But adding MPLS to customer would increase
> > our exposure.
>
> At $previous_job, this was a serious consideration, mostly
> because the customers were starting to pressure ISP's into
> making redundancy not only native, but usable without much
> input from the customer.
>

Don't see why adding MPLS would help very much here - especially
considering the security risk!

What is the difference on input for the customer between connecting to a
PE, or connecting to a CE provided by yourselves?
The main reason for running a PE out to a customer site would be if the
customer requires a lot of different VPNs/ VRFs which you are routing for
him - L3 tunnels vs L2 -  and you don't have a leased line capable of
separating these VPNs...

So why couldn't you just run a pair of 3900s CEs (eBGP private ASes between
PEs and CEs, iBGP between the two CEs) and HSRP/ GLBP for the customer side
failover?


More information about the cisco-nsp mailing list