I'm studyng for MPLS exam and I wanted to create a small lab to recreate a scenario with overlapping MPLS-VPN to make some practice.
I created the following physical topology:
ACentral-\ $$$$$$$ /---BCentral
SiteA1---/ $$$$$$$ \---SiteB1
The traffic flow should be the following:
SiteA1---\ $$$$$$$ /----SiteB1
$$ | $$ACentral--BCentral$$ | $$
SiteA2---/ $$$$$$$ \----SiteB2
-Each customer spoke site cannot communicate directly with the other customers sites.
-There are no restrictions for the intranet traffic.
To accomplish those requirements, I created these VRFs on Pe1 (configuration on Pe2 is specular):
ip vrf A
route-target export 1:1
route-target import 1:1
ip vrf AC !ip vrf BC (on Pe2)
rd 1:123 ! rd 2:123 (on Pe2)
route-target export 1:1 ! 2:2 on Pe2
route-target export 3:100 ! same on Pe2
route-target import 1:1 ! 2:2 on Pe2
route-target import 3:100 ! same on Pe2
ip vrf B
route-target export 2:2
route-target import 2:2
I expected that both PEs were able to reach every network of the other customer but probably something is missing.
The problem is that BC's VRF on Pe2, exports routes learned from VRF B, using RT 2:2 only, without RT 3:100 and obviously VRF AC(on Pe1) does not import these routes and it doesn't have a reachability to B1 site.
The same thing happens on Pe1, where VRF BC does not have routes for A1 site.
Attached you can find the configuration of all P-Pe-Ce and some verification command
Hope to receive your comments.
Thanks in advance.
IOS on all routers: c2600-telco-mz.123-26