H3C S5800 MPLS----VPLS 三层路由透传二层网络
一、MPLS 介绍
多协议标签交换(Multi-Protocol Label Switching,MPLS)是新一代的IP高速骨干网络交换标准,由因特网工程任务组(Internet Engineering Task Force,IETF)提出。
具体细节查看 百度百科 MPLS MPLS LDP 使用组播发送Hello包的方式进行邻居关系建立,组播地址:224.0.0.2。
建立连接通过UDP发送Hello包,而且在Hello包里面,包含了发送方的LSR ID。所以在 dis mpls ldp peer 中会看到对端 LSR ID的地址。
二、背景需求
A机房部分业务由于历史原因,改动IP网段比较麻烦,要在中间跑着三层路由协议(ospf)的B机房实现业务备份,需要将A机房IP网段(192.168.10.x\192.168.20.x\192.168.30.x)透传之B机房使用。
三、实验拓扑
四、配置
1、基本配置:
6800-A:
interface LoopBack0 ip address 192.168.1.252255.255.255.255 # interface Vlan-interface5 ip address 10.0.0.5 255.255.255.252 # interface Vlan-interface10 ip address 192.168.10.1 255.255.255.0 # interface Vlan-interface20 ip address 192.168.20.1 255.255.255.0 # interface GigabitEthernet0/28 port link-type trunk undo port trunk permit vlan 1 port trunk permit vlan 5 10 20
5800-A:
interface LoopBack0 ip address 192.168.1.254 255.255.255.255 # interface Vlan-interface5 ip address 10.0.0.6 255.255.255.252 # interface GigabitEthernet0/27 port link-mode route ip address 10.0.0.2 255.255.255.252 # interface GigabitEthernet0/28 port link-type trunk undo port trunk permit vlan 1 port trunk permit vlan 5 10 20
5800-B:
interface LoopBack0 ip address 192.168.1.253 255.255.255.255 # interface Vlan-interface5 ip address 10.0.0.10 255.255.255.252 # interface GigabitEthernet0/27 port link-mode route ip address 10.0.0.3 255.255.255.252 # interface GigabitEthernet0/28 port link-type trunk undo port trunk permit vlan 1 port trunk permit vlan 5 10 20
6800-B:
interface LoopBack0 ip address 192.168.1.251 255.255.255.255 # interface Vlan-interface5 ip address 10.0.0.9 255.255.255.252 # interface GigabitEthernet0/28 port link-type trunk undo port trunk permit vlan 1 port trunk permit vlan 5 10 20
2、ospf 路由配置
6800-A:
ospf 1 router-id 192.168.1.252 area 0.0.0.10 network 10.0.0.5 0.0.0.0 network 192.168.1.252 0.0.0.0
5800-A:
ospf 1 router-id 192.168.1.254 area 0.0.0.0 network 10.0.0.2 0.0.0.0 network 192.168.1.254 0.0.0.0 area 0.0.0.10 network 10.0.0.6 0.0.0.0
5800-B:
ospf 1 router-id 192.168.1.253 area 0.0.0.0 network 10.0.0.3 0.0.0.0 network 192.168.1.253 0.0.0.0 area 0.0.0.20 network 10.0.0.10 0.0.0.0
6800-B:
ospf 1 router-id 192.168.1.251 area 0.0.0.20 network 10.0.0.9 0.0.0.0 network 192.168.1.251 0.0.0.0
3、ospf 配置完成,并成功之后,配置 MPLS LDP 隧道。
5800-A:
mpls lsr-id 192.168.1.254
mpls #开启mpls 功能 mpls ldp #定义mpls 模式 l2vpn mpls l2vpn #定义vpn封装模式,只开启隧道,不用配置最后这两条命令。 interface GigabitEthernet0/27 mpls mpls ldp #在接口下应用 mpls ldp
5800-B:
mpls lsr-id 192.168.1.253
mpls mpls ldp l2vpn mpls l2vpn interface GigabitEthernet0/27 mpls mpls ldp
结果:(注意:隧道有可能单方面建立成功。所以要两边查看,结果是否和实验结果类似)
[H3C 5800-A]dis mpls ldp peer
LDP Peer Information in Public network
Total number of peers: 1
------------------------------------------------------------------------------
Peer-ID Transport-Address Discovery-Source
------------------------------------------------------------------------------
192.168.1.253:0 192.168.1.253 GigabitEthernet0/27
------------------------------------------------------------------------------
[H3C 5800-A]
4、二层网络透传
5800-A:
1、创建vsi # vsi 10A_to_B static pwsignal ldp vsi-id 500 #vsi-id 不可以一样,一个vlan 一个vsi-id,两段对应网段的vsi-id 需要一致。 peer 192.168.1.253 #对端lsr-id # vsi 20A_to_B static pwsignal ldp vsi-id 501 peer 192.168.1.253
#
2、接口应用 interface GigabitEthernet0/28 #如果引用与Bridge-Aggregation 链路聚合口,模式需要为trunk模式。 service-instance 10 encapsulation s-vid 10 #透传网段vlan ID xconnect vsi 10A_to_B service-instance 20 encapsulation s-vid 20 xconnect vsi 20A_to_B #应用vsi
5800-B:
1、创建vsi # vsi 10B_to_A static pwsignal ldp vsi-id 500 peer 192.168.1.254 # vsi 20B_to_A static pwsignal ldp vsi-id 501 peer 192.168.1.254 # 2、接口应用 interface GigabitEthernet0/28 service-instance 10 encapsulation s-vid 10 xconnect vsi 10B_to_A service-instance 20 encapsulation s-vid 20 xconnect vsi 20B_to_A
6800-B:
在交换机上创建vlan 10 和vlan20,配置现有地址进行测试,看看地址在6800A上是否可以ping同。
