CCIE SP Simple Lab 3 of 7
CCIE SP Simple Lab 3 of 7
0
Sample Lab
Part 3/7
G0/2/0/1.69 VLAN 69
.69.9/24
VLAN 59
E0/0 E1/0 G0/2/0/1.29 G0/2/0/1.59 E0/0
E0/0
R14 .142.14/24 142.1/24
.29.2/24 VLAN 29 .29.9/24 .59.9/24 .59.5/24
R2
R9 R5
ABC RIP V2 EIGRP ABC
E0/2
Site 1 E0/1 .27.2/24 G0/2/0/1.79 Site 4
.28.2/24 .79.9/24
G0/2/0/1 G0/3
Trunk
E0/0 VLAN 28
.135.15/24 Backbone Carrier SP VLAN 79 Sw2
R15
AS 2 VLAN 98
VLAN 158 E0/2
ISIS or OSPF .98.2
.27.7/24
G0/2/0/2.158 G0/2/0/2.28
.28.8/24 E0/1
.79.7/24 S2/0
G0/2/0/2.78 E0/0
.78.8/24 DLCI 107
.78.7/24
Sw3 R8 R7
.178.11
R11
G0/2 G0/2/0/2 VLAN 78 S2/0
VLAN 98 Trunk
.98.3 DLCI 701
VLAN 178 G0/2.38 E1/0
.178.3
Customer Carrier SP .38.8/24 .17.7/24 Customer Carrier SP
ABC Site 2 VLAN 38
AS 123 BGP OSPF ABC Site 3
E1/0 AS 123
E1/0 .17.1/24
.38.3/24 E1/3 E1/3
E1/3 E1/3
.1.1/24 .1.18/24
.3.16/24 .3.3/24
R16 R3 R1 R18
ISIS OSPF
QAZ QAZ
Site 1 Site 2
SP Sample Lab – Addressing Scheme
Backbone Carrier SP network Prefix: 2.2.0.0/24, 2002:2:2::/64
Backbone Carrier SP router Loopback0: 2.2.0.Z/32, 2002:2:2::Z/128
Customer Carrier SP/VPN network Prefix: 172.2.0.0/24, 2002:172:2::/64
Customer Carrier SP/VPN router Loopback0: 172.2.0.Z/32, 2002:172:2::Z/128
End Customer VPN network Prefix: 192.2.0.0/24
End Customer VPN router Loopback0: 192.2.0.Z/32
L2 VPN Customer network Prefix: 172.2.0.0/24
L2 VPN Customer router Loopback0: 172.2.0.Z/32
“Z” is router number, for example “Z” value for R12 is “12”
SP Sample Lab – Setup
Hardware
Two XR-12404 with two GigabitEthernet interfaces or equivalent
Thirteen Cisco 7200 series routers with Ethernet interfaces or equivalent
Three Cisco 3560G series or equivalent
Software Operating System
XR12000-iosxr-k9-3.9.1.tar
c7200-spservices-mz.122-33.SRE2.bin
c3560-advipservicesk9-mz.122-46.SE.bin
SP Sample Lab Questions
Question, Configuration and Verification
1 IS-IS IPv4/IPv6
2 OSPF IPv4/IPv6
4 MPLS LDP
5 MPLS TE
6 MPLS TE FRR
9 CSC
11 Multicast VPN
12 AToM
13 VPLS
14 L2TPv3
MPLS VPN Terminology
• LSR: Label switch router
• LSP: Label switched path
– The chain of labels that are swapped at each hop to get from one LSR to another
• VRF: VPN routing and forwarding
– Mechanism in Cisco IOS® used to build per-interface RIB and FIB
• MP-BGP: Multiprotocol BGP
• PE: Provider edge router interfaces with CE routers
• P: Provider (core) router, without knowledge of VPN
• VPNv4: Address family used in BGP to carry MPLS-VPN routes
• RD: Route distinguisher
– Distinguish same network/mask prefix in different VRFs
• RT: Route target
– Extended community attribute used to control import and export policies of
VPN routes
• LFIB: Label forwarding information base
• FIB: Forwarding information base
Mapping to Lab Exam Blueprint
This question of the sample lab maps to following sections/sub-sections in
the Lab Exam Blueprint document below;
https://learningnetwork.cisco.com/docs/DOC-9991
3.0 – Implement, Optimize and Troubleshoot L3VPN Technologies
3.1 – Implement, Optimize and Troubleshoot Intra-AS L3VPN
For more details, please review the Lab Exam Checklist document below;
https://learningnetwork.cisco.com/docs/DOC-10145
MP-BGP Intra-AS VPNv4 – Sub Topology and
Question
G0/2/0/1.59 E0/0
E0/0 E1/0 E0/0 G0/2/0/1.29
.59.9/24 .59.5/24
.142.14/24 142.1/24 .29.2/24 .29.9/24
R14 R2 R9 R5
RIP v2 E0/2 EIGRP
E0/1 .27.2/24 G0/2/0/1.79
.28.2/24 .79.9/24
ABC ABC
Site 1 Site 4
SP AS 2
E0/2
G0/2/0/2.28 .27.7/24
.28.8/24 Ei0/1
E0/0 .79.7/24
G0/2/0/2.78
.78.7/24
.78.8/24
R8 R7
Gi0/2.38 E1/0
ABC .38.8/24 .17.7/24 ABC
Site 2 BGP OSPF Site 3
E1/0
E1/0 .17.1/24
.38.3/24
AS 123
R3 R1
R9 VPN table
RP/0/0/CPU0:R9#show bgp vpnv4 unicast vrf ABC
*>i172.2.0.1/32 2.2.0.7 15 100 0 ?
*>i172.2.0.3/32 2.2.0.8 0 100 0 123 i
*> 172.2.0.5/32 172.2.59.5 130816 32768 ?
*>i172.2.0.14/32 2.2.0.2 1 100 0 ?
*>i172.2.17.0/24 2.2.0.7 15 100 0 ?
*>i172.2.38.0/24 2.2.0.8 0 100 0 ?
*> 172.2.59.0/24 0.0.0.0 0 32768 ?
*>i172.2.142.0/24 2.2.0.2 0 100 0 ?
MP-BGP VPNv4 table (Cont.)
R2 VPN table
R2#show ip bgp vpnv4 vrf ABC
Route Distinguisher: 2:2 (default for vrf ABC)
*>i172.2.0.1/32 2.2.0.7 15 100 0 ?
*>i172.2.0.3/32 2.2.0.8 0 100 0 123 i
*>i172.2.0.5/32 2.2.0.9 130816 200 0 ?
*> 172.2.0.14/32 172.2.142.14 1 32768 ?
*>i172.2.17.0/24 2.2.0.7 15 100 0 ?
*>i172.2.38.0/24 2.2.0.8 0 100 0 ?
*>i172.2.59.0/24 2.2.0.9 0 200 0 ?
*> 172.2.142.0/24 0.0.0.0 0 32768 ?
R7 VPN table
R7#show ip bgp vpnv4 vrf ABC
*> 172.2.0.1/32 172.2.17.1 15 32768 ?
*>i172.2.0.3/32 2.2.0.8 0 100 0 123 i
*>i172.2.0.5/32 2.2.0.9 130816 200 0 ?
*>i172.2.0.14/32 2.2.0.2 1 100 0 ?
*> 172.2.17.0/24 0.0.0.0 15 32768 ?
*>i172.2.38.0/24 2.2.0.8 0 100 0 ?
*>i172.2.59.0/24 2.2.0.9 0 200 0 ?
*>i172.2.142.0/24 2.2.0.2 0 100 0 ?
MPLS VPNv4 routes
R14 and R3 route
R14#show ip route rip
R 172.2.0.1/32 [120/1] via 172.2.142.2, 00:00:12, Ethernet0/0
R 172.2.0.3/32 [120/1] via 172.2.142.2, 00:00:12, Ethernet0/0
R 172.2.0.5/32 [120/1] via 172.2.142.2, 00:00:12, Ethernet0/0
R 172.2.17.0/24 [120/1] via 172.2.142.2, 00:00:19, Ethernet0/0
R 172.2.38.0/24 [120/1] via 172.2.142.2, 00:00:19, Ethernet0/0
R 172.2.59.0/24 [120/1] via 172.2.142.2, 00:00:19, Ethernet0/0
CE1 CE2
VPN-1 VPN-2
AS 1002
Configure Inter-AS BGP R6 R12
ISIS E1/0
E0/1 E1/0
VPNv4 unicast on R6 and .69.6/24 .126.6/24 .126.12/24
R8 R7
define static host route
Gi0/2.38 E1/0
on R9 .38.8/24
ABC
.17.7/24 ABC
BGP OSPF Site 3
Site 2 E1/0
E1/0 .17.1/24
.38.3/24
AS 123
R3 R1
MP-BGP VPNv4 Configuration
R6 (IOS) configuration
vrf definition ABC router bgp 1002
rd 1002:2 no bgp default route-target filter
! neighbor 2.2.69.9 remote-as 2
address-family ipv4 !
route-target export 1002:2 address-family vpnv4
route-target import 1002:2 neighbor 2.2.69.9 activate
route-target import 2:2 neighbor 2.2.69.9 send-community extended
! exit-address-family
interface Ethernet0/1 !
ip address 2.2.69.6 255.255.255.0 address-family ipv4 vrf ABC
! no synchronization
interface Ethernet1/0 redistribute isis ABC level-1-2
vrf forwarding ABC exit-address-family
ip address 172.2.126.6 255.255.255.0
!
router isis ABC
vrf ABC
net 47.0172.0000.0000.0006.00
metric-style wide
redistribute bgp 1002
!
MP-BGP VPNv4 Configuration (Cont.)
R9 (IOS-XR) configuration
vrf ABC vrf ABC
address-family ipv4 unicast rd 2:2
import route-target address-family ipv4 unicast
2:2 redistribute eigrp 100
1002:2 !
! router eigrp 100
export route-target vrf ABC
2:2 address-family ipv4
! default-metric 100000 10 250 1 1500
! autonomous-system 100
router bgp 2 redistribute bgp 2
address-family vpnv4 unicast interface GigabitEthernet0/2/0/1.59
! !
neighbor 2.2.69.6 router static
remote-as 1002 address-family ipv4 unicast
address-family vpnv4 unicast 2.2.69.6/32 GigabitEthernet0/2/0/1.69
route-policy default_policy_pass_all in !
route-policy default_policy_pass_all out
!
R6 VPNv4 neighbor
R6#show ip bgp vpnv4 all summary
BGP router identifier 2.2.0.6, local AS number 1002
BGP table version is 158, main routing table version 158