Chapter 11: MPLS VPN Technologies
VPN Types
-
Layer 1 Overlay - Dedicated physical circuits
-
Layer 2 Overlay - Traditional WAN services (Frame Relay, HDLC, etc); virtual circuits
-
Layer 3 Overlay - GRE/IPsec tunnels
-
Peer-to-Peer - Layer 3 connectivity serviced by provider
VPN Architecture
-
C network - A customer's private network
-
CE router - Customer edge router which connects to a PE router
-
P network - The provider's shared network composed of MPLS routers
-
PE router - Provider edge router which connects to one or more customers
Different customer networks can be logically separated using Virtual Routing and Forwarding (VRF), a private routing table on the provider's routers.
A route distinguisher (RD) is a 64-bit prefix prepended to an IPv4 address to create a globally unique VPNv4 address. Each customer is assigned its own RD or RDs.
VPNv4 addresses are communicated between PE routers using MPBGP.
A route target (RT) is an attribute appended to a VPNv4 BGP route to indicate VPN membership.