Task:
- Configure OSPF Area 0 Backbone MPLS,Make sure int loopback0 advertised into OSPF
2. Configre MPLS LDP , Loopback0 should be become LDP ID
3. Configre IBGP AS 500 backbone MPLS, R5 and R3 are Route-Reflector-Client (use loopback0 peering address)
4. Configure MP-BGP (VPNv4) AS 500, R5 and R3 are Route-Reflector-Client
5. Configure VPN ABC , R1-R9 and R7-R12
RD 500:100
RT import 500:100
RT export 500:100
6. Configure VPN XYZ , R5-R10 , R3-R13 , R6-R11 , R7-R11
RD 500:200
RT import 500:200
RT export 500:200
7. Configure on R7, VPN XYZ always choose R6 as exit point
Lab:
1. Konfigurasikan OSPF Area 0 Backbone MPLS, Pastikan interface loopback0 di advertised ke dalam OSPF
R1
css<br /> router ospf 10<br /> network 10.10.12.0 0.0.0.255 area 0<br /> network 10.10.14.0 0.0.0.255 area 0<br /> network 10.10.0.1 0.0.0.0 area 0<br />
R2
css<br /> router ospf 10<br /> network 10.10.12.0 0.0.0.255 area 0<br /> network 10.10.23.0 0.0.0.255 area 0<br /> network 10.10.0.2 0.0.0.0 area 0<br />
R3
css<br /> router ospf 10<br /> network 10.10.23.0 0.0.0.255 area 0<br /> network 10.10.38.0 0.0.0.255 area 0<br /> network 10.10.35.0 0.0.0.255 area 0<br /> network 10.10.0.3 0.0.0.0 area 0<br />
R4
css<br /> router ospf 10<br /> network 10.10.14.0 0.0.0.255 area 0<br /> network 10.10.45.0 0.0.0.255 area 0<br /> network 10.10.0.4 0.0.0.0 area 0<br />
R5
css<br /> router ospf 10<br /> network 10.10.45.0 0.0.0.255 area 0<br /> network 10.10.35.0 0.0.0.255 area 0<br /> network 10.10.56.0 0.0.0.255 area 0<br /> network 10.10.0.5 0.0.0.0 area 0<br />
R6
css<br /> router ospf 10<br /> network 10.10.56.0 0.0.0.255 area 0<br /> network 10.10.67.0 0.0.0.255 area 0<br /> network 10.10.0.6 0.0.0.0 area 0<br />
R7
css<br /> router ospf 10<br /> network 10.10.67.0 0.0.0.255 area 0<br /> network 10.10.78.0 0.0.0.255 area 0<br /> network 10.10.0.7 0.0.0.0 area 0<br />
R8
css<br /> router ospf 10<br /> network 10.10.78.0 0.0.0.255 area 0<br /> network 10.10.38.0 0.0.0.255 area 0<br /> network 10.10.0.8 0.0.0.0 area 0<br />
Pastikan masing-masing router Backbone berhasil PING
2. Konfigurasikan MPLS LDP, LDP ID adalah Loopback0
Konfigurasi MPLS LDP R1 sampai R8
“`css
mpls ip
mpls label protocol ldp
mpls ldp router-id lo0
interface e0/0<br /> desc connected to backbone AS 500<br /> mpls ip<br /> int e0/1<br /> desc connected to backbone AS 500<br /> mpls ip<br /> “`
3. Konfiguras iBGP AS 500 backbone MPLS, R5 dan R3 adalah Route Reflector (gunakan loopback0 untuk peeringnya)
Konfigurasi iBGP R3 (Route reflector)
css<br /> router bgp 500<br /> neigh 10.10.0.1 remote-as 500<br /> neigh 10.10.0.1 update-source lo0<br /> neigh 10.10.0.1 route-reflector-client<br /> neigh 10.10.0.2 remote-as 500<br /> neigh 10.10.0.2 update-source lo0<br /> neigh 10.10.0.2 route-reflector-client<br /> neigh 10.10.0.4 remote-as 500<br /> neigh 10.10.0.4 update-source lo0<br /> neigh 10.10.0.4 route-reflector-client<br /> neigh 10.10.0.5 remote-as 500<br /> neigh 10.10.0.5 update-source lo0<br /> neigh 10.10.0.5 route-reflector-client<br /> neigh 10.10.0.6 remote-as 500<br /> neigh 10.10.0.6 update-source lo0<br /> neigh 10.10.0.6 route-reflector-client<br /> neigh 10.10.0.7 remote-as 500<br /> neigh 10.10.0.7 update-source lo0<br /> neigh 10.10.0.7 route-reflector-client<br />
Konfigurasi iBGP R5 (Route reflector)
css<br /> router bgp 500<br /> neigh 10.10.0.1 remote-as 500<br /> neigh 10.10.0.1 update-source lo0<br /> neigh 10.10.0.1 route-reflector-client<br /> neigh 10.10.0.2 remote-as 500<br /> neigh 10.10.0.2 update-source lo0<br /> neigh 10.10.0.2 route-reflector-client<br /> neigh 10.10.0.4 remote-as 500<br /> neigh 10.10.0.4 update-source lo0<br /> neigh 10.10.0.4 route-reflector-client<br /> neigh 10.10.0.3 remote-as 500<br /> neigh 10.10.0.3 update-source lo0<br /> neigh 10.10.0.3 route-reflector-client<br /> neigh 10.10.0.6 remote-as 500<br /> neigh 10.10.0.6 update-source lo0<br /> neigh 10.10.0.6 route-reflector-client<br /> neigh 10.10.0.7 remote-as 500<br /> neigh 10.10.0.7 update-source lo0<br /> neigh 10.10.0.7 route-reflector-client<br />
Konfigurasi iBGP R1 sampai R8 (kecuali R3 & R5)
css<br /> router bgp 500<br /> neigh 10.10.0.3 remote-as 500<br /> neigh 10.10.0.3 update-source lo0<br /> neigh 10.10.0.5 remote-as 500<br /> neigh 10.10.0.5 update-source lo0<br />
4. Konfigurasikan MP-BGP (VPNv4) AS 500, R5 and R3 adalah Route Reflector
Konfigurasi MP-BGP R3
css<br /> router bgp 500<br /> address-family vpnv4<br /> neighbor 10.10.0.1 activate<br /> neighbor 10.10.0.2 activate<br /> neighbor 10.10.0.4 activate<br /> neighbor 10.10.0.5 activate<br /> neighbor 10.10.0.6 activate<br /> neighbor 10.10.0.7 activate<br /> neighbor 10.10.0.1 route-reflector-client<br /> neighbor 10.10.0.2 route-reflector-client<br /> neighbor 10.10.0.4 route-reflector-client<br /> neighbor 10.10.0.5 route-reflector-client<br /> neighbor 10.10.0.6 route-reflector-client<br /> neighbor 10.10.0.7 route-reflector-client<br />
Konfigurasi MP-BGP R5
css<br /> router bgp 500<br /> address-family vpnv4<br /> neighbor 10.10.0.1 activate<br /> neighbor 10.10.0.2 activate<br /> neighbor 10.10.0.4 activate<br /> neighbor 10.10.0.3 activate<br /> neighbor 10.10.0.6 activate<br /> neighbor 10.10.0.7 activate<br /> neighbor 10.10.0.1 route-reflector-client<br /> neighbor 10.10.0.2 route-reflector-client<br /> neighbor 10.10.0.4 route-reflector-client<br /> neighbor 10.10.0.3 route-reflector-client<br /> neighbor 10.10.0.6 route-reflector-client<br /> neighbor 10.10.0.7 route-reflector-client<br />
Konfigurasi MP-BGP R1 sampai R8 (kecuali R3 & R5)
css<br /> router bgp 500<br /> address-family vpnv4<br /> neighbor 10.10.0.3 activate<br /> neighbor 10.10.0.5 activate<br />
5. Konfigurasikan VPN ABC, R1-R9 dan R7-R12, dan pastikan masing-masing customer dapat saling berkomunikasi
RD 500:100
RT import 500:100
RT export 500:100
Konfigurasi vrf R1
css<br /> vrf definition ABC<br /> rd 500:100<br /> address-family ipv4<br /> route-target import 500:100<br /> route-target 500:100<br />
Enable vrf di interface
css<br /> int e0/2<br /> vrf forwarding ABC<br /> ip address 172.10.19.1 255.255.255.0<br />
Redistribute EIGRP dengan BGP
css<br /> router eigrp 100<br /> address-family ipv4 vrf ABC autonomous-system 100<br /> redistribute bgp 500 metric 1 1 1 1 1<br /> network 172.10.19.0 0.0.0.255<br /> no auto-summary<br />
Redistribute BGP dengan EIGRP
css<br /> router bgp 500<br /> address-family ipv4 vrf ABC<br /> redistribute eigrp 100<br />
Konfigurasi EIGRP R9
css<br /> router eigrp 100<br /> network 172.10.0.9 0.0.0.0<br /> network 172.10.19.0 0.0.0.255<br /> no auto-summary<br />
Konfigurasi vrf R7
css<br /> vrf definition ABC<br /> rd 500:100<br /> address-family ipv4<br /> route-target import 500:100<br /> route-target 500:100<br />
Enable vrf di interface
css<br /> int e0/2<br /> vrf forwarding ABC<br /> ip address 172.10.127.7 255.255.255.0<br />
Redistribute ospf dengan bgp
css<br /> router ospf 100 vrf ABC<br /> network 172.10.127.0 0.0.0.255 area 0<br /> redistribute bgp 500 subnets<br />
Redistribute bgp dengan ospf
css<br /> router bgp 500<br /> address-family ipv4 vrf ABC<br /> redistribute ospf 100 vrf ABC<br />
Konfigurasi OSPF di R12
css<br /> router ospf 10<br /> network 172.10.127.0 0.0.0.255 area 0<br /> network 172.10.127.0 0.0.0.255 area 0<br />
6. Konfigurasikan VPN XYZ, R5-R10, R3-R13, R6-R11, R7-R11
RD 500:200
RT import 500:200
RT export 500:200
####R5-10###
Konfigurasi vrf di R5
css<br /> R5<br /> vrf definition XYZ<br /> rd 500:200<br /> address-family ipv4<br /> route-target import 500:200<br /> route-target 500:200<br />
Enable vrf di interface
css<br /> int e0/2<br /> vrf forwarding XYZ<br /> ip address 172.10.105.5 255.255.255.0<br />
Konfigurasi static routing untuk vrf
css<br /> ip route vrf XYZ 172.10.0.10 255.255.255.255 172.10.105.10<br />
Redistribute bgp dengan static routing
css<br /> router bgp 500<br /> address-family ipv4 vrf XYZ<br /> redistribute static<br />
Konfigurasi static routing R10
css<br /> ip route 0.0.0.0 0.0.0.0 172.10.105.5<br />
###R3-R13###
Konfigurasi vrf R3
css<br /> vrf definition XYZ<br /> rd 500:200<br /> address-family ipv4<br /> route-target import 500:200<br /> route-target 500:200<br />
Enable vrf di interface
css<br /> interface e0/2<br /> vrf forwarding XYZ<br /> ip address 172.10.133.3 255.255.255.0<br />
Redistribute rip dengan bgp
css<br /> router rip<br /> address-family ipv4 vrf XYZ<br /> version 2<br /> no auto-summary<br /> network 172.10.133.0<br /> redistribute bgp 500 metric 1<br />
Redistribute bgp dengan rip
css<br /> router bgp 500<br /> address-family ipv4 vrf XYZ<br /> redistribute rip<br />
Konfigurasi RIP di R13
css<br /> router rip<br /> version 2<br /> no auto-summary<br /> network 172.10.133.0<br /> network 172.10.0.13<br />
###R6-R11###
Konfigurasi vrf di R6
css<br /> vrf definition XYZ<br /> rd 500:200<br /> address-family ipv4<br /> route-target import 500:200<br /> route-target 500:200<br />
Enable vrf di interface
css<br /> interface e0/3<br /> vrf forwarding XYZ<br /> ip address 172.10.116.6 255.255.255.0<br />
Konfigurasi eBGP di R6
css<br /> router bgp 500<br /> no bgp default ipv4-unicast<br /> address-family ipv4 vrf XYZ<br /> network 172.10.116.0 mask 255.255.255.0<br /> neighbor 172.10.116.1 remote-as 11<br /> neighbor 172.10.116.1 activate<br />
Konfigurasi eBGP di R11
css<br /> router bgp 11<br /> neigh 172.10.116.6 remote-as 500<br /> neigh 172.10.117.7 remote-as 500<br /> network 172.10.0.11 mask 255.255.255.255<br />
###R7-R11###
Konfigurasi vrf di R7
css<br /> vrf definition XYZ<br /> rd 500:200<br /> address-family ipv4<br /> route-target import 500:200<br /> route-target 500:200<br />
Enable vrf di interface
css<br /> interface e0/3<br /> vrf forwarding XYZ<br /> ip address 172.10.117.7 255.255.255.0<br />
Konfigurasi eBGP di R7
css<br /> router bgp 500<br /> no bgp default ipv4-unicast<br /> address-family ipv4 vrf XYZ<br /> network 172.10.117.0 mask 255.255.255.0<br /> neigh 172.10.117.1 remote-as 11<br /> neigh 172.10.117.1 activate<br />
Konfigurasi eBGP di R11
css<br /> router bgp 11<br /> neigh 172.10.116.6 remote-as 500<br /> neigh 172.10.117.7 remote-as 500<br /> network 172.10.0.11 mask 255.255.255.255<br />
7. Konfigurasi di R6, VPN XYZ untuk exit point menggunakan R7
Default jalur menggunakan R6 sebagai exit-point
R11#traceroute 172.10.0.13
Type escape sequence to abort.
Tracing the route to 172.10.0.13
1 172.10.116.6 [AS 500] 0 msec 4 msec 0 msec
2 10.10.67.7 [MPLS: Labels 18/29 Exp 0] 0 msec 0 msec 4 msec
3 10.10.78.8 [MPLS: Labels 18/29 Exp 0] 0 msec 0 msec 0 msec
4 172.10.133.3 [AS 500] [MPLS: Label 29 Exp 0] 4 msec 0 msec 4 msec
5 172.10.133.13 [AS 500] 0 msec
R11#sh ip bgp
BGP table version is 9, local router ID is 172.10.0.11
Status codes: s suppressed, d damped, h history, * valid, > best, i – internal,
r RIB-failure, S Stale
Origin codes: i – IGP, e – EGP, ? – incomplete
Network Next Hop Metric LocPrf Weight Path
* 172.10.0.10/32 172.10.117.7 0 500 ?
*> 172.10.116.6 0 500 ?
*> 172.10.0.11/32 0.0.0.0 0 32768 i
* 172.10.0.13/32 172.10.117.7 0 500 ?
*> 172.10.116.6 0 500 ?
r 172.10.116.0/24 172.10.117.7 0 500 i
r> 172.10.116.6 0 0 500 i
r 172.10.117.0/24 172.10.117.7 0 0 500 i
r> 172.10.116.6 0 500 i
* 172.10.133.0/24 172.10.117.7 0 500 ?
*> 172.10.116.6 0 500 ?
R11#
Pemilihan jalur BGP menggunakan AS_PATH, Konfigurasi di R6
css<br /> ip prefix-list ethernet3 seq 5 permit 172.10.116.0/24<br /> route-map AS_PREPEND permit 10<br /> match ip address prefix-list ethernet3<br /> set as-path prepend 1 1 1<br /> router bgp 500<br /> address-family ipv4 vrf XYZ<br /> neigh 172.10.116.1 route-map AS_PREPEND out<br />
Hasil setelah pemilihan jalur
R11#traceroute 172.10.0.13
<
p>Type escape sequence to abort.
Tracing the route to 172.10.0.13
1 172.10.117.7 [AS 500] 0 msec 0 msec 4 msec
2 10.10.78.8 [MPLS: Labels 18/29 Exp 0] 0 msec 4 msec 0 msec
3 172.10.133.3 [AS 500] [MPLS: Label 29 Exp 0] 0 msec 0 msec 0 msec
4 172.10.133.13 [AS 500] 4 msec 4 msec *
R11#sh ip bgp
BGP table version is 14, local router ID is 172.10.0.11
Status codes: s suppressed, d damped, h history, * valid, > best, i – internal,
r RIB-failure, S Stale
Origin codes: i – IGP, e – EGP, ? – incomplete
Network Next Hop Metric LocPrf Weight Path
*> 172.10.0.10/32 172.10.117.7 0 500 ?
*> 172.10.0.11/32 0.0.0.0 0 32768 i
*> 172.10.0.13/32 172.10.117.7 0 500 ?
r> 172.10.116.0/24 172.10.117.7 0 500 i
r 172.10.116.6 0 0 500 1 1 1 i
r> 172.10.117.0/24 172.10.117.7 0 0 500 i
*> 172.10.133.0/24 172.10.117.7 0 500 ?
R11#
(noted: tujuan dari penggunaan vrf adalah masing masing client yang menggunakan vrf yang sama bisa saling berkomunikasi)
Catatan Randy 
Mas tolong perbaiki tulisan confignya biar lebih jelas, soalnya code html dan cssnya menghalangi.
Terimakasih mas, webnya sangat membantu sekali.