CCIE SP v3.0 Sample Lab Part - 4 of 7
CCIE SP v3.0 Sample Lab Part - 4 of 7
0
Sample Lab
Part 4/7
G0/2/0/1.69 VLAN 69
.69.9/24
VLAN 59
E0/0 E1/0 G0/2/0/1.29 G0/2/0/1.59 E0/0
E0/0
R14 .142.14/24 142.1/24
.29.2/24 VLAN 29 .29.9/24 .59.9/24 .59.5/24
R2
R9 R5
ABC RIP V2 EIGRP ABC
E0/2
Site 1 E0/1 .27.2/24 G0/2/0/1.79 Site 4
.28.2/24 .79.9/24
G0/2/0/1 G0/3
Trunk
E0/0 VLAN 28
.135.15/24 Backbone Carrier SP VLAN 79 Sw2
R15
AS 2 VLAN 98
VLAN 158 E0/2
ISIS or OSPF .98.2
.27.7/24
G0/2/0/2.158 G0/2/0/2.28
.28.8/24 E0/1
.79.7/24 S2/0
G0/2/0/2.78 E0/0
.78.8/24 DLCI 107
.78.7/24
Sw3 R8 R7
.178.11
R11
G0/2 G0/2/0/2 VLAN 78 S2/0
VLAN 98 Trunk
.98.3 DLCI 701
VLAN 178 G0/2.38 E1/0
.178.3
Customer Carrier SP .38.8/24 .17.7/24 Customer Carrier SP
ABC Site 2 VLAN 38
AS 123 BGP OSPF ABC Site 3
E1/0 AS 123
E1/0 .17.1/24
.38.3/24 E1/3 E1/3
E1/3 E1/3
.1.1/24 .1.18/24
.3.16/24 .3.3/24
R16 R3 R1 R18
ISIS OSPF
QAZ QAZ
Site 1 Site 2
SP Sample Lab – Addressing Scheme
Backbone Carrier SP network Prefix: 2.2.0.0/24, 2002:2:2::/64
Backbone Carrier SP router Loopback0: 2.2.0.Z/32, 2002:2:2::Z/128
Customer Carrier SP/VPN network Prefix: 172.2.0.0/24, 2002:172:2::/64
Customer Carrier SP/VPN router Loopback0: 172.2.0.Z/32, 2002:172:2::Z/128
End Customer VPN network Prefix: 192.2.0.0/24
End Customer VPN router Loopback0: 192.2.0.Z/32
L2 VPN Customer network Prefix: 172.2.0.0/24
L2 VPN Customer router Loopback0: 172.2.0.Z/32
“Z” is router number, for example “Z” value for R12 is “12”
SP Sample Lab – Setup
Hardware
Two XR-12404 with two GigabitEthernet interfaces or equivalent
Thirteen Cisco 7200 series routers with Ethernet interfaces or equivalent
Three Cisco 3560G series or equivalent
Software Operating System
XR12000-iosxr-k9-3.9.1.tar
c7200-spservices-mz.122-33.SRE2.bin
c3560-advipservicesk9-mz.122-46.SE.bin
SP Sample Lab Questions
Question, Configuration and Verification
1 IS-IS IPv4/IPv6
2 OSPF IPv4/IPv6
4 MPLS LDP
5 MPLS TE
6 MPLS TE FRR
9 CSC
11 Multicast VPN
12 AToM
13 VPLS
14 L2TPv3
CSC Building Blocks
Backbone
Customer Service Provider Customer
Service Provider Service Provider
CSC-PE1 CSC-PE2 RR2
PE1 CSC-RR1 PE4
RR1 MPLS
MPLS CSC-CE1
MPLS CSC-CE2
PE3
PE2 Backbone
CE1 CE2
VPN Customer VPN Customer
E0/0 G0/2/0/1.29
.29.2/24 .29.9/24
R2 R9
E0/2
E0/1 .27.2/24 G0/2/0/1.79
.28.2/24 .79.9/24
Backbone Provider
AS 2 E0/2
G0/2/0/2.28 .27.7/24
.28.8/24 Ei0/1
E0/0 .79.7/24
G0/2/0/2.78
.78.7/24
.78.8/24
R8 R7
Gi0/2.38 E1/0
Carrier SP Carrier SP
.38.8/24 .17.7/24
ABC Site 2 ABC Site 3
AS 123 BGP OSPF AS 123
QAZ E1/0
Site 1 E1/0 .17.1/24 QAZ
.38.3/24 E1/3 E1/3
E1/3 E1/3 Site 2
.1.1/24 .1.18/24
.3.16/24 .3.3/24
R16 R18
R3 R1
ISIS OSPF
CSC - Question
R2, R7, R8 and R9 form Backbone Provider at AS 2. R6 is another
Backbone Provider at AS 1002
Configure EBGPv4+labels on R8 and R3 at ABC site 2
Configure IGP+LDP on R7 and R1 at ABC site 3
Configure R1 and R3 to establish IBGP VPNv4 to distribute VRF QAZ
VPN information
Ensure R16 and R18 can ping each other
R6 configuration R8 configuration
interface Ethernet1/0 router bgp 2
vrf forwarding ABC vrf ABC
ip address 172.2.126.6 255.255.255.0 rd 2:2
mpls ip address-family ipv4 unicast
! allocate-label all
!
R7 configuration !
neighbor 172.2.38.3
interface Ethernet1/0 remote-as 123
vrf forwarding ABC address-family ipv4 labeled-unicast
ip address 172.2.17.7 255.255.255.0 route-policy default_policy_pass_all in
mpls ip route-policy default_policy_pass_all out
! as-override
send-extended-community-ebgp
!
!
CSC Configuration (Cont.)
router bgp 123
R3 configuration neighbor 172.2.0.1 remote-as 123
neighbor 172.2.0.1 update-source Loopback0
vrf definition QAZ neighbor 172.2.0.12 remote-as 612
rd 123:123 neighbor 172.2.0.12 ebgp-multihop 255
! neighbor 172.2.0.12 update-source Loopback0
address-family ipv4 neighbor 172.2.38.8 remote-as 2
route-target export 123:123 !
route-target import 123:123 address-family ipv4
exit-address-family network 172.2.0.3 mask 255.255.255.255
! neighbor 172.2.38.8 activate
interface Ethernet1/0 neighbor 172.2.38.8 send-community both
ip address 172.2.38.3 255.255.255.0 neighbor 172.2.38.8 send-label
mpls bgp forwarding exit-address-family
! !
interface Ethernet1/3 address-family vpnv4
vrf forwarding QAZ neighbor 172.2.0.1 activate
ip address 192.2.3.3 255.255.255.0 neighbor 172.2.0.1 send-community both
ip router isis neighbor 172.2.0.12 activate
! neighbor 172.2.0.12 send-community both
router isis neighbor 172.2.0.12 next-hop-unchanged
vrf QAZ exit-address-family
net 47.0192.0000.0000.0003.00 !
metric-style wide address-family ipv4 vrf QAZ
redistribute bgp 123 redistribute isis level-1-2 metric 10
exit-address-family
CSC Configuration (Cont.)
R1 configuration
vrf definition QAZ router bgp 123
rd 123:123 neighbor 172.2.0.3 remote-as 123
! neighbor 172.2.0.3 update-source Loopback0
address-family ipv4 !
route-target export 123:123 address-family vpnv4
route-target import 123:123 neighbor 172.2.0.3 activate
exit-address-family neighbor 172.2.0.3 send-community extended
! exit-address-family
interface Ethernet1/0 !
ip address 172.2.17.1 255.255.255.0 address-family ipv4 vrf QAZ
mpls ip no synchronization
! redistribute ospf 18 vrf QAZ
interface Ethernet1/3 exit-address-family
vrf forwarding QAZ !
ip address 192.2.1.1 255.255.255.0
!
router ospf 18 vrf QAZ
redistribute bgp 123 subnets
network 192.2.1.0 0.0.0.255 area 0
!
CSC Configuration (Cont.)
R12 configuration
vrf definition QAZ router bgp 612
rd 12:12 neighbor 172.2.0.3 remote-as 123
! neighbor 172.2.0.3 ebgp-multihop 255
address-family ipv4 neighbor 172.2.0.3 update-source Loopback0
route-target export 123:123 !
route-target import 123:123 address-family vpnv4
! neighbor 172.2.0.3 activate
interface Ethernet1/0 neighbor 172.2.0.3 send-community both
ip address 172.2.126.12 255.255.255.0 exit-address-family
mpls ip !
! address-family ipv4 vrf QAZ
interface Ethernet1/3 no synchronization
vrf forwarding QAZ redistribute ospf 100 vrf QAZ metric 20
ip address 192.2.12.12 255.255.255.0 exit-address-family
! !
router ospf 100 vrf QAZ
redistribute bgp 612 metric 10 subnets
network 192.2.12.0 0.0.0.255 area 0
!
CSC Configuration (Cont.)
R16 configuration R17 configuration
interface Loopback0 interface Loopback0
ip address 192.2.0.16 255.255.255.255 ip address 192.2.0.18 255.255.255.255
ip router isis !
! interface Ethernet1/3
interface Ethernet1/3 ip address 192.2.1.18 255.255.255.0
ip address 192.2.3.16 255.255.255.0 !
ip router isis router ospf 18
! network 192.2.0.18 0.0.0.0 area 0
router isis network 192.2.1.0 0.0.0.255 area 0
net 47.0192.0000.0000.0016.00
metric-style wide
R18 configuration
interface Loopback0
ip address 192.2.0.17 255.255.255.255
!
interface Ethernet1/3
ip address 192.2.12.17 255.255.255.0
!
router ospf 100
network 192.2.0.17 0.0.0.0 area 0
network 192.2.12.0 0.0.0.255 area 0
CSC VPNv4 Session
R3 VPNv4 neighbor
R3#show ip bgp vpnv4 all summary
BGP router identifier 172.2.0.3, local AS number 123
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
172.2.0.1 4 123 2950 2959 85 0 0 1d20h 2
172.2.0.12 4 612 2769 2771 85 0 0 1d17h 2
R1 VPNv4 neighbor
R1#show ip bgp vpnv4 all summary
BGP router identifier 172.2.0.1, local AS number 123
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
172.2.0.3 4 123 2960 2951 105 0 0 1d20h 5
R1 VPNv4 table
R1#show ip bgp vpnv4 vrf QAZ
Network Next Hop Metric LocPrf Weight Path
Route Distinguisher: 123:123 (default for vrf QAZ)
*>i192.2.0.16/32 172.2.0.3 10 100 0 ?
*>i192.2.0.17/32 172.2.0.12 20 100 0 612 ?
*> 192.2.0.18/32 192.2.1.18 11 32768 ?
*> 192.2.1.0 0.0.0.0 0 32768 ?
*>i192.2.3.0 172.2.0.3 0 100 0 ?
*>i192.2.12.0 172.2.0.12 0 100 0 612 ?
CSC VPNv4 table (Cont.)
R12 VPNv4 table
R12#show ip bgp vpnv4 vrf QAZ
Network Next Hop Metric LocPrf Weight Path
Route Distinguisher: 12:12 (default for vrf QAZ)
*> 192.2.0.16/32 172.2.0.3 10 0 123 ?
*> 192.2.0.17/32 192.2.12.17 20 32768 ?
*> 192.2.0.18/32 172.2.0.1 0 123 ?
*> 192.2.1.0 172.2.0.1 0 123 ?
*> 192.2.3.0 172.2.0.3 0 0 123 ?
*> 192.2.12.0 0.0.0.0 0 32768 ?
CSC VPN customer routes
R16 , R18 and R17 route