[j-nsp] BGP/MPLS VPNs (Jonathan Brashear)

[Robin.Hartley at alcatel-lucent.co.nz]

Hi Jonathan,
We have been doing 2547-bis VPNs for several years now.
They are now called RFC 4364 VPNs 

They work very well and are a lot of fun.

We currently have about 80 Juniper nodes, mix of M40e & ERX, with about 
1200 VPNs.

In the network we manage ALL traffic is in VPNs there is nothing, except 
IGP & BGP, at the ip layer.
Even the Internet is delivered via a VPN.

Just remember to firewall Lo0 as it's what very VPN talks to when the 
customers send traffic to the link interface address.
Otherwise every customer can log in to the RE, not good.
Interface groups are excellent for this.

Regards,
Robin

Message: 1
Date: Wed, 29 Aug 2007 08:15:30 -0700
From: "Jonathan Brashear" <jbrashear at hq.speakeasy.net>
Subject: [j-nsp] BGP/MPLS VPNs
To: <juniper-nsp at puck.nether.net>
Message-ID:
 <DBF8121DB18A01459DDF080F7420FCFF04044777 at exchange-2av.speakeasy.hq>
Content-Type: text/plain;                charset="us-ascii"

http://www.juniper.net/solutions/literature/white_papers/200012.pdf

I've been reading up on this solution and it seems very plausible &
scalable, but we haven't tried to set it up in our lab yet.  Has anyone
deployed this service, and if so what's your feedback on it?

Network Engineer, Managed Services
> 214-981-1954 (office) 
> 214-868-8567 (cell)
> jbrashear at hq.speakeasy.net 
http://www.speakeasy.net




This email may contain privileged/confidential information. You may not copy or disclose this email to anyone without the written permission of the sender.  If you have received this email in error please kindly delete this message and notify the sender.  Opinions expressed in this email are those of the sender and not necessarily the opinions of the employer. 

This email and any attached files should be scanned to detect viruses.  No liability will be accepted by the employer for loss or damage (whether caused by negligence or not) as a result of email transmission.