What's the best way of providing internet access to MPLS VPN customer sites using Overlapping VPN .
That's my Internet gateway is connected as a CE router to MPLS VPN and then I want some customer to given their VPN access + Internet access by using overlapping VPN model . Is there is any technotes available
1. classical internet access is not feasible with me as It includes some cost with me with my telco
2. I created a dedicated vrf for internet . But my scenario is that I have one vrf for customer VPN and another one for internet access . How can I give both internet + VPN access to customer . I have only one logical interface for the customer .
The Problem with this method is that it's not secure .Also in my case my customer is connecting through DSL ( Virtual interface ) and the route-leaking is not working fine with DSL . That's why I want to try with overlapping VPN
I fix my Issue of internet access over MPLS VPN . I use the same design as given in the above attached diagram . I did a cross ethernet cable from internet router to PE-router and created vlan sub-interface for each VPN and routed the internet traffic through this
I have one suggestion, since you have only one logical interface for the customer.
The suggestion is (VRF Selection based on Source address).
Once VRF selection on based On Source configured, a lookup is performed to find the destination of the targeted VRF. and once the targeted VRF found, the lookup is performed on CEF vrf table , and another lookup is performed on the global CEF table.
This is the only way you can differenciate between 2 VRFs within the same logical interface.
Pls have alook at the bellow link for more details:
With XR 4.2.0 the ASR9000 is releasing a new line of hardware models. This amongst others is the RSP440, the next generation RSP with faster switch fabric along with Typhoon based Linecards, the next generation network processor.
The Cisco EPN system incorporates a network architecture designed to consolidate multiples services on a single Multiprotocol Label Switching (MPLS) transport network. This network is designed primarily based on...
Internet security is important with the increasing attacks that are happening every day. Many internet and browsing security solutions exist, but some are not very easy to use or maybe the question is how can I enable them?