Posts tagged CCIP

Basic AToM Lab

Oct 14th

Posted by Colby in Labs

No comments

In this article we’ll go over a simple AToM (Any Transport over MPLS) configuration. I’ve been studying MPLS a lot lately and this is my first time playing with AToM and it’s very cool stuff. This article could be useful for anyone studying MPLS and/or CCIP/CCIE topics, or just someone who is interested in learning new things. I will be including my Dynagen/GNS3 .net file with this. Here is our topology:

AToM Topology

Let’s go through the config:

P Router:

hostname P
!
mpls label protocol ldp
mpls ldp router-id lo0 force
!
interface Loopback0
 ip address 1.1.1.1 255.255.255.255
!
interface FastEthernet1/0
 ip address 10.1.1.1 255.255.255.252
 duplex auto
 speed auto
 mpls ip
!
interface FastEthernet1/1
 ip address 10.1.2.1 255.255.255.252
 duplex auto
 speed auto
 mpls ip
!
router ospf 100
 router-id 1.1.1.1
 log-adjacency-changes
 network 1.1.1.1 0.0.0.0 area 0
 network 10.1.1.0 0.0.0.3 area 0
 network 10.1.2.0 0.0.0.3 area 0

Here we’ve set the hostname, configured the MPLS label protocol (note: LDP is the default on new IOSes), we set a loopback interface that will be our RID for MPLS and OSPF. We also configured our connections to the PE routers and brought up OSPF as our IGP.

PE1 Router:

hostname PE1
!
mpls label protocol ldp
mpls ldp router-id lo0 force
!
pseudowire-class one
 encapsulation mpls
!
interface Loopback0
 ip address 2.2.2.2 255.255.255.255
!
interface FastEthernet1/0
 ip address 10.1.1.2 255.255.255.252
 duplex auto
 speed auto
 mpls ip
!
interface Serial2/0
 no ip address
 xconnect 3.3.3.3 100 pw-class one
!
router ospf 100
 router-id 2.2.2.2
 log-adjacency-changes
 network 2.2.2.2 0.0.0.0 area 0
 network 10.1.1.0 0.0.0.3 area 0

PE2 Router:

hostname PE2
!
mpls label protocol ldp
mpls ldp router-id lo0 force
!
pseudowire-class one
 encapsulation mpls
!
interface Loopback0
 ip address 3.3.3.3 255.255.255.255
!
interface FastEthernet1/0
 ip address 10.1.2.2 255.255.255.252
 duplex auto
 speed auto
 mpls ip
!
interface Serial2/0
 no ip address
 xconnect 2.2.2.2 100 pw-class one
!
router ospf 100
 router-id 3.3.3.3
 log-adjacency-changes
 network 2.2.2.2 0.0.0.0 area 0
 network 10.1.2.0 0.0.0.3 area 0
Read more...

, , , , , , , , , , ,

Great MPLS and BGP Lab

Oct 12th

Posted by Colby in Labs

1 comment

I got this over at Networking-Forum.com, a member named Fred created it, he was even kind enough to provide the Visio diagram, IP scheme spreadsheet and, most importantly, the .net file for Dynagen/GNS3. I spent a lot of my Saturday working on this beast. I thought I should share it here as it is great practice for MPLS VPNs and BGP along with some OSPF, NAT, IPSEC and GRE exposure.


(click image for fullsize)

Internet
* The two Internet routers should serve as transit AS’s. No other routers should permit transit traffic.
* Internet sites (modeled by loopbacks) should be accessible by all lan IP’s.

Read more...

, , , , , , , , , , , ,

QoS Tutorial

Jul 24th

Posted by Colby in Tutorials

3 comments

In this article we will be using the Modular Quality of Service CLI (MQC). This article will be useful for CCNP (ONT) or CCIP (QoS) studies.With MQC you first define traffic classes, then you build a policy map in which the actions are applied to your classes, finally you apply the policy to an interface. This is a 20/2 cable connection, before implementing QoS my P2P traffic was really beating up on all my other traffic.

First we’ll go over class maps. Class maps are used to match traffic. Here are my class maps:

class-map match-any NNTP
 description This is the Newsgroups traffic.
 match access-group name MATCH_NNTP
 match protocol nntp
class-map match-any BT
 description This is the Bittorrent traffic.
 match protocol bittorrent
 match access-group name BT_PORT
class-map match-any PRIORITY
 description This is all the traffic that gets priority.
 match protocol http
 match protocol dns
 match protocol secure-http
 match protocol ssh
 match access-group name MATCH_RDP

Class map NNTP is matching the port for newsgroups traffic using ACL MATCH_NNTP:

ip access-list extended MATCH_NNTP
 permit tcp any eq nntp any
 deny   ip any any

Class map BT is matching my bitttorrent traffic using NBAR and the port specified in ACL BT_PORT:

ip access-list extended BT_PORT
 permit tcp any eq 32547 any
 deny   ip any any

Class map PRIORITY is matching a lot of traffic, most of it is using Network Based Application Recognition (NBAR) (match protocol ______), we’re also using MATCH_RDP for Microsoft remote desktop traffic:

Read more...

, , , , , ,
«12345