I wanted to have some feedback on deciding how to create a PRIVATE mpls VPN for our enterprise client with more than 1000s branches.
Initially We wanted to have application based separation.Our applications are both layer 2 and layer3 based and we also want to implement VOIP and Video conferencing for our enterprise in future.
Now the topology is very simple, multiple branches connect redundantly to our distribution routers which connect redundantly to the core routers ( a typical theoretical scenario)
The links for this above mentioned connectivity are purchased from local SP which might be layer 2 links or layer3 links depending on the availability.
The question is that where should the PE routers reside (The Distribution or the Branch routers?).
Since the branch router will be connected redundantly to the distribution, how will the distribution router able to classify the different branch applications (in MPLS VPNs) from the branch routers--if we implement PE at the Distribution.
This means that do we have to make our branch routers PEs and distribution routers P routers? Or any other method like VRF-lite would help?
Also I wanted to implement GET-VPN and DMVPN in this network to provide secure branch to branch and low latency communication (VOIP).
I hope i am clear.