No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


Configuration Guide - VPN

S9300, S9300E, and S9300X V200R010C00

This document describes the VPN configuration procedures and provides configuration examples.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
BGP/MPLS IP VPN Application

BGP/MPLS IP VPN Application

Service Overview

BGP/MPLS IP VPN technology is deployed to meet service requirements. VPN labels distributed using MP-BGP enable packets to enter the correct VPN site and MPLS enables packets to be transparently transmitted over tunnels on the carrier's backbone network.

Figure 2-32 shows a typical networking example of BGP/MPLS IP VPN.

Figure 2-32  BGP/MPLS IP VPN application

In Figure 2-32, Site1 and Site2 represent two networks in different cities. The two networks may be networks for two branches of a company or networks for municipal governments of the two cities. During communication between Site1 and Site2 data security must be ensured. The two networks must be separated from other networks and packets exchanged between the two networks must be transparently transmitted over the carrier's backbone network. Deploying BGP/MPLS VPN technology helps to meet this requirement.

Networking Description

To enable communication between sites, PE and P devices on the carrier's backbone network must be used to transmit routes and packets between Site1 and Site2. A CE device can be dual-homed to PE devices to ensure high network availability. Carriers typically deploy route reflectors (RRs) on the backbone network to reflect VPNv4 and VPNv6 routes.

Feature Deployment

In BGP/MPLS IP VPN networking, the following configurations must be performed:
  • Configure static routes between CE devices and PE devices or configure RIP, OSPF, IS-IS, or BGP on CEs and PEs for them to exchange routing information.

  • Configure MP-BGP peer relationships between all PE devices and RR1 and between all PE devices and RR2. Configure all PE devices as the clients of RR1 and RR2 and configure RR1 and RR2 to back up each other. The helps ensure network reliability.

  • Configure MPLS and an IGP on PE and P devices and establish MPLS tunnels for traffic forwarding.

  • Adjust IGP costs of links to:
    • Ensure that the two links between CE1 and CE2 work in active/standby mode. If one link fails, traffic is switched to the other link for transmission.

    • Adjust the costs of links between RRs and the backbone network. Ensure that RRs are only used for route reflection not for traffic forwarding.

  • Configure VPN FRR or VPN GR for services that have high requirements for real-time transmission to enhance network reliability.

Updated: 2019-08-21

Document ID: EDOC1000142068

Views: 112082

Downloads: 208

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Previous Next