Cisco IOS XE – RSVP L3VPN

nick Cisco

We have done a L2VPN on IOS XE so lets give a L3VPN a try. RSVP is used for signalling, IS-IS for the IGP and P1 acting as a route reflector. 2 Cisco CE devices with OSPF configured to the PEs. Will throw in an OSPF sham link for a bit of fun.

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/mp_l3_vpns/configuration/xe-17/mp-l3-vpns-xe-17-book.html

_Exports_eve-ng_export-20241203-203029Download

PE1

hostname pe1

ip vrf CE1
rd 5.5.5.5:100
route-target export 65200:100
route-target import 65200:100

mpls traffic-eng tunnels
  
interface Loopback0
ip address 5.5.5.5 255.255.255.255
ip router isis 1
isis circuit-type level-2-only

interface Loopback1
ip vrf forwarding CE1
ip address 22.22.22.22 255.255.255.255

interface Tunnel1
ip unnumbered Loopback0
tunnel mode mpls traffic-eng
tunnel destination 7.7.7.7
tunnel mpls traffic-eng autoroute announce
tunnel mpls traffic-eng path-option 1 dynamic

interface GigabitEthernet1
ip address 1.1.1.1 255.255.255.252
ip router isis 1
mpls ip
mpls traffic-eng tunnels
isis circuit-type level-2-only
isis network point-to-point
ip rsvp bandwidth percent 50
ip rsvp signalling hello

interface GigabitEthernet2
ip vrf forwarding CE1
ip address 10.1.1.1 255.255.255.0
ip ospf 1 area 0
  
router ospf 1 vrf CE1
area 0 sham-link 22.22.22.22 33.33.33.33
redistribute bgp 65200

router isis 1
net 49.0000.5555.5555.5555.00
is-type level-2-only
metric-style wide
mpls traffic-eng router-id Loopback0
mpls traffic-eng level-2

router bgp 65200
bgp log-neighbor-changes
neighbor 6.6.6.6 remote-as 65200
neighbor 6.6.6.6 update-source Loopback0

address-family vpnv4
neighbor 6.6.6.6 activate
neighbor 6.6.6.6 send-community extended
exit-address-family

address-family ipv4 vrf CE1
network 22.22.22.22 mask 255.255.255.255
redistribute ospf 1
exit-address-family

P1

hostname p1

mpls traffic-eng tunnels
  
interface Loopback0
ip address 6.6.6.6 255.255.255.255
ip router isis 1
isis circuit-type level-2-only

interface GigabitEthernet1
ip address 1.1.1.2 255.255.255.252
ip router isis 1
mpls ip
mpls traffic-eng tunnels
isis circuit-type level-2-only
isis network point-to-point
ip rsvp bandwidth percent 50
ip rsvp signalling hello

interface GigabitEthernet2
ip address 2.2.2.1 255.255.255.252
ip router isis 1
mpls ip
mpls traffic-eng tunnels
isis circuit-type level-2-only
isis network point-to-point
ip rsvp bandwidth percent 50
ip rsvp signalling hello

router isis 1
net 49.0000.6666.6666.6666.00
is-type level-2-only
metric-style wide
mpls traffic-eng router-id Loopback0
mpls traffic-eng level-2

router bgp 65200
bgp log-neighbor-changes
neighbor 5.5.5.5 remote-as 65200
neighbor 5.5.5.5 update-source Loopback0
neighbor 7.7.7.7 remote-as 65200
neighbor 7.7.7.7 update-source Loopback0

address-family vpnv4
neighbor 5.5.5.5 activate
neighbor 5.5.5.5 send-community extended
neighbor 5.5.5.5 route-reflector-client
neighbor 7.7.7.7 activate
neighbor 7.7.7.7 send-community extended
neighbor 7.7.7.7 route-reflector-client
exit-address-family

PE2

hostname pe2

ip vrf CE2
rd 7.7.7.7:100
route-target export 65200:100
route-target import 65200:100

mpls traffic-eng tunnels
  
interface Loopback0
ip address 7.7.7.7 255.255.255.255
ip router isis 1
isis circuit-type level-2-only
  
interface Loopback1
ip vrf forwarding CE2
ip address 33.33.33.33 255.255.255.255

interface Tunnel1
ip unnumbered Loopback0
tunnel mode mpls traffic-eng
tunnel destination 5.5.5.5
tunnel mpls traffic-eng autoroute announce
tunnel mpls traffic-eng path-option 1 dynamic

interface GigabitEthernet1
ip address 2.2.2.2 255.255.255.252
ip router isis 1
mpls ip
mpls traffic-eng tunnels
isis circuit-type level-2-only
isis network point-to-point
ip rsvp bandwidth percent 50
ip rsvp signalling hello

interface GigabitEthernet2
ip vrf forwarding CE2
ip address 10.2.2.1 255.255.255.0
ip ospf 1 area 0
  
router ospf 1 vrf CE2
router-id 10.2.2.1
area 0 sham-link 33.33.33.33 22.22.22.22
redistribute bgp 65200

router isis 1
net 49.0000.7777.7777.7777.00
is-type level-2-only
metric-style wide
mpls traffic-eng router-id Loopback0
mpls traffic-eng level-2

router bgp 65200
bgp log-neighbor-changes
neighbor 6.6.6.6 remote-as 65200
neighbor 6.6.6.6 update-source Loopback0

address-family vpnv4
neighbor 6.6.6.6 activate
neighbor 6.6.6.6 send-community extended
exit-address-family

address-family ipv4 vrf CE2
network 33.33.33.33 mask 255.255.255.255
redistribute ospf 1
exit-address-family

The L3VPN will now be up and you can confirm by checking the routing tables of the CE devices. In this instance the sham links were configured with IP addresses of 22.22.22.22/32 & 33.33.33.33/32.

Leave a Reply

Your email address will not be published. Required fields are marked *