[j-nsp] next hop behavior within between VRFs

Stacy W. Smith stacy at acm.org
Wed Feb 8 21:16:19 EST 2012 

Ido,

Sorry for the delay in getting back to this…

I think I understand what you're trying to accomplish, but just a couple more questions…

I'm assuming this traffic has a source IP in vrf A and a destination IP in inet.0, and that's why you're using FBF to detour the traffic through the servers in vrf B. Is that correct?

Is there anything in vrf B besides the servers that need to "catch the traffic"?

Are the servers in vrf B being used to "catch traffic" for any other vrfs, or only vrf A?

Does traffic from inet.0 also need to pass through the servers in vrf B on it's way to vrf A or is it only the traffic in the other direction vrfA->vrfB servers->inet.0 that passes through the servers?

Thanks,
--Stacy


On Feb 5, 2012, at 3:16 AM, Ido Szargel wrote:

> Hi Stacy,
> 
> Our  topology is
> 
> LNS --- MX vrf A --- logical tunnel --- MX vrf B --- logical tunnel --- MX
> inet.0
> 
> What we're trying to accomplish is pretty simple, due to special needs of
> our customer most traffic should be forwarded to servers in vrf B,
> In order to do that we advertise a default route from inet.0 into vrf B and
> from vrf B into vrf A, we also advertise the customers routes the other way
> around (from vrf A to vrf B and from vrf B to inet.0)
> Then we need to catch the traffic as it enters vrf B to redirect it to the
> servers, this is what the lt is for.
> 
> 
> Regards,
> Ido
> 
> 
> -----Original Message-----
> From: juniper-nsp-bounces at puck.nether.net
> [mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of Stacy W. Smith
> Sent: Saturday, February 04, 2012 11:28 PM
> To: Amos Rosenboim
> Cc: juniper-nsp at puck.nether.net
> Subject: Re: [j-nsp] next hop behavior within between VRFs
> 
> Hi Amos,
> 
> I'm not sure I completely understand what you're trying to accomplish. Could
> you give us an example topology diagram?
> 
> Thanks,
> --Stacy
> 
> On Feb 4, 2012, at 1:20 PM, Amos Rosenboim wrote:
> 
>> Hi All,
>> 
>> I have a router with two VRFs.
>> I need to apply FBF on traffic flowing between the two VRFs so I created a
> logical tunnel that connects the two VRFs.
>> The problem is that when importing routes from one VRF to the other the
> next hop is obviously not through the tunnel.
>> I am trying to apply an import map that will change the next-hop of
> imported routes to the tunnel interface, but it doesn't work (traffic still
> bypasses the tunnel).
>> 
>> I can obviously skip the VRF import method and simply run BGP over the
> tunnels but I would like to avoid this as it forces me to use route
> refection (the routes I need to announce are learnt via iBGP) and so on.
>> Any ideas how to achieve the goal of sharing routes between the VRFs but
> controlling the next hop in each VRF differently ?
>> 
>> Regards
>> 
>> Amos
>> 
>> 
>> _______________________________________________
>> juniper-nsp mailing list juniper-nsp at puck.nether.net 
>> https://puck.nether.net/mailman/listinfo/juniper-nsp
> 
> 
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp

More information about the juniper-nsp mailing list