[c-nsp] Central Services Topology - Design question
Saku Ytti
saku at ytti.fi
Tue Jan 14 02:04:10 EST 2020
On Tue, 14 Jan 2020 at 04:00, Harivishnu Abhilash
<Harivishnu.Abhilash at mannai.com.qa> wrote:
> Thanks. As long as SPOKES won't import other SPOKES, Exported RT values - This (even if we have SPOKE VRF's in same PE) should NOT cause SPOKE-SPOKE traffic to bypass the HUB right ? From the SPOKE perspective the routes imports will be / should be from the HUB VRF only. My initial concern was of hair-pinning of SPOKE TO SPOKE TRAFFIC from the HUB VRF.
You addressed your concern perfectly, as long as you do not use
table-label solution, the packet will go all the way to the CE,
however you still need to maintain configuration in CE which forces
packet to FW instead of returning back to PE.
So once you have the config, double check the VPN label is pointing
out to CE, and you're golden.
--
++ytti
More information about the cisco-nsp
mailing list