Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
923
Views
0
Helpful
4
Replies

MPLS VPN hub and spoke requirements

dtangent
Level 1
Level 1

‎08-17-2005 05:46 PM

I have gone through a couple of white papers on deploying hub and spoke over MPLS VPN. While the use of two different RTs make sense to me, I am not sure why you would need two different (physical or logical) interfaces to the hub CE.

I have heard it's because of split horizon/whether or not you propagate a default route/automatic route filtering on the VRF. Can anyone elaborate on what the logic behind this is? More specifically, what scenario would itapply to (all spokes connected to different PE... etc etc). Thanks.

Labels:
0 Helpful
4 Replies 4

mchin345
Level 6
Level 6

‎08-23-2005 10:12 AM

With a hub-and-spoke topology, where PEs act as hubs and simple switches terminate each spoke, it is possible to scale both the control and data planes.

0 Helpful

dtangent
Level 1
Level 1
In response to mchin345

‎08-23-2005 10:50 PM

You might have misunderstood my question.

What I wanted to know was the reason why two logical (or may be physical) circuits are needed in an MPLS hub and spoke situation. I have listed a couple of reasons that I can think of, but I have not been able to get any definitive answer as to why the two circuits (and VRFs for that matter).

0 Helpful

jnwamu
Level 1
Level 1

‎09-02-2005 08:34 AM

Generally for hub and spoke topologies, the PE needs to act as the hub while the CEs are the spokes defaulting back to the central PE. There are a nos of reasons why this may be so. if you tell us a bit more detail, it may be obvious why this is so. What protocol and network are you running? OSPF? with a hub and spoke i would imagine its a frame relay network, does it have a subinterface, point to point or point to multipoint interface? or is it a non-broadcast network where for every interface, the LSU packet must be replicated for each pvc configured. Tell me a bit more please

0 Helpful

f.kok
Level 1
Level 1

‎09-04-2005 12:07 PM

You are correct about building the the hub and spoke with different RT's. All the remote locations export with Rt 1:1 and import Rt 1:2 and the central location imports RT 1:1 and export RT 1:2. But now you will get in to a problem when two CE’s are on the same PE. For these CE’s it is possible to communicate with each other before going to the central location. This is because they are in the same VRF.

You can use different RD per access line, but this can be hard in your administration and can give some long troubleshooting hours.

I think that what you mean is that there is an upstream connection on one interface and a down stream connection on the other interface. Don’t ask me how to do this

It is correct that VPN us a kind of split horizon one the import a router they do not export it again. If you want remote locations to be able to reach each other you need to have a default route pointing to the central location. All routing will no go via the default route to the central location. The central location takes care that the remote locations can reach each other. This is not done on the PE.

But Cisco has a nice solution for your problem; this is called half-duplex VRF. It does what you want (as far as I understand your question)

regards

Fred

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents