TRIN KHAI CNG NGH CHUYN MCH NHN MPLS - VPN Tc gi: Phan Nguyn V Linh, Nguyn Siu

ng. B Mn K Thut Mng, Khoa Mng Truyn Thng, Trng Cao ng Ngh CNTT iSpace ***** Tm tt Internet ngy cng c m rng v pht trin, km theo l s p ng nhu cu s dng v cc dch v v cht lng v tr. nh tuyn IP truyn thng qua b x l Router khng cn p ng c cc nhu cu tin cy, tc , tr.Vic x l mt gi tin IP s rt phc tp v mt nhiu thi gian khi phi tm kim trong bng nh tuyn, cp nht, v tn ti nguyn x l. khc phc nhng nhc im trn th cng ngh chuyn mch nhn a giao thc MPLS (Multiple Protocol Lable Switching) ra i p ng cc nhu cu v tc v chuyn mch nhanh ca Internet. MPLS l cng ngh kt hp nhng u im ca nh tuyn lp 3 v chuyn mch lp 2, cho php chuyn ti cc gi rt nhanh trong mng li (Core Network) v nh tuyn tt mng bin (Edge Network) bng cch da vo nhn (label). MPLS c cc thnh vin IETF xy dng v chun ha. Mt trong nhng ng dng tiu biu ca cng ngh MPLS l MPLS - VPN . Vi MPLS, tr trong mng c gi mc thp nht do cc gi tin trong mng khng phi thng qua cc hot ng ng gi v m ha. MPLS - VPN m bo tnh ring bit v bo mt, c cch nh a ch linh hot, c ch x l thng tin ca MPLS - VPN nm trong phn li c lp vi khch hng. im ni bt l mng khch hng khng cn yu cu thit b h tr MPLS, ng thi d m rng v pht trin. MPLS - VPN cng l i tng nghin cu chnh trong ti ny.

T kha: MPLS, MPLS VPN, Lable Switching, Multiple Protocol.

1. GII THIU Ngy nay, vi s pht trin ca ngnh cng ngh thng tin v in t vin thng ng gp khng nh trong nhng hot ng kinh doanh ca doanh nghip. Khng mt t chc no ph nhn s ng gp ca cng ngh trong l trnh pht trin kinh doanh ca h. Mi mt t chc bt u thc nhiu hn v vic u t vo cng ngh thng tin khng ch h tng mng ni b LAN m i su hn v mng din rng WAN m rng hn cnh ca kinh doanh ca mnh trong nc m vn ra quc t. p ng s pht trin v u t, yu cu v tc , chi ph, dch v bng thng, v kh nng phc v ca cc cng ngh WAN truyn thng th TDM, FRAME RELAY, ATM. khng cn theo kp vi thi i. Cng ngh MPLS ra i p ng nhng yu cu ca thi trng. Cng ngh MPLS vi dch v mng ring o VPN l gii php kt ni mng linh hot, mm do, chi ph thp v im ni bt hn l hp nht h tng mng sn c. 2. TNG QUAN V MPLS MPLS l ch vit tt ca Multi Protocol Label Switching, chuyn mch nhn a giao thc. Mi gi tin IP bao gm c IPv4 v IPv6 hoc c nhng khung Frame lp 2 khi i vo min MPLS s c gn nhn v truyn i trong mi trng mng. Bng cch ny gi tin c th chuyn mch nhanh hn v c th kt hp c a tng mng hp nht. 2.1. Cu trc MPLS Cu trc ca MPLS s chia lm 02 mt phng ring bit Mt phng iu khin: cha cc giao thc nh tuyn thit lp cc ng i c s dng cho vic chuyn tip gi tin lp 3. Ngoi ra mt phng iu khin cn cha gio thc phn phi nhn p ng cho vic to v duy tr thng tin chuyn tip nhn (gi l binding) gia mt nhm switch chuyn mch nhn kt ni vi nhau. Cc giao thc nh tuyn nh OSPF, ISIS, EIGRP v cc giao thc trao i nhn nh LDP, BGP. Mt phng d liu: s dng c s d liu chuyn tip nhn (LFIB-label forwarding information base) c duy tr bi mt thit b chuyn mch nhn thc hin vic chuyn tip gi tin da trn thng tin nhn mang trn gi tin. Mt phng d liu ch l mt thnh phn chuyn tip da trn nhn n gin c lp vi cc giao thc nh tuyn v cc giao thc trao i nhn.

Hnh 1: Cu trc MPLS

2.2. Cu trc nhn Nhn ca MPLS l 1 trng 32 bit c nh vi cu trc xc nh. Trong : Label : c gi tr t 0->220 -1. Gi tr t 0 15 l gi tr dnh ring, s dng gi tr t 16 -> 220 -1. EXP (Experimental) : dng cho QoS. S (Bottom of Stack) : cho bit y l nhn cui cng ca chng nhn (label stack) cha. TTL (Time To Live) : tng t nh trng TTL ca IP header.

Hnh 2: Nhn MPLS

Mt s nhn t bit trong cng ngh MPLS:

Hnh 3: Nhn c bit trong MPLS

Nhn untagged: gi MPLS c chuyn thnh gi IP v c chuyn tip n ch. Untagged c dng trong thc thi MPLS VPN. Nhn pop hay implicit null:

Nhn ny c gn bng P Router gn LSR nht khi gi tin MPLS c chuyn n LSR. Dng 1 gi tr ring l 3 khi c qung b bi LSR lng ging. Nhn c dng trong mng MPLS cho nhng trm k cui. Nhn Explicit-null:

c gn gi gi tr EXP cho nhn top ca gi n. c s dng khi thc hin QoS vi MPLS. Nhn aggregate: vi nhn ny, khi gi tin MPLS n n b bc tt c nhn trong chng nhn ra thnh gi IP, sau tm kim trong FIB xc nh giao thc ng ra cho gi tin ny. 2.3. Qa trnh gn nhn cho gi tin Xy dng bng nh tuyn

Cc Router sau khi khi to s da vo giao thc nh tuyn xy dng bng nh tuyn RIB (Routing Table Information Base) v c lu tr trong mt phng iu khin. Da vo bng RIB, Router s to ra bng FIB (Forwarding Information Base) v c lu tr trong mt phng d liu.

Hnh 4: Xy dng bng FIB

Xy dng bng LIB

Giao thc trao i nhn LDP s khi to v trao i nhn gia nhng Router trong min MPLS to ra bng LIB (Label Information Base)

Hnh 5: Xy dng bng LIB

Xy dng bn LFIB

S kt hp gia bn LIB v bng FIB s to ra bng LFIB.

Hnh 6: Xy dng bng LFIB

Chuyn tip gi tin

chn u tin, gi tin IP i vo min MPLS, Router bin s da vo a ch ch tm kim trong bng FIB gn nhn cho gi tin. chn k tip, Router trong min MPLS s da vo nhn c lu trong bng LFIB xc nh nt k tip, thay i nhn v forward gi tin i. chn cui cng, Router bin s da vo nhn c bit g b gi tin v gi ra ngoi min MPLS.

Hnh 7: Chuyn tip gi tin trong MPLS

3. NG DNG CNG NGH MPLS - VPN. 3.1. Gii thiu VPN l cng ngh mng ring o c xy dng da trn h tng ca MPLS. Mt mng ring yu cu cc khch hang u cui c th kt ni vi nhau v hon ton c lp vi cc mng ring khc. Ngy nay, mi cng ty u c cc chi nhnh c phn b khp ni, yu cu ca cng ngh VPN l xy dng cc kt ni o (Tunnel) thay cho cc kt ni tht (Lease Line) kt ni cc chi nhnh li vi nhau thng qua h tng ca nh cung cp dch v chung. Dch v VPN c xy dng da trn 2 m hnh chnh:

Overlay VPNs: dng khi ISP cung cp kt ni o (virtual point-to-point links) gia cc site khch hng (Frame Relay l 1 v d ca Overlay VPNs).

Hnh 8: Overlay VPNs

Peer-to-peer VPNs: dng khi ISP cng tham gia trong qu trnh nh tuyn cho khch hng.

Hnh 9: Peer-to-peer VPNs

3.2. M hnh mng MPLS VPN Nh cung cp dch d s cung cp h tng dung chung cho cc khch hang c kt ni VPN. Trong : Mng khch hng (customer network): thng l min iu khin ca khch hng gm cc thit b hay cc router tri rng trn nhiu site ca cng mt khch hng. Cc router CE- l nhng router trong mng khch hng giao tip vi mng ca nh cung cp. hnh 10, mng khch hng ca Customer A gm cc router CE1-A, CE2-A v cc thit b trong Site1 v Site2 ca Customer A. Cc router CE ca Customer A l CE1A, CE2-A, router CE ca Customer B l CE1-B, CE2-B. Mng ca nh cung cp (provider network): min thuc iu khin ca nh cung cp gm cc router bin v li kt ni cc site thuc vo cc khch hng trong mt h tng mng chia s. Cc router PE l cc router trong mng ca nh cung cp giao tip vi router bin ca khch hng. Cc router P l router trong li

ca mng, giao tip vi router li khc hoc router bin ca nh cung cp. Trong hnh 10, mng ca nh cung cp gm cc router PE1, PE2, P1, P2, P3, P4. Trong , PE1 v PE2 l router bin ca nh cung cp trong min MPLS - VPN cho khch hng A v B. Router P1, P2, P3, P4 l router nh cung cp (provider router).

Hnh 10: Cu trc mng MPLS - VPN

3.3. Thnh phn trong cu trc MPLS VPN

Bng nh tuyn v chuyn mch o VRF

VRF -Virtual Routing Forwarding: l mt t hp nh tuyn v chuyn mch i km vi mt giao thc nh tuyn trn PE router. Trn PE mi VRF c gn cho 1 VPN ca khch hang phn bit cc khch hang vi nhau. Chp nhn cho php cc khch hang khc nhau c th trng lp IP ln nhau.

Hnh 11: Chc nng ca VRF Route Distinguisher

Trong m hnh nh tuyn MPLS VPN, router PE phn bit cc khch hng bng VRF. Tuy nhin, thng tin ny cn c mang theo gia cc router PE cho php truyn d liu gia cc site khch hng qua MPLS VPN backbone. Router PE phi c kh nng thc thi cc tin trnh cho php cc mng khch hng kt ni vo c khng gian a ch trng lp (overlapping address spaces). Router PE hc cc tuyn ny t cc mng khch hng v qung b thng tin ny bng mng trc chia s ca nh cung cp (share provider backbone). iu ny thc hin bng vic kt hp vi RD (route distinguisher) trong bng nh tuyn o (virtual routing table) trn mt route PE. RD l mt nh danh 64-bit duy nht, thm vo trc 32-bit a ch tuyn c hc t

router CE to thnh a ch 96-bit duy nht c th c chuyn vn gia cc router PE trong min MPLS. Do , duy nht mt RD c cu hnh cho 1 VRF trn router PE. a ch 96-bit cui cng (tng hp ca 32-bit a ch khch hng v 64-bit RD) c gi l mt a ch VPNv4 (Hnh 12). a ch VPNv4 c truyn ti gia cc Router PE bng gio thc MPBGP (Multiprotocol BGP).

Hnh 12: Hot ng ca RD Route-Target (RT)

RD ch s dng ring cho 1 VPN phn bit a ch IP n n vic cc khch hang c nhiu kt ni VPN tr nn kh gii quyt. Khi thc thi cc cu trc mng VPN phc tp (nh: extranet VPN, Internet access VPNs, network management VPN) s dng cng ngh MPLS VPN th RT gi vai tr nng ct. Mt a ch mng c th c kt hp vi mt hoc nhiu export RT khi qung b qua mng MPLS VPN. Nh vy , RT c th kt hp vi nhiu site thnh vin ca nhiu VPN. 3.4. Thng tin nh tuyn qua mi trng MPLS - VPN

Hnh 13: Thng tin nh tuyn qua mi trng MPLS

Gi tin IPv4 c gi t CE Router n PE Router v c cp nht vo trong bng VRF. Gi tin IPv4 s c gn vo thng s RD phn bit nhng a ch IP trng lp tr thnh a ch VPNv4 v c gi t PE router ny n PE router khc bng giao thc MP BGP. PE Router u xa nhn c a ch VPNv4 g b gi tr RD , cho vo bng VRF da vo gi tr RT xc nh cng ra v gi n cho CE Router ch.

4. TRIN KHAI MPLS VPN CHO KHCH HNG 4.1. M hnh trin khai

Hnh 14: M hnh trin khai

4.2. Cc bc trin khai cu hnh Bc 1: Enable CEF trn PE1, PE2, P. Bc 2: Cu hnh giao thc nh tuyn OSPF trn router PE1, PE2, P (cc router trong min MPLS s dng giao thc OSPF nh tuyn) Bc 3: Cu hnh MPLS trn cc interface hot ng trong min MPLS. Bc 4: Cu hnh nh tuyn BGP PE-PE trn router PE1, PE2. Bc 5: nh dng VRF v cc thuc tnh trn router PE: cu hnh VRF trn router PE, RD, RT, lin kt vi interface. Bc 6: Cu hnh giao thc nh tuyn RIPv2 gia PE-CE. 4.3. Kim tra cu hnh A1#sh ip route Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2 ia - IS-IS inter area, * - candidate default, U - per-user static route o - ODR, P - periodic downloaded static route Gateway of last resort is not set 10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks C 10.10.10.10/32 is directly connected, Loopback0 C 10.10.1.0/24 is directly connected, Ethernet0/0 11.0.0.0/24 is subnetted, 1 subnets R 11.11.1.0 [120/5] via 10.10.1.2, 00:00:19, Ethernet0/0 30.0.0.0/24 is subnetted, 1 subnets R 30.30.30.0 [120/5] via 10.10.1.2, 00:00:19, Ethernet0/0 A2#sh ip route 10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks R 10.10.10.10/32 [120/5] via 11.11.1.2, 00:00:05, Ethernet0/0 R 10.10.1.0/24 [120/5] via 11.11.1.2, 00:00:05, Ethernet0/0 11.0.0.0/24 is subnetted, 1 subnets C 11.11.1.0 is directly connected, Ethernet0/0 30.0.0.0/24 is subnetted, 1 subnets C 30.30.30.0 is directly connected, Loopback0

B1#sh ip route 20.0.0.0/24 is subnetted, 1 subnets C 20.20.20.0 is directly connected, Loopback0 40.0.0.0/32 is subnetted, 1 subnets R 40.40.40.40 [120/5] via 10.10.2.2, 00:00:14, FastEthernet0/0 10.0.0.0/24 is subnetted, 1 subnets C 10.10.2.0 is directly connected, FastEthernet0/0 11.0.0.0/24 is subnetted, 1 subnets R 11.11.2.0 [120/5] via 10.10.2.2, 00:00:14, FastEthernet0/0 B2#sh ip route 20.0.0.0/24 is subnetted, 1 subnets R 20.20.20.0 [120/5] via 11.11.2.2, 00:00:12, Ethernet0/0 40.0.0.0/32 is subnetted, 1 subnets C 40.40.40.40 is directly connected, Loopback0 10.0.0.0/24 is subnetted, 1 subnets R 10.10.2.0 [120/5] via 11.11.2.2, 00:00:12, Ethernet0/0 11.0.0.0/24 is subnetted, 1 subnets C 11.11.2.0 is directly connected, Ethernet0/0 P#sh ip route Gateway of last resort is not set 1.0.0.0/32 is subnetted, 1 subnets O 1.1.1.1 [110/2] via 10.10.3.2, 00:10:18, FastEthernet0/0 2.0.0.0/32 is subnetted, 1 subnets O 2.2.2.2 [110/2] via 10.10.4.2, 00:10:18, FastEthernet0/1 10.0.0.0/24 is subnetted, 2 subnets C 10.10.3.0 is directly connected, FastEthernet0/0 C 10.10.4.0 is directly connected, FastEthernet0/1 P#sh mpls int Interface IP Tunnel Operational FastEthernet0/0 Yes (ldp) No Yes FastEthernet0/1 Yes (ldp) No Yes P#sh mpls forwarding-table Local Outgoing Prefix Bytes tag Outgoing Next Hop tag tag or VC or Tunnel Id switched interface 16 Pop tag 1.1.1.1/32 3783 Fa0/0 10.10.3.2 17 Pop tag 2.2.2.2/32 4331 Fa0/1 10.10.4.2 P#sh ip cef Prefix Next Hop Interface 0.0.0.0/0 drop Null0 (default route handler entry) 0.0.0.0/32 receive 1.1.1.1/32 10.10.3.2 FastEthernet0/0 2.2.2.2/32 10.10.4.2 FastEthernet0/1 10.10.3.0/24 attached FastEthernet0/0 10.10.3.0/32 receive 10.10.3.1/32 receive 10.10.3.2/32 10.10.3.2 FastEthernet0/0

10.10.3.255/32 receive 10.10.4.0/24 attached 10.10.4.0/32 receive 10.10.4.1/32 receive 10.10.4.2/32 10.10.4.2 10.10.4.255/32 receive 224.0.0.0/4 drop 224.0.0.0/24 receive 255.255.255.255/32 receive PE1#sh run version 12.4 ! hostname PE1 ! ip cef ip vrf A rd 1:1 route-target export 1:1 route-target import 1:1 ! ip vrf B rd 2:2 route-target export 2:2 route-target import 2:2 ! interface Loopback0 ip address 1.1.1.1 255.255.255.255 ! interface FastEthernet0/0.1 encapsulation dot1Q 2 ip vrf forwarding A ip address 10.10.1.2 255.255.255.0 ! interface FastEthernet0/0.2 encapsulation dot1Q 3 ip vrf forwarding B ip address 10.10.2.2 255.255.255.0 ! interface FastEthernet0/1 ip address 10.10.3.2 255.255.255.0 mpls label protocol ldp mpls ip ! router ospf 1 log-adjacency-changes network 1.1.1.1 0.0.0.0 area 0 network 10.10.3.0 0.0.0.255 area 0 !

FastEthernet0/1

FastEthernet0/1

router rip version 2 ! address-family ipv4 vrf B redistribute bgp 1 metric 5 network 10.0.0.0 no auto-summary exit-address-family ! address-family ipv4 vrf A redistribute bgp 1 metric 5 network 10.0.0.0 no auto-summary exit-address-family ! router bgp 1 no synchronization bgp log-neighbor-changes neighbor 2.2.2.2 remote-as 1 neighbor 2.2.2.2 update-source Loopback0 no auto-summary ! address-family vpnv4 neighbor 2.2.2.2 activate neighbor 2.2.2.2 send-community both exit-address-family ! address-family ipv4 vrf B redistribute rip metric 5 no synchronization exit-address-family ! address-family ipv4 vrf A redistribute rip metric 5 no synchronization exit-address-family PE1#sh ip route 1.0.0.0/32 is subnetted, 1 subnets C 1.1.1.1 is directly connected, Loopback0 2.0.0.0/32 is subnetted, 1 subnets O 2.2.2.2 [110/3] via 10.10.3.1, 00:04:39, FastEthernet0/1 10.0.0.0/24 is subnetted, 2 subnets C 10.10.3.0 is directly connected, FastEthernet0/1 O 10.10.4.0 [110/2] via 10.10.3.1, 00:04:39, FastEthernet0/1 PE1#sh ip route vrf A Routing Table: A 10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks R 10.10.10.10/32 [120/1] via 10.10.1.1, 00:00:12, FastEthernet0/0.1 C 10.10.1.0/24 is directly connected, FastEthernet0/0.1

11.0.0.0/24 is subnetted, 1 subnets B 11.11.1.0 [200/0] via 2.2.2.2, 00:03:21 30.0.0.0/24 is subnetted, 1 subnets B 30.30.30.0 [200/5] via 2.2.2.2, 00:03:21 PE1#sh ip route vfr B Routing Table: B 20.0.0.0/24 is subnetted, 1 subnets R 20.20.20.0 [120/1] via 10.10.2.1, 00:00:10, FastEthernet0/0.2 40.0.0.0/32 is subnetted, 1 subnets B 40.40.40.40 [200/5] via 2.2.2.2, 00:03:31 10.0.0.0/24 is subnetted, 1 subnets C 10.10.2.0 is directly connected, FastEthernet0/0.2 11.0.0.0/24 is subnetted, 1 subnets B 11.11.2.0 [200/0] via 2.2.2.2, 00:03:31 PE1#sh ip bgp vpnv4 all BGP table version is 17, local router ID is 1.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, r RIB-failure, S Stale Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path Route Distinguisher: 1:1 (default for vrf A) *> 10.10.1.0/24 0.0.0.0 0 32768 ? *> 10.10.10.10/32 10.10.1.1 5 32768 ? *>i11.11.1.0/24 2.2.2.2 0 100 0? *>i30.30.30.0/24 2.2.2.2 5 100 0? Route Distinguisher: 2:2 (default for vrf B) *> 10.10.2.0/24 0.0.0.0 0 32768 ? *>i11.11.2.0/24 2.2.2.2 0 100 0? *> 20.20.20.0/24 10.10.2.1 5 32768 ? *>i40.40.40.40/32 2.2.2.2 5 100 0? PE1#sh mpls forwarding-table Local Outgoing Prefix Bytes tag Outgoing Next Hop tag tag or VC or Tunnel Id switched interface 16 Pop tag 10.10.4.0/24 0 Fa0/1 10.10.3.1 17 Aggregate 10.10.1.0/24[V] 1040 18 Untagged 10.10.10.10/32[V] 0 Fa0/0.1 10.10.1.1 19 Aggregate 10.10.2.0/24[V] 520 20 Untagged 20.20.20.0/24[V] 0 Fa0/0.2 10.10.2.1 21 17 2.2.2.2/32 0 Fa0/1 10.10.3.1 PE1#sh ip cef Prefix Next Hop Interface 0.0.0.0/0 drop Null0 (default route handler entry) 0.0.0.0/32 receive 1.1.1.1/32 receive 2.2.2.2/32 10.10.3.1 FastEthernet0/1 10.10.3.0/24 attached FastEthernet0/1 10.10.3.0/32 receive 10.10.3.1/32 10.10.3.1 FastEthernet0/1 10.10.3.2/32 receive

10.10.3.255/32 receive 10.10.4.0/24 10.10.3.1 224.0.0.0/4 drop 224.0.0.0/24 receive 255.255.255.255/32 receive

FastEthernet0/1

PE2#sh mpls interfaces Interface IP Tunnel Operational FastEthernet0/1 Yes (ldp) No Yes PE2#show ip route vrf A Routing Table: A 10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks B 10.10.10.10/32 [200/5] via 1.1.1.1, 00:05:14 B 10.10.1.0/24 [200/0] via 1.1.1.1, 00:05:14 11.0.0.0/24 is subnetted, 1 subnets C 11.11.1.0 is directly connected, FastEthernet0/0.1 30.0.0.0/24 is subnetted, 1 subnets R 30.30.30.0 [120/1] via 11.11.1.1, 00:00:19, FastEthernet0/0.1 PE2#sh ip route vrf B Routing Table: B 20.0.0.0/24 is subnetted, 1 subnets B 20.20.20.0 [200/5] via 1.1.1.1, 00:05:20 40.0.0.0/32 is subnetted, 1 subnets R 40.40.40.40 [120/1] via 11.11.2.1, 00:00:26, FastEthernet0/0.2 10.0.0.0/24 is subnetted, 1 subnets B 10.10.2.0 [200/0] via 1.1.1.1, 00:05:20 11.0.0.0/24 is subnetted, 1 subnets C 11.11.2.0 is directly connected, FastEthernet0/0.2 PE2#sh ip cef Prefix Next Hop Interface 0.0.0.0/0 drop Null0 (default route handler entry) 0.0.0.0/32 receive 1.1.1.1/32 10.10.4.1 FastEthernet0/1 2.2.2.2/32 receive 10.10.3.0/24 10.10.4.1 FastEthernet0/1 10.10.4.0/24 attached FastEthernet0/1 10.10.4.0/32 receive 10.10.4.1/32 10.10.4.1 FastEthernet0/1 10.10.4.2/32 receive 10.10.4.255/32 receive 224.0.0.0/4 drop 224.0.0.0/24 receive 255.255.255.255/32 receive PE2#sh mpls forwarding-table Local Outgoing Prefix Bytes tag Outgoing tag tag or VC or Tunnel Id witched interface 16 Pop tag 10.10.3.0/24 0 Fa0/1 17 16 1.1.1.1/32 0 Fa0/1 18 Aggregate 11.11.1.0/24[V] 1040

Next Hop 10.10.4.1 10.10.4.1

19 Untagged 30.30.30.0/24[V] 0 Fa0/0.1 11.11.1.1 20 Aggregate 11.11.2.0/24[V] 0 21 Untagged 40.40.40.40/32[V] 0 Fa0/0.2 11.11.2.1 PE2#sh ip bgp vpnv4 all BGP table version is 17, local router ID is 10.10.4.2 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, r RIB-failure, S Stale Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path Route Distinguisher: 1:1 (default for vrf A) *>i10.10.1.0/24 1.1.1.1 0 100 0? *>i10.10.10.10/32 1.1.1.1 5 100 0? *> 11.11.1.0/24 0.0.0.0 0 32768 ? *> 30.30.30.0/24 11.11.1.1 5 32768 ? Route Distinguisher: 2:2 (default for vrf B) *>i10.10.2.0/24 1.1.1.1 0 100 0? *> 11.11.2.0/24 0.0.0.0 0 32768 ? *>i20.20.20.0/24 1.1.1.1 5 100 0? *> 40.40.40.40/32 11.11.2.1 5 32768 5. KT LUN Hin nay, MPLS l mt gii php hng u gii quyt nhiu vn trong mng nh: tc , kh nng m rng, qun l cht lng dch v v iu phi lu lng. MPLS l mt cng ngh kt hp tt nht gia nh tuyn lp 3 v chuyn mch lp 2 cho php chuyn ti cc gi rt nhanh trong mng li v nh tuyn tt mng bin bng cch da vo nhn. MPLS n gin ha qu trnh nh tuyn, tng tnh linh ng vi cc tng trung gian, h tr tt m hnh cht lng dch v. Vi kt qu thc nghim m hnh trin khai chng minh rng : VPN l mt trong nhng ng dng quan trng nht ca MPLS. Vi MPLS, tr trong mng c gi mc thp nht do cc gi tin lu chuyn trong mng khng phi thng qua cc hot ng ng gi v m ha. MPLS - VPN m bo tnh ring bit v bo mt, n gi thng tin nh tuyn ring bit cho cc VPN khch hng. MPLS - VPN c cch nh a ch linh hot, cc khch hng c th trng a ch vi nhau. C ch x l thng tin ca MPLS VPN nm hon ton trong mng ca ISP nn c lp vi khch hng, ng thi n khng yu cu thit b h tr MPLS pha khch hng. Vi cc dch v VPN da trn IP, s lng router trn mng tng nhanh theo s lng cc VPN. VPN s phi cha cc bng nh tuyn ngy mt ln. MPLS - VPN s dng mt tp cc BGP ngang hng gia cc LSR bin cho php s lng VPN khng hn ch, d dng to thm cc VPN hay cc site mi v ch cn cu hnh ti cc router bin. Vi nhng u im trn, MPLS - VPN ang c cc nh cung cp dch v Vit Nam (c th hn l VNPT) trin khai trong mng truyn ti ci thin tc chuyn mch, thng lng ng truyn v tit kim b nh CPU cho nhng router li p ng nhu cu s dng ngy cng cao ca khch hng./.