You are on page 1of 94

MC LC MC LC ........................................................................................................................ DANH MC HNH V................................................................................................... THUT NG VIT TT ............................................................................................... LI NI U .................................................................................................................. CHNG 1: TNG QUAN MPLS .............................................................................1 1.

1 S lc v cng ngh IP v cng ngh ATM .................................................1 Cng ngh IP ............................................................................................... 1 Cng ngh ATM ......................................................................................... 1 IP over ATM ............................................................................................... 2 c im mng MPLS ................................................................................4 Phng thc hot ng ...............................................................................5 Lch s pht trin MPLS .............................................................................5 u im ca MPLS .....................................................................................6 1.1.1 1.1.2 1.1.3 1.2

Gii thiu v chuyn mch nhn a giao thc (MPLS). .............................. 4

1.2.1 1.2.2 1.3

Lch s pht trin v cc u im ca MPLS ...............................................5

1.3.1 1.3.2 1.4

Cu trc ca nt MPLS. .................................................................................7

1.4.1 Mt phng chuyn tip ...................................................................................7 1.4.2 Mt phng iu khin (Control Plane) ......................................................... 11 1.5 Cc phn t chnh ca MPLS. ......................................................................12 1.5.1 B nh tuyn chuyn mch nhn LSR ........................................................ 13 1.5.2 ng chuyn mch nhn LSP ....................................................................14 1.5.3 Lp chuyn tip tng ng (FEC) ........................................................... 15 1.6 Cc giao thc s dng trong MPLS. ............................................................ 16 1.6.1 Giao thc phn phi nhn (LDP) .................................................................16 1.6.2 Giao thc CR-LDP. ...................................................................................... 26 1.6.3 Giao thc t trc ti nguyn (RSVP). ...................................................... 30 1.6.4 Giao thc cng bin BGP .............................................................................34 1.7 1.8 c im vt tri ca MPLS so vi IP over ATM. ..................................35 Mt s ng dng MPLS. ...............................................................................37 Mng ring o VPN. .................................................................................37 iu khin lu lng MPLS (MPLS TE). ................................................37

1.8.1 1.8.2

1.8.3

Cht lng dch v trong MPLS (QoS). ...................................................39

CHNG 2: GII THIU CHUNG V VPN......................................................... 42 2.1 2.2 Khi nim v VPN .......................................................................................... 42 Chc nng v li ch ca VPN. .....................................................................43 Chc nng ca mng ring o. ..................................................................43 Tin ch ca mng ring o. ......................................................................43 Nhc im v nhng gii php khc phc. .............................................44 M hnh Overlay VPN (VPN chng ln). .................................................45 M hnh VPN ngang cp (Peer to peer VPN). ..........................................46 VPN truy nhp t xa (Remote Access VPN). ...........................................48 VPN im ti im (Site - to - Site VPN ). ..............................................50

2.2.1 2.2.2 2.2.3 2.3

M hnh VPN. .................................................................................................44

2.3.1 2.3.2 2.4

Phn loi VPN. ............................................................................................... 48

2.4.1 2.4.2

CHNG 3: MNG RING O MPLS..................................................................54 3.1 Gii thiu v MPLS VPN ..............................................................................54 MPLS VPN l g? ...................................................................................... 54 Li ch ca MPLS VPN ............................................................................55 VRF Virtual Routing and Foewarding Table .........................................56 RD Route Distinguisher .........................................................................58 RT Routee Targets .................................................................................59 Giao thc MP-BGP. ..................................................................................60 Hot ng ca mt phng iu khin MPLS VPN. ..................................61 Hot ng ca mt phng d liu MPLS VPN .........................................62 nh tuyn VPNv4 trong mng MPLS VPN ............................................62 Chuyn tip gi trong mng MPLS VPN .................................................64 3.1.1 3.1.2 3.2

Cc thnh phn chnh ca kin trc MPLS VPN .......................................55

3.2.1 3.2.2 3.2.3 3.2.4 3.2.5 3.2.6 3.2.7 3.2.8 3.3

So snh MPLS VPN v VPN truyn thng..................................................65

3.3.1 VPN truyn thng ......................................................................................... 65 3.3.2 MPLS VPN ...................................................................................................66 CHNG 4: THC NGHIM..................................................................................68 4.1 Cu hnh chi tit ti cc thit b .......................................................................69 4.1.1 Cu hnh router R1 ....................................................................................... 69 4.1.2 Cu hnh router R2 ....................................................................................... 70

4.1.3 Cu hnh router R3 ....................................................................................... 70 4.1.4 Cu hnh router R4 ....................................................................................... 72 4.1.5 Cu hnh router R5 ....................................................................................... 73 4.1.6 Cu hnh router R6 ....................................................................................... 73 4.1.7 Cu hnh router R7 ....................................................................................... 73 4.1.8 Cu hnh router R8 ....................................................................................... 74 4.2 Thng tin nh tuyn ......................................................................................... 74 4.2.1 Thng tin nh tuyn R1 ...............................................................................74 4.2.2 Thng tin nh tuyn R2 ...............................................................................74 4.2.3 Thng tin nh tuyn R3 ...............................................................................75 4.2.4 Thng tin nh tuyn R4 ...............................................................................75 4.2.5 Thng tin nh tuyn R5 ...............................................................................76 4.2.6 Thng tin nh tuyn R6 ...............................................................................76 4.2.7 Thng tin nh tuyn R7 ...............................................................................76 4.2.8 Thng tin nh tuyn R8 ...............................................................................77 4.3 Kim tra ..............................................................................................................77 KT LUN ..................................................................................................................84 TI LIU THAM KHO........................................................................................... 85

DANH MC HNH V Hnh 1.1 : MPLS trong m hnh OSI ..............................................................................4 Hnh 1.2 : Cu trc mt nt MPLS..................................................................................7 Hnh 1.3 : nh dng nhn MPLS chung ........................................................................8 Hnh 1.4 : Nhn trong ngn xp nhn..............................................................................9 Hnh 1.5 : V tr ca ngn xp nhn cho gi c gn nhn ...........................................9 Hnh 1.6 : Cu trc ca LFIB ........................................................................................ 10 Hnh 1.7 : Cc thnh phn mt phng d liu v mt phng iu khin ca MPLS.....12 Hnh 1.8 : V tr ca LER v LSR trong mng MPLS ..................................................13 Hnh 1.9 : Hot ng ca LSR trong mng MPLS ....................................................... 14 Hnh 1.10 : ng chuyn mch nhn (LSP) ............................................................... 14 Hnh 1.11 : M hnh LSP Nested ..................................................................................15 Hnh 1.12 : Lp chuyn tip tng ng ....................................................................16 Hnh 1.13 : Giao thc LDP vi cc giao thc khc ...................................................... 17 Hnh 1.14 : Th tc pht hin LSR ln cn ...................................................................19 Hnh 1.15 : Khun dng cc bn tin LDP .....................................................................20 Hnh 1.16 : Bn tin Notification ....................................................................................21 Hnh 1.17 : Tham s TLV Hello chung .........................................................................21 Hnh 1.18 : Bn tin Initialization ...................................................................................22 Hnh 1.19 : Bn tin KeepAlive ...................................................................................... 22 Hnh 1.20 : Bn tin Address .......................................................................................... 23 Hnh 1.21 : Bn tin Address Withdraw .........................................................................23 Hnh 1.22 : Bn tin Lable Mapping ...............................................................................23 Hnh 1.23 : Bn tin Label Request ................................................................................24 Hnh 1.24 : Bn tin Label Withdraw .............................................................................25 Hnh 1.25 : Bn tin Label Release .................................................................................25 Hnh 1.26 : Bn tin Label Abort Request ......................................................................26 Hnh 1.27 : V d v CSPF ............................................................................................ 29 Hnh 1.28 : Th tc bo hiu trong RSVP ....................................................................31 Hnh 1.29 : Nhn phn phi trong bn tin RESV .......................................................... 33 Hnh 1.30 : iu khin lu lng trong MPLS ............................................................. 38 Hnh 1.31 : iu khin lu lng trong MPLS (2) ....................................................... 39 Hnh 2.1 : M hnh VPN chng ln ...............................................................................45 Hnh 2.2 : M hnh VPN ngang hng ............................................................................47 Hnh 2.3 : VPN truy cp t xa ....................................................................................... 49 Hnh 2.4 : Thit lp VPN t xa...................................................................................... 50 Hnh 2.5 : VPN ni b ...................................................................................................51 Hnh 2.6 : Mt v d v Extranet VPN truyn thng ....................................................52 Hnh 2.7 : Thit lp Extranet VPN ................................................................................52 Hnh 2.8 : M hnh VPN kt hp ..................................................................................53 Hnh 3.1 : M hnh MPLS VPN ....................................................................................54

Hnh 3.2 : M hnh mng ring o tng 3......................................................................56 Hnh 3.3 : Chc nng ca VRF .....................................................................................57 Hnh 3.4 : V d v RD ..................................................................................................59 Hnh 3.5 : Cc loi RT v chc nng ca n .................................................................60 Hnh 3.6 : S tng tc gia cc giao thc trong mt phng iu khin ...................... 61 Hnh 3.7 : S truyn tuyn trong mng MPLS VPN .....................................................62 Hnh 3.8 : S truyn tuyn trong mng MPLS VPN Step by step ................................ 63 Hnh 3.9 : Chuyn tip gi trong mng MPLS VPN.....................................................65 Hnh 3.10 : M hnhVPN truyn thng ........................................................................65 Hnh 4.1 : S u ni m phng ...............................................................................68 Hnh 4.2 : u ni vt l ............................................................................................... 68 Hnh 4.3 : Thng tin nh tuyn R1 ...............................................................................74 Hnh 4.4 : Thng tin nh tuyn R2 ...............................................................................75 Hnh 4.5 : Thng tin nh tuyn R3 ...............................................................................75 Hnh 4.6 : Thng tin nh tuyn R4 ...............................................................................75 Hnh 4.7 : Thng tin nh tuyn R5 ...............................................................................76 Hnh 4.8 : Thng tin nh tuyn R6 ...............................................................................76 Hnh 4.9 : Thng tin nh tuyn R7 ...............................................................................76 Hnh 4.10 : Thng tin nh tuyn R8 .............................................................................77 Hnh 4.11 : Show mpls ldp bindings R3........................................................................77 Hnh 4.12 : Show mpls ldp bindings R4........................................................................77 Hnh 4.13 : Show mpls ldp bindings R2........................................................................78 Hnh 4.14 : Show mpls ldp bindings R1........................................................................78 Hnh 4.15 : Bng LFIB trn R3 v R4...........................................................................79 Hnh 4.16 : Bng LFIB trn R1 v R2...........................................................................79

THUT NG VIT TT
A API ARP ASIC ATM Application Programming Interfaces Address Resolution Protocol Application Specific Intergrated Circuits Asynchnorous Tranfer Mode Giao din lp trnh ng dng Giao thc phn gii a ch Mch tch hp chuyn dng Truyn dn khng ng b Truyn ti qua MPLS B BGP Border Gateway Protocol C CE CEF CoS CR CSPF Custome Edge Cisco Express Forwarding Class of Service Constraint-based routing Constrained SPF E E-LSR Egress LER EGP ER Exterior Gateway Protocol Explicit Routing F FDDI FEC FR Fiber Distributed Data Interface Forwarding Equivalency Class Frame Relay G GRE Generic Routing Encapsulation I IGP I-LSR IP Interior Gateway Protocol Ingress LSR Internet Protocol Giao thc nh tuyn trong phm vi min LSR bin vo Giao thc Internet ng gi nh tuyn chung Giao din phn b si Lp chuyn tip tng ng Chuyn tip khung LSR bin ra Giao thc cng ngoi nh tuyn hin Bin pha khch hng Chuyn tip nhanh ca Cisco Cp dch v nh tuyn rng buc SPF cng bc Giao thc cng ng bin

AToM Any Transport over MPLS

IS-IS ISP

Intermediate System to Intermediate System Protocol Internet Service Providers L

Giaot thc h thng trung gian ti h thng trung gian Nh cung cp dch v internet Mng ni b Giao thc phn phi nhn B nh tuyn nhn bin ra C s thng tin chuyn tip nhn Bng c s d liu nhn Tuyn chuyn mch nhn B nh tuyn chuyn mch M iu khin truy nhp mi trng Chuyn mch nhn a giao thc a giao thc cng bin O

LAN LDP LER LFIP LIB LSP LSR

Local Area Network Label Distribution Protocol Label Edge Router Label Forwarding Information Base Label Information Base Label Switch Path Label Switch Router

MAC MPLS MPBGP

Media Access Control Multilprotocol Lable Switching MPLS border gateway Protocol

OSI OSPF

Open Systems Interconnection Open Shortest Path First P

M hnh lin kt h thng u ni m Giao thc OSPF Bin nh cung cp Giao thc im - im Mch o c nh Q Cht lng dch v R B phn bit tuyn Cc ti liu chun do IETF a ra Giao thc thng tin nh tuyn RIP phin bn 2

PE PPP PVC

Provider Edge Point-to-Point Protocol Permanent Virtual Circuit

QoS

Quanlity of Service

RD RFC RIP RIPv2

Route Distinguisher Request for comment Routing Information Protocol RIP version 2

RSVP RT

Resource Reservation Protocol Route Targets S

Giao thc dnh sn ti nguyn Tuyn ch Thut ton u tin ng i ngn nht T Giao thc iu khin truyn dn Thi gian sng U Giao thc d liu ngi dng V Knh o nh danh knh o Thoi qua ATM Tuyn o nh danh gi o Mng ring o

SPF

Shortest Path First

TCP TLV

Transport Control Protocol Time To Live

UDP

User Datagrame Protocol

VC VCI VoIP VP VPI VPN

Virtual Channel Virtual Channel Identifier Voice over ATM Virtual Path Virtual Packet Indentifier Virtual Pravite network

LI NI U
Cng vi s pht trin ca t nc, nhng nm gn y cc ngnh kinh t quc dn u pht trin mnh m, v ngnh cng nghip vin thng cng khng l ngoi l. S ngi s dng cc dch v mng tng ng k, theo d on con s ny ang tng theo hm m. Ngy cng c nhiu cc dch v mi v cht lng dch v cng c yu cu cao hn. ng trc tnh hnh ny, cc vn v mng bt u bc l, cc nh cung cp mng v cc nh cung cp dch v cng c nhiu n lc nng cp cng nh xy dng h tng mng mi. Nhiu cng ngh mng v cng ngh chuyn mch c pht trin, trong s chng ta phi k n cng ngh chuyn mch nhn a giao thc (MPLS). Mt trong s cc ng dng ca MPLS l mng ring o trn nn MPLS (MPLS VPN). Do MPLS VPN c u im hn nhiu so vi VPN truyn thng, v th MPLS VPN c trin khai rng ri nc ta, v th vic tm hiu cc vn v cng ngh MPLS ni chung v MPLS VPN ni ring l vn quan trng i vi sinh vin. Nhn thc c iu , bn n tt nghip Cng ngh chuyn mch nhn a giao thc v ng dng mng ring o gii thiu v qu trnh pht trin dch v cng nh cng ngh mng dn ti MPLS. n ca em gm bn chng nh sau: Chng 1: Tng quan MPLS. Chng 2: Gii thiu chung v VPN. Chng 3: Mng ring o MPLS. Chng 4: Thc nghim. Do kin thc ca em cn c hn hn na thi gian lm n c hn nn n ca em khng trnh khi cn nhiu sai st. Rt mong nhn c s ph bnh, gp ca cc thy c gio v cc bn. Em xin gi li cm n chn thnh n thy Chu Tun Linh, ngi tn tnh hng dn em lm n ny.

n tt nghip i hc

Chng 1: Tng quan v MPLS

CHNG 1: TNG QUAN MPLS


1.1 S lc v cng ngh IP v cng ngh ATM 1.1.1 Cng ngh IP IP l thnh phn chnh ca kin trc ca mng Internet. Trong kin trc ny, IP ng vai tr lp 3. IP nh ngha c cu nh s, c cu chuyn tin, c cu nh tuyn v cc chc nng iu khin mc thp (ICMP). Gi tin IP gm a ch ca bn nhn; a ch l mt s duy nht trong ton mng v mang y thng tin cn cho vic chuyn gi tin ti ch. C cu nh tuyn c nhim v tnh ton ng i ti cc nt trong mng. Do vy, c cu nh tuyn phi c cp nht cc thng tin v topo mng, thng tin v nguyn tc chuyn tin (nh trong BGP) v n phi c kh nng hot ng trong mi trng mng gm nhiu nt. Kt qu tnh ton ca c cu nh tuyn c lu trong cc bng chuyn tin (forwarding table) cha thng tin v chng tip theo c th gi gi tin ti hng ch. Da trn cc bng chuyn tin, c cu chuyn tin chuyn mch cc gi IP hng ti ch. Phng thc chuyn tin truyn thng l theo tng chng mt. cch ny, mi nt mng tnh ton bng chuyn tin mt cch c lp. Phng thc ny, do vy, yu cu kt qu tnh ton ca phn nh tuyn ti tt c cc nt phi nht qun vi nhau. S khng thng nht ca kt qu s dn ti vic chuyn gi tin sai hng, iu ny ng ngha vi vic mt gi tin. Kiu chuyn tin theo tng chng hn ch kh nng ca mng. V d, vi phng thc ny, nu cc gi tin chuyn ti cng mt a ch m i qua cng mt nt th chng s c truyn qua cng mt tuyn ti im ch. iu ny khin mng khng th thc hin mt s chc nng khc nh nh tuyn theo ch, theo loi dch v, v.v... Tuy nhin, bn cnh , phng thc nh tuyn v chuyn tin ny nng cao tin cy cng nh kh nng m rng ca mng. Giao thc nh tuyn ng cho php mng phn ng li vi s c bng vic thay i tuyn khi router bit c s thay i v topo mng thng qua vic cp nht thng tin v trng thi kt ni. Vi cc phng thc nh CIDR (Classless Interdomain Routing), kch thc ca bng chuyn tin c duy tr mc chp nhn c, v do vic tnh ton nh tuyn u do cc nt t thc hin, mng c th c m rng m khng cn thc hin bt k mt thay i no. Tm li, IP l mt giao thc chuyn mch gi c tin cy v kh nng m rng cao. Tuy nhin, vic iu khin lu lng rt kh thc hin do phng thc nh tuyn theo tng chng. Ngoi ra, IP cng khng h tr cht lng dch v. 1.1.2 Cng ngh ATM
-1-

Nguyn Ti Phong H09VT4

n tt nghip i hc

Chng 1: Tng quan v MPLS

ATM (Asynchronous Transfer Mode) l mt k thut truyn tin tc cao. Cng ngh ATM da trn c s ca phng php chuyn mch gi, thng tin c nhm vo cc gi tin c chiu di c nh, trong v tr ca gi khng ph thuc vo ng h ng b m da trn nhu cu bt k ca knh trc. Cc chuyn mch ATM cho php hot ng vi nhiu tc v dch v khc nhau. ATM c hai c im quan trng: - Th nht ATM s dng cc gi c kch thc nh v c nh gi l cc t bo ATM, cc t bo nh vi tc truyn ln s lm cho tr truyn lan v bin ng tr gim nh i vi cc dch v thi gian thc, cng s to iu kin cho vic hp knh tc cao c d dng hn. - Th hai, ATM c kh nng nhm mt vi knh o thnh mt ng o nhm gip cho vic nh tuyn c d dng. ATM khc vi nh tuyn IP mt s im. N l cng ngh chuyn mch hng kt ni. Kt ni t im u n im cui phi c thit lp trc khi thng tin c gi i. ATM yu cu kt ni phi c thit lp bng nhn cng hoc thit lp mt cch t ng thng qua bo hiu. Mt khc, ATM khng thc hin nh tuyn ti cc nt trung gian. Tuyn kt ni xuyn sut c xc nh trc khi trao i d liu v c gi c nh trong sut thi gian kt ni. Trong qu trnh thit lp kt ni, cc tng i ATM trung gian cung cp cho kt ni mt nhn. Vic ny thc hin hai iu: dnh cho kt ni mt s ti nguyn v xy dng bng chuyn t bo ti mi tng i. Bng chuyn t bo ny c tnh cc b v ch cha thng tin v cc kt ni ang hot ng i qua tng i. iu ny khc vi thng tin v ton mng cha trong bng chuyn tin ca router dng IP. Qu trnh chuyn t bo qua tng i ATM cng tng t nh vic chuyn gi tin qua router. Tuy nhin, ATM c th chuyn mch nhanh hn v nhn gn trn cell c kch thc c nh (nh hn ca IP), kch thc bng chuyn tin nh hn nhiu so vi ca IP router, v vic ny c thc hin trn cc thit b phn cng chuyn dng. Do vy, thng lng ca tng i ATM thng ln hn thng lng ca IP router truyn thng. 1.1.3 IP over ATM

Hin nay, trong xy dng mng IP, c n my loi k thut: nh IP over SDH/SONET, IP over Fiber, IP over WDM. Cn k thut ATM, do c cc tnh nng nh tc cao, cht lng dch v tt, iu khin lu lng, m cc mng li dng b nh tuyn truyn thng cha c, nn c s dng rng ri trn mng ng trc IP. Mt khc, do yu cu tnh thi gian thc cn tng i cao i vi mng li, IP over ATM vn l k thut c chn trc tin hin nay. M MPLS
Nguyn Ti Phong H09VT4 -2-

n tt nghip i hc

Chng 1: Tng quan v MPLS

chnh l s ci tin ca IP over ATM kinh in, cho nn y chng ta cn nhn li mt cht v hin trng ca k thut IP over ATM IP over ATM truyn thng l mt k thut kiu xp chng, n xp IP (k thut lp 3) ln ATM (k thut lp 2); giao thc ca hai tng hon ton c lp vi nhau; gia chng phi nh mt lot giao thc (nh NHRP, ARP,) na mi m bo ni thng. iu hin nay trn thc t c ng dng rng ri. Nhng trong tnh trng mng li c m rng nhanh chng, cch xp chng cng gy ra nhiu vn cn xem xt li. Trc ht, vn ni bt l phng thc chng xp phi thit lp cc lin kt PVC ti N nt, tc l cn thit lp mng lin kt. Nh th c th s gy nn vn bnh phng N, rt phin phc, tc l khi thit lp, bo dng, g b s lin kt gia cc im nt, s vic phi lm (nh s VC, lng tin iu khin) u c cp s nhn bnh phng ca N im nt. Khi m mng li ngy cng rng ln, chi phi kiu s lm cho mng li qu ti. Th hai, phng thc xp chng s ct c mng li IP over ATM ra lm nhiu mng logic nh (LIS), cc LIS trn thc t u l trong mt mng vt l. Gia cc LIS dng b nh tuyn trung gian lin kt, iu ny s nh hng n vic truyn nhm gi tin gia cc LIS khc nhau. Mt khc, khi lu lng rt ln, nhng b nh tuyn ny s gy hin tng nghn c chai i vi bng rng. Hai im nu trn u lm cho IP over ATM ch c th dng thch hp cho mng tng i nh, nh mng x nghip, nhng khng th p ng c nhu cu ca mng ng trc Internet trong tng lai. Trn thc t, hai k thut ny ang tn ti vn yu km v kh nng m rng thm. Th ba, trong phng thc chng xp, IP over ATM vn khng c cch no m bo QoS thc s. Th t, vn khi thit k hai loi k thut IP v ATM u lm ring l, khng xt g n k thut kia, iu ny lm cho s ni thng gia hai bn phi da vo mt lot giao thc phc tp, cng vi cc b phc v x l cc giao thc ny. Cch lm nh th c th gy nh hng khng tt i vi tin cy ca mng ng trc. Cc k thut MPOA (Multiprotocol over ATM a giao thc trn ATM), LANE (LAN Emulation M phng LAN), cng chnh l kt qu nghin cu gii quyt cc vn , nhng cc gii php ny u ch gii quyt c mt phn cc tn ti, nh vn QoS chng hn. Phng thc m cc k thut ny dng vn l phng thc chng xp, kh nng m rng vn khng . Hin nay, xut hin mt loi k thut IP over ATM khng dng phng thc xp chng, m dng phng thc chuyn mch nhn, p dng phng thc tch hp. K thut ny chnh l c s ca MPLS.
Nguyn Ti Phong H09VT4 -3-

n tt nghip i hc

Chng 1: Tng quan v MPLS

1.2 Gii thiu v chuyn mch nhn a giao thc (MPLS). Chuyn mch nhn a giao thc MPLS (Multiprotocol Label Switching) l mt cng ngh kt hp c im tt nht gia nh tuyn lp ba v chuyn mch lp hai cho php chuyn ti cc gi rt nhanh trong mng li (core) v nh tuyn tt mng bin (edge) bng cch da vo nhn (label). MPLS l mt phng php ci tin vic chuyn tip gi trn mng bng cch gn nhn vo mi gi IP, t bo ATM, hoc frame lp hai. Phng php chuyn mch nhn gip cc Router v cc b chuyn mch MPLS-enable ATM quyt nh theo ni dung nhn tt hn vic nh tuyn phc tp theo a ch IP ch. MPLS cho php cc ISP cung cp nhiu dch v khc nhau m khng cn phi b i c s h tng sn c. Cu trc MPLS c tnh mm do trong bt k s phi hp vi cng ngh lp hai no. MPLS h tr mi giao thc lp hai, trin khai hiu qu cc dch v IP trn mt mng chuyn mch IP. MPLS h tr vic to ra cc tuyn khc nhau gia ngun v ch trn mt ng trc Internet. Bng vic tch hp MPLS vo kin trc mng, cc ISP c th gim chi ph, tng li nhun, cung cp nhiu hiu qu khc nhau v t c hiu qu cnh tranh cao. Tng ng dng Tng trnh din Tng phin Tng giao vn Tng mng Tng lin kt d liu Tng lin kt d liu Tng vt l OSI TCP/IP Hnh 1.1 : MPLS trong m hnh OSI 1.2.1 c im mng MPLS - Khng c MPLS API, cng khng c thnh phn giao thc pha host. - MPLS ch nm trn cc router.
Nguyn Ti Phong H09VT4 -4-

Tng ng dng

Tng ng dng

Tng giao vn Tng mng

Tng giao vn Tng mng Chuyn mch nhn Tng lin kt d liu

MPLS

n tt nghip i hc

Chng 1: Tng quan v MPLS

- MPLS l giao thc c lp nn c th hot ng cng vi giao thc khc IP nh IPX, ATM, Frame Relay, - MPLS gip n gin ho qu trnh nh tuyn v lm tng tnh linh ng ca cc tng trung gian. 1.2.2 Phng thc hot ng Thay th c ch nh tuyn lp ba bng c ch chuyn mch lp hai.MPLS hot ng trong li ca mng IP. Cc Router trong li phi enable MPLS trn tng giao tip. Nhn c gn thm vo gi IP khi gi i vo mng MPLS. Nhn c tch ra khi gi ra khi mng MPLS. Nhn (Label) c chn vo gia header lp ba v header lp hai. S dng nhn trong qu trnh gi gi sau khi thit lp ng i. MPLS tp trung vo qu trnh hon i nhn (Label Swapping). Mt trong nhng th mnh ca kin trc MPLS l t nh ngha chng nhn (Label Stack). K thut chuyn mch nhn khng phi l k thut mi. Frame relay v ATM cng s dng cng ngh ny chuyn cc khung (frame) hoc cc cell qua mng. Trong Frame relay, cc khung c di bt k, i vi ATM di ca cell l c nh bao gm phn mo u 5 byte v ti tin l 48 byte. Phn mo u ca cell ATM v khung ca Frame Relay tham chiu ti cc knh o m cell hoc khung ny nm trn . S tng quan gia Frame relay v ATM l ti mi bc nhy qua mng, gi tr nhn trong phn mo u b thay i. y chnh l s khc nhau trong chuyn tip ca gi IP. Khi mt route chuyn tip mt gi IP, n s khng thay i gi tr m gn lin vi ch n ca gi; hay ni cch khc n khng thay i a ch IP ch ca gi. Thc t l cc nhn MPLS thng c s dng chuyn tip cc gi v a ch IP ch khng cn ph bin trong MPLS na. 1.3 Lch s pht trin v cc u im ca MPLS 1.3.1 Lch s pht trin MPLS Mc ch ban u ca chuyn mch nhn l mun a tc ca chuyn mch lp 2 vo lp 3. L l ban u cho cc k thut nh MPLS khng lu sau c nhn thy l c u im, bi v cc chuyn mch lp 3 mi c s dng cng ngh ASIC (Application-specific integrated circuit), k thut nn tng c th thi hnh chc nng tm kim vi tc va h tr cho hu ht cc loi giao tip (interface) Chun ca chuyn mch nhn c nhm nghin cu ca IETF v MPLS xut nm 1997 v c nghin cu rng ri. MPLS c pht trin t nhiu k thut chnh, bao gm cc phin bn c quyn v chuyn mch nhn nh chuyn mch nhn ca Cisco (Ciscos Tag Switching), Chuyn mch IP da trn nn nh tuyn tng hp ca IBM (IBMs Aggregate Route-Based IP Switching ARIS), B nh tuyn chuyn mch t bo ca Toshiba (Toshibas Cell-Switched Router CSR), Chuyn mch IP ca Ipsilon (Ipsilons IP Switching) v b nh v IP ca Lucent (Lucents IP Navigator).
Nguyn Ti Phong H09VT4 -5-

n tt nghip i hc

Chng 1: Tng quan v MPLS

Chuyn mch th (Tag Switching), c pht minh bi Cisco, v a n ngi dng ln u tin vo nm 1998. T khi bt u trin khai chuyn mch th, Cisco lm vic chung vi IETF pht trin v thng qua cc chun ca MPLS, hp nht cc c tnh v u im ca Chuyn mch th. 1.3.2 u im ca MPLS - Tc v tr: Chuyn mch nhn c cung cp gii quyt vn v tc v tr mt cch hiu qu. Chuyn mch nhn nhanh hn nhiu chuyn mch IP c in bi v gi tr nhn c t trong header ca gi n, c s dng qun l bng nh tuyn theo cch nhn s c s dng l ch mc trong bng. Vic tm kim ny yu cu ch mt ln l tm ra, ngc li nh tuyn c in c th phi tm trong bng vi nghn ln. Kt qu, trn lung vn chuyn, cc gi c gi thng qua mng nhanh hn thng thng, gim thi gian tr, v p ng thi gian cho ngi dng. - Kh nng m rng (Scalability): D nhin tc l mt mt quan trng ca chuyn mch nhn, nhng dch v nhanh khng phi l tt c m chuyn mch nhn c th cung cp. N cng c th cung cp kh nng m rng, tc l iu tit mt s lng ln v ngy cng tng nhanh chng cc user trn mng Internet. Chuyn mch nhn ngh mt cch gii quyt cho vn pht trin mng mt cch nhanh chng nh vy bng cch cho php mt s lng ln cc a ch IP c lin kt vi nhau trn mt hay mt vi nhn. Cch tip cn ny s ct gim bt bng nh tuyn v cho php mt router phc v nhiu ngi dng hn ti mt thi im v cng khng cn i hi kh nng x l cao ca cc router. - Tnh n gin: Mt u im na ca chuyn mch nhn l v c bn n ch l tp hp ca cc giao thc nh tuyn. N rt n gin, chuyn tip mt gi da trn nhn ca gi . Lm th no mt nhn n mt ng dn ca ngi dng m khng cn quan tm n vic chuyn tip thc s ca ng dn . Tt c c ch iu khin trn c th phc tp, nhng chng khng lm nh hng n hiu qu ca ng dn. Tc l s c rt nhiu cc phng php khc nhau phn phi cc nhn cho ng truyn, tuy nhin sau khi cc nhn c phn phi xong, hat ng chuyn mch nhn s c thc hin mt cch rt nhanh chng. Chuyn mch nhn c th c thc hin trong mt phn mm, trong cc mch in t tch hp hay trong mt vi x l c bit. - Mc s dng ti nguyn: C ch iu khin thit lp mt nhn phi khng lm tiu tn nhiu ti nguyn. N khng c lm mt nhiu ti nguyn v chuyn mch nhn th hon ton khng
Nguyn Ti Phong H09VT4 -6-

n tt nghip i hc

Chng 1: Tng quan v MPLS

lm tiu tn nhiu ti nguyn thc thi vic thnh lp mt con ng chuyn mch nhn cho ng dn. 1.4 Cu trc ca nt MPLS. Mt nt ca MPLS c hai mt phng: mt phng chuyn tip MPLS v mt phng iu khin MPLS. Nt MPLS c th thc hin nh tuyn lp ba hoc chuyn mch lp hai. Hnh sau m t cu trc c bn ca mt nt MPLS

Hnh 1.2 Cu trc mt nt MPLS 1.4.1 Mt phng chuyn tip Mt phng chuyn tip c trch nhim chuyn tip gi da trn gi tr cha trong nhn. Mt phng chuyn tip s dng mt c s thng tin chuyn tip nhn LFIB chuyn tip cc gi. Thut ton m c s dng bi phn t chuyn tip chuyn mch nhn s dng thng tin cha trong LFIB nh l cc thng tin cha trong gi tr nhn. Mi nt MPLS c hai bng lin quan n vic chuyn tip l: c s thng tin nhn LIB v LFIB. LIB cha tt c cc nhn c nt MPLS cc b nh du v nh x ca cc nhn ny n cc nhn c nhn t lng ging (MPLS neighbor) ca n. LFIB s dng mt tp con cc nhn cha trong LIB thc hin chuyn tip gi. Nhn MPLS. Mt nhn MPLS l mt trng 32 bit c nh vi cu trc xc nh. Nhn c dng xc nh mt FEC (Forwarding Equivalence Classes - Nhm chuyn tip tng ng). i vi ATM, nhn c t c hoc l trng VCI hoc l VPI ca mo u ATM. Tuy nhin, nu l khung trong Frame Relay, nhn li c t trng DLCI ca mo u Frame Relay.

Nguyn Ti Phong H09VT4

-7-

n tt nghip i hc

Chng 1: Tng quan v MPLS

K thut lp 2 nh Ethernet, Token Ring, FDDI, v kt ni point to point khng th tn dng c trng a ch lp 2 ca chng mang nhn i. Nhng k thut ny mang nhn trong nhng mo u m (shim). Mo u nhn m c chn thm vo gia lp kt ni v lp mng, nh hnh sau y. Vic s dng mo u nhn m cho php h tr MPLS trn hu ht cc k thut Lp 2. Hnh .... ch ra cu trc ca mt nhn MPLS.

Hnh 1.3 : nh dng nhn MPLS chung 20 bit u (0->19): Gi tr ca nhn, gi tr ny nm trong khon t 0 n 220-1 hoc 1048575. Tuy nhin, 16 gi tr u tin khng c dng s dng; n c s dng vi nhng ngha c bit. 3 bit (20 -> 22) bit thc nghim (EXP experimental). Nhng bit ny ch c s dng trong cht lng ca dch v (QoS); khi cc gi MPLS xp hng c th dng cc bit EXP tng t nh cc bit IP u tin (IP Precedence). Ch : Nhng bit c t tn l thc nghim l c l do lch s. Trong qu kh, khng ai bit cch s dng Bit 23: 1 bit, bit 23 l bit cui ca ngn xp. Bit ny s c lp l 1 khi y l nhn cui cng ca ngn xp, cn i vi cc nhn khc n l 0 (bit BoS). Chng nhn l s tp trung ca nhng nhn m c t pha trn ca gi. Chng nhn c th ch gm 1 nhn, hoc nhiu nhn. S lng cc nhn ( y l trng 32 bit) m ta c th tm thy trong ngn xp l v hn, mc d ta t khi nhn thy mt ngn xp c bn nhn hoc hn. 8 bit cui ( 24 -> 31 ): TTL ( time to live ) c chc nng chng lp vng bng cch nh thi gian tn ti ca gi tin trong mng MPLS tng t nh thnh phn TTL trong header gi tin IP Ngn xp nhn (Label Stack) Ngn xp nhn l k thut s dng trong vic ng gi IP. N cho php mt gi c th mang nhiu hn mt nhn. N c cung cp bi vic a vo mt nhn mi
Nguyn Ti Phong H09VT4 -8-

n tt nghip i hc

Chng 1: Tng quan v MPLS

(mc 2) bn trn nhn tn ti (mc 1), gi c chuyn tip qua mng da trn c s cc nhn mc 2, sau khi qua mng ny th nhn mc 2 b loi ra v vic chuyn tip ny hot ng da trn cc nhn mc 1. Nhn trn cng ng sau header lp 2, cn nhn cui ng trc header lp 3. Ti mi bc nhy nh tuyn ch x l nhn trn cng ngn xp nhn. Chuyn mch nhn c thit k co gin cc mng ln v MPLS h tr chuyn mch nhn vi hot ng phn cp, hot ng phn cp ny da trn kh nng ca MPLS c th mang nhiu hn mt nhn trong gi. Ngn xp nhn cho php thit k cc LSR trao i thng tin vi nhau v hnh ng ny ging nh vic to ng vin node to ra mt min mng rng ln v cc LSR khc. C th ni rng, cc LSR ny l cc node bn trong mt min v khng lin quan n ng vin node. Vic x l mt gi nhn c hon thnh c lp vi tng mc ca s phn cp. Hnh 2.4 th hin v tr nhn trong ngn xp nhn. Ch rng trong ngn xp nhn th nhn cui lun c gi tr S l 1, cc nhn cn li S l 0.

Hnh 1.4 : Nhn trong ngn xp nhn Thng thng cc gi d liu khi vo MPLS ch c gn mt nhn. Tuy nhin trong mt s trng hp phi s dng nhiu nhn p ng yu cu dch v. Mt s dch v c th k ra nh: - MPLS VPN: gm 2 nhn, trong nhn th hai (khng thay i khi qua MPLS) dng hi t cc tuyn s dng MP BGP qua mng MPLS. Nhn u tin c cc router trong MPLS x l nh trong mng MPLS thng thng. - MPLS TE: s dng k thut traffic engineering v phng php phn phi nhn RSVP dng xc nh LSP cn dng. Nhn cn li c dng hi t u cui vi tng LSP. M ha MPLS Ngn xp nhn c t u? Ngn xp t trc gi lp 3 trc header ca giao thc vn chuyn, nhng sau header ca lp 2. Ngn xp MPLS thng c gi l header m (shim header) bi v tr ca n. Hnh .... th hin v tr ca ngn xp nhn cho cc gi c gn nhn.

Hnh 1.5 : V tr ca ngn xp nhn cho gi c gn nhn


Nguyn Ti Phong H09VT4 -9-

n tt nghip i hc

Chng 1: Tng quan v MPLS

C nhiu kiu ng gi m lp 2 c th p ng hoc lin kt c c s h tr ca Cisco IOS nh: PPP, HDLC, Ethernet ... Gi thit rng giao thc truyn ti l IPv4, v phng thc ng gi ng link l PPP, lu tr nhn hin nay l sau header PPP nhng trc header IPv4. Bi v ngn xp nhn trong khung Lp 2 c t trc header ca Lp 3 hoc nhng giao thc truyn ti khc, ta c th c nhng gi tr mi trong trng giao thc lp kt ni d liu, nhng gi tr ny ch ra c phn tip theo ca header lp 2 s l gi c dn nhn MPLS. Trng giao thc lp kt ni d liu l mt gi tr ch ra loi ti m khung lp 2 truyn i. C s thng tin chuyn tip nhn (LFIB) LFIB c duy tr bi mt nt MPLS cha mt chui cc entry (mc nhp). Nh hnh di y, mi ng nhp vo cha mt nhn ti v mt hoc vi mc ph. LFIB c lp bng cha cc gi tr trong nhn ti.

Hnh 1.6 : Cu trc ca LFIB Thut ton chuyn tip gi

Chuyn mch nhn s dng thut ton chuyn tip da trn vic trao i nhn. Nt MPLS m duy tr mt LFIB n ly gi tr nhn t trng nhn tm thy trong gi ti v s dng gi tr ny nh ch s trong LFIB. Sau khi mt nhn ti match (khp) c tm thy, nt MPLS thay th nhn ny trong gi vi mt nhn ra t mc ph v gi gi qua giao din ra c th ti nt tip c th theo bi mc ph. Nu mc ph ch ra mt hng i ra, nt MPLS t gi trong hng i c th. Nu nt MPLS duy tr nhiu LFIB cho mi giao din ca n, n s dng giao din vt l ni gi n chn mt LFIB c th phc v chuyn tip gi. Thng thng,
Nguyn Ti Phong H09VT4 - 10 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

thut ton chuyn tip s dng nhiu loi thut ton chuyn tip unicast, multicast v gi unicast vi bit ToS c thit lp. Tuy nhin, MPLS ch s dng mt thut ton chuyn tip da trn trao i nhn. Mt nt MPLS c th ly ra tt c thng tin n cn chuyn tip nhn cng nh xc nh ti nguyn dnh ring cn thit bng vic truy nhp b nh n. Tra cu tc cao v kh nng chuyn tip lm cho chuyn mch nhn (label switching) thnh k thut chuyn mch c tnh thc thi cao. MPLS cng c th c s dng vn chuyn giao thc Lp 3 khc nh IPv6, IPX hoc Apple Talk t IPv4. c tnh ny gip MPLS c th tng thch tt vi vic chuyn i cc mng t IPv4 sang IPv6. 1.4.2 Mt phng iu khin (Control Plane) Mt phng iu khin MPLS chu trch nhim to ra v lu tr LFIB. Tt c cc nt MPLS phi chy mt giao thc nh tuyn IP trao i thng tin nh tuyn IP vi cc nt MPLS khc trong mng. Cc nt MPLS enable ATM s dng mt b iu khin nhn (LSC Label Switch Controller) nh router 7200, 7500 hoc dng mt m un x l tuyn (RMP Route Processor Module) tham gia x l nh tuyn IP. Cc giao thc nh tuyn Link-state nh OSPF v IS-IS l cc giao thc c chn v chng cung cp cho mi nt MPLS thng tin ca ton mng. Trong cc b nh tuyn thng thng, bng nh tuyn IP dng xy dng b lu tr chuyn mch nhanh (Fast switching cache) hoc FIB C s thng tin chuyn tip (dng bi CEF - Cisco Express Forwarding). Tuy nhin vi MPLS, bng nh tuyn IP cung cp thng tin ca mng ch v tin t subnet s dng cho nhn ghp (binding). Cc giao thc nh tuyn link-state nh OSPF gi thng tin nh tuyn (flood) gia mt tp cc router khng nht thit lin k nhau, trong khi thng tin lin kt nhn (binding) ch c phn b gia cc router lin k bng giao thc phn phi nhn (LDP) hoc TDP (Ciscos Proproetary Tag Distribution Protocol). iu ny lm giao thc nh tuyn link state khng thch hp vi s phn phi thng tin lin kt nhn. Tuy nhin s m rng cc giao thc nh tuyn nh PIM v BGP c th c s dng phn phi thng tin lin kt nhn. iu ny lm cho vic phn phi thng tin lin kt nhn ph hp vi vic phn phi thng tin nh tuyn v trnh iu kin t xy ra m ti nt MPLS c th nhn thng tin lin kt nhn v khng c thng tin nh tuyn thch hp. N cng lm n gin ha ton b h thng vn hnh bi v n ngn nga s cn thit ca mt giao thc ring l nh LDP phn phi thng tin nhn ghp. Nhng nhn trao i vi cc nt MPLS lin k c s dng xy dng LFIB. MPLS s dng mt m hnh chuyn tip da trn trao i nhn m c th c kt ni vi mt phm vi cc module iu khin khc nhau. Mi module iu khin chu trch nhim nh du, phn phi mt tp cc nhn, cng nh chu trch nhim d tr thng tin iu khin khc c lin quan. Cc giao thc cng nh tuyn trong phm vi min IGP c dng xc nhn kh nng n c, s lin kt v nh x gia FEC v a ch trm k (next-hop address).
Nguyn Ti Phong H09VT4 - 11 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Thng tin lin kt nhn ch c phn phi gia cc router ni trc tip vi nhau bng cch dng giao thc phn phi LDP. Cc mun iu khin MPLS gm: nh tuyn Unicast (Unicast Routing) nh tuyn Multicast (Multicast Routing) K thut lu lng (Traffic Engineer) Mng ring o (VPN Virtual private Network) Cht lng dch v (QoS Quality of Service)

Hnh 1.7 : Cc thnh phn mt phng d liu v mt phng iu khin ca MPLS

1.5 Cc phn t chnh ca MPLS. Thit b trong giao thc MPLS c th c phn loi thnh LERs v LSRs

Nguyn Ti Phong H09VT4

- 12 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Hnh 1.8 : V tr ca LER v LSR trong mng MPLS 1.5.1 B nh tuyn chuyn mch nhn LSR Thnh phn c bn ca mng MPLS l thit b nh tuyn chuyn mch nhn LSR (Label Switch Router). Thit b ny thc hin chc nng chuyn tip gi thng tin trong phm vi mng MPLS bng th tc phn phi nhn. l kh nng cn thit hiu c nhn MPLS, nhn v truyn gi c gn nhn trn ng lin kt d liu. Cc loi LSR trong mng MPLS: LSR li vo (Ingress LSR) x l lu lng i vo min MPLS LSR chuyn tip (Transit LSR) x l lu lng bn trong min MPLS; LSR li ra (Egress LSR) x l lu lng ri khi min MPLS; LSR bin (Edge LSR) thng c s dng nh l tn chung cho c LSR li vo v LSR li ra. Nhn chung mt LSRs bt k c 3 chc nng chnh sau: trao i thng tin nh tuyn, trao i nhn v chuyn tip gi d liu i da vo nhn. Hot ng trao i thng tin nh tuyn v trao i nhn xy ra trn mt phng iu khin, cn vic chuyn gi d liu i l hot ng ca mt phng d liu. Chc nng chnh ca mt LSR l chuyn mch nhn. Bi vy mt LSR cn c mt giao thc nh tuyn (OSPF, RIP, EIGRP, IS-IS) v mt giao thc phn phi nhn. S nguyn l chc nng ca mt LSR c cho hnh di y:

Nguyn Ti Phong H09VT4

- 13 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Hnh 1.9 : Hot ng ca LSR trong mng MPLS 1.5.2 ng chuyn mch nhn LSP L ng dn qua mt hoc nhiu LSR cho php gi tin chuyn qua mng trn lp chuyn tip tng ng FEC. ng chuyn mch nhn l mt tp hp cc LSR m chuyn mch mt gi c nhn qua mng MPLS hoc mt phn ca mng MPLS. V c bn, LSP (Label Switch Path) l mt ng dn qua mng MPLS hoc mt phn mng m gi i qua. LSR u tin ca LSP l mt LSR vo, ngc li LSR cui cng ca LSP l mt LSR ra. Tt c cc LSR gia LSR vo v ra chnh l cc LSR trung gian. Trong hnh 1.10 di y, mi tn trn cng ch hng bi v ng chuyn mch nhn l ng theo mt phng hng duy nht. Lung ca cc gi c nhn trong mt hng khc t phi sang tri gia cng cc LSR bin s l mt LSP khc.

Hnh 1.10 ng chuyn mch nhn (LSP)


Nguyn Ti Phong H09VT4 - 14 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

LSR vo ca mt LSP khng nht thit phi l b nh tuyn u tin gn nhn vo gi. Gi c th c gn nhn bi cc LSR trc . Trong hnh 1.11 , ta c th thy LSP m tri rng ton b rng mng MPLS. Mt LSP khc bt u ti LSR th ba v kt thc trc LSR cui cng.Do , khi mt gi i vo LSP th hai trn cng LSR vo ca n (c ngha l LSR th ba), n thc s c dn nhn. LSR vo ca LSP nested (ghp) sau gn mt nhn th hai ln trn gi. Ngn xp nhn ca gi trn LSP th hai by gi c 2 nhn. Nhn trn cng s ph thuc vo LSP nested (ghp), v nhn di cng s ph thuc vo LSP m tri rng ht ton b mng MPLS. ng hm iu khin lu lng d phng l mt v d cho LSP nested (ghp)

Hnh 1.11 M hnh LSP Nested 1.5.3 Lp chuyn tip tng ng (FEC) Lp chuyn tip tng ng (FEC) l mt nhm hoc lung cc gi c chuyn tip dc theo cng mt tuyn v c x l theo cng mt cch chuyn tip. Tt c cc gi cng thuc mt FEC s c nhn ging nhau. Tuy nhin, khng phi tt c cc gi c cng nhn u thuc cng mt FEC, bi v gi tr EXP ca chng c th khc nhau; phng thc chuyn tip khc nhau v n c th ph thuc vo FEC khc nhau. B nh tuyn m quyt nh gi no thuc mt FEC no chnh l LSR bin vo. y l logic v LSR bin vo sp xp v dn nhn vo gi. Sau y l mt vi v d v FEC: Nhng gi vi a ch IP ch lp 3 khp (match) vi mt tin t no Gi truyn multicast thuc nhm no . Gi vi cng phng thc chuyn tip, da trn th t u tin hoc trng im m DiffServ IP (DSCP) Khung lp 2 chuyn qua MPLS nhn c trn mt VC hoc mt giao din LSR bin vo v truyn trn mt VC hoc giao din trn LSR bin ra.
- 15 -

Nguyn Ti Phong H09VT4

n tt nghip i hc

Chng 1: Tng quan v MPLS

Nhng gi vi a ch ch IP lp 3 m thuc mt tp tin t BGP Giao thc cng bin, tt c vi cng BGP bc tip theo.

Hnh 1.12 : Lp chuyn tip tng ng

1.6 Cc giao thc s dng trong MPLS. 1.6.1 Giao thc phn phi nhn (LDP) Nhn u tin c gn trn mt LRS vo v nhn ny s thuc mt LSP. Tuyn i ca gi qua mng MPLS c quy nh (bound) bi mt LSP. S thay i chnh trong qu trnh chuyn tip l nhn trn cng trong ngn xp nhn c trao i ti mi bc nhy. LSR vo s gn mt hoc nhiu nhn ln gi. LSR trung gian s thc hin vic trao i nhn trn cng (nhn i vo) ca gi nhn c (gi c gn nhn) vi mt nhn khc (nhn i ra) v truyn gi trn ng kt ni ra. LSR ra ca LSP s ly ton b nhn ca LSP ny v chuyn tip gi. Xem xt v d v mt phng IPv4 trn MPLS, y l v d n gin nht v mng MPLS. Mt phng IPv4 trn MPLS l mt mng m bao gm mt s cc LSR chy giao thc cng trong IGP (v d tuyn m ngn nht OSPF, IS IS, v giao thc nh tuyn cng trong nng cao EIGRP). LSR vo tm kim a ch IPv4 ch ca gi, gn nhn, v chuyn tip gi. LSR tip theo (v bt k LSR trung gian khc) nhn gi trao i nhn nhn vi nhn gi, v chuyn tip gi. LSR ra tch nhn v chuyn tip gi IPv4 khng c nhn trn ng kt ni ra. thc hin vic ny, nhng LSR lin k phi ng vi nhn s dng cho mi tin t IGP. Do , mi LSR trung gian phi c kh nng tnh ton thc hin vic trao i nhn gi v nhn nhn cho nhau. iu ny c ngha l ta cn phi c mt k thut bo cho b nh tuyn bit nhn no c s dng khi chuyn tip gi. Gia mi cp b nh tuyn lin k l nhng nhn ni b. i vi nhng b nh tuyn lin k ng nhng nhn m s dng cho tin t no,gia chng cn c mt vi mu giao tip; nu khng, nhng b nh tuyn
Nguyn Ti Phong H09VT4 - 16 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

s khng bit nhn gi no cn ni vi nhn nhn no. Do cn thit phi c giao thc phn phi nhn. Giao thc phn phi nhn c nhm nghin cu MPLS ca IETF xy dng v ban hnh di tn RFC 3036. Phin bn mi nht c cng b nm 2001 a ra nhng nh ngha v nguyn tc hot ng ca giao thc LDP. Giao thc phn phi nhn c s dng trong qu trnh gn nhn cho cc gi thng tin yu cu. Giao thc LDP l giao thc iu khin tch bit c cc LSR s dng trao i v iu phi qu trnh gn nhn/FEC. Giao thc ny l mt tp hp cc th tc trao i cc bn tin cho php cc LSR s dng gi tr nhn thuc FEC nht nh truyn cc gi thng tin.

Hnh 1.13 : Giao thc LDP vi cc giao thc khc Giao thc phn phi nhn LDP c cc c trng c bn sau y: LDP cung cp cc k thut pht hin LSR cho php LSR tm kim v thit lp truyn thng. LDP nh ngha 4 loi bn tin: - Bn tin Discovery (pht hin): c dng thng bo v lu gi s c mt ca mt LSR trong mng. LSR gi nh k mt bn tin Hello qua cng UDP vi a ch a hng ca cc router trn mng con ny.

Nguyn Ti Phong H09VT4

- 17 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

- Bn tin Session (qun l phin): c dng thit lp, duy tr, hu b cc phin gia cc LDP ngang cp (LSR). Hot ng ny i hi vic gi mt bn tin khi to qua TCP. Sau khi hot ng ny kt thc, hai LSR s l LDP ngang cp. - Bn tin Advertisement (pht hnh): c dng thit lp, thay i v hu b cc trao i nhn cho FEC. Cc bn tin ny cng c truyn qua TCP. Mt LSR c th yu cu mt trao i nhn vi mt LSR bn cnh khi n mun. N cng c th qung bo cc trao i nhn khi n mun mt LDP ngang cp dng mt trao i nhn. - Bn tin Notification (xc nhn): Cng c gi qua TCP v c dng cung cp cc thng tin v tnh trng, biu hin v thng tin v li. Chy trn TCP cung cp phng thc phn phi bn tin ng tin cy (ngoi tr cc bn tin DISCOVERY) Thit k cho php kh nng m rng d dng, s dng cc bn tin c xc nh nh mt tp hp cc i tng m ha TLV (kiu, di, gi tr). M ha TLV ngha l mi i tng bao gm mt trng kiu biu th v loi i tng ch nh, mt trng di thng bo di ca i tng v mt trng gi tr ph thuc vo trng kiu. Hai trng u tin c di c nh v c t ti v tr u tin ca i tng cho php d dng thc hin vic loi b kiu i tng m n khng nhn ra. Trng gi tr c mt i tng c th gm nhiu i tng m ha TLV hn. Pht hin LSR ln cn Th tc pht hin LSR ln cn ca LDP chy trn UDP v thc hin nh sau: Mt LSR nh k gi i bn tin HELLO ti cc cng UDP bit trong tt c cc b nh tuyn trong mng con ca nhm multicast. Tt c cc LSR tip nhn bn tin HELLO ny trn cng UDP. Nh vy, ti mt thi im no LSR s bit c tt c cc LSR khc m n c kt ni trc tip. Khi LSR nhn bit c a ch ca LSR khc bng c ch ny th n s thit lp kt ni TCP n LSR . Khi phin LDP c thit lp gia 2 LSR. Phin LDP l phin hai chiu c ngha l mi LSR hai u kt ni u c th yu cu v gi lin kt nhn. Trong trng hp cc LSR khng kt ni trc tip trong mt mng con (subnet) ngi ta s dng mt c ch b sung nh sau: LSR nh k gi bn tin HELLO n cng UDP bit ti i ch IP xc nh c khai bo khi lp cu hnh. u nhn bn tin ny c th tr li li bng bn tin HELLO khc truyn mt chiu ngc li n LSR gi v vic thit lp cc phin LDP c thc hin nh trn.
Nguyn Ti Phong H09VT4 - 18 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Thng thng trng hp ny hay c p dng khi gia 2 LSR c mt ng LSP cho iu khin lu lng v n yu cu phi gi cc gi c nhn qua ng LSP .

Hnh 1.14 : Th tc pht hin LSR ln cn Cc thut ng trong hnh 1.14 c gii thch nh sau UDP Hello: bn tin li cho TCP Open: yu cu m kt ni TCP Initialization: khi to kt ni TCP Label Request: bn tin yu cu nhn Label Mapping: bn tin nh x Giao thc truyn ti tin cy Chng ta bit, bn tin LDP c truyn trn giao thc TCP, nhng vic quyt nh s dng TCP truyn cc bn tin LDP l mt vn cn xem xt. Yu cu v tin cy l rt cn thit. Nu vic lin kt nhn hay yu cu lin kt nhn c truyn mt cch khng tin cy th lu lng cng khng c chuyn mch theo nhn. Mt vn quan trng na l th t cc bn tin phi bo m ng. Nh vy liu vic s dng TCP truyn LDP c bo m hay khng v c nn xy dng lun chc nng truyn ti ny trong bn thn LDP hay khng?. Vic xy dng cc chc nng bo m tin cy trong LDP khng nht thit phi thc hin ton b cc chc nng ca TCP trong LDP m ch cn dng li nhng chc nng cn thit nht v d nh chc nng iu khin trnh tc nghn c coi l khng cn thit trong LDP. Tuy nhin vic pht trin thm cc chc nng m bo tin cy trong LDP cng c nhiu vn cn xem xt v d nh cc b nh thi cho cc bn tin ghi nhn v khng ghi nhn, trong trng hp s dng TCP ch cn mt b nh thi ca TCP cho ton phin LDP. Thit k mt giao thc truyn ti tin cy l mt vn nan gii. c rt nhiu c gng ci thin TCP nhm lm tng tin cy ca giao thc truyn ti. Tuy nhin vn hin nay vn cha r rng v TCP vn c s dng cho truyn ti LDP.
Nguyn Ti Phong H09VT4 - 19 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Cc bn tin LDP Bn tin LDP c nh ngha trong khun dng phng tin c lp. Mc ch ny cc bn tin c th kt hp trong mt d liu, 11 bn tin c s dng trong LDP. Notification Message : Bn tin thng bo Hello Message : Bn tin li cho Initialization Message : Bn tin khi to KeepAlive Message : Bn tin gi ng Address Message : Bn tin a ch Address Withdraw Message : Bn tin thu hi a ch Lable Mapping Message : Bn tin nh x nhn Lable Withdraw Message : Bn tin thu hi nhn Lable Request Message : Bn tin yu cu nhn Lable Release Message : Bn tin gii phng nhn Lable Abort Request Message : Bn tin hy b yu cu Tt c cc bn tin LDP c khun dng sau:
U Kiu bn tin di bn tin ID bn tin Thng s bt buc Thng s tu chn

Hnh 1.15 : Khun dng cc bn tin LDP Bit U: bit bn tin cha bit. Nu bit ny bng 1 th n khng th c thng dch bi pha nhn, lc bn tin b b qua m khng c phn hi. Kiu bn ti: Ch ra kiu bn tin l g. Chiu di bn tin: Ch ra chiu di ca cc phn nhn dng bn tin, cc thng s bt buc, v cc thng s tu chn.
Nguyn Ti Phong H09VT4 - 20 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Nhn dng bn tin: l mt s nhn dng duy nht bn tin. Trng ny c th c s dng kt hp cc bn tin Thng bo vi mt bn tin khc. Thng s bt buc, v Thng s tu chn tu thuc vo tng bn tin LDP. Bn tin Notification: c dng bi mt LSR thng bo cho cc LSR ngang cp ca n cc quy nh v li v cc iu bt thng. Cc quy nh l: khng nhn bit qu trnh gi, cc sai lm, bn tin d tt, s kt thc ca thi gian tn ti, gii phng bi mt nt, li ca khi to phin LSP. Trong mt vi trng hp, LSR c th kt thc phin LDP (ng kt ni TCP). Khun dng bn tin c ch ra trong hnh 1.16 0 0 1-14 15 16-30 Notification (0x0001) Message Length Message ID Status (TLV) Option Parameters Hnh 1.16 : Bn tin Notification 31

Mt ID bn tin ch nhn dng mt bn tin. N c m ho trong tt c cc bn tin. Trng thi TLV ch ra trng thi ca kt qu. Cc tham s la chn l : trng thi m rng, trng thi tr li, bn tin tr li. Khi mt LSR nhn mt bn tin Notification mang m trng thi ch ra mt li khng th trnh c, n hu b phin LDP ny ngay lp tc bi vic ng phin kt ni TCP v loi b tt c cc lin kt vi phin bao gm c cc lin kt nhn - FEC va c lp thng qua phin. Bn tin Hello: Bn tin ny c thay i gia hai LDP ngang cp trong mt phin pht hin LDP. Khun dng bn tin nh hnh v 0 0 1 0 2-14 15 16 17 - 30 Length T R Reserved 31

Common Hello Parm (0x0400) Hold Time

Hnh 1.17: Tham s TLV Hello chung Mt LSR lu gi bn ghi ca cc bn tin Hello c gi t cc LSR ngang cp tim nng. Bn tin Hello gi thi gian ch r thi gian m LSR bn gi lu trong bn ghi ca n t LSR bn nhn m khng cn bin nhn ca bn tin Hello khc. Mt cp LSR thng lng thi gian lu tr, chng dng cho cc bn tin Hello t cc LSR

Nguyn Ti Phong H09VT4

- 21 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

khc. Mi cp ngh mt thi gian lu tr. Thi gian lu tr c dng l nh nht c ngh trong cc bn tin Hello. Bit T c gi l Targeted Hello. T=1 ch ra rng bn tin Hello l Targeted Hello. T=0 ch ra rng bn tin Hello l mt lin kt. Bit R c gi l yu cu gi Targeted Hello. R=1 th yu cu bn nhn nh k gi Targeted Hello ti ngun ca bn tin Hello ny. R=0 th khng c yu cu no c. Tham s la chn l cc TLV a ch truyn giao IPv4, IPv6 v mt dy s cc hnh m c dng bi LSR bn gi pht hin hnh thay i bn gi. Bn tin Initialization : Bn tin ny c thay i khi cc LDP ngang cp mun thit lp mt phin LDP. Trong th tc ny, cc LSR thng lng cc tham s nh Keep alive timer, cc kiu qung bo s c h tr (dng xung khng yu cu v dng xung da trn yu cu). Nu cc nhn FR hoc ATM c s dng trong phin, cc quy nh dng cho cc nhn ny cng c thng lng. Khun dng bn tin c ch ra trong hnh 1.18 0 0 1-14 15 16-30 Initialization (0x0200) Message Length Message ID Common Session parameter (TLV) Option Parameters Hnh 1.18 : Bn tin Initialization 31

Cc tham s phin chung TLV c gii thch trong phn trc. Cc tham s la chn l cc tham s phin ATM v FR. Bn tin KeepAlive: c thay i gia cc LDP ngang cp yu cu gim st tnh nguyn vn ca kt ni TCP h tr phin LDP. Khng c tham s la chn trong bn tin ny. 0 0 1-14 15 16-30 KeepAlive (0x0201) Message Length Message ID Option Parameters Hnh 1.19 : Bn tin KeepAlive 31

Bn tin Address: c gi bi mt LSR ti LDP ngang cp ca n qung bo cc a ch giao din ca n. Mt LSR nhn mt bn tin a ch dng a ch n bit lu tr c s d liu cho trao i gia cc b nhn din LDP ngang cp v cc a ch hop tip theo.

Nguyn Ti Phong H09VT4

- 22 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

0 0

1-14 15 16-30 Address (0x0300) Message Length Message ID Address List (TLV) Option Parameters Hnh 1.20 : Bn tin Address

31

Danh sch a ch TLV l danh sch ca cc a ch giao din IP c qung bo bi LSR bn gi. Khng c tham s la chn cho bn tin ny. Bn tin Address Withdraw: Tho b bn tin a ch v rt ra mt a ch giao din qung bo trc hoc cc a ch. 0 0 1-14 15 16-30 31 Address with draw (0x0300) Message Length Message ID Address List (TLV) Option Parameters Hnh 1.21 : Bn tin Address Withdraw

Danh sch a ch TLV cha danh sch cc a ch c rt ra bi LSR bn gi bn tin ny. Bn tin Label Mapping: c dng qung bo mt LDP ngang cp cc lin kt nhn FEC. Nu mt LSR phn b mt trao i cho mt FEC ti nhiu LDP ngang cp, y l vn ni b hoc n trao i mt nhn n ti FEC v phn b s trao i ny ti tt c cc peer ca n hoc dng cc trao i khc nhau cho mi peer ca n. Cng vy, mt LSR nhn mt bn tin trao i nhn t LSR dng xung vi mt tin t hoc a ch host FEC, v khng nn dng nhn cho chuyn tip nu bng nh tuyn ca n khng cha mt cng ph hp vi gi tr FEC. 0 0 1-14 15 16-30 Message Length 31

Label Mapping (0x0400) Message ID FEC TLV Label TLV Option Parameters

Hnh 1.22 : Bn tin Lable Mapping

Nguyn Ti Phong H09VT4

- 23 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

D nhin, bn tin ny phi cha cc a ch IP v cc lin kt nhn ca n. FEC TLV ch r phn FEC ca trao i nhn-FEC c qung bo. Nhn TLV ch r phn nhn ca trao i nhn-FEC. Cc TLV la chn l ID bn tin yu cu nhn, s lng hop v vector tuyn. Bn tin Label Request: c dng bi mt LSR yu cu LDP peer cung cp mt lin kt nhn cho mt FEC. Mt LSR c th truyn mt bn tin Request di bt c iu kin no sau y: + LSR nhn ra mt FEC mi thng qua bn chuyn tip v hop bn cnh l mt LDP peer, v LSR khng c trao i t hop bn cnh i vi FEC c nhn ra. + Hop tip theo thay i FEC, v LSR khng c trao i t hop bn cnh i vi FEC c nhn ra. + LSR nhn mt yu cu nhn cho mt FEC t peer LDP dng ln, FEC ca hop tip theo l mt peer LDP, v LSR khng c trao i t hop bn cnh. 0 0 1 - 14 15 16 - 30 Message Length 31

Label Request (0x0401) Message ID FEC TLV Option Parameters

Hnh 1.23 : Bn tin Label Request FEC TLV nhn dng gi tr nhn c yu cu. Cc TLV la chn l s lng hop v vector tuyn. Bn tin Label Withdraw: Hy b mt trao i gia FEC v nhn. N gi mt LDP peer thng bo cho nt khng tip tc dng lin kt nhn-FEC c trng m LSR qung bo trc . LSR truyn bn tin Label Withdraw di cc iu kin sau: + LSR khng nhn ra mt FEC c nhn bit trc m n qung bo mt nhn. + LSR quyt nh khng nhn no chuyn FEC vi trao i nhn ang b hu b.

Nguyn Ti Phong H09VT4

- 24 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

0 0

1-14

15

16-30 Message Length

31

Label Withdraw (0x0402) Message ID FEC TLV (optional) Label TLV Option Parameters

Hnh 1.24 : Bn tin Label Withdraw FEC TLV ch r FEC cho cc nhn b hu b. Nu khng c nhn TLV theo sau FEC, tt c cc nhn lin kt vi FEC b hu b. Mt khc, ch c nhn c ch r trong nhn TLV la chn b hu b. LSR nhn mt bn tin Label Request phi tr li li vi bn tin Label Release. Bn tin Label Release: Thng bo cho peer LDP bn gi v LSR khng di hn cn cc lin kt nhn-FEC c trng. Mt LSR phi truyn mt bn tin Label Release di cc iu kin sau: 0 0 1-14 15 16-30 31 Label Release (0x0403) Message Length Message ID FEC TLV Label TLV (optional) Option Parameters Hnh 1.25 : Bn tin Label Release

+ LSR gi trao i nhn khng di hn hop tip theo cho vic trao i nhn v LSR l hnh th cho s duy tr hot ng. + LSR nhn mt trao nhn t mt LSR khng phi l hop tip theo i vi FEC v LSR l hnh th cho s duy tr hot ng. + LSR nhn mt bn tin Label Withdraw. Bn tin Label Abort Request: Kt thc bn tin Label Request ni bt. C rt nhiu l do khc nhau cho vic a ra bn tin Abort nh qung bo tin t OSPF v BGP thay i hot ng yu cu nhn.

Nguyn Ti Phong H09VT4

- 25 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

0 0

1-14 15 16-30 31 Label Request (0x0401) Message Length Message ID FEC TLV LSPID TLV (CR-LDP, mandatory) ER-TLV (CR-LDP, optional) Traffic TLV (CR-LDP, optional) Pinning TLV (CR-LDP, optional) Hnh 1.26 : Bn tin Label Abort Request

Cc ch phn phi nhn: Chng ta bit mt s ch hot ng trong vic phn phi nhn nh: khng yu cu pha trc, theo yu cu pha trc, iu khin LSP theo lnh hay c lp, duy tr tin tin hay bo th. Cc ch ny c tho thun bi LSR trong qu trnh khi to phin LDP. Khi LSR hot ng ch duy tr bo th, n s ch gi nhng gi tr Nhn/FEC m n cn ti thi im hin ti. Cc chuyn i khc c gii phng. Ngc li trong ch duy tr tin tin, LSR gi tt c cc chuyn i m n c thng bo ngay c khi mt s khng c s dng ti thi im hin ti. Hot ng ca cc ch ny nh sau: LSR1 gi gn kt nhn vo mt s FEC n mt trong cc LSR ln cn (LSR2) n cho FEC . LSR2 nhn thy LSR1 hin ti khng phi l nt tip theo i vi FEC v n khng th s dng gn kt ny cho mc ch chuyn tip ti thi im hin ti nhng n vn lu vic gn kt ny li. Ti thi im no sau ny c s xut hin thay i nh tuyn v LSR1 tr thnh nt tip theo ca LSR2 i vi FEC th LSR2 s cp nht thng tin trong bng nh tuyn tng ng v c th chuyn tip cc gi c nhn n LSR1 trn tuyn mi ca chng. Vic ny c thc hin mt cch t ng m khng cn n bo hiu LDP hay qu trnh phn b nhn mi. u im ln nht ca ch duy tr tin tin l kh nng phn ng nhanh hn khi c s thay i nh tuyn. Nhc im ln nht l lng ph b nh v nhn. iu ny c bit quan trng v c nh hng rt ln i vi nhng thit b lu tr bng nh tuyn trong phn cng nh ATM-LSR. Thng thng ch duy tr bo th nhn c s dng trong cc ATM-LSR. 1.6.2 Giao thc CR-LDP. Giao thc CR-LDP c s dng iu khin cng bc LDP. Giao thc ny l phn m rng ca LDP cho qu trnh nh tuyn cng bc ca LSP. Cng ging nh
Nguyn Ti Phong H09VT4 - 26 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

LDP, n s dng cc phin TCP gia cc LSR ng cp gi cc bn tin phn phi nhn. Khi nim nh tuyn cng bc V c bn chng ta c th nh ngha nh tuyn cng bc nh sau. Mt mng c th c biu din i dng s theo V v E G(V,E) trong V l tp hp cc nt mng v E l tp hp cc knh kt ni gia cc nt mng. Mi knh s c cc c im ring. ng kt ni gia nt th nht n nt th hai trong cp phi tho mn mt s iu kin cng bc. Tp hp cc iu kin cng bc ny c coi l cc c im ca cc knh v ch c nt u tin trong cp ng vai tr khi to ng kt ni mi bit cc c im ny. Nhim v ca nh tuyn cng bc l tnh ton xc nh ng kt ni t nt ny n nt kia sao cho ng ny khng vi phm cc iu kin cng bc v l mt phng n ti u theo mt tiu ch no (s nt t nht hoc ng ngn nht). Khi xc nh c mt ng kt ni th nh tuyn cng bc s thc hin vic thit lp, duy tr v truyn trng thi kt ni dc theo cc knh trn ng. im khc nhau chnh gia nh tuyn IP truyn thng v nh tuyn cng bc l: thut ton nh tuyn IP truyn thng ch tm ra ng ti u ng vi mt tiu ch (v d nh s nt nh nht); trong khi thut ton nh tuyn cng bc va tm ra mt ng ti u theo mt tiu ch no ng thi phng n phi khng vi phm iu kin cng bc. Yu cu khng vi phm cc iu kin cng bc l im khc nhau c bn phn bit gia nh tuyn cng bc v nh tuyn thng thng. Trn y chng ta cp n vic tm ng khng vi phm cc iu kin cng bc, tip theo chng ta s tm hiu th no l cc iu kin cng bc. Mt iu kin cng bc phi l iu kin gip ta tm ra mt ng c cc tham s hot ng nht nh, rng bng tn kh dng ca knh truyn l mt yu t quan trng trong vic nh tuyn cng bc. Ngoi ra iu kin cng bc cng c th l vic qun tr. V d nh mt nh qun tr mng mun ngn khng cho mt lu lng loi no khng c i qua mt s knh nht nh trong mng, trong cc knh c xc nh bi cc c im c th. Cng ging nh iu kin cng bc l kh nng ca knh, iu kin cng bc l qun tr ng vi cc ng khc nhau cng c th c cc iu kin cng bc l qun tr khc nhau. V d nh i vi mt cp nt, ng t nt th nht trong cp ti nt th hai c th bao gm mt tp hp knh c mt s c im nht nh b loi ra, trong khi i vi mt cp khc th li c mt tp knh khc b loi ra nh tuyn cng bc c th kt hp c hai iu kin cng bc l qun l v tnh nng ca knh ch khng nht thit l ch mt trong hai iu kin. V d nh nh tuyn cng bc phi tm ra ng va phi c mt rng bng tn nht nh va phi loi tr mt s knh c c im nht nh. Cc phn t nh tuyn cng bc
Nguyn Ti Phong H09VT4 - 27 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

mt h thng nh tuyn IP c th h tr nh tuyn cng bc, n phi tho mn cc c im sau: - Kh nng tnh ton v xc nh ng ti pha ngun. - Kh nng phn phi thng tin v cu trc mng v c im cc knh ti tt c cc nt trong mng. - H thng phi h tr nh tuyn hin. Ti nguyn mng c th d phng v cc thng s ca knh c th thay i c khi truyn lu lng tng ng trn tuyn. iu kin cng bc "chn ng ngn nht" Nh cp trn, nh tuyn cng bc phi tnh ton xc nh c ng tho mn cc iu kin sau: - L ti u theo mt tiu ch no (v d nh ng ngn nht hoc s nt t nht) - Khng vi phm cc iu kin cng bc. Mt trong cch tho mn tiu ch ti u l s dng thut ton trc tin l ng ngn nht (SPF). Thut ton SPF trong nh tuyn IP n gin, vic tnh ton xc nh ng phi ti u theo mt tiu ch no (v d nh khong cch). V vy tnh ton xc nh ng khng vi phm cc iu kin cng bc chng ta cn sa i thut ton sao cho n tnh n cc iu kin cng bc. Chng ta hy xem xt mt thut ton loi ny l: iu kin cng bc chn ng ngn nht (CSPF). V tng qut, th tc kim tra xem knh c tho mn mt iu kin cng bc c th l c im ca nh tuyn cng bc. V d nh nu iu kin cng bc cn tho mn l rng bng tn kh dng, khi chng ta cn kim tra rng bng tn kh dng ca knh c ln hn mt gi tr rng bng tn c ch ra trong iu kin cng bc; ch khi tho mn chng ta mi kim tra nt W u kia ca knh. kim tra knh c tho mn mt iu kin cng bc c th no th chng ta phi bit trc cc thng tin ca knh tng c lin quan n iu kin cng bc. V d nh khi iu kin cng bc cn tho mn l rng bng tn kh dng th thng tin cn c l rng bng tn kh dng ca tng knh. Lu rng thut ton tnh ton xc nh ng s dng trong CSPF, yu cu b nh tuyn thc hin vic tnh ton xc nh ng phi c cc thng tin v tt c cc knh trong mng. iu c ngha l ch mt s loi giao thc nh tuyn c th h tr nh tuyn cng bc l cc giao thc nh tuyn theo trng thi knh (v d nh IS-IS, OSPF). Cn cc giao thc nh tuyn theo vector khong cch (v d nh RIP) khng h tr nh tuyn cng bc. minh ho cho CSPF, chng ta hy xem xt v d trn hnh 1-27. Chng ta gi s rng di tt c cc knh u bng nhau v c gi tr l 1. Chng ta cng gi s rng tt c cc knh u c rng bng tn kh dng l 150 Mb/s, ngoi tr knh ni t LSR2 n LSR4 c rng bng tn kh dng l 45 Mb/s. Nhim v ca chng ta l tm ng t LSR1 n LSR6 sao cho c di ngn nht v rng bng tn kh
Nguyn Ti Phong H09VT4 - 28 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

dng phi ln hn hoc bng 100 Mb/s. y iu kin cng bc cn tho mn l rng bng tn kh dng.

LSR2

LSR6

LSR4 LSR1

LSR7 LSR5

LSR3

Hnh 1.27 : V d v CSPF Khi u cy ng ngn nht (c gc LSR1) ch c nt LSR1. Tip theo chng ta kim tra hai nt bn cnh LSR1 l LSR2 v LSR3 vi lu rng rng bng tn kh dng ca knh (LSR1-LSR2) v (LSR1-LSR3) u ln hn gi tr cn thit l 100 Mb/s. Kt lun khng knh no vi phm iu kin cng bc, v vy chng ta b sung LSR2 v LSR3 vo danh sch ng c. Tip theo chng ta tm nt c khong cch ngn nht n LSR1 trong danh sch cc nt ng c. Nt ny l LSR2 ( y c hai nt LSR2 v LSR3 u c khong cch nh nhau n LSR1 v vy c th chn ngu nhin l LSR2), chng ta b sung n vo cy ng ngn nht (LSR1, LSR2) v xo n khi danh sch cc nt ng c. Kt thc mt vng ca thut ton. Vng th 2 chng ta kim tra nt cnh nt LSR2 l LSR4. Vi nt ny chng ta thy rng rng bng tn kh dng trn knh (LSR2-LSR4) nh hn rng bng tn yu cu. V vy knh ny khng tho mn iu kin cng bc v chng ta khng b sung LSR4 vo danh sch nt ng c. Chng ta vn cn LSR3 trong danh sch nt ng c, v vy ta b sung n vo cy ng ngn nht (LSR1, LSR3) v xo n khi danh sch ng c. Kt thc vng th hai ca thut ton. Ti vng th 3 ca thut ton, chng ta kim tra nt cnh nt LSR3 l nt LSR5. Vi nt ny chng ta thy rng rng bng tn kh dng trn knh (LSR3-LSR5) ln hn rng bng tn yu cu. V vy knh ny tho mn iu kin cng bc v ta b sung n vo danh sch nt ng c. Tip theo chng ta tm trong danh sch cc nt ng cnt c khong cch ngn nht ti LSR1 l nt LSR5. V vy ta b sung LSR5 vo cy ng ngn nht (LSR1, LSR3, LSR5) v xo LSR5 khi danh sch ng c. Kt thc vng th 3 ca thut ton. Ti vng th 4 ca thut ton, ta km tra nt cnh nt LSR5 l LSR4. Vi nt ny chng ta thy rng rng bng tn kh dng trn knh (LSR5-LSR4) ln hn rng bng tn yu cu. V vy knh ny tho mn iu kin cng bc v ta b sung n vo danh sch nt ng c. Tip theo chng ta tm trong danh sch cc nt ng
Nguyn Ti Phong H09VT4 - 29 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

cnt c khong cch ngn nht ti LSR1 l nt LSR4. V vy ta b sung LSR5 vo cy ng ngn nht (LSR1, LSR3, LSR5, LSR4) v xo LSR4 khi danh sch ng c. Kt thc vng th 4 ca thut ton. Ti vng th 5 ca thut ton, ta km tra nt cnh nt LSR5 l LSR6 v LSR7. Vi nt ny chng ta thy rng rng bng tn kh dng trn cc knh (LSR4-LSR6) v (LSR4-LSR7) ln hn rng bng tn yu cu. V vy knh ny tho mn iu kin cng bc v ta b sung LSR6 v LSR7 vo danh sch nt ng c. Tip theo chng ta nhn thy rng trong danh sch cc nt ng c c nt LSR6 c khong cch ngn nht ti LSR1. V vy ta b sung LSR6 vo cy ng ngn nht (LSR1, LSR3, LSR5, LSR4, LSR6) v xo LSR6 khi danh sch ng c. Ti y chng ta nhn thy cy ng ngn nht c cha nt LSR6 l nt ch ca ng cn tm. V vy thut ton kt thc y. Kt qu ng ngn nht t LSR1 n LSR6 l (LSR1, LSR3, LSR5, LSR4, LSR6). Chng ta c th nhn thy ng ny khc vi ng c xc nh theo thut ton SPF c th l (LSR1, LSR2, LSR4, LSR6). CR-LDP l giao thc m rng t LDP (RFC 3212) nhm h tr c bit cho nh tuyn rng buc, k thut lu lng (TE) v cc hot ng d tr ti nguyn. Cc kh nng ca CR-LDP tu chn bao gm thng lng cc tham s lu lng nh cp pht bng thng, thit lp v cm gi quyn u tin. 1.6.3 Giao thc t trc ti nguyn (RSVP). Sau khi xem xt nhng thnh phn chnh trong cu trc dch v tch hp, trong phn ny chng ta s tp trung vo giao thc bo hiu RSVP l giao thc bo hiu ng vai tr rt quan trng trong MPLS. RSVP l giao thc cho php cc ng dng thng bo cc yu cu v QoS vi mng v mng s p ng bng nhng thng bo thnh cng hoc tht bi. RSVP phi mang nhng thng tin sau: - Thng tin phn loi, nh n m cc lung lu lng vi cc yu cu QoS c th c th c nhn bit trong mng. Thng tin ny bao gm a ch IP pha gi v pha nhn, s cng UPD. - Ch tiu k thut ca lung lu lng v cc yu cu QoS, theo khun dng TSpec v RSpec, bao gm cc dch v yu cu (c bo m hoc ti iu khin). R rng l RSVP phi mang nhng thng tin ny t cc my ch ti tt c cc tng i chuyn mch v cc b nh tuyn dc theo ng truyn t b gi n b nhn, v vy tt c cc thnh phn mng ny tham gia vo vic m bo cc yu cu QoS ca ng dng. RSVP mang cc thng tin trong hai loi bn tin c bn l: PATH v RESV. Cc bn tin PATH t b gi ti mt hay nhiu b phn c cha TSpec v cc thng tin phn loi do b gi cung cp. Mt l do cho php c nhiu b nhn l RSVP c thit k h tr nhiu multicast. Mt bn tin PATH bao gi cng c gi ti mt
Nguyn Ti Phong H09VT4 - 30 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

a ch gi l a ch phin, n c th l a ch unicast hoc multicast Chng ta thng xem phin i din cho mt ng dng n, n c xc nhn bng mt a ch ch v s cng ch s dng ring cho ng dng. Trong phn tip theo chng ta s thy rng khng c l do no xem xt mt phin theo cch hn ch nh vy. Khi b nhn nhn c bn tin PATH, n c th gi bn tin RESV tr li cho b gi. Bn tin RESV xc nhn phin c cha thng tin v s cng dnh ring v RSpec xc nhn mc QoS m b phn yu cu. N cng bao gm mt vi thng tin xem xt nhng b gi no c php s dng ti nguyn ang c cp pht. Hnh 1.28 biu din trnh t bn tin trao i gia b gi v nhn. y chng ta lu rng cc cng dnh ring l n cng. Nu cn s dng cc cng dnh ring song cng (v d nh phc v cho thoi truyn thng) th phi c cc bn tin b sung theo chiu ngc li. Cng ch rng cc bn tin c nhn v chuyn tip bi tt c cc b nh tuyn dc theo ng truyn thng tin, do vic cp pht ti nguyn c th thc hin ti tt c cc nt mng cn thit.

Hnh 1.28 : Th tc bo hiu trong RSVP Khi cc cng dnh c thit lp, cc b inh tuyn nm gia b gi v b nhn s xc nh cc gi tin thuc cng dnh ring no nh vic kim tra nm trng trong phn mo u ca IP v giao thc truyn ti l: a ch ch, s cng ch, s giao thc (v d UDP), a ch ngun v cng ngun. Chng ta gi tp cc gi tin c nhn dng theo cch ny l lung dnh ring. Cc gi tin trong lung dnh ring thng b khng ch (m bo cho lung khng pht sinh lu lng vt qu s thng bo trong TSpec) v xp vo hng i ph hp vi yu cu v QoS. V d mt cch c dch v m bo l s dng hng i c trng s (WFQ), y mi cng dnh ring khc nhau c xem nh mt lung i vi cc hng i, v trng s c n nh cho mi lung ph hp vi tc dch v yu cu trong RSpec ca n. i vi cc lung unicast th RSVP l kh n gin. N tr ln phc tp hn trong mi trng multicast, bi v c rt nhiu b nhn dnh ring cng cho mt phin n v cc b nhn khc nhau c th yu cu cc mc QoS khc nhau. Hin nay MPLS ch yu tp trung vo cc ng dng unicast ca RSVP, chng ta s khng i su vo kha cnh multicast ca RSVP. im cui cng phi ch v RSVP l n l giao thc trng thi mm. c tnh phn bit giao thc trng thi mm vi cc giao thc loi khc l trng thi s t
Nguyn Ti Phong H09VT4 - 31 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

ng ht hiu lc sau mt thi gian tr khi n c lm ti lin tc theo chu k. iu c ngha l RSVP s nh k gi i cc bn tin PATH v RESV lm ti cc cng dnh ring. Nu chng khng c gi trong mt khong thi gian xc nh th cc cng dnh ring t ng hu b. MPLS h tr RSVP Trong phn ny chng ta ch tp trung vo vai tr ca RSVP trong mng MPLS v kha cnh h tr QoS. Mc tiu u tin ca vic b xung h tr RSVP vo MPLS l cho php cc LSR da vo vic phn loi gi tin theo nhn ch khng phi theo mo u IP nhn bit cc gi tin thuc cc lung ca cng dnh ring. Ni cch khc, cn phi to v kt hp phn phi gia cc lung v cc nhn cho cc lung c cc cng dnh ring cho RSVP. Chng ta c th xem xt mt tp cc gi tin to ra bng bi cng dnh ring RSVP nh l mt trng hp ring khc ca FEC. iu ny tr ln kh d dng kt hp cc nhn vi cc lung dnh ring trong RSVP, t nht l vi unicast. Chng ta nh ngha mt i tng RSVP mi l i tng LABEL c mang trong bn tin RSVP RESV. Khi mt LSR mun gi bn tin RESV cho mt lung RSVP mi, LSR cp pht mt nhn t trong tp nhn ri, ti mt li vo trong LFIB ca n vi nhn li vo c t trong nhn cp pht, v gi i bn tin RESV c cha nhn ny trong i tng LABEL. Ch l cc bn tin RESV truyn t b nhn ti b gi l di dng cp pht nhn xui. Khi nhn c bn tin RESV cha i tng LABEL, mt LSR thit lp LFIB ca n vi nhn ny l nhn li ra. Sau n cp pht mt nhn s dng nh l mt nhn li vo v chn n vo bn tin RESV trc khi gi n i. R rng l, khi cc bn tin RESV truyn ln LSR ngc th LSP c thit lp dc theo tuyn ng. Cng ch l, khi cc nhn c cung cp trong cc bn tin RESV, mi LSR c th d dng kt hp cc ti nguyn QoS ph hp vi LSP. Hnh 1.29 minh ho qu trnh trao i ny. Trong trng hp ny chng ta gi s cc my ch khng tham gia vo vic phn phi nhn. LSR R3 cp pht nhn 5 cho cng dnh ring ny v thng bo n ti R2. R2 cp pht nhn 9 cng cho cng dnh ring ny v thng bo n ti R1. By gi c mt LSP cho lung dnh ring t R1 ti R3. Khi cc gi tin tng ng vi cng dnh ring ny (v d gi tin gi t H1 ti H2 vi s cng ngun, ch thch hp v s giao thc giao vn thch hp) ti R1, R1 phn bit n bng cc thng tin mo u IP v lp truyn ti to ra QoS thch hp cho cng dnh ring.v d nh c im v hng i cc gi tin trong hng i li ra. Ni cch khc. N thc hin cc chc nng ca mt b nh tuyn tch hp dch v s dng RSVP. Hn na R1 a mo u nhn vo cc gi tin v chn gi tr li ra l 9 trc khi gi chuyn tip gi tin ti R2.

Nguyn Ti Phong H09VT4

- 32 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Hnh 1.29 : Nhn phn phi trong bn tin RESV Khi R2 nhn gi tin mang nhn 9, n tm kim nhn trong LFIB v tm tt c cc trng thi lien quan n QoS xem kim xot lung, xp hang i gi tin v.v... nh th no. iu ny tt nhin khng cn kim tra mo u lp IP hay lp truyn ti. Sau R2 thay th nhn trn gi tin vi mt nhn li ra t LFIB ca n (mang gi tr 5) v gi gi tin i. Lu rng, do vic to ra nhn kt hp c iu khin bi cc bn tin RSVP v vy vic kt hp c iu khin nh trong cc mi trng khc ca MPLS. Cng ch l y cng l mt v d chng t vic mang thng tin kt hp nhn trn mt giao thc c sn khng cn mt giao thc ring nh LDP. Mt kt qu th v ca vic thit lp mt LSP cho mt lung vi cng dnh ring RSVP l ch c b nh tuyn u tin trong LSP m trong v d trn l R1 lin quan ti vic xem liu cc gi tin thuc lung dnh ring no. iu ny cho php RSVP c p dng trong mi trng MPLS theo cch m n khng th thc hin c trong mng IP truyn thng. Theo qui c, cc cng dnh ring RSVP c th to ch cho nhng lung ng dng ring l, tc l nhng lung c xc nh nh nm trng mo u nh m t pha trc. Tuy nhin, c th t cu hnh R1 la chn cc gi tin da trn mt s tiu chun. V d R1 c th ly tt c cc gi tin c cng mt tin t ng vi mt ch v y chng vo LSP. V vy, thay v c mt LSP cho mi lung ng dng ring, mt LSP c th cung cp QoS cho nhiu lung lu lng. Mt ng dng ca kh nng ny l c th cung cp ng ng vi bng thng m bo t mt Site ca cng ty ln ti mt Site khc, thay v s dng ng thu bao ring gia cc Site ny. Kh nng ny cng hu ch cho mc ch iu khin lu lng, y mt lu lng ln cn c gi dc theo cc LSP vi bng thng ti lu lng. h tr mt vi cch s dng tng cng ca RSVP, MPLS nh ngha mt i tng RSVP mi c th mang trong bn tin PATH l: i tng LABEL_REQUEST. i tng ny thc hin hai chc nng: Th nht n c s dng thng bo cho mt LSR ti pha cui ca LSP gi RESV tr v thit lp LSP. iu ny hu ch cho vic thit lp cc LSP Site-to-Site. Th hai khi LSP c thit lp cho mt tp cc gi tin, khng ch l mt lung ng dng ring. i tng cha mt trng xc nh giao thc lp cao hn s s dng LSP. Trng ny c s dng ging nh ethertype hoc tng t nh m phn knh xc nh giao thc lp cao hn (IPv4, IPX, v.v), v vy s khng c trng phn knh trong mo u MPLS na.
Nguyn Ti Phong H09VT4 - 33 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Do vy, mi LSP c th cn c thit lp cho mi giao thc lp cao hn nhng y khng gii hn nhng giao thc no c h tr. c bit khng yu cu cc gi tin mang trong LSP c thit lp s dng RSVP phi l cc gi tin IP. RSVP v kh nng m rng Mt trong nhng iu chc chn v RSVP l n c th chu tn tht v kh nng m rng mt mc no y. Trong thc t, c tnh ny khng chnh xc hon ton. RSVP khi u c thit k h tr d tr ti nguyn cho cc lung ng dng ring v y l nhim v vi nhng thch thc v kh nng m rng vn c. Chnh xc th kh nng m rng l g? Ni chung thut ng ny c s dng ch gii hn s dng ti nguyn tng nhanh nh th no khi mng ln hn. V d trong mng IP quy m ln nh mng xng sng nh cung cp dch v Internet, chng ta c th quan tm n vic liu mt bng nh tuyn s chim b nh ca b nh tuyn ln n mc no, kh nng b x l v bng thng lin kt. V th, bng nh tuyn tng chm hn so vi s ngi s dng kt ni vo mng. D tr ti nguyn cho cc lung ng dng ring r rng l nh hng xu n kh nng m rng. Chng ta c th cho rng mi ngi s dng s d tr ti nguyn ti mt vi tc trung bnh, v th s ti nguyn d tr c to ra qua mng ln c kh nng tng nhanh bng s ngi s dng mng. iu ny s dn n chi ph ln nu mi b nh tuyn phi lu tr trng thi v tin trnh mt vi bn tin cho mi ti nguyn d tr cho lung ng dng ring. Ni tm li, s chnh xc hn nu ni rng mc d tr ti nguyn cho cc lung ng dng l km hn so vi RSVP. S khc nhau ny c bit quan trng khi chng ta xem xt rng RSVP khng nhng i hi cho vic lu tr ti nguyn cho cc lung ng dng ring m cn d tr ti nguyn cho lu lng tng hp. 1.6.4 Giao thc cng bin BGP Giao thc cng bin (BGP - Border Gateway Protolcol) c mt s tnh cht khc bit vi cc b giao thc gii thiu trn y, quan trng nht BGP khng phi thun tu l mt giao thc vector khong cch v cng khng thun tu l giao thc trng thi lin kt. N c trng bi mt s tnh cht sau: S dng thng tin lin lc vi cc h t qun AS. Phi hp gia nhiu b nh tuyn s dng BGP. Nhn bn thng tin v tnh lin kt. Cung cp thng tin v m hnh trm k tip theo vector khong cch. H tr tu chn cc chnh sch cho ngi qun tr mng.

Nguyn Ti Phong H09VT4

- 34 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Giao thc cng bin gii s dng TCP trong thng tin lin lc chuyn ti ng tin cy. Giao thc BGP cho php thng tin v con ng i t ngun ti ch. H tr a ch khng phn lp v nh tuyn lin vng CIDR. Tch lu thng tin v tuyn ng bo v bng thng ca mng qua vic gi mt ln cho nhiu ch n. BGP cho php c ch xc minh bn tin, kim chng tn ca ni gi tin. Mt s gii hn c bn ca giao thc cng bin gii nh sau: Mt giao thc cng bin gii khng thng tin hay din dch cc gi tr v khong cch c khi cc gi tr ny tn ti, v thm vo l khng c s so snh v gi ca cc tuyn ng. BGP thng bo nhiu tuyn ng ti ch nhng khng cung cp c ch chia ti. BGP khng h tr vic chia s giao dch ra u trn cc b nh tuyn trn cc h t qun bt k. c c s nh tuyn hp l ho, tt c cc h t qun trong mi trng mng Internet phi thng nht vi nhau v mt m hnh cho vic thng bo v tnh kt ni. Ngha l, bn thn BGP khng m bo cho thng nht ton cc. 1.7 c im vt tri ca MPLS so vi IP over ATM. Khi hp nht vi chuyn mch ATM, chuyn mch nhn tn dng nhng thun li ca cc t bo ATM - chiu di thch hp v chuyn vi tc cao. Trong mng a dch v chuyn mch nhn cho php chuyn mch BPX/MGX nhm cung cp dch v ATM, Frame, Replay v IP Internet trn mt mt phng n trong mt ng i tc cao. Cc mt phng (Platform) cng cng h tr cc dch v ny tit kim chi ph v n gin ha hot ng cho nh cung cp a dch v. ISP s dng chuyn mch ATM trong mng li, chuyn mch nhn gip cc dng Cisco, BPX8600, MGX8800, Router chuyn mch a dch v 8540 v cc chuyn mch Cisco ATM gip qun l mng hiu qu hn xp chng (overlay) lp IP trn mng ATM. Chuyn mch nhn trnh nhng rc ri gy ra do c nhiu router ngang hng v h tr cu trc phn cp (hierarchical structure) trong mt mng ca ISP. S tch hp: MPLS xc nhp tnh nng ca IP v ATM ch khng xp chng lp IP trn ATM. MPLS gip cho c s h tng ATM thy c nh tuyn IP

Nguyn Ti Phong H09VT4

- 35 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

v loi b cc yu cu nh x gia cc c tnh IP v ATM. MPLS khng cn a ch ATM v k thut nh tin cy cao hn: Vi c s h tng ATM, MPLS c th kt hp hiu qu vi nhiu giao thc nh tuyn IP over ATM thit lp mt mng li (mesh) dch v cng cng gia cc router xung quanh mt m my ATM. Tuy nhin c nhiu vn xy ra do cc PCV link gia cc router xp chng trn mng ATM. Cu trc mng ATM khng th thy b nh tuyn. Mt link ATM b hng lm hng nhiu router-to-router link, gy kh khn cho lng cp nht thng tin nh tuyn v nhiu tin trnh x l ko theo. Trc tip thc thi cc loi dch v: MPLS s dng hng i v b m ca ATM cung cp nhiu loi dch v khc nhau. N h tr quyn u tin IP v cp dch v CoS trn chuyn mch ATM m khng cn chuyn i phc tp sang cc lp ATM Forum Service. H tr hiu qu cho Mulicast v RSVP: Khc vi MPLS, xp lp IP trn ATM ny sinh nhiu bt li, c bit trong vic h tr cc dch v IP nh IP muticast v RSVP (giao thc dnh trc ti nguyn). MPLS h tr cc dch v ny, k tha thi gian v cng vic theo cc chun v khuyn khch to nn nh x xp x ca cc c trng IP&ATM S o lng v qun l VPN: MPLS c th tnh c cc dch v IP VPN v rt d qun l cc dch v VPN quan trng cung cp cc mng IP ring trong c s h tng ca n. Khi mt ISP cung cp dch v VPN h tr nhiu VPN ring trn mt c s h tng n.Vi mt ng trc MPLS, thng tin VPN ch c x l ti mt im ra vo. Cc gi mang nhn MPLS i qua mt ng trc v n im ra ng ca n. Kt hp MPLS vi MP- BGP (a giao thc cng bin) to ra cc dch v VNP da trn nn MPLS (MPLS-based VNP) d qun l hn vi s iu hnh chuyn tip qun l pha VNP v cc thnh vin VNP, dch v MPSL-based VNP cn c th m rng h tr hng trm nghn VPN. Gim ti trn mng li: Cc dch v VPN hng dn cch MPLS h tr mi thng tin nh tuyn phn cp. Hn na, c th tch ri cc nh tuyn Internet khi li mng cung cp dch v. Ging nh d liu VPN, MPSL ch cho php truy sut bng nh tuyn Internet ti im ra vo ca mng. Vi MPSL, k thut lu lng truyn bin ca AS c gn nhn lin kt vi im tng ng. S tch ri ca nh tuyn ni khi nh tuyn Internet y cng gip hn ch li, n nh v tng tnh bo mt. Kh nng iu khin lu lng: MPLS cung cp cc kh nng iu khin lu lng sng dng hiu qu ti nguyn mng. K thut lu lng gip chuyn ti t cc phn qu ti sang cc phn cn ri ca mng da vo im ch, loi lu lng, ti, thi gian,

Nguyn Ti Phong H09VT4

- 36 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

1.8 Mt s ng dng MPLS. 1.8.1 Mng ring o VPN. MPLS-VPN : Khng ging nh cc mng VPN truyn thng, cc mng MPLSVPN khng s dng hot ng ng gi v m ha gi tin t c mc bo mt cao. MPLS VPN s dng bng chuyn tip v cc nhn tags to nn tnh bo mt cho mng VPN. Kin trc mng loi ny s dng cc tuyn mng xc nh phn phi cc dch v iVPN, v cc c ch x l thng minh ca MPLS VPN lc ny nm hon ton trong phn li ca mng. Mi VPN c kt hp vi mt bng nh tuyn - chuyn tip VPN (VRF) ring bit. VRF cung cp cc thng tin v mi quan h trong VPN ca mt site khch hng khi c ni vi PE router. Bng VRF bao gm thng tin bng nh tuyn IP (IP routing table), bng CEF (Cisco Express Forwarding), cc giao din ca forwarding table; cc quy tc, cc tham s ca giao thc nh tuyn... Mi site ch c th kt hp vi mt v ch mt VRF. Cc VRF ca site khch hng mang ton b thng tin v cc tuyn c sn t site ti VPN m n l thnh vin. i vi mi VRF, thng tin s dng chuyn tip cc gi tin c lu trong cc IP routing table v CEF table. Cc bng ny c duy tr ring r cho tng VRF nn n ngn chn c hin tng thng tin b chuyn tip ra ngoi mng VPN cng nh ngn chn cc gi tin bn ngoi mng VPN chuyn tip vo cc router bn trong mng VPN. y chnh l c ch bo mt ca MPLS VPN. Bn trong mi mt MPLS VPN, c th kt ni bt k hai im no vi nhau v cc site c th gi thng tin trc tip cho nhau m khng cn thng qua site trung tm. u im u tin ca MPLS-VPN l khng yu cu cc thit b CPE thng minh. V cc yu cu nh tuyn v bo mt c tch hp trong mng li. Chnh v th vic bo dng cng kh n gin, v ch phi lm vic vi mng li. Tr trong mng MPLS-VPN l rt thp, s d nh vy l do MPLS-VPN khng yu cu m ho d liu v ng i ca VPN l ng ring, c nh tuyn bi mng li, nn bn ngoi khng c kh nng thm nhp v n cp d liu (iu ny ging vi FR). Ngoi ra vic nh tuyn trong MPLS ch lm vic lp 2,5 ch khng phi lp 3 v th gim c mt thi gian tr ng k. Cc thit b nh tuyn trong MPLS l cc Switch router nh tuyn bng phn cng, v vy tc cao hn phn mm nh cc router khc. Vic to Full mesh l hon ton n gin v vic ti cc site ch cn da theo a ch c cu hnh sn trong bng nh tuyn chuyn tip VPN (VEF).

1.8.2 iu khin lu lng MPLS (MPLS TE).

Nguyn Ti Phong H09VT4

- 37 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

tng c bn ng sau vic iu khin lu lng l s dng ti u h tng mng, bao gm cc ng kt ni s dng khng ng mc, bi v chng khng th thuc cc tuyn u tin. iu ny c ngha l iu khin lu lng phi cung cp kh nng hng lu lng qua mng trn cc tuyn i khc nhau t tuyn u tin, y l tuyn c chi ph thp nht c cung cp bi nh tuyn IP. Tuyn chi ph thp nht l tuyn ng ngn nht nh tnh ton bi giao thc nh tuyn ng. Vi nhim v iu khin lu lng trong mng MPLS, ta c th c lu lng m c xc nh c th t trc hoc vi cht lng c th ca lung dch v t im A n im B dc theo mt tuyn (m tuyn ny khc vi tuyn c chi ph thp nht). Kt qu l lu lng c th tri rng hn qua nhng ng kt ni c sn trong mng v lm cho s dng nhiu ng kt ni khng s dng ng trong mng. .. th hin v d ny.

Hnh 1.30 : iu khin lu lng trong MPLS Nh ngi iu hnh mng iu khin lu lng MPLS, ta c th hng lu lng t im A ti im B qua tuyn di (y khng phi l tuyn ngn nht gia A v B 4 bc so vi 3 bc nhy tuyn trn). Theo ng ngha, ta c th gi lu lng qua cc ng kt ni m chng c th khng c s dng nhiu. Ta c th hng lu lng trong mng trn ng pha di bng vic thay i ngn ng giao thc nh tuyn. V d hnh 1.31.

Nguyn Ti Phong H09VT4

- 38 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

Hnh 1.31 : iu khin lu lng trong MPLS (2) Nu mng ny l mng IP n thun, ta c th khng c b nh tuyn C chuyn lu lng dc theo tuyn pha di bng cch cu hnh mt vi th trn b nh tuyn A. B nh tuyn C quyt nh gi lu lng trn tuyn trn hay tuyn di ch l do quyt nh ca chnh n. Nu ta c th iu khin lu lng MPLS cho php trn mng ny, ta cn c b nh tuyn A gi lu lng ti b nh tuyn B dc theo tuyn di. iu khin lu lng MPLS bt buc b nh tuyn C chuyn tip lu lng A B trn tuyn di. iu ny c th thc hin c trong MPLS do c ch chuyn tip nhn. B nh tuyn u (head end router) ( y l b nh tuyn A) ca tuyn iu khin lu lng l b nh tuyn m a ra tuyn y lu lng chuyn qua mng MPLS. Bi v n l b nh tuyn u cui (head end router) m ch r tuyn, iu khin lu lng cng c nhc n (xem tham kho refer) ti nh l dng (form) ca nh tuyn ngun c bn (source based routing). Nhn c dn (gn) vo gi bi b nh tuyn u cui (head end router) s to nn lung lu lng gi dc theo tuyn ng m do b nh tuyn u cui ch r. Khng c b nh tuyn trung gian no chuyn tip gi trn mt tuyn khc. Mt u im vt tri ca vic s dng iu khin lu lng MPLS l kh nng nh tuyn li nhanh (Fast ReRouting FRR). FRR cho php ta nh tuyn li lu lng c nhn quanh mt ng kt ni hoc mt b nh tuyn m tr thnh khng dng c. Vic nh tuyn li lu lng xy ra nh hn 50ms, m n nhanh nh tiu chun hin nay.

1.8.3 Cht lng dch v trong MPLS (QoS). Cht lng dch v QoS chnh l yu t thc y MPLS. So snh vi cc yu t khc, nh qun l lu lng v h tr VPN th QoS khng phi l l do quan trng
Nguyn Ti Phong H09VT4 - 39 -

n tt nghip i hc

Chng 1: Tng quan v MPLS

nht trin khai MPLS. Nh chng ta s thy di y, hu ht cc cng vic c thc hin trong MPLS QoS tp trung vo vic h tr cc c tnh ca IP QoS trong mng. Ni cch khc, mc tiu l thit lp s ging nhau gia cc c tnh QoS ca IP v MPLS, ch khng phi l lm cho MPLS QoS cht lng cao hn IP QoS. Mt trong nhng nguyn nhn khng nh MPLS l khng ging nh IP, MPLS khng phi l giao thc xuyn sut. MPLS khng chy trong cc my ch, v trong tng lai nhiu mng IP khng s dng MPLS vn tn ti. QoS mt khc l c tnh xuyn sut ca lin lc gia cc LSR cng cp. V d, nu mt knh kt ni trong tuyn xuyn sut c tr cao, tn tht ln, bng thng thp s gii hn QoS c th cung cp dc theo tuyn . Mt cch nhn nhn khc v vn ny l MPLS khng thay i v cn bn m hnh dch v IP. Cc nh cung cp dch v khng bn dch v MPLS, h bn dch v IP (hay dch v Frame Relay hay cc dch v khc), v do , nu h a ra QoS th h phi a ra IP QoS (Frame Relay QoS, v.v) ch khng phi l MPSL QoS. iu khng c ngha l MPLS khng c vai tr trong IP QoS. Th nht, MPLS c th gip nh cung cp a ra cc dch v IP QoS hiu qu hn. Th hai, hin ang xut hin mt s kh nng QoS mi h tr qua mng s dng MPLS khng thc s xuyn sut tuy nhin c th chng t l rt hu ch, mt trong s chng l bng thng bo m ca LSP. Cht lng dch v tr ln ph bin trong nhng nm qua. Mt vi mng khng c s hn ch v bng thng, do tc nghn thng xuyn c kh nng xy ra trong mng. Qos l mt phng tin (means) dnh s u tin cho nhng lu lng quan trng hn nhng lu lng km u tin khc v m bo rng n c vn chuyn qua mng. IETF c thit k 2 cch thc hin QoS trong mng IP: dch v tch hp (IntServ) v dch v khc bit (DiffServ). IntServ s dng giao thc bo hiu giao thc dnh trc ti nguyn (RSVP). My ch bo hiu cho mng qua RSVP s cn thit QoS l cho lung lu lng m n truyn. Vic a ra m hnh IntServ c v nh gii quyt c nhiu vn lin quan n QoS trong mng IP. Tuy nhin trong thc t m hnh ny khng m bo c QoS xuyn sut (end to end). c nhiu c gng nhm thay i iu ny nhm t mt mc QoS cao hn cho mng IP, v mt trong nhng c gng l s ra i ca DiffServ. DiffServs dng vic nh du gi v xp hng theo loi h tr dch v u tin qua mng IP. Nhng b nh tuyn tm kim nhng bit nh du, xp hng, nh hnh, v thit lp quyn u tin (drop) ca gi. Dch v Best effort: y l dch v ph bin trn mng Internet hay mng IP ni chung. Cc gi thng tin c truyn i theo nguyn tc n trc phc
- 40 -

Nguyn Ti Phong H09VT4

n tt nghip i hc

Chng 1: Tng quan v MPLS

v trc m khng quan tm n c tnh lu lng ca dch v l g. iu ny dn n rt kh h tr cc dch v i hi tr thp nh cc dch v thi gian thc hay video. Cho n thi im ny, a phn cc dch v c cung cp bi mng Internet vn s dng nguyn tc Best Effort ny. u im ln ca DiffServ so vi IntServ l m hnh DiffServ khng cn giao thc bo hiu. M hnh IntServ s dng mt giao thc bo hiu m phi chy trn my ch v b nh tuyn. Nu mng c hng nghn lu lng, nhng b nh tuyn phi gi thng tin trng thi cho mi lung lu lng truyn qua n. y l mt vn ln lm cho IntServ tr nn khng ph bin. V d tt nht cho QoS l lu lng VoIP. VoIP cn thit c truyn ti ch trong thi gian thc, nu khng n s khng cn dng c. Do , QoS phi u tin lu lng VoIP m bo n c truyn trong mt thi gian xc nh. t c iu ny, Cisco IOS t VoIP vi mc u tin cao hn lu lng FTP hoc HTTP v m bo rng khi nghn mch xy ra, lu lng FTP hoc HTTP s b nh rt trc VoIP.

Nguyn Ti Phong H09VT4

- 41 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

CHNG 2: GII THIU CHUNG V VPN


2.1 Khi nim v VPN Ngy nay, mt cng ty c tr s phn tn nhiu ni. kt ni cc my tnh ti cc v tr ny, cng ty cn c mt mng thng tin. Mng l mng ring vi ngha l n ch c cng ty s dng. Mng l mng ring cng vi ngha l k hoch nh tuyn v nh a ch trong mng c lp vi vic nh tuyn v nh a ch ca cc mng khc. Mng l mt mng o vi ngha l cc phng tin c s dng xy dng mng ny c th khng dnh ring cho cng ty m c th chia s dng chung vi cc cng ty khc. Cc phng tin cn thit xy dng mng ny c cung cp bi ngi th ba c gi l nh cung cp dch v VPN. Cc cng ty s dng mng c gi l cc khch hng VPN. Cc cng ty cung cp dch v VPN gi l SP (services Provider). VPN c th c s dng m rng phm vi ca mt Intranet. Bi v, Intranet thng c s dng trao i thng tin mt cch c quyn v ta khng mun nhng thng tin ny c truyn b trn Internet. Tuy nhin trong nhiu trng hp, cc vn phng cng ty trn din rng c nhu cu chia s thng tin v nhng ngi s dng t xa mun truy cp vo Intranet thng qua Internet. VPN s cho php kt ni vo Intranet mt cch an ton v khng lo ngi b l thng tin. C th coi kt ni loi ny nh l Extranet. im khc nhau gia hai trng hp Intranet v Extranet l cu hi ai l ngi t ra cc chnh sch ca mng VPN, trong trng hp mng Intranet th l mt cng ty cn trong trng hp mng Extranet th l mt nhm cng ty. S dng v d trn v c s d liu khch hng, rt d hiu l lm th no m VPN c th m rng kh nng ng dng ca Intranet. Gi s tt c c nhn vin bn hng ca cng ty ang i cng tc hoc l lm vic ti nh. H c th s dng Internet truy cp vo cc WebServer cha nhng thng tin v khch hng. VPN cung cp kt ni m bo an ton gia my tnh ca nhn vin v WebServer cha CSDL v m ha d liu. VPN cho php kh nng s dng linh hot i vi bt c dch v mng no c s dng mt cch an ton thng qua Internet. VPN l cng ngh cho php kt ni cc thnh phn ca mt mng ring (private network) thng qua h tng mng cng cng (Internet). VPN hot ng da trn k thut tunneling: gi tin trc khi c chuyn i trn VPN s c m ha v c t bn trong mt gi tin c th chuyn i c trn mng cng cng. Gi tin c truyn i n u bn kia ca kt ni VPN. Ti im n bn kia ca kt ni VPN, gi tin b m ha s c ly ra t trong gi tin ca mng cng cng v c gii m.

Nguyn Ti Phong H09VT4

- 42 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

Cc giai on pht trin ca VPN Th h VPN th nht do AT&T pht trin c tn l SDN Th h th 2 l ISND v X25. Th h th 3 l Frame relay v ATM. Th h th 4 l VPN trn nn mng IP. V th h hin nay l VPN trn nn mng MPLS.

2.2 Chc nng v li ch ca VPN. 2.2.1 Chc nng ca mng ring o. Tnh xc thc Thit lp kt ni trong VPN c hai pha ca thit b u cui phi xc thc ln nhau khng nh mt iu l thng tin mnh mun trao i ng vi i tng mnh mong mun khng phi l mt ngi khc m mnh khng mong mun. Tnh Ton vn Khi truyn d liu vic m bo l d liu khng b mt i hoc b xo trn l mt vic lm v cng quan trng. V vy VPN lm c iu mt cch hon ho. Tnh bo mt Vic m ho cc d liu trc khi a vo truyn trong mng cng cng v d liu s c gii m pha thu. Bng cch lm nh vy, th vic nh cp thng tin d liu l v cng kh khn i vi ngi khc. 2.2.2 Tin ch ca mng ring o. VPN em li li ch thc s v tc thi cho cng ty v cc doanh nghip trong cng vic kinh doanh ca mnh. C th dng VPN n gin ho vic truy cp i vi cc nhn vin lm vic v ngi dng lu ng, m rng mng ni b n tng vn phng chi nhnh, thm ch trin khai mng m rng n tn khch hng v cc i tc ch cht v iu quan trng l nhng cng vic trn u c chi ph thp hn nhiu so vi vic mua thit b v ng dy cho mng WAN ring. Nhng li ch ca VPN c th c dn di y. Mt kinh t Khi s dng mng ring o VPN cc cng ty c th gim chi ph c ti mt cch ti a trong vic u t v vn hnh chng. S dng VPN th cc cng ty ch vic thu cc knh ring trn h tng chung ca cc nh cung cp dch v vin thng khng cn phi u t thit b u cui cng nh thit b truyn dn. Cc thit b truyn dn l tng i t, nn vic gim ch ph khi u t khi s dng VPN l qu r rng v thit yu. Gim c cc loi cc ph ng di truy cp VPN cho cc nhn vin di ng v cc nhn vin i cng tc xa cng ty nh vo vic h truy nhp vo mng thng qua cc im kt ni ni mnh c tr, hn ch gi ng di ti cc modem tp trung.
Nguyn Ti Phong H09VT4 - 43 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

Tnh linh hot Tnh linh ng y khng ch th hin trong qu trnh vn hnh v khai thc m n cn thc s mm do i vi yu cu s dng ca ngi s dng. Ngi s dng c th s dng nhiu kt ni hay cc i tng di chuyn do c th cng vic. Khch hng ca VPN qua mng m rng ny, cng c quyn truy cp v kh nng nh nhau i vi cc dch v trung tm bao gm. Cng nh cc ng dng thit yu khc, khi truy cp chng thng qua nhng phng tin khc nhau nh qua mng cc b LAN, modem, modem cp, ng dy thu bao s v..v, m khng cn quan tm n nhng phn phc tp bn di. M rng v pht trin Nh chng ta bit mng ring o VPN c pht trin v hot ng da trn mng cng cng. Ngay nay mng Internet c mt khp ni nn vic tao cho vic xy dng v pht trin mng VPN ngy cng n gin. Vic kt ni gia cc chi nhnh xa vi cng ty l qu n gin thng qua ng dy in thoi hoc qua ng dy s DSL. Vic nng cp cng qua n gin khi bng thng ng truyn ln. V vic g b VPN cng qu n gin khi khng cn thit. 2.2.3 Nhc im v nhng gii php khc phc. S tin cy v thc thi Mng ring o s dng cc phng php m ho bo mt d liu, v s dng mt s hm mt m phc tp nn vic lm cho dng lng ca my ch l kh nng v vic y rt nh hng n vic x l tc ca my. Khi d liu c truyn ti trong VPN qu ln th vic tc nghn v c th mt thng tin d liu l chuyn thng xy ra. Vic thit lp cc dch v proxy v mt s dch v khc c th hn ch v iu chnh c lu lng truyn ti trong mng mt cc hp l nht. S ri ro v an ninh Nh chng ta bit th mng ring o l dng chung ng truyn ca mng cng cng nn c th b tn cng v iu nh l nhng iu c cnh bo trc. Nn cc nh cung cp dch a ra nhng gii php an ton cho vic dng mng ring o, nhng vn an ton khng bao gi l tuyt i. Vn cng a cc gii php bo mt vo bao nhiu th n cng nh hng n gi thnh ca dch v, v iu l mt iu khng mong mun t nh cung cp dch v cng nh ngi s dng dch v. Nn vic s nhng gii php trong VPN cng phi c cn nhc lm sao ti u nht. 2.3 M hnh VPN. VPN c gii thiu nh l mt mt mng ring m s dng trn h tng chung. Mt mng ring yu cu tt c cc u cui khch hng c th kt ni vi nhau v
Nguyn Ti Phong H09VT4 - 44 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

hon ton ring bit i vi cc mng VPN khc. Mng VPN thng l mt cng ty v c mt vi im kt cui kt ni qua h tng ca nh cung cp dch v chung. Da vo s tham gia ca mnh trong vic nh tuyn cho khch hng Nh cung cp dch v c th trin khai hai m hnh VPN chnh cung cp dch v VPN cho khch hng. M hnh Overlay VPN M hnh Peer to Peer VPN 2.3.1 M hnh Overlay VPN (VPN chng ln). Trong m hnh overlay VPN, nh cung cp dch v cung cp mt kt ni im im hoc knh o t bn ny sang bn kia mng ca h gia cc b nh tuyn ca khch hng. Nh vy, m hnh Overlay VPN cung cp cho khch hng cc mng ring, nh cung cp khng th tham gia vo vic nh tuyn khch hng. Cc nh cung cp dch v ch vn chuyn d liu qua cc kt ni point-to-point o. Nu mch o l c nh, sn sng cho khch hng s dng mi lc th c gi l mch o c nh PVC. Nu mch o c thit lp theo yu cu (on-demand) th c gi l mch o chuyn i SVC. Hn ch chnh ca m hnh Overlay l cc mch o ca cc site khch hng kt ni dng full mesh (ngoi tr trin khai dng hub-and-spoke hay partial hub-andspoke). Nu c N site khch hng th tng s lng mch o cn thit cho vic ti u nh tuyn l N(N-1)/2.
VPN A/Site2 192.168.2.37

VPN B/ Site 2 192.168.2.38 VPN B/Site 1 192.168.1.35

VPN A/Site 3 192.168.3.39

VPN A/Site 1 192.168.1.36

VPN B/Site 3 192.168.4.40

Hnh 2.1 : M hnh VPN chng ln Ban u Overlay VPN c thc thi bi SP cung cp cc kt ni lp 1 (physical layer) nh Ghp knh phn chia theo thi gian (TDM), E1, E3, SONET, v ng kt ni SDH, hay mch chuyn vn lp 2 (d liu dng frame hoc cell) gia cc site khch hng bng cch s dng cc thit b Frame Relay hay ATM switch lm
Nguyn Ti Phong H09VT4 - 45 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

PE (v d lp 2 l cc knh o c to bi X.25, ATM hoc Frame Relay). Do nh cung cp dch v khng th nhn bit c vic nh tuyn pha khch hng. Overlay VPN cn thc thi cc dch v qua layer 3 vi cc giao thc to ng hm nh GRE, IPSec Tuy nhin, d trong trng hp no th mng ca nh cung cp vn trong sut vi khch hng, v cc giao thc nh tuyn chy trc tip gia cc router ca khch hng. Mt s u im ca VPN chng ln l m hnh d thc hin, nhn theo quan im ca ngi dng v ca c nh cung cp dch v. Nh cung cp dch v khng tham gia vo nh tuyn ngi dng trong mng VPN chng ln. Nhim v ca h l vn chuyn d liu im - im gia cc site ca ngi dng, vic nh du im tham chiu gia nh cung cp dch v v ngi dng s qun l d dng hn. Hn ch ca m hnh VPN chng ln VPN thch hp trong cc mng khng cn d phng vi t site trung tm v nhiu site u xa, nhng li kh qun l nu nh cn nhiu cu hnh nt khc nhau. Vic cung cp cng nhiu mch o i hi phi c s hiu bit su sc v loi lu lng gia hai site vi nhau m iu ny thng khng tht s thch hp. Khi thc hin m hnh ny vi cc cng ngh lp 2 th ch to ra mt lp mi khng cn thit i vi cc nh cung cp hu ht ch da trn IP, dn n s phi c s u t ln trong vic ny. 2.3.2 M hnh VPN ngang cp (Peer to peer VPN). M hnh ngang cp (peer-to-peer) c pht trin khc phc nhc im ca m hnh Overlay v cung cp cho khch hng c ch vn chuyn ti u qua SP backbone. Trong m hnh ny, nhng b nh tuyn ca nh cung cp dch v vn chuyn d liu ca khch hng qua mng, nhng n cng tham gia vo vic nh tuyn ca khch hng. Ni mt cch khc, nhng b nh tuyn ca nh cung cp dch v s ngang hng vi b nh tuyn ca khch hng ti Lp 3. Trong m hnh peer-to-peer, thng tin nh tuyn c trao i gia cc router khch hng v cc router ca nh cung cp dch v, d liu ca khch hng c vn chuyn qua mng li ca nh cung cp. Thng tin nh tuyn ca khch hng c mang gia cc router trong mng ca nh cung cp (P v PE), v mng khch hng (cc CE router). M hnh ny khng yu cu to ra mch o. Quan st hnh trn ta thy, cc CE router trao i tuyn vi cc
Nguyn Ti Phong H09VT4 - 46 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

router PE trong SP domain. Thng tin nh tuyn ca khch hng c qung b qua SP backbone gia cc PE v P v xc nh c ng i ti u t mt site khch hng n mt site khc. Vic pht hin cc thng tin nh tuyn ring ca khc hng t c bng cch thc hin lc gi ti cc router kt ni vi mng khch hng. a ch IP ca khch hng do nh cung cp kim sot. Tin trnh ny xem nh l thc thi cc PE peer-topeer chia s (shared PE peer-to-peer).

Hnh 2.2 : M hnh VPN ngang hng Trc khi MPLS ra i, m hnh peer to peer VPN c th thit lp bng cch to ra nh tuyn ngang cp IP gia b nh tuyn ca khch hng v ca nh cung cp. M hnh VPN cng yu cu tnh c nhn (ring bit) v cch ly gia cc khch hng khc nhau. Ta cng c th thit lp bng cch cu hnh b lc gi (danh sch truy nhp) iu khin d liu ti v i t b nh tuyn ca khch hng. Mt cch khc thc hin c nh hnh thc c nhn l cu hnh nhng b lc nh tuyn thng bo nh tuyn hoc dng nh tuyn t vic thng bo ti b nh tuyn ca khch hng. Hoc ta c th thc hin tt c cc phng thc trn cng mt lc. Trc khi MPLS tr nn ph bin, m hnh trng lp overlay VPN c trin khai nhiu hn m hnh peer to peer VPN. M hnh peer to peer VPN yu cu nhiu t pha nh cung cp bi v khi thm mt khch hng yu cu rt nhiu s thay i cu hnh ti rt nhiu site. MPLS VPN l mt ng dng ca MPLS m n to ra m hnh peer to peer VPN d dng hn thc hin. By gi vic thm vo hoc b ra mt im cui khch hng d dng hn trong vic cu hnh v do yu cu t thi gian v s c gng hn. Vi MPLS VPN, mt b nh tuyn khch hng (c gi l b nh tuyn khch hng bin - CE) ngang cp vi Lp IP vi t nht mt b nh tuyn ca nh cung cp dch v (c gi l b nh tuyn nh cung cp bin PE).
Nguyn Ti Phong H09VT4 - 47 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

Nhng nhc im ca m hnh peer to peer VPN so vi m hnh overlay VPN.: Khch hng phi chia s trch nhim nh tuyn vi nh cung cp dch v. Yu cu phi c thm thit b bin ca nh cung cp. Nhc im u tin l khch hng phi c mt nh tuyn ngang hng vi nh cung cp dch v. Khch hng khng th kim sot (iu khin) mng end to end trn lp 3 v theo nh tuyn IP, nh vi m hnh overlay. Nhc im th hai l ca nh cung cp dch v. Gnh nng ca nh cung cp dch v chnh l vic phi trang b thm thit b bin b nh tuyn PE. Nh cung cp dch v phi c trch nhim v nh tuyn hi t ca mng khch hng bi v cc b nh tuyn PE phi c kh nng mang tt c b nh tuyn ca nhiu khch hng trong khi cung cp nh tuyn hi t kp thi.

2.4 Phn loi VPN. VPN l mt cng ngh m nh sn xut a ra nhm p ng c mt s nhu cu c bn sau y: Cung cp c nhiu ng dng khc nhau trong cng mt dch v khi ngi dng yu cu. C th iu khin c quyn truy cp ca ngi dng, cc nh cung cp dch v cng nh cc i tng bn ngoi khc. Da vo cc ng dng cng nh nhng c im ca VPN m ngi ta chia thnh hai loi VPN c bn. VPN truy nhp t xa (Remote Access VPN) VPN im ti im (Site - to Site VPN) Trong VPN im ti im li c chia thnh hai loi l VPN cc b VPN m rng 2.4.1 VPN truy nhp t xa (Remote Access VPN). Nhng thnh phn chnh trong m hnh VPN truy nhp t xa : My ch ca h thng truy nhp t xa (RAS) c t ti trung tm c nhim v xc nhn v chng nhn cc yu cu gi ti. N chu trch nhim iu hnh ton b h thng thng tin v d liu nhn v gi qua mng ny. Kt ni nhanh chng thun tin n trung tm ly d liu mt cch nhanh chng nhm gim c mt phn chi ph khi ngi dng xa trung tm my ch.
Nguyn Ti Phong H09VT4 - 48 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

H tr nhn vin k thut mt phn trong vic cu hnh, bo tr h thng v qun l b x l trung tm. V h tr truy cp t xa bi ngi dng. Khi trin khai VPN truy nhp t xa, nhng ngi dng truy nhp t xa hoc cc vn phng i din ch cn kt ni ni b n nh cung cp dch v ISP hoc ISPs POP v kt ni n ti nguyn thng qua mng Internet. H thng VPN truy nhp t xa c m hnh di y.

Hnh 2.3 : VPN truy cp t xa

Nguyn Ti Phong H09VT4

- 49 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

Hnh 2.4 : Thit lp VPN t xa Mt s u im ca VPN truy nhp t xa VPN truy nhp t xa khng cn h tr nhn vin mng bi v qu trnh kt ni t xa c cc nh cung cp dch v thc hin. Cc khon chi ph cho cc kt ni t xa bi cc kt ni khong cch c thay th bi cc kt ni cc b thng qua mng Internet. Cung cp cc dch v gi r cho ngi dng xa, to s thun li cho vic pht trin mng. VPN cung cp kh nng truy nhp tt hn n cc site ca cc cng ty v chng h tr mc thp nht chi ph dch kt ni. Mt s nhc im ca mang VPN truy nhp t xa: VPN truy nhp t xa khng h tr cc dch v bo m cht lng dch v iu rt bt li cho ngi dng mi khi c nhng thng tin quan trng mun gi i, khng c m bo an ton. Nn vic mt cp d liu v cc gi d liu khng n ch l c th xy ra. Khi s dng cc loi thut ton m ho phc tp nn tiu giao thc tng mt cch ng k. iu bt li cho vic gii m v truyn i trn mng. Do phi truyn d liu thng qua Internet, nn khi trao i cc d liu ln nh cc gi d liu truyn thng, video, m thanh s rt chm. 2.4.2 VPN im ti im (Site - to - Site VPN ). L vic s dng mt m dnh ring cho nhiu ngi kt ni nhiu im c nh vi nhau thng qua mt mng cng cng nh Internet. Loi ny c th da trn Intranet hoc Extranet. Loi da trn Intranet: nu mt cng ty c vi a im t xa mun tham gia vo mt mng ring duy nht, h c th to ra mt VPN intranet (VPN ni b) ni LAN vi LAN. Loi da trn Extranet: khi mt cng ty c mi quan h mt thit vi mt cng ty khc (v d nh : i tc cung cp, khch hng ), h c th xy dng mt VPN extranet (VPN m rng) kt ni LAN vi LAN nhiu t chc khc nhau c th lm vic trn mt mi trng chung. S khc nhau gia VPN im ti im vi VPN truy cp t xa ch mang tnh tng trng. Nhiu thit b VPN mi c th hot ng theo c hai cch ny VPN ddieemt ti im c th c xem nh mt VPN cc b hoc m rng xt t quan im qun l chnh sch. Nu h tng mng c chung mt ngun qun l, n c th c xem nh l VPN ni b. Ngc li, n c th xem nh l m rng a. VPN ni b (Intranet VPN).

Nguyn Ti Phong H09VT4

- 50 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

Intranet VPNs c s dng kt ni n cc chi nhnh vn phng ca t chc n Corporate Intranet (backbone router) s dng campus router. Theo m hnh ny s rt tn chi ph do phi s dng 2 router thit lp c mng, thm vo , vic trin khai, bo tr v qun l mng Intranet Backbone s rt tn km cn ty thuc vo lng lu thng trn mng i trn n v phm vi a l ca ton b mng Intranet. gii quyt vn trn, s tn km ca WAN backbone c thay th bi cc kt ni Internet vi chi ph thp, iu ny c th gim mt lng chi ph ng k ca vic trin khai mng Intranet.

Hnh 2.5 : VPN ni b b. VPN m rng (Extranet VPN) Khng ging nh Intranet v Remote Access-based, Extranet khng hon ton cch li t bn ngoi (outer-world), Extranet cho php truy cp nhng ti nguyn mng cn thit ca cc i tc kinh doanh, chng hn nh khch hng, nh cung cp, i tc nhng ngi gi vai tr quan trng trong t chc.

Nguyn Ti Phong H09VT4

- 51 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

H tng mng chung

Mng nh cung cp dch v 1

Mng nh cung cp dch v 2

Mng nh cung cp dch v 3

Nh cung cp dch v 1

Nh cung cp dch v 2

Nh cung cp dch v 3

Hnh 2.6 : Mt v d v Extranet VPN truyn thng Nh hnh 2.5, mng Extranet rt tn km do c nhiu on mng ring bit trn Intranet kt hp li vi nhau to ra mt Extranet. iu ny lm cho kh trin khai v qun l do c nhiu mng, ng thi cng kh khn cho c nhn lm cng vic bo tr v qun tr. Thm na l mng Extranet s kh m rng do iu ny s lm ri tung ton b mng Intranet v c th nh hng n cc kt ni bn ngoi mng. S c nhng vn bn gp phi bt thnh lnh khi kt ni mt Intranet vo mt mng Extranet.
H tng mng chung

Internet

Mng nh cung cp dch v 1

Mng nh cung cp dch v 2

Mng nh cung cp dch v 3

Hnh 2.7 : Thit lp Extranet VPN Mt s thun li ca Extranet VPN : Do hot ng trn mi trng Internet, bn c th la chn nh phn phi khi la chn v a ra phng php gii quyt tu theo nhu cu ca t chc.

Nguyn Ti Phong H09VT4

- 52 -

n tt nghip i hc

Chng 2 : Gii thiu chung v VPN

Bi v mt phn Internet-connectivity c bo tr bi nh cung cp (ISP) nn cng gim chi ph bo tr khi thu nhn vin bo tr. D dng trin khai, qun l v chnh sa thng tin. Mt s bt li ca Extranet : S e da v tnh an ton, nh b tn cng bng t chi dch v vn cn tn ti. Tng thm nguy him s xm nhp i vi t chc trn Extranet. Do da trn Internet nn khi d liu l cc loi high-end data th vic trao i din ra chm chp. Do da trn Internet, QoS cng khng c bo m thng xuyn

Hnh 2.8 : M hnh VPN kt hp

Nguyn Ti Phong H09VT4

- 53 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

CHNG 3: MNG RING O MPLS


3.1 Gii thiu v MPLS VPN 3.1.1 MPLS VPN l g?

Hnh 3.1 : M hnh MPLS VPN MPLS VPN kt hp nhng c im tt nht ca Overlay VPN v peer-to-peer VPN: Cc router PE tham gia vo qu trnh nh tuyn ca khch hng (customer), ti u vic nh tuyn gia cc site ca khch hng. Cc router PE s dng cc bng nh tuyn o (virtual routing table) cho tng khch hng nhm cung cp kh nng kt ni vo mng ca nh cung cp cho nhiu khch hng. Cc khch hng c th s dng a ch IP trng nhau (overlap addresses) MPLS VPN backbone v cc site khch hng trao i thng tin nh tuyn lp 3. MPLS VPN gm cc vng sau: Mng khch hng: thng l min iu khin ca khch hng gm cc thit b hay cc router tri rng trn nhiu site ca cng mt khch hng. Cc router CE l nhng router trong mng khch hng giao tip vi mng ca nh cung cp.

Nguyn Ti Phong H09VT4

- 54 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

Mng ca nh cung cp: l min thuc iu khin ca nh cung cp gm cc router bin (edge) v li (core) kt ni cc site thuc vo cc khch hng trong mt h tng mng chia s. Cc router PE l cc router trong mng ca nh cung cp giao tip vi router bin ca khch hng. Cc router P l router trong li ca mng, giao tip vi cc router li khc hoc router bin ca nh cung cp. Trong mng MPLS VPN, router li cung cp chuyn mch nhn gia cc router bin ca nh cung cp v khng bit n cc tuyn VPN. Cc router CE trong mng khch hng khng nhn bit c cc router li, do cu trc mng ni b ca mng nh cung cp trong sut i vi khch hng. 3.1.2 Li ch ca MPLS VPN Chi ph thp, tc n nh, p ng c yu cu v bo mt thng tin, n gin trong vic qun l v d dng trong vic chuyn i. Gim thiu chi ph so vi cc cng ngh tng ng trong vic qun l, xy dng, trin khai trong mt mng din rng. Tnh n nh v kh nng m rng: p ng nhu cu m rng mt cch nhanh chng, c th kt ni nhanh chng vi cc mng khc. Thch ng vi nhiu loi cng ngh khc nhau v khng thay th h thng mng hin ti ca khch hng. Vi kh nng h tr nhiu loi cng ngh khc nhau do MPLS c th h tr nhiu kiu truy cp khc nhau nh Frame relay, IP, lm gim thiu chi ph cho khch hng hoc c th tn dng thit b mng sn c. An ton mng: vi tnh nng m ha v to ng hm ca cng ngh VPN gip MPLS t c mc an ton cao nh trong mi trng mng ring. Cht lng dch v: m bo phn bit th t u tin cho cc lai d liu khc nhau nh: s liu, hnh nh, m thanh. 3.2 Cc thnh phn chnh ca kin trc MPLS VPN V c bn MPLS VPN c hai m hnh l MPLS VPN Layer 2 v MPLS VPN Layer 3. Tuy nhin trong khun kh n em s tp trung tm hiu v MPLS VPN Layer 3, v sau y l cc thnh phn v hot ng ca MPLS VPN Layer3

Nguyn Ti Phong H09VT4

- 55 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

Hnh 3.2 : M hnh mng ring o tng 3 3.2.1 VRF Virtual Routing and Foewarding Table Khch hng c phn bit trn router PE bng cc bng nh tuyn o (virtual routing tables) hoc cc instance, cn c gi l VRF. Thc cht n ging nh duy tr nhiu router ring bit cho cc khch hng kt ni vo mng ca nh cung cp. Chc nng ca VRF ging nh mt bn nh tuyn ton cc, ngoi tr vic n cha mi tuyn lin quan n mt VPN c th. VRF cng cha mt bng chuyn tip CEF cho VRF ring bit (VRF- specific CEF forwarding table) tng ng vi bng CEF ton cc xc nh cc yu cu kt ni v cc giao thc cho mi site khch hng kt ni trn mt router PE. VRF xc nh bi cnh (context) giao thc nh tuyn tham gia vo mt VPN c th cng nh giao tip trn router PE cc b tham gia vo VPN, ngha l s dng VRF. Giao tip tham gia vo VRF phi h tr chuyn mch CEF.Mt VRF c th gm mt giao tip (logical hay physical) hoc nhiu giao tip trn mt router. VRF cha mt bng nh tuyn IP tng ng vi bng nh tuyn IP ton cc, mt bng CEF, lit k cc giao tip tham gia vo VRF, v mt tp hp cc nguyn tc xc nh giao thc nh tuyn trao i vi cc router CE (routing protocol contexts). VRF cn cha cc nh danh VPN (VPN identifier) nh thng tin thnh vin VPN (RD v RT). Hnh sau cho thy chc nng ca VRF trn mt router PE thc hin tch tuyn khch hng.

Nguyn Ti Phong H09VT4

- 56 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

Hnh 3.3 : Chc nng ca VRF Cisco IOS h tr cc giao thc nh tuyn khc nhau nh nhng tin trnh nh tuyn ring bit (OSPF, EIGRP,) trn router. Tuy nhin, mt s giao thc nh RIP v BGP, IOS ch h tr mt instance ca giao thc nh tuyn. Do , thc thi nh tuyn VRF bng cc giao thc ny phi tch ring hon ton cc VRF vi nhau. Bi cnh nh tuyn (routing context) c thit k h tr cc bn sao ca cng giao thc nh tuyn VPN PE-CE. Cc bi nh nh tuyn ny c th c thc thi nh cc tin trnh ring bit (OSPF), hay nh nhiu instance ca cng mt giao thc nh tuyn (BGP, RIP, ). Nu nhiu instance ca cng mt giao thc nh tuyn c s dng th mi instance c mt tp cc tham s ca ring n. Hin ti, Cisco IOS h tr RIPv2, EIGRP, BGPv4 (nhiu instance), v OSPFv2 (nhiu tin trnh) c dng cho VRF trao i thng tin nh tuyn gia CE v PE. Trong m hnh MPLS VPN, router PE phn bit cc khch hng bng VRF. Tuy nhin, thng tin ny cn c mang theo gia cc router PE cho php truyn d liu gia cc site khch hng qua MPLS VPN backbone. Router PE phi c kh nng thc thi cc tin trnh cho php cc mng khch hng kt ni vo c khng gian a ch trng lp (overlapping address spaces). Router PE hc cc tuyn ny t cc mng khch hng v qung b thng tin ny bng mng trc chia s ca nh cung cp (shared provider backbone). iu ny thc hin bng vic kt hp vi RD trong bng nh tuyn o (virtual routing table) trn mt router PE. Ta c th to VRF trn PE vi lnh ip vrf .Ta s dng lnh ip vrf forwarding gn mt giao din PE CE trn PE ti VRF. Ta cng c th gn mt giao din ti mt VRF duy nht, nhng cng c th gn nhiu giao din ti cng mt VRF. Sau PE s t ng to mt bng VRF v
Nguyn Ti Phong H09VT4 - 57 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

CEF. Bng nh tuyn VRF khng ging vi bng nh tuyn thng thng trong Cisco IOS tr khi n c s dng cho mt tp VPN site duy nht v hon ton ring bit vi tt c cc bng nh tuyn khc. 3.2.2 RD Route Distinguisher L mt nh danh 64-bit duy nht, thm vo trc 32-bit a ch tuyn c hc t router CE to thnh a ch 96-bit duy nht c th c chuyn vn gia cc router PE trong min MPLS. Do ch duy nht mt RD c cu hnh cho 1 VRF trn router PE. a ch 96 bit cui cng (tng hp ca 32- bit a ch khch hng v 64-bit RD) c gi l mt a ch VPNv4. a ch VPNv4 trao i gia cc router PE trong mng nh cung cp. RD c th c hai nh dng: dng a ch IP hoc ch s AS. Gi tr 64 bit c th c 2 nh dng: ASN:nn hoc IP-address:nn ( y nn l mt s). Trong nh dng ASN:nn c s dng nhiu hn ( y ASN vit tt ca s h thng t tr - autonomous system number). RD c s dng trnh trng hp tuyn IPv4 ca mt khch hng trng vi tuyn IPv4 ca khch hng khc. Nu tin t IPv4 10.1.1.0/24 v RD 1:1, tin t vpnv4 s l 1:1:10.1.1.0/24. Mt khch hng c th s dng cc RD khc nhau cho cng mt tuyn IPv4. Khi mt VPN site c kt ni ti 2 PE, tuyn t VPN c th c 2 RD khc nhau, ph thuc vo PE no m tuyn nhn c. Mi tuyn IPv4 c th c 2 RD khc nhau v c 2 tuyn vpnv4 hon ton khc nhau. iu ny cho php BGP nhn thy chng nh l cc tuyn khc nhau v p dng mt chnh sch khc nhau cho mi tuyn. Hnh bn di cho thy hai khch hng c a ch mng ging nhau, 172.16.10.0/24, c phn bit nh vo cc gi tr RD khc nhau, 1:100 v 1:101, u tin qung b a ch VPNv4 trn router PE. Giao thc dng trao i cc tuyn VPNv4 gia cc PE l multiprotocol BGP (MP- BGP). IGP yu cu duy tr iBGP (internal BGP) khi thc thi MPLS VPN. Do , PE phi chy mt IGP cung cp thng tin NLRI cho iBGP nu c hai PE cng trong mt AS. Hin ti, Cisco h tr c OSPFv2 v ISIS trong mng nh cung cp nh l IGP. MP-BGP cng chu trch nhim ch nh nhn VPN. Kh nng m rng l l do chnh chn BGP lm giao thc mang thng tin nh tuyn khch hng. Hn na, BGP cho php s dng a ch VPNv4 trong mi trng MPLS VPN vi dy a ch trng lp cho nhiu khch hng. Mt phin lm vic MP-BGP gia cc PE trong mt BGP AS c gi l MPiBGP session v km theo cc nguyn tc thc thi ca iBGP lin quan n thuc tnh ca BGP (BGP attributes). Nu VPN m rng ra khi phm vi mt AS, cc VPNv4 s trao i gia cc AS ti bin bng MP-eBGP session.

Nguyn Ti Phong H09VT4

- 58 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

Hnh 3.4 : V d v RD 3.2.3 RT Routee Targets Nu RD cng c s dng ch ra VPN, vic truyn thng gia cc site ca cc VPN s c s c. V d mt site ca cng ty A khng th truyn thng vi mt site ca cng ty B bi v RD khng ging nhau. Khi nim cc site ca cng ty A truyn thng vi cc site ca cng ty B c gi l extranet VPN. Trng hp truyn thng gia cc site ca cng cng ty A (cng VPN) c gi l intranet VPN. Vic truyn thng gia cc site c iu khin bi mt c tnh MPLS VPN khc gi l Route targets (RTs). RT l mt BGP extended community ch ra tuyn no s c nhn t MP-BGP vo VRF. C hai loi RT l RT nhp vo (imported RT) v RT xut ra (exported RT). RT nhp vo c s dng khi nhp cc tuyn vo VRF t MP-BGP, nu tuyn no c gi tr RT ph hp vi RT nhp vo ca VRF th tuyn s c nhn vo VRF. RT xut ra c s dng khi VRF xut ra mt tuyn v c gi vo MP-BGP, khi tuyn xut ra s c gn thm RT xut ra trc khi c gi vo MP-BGP. Hnh 3.5 ch ra rng cc RT iu khin tuyn no c nhn vo VRF no t cc PE Router khc v cng vi RT no tuyn VPNv4 c xut ra v pha cc PE Router khc. C th c hn mt RT c gn vi tuyn VPNv4. c nhn vo VRF, RT ca tuyn VPNv4 phi ph hp vi t nht mt RT nhn vo c cu hnh trn VRF.

Nguyn Ti Phong H09VT4

- 59 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

Hnh 3.5 : Cc loi RT v chc nng ca n Khi cu hnh vi site thuc v mt VPN v khng c s truyn thng gia cc site thuc v cc VPN khc nhau, chng ta ch cn cu hnh mt RT nhp v mt RT xut trong tt c cc VRF trn cc PE Router kt ni ti cc site . Khi cc site thuc cc VPN cn truyn thng vi nhau th vic cu hnh s phc tp hn, cc VRF trn cc PE Router kt ni vi cc site s c cu hnh thm cc RT xut v nhp c th nhn c cc tuyn t VPN khc. 3.2.4 Giao thc MP-BGP. VRF tch ring cc tuyn ca khch hng trn PE Router, nhng lm th no cc tin t c truyn thng qua mng ca nh cung cp dch v? C ti hng trm hoc hng nghn tuyn cn c truyn qua mng trong khi cc PE Router thng khng c kt ni trc tip vi nhau. V vy BGP l giao thc thch hp cho vic mang cc tuyn VPNv4 mt cch m bo thng qua mng MPLS VPN. BGP l mt giao thc chun c s dng nh tuyn trn Internet. N l giao thc c kh nng mang mt s lng tuyn rt ln thng qua mng, n cng l mt giao thc linh hot v d m rng thc hin trong cc mi trng khc nhau. h tr cho vic truyn cc tuyn VPNv4 thng qua mng, BGP b xung thm hai thuc tnh mi l Multiprotocol Reachable NLRI (Network Layer Reachability Information) v Multiprotocol Unreachable NLRI. Nhng thuc tnh ny thng bo v rt li cc tuyn. Chng u c hai trng: Address Family Indentifier
Nguyn Ti Phong H09VT4 - 60 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

(AFI) v Subsequent Address Family Identifier (SAFI) cc trng ny ch ra cc address family c mang bi BGP, mt trong cc address family l VPNv4. Ngoi thuc tnh RT extended community cng c nh ngha mang cc RTs. BGP thc hin cng vic truyn cc tuyn VPNv4 thng qua mng MPLS VPN. Tuy nhin iu ny l khng c kh nng chuyn d liu VPN mt cch chnh xc, cho egress PE Router c th chuyn d liu ti CE Router chnh xc, n phi chuyn cc gi tin da trn nhn. Egress PE Router c th nh x mt nhn ti tuyn VPNv4, nhn c gi l nhn VPN (VPN label). Egress PE Router phi thng bo nhn ny cng vi tuyn VPNv4 ti ingress PE Router. Nhn ny c cha trong trng NLRI (Network Layer Reachability Information), khi trng AFI c t bng 1 v trng SAFI c t bng 128 trong trng hp ca IPv4.

3.2.5 Hot ng ca mt phng iu khin MPLS VPN. Mt phng iu khin trong MPLS VPN cha mi thng tin nh tuyn lp 3 v cc tin trnh trao i thng tin ca cc IP prefix c gn v phn phi nhn bng LDP. Mt phng d liu thc hin chc nng chuyn tip cc gi IP c gn nhn n trm k v ch. Hnh sau cho thy s tng tc ca cc giao thc trong mt phng iu khin ca MPLS VPN.

Hnh 3.6 : S tng tc gia cc giao thc trong mt phng iu khin Cc router CE c kt ni vi cc PE, v mt IGP, BGP, hay tuyn tnh (static route) c yu cu trn cc CE cng vi cc PE thu thp v qung co thng tin NLRI. Trong MPLS VPN backbone gm cc router P v PE, mt IGP kt hp vi LDP c s dng gia cc PE v P. LDP dng phn phi nhn trong mt MPLS
Nguyn Ti Phong H09VT4 - 61 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

domain. IGP dng trao i thng tin NLRI, nh x (map) cc NLRI ny vo MPBGP. MP-BGP c duy tr gia cc PE trong mt min MPLS VPN v trao i cp nht MP-BGP. 3.2.6 Hot ng ca mt phng d liu MPLS VPN Vic chuyn tip trong mng MPLS VPN i hi phi dng chng nhn (label stack). Nhn trn (top lable) c gn v hon i (swap) chuyn tip gi d liu i trong li MPLS. Nhn th hai (nhn VPN) c kt hp vi VRF router PE chuyn tip gi n cc CE. Hnh sau m t cc buc trong chuyn tip d liu khch hng ca mt phng d liu t mt site khch hng CE2-A ti CE1-A trong h tng mng ca SP. Khi d liu c chuyn tip ti mt mng c th dc theo mng VPN qua li MPLS, ch c nhn trn (top lable) trong chng nhn b hon i (swap) khi gi i qua backbone. Nhn VPN vn gi nguyn v c bc ra khi n router PE ng ra (egress)/xui dng(downstream). Mng gn vi mt giao tip ng ra thuc vo mt VRF c th trn router ph thuc vo gi tr ca nhn VPN. 3.2.7 nh tuyn VPNv4 trong mng MPLS VPN VRF tch ring khch hng trn b nh tuyn PE, nhng lm th no tin t c vn chuyn qua mng ca nh cung cp dch v? bi v, nhiu kh nng, s lng ln cc tuyn c th l mt trm nghn c vn chuyn qua. BGP l mt ng c vin bi v n l giao thc nh tuyn tnh v proven c th mang rt nhiu tuyn. Ch thy rng BGP l giao thc nh tuyn c bn mang bng nh tuyn Internet hon chnh. Bi v tuyn VPN ca khch hng c thc hin duy nht bng cch thm RD vo mi tuyn IPv4 chuyn n thnh tuyn VPNv4 tt c cc tuyn khch hng c th c vn chuyn an ton qua mng MPLS VPN.

Hnh 3.7 : S truyn tuyn trong mng MPLS VPN B nh tuyn PE nhn tuyn IPv4 t b nh tuyn CE qua giao thc cng trong (IGP Interior Gateway Protocol) hoc BGP ngoi (external BGP eBGP). Nhng
Nguyn Ti Phong H09VT4 - 62 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

tuyn IPv4 t site VPN c t vo trong bng nh tuyn VRF. VRF c s dng ph thuc vo VRF m c cu hnh trn giao din trn b nh tuyn PE ti b nh tuyn CE. Nhng tuyn ny c ni vi RD m c ch nh ti VRF. Do , chng tr thnh tuyn VNPv4, tuyn ny sau c a vo MP BGP. BGP quan tm n s phn phi nhng tuyn VPNv4 ti tt c cc b nh tuyn PE trong mng MPLS VPN. Trn b nh tuyn PE, nhng tuyn VPNv4 c tch RD v a vo bng nh tuyn VRF nh tuyn IPv4. Tuyn VNPv4, sau khi c tch b RD, c c a vo bng VRF hay khng cn ph thuc vo RT c cho php truy nhp vo VRF hay khng. Nhng tuyn IPv4 sau c qung b ti cc b nh tuyn CE qua giao thc IGP hoc eBGP (giao thc chy gia b nh tuyn PE v CE). Hnh sau m t cc bc trong s truyn tuyn t CE n CE trong mng MPLS VPN.

Hnh 3.8 : S truyn tuyn trong mng MPLS VPN Step by step Bi v nh cung cp dch v m ang chy mng MPLS VPN chy BGP trong h thng t tr, iBGP ang chy gia cc b nh tuyn PE. S truyn t eBGP giao thc chy gia PE v CE ti MP iBGP trong mng MPLS VPN v ngc li l t ng v khng cn cu hnh thm. Tuy nhin vic phn phi li ca MP iBGP trong IGP m hin ang chy gia PE v CE l khng t ng. Ta phi cu hnh phn phi li ln nhau gia MP iBGP v IGP.

Nguyn Ti Phong H09VT4

- 63 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

3.2.8 Chuyn tip gi trong mng MPLS VPN Nh ni trong phn trc, nhng gi khng th c chuyn tip nh gi IP n thun gia cc site. B nh tuyn P khng th chuyn tip chng bi v n khng c thng tin VRF t mi site. MPLS khng th gii quyt vn ny bi dn nhn vo gi. B nh tuyn P sau phi c thng tin chuyn tip ng cho nhn chuyn tip gi. Cch chung nht l cu hnh giao thc phn phi nhn (LDP) gia tt c cc b nh tuyn P v PE nn tt c cc lu lng IP l chuyn mch nhn gia chng. Ta cng c th s dng giao thc RSVP m rng cho iu khin lu lng (TE) khi thc thi MPLS TE, nhng LDP l phng thc chung nht cho MPLS VPN. Gi IP sau c chuyn tip nhn vi mt nhn t b nh tuyn PE vo ti b nh tuyn PE ra. B nh tuyn P khng bao gi phi thc hin vic tm kim a ch IP ch. y l cch cc gi c chuyn mch gia cc b nh tuyn PE vo v ra. Nhng nhn ny c gi l nhn IGP, bi v n l nhn phi c trong tin t IPv4 trong bng nh tuyn ton cc ca b nh tuyn P v PE, v IGP ca mng nh cung cp dch v qung b n. Lm th no b nh tuyn PE bit c gi no thuc VRF no. Thng tin ny khng c trong mo u IP, v n khng th c nhn ly t nhn IGP, bi v y ch c s dng chuyn tip gi qua mng ca nh cung cp dch v. Gii php y l thm mt nhn khc trong chng nhn MPLS. Nhn ny s ch ra gi no thuc VRF. Do tt c cc gi ca khch hng c chuyn tip vi 2 nhn: nhn IGP nh l nhn trn cng v nhn VPN nh l nhn di cng. Nhn VPN phi c t trn b nh tuyn PE vo ch ra b nh tuyn PE ra no m gi thuc VRF . Lm th no b nh tuyn PE ra bo hiu ti b nh tuyn PE vo m nhn c s dng cho tin t VRF? Bi MP BGP thc s c s dng qung b tin t VPNv4, n cng bo hiu nhn VPN (c bit n nhn BGP) m c kt ni vi tin t VPNv4. Ch : Thc s th khi nim c mt nhn VPN ch ra gi no thuc VRF cng khng thc s ng. N c th ng trong vi trng hp, nhng a s l khng. Nhn VPN thng ch ra nt tip theo m gi c chuyn tip ti trn b nh tuyn PE ra. Do , mc ch ca n l ch b nh tuyn CE ng nh bc tip theo ca gi. Ni tm li, lu lng VRF to VRF c 2 nhn trong mng MPLS VPN. Nhn trn cng l nhn IGP v c phn phi bi LDP hoc RSVP cho TE gia tt c cc b nh tuyn P v PE hop by hop. Nhn di cng l nhn VPN m c qung b bi MP iBGP t PE n PE. Nhng b nh tuyn P s dng nhn IBG chuyn tip gi ti b nh tuyn PE ra tng ng. B nh tuyn PE ra s dng nhn VPN chuyn tip gi IP ti b nh tuyn CE tng ng.

Nguyn Ti Phong H09VT4

- 64 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

Hnh 3.9 : Chuyn tip gi trong mng MPLS VPN

3.3 So snh MPLS VPN v VPN truyn thng 3.3.1 VPN truyn thng

Hnh 3.10 : M hnhVPN truyn thng Hn ch u tin v cng l d nhn thy nht IPSec l lm gim hiu nng ca mng. Khi xt ng i ca mt gi tin c gi t my tnh A trong mng A n my tnh B trong mng B. Gi tin t my tnh A s c gi n CPE A. CPE-A s kim tra gi tin xem liu n c cn thit phi chuyn n CPEB hay khng. Trong mt mi trng mng khng c VPN th gi tin s c truyn ngay n CPE-B. Tuy nhin, vi giao thc IPSec, CPE-A phi thc hin mt s thao tc trc khi gi gi tin i. u tin, gi tin c m ha, sau ng gi vo cc gi IP, hot ng ny tiu tn thi gian v gy tr cho gi tin. Tip theo gi tin s c a vo trong mng ca nh cung cp dch v. Lc ny, nu gi tin mi c to thnh c kch thc ln hn kch thc ti a cho php truyn (MTU) trn bt c mt lin kt no gia CPE-A v CPE-B th gi tin s cn phi c phn mnh thnh hai hay nhiu gi tin nh hn. iu ny ch xy ra trong trng hp bit DF (Don't Fragment) khng c thit lp,
Nguyn Ti Phong H09VT4 - 65 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

cn trong trng hp bit DF c thit lp th gi tin s b mt v mt bn tin ICMP s c gi li pha pht. Khi gi tin n c CPE-B, n s c m gi v gii m, hai hot ng ny tip tc lm tr gi tin trong mng. Cui cng, CPE-B s chuyn tip gi tin n my tnh B. Thi gian tr trong mng s ph thuc vo phc tp v tc x l ca cc CPE. Cc thit b CPE cht lng thp thng phi thc hin hu ht cc chc nng IPSec bng phn mm khin tr trong mng ln. Cc thit b CPE vi kh nng thc hin cc chc nng IPSec bng phn cng c th tng tc x l gi tin ln rt nhiu nhng chi ph cho cc thit b ny l rt t. iu ny dn n chi ph trin khai mt mng IPSec VPN l rt tn km. Cc cng ngh IP VPN khc hin c, nh IPSec, L2TP, L2F v GRE tt c u hot ng tt vi cu hnh mng sao (hubandspoke). Tuy nhin, mng ngy nay cn lin lc nhiu chiu (anytoany). h tr iu ny s dng Frame relay hay giao thc ng hm th cn phi c cu hnh dng kt ni y (full mesh) cc PVC hay ng hm gia cc vng l thnh vin. Mng khng th cung cp v qun l mt cu hnh y (full mesh topology) s dng cc cng ngh truyn thng vi hng ngn hay chc ngn VPN. Mt im chng ta cn phi cn nhc khi trin khai cc mng VPN l cc thit b CPE. Mi nh cung cp cn phi chc chn rng tt c cc CPE s hot ng tng thch vi nhau. Gii php n gin v hiu qu nht l s dng cng mt loi CPE trong mi vng, tuy nhin, iu ny khng phi bao gi cng thc hin c do nhiu yu t khc nhau. Tuy ngy nay s tng thch khng phi l mt vn ln nhng n vn cn phi c quan tm khi hoch nh mt gii php mng IPSec VPN. 3.3.2 MPLS VPN Cc mng MPLS VPN khng s dng hot ng ng gi v m ha gi tin t c mc bo mt cao. MPLS VPN s dng bng chuyn tip v cc nhn to nn tnh bo mt cho mng VPN. Kin trc mng loi ny s dng cc tuyn mng xc nh phn phi cc dch v VPN, v cc c ch x l thng minh ca MPLS VPN lc ny nm hon ton trong phn li ca mng. Mi VPN c kt hp vi mt bng nh tuyn - chuyn tip VPN (VRF) ring bit. VRF cung cp cc thng tin v mi quan h trong VPN ca mt site khch hng khi c ni vi PE router. i vi mi VRF, thng tin s dng chuyn tip cc gi tin c lu trong cc bng nh tuyn IP v bng CEF. Cc bng ny c duy tr ring l cho tng VRF nn n ngn chn c hin tng thng tin b chuyn tip ra ngoi mng VPN cng nh ngn chn cc gi tin bn ngoi mng VPN chuyn tip vo cc router bn trong mng VPN. y chnh l c ch bo mt ca MPLS VPN.
Nguyn Ti Phong H09VT4 - 66 -

n tt nghip i hc

Chng 3 : Mng ring o MPLS

Bn trong mi mt MPLS VPN, c th kt ni bt k hai im no vi nhau v cc site c th gi thng tin trc tip cho nhau m khng cn thng qua site trung tm. Cc CE khng i hi chc nng VPN v h tr IPSec. iu ny c ngha l khch hng khng phi chi ph qu cao cho cc thit b CE. Tr trong mng c gi mc thp nht v cc gi tin lu chuyn trong mng khng phi thng qua cc hot ng nh ng gi v m ha. S d khng cn chc nng m ha l v MPLS VPN to nn mt mng ring. Vic to mt mng y (full mesh) VPN l hon ton n gin v cc MPLS VPN khng s dng c ch to ng hm. V vy, cu hnh mc nh cho cc mng MPLS VPN l full mesh, trong cc site c ni trc tip vi PE v vy cc site bt k c th trao i thng tin vi nhau trong VPN. Hot ng khai thc v bo dng cng n gin hn trong mng MPLS-VPN.

Nguyn Ti Phong H09VT4

- 67 -

n tt nghip i hc

Chng 4 : Thc nghim

CHNG 4: THC NGHIM


Ci t m hnh MPLS VPN layer3 static route n gin trn phn mm m phng GNS3 nh sau

Hnh 4.1 : S u ni m phng

Hnh 4.2 : u ni vt l

Nguyn Ti Phong H09VT4

- 68 -

n tt nghip i hc

Chng 4 : Thc nghim

M t yu cu Cu hnh dch v MPLS VPN layer 3 cho 2 khch hng l 2 ngn hng khc nhau , mi ngn hng c 2 chi nhnh ( R7 & R5 l 2 router thuc khch hng A, R6 & R8 l 2 router thuc khch hng B) Cc router R5, R6, R7, R8 l cc router t ti u khch hng Giao thc igp s dng trong core MPLS l ospf Cc bc thc hin Cu hnh IP cho Route Cu hnh OSPF area 0 trn core MPLS vi cc route R1,R2, R3, R4 Enable MPLS trn cc router R1, R2, R3, R4 Cu hnh a ch Loopback 150.1.3.3/32 trn R3 v qung b vo OSPF Cu hnh a ch Loopback 150.1.4.4/32 trn R4 v qung b vo OSPF Cu hnh peer iBGP R3 v R4 s dng cc a ch va to To VRF cho khch hng A (Router R5 v R7) To VRF cho khch hng B (Router R6 v R8) Cu hnh static route trn router R3 v R4 vo BGP Redistribute static route trn 2 router R3 & R4 voBGP Cu hnh Loopback 10.1.5.5/24 trn R5 Cu hnh Loopback 10.1.6.6/24 trn R6 Cu hnh Loopback 10.1.7.7/24 trn R7 Cu hnh Loopback 10.1.8.8/24 trn R8 Cu hnh default route trn cc router 5,6,7,8 tr v router 3 v 4. Kim tra dch v : t loopback router 5 c th kt ni ti loopback ca router 7, t loopback router 6 c th kt ni ti loopback ca router8, cc router thuc cc khch hang khc nhau khng th kt ni vi nhau, router P ca nh cung cp dch v khng bit c mng ca khch hng

4.1 Cu hnh chi tit ti cc thit b 4.1.1 Cu hnh router R1 ip cef interface FastEthernet0/1 ip address 150.1.12.1 255.255.255.0 no shut tag-switching ip interface FastEthernet0/0 ip address 150.1.13.1 255.255.255.0 no shut
Nguyn Ti Phong H09VT4 - 69 -

n tt nghip i hc

Chng 4 : Thc nghim

tag-switching ip ! router ospf 1 network 150.1.12.1 0.0.0.0 area 0 network 150.1.13.1 0.0.0.0 area 0 end 4.1.2 Cu hnh router R2 ip cef interface FastEthernet0/1 ip address 150.1.12.2 255.255.255.0 no shut tag-switching ip ! interface FastEthernet0/0 ip address 150.1.24.2 255.255.255.0 tag-switching ip no shut ! router ospf 1 network 150.1.12.2 0.0.0.0 area 0 network 150.1.24.2 0.0.0.0 area 0 end 4.1.3 Cu hnh router R3 ip cef ip vrf R5-R7 rd 1:57 route-target export 1:57 route-target import 1:57 ip vrf R6-R8 rd 1:68 route-target export 1:68 route-target import 1:68 interface Loopback0 ip address 150.1.3.3 255.255.255.255 ! interface FastEthernet0/0 no shut ip vrf forwarding R5-R7
Nguyn Ti Phong H09VT4 - 70 -

n tt nghip i hc

Chng 4 : Thc nghim

ip address 10.1.37.3 255.255.255.0 ! interface FastEthernet0/1 ip vrf forwarding R6-R8 ip address 10.1.38.3 255.255.255.0 no shut ! interface FastEthernet1/0 ip address 150.1.13.3 255.255.255.0 tag-switching ip no shut ! router ospf 1 network 150.1.3.3 0.0.0.0 area 0 network 150.1.13.3 0.0.0.0 area 0 ! router bgp 1 neighbor 150.1.4.4 remote-as 1 neighbor 150.1.4.4 update-source Loopback0 neighbor 150.1.4.4 next-hop-self ! address-family vpnv4 neighbor 150.1.4.4 activate neighbor 150.1.4.4 send-community both exit-address-family ! address-family ipv4 vrf R6-R8 redistribute connected redistribute static exit-address-family ! address-family ipv4 vrf R5-R7 redistribute connected redistribute static exit-address-family ! ip route vrf R5-R7 10.1.7.0 255.255.255.0 10.1.37.7 ip route vrf R6-R8 10.1.8.0 255.255.255.0 10.1.38.8 end

Nguyn Ti Phong H09VT4

- 71 -

n tt nghip i hc

Chng 4 : Thc nghim

4.1.4 Cu hnh router R4 ip cef ! ip vrf R5-R7 rd 1:57 route-target export 1:57 route-target import 1:57 ! ip vrf R6-R8 rd 1:68 route-target export 1:68 route-target import 1:68 ! interface Loopback0 ip address 150.1.4.4 255.255.255.255 interface FastEthernet0/1 ip vrf forwarding R6-R8 ip address 10.1.46.4 255.255.255.0 no shut ! interface FastEthernet1/0 ip address 150.1.24.4 255.255.255.0 tag-switching ip no shut ! interface FastEthernet0/0 no shut ip vrf forwarding R5-R7 ip address 10.1.45.4 255.255.255.0 ! router ospf 1 network 150.1.4.4 0.0.0.0 area 0 network 150.1.24.4 0.0.0.0 area 0 ! router bgp 1 neighbor 150.1.3.3 remote-as 1 neighbor 150.1.3.3 update-source Loopback0 neighbor 150.1.3.3 next-hop-self !
Nguyn Ti Phong H09VT4 - 72 -

n tt nghip i hc

Chng 4 : Thc nghim

address-family vpnv4 neighbor 150.1.3.3 activate neighbor 150.1.3.3 send-community both exit-address-family ! address-family ipv4 vrf R6-R8 redistribute connected redistribute static exit-address-family ! address-family ipv4 vrf R5-R7 redistribute connected redistribute static exit-address-family ! ip route vrf R5-R7 10.1.5.0 255.255.255.0 10.1.45.5 ip route vrf R6-R8 10.1.6.0 255.255.255.0 10.1.46.6 end 4.1.5 Cu hnh router R5 ip cef interface Loopback0 ip address 10.1.5.5 255.255.255.0 interface FastEthernet0/0 ip address 10.1.45.5 255.255.255.0 no shut ip route 0.0.0.0 0.0.0.0 10.1.45.4 end 4.1.6 Cu hnh router R6 ip cef interface Loopback0 ip address 10.1.6.6 255.255.255.0 interface FastEthernet0/0 ip address 10.1.46.6 255.255.255.0 no shut ip route 0.0.0.0 0.0.0.0 10.1.46.4 end 4.1.7 Cu hnh router R7
Nguyn Ti Phong H09VT4 - 73 -

n tt nghip i hc

Chng 4 : Thc nghim

interface Loopback0 ip address 10.1.7.7 255.255.255.0 interface FastEthernet0/0 no shut ip address 10.1.37.7 255.255.255.0 ip route 0.0.0.0 0.0.0.0 10.1.37.3 end 4.1.8 Cu hnh router R8 interface Loopback0 ip address 10.1.8.8 255.255.255.0 interface FastEthernet0/0 no shut ip address 10.1.38.8 255.255.255.0 ip route 0.0.0.0 0.0.0.0 10.1.38.3 end 4.2 Thng tin nh tuyn 4.2.1 Thng tin nh tuyn R1

Hnh 4.3 : Thng tin nh tuyn R1 4.2.2 Thng tin nh tuyn R2

Nguyn Ti Phong H09VT4

- 74 -

n tt nghip i hc

Chng 4 : Thc nghim

Hnh 4.4 : Thng tin nh tuyn R2 4.2.3 Thng tin nh tuyn R3

Hnh 4.5 : Thng tin nh tuyn R3 4.2.4 Thng tin nh tuyn R4

Hnh 4.6 : Thng tin nh tuyn R4


Nguyn Ti Phong H09VT4 - 75 -

n tt nghip i hc

Chng 4 : Thc nghim

4.2.5 Thng tin nh tuyn R5

Hnh 4.7 : Thng tin nh tuyn R5 4.2.6 Thng tin nh tuyn R6

Hnh 4.8 : Thng tin nh tuyn R6 4.2.7 Thng tin nh tuyn R7

Hnh 4.9 : Thng tin nh tuyn R7


Nguyn Ti Phong H09VT4 - 76 -

n tt nghip i hc

Chng 4 : Thc nghim

4.2.8 Thng tin nh tuyn R8

Hnh 4.10: Thng tin nh tuyn R8 4.3 Kim tra Kim tra LDP nhn nhn ca nhng mng con v cc interface loopback ca cc router core cha?

Hnh 4.11 : Show mpls ldp bindings R3

Hnh 4.12 : Show mpls ldp bindings R4


Nguyn Ti Phong H09VT4

- 77 -

n tt nghip i hc

Chng 4 : Thc nghim

Hnh 4.13 : Show mpls ldp bindings R2

Hnh 4.14 : Show mpls ldp bindings R1

Bng LFIB

Nguyn Ti Phong H09VT4

- 78 -

n tt nghip i hc

Chng 4 : Thc nghim

Hnh 4.15 : Bng LFIB trn R3 v R4

Hnh 4.16 : Bng LFIB trn R1 v R2 Bng nh tuyn VRF Routing cho cc khch hng ti R3 v R4

Nguyn Ti Phong H09VT4

- 79 -

n tt nghip i hc

Chng 4 : Thc nghim

R3#show ip route vrf * Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2 ia - IS-IS inter area, * - candidate default, U - per-user static route o - ODR, P - periodic downloaded static route Gateway of last resort is not set 150.1.0.0/16 is variably subnetted, 5 subnets, 2 masks 150.1.24.0/24 [110/21] via 150.1.13.1, 00:12:08, FastEthernet1/0 150.1.4.4/32 [110/22] via 150.1.13.1, 00:11:58, FastEthernet1/0 150.1.3.3/32 is directly connected, Loopback0 150.1.13.0/24 is directly connected, FastEthernet1/0 150.1.12.0/24 [110/11] via 150.1.13.1, 00:12:08, FastEthernet1/0

O O C C O

Routing Table: R5-R7 Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2 ia - IS-IS inter area, * - candidate default, U - per-user static route o - ODR, P - periodic downloaded static route Gateway of last resort is not set 10.0.0.0/24 is subnetted, 4 subnets 10.1.7.0 [1/0] via 10.1.37.7 10.1.5.0 [200/0] via 150.1.4.4, 00:11:09 10.1.45.0 [200/0] via 150.1.4.4, 00:11:09 10.1.37.0 is directly connected, FastEthernet0/0

S B B C

Routing Table: R6-R8 Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2
Nguyn Ti Phong H09VT4 - 80 -

n tt nghip i hc

Chng 4 : Thc nghim

i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2 ia - IS-IS inter area, * - candidate default, U - per-user static route o - ODR, P - periodic downloaded static route Gateway of last resort is not set 10.0.0.0/24 is subnetted, 4 subnets 10.1.8.0 [1/0] via 10.1.38.8 10.1.6.0 [200/0] via 150.1.4.4, 00:11:19 10.1.46.0 [200/0] via 150.1.4.4, 00:11:19 10.1.38.0 is directly connected, FastEthernet0/1

S B B C

R4#show ip route vrf * Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2 ia - IS-IS inter area, * - candidate default, U - per-user static route o - ODR, P - periodic downloaded static route Gateway of last resort is not set 150.1.0.0/16 is variably subnetted, 5 subnets, 2 masks 150.1.24.0/24 is directly connected, FastEthernet1/0 150.1.4.4/32 is directly connected, Loopback0 150.1.3.3/32 [110/22] via 150.1.24.2, 00:14:50, FastEthernet1/0 150.1.13.0/24 [110/21] via 150.1.24.2, 00:14:50, FastEthernet1/0 150.1.12.0/24 [110/11] via 150.1.24.2, 00:14:50, FastEthernet1/0

C C O O O

Routing Table: R5-R7 Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2 ia - IS-IS inter area, * - candidate default, U - per-user static route o - ODR, P - periodic downloaded static route Gateway of last resort is not set
Nguyn Ti Phong H09VT4 - 81 -

n tt nghip i hc

Chng 4 : Thc nghim

B S C B

10.0.0.0/24 is subnetted, 4 subnets 10.1.7.0 [200/0] via 150.1.3.3, 00:13:55 10.1.5.0 [1/0] via 10.1.45.5 10.1.45.0 is directly connected, FastEthernet0/0 10.1.37.0 [200/0] via 150.1.3.3, 00:13:55

Routing Table: R6-R8 Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2 ia - IS-IS inter area, * - candidate default, U - per-user static route o - ODR, P - periodic downloaded static route Gateway of last resort is not set 10.0.0.0/24 is subnetted, 4 subnets 10.1.8.0 [200/0] via 150.1.3.3, 00:13:59 10.1.6.0 [1/0] via 10.1.46.6 10.1.46.0 is directly connected, FastEthernet0/1 10.1.38.0 [200/0] via 150.1.3.3, 00:14:00

B S C B

Kim tra mng thng nhau cha Khch hng A R5#ping 10.1.37.7 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.37.7, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 80/104/128 ms R7#ping 10.1.45.5 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.45.5, timeout is 2 seconds: !!!!!
Nguyn Ti Phong H09VT4 - 82 -

n tt nghip i hc

Chng 4 : Thc nghim

Success rate is 100 percent (5/5), round-trip min/avg/max = 76/106/136 ms Khch hng B R6#ping 10.1.38.8 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.38.8, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 80/101/160 ms R8#ping 10.1.46.6 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.46.6, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 76/101/116 ms

- Hai khch hng A v B l c lp vi nhau v khng thy c mng bn trong ca nh cung cp dch v - Mng li core ca nh cung cp dch v khng bit c mng khch hng

Nguyn Ti Phong H09VT4

- 83 -

n tt nghip i hc
KT LUN

Kt lun

Theo nhng yu cu ca n tt nghip, th ti t c nhng ni dung c bn lin quan n vn MPLS VPN. u tin l gip ngi c c c ci nhn tng quan v VPN, ng thi lun vn cng gii thiu v cng ngh mi ang c a chung hin nay l MPLS, mt cng ngh kt hp gia nh tuyn tt mng bin v chuyn gi nhanh trong mng li. Mt trong s nhng ng dng quan trng ca MPLS l MPLS VPN. Lun vn i su vo nghin cu MPLS VPN gip cho vic bo mt thng tin gia cc site ca khch hng khi truyn qua mng. Vic trin khai MPLS VPN kt hp c u im ca 2 m hnh overlay VPN v peer-to-peer VPN ng thi k tha c nhng u im ca cng ngh MPLS. Vi nhng th mnh v mt bo mt, tnh mm do khi trin khai, cht lng ng truyn... v c bit l u th v gi c. Vi mng ring o da trn MPLS cc doanh nghip, t chc hon ton c th t c cc mc tiu ca mnh nh: iu khin nhiu hn trn h tng mng, c c dch v hiu nng v tin cy tt hn, cung cp a lp dch v ti ngi s dng, m rng an ton, m bo hiu nng p ng theo yu cu ca ng dng, h tr hi t a cng ngh v a kiu lu lng trn cng mt mng n. Nh u im vt tri ca cht lng dch v qua mng IP v l phng n trin khai VPN mi khc phc c nhiu vn m cc cng ngh ra i trc n cha gii quyt c, MPLS thc s l mt la chn hiu qu trong trin khai h tng thng tin doanh nghip. Hng m rng ca lun vn: MPLS VPN l mt ti rt hay v rng ln. Ngoi nhng vn cp trong lun vn, cn rt nhiu nhng vn khc v MPLS nh: cht lng dch v, iu khin lu lng, chuyn mch bc sng a giao thc MLLS, p dng tng chuyn mch nhn vo chuyn mch quang, khi cc bc sng quang nh l nhn. Nhng vn trn em s c gng tm hiu trong thi gian ti. Knh mong nhn c gp ph bnh ca cc thy c.

Nguyn Ti Phong H09VT4

- 84 -

TI LIU THAM KHO Ting Vit [1] Nguyn Tin Ban, Hong Trng Minh, Mng ring o VPN, Hc vin cng ngh Bu chnh vin thng Hong Trng Minh, Cng ngh chuyn mch IP v MPLS 2003 Trn Th T Uyn, Chuyn mch nhn a giao thc, VnPro - Cisco Authorized Training Center.

[2] [2]

Ting Anh [1] [2] [3] IPSec, VPN, and Firewall Concepts. Cisco Press, 2004. Cisco Systems 2003,USA,Implementting Cisco (MPLS) v2.0. MPLS VPN, http://www.cisco.com Web Technology Document.

You might also like