[j-nsp] Practical VPLS examples (SRX and J series)

Mike Williams mike.williams at comodo.com
Fri Nov 11 12:42:29 EST 2011


So today I created a mesh of L2VPNs interconnecting virtual-routers on 5 
SRX650s and J6350s.
I did the 3 650s as a trial, then added 2 J6350s later because, well, I could.
Configuring a triangle of RSVP-signalled paths, BGP neighbours, and logical 
tunnels, wasn't too bad. Adding 2 more points made it almost maddeningly 
confusing.
We'll be adding more sites sooner-or-later too, and my brain is unlikely to 
cope with anymore sites increasing the mesh exponentially.

So. VPLS. Point-to-multiple-point. Virtual LAN. Brilliant!
I haven't yet found any documentation that I can actually understand though.
"Note: The site range value must be greater than the largest site identifier." 
is especially confusing. "Range" is one number, bigger than any other, hmm.

Could some kind gentle person provide a practical example of VPLS in action, 
for the hard of thinking please?
In simple terms we have 5 devices directly connected to each other (full 
mesh), and all 5 will have a CE (virtual-router) connected to it via ethernet 
logical tunnels.


Thanks!


Currently I'm doing something like this (snipped for berevity);


# show routing-instances vr-l2vpn
instance-type l2vpn;
interface lt-0/0/0.5036;
interface lt-0/0/0.5077;
interface lt-0/0/0.5135;
interface lt-0/0/0.5136;
route-distinguisher 500:5034;
vrf-target target:500:500;
protocols {
    l2vpn {
        encapsulation-type ethernet;
        site fsed {
            site-identifier 34;
            interface lt-0/0/0.5036 {
                remote-site-id 2;
            }
            interface lt-0/0/0.5077 {
                remote-site-id 33;
            }
            interface lt-0/0/0.5135 {
                remote-site-id 101;
            }
            interface lt-0/0/0.5136 {
                remote-site-id 102;
            }
        }
    }
}

# show interfaces lt-0/0/0
unit 135 {
    encapsulation ethernet;
    peer-unit 5135;
    family inet{
        address 10.200.135.35/24;
    }
}
unit 5135 {
    encapsulation ethernet-ccc;
    peer-unit 135;
    family ccc {
        filter {
            input packet-mode-ccc;
        }
    }
}

# show protocols mpls
path-mtu {
    rsvp mtu-signaling;
}
label-switched-path fsed-rmdcjs1 {
    from a.b.c.d;
    to w.x.y.z;
    bandwidth 90m;
    no-cspf;
    fast-reroute;
    primary fsed-rmdcjs1;
}
path fsed-rmdcjs1 {
    e.f.g.h strict;
}


-- 
Mike Williams


More information about the juniper-nsp mailing list