评分并提供意见反馈 :
华为采用机器翻译与人工审校相结合的方式将此文档翻译成不同语言,希望能帮助您更容易理解此文档的内容。 请注意:即使是最好的机器翻译,其准确度也不及专业翻译人员的水平。 华为对于翻译的准确性不承担任何责任,并建议您参考英文文档(已提供链接)。
配置BGP方式VPWS远程连接示例
两个CE设备连接在不同的PE设备上,可以通过建立BGP方式VPWS远程连接,实现CE设备之间的互通。
配置思路
采用如下的思路配置BGP方式VPWS远程连接的基本功能:
在骨干网相关设备(PE、P)上配置路由协议实现互通,并使能MPLS基本功能和LDP功能。
使能BGP对等体交换VPWS的功能。
在PE上使能MPLS L2VPN功能,并创建一条CE1到CE2的BGP方式VPWS远程连接。
操作步骤
- 配置IP地址
# 配置CE1。
<HUAWEI> system-view[~HUAWEI] sysname CE1
[*HUAWEI] commit
[~CE1] interface gigabitethernet 1/0/0
[*CE1-GigabitEthernet1/0/0] ip address 10.1.1.1 24
[*CE1-GigabitEthernet1/0/0] quit
[*CE1] commit# 配置CE2。
<HUAWEI> system-view[~HUAWEI] sysname CE2
[*HUAWEI] commit
[~CE2] interface gigabitethernet 1/0/0
[*CE2-GigabitEthernet1/0/0] ip address 10.1.1.2 24
[*CE2-GigabitEthernet1/0/0] quit
[*CE2] commit# 配置PE1。
<HUAWEI> system-view[~HUAWEI] sysname PE1
[*HUAWEI] commit
[~PE1] interface loopback 1[*PE1-LoopBack1] ip address 1.1.1.9 32[*PE1-LoopBack1] quit[*PE1] interface gigabitethernet 2/0/0
[*PE1-GigabitEthernet2/0/0] ip address 192.168.1.1 24
[*PE1-GigabitEthernet2/0/0] quit
[*PE1] commit# 配置P。
<HUAWEI> system-view[~HUAWEI] sysname P
[*HUAWEI] commit
[~P] interface loopback 1[*P-LoopBack1] ip address 2.2.2.9 32[*P-LoopBack1] quit[*P] interface gigabitethernet 1/0/0
[*P-GigabitEthernet1/0/0] ip address 192.168.1.2 24
[*P-GigabitEthernet1/0/0] quit
[*P] interface gigabitethernet 2/0/0
[*P-GigabitEthernet2/0/0] ip address 192.168.10.1 24
[*P-GigabitEthernet2/0/0] quit
[*P] commit# 配置PE2。
<HUAWEI> system-view[~HUAWEI] sysname PE2
[*HUAWEI] commit
[*PE2] interface loopback 1[*PE2-LoopBack1] ip address 3.3.3.9 24[*PE2-LoopBack1] quit[~PE2] interface gigabitethernet 2/0/0
[*PE2-GigabitEthernet2/0/0] ip address 192.168.10.2 24
[*PE2-GigabitEthernet2/0/0] quit
[*PE2] commit - 配置IGP,本示例使用OSPF
# 配置PE1。
[~PE1] ospf 1[*PE1-ospf-1] area 0[*PE1-ospf-1-area-0.0.0.0] network 1.1.1.9 0.0.0.0[*PE1-ospf-1-area-0.0.0.0] network 192.168.1.0 0.0.0.255[*PE1-ospf-1-area-0.0.0.0] quit[*PE1-ospf-1] quit[*PE1] commit# 配置P。
[~P] ospf 1[*P-ospf-1] area 0[*P-ospf-1-area-0.0.0.0] network 2.2.2.9 0.0.0.0[*P-ospf-1-area-0.0.0.0] network 192.168.1.0 0.0.0.255[*P-ospf-1-area-0.0.0.0] network 192.168.10.0 0.0.0.255[*P-ospf-1-area-0.0.0.0] quit[*P-ospf-1] quit[*P] commit# 配置PE2。
[~PE2] ospf 1[*PE2-ospf-1] area 0[*PE2-ospf-1-area-0.0.0.0] network 3.3.3.9 0.0.0.0[*PE2-ospf-1-area-0.0.0.0] network 192.168.10.0 0.0.0.255[*PE2-ospf-1-area-0.0.0.0] quit[*PE2-ospf-1] quit[*PE2] commit - 使能MPLS功能,建立LSP隧道
# 配置PE1。
[~PE1] mpls lsr-id 1.1.1.9[*PE1] mpls[*PE1-mpls] quit[*PE1] mpls ldp[*PE1-mpls-ldp] quit[*PE1] interface gigabitethernet 2/0/0
[*PE1-GigabitEthernet2/0/0] mpls
[*PE1-GigabitEthernet2/0/0] mpls ldp
[*PE1-GigabitEthernet2/0/0] quit
[*PE1] commit# 配置P。
[~P] mpls lsr-id 2.2.2.9[*P] mpls[*P-mpls] quit[*P] mpls ldp[*P-mpls-ldp] quit[*P] interface gigabitethernet 1/0/0
[*P-GigabitEthernet1/0/0] mpls
[*P-GigabitEthernet1/0/0] mpls ldp
[*PE1-GigabitEthernet1/0/0] quit
[*P] interface gigabitethernet 2/0/0
[*P-GigabitEthernet2/0/0] mpls
[*P-GigabitEthernet2/0/0] mpls ldp
[*P-GigabitEthernet2/0/0] quit
[*P] commit# 配置PE2。
[~PE1] mpls lsr-id 3.3.3.9[*PE1] mpls[*PE1-mpls] quit[*PE1] mpls ldp[*PE1-mpls-ldp] quit[*PE1] interface gigabitethernet 2/0/0
[*PE1-GigabitEthernet2/0/0] mpls
[*PE1-GigabitEthernet2/0/0] mpls ldp
[*PE1-GigabitEthernet2/0/0] quit
[*PE1] commit - 使能BGP对等体交换VPWS信息的功能
# 配置PE1。
[~PE1] bgp 100[*PE1-bgp] peer 3.3.3.9 as-number 100[*PE1-bgp] peer 3.3.3.9 connect-interface loopback 1[*PE1-bgp] l2vpn-ad-family[*PE1-bgp-af-l2vpn-ad] peer 3.3.3.9 enable[*PE1-bgp-af-l2vpn-ad] peer 3.3.3.9 signaling vpws[*PE1-bgp-af-l2vpn-ad] quit[*PE1-bgp] quit[*PE1] commit# 配置PE2。
[~PE2] bgp 100[*PE2-bgp] peer 1.1.1.9 as-number 100[*PE2-bgp] peer 1.1.1.9 connect-interface loopback 1[*PE2-bgp] l2vpn-ad-family[*PE2-bgp-af-l2vpn-ad] peer 1.1.1.9 enable[*PE2-bgp-af-l2vpn-ad] peer 1.1.1.9 signaling vpws[*PE2-bgp-af-l2vpn-ad] quit[*PE2-bgp] quit[*PE2] commit - 在配置BGP方式VPWS远程连接
# 配置PE1。
[~PE1] mpls l2vpn[*PE1-l2vpn] quit[*PE1] mpls l2vpn vpn1 encapsulation ethernet[*PE1-mpls-l2vpn-vpn1] route-distinguisher 100:1[*PE1-mpls-l2vpn-vpn1] vpn-target 200:1 both[*PE1-mpls-l2vpn-vpn1] ce ce1 id 1 range 10[*PE1-mpls-l2vpn-vpn1-ce-ce1] connection ce-offset 2 interface gigabitethernet 1/0/0
[*PE1-mpls-l2vpn-vpn1-ce-ce1] quit[*PE1] commit# 配置PE2。
[~PE2] mpls l2vpn[*PE2-l2vpn] quit[*PE2] mpls l2vpn vpn1 encapsulation ethernet[*PE2-mpls-l2vpn-vpn1] route-distinguisher 100:1[*PE2-mpls-l2vpn-vpn1] vpn-target 200:1 both[*PE2-mpls-l2vpn-vpn1] ce ce2 id 2 range 10[*PE2-mpls-l2vpn-vpn1-ce-ce2] connection ce-offset 1 interface gigabitethernet 1/0/0
[*PE2-mpls-l2vpn-vpn1-ce-ce2] quit[*PE2-mpls-l2vpn-vpn1] quit[*PE2] commit - 验证配置结果
完成上述配置后,在PE上执行display mpls l2vpn connection命令,可以看到建立了一条VPWS连接,且状态为Up。以PE1的显示为例:
[~PE1] display mpls l2vpn connection1 total connections, connections: 1 up, 0 down, 0 local, 1 remote, 0 unknown VPN name: vpn1, 1 total connections, connections: 1 up, 0 down , 0 local, 1 remote, 0 unknown CE name: ce1, id: 1, Rid type status peer-id route-distinguisher interface primary or not ---------------------------------------------------------------------------- 2 rmt up 3.3.3.9 100:1 GigabitEthernet1/0/0 primaryCE1与CE2能够Ping通。
[~CE1] ping 10.1.1.2PING 10.1.1.2: 56 data bytes, press CTRL_C to break Reply from 10.1.1.2: bytes=56 Sequence=1 ttl=255 time=7 ms Reply from 10.1.1.2: bytes=56 Sequence=2 ttl=255 time=3 ms Reply from 10.1.1.2: bytes=56 Sequence=3 ttl=255 time=4 ms Reply from 10.1.1.2: bytes=56 Sequence=4 ttl=255 time=2 ms Reply from 10.1.1.2: bytes=56 Sequence=5 ttl=255 time=3 ms --- 10.1.1.2 ping statistics --- 5 packet(s) transmitted 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 2/3/7 ms
配置文件
CE1的配置文件
# sysname CE1 # interface GigabitEthernet1/0/0 undo shutdown ip address 10.1.1.1 255.255.255.0 # returnCE2的配置文件
# sysname CE2 # interface GigabitEthernet1/0/0 undo shutdown ip address 10.1.1.2 255.255.255.0 # returnPE1的配置文件
# sysname PE1 # mpls lsr-id 1.1.1.9 # mpls # mpls l2vpn # mpls ldp # interface GigabitEthernet1/0/0 undo shutdown # interface GigabitEthernet2/0/0 undo shutdown ip address 192.168.1.1 255.255.255.0 mpls mpls ldp # interface LoopBack1 ip address 1.1.1.9 255.255.255.255 # mpls l2vpn vpn1 encapsulation ethernet route-distinguisher 100:1 vpn-target 200:1 import-extcommunity vpn-target 200:1 export-extcommunity ce ce1 id 1 range 10 default-offset 0 connection ce-offset 2 interface GigabitEthernet1/0/0 # bgp 100 peer 3.3.3.9 as-number 100 peer 3.3.3.9 connect-interface LoopBack1 # ipv4-family unicast undo synchronization peer 3.3.3.9 enable # l2vpn-ad-family policy vpn-target peer 3.3.3.9 enable peer 3.3.3.9 signaling vpws # ospf 1 area 0.0.0.0 network 1.1.1.9 0.0.0.0 network 192.168.1.0 0.0.0.255 # return
P的配置文件
# sysname P # mpls lsr-id 2.2.2.9 # mpls # mpls ldp # interface GigabitEthernet1/0/0 undo shutdown ip address 192.168.1.2 255.255.255.0 mpls mpls ldp # interface GigabitEthernet2/0/0 undo shutdown ip address 192.168.10.1 255.255.255.0 mpls mpls ldp # interface LoopBack1 ip address 2.2.2.9 255.255.255.255 # ospf 1 area 0.0.0.0 network 2.2.2.9 0.0.0.0 network 192.168.1.0 0.0.0.255 network 192.168.10.0 0.0.0.255 # return
PE2的配置文件
# sysname PE2 # mpls lsr-id 3.3.3.9 # mpls # mpls l2vpn # mpls ldp # interface GigabitEthernet1/0/0 undo shutdown # interface GigabitEthernet2/0/0 undo shutdown ip address 192.168.10.2 255.255.255.0 mpls mpls ldp # interface LoopBack1 ip address 3.3.3.9 255.255.255.255 # mpls l2vpn vpn1 encapsulation ethernet route-distinguisher 100:1 vpn-target 200:1 import-extcommunity vpn-target 200:1 export-extcommunity ce ce2 id 2 range 10 default-offset 0 connection ce-offset 1 interface GigabitEthernet1/0/0 # bgp 100 peer 1.1.1.9 as-number 100 peer 1.1.1.9 connect-interface LoopBack1 # ipv4-family unicast undo synchronization peer 1.1.1.9 enable # l2vpn-ad-family policy vpn-target peer 1.1.1.9 enable peer 1.1.1.9 signaling vpws # ospf 1 area 0.0.0.0 network 3.3.3.9 0.0.0.0 network 192.168.10.0 0.0.0.255 # return
