MPLS VPN Extranet Route Leaking
MPLS VPN Extranet Route Leaking
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
Search …
Let me show you a quick example to explain this: VRFs (Virtual Routing and Forwarding)
Each customer has two sites. On our PE routers, we use the following configuration for
our VRFs:
ip vrf BLUE
rd 2:2
ip vrf RED
rd 1:1
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 1/11
7/26/2021 MPLS VPN Extranet Route Leaking
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
ip vrf BLUE
rd 2:2
ip vrf RED
rd 1:1
VRF RED uses route-target 1:1 to import and export its routes.
VRF BLUE uses route-target 2:2 to import and export its routes.
With the configuration above, both customers are only able to communicate with their
own sites. It’s impossible to send traffic from RED to BLUE or vice versa. This is what we
call an MPLS intranet VPN.
Does this mean it’s impossible for customers RED and BLUE to communicate with each
other at all?
This is no problem at all…the only thing we have to do is leak some routes from one VRF
to another. This allows the different sites to learn about each others’ routes and they will
be able to communicate with each other. This is called an MPLS VPN Extranet (Route
Leaking).
1. Configuration
Let’s see how this works. To demonstrate this, I will use the topology I just showed you
and we will leak some routes between customer site RED-CE1 and BLUE-CE2. Here it is:
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 2/11
7/26/2021 MPLS VPN Extranet Route Leaking
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
This is a basic MPLS VPN PE CE setup with two VRFs. We use OSPF as the PE-CE routing
protocol.
Configurations
Want to take a look for yourself? Here you will find the startup configuration of each
device.
B-CE1
hostname BLUE-CE1
ip cef
interface Loopback0
interface GigabitEthernet0/1
router ospf 1
end
B-CE2
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 3/11
7/26/2021 MPLS VPN Extranet Route Leaking
hostname BLUE-CE2
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
!
ip cef
interface Loopback0
interface GigabitEthernet0/1
router ospf 1
end
P
hostname P
ip cef
interface Loopback0
interface GigabitEthernet0/1
mpls ip
interface GigabitEthernet0/2
mpls ip
end
PE1
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 4/11
7/26/2021 MPLS VPN Extranet Route Leaking
hostname PE1
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
!
ip vrf BLUE
rd 2:2
ip vrf RED
rd 1:1
ip cef
interface Loopback0
interface GigabitEthernet0/1
mpls ip
interface GigabitEthernet0/2
interface GigabitEthernet0/3
bgp log-neighbor-changes
address-family ipv4
exit-address-family
address-family vpnv4
exit-address-family
redistribute ospf 2
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 5/11
7/26/2021 MPLS VPN Extranet Route Leaking
exit-address-family
!
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
address-family ipv4 vrf RED
redistribute ospf 1
exit-address-family
end
PE2
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 6/11
7/26/2021 MPLS VPN Extranet Route Leaking
hostname PE2
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
!
ip vrf BLUE
rd 2:2
ip vrf RED
rd 1:1
ip cef
interface Loopback0
interface GigabitEthernet0/1
mpls ip
interface GigabitEthernet0/2
interface GigabitEthernet0/3
bgp log-neighbor-changes
address-family ipv4
exit-address-family
address-family vpnv4
exit-address-family
redistribute ospf 2
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 7/11
7/26/2021 MPLS VPN Extranet Route Leaking
exit-address-family
!
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
address-family ipv4 vrf RED
redistribute ospf 1
exit-address-family
end
R-CE1
hostname RED-CE1
ip cef
interface Loopback0
interface GigabitEthernet0/1
router ospf 1
end
R-CE2
hostname RED-CE2
ip cef
interface Loopback0
interface GigabitEthernet0/1
router ospf 1
end
Right now, we have an intranet VPN so each customer only sees their own routes. Here
are customer RED’s routes:
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 8/11
7/26/2021 MPLS VPN Extranet Route Leaking
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
1.0.0.0/32 is subnetted, 1 subnets
If I want to let RED-CE1 and BLUE-CE2 talk with each other, I’ll have to export and import
some routes. I’ll use a new route-target (1:2) for this. Let’s do this step-by-step…first, let’s
export the routes from VRF RED on PE1:
Learn any CCNA, CCNP and CCIE R&S Topic. Explained As Simple As Possible.
Try for Just $1. The Best Dollar You’ve Ever Spent on Your Cisco Career!
Full Access to our 731 Lessons. More Lessons Added Every Week!
Content created by Rene Molenaar (CCIE #41726)
No Questions Asked!
« Previous Lesson
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 9/11
7/26/2021 MPLS VPN Extranet Route Leaking
Forum Replies Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
Zaman.rubd
Hi Rene,
If I want to Communicate RED-CE1 to BLUE-CE1 and RED-CE2 to BLUE-CE2 then have to configure like the way you described in your lesson
https://networklessons.com/cisco/ccie-routing-switching-written/vrf-lite-route-leaking/ . Right ???
Br//zaman
ccnp.manami
It helps.
ccnp.manami
Hi Rene,
https://cdn-forum.networklessons.com/uploads/default/original/2X/f/f461d09029207462e305f35d88567c5a58a72669.png
Scope of Work,
PART1
======
PART2
======
===============================
lagapides
Hello Manami
https://cdn-forum.networklessons.com/letter_avatar_proxy/v4/letter/c/c89c15/40.png
ccnp.manami:
what is MP-iBGP? Is this similar to normal BGP Route Reflector setup? If not where is that differ?
Regular BGP supports IPv4 unicast prefixes. MP-BGP is multi-protocol BGP, and it is an implementation of BGP that supports multiple protocols such as
IPv4 unicast, IPv4 multicast, IPv6 unicast, and IPv6 multicast.
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 10/11
7/26/2021 MPLS VPN Extranet Route Leaking
It is also used extensively with MPLS VPN in order to be able to share information from VRFs and VPNv4 routes. MP-BGP in simple terms inc
Get Full Access to our 731 Cisco Lessons Now Start $1 Trial
... Continue reading in our forum
ccnp.manami
18 more replies! Ask a question or join the discussion by visiting our Community Forum
https://networklessons.com/mpls/mpls-vpn-extranet-route-leaking 11/11