Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1259
Views
6
Helpful
8
Replies

Extend your MPLS Core to CPE

Go to solution
Jerems
Spotlight
Spotlight

‎03-10-2023 02:59 AM

Hi dear community,

As a SP, would you extend your MPLS network to CPE ? Why or Why not ?

Thanks in advance for your kind comments,

Jerems

 

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
smailmilak
Level 4
Level 4
In response to Jerems

‎03-13-2023 01:27 AM

Hi, 

 

the CPE should not have the full IGP RT because of scalability reasons. You have multiple options for that.

1. OSPF Area or ISIS L1 on the CPE so that the CPE gets the def. route only and you leak the /32 only to the CPE.

2. Another IGP between the PE and CPE, no redistribution of the Core IGP and PE-CPE IGP. Use BGP LU for label distribution and end to end LSP.

View solution in original post

8 Replies 8

Go to solution
MHM Cisco World
VIP
VIP

‎03-10-2023 03:07 AM

if CE have multi VRF, then PE must config mutli VRF for each VRF in CE, instead you can only extended MPLS to CE and CE will config with multi VRF and PE will config with global or only one VRF.  

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎03-10-2023 03:41 AM

Its all depends on use case - is the CPE owned by provider ?

Most use case i follow ispace - they done some extensive work on SP and Carrier environment :

https://blog.ipspace.net/2013/01/extending-mplsvpn-to-customer-sites.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
Jerems
Spotlight
Spotlight
In response to balaji.bandi

‎03-10-2023 06:17 AM

Hi BB,

I read this article this morning and to be honest it wasn't able to convince me. By the way, at the moment the cpe is owned by the SP, it peers with the route-reflectors and only hosts the customer dedicated vrf, meaning that it is not mutualized across multiple customers (which is obvious). The PE has only GRT and a mgmt VRF.

Regards,

Jerems

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to Jerems

‎03-10-2023 06:37 AM

Did you run MPLS lab before, 
if yes then try following 
Case1 
CE-VRF"red"-PE
Case2
VRF1/VRF2/VRF3-CE-PE <<- here how you will config PE that connect to CE that have multi VRF ??
your lab is answer for your Q.

0 Helpful

Go to solution
Jerems
Spotlight
Spotlight
In response to MHM Cisco World

‎03-10-2023 06:52 AM - edited ‎03-10-2023 06:53 AM

If so i would imagine that as aoon as you extend the MPLS core onto a device which is located at the customer premices you would :

  • Make sure that nobody else than the SP can access this router.
  • You make sure that the router supports the presence of all th IGP routes on which relies MPLS to work properly (possible scalability/performance issues).
  • Meaning that the CE - PE link falls into the PE GRT
  • Let me know if you see some more possible concerns

Best Regards,

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to Jerems

‎03-11-2023 02:28 AM

your point is correct, special the security, 
CE-PE run LDP and routing, the data traffic must path labeled with MPLS, 
but sure LDP and routing must be secure. 
I will update you about secure config between CE-PE for extended MPLS case. 
thanks  

Go to solution
smailmilak
Level 4
Level 4
In response to Jerems

‎03-13-2023 01:27 AM

Hi, 

 

the CPE should not have the full IGP RT because of scalability reasons. You have multiple options for that.

1. OSPF Area or ISIS L1 on the CPE so that the CPE gets the def. route only and you leak the /32 only to the CPE.

2. Another IGP between the PE and CPE, no redistribution of the Core IGP and PE-CPE IGP. Use BGP LU for label distribution and end to end LSP.

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to Jerems

‎03-11-2023 02:21 AM

Sure if it the Owns by SP, there is no reason I see holding anything and CPE can handle all requirements. 

even in some use cases, SP needs to install in other co-location. so that is possible as you mentioned with additional notes in your recent reply.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Customers Also Viewed These Support Documents