Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

L2 and L3 VPN

Hi Friend

Can anyone tell me what is differeance between L2 VPN and L3 VPN. what are advantage and disadvantage between them, Give me some documents for further study.

-V

3 REPLIES
Hall of Fame Super Blue

Re: L2 and L3 VPN

Vinod

Assuming you are talking about MPLS L2 & L3 VPN's the easiest way to think about it is

L2 VPN = think of the MPLS cloud as a L2 switch. Your sites connect into this switch and all sites are using the same IP subnet. So machines at one site communicate with machines at another site using only L2.

L3 VPN = think of the MPLS cloud as a router. Your sites connect to this router and all sites are using different IP subnets. For machines at one site to communicate with machines at another site they have to route via the router.

Attached is a link to the MPLS page which has further links for both L2 and L3 VPNs.

http://www.cisco.com/en/US/products/ps6557/products_ios_technology_home.html

Jon

Bronze

Re: L2 and L3 VPN

Hi,

MPLS L3 VPN is like a peer to peer VPN model where ISP takes part in customers routing. They will store the Customers route in their routers and distribute to other customer locations. Advantage is we can have full mesh topology between different locations.

MPLS L2 VPN (also called VPWS - Virtual private wired service) is like Overlay VPN model where ISP will not take part in customers routing. Actually the customer prefixes are transparent to ISP network, wherein SP will just provide the end to end reachability. more of IPLC link. In L2 VPN you cannot have full mesh between customer sites, it will always be a point to point. Advantages for Customer is security because SP will not know about the IP addresses used by the customer and in SP's perspective lot of resources are saved (since SP is not storing the customer routes, run routing protocol etc).

To overcome this, there is a mechanism in MPLS called VPLS (Virtual Private LAN service) where the SP will act as switch and multiple customer sites can connect to the switch. In this case, SP will store the MAC address in their devices.

Hope this helps! Pls rate if u find it useful!

thanks

Arun

New Member

Re: L2 and L3 VPN

Hi,

If customer want to configure and manage routing himself, bettween all VPN sites, independent of Service provider, they prefer L2 VPN.

If customer want the routing should be controlled by Service provider, they prefer L3 VPN.

BR

363
Views
10
Helpful
3
Replies