From: Roman Rodichev (roman@iementor.com)
Date: Sat Jan 03 2009 - 12:40:55 ARST
First off, you are missing MDT SAFI configuration. Refer to this:
http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/iasmcvpn.html
Roman Rodichev
5xCCIE #7927 (R&S, Security, Voice, Storage, Service Provider)
Instructor, Content Developer
ieMentor Corporation http://www.iementor.com
Y!M: roman7927
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Service Provider
Sent: Saturday, January 03, 2009 4:02 AM
To: Cisco certification; Cisco certification
Subject: Inter-AS mVPN
Hello
I am having problem with multicast across Inter-AS domains. Am not sure what
am missing but my vrf pim neighbor between the 2 PE router on different ASes
not come up.
My topology is:
ce1 (SW1)---PE
(R3)---P(R1)---ASBR(R2)---ASBR(R4)---P(R5)---PE(R6)---ce2(SW2)
below is my configurations, please help me.
r1(config)#do sh run int lo0
Building configuration...
Current configuration : 85 bytes
!
interface Loopback0
ip address 150.1.1.1 255.255.255.255
ip pim sparse-mode
end
r1(config)#do sh run
Building configuration...
Current configuration : 2019 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
no ip domain lookup
!
!
ip multicast-routing
!
no mpls ip propagate-ttl
!
interface Loopback0
ip address 150.1.1.1 255.255.255.255
ip pim sparse-mode
!
interface Serial0/0
no ip address
encapsulation frame-relay
no ip route-cache cef
no ip route-cache
serial restart-delay 0
no fair-queue
!
interface Serial0/0.1 point-to-point
ip address 150.1.12.1 255.255.255.0
ip pim sparse-mode
no ip route-cache
mpls label protocol ldp
mpls ip
mpls traffic-eng tunnels
frame-relay interface-dlci 102
ip rsvp bandwidth 9000
!
interface Serial0/1
ip address 150.1.13.1 255.255.255.0
ip pim sparse-mode
mpls label protocol ldp
mpls ip
mpls traffic-eng tunnels
serial restart-delay 0
ip rsvp bandwidth 9000
!
interface Serial0/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial0/3
no ip address
shutdown
serial restart-delay 0
!
interface Ethernet1/0
no ip address
half-duplex
!
interface Ethernet1/1
no ip address
shutdown
half-duplex
!
interface Ethernet1/2
no ip address
shutdown
half-duplex
!
interface Ethernet1/3
no ip address
shutdown
half-duplex
!
router ospf 1
mpls traffic-eng router-id Loopback0
mpls traffic-eng area 0
mpls traffic-eng multicast-intact
log-adjacency-changes
network 150.1.1.1 0.0.0.0 area 0
network 150.1.12.1 0.0.0.0 area 0
network 150.1.13.1 0.0.0.0 area 0
!
router bgp 1356
no synchronization
bgp log-neighbor-changes
neighbor 150.1.45.5 remote-as 1356
no auto-summary
!
ip http server
no ip http secure-server
!
ip pim ssm default
!
access-list 1 permit 150.1.3.3
access-list 1 permit 150.1.6.6
access-list 1 deny any
!
mpls ldp router-id Loopback0 force
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
!
end
r2#sh run
Building configuration...
Current configuration : 3447 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r2
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
no ip domain lookup
!
!
ip vrf SW1-SW2
rd 100:1
route-target export 100:1
route-target import 100:1
bgp next-hop Loopback0
mdt default 232.2.2.2
!
ip multicast-routing
ip multicast-routing vrf SW1-SW2
!
no mpls ip propagate-ttl
!
interface Loopback0
ip address 150.1.2.2 255.255.255.255
ip pim sparse-dense-mode
!
interface Loopback2
ip vrf forwarding SW1-SW2
ip address 2.2.2.2 255.255.255.255
ip pim sparse-mode
!
interface Serial0/0
no ip address
encapsulation frame-relay
no ip route-cache cef
no ip route-cache
serial restart-delay 0
!
interface Serial0/0.1 point-to-point
ip address 150.1.12.2 255.255.255.0
ip pim sparse-mode
no ip route-cache
mpls label protocol ldp
mpls ip
mpls traffic-eng tunnels
frame-relay interface-dlci 201
ip rsvp bandwidth 9000
!
interface Serial0/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial0/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial0/3
no ip address
shutdown
serial restart-delay 0
!
interface Ethernet1/0
ip address 150.1.24.2 255.255.255.0
ip pim sparse-mode
half-duplex
mpls label protocol ldp
mpls traffic-eng tunnels
ip rsvp bandwidth 9000
ip rsvp resource-provider none
!
interface Ethernet1/0.100
encapsulation dot1Q 100
!
interface Ethernet1/1
no ip address
shutdown
half-duplex
!
interface Ethernet1/2
no ip address
shutdown
half-duplex
!
interface Ethernet1/3
no ip address
shutdown
half-duplex
!
router ospf 1
mpls traffic-eng router-id Loopback0
mpls traffic-eng area 0
mpls traffic-eng multicast-intact
log-adjacency-changes
redistribute connected
redistribute bgp 123 subnets
network 150.1.2.2 0.0.0.0 area 0
network 150.1.12.2 0.0.0.0 area 0
!
router ospf 2
log-adjacency-changes
network 150.1.24.2 0.0.0.0 area 1
!
router isis
!
router bgp 123
no synchronization
no bgp default route-target filter
bgp log-neighbor-changes
bgp redistribute-internal
network 150.1.3.3 mask 255.255.255.255
redistribute ospf 1 match internal
neighbor 150.1.3.3 remote-as 123
neighbor 150.1.3.3 update-source Loopback0
neighbor 150.1.24.4 remote-as 456
neighbor 150.1.24.4 send-label
no auto-summary
!
address-family vpnv4
neighbor 150.1.3.3 activate
neighbor 150.1.3.3 send-community extended
exit-address-family
!
address-family ipv4 vrf SW1-SW2
redistribute connected
no synchronization
exit-address-family
!
ip http server
no ip http secure-server
!
ip pim ssm default
ip msdp peer 150.1.24.4
!
ip prefix-list R1_LOOPBACK seq 5 permit 150.1.1.1/32
!
ip prefix-list R3_LOOP seq 5 permit 150.1.3.3/32
!
ip prefix-list R5_LOOPBACK seq 5 permit 150.1.5.5/32
!
ip prefix-list R6_LOOPBACK seq 5 permit 150.1.6.6/32
ip prefix-list R6_LOOPBACK seq 10 permit 150.1.5.5/32
!
ip access-list standard LOOPS
permit 150.1.1.1
permit 150.1.3.3
access-list 1 permit 150.1.3.3
access-list 1 permit 150.1.6.6
access-list 1 deny any
!
route-map BGP_TO_IGP permit 10
match ip address prefix-list R6_LOOPBACK
!
route-map R3_LOOPBACK permit 10
match ip address prefix-list R3_LOOP
!
!
mpls ldp router-id Loopback0 force
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
end
r3#sh run
Building configuration...
Current configuration : 4344 bytes
!
! Last configuration change at 02:37:34 UTC Fri Mar 1 2002
! NVRAM config last updated at 00:06:35 UTC Fri Mar 1 2002
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r3
!
boot-start-marker
boot-end-marker
!
logging buffered 4096 debugging
!
no aaa new-model
memory-size iomem 10
!
!
ip cef
no ip domain lookup
ip domain name ccie.com
!
!
ip vrf SW1-SW2
rd 100:1
route-target export 100:1
route-target import 100:1
bgp next-hop Loopback0
mdt default 232.2.2.2
!
ip multicast-routing
ip multicast-routing vrf SW1-SW2
!
no mpls ip propagate-ttl
!
!
key chain RIP
key 1
key-string CISCO
!
username cisco password 0 cisco
!
pseudowire-class L2TPv3
encapsulation l2tpv3
ip local interface Loopback0
!
!
!
crypto isakmp policy 10
encr 3des
hash md5
authentication pre-share
lifetime 3600
crypto ipsec security-association lifetime seconds 1800
!
crypto ipsec transform-set FOO esp-aes esp-sha-hmac
!
!
!
interface Loopback0
ip address 150.1.3.3 255.255.255.255
ip pim sparse-mode
!
interface Loopback33
ip address 33.33.33.33 255.255.255.0
!
interface Loopback75
no ip address
!
interface Tunnel10
ip unnumbered Loopback0
mpls traffic-eng tunnels
tunnel destination 150.1.6.6
tunnel mode mpls traffic-eng
tunnel mpls traffic-eng autoroute announce
tunnel mpls traffic-eng path-option 1 dynamic
no routing dynamic
!
interface Ethernet0/0
ip vrf forwarding SW1-SW2
ip vrf sitemap soo
ip address 10.1.37.3 255.255.255.0
ip pim sparse-mode
ip nat inside
ip virtual-reassembly
no ip route-cache cef
no ip route-cache
load-interval 30
half-duplex
no cdp enable
!
interface Ethernet0/1
no ip address
full-duplex
!
interface Ethernet0/2
ip vrf forwarding SW1-SW2
ip address 10.1.23.3 255.255.255.0
ip pim sparse-mode
shutdown
half-duplex
!
interface Ethernet0/3
no ip address
shutdown
half-duplex
!
interface Serial1/0
no ip address
shutdown
serial restart-delay 0
no fair-queue
!
interface Serial1/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/2
ip address 150.1.13.3 255.255.255.0
ip pim sparse-mode
ip virtual-reassembly
load-interval 30
mpls label protocol ldp
mpls ip
mpls traffic-eng tunnels
serial restart-delay 0
ip rsvp bandwidth 9000
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
router eigrp 1
no auto-summary
!
address-family ipv4 vrf SW1-SW2
redistribute bgp 123 metric 10000 10 255 1 1500
network 10.1.37.3 0.0.0.0
no auto-summary
autonomous-system 100
exit-address-family
!
router eigrp 100
auto-summary
!
router ospf 1
mpls traffic-eng router-id Loopback0
mpls traffic-eng area 0
mpls traffic-eng multicast-intact
log-adjacency-changes
network 150.1.3.3 0.0.0.0 area 0
network 150.1.13.3 0.0.0.0 area 0
!
router bgp 123
no synchronization
bgp log-neighbor-changes
neighbor 150.1.2.2 remote-as 123
neighbor 150.1.2.2 update-source Loopback0
neighbor 150.1.6.6 remote-as 456
neighbor 150.1.6.6 ebgp-multihop 255
neighbor 150.1.6.6 update-source Loopback0
no auto-summary
!
address-family vpnv4
neighbor 150.1.2.2 activate
neighbor 150.1.2.2 send-community extended
neighbor 150.1.6.6 activate
neighbor 150.1.6.6 send-community extended
exit-address-family
!
address-family ipv4 vrf SW1-SW2
redistribute eigrp 100
no synchronization
network 10.1.37.0 mask 255.255.255.0
exit-address-family
!
ip http server
no ip http secure-server
!
!
ip bgp-community new-format
ip pim bsr-candidate Loopback0 0
ip pim rp-candidate Loopback0
ip pim ssm default
ip msdp peer 150.1.6.6 connect-source Loopback0
ip msdp vrf SW1-SW2 peer 10.1.68.6
ip nat pool SW1-SW2 165.233.0.1 165.233.0.100 prefix-length 24
ip nat inside source list SW1-SW2 pool SW1-SW2 vrf SW1-SW2
!
ip access-list extended SW1-SW2
permit ip 10.1.7.0 0.0.0.255 any log
access-list 1 permit 150.1.3.3
access-list 1 permit 150.1.6.6
access-list 1 deny any
!
route-map SoO permit 10
set extcommunity soo 1:100
!
route-map soo permit 10
set extcommunity soo 7020:702
!
!
mpls ldp router-id Loopback0 force
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login local
transport input ssh
!
ntp authentication-key 1 md5 045802150C2E 7
ntp master 1
ntp peer vrf SW1-SW2 10.1.7.7
!
end
r4#sh run
Building configuration...
Current configuration : 3415 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r4
!
boot-start-marker
boot-end-marker
!
logging buffered 4096 debugging
no logging console
!
no aaa new-model
memory-size iomem 15
!
!
ip cef
no ip domain lookup
!
!
ip vrf AS1356
rd 1:1
route-target export 150.1.4.4:25
route-target import 150.1.4.4:25
route-target import 150.1.2.2:24
mdt default 232.2.2.2
!
ip multicast-routing
ip multicast-routing vrf AS1356
!
mpls label protocol ldp
no mpls ip propagate-ttl
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
class-map match-all EXP_2
match mpls experimental topmost 2
class-map match-all EXP_1
match mpls experimental topmost 1
!
!
policy-map EXP
class EXP_1
priority 40
class EXP_2
bandwidth remaining percent 50
!
interface Loopback0
ip address 150.1.4.4 255.255.255.255
ip router isis
ip pim sparse-dense-mode
!
interface Loopback24
ip vrf forwarding AS1356
ip address 24.24.24.24 255.255.255.255
!
interface Loopback57
no ip address
!
interface Ethernet0/0
ip address 150.1.24.4 255.255.255.0
ip pim sparse-mode
half-duplex
mpls label protocol ldp
mpls ip
mpls traffic-eng tunnels
service-policy output EXP
ip rsvp bandwidth 9000
!
interface Ethernet0/0.2
encapsulation dot1Q 200
!
interface Ethernet0/0.100
encapsulation dot1Q 100
!
interface Ethernet0/1
no ip address
half-duplex
!
interface Ethernet0/2
no ip address
shutdown
half-duplex
!
interface Ethernet0/3
no ip address
shutdown
half-duplex
!
interface Serial1/0
no ip address
encapsulation frame-relay
no ip route-cache cef
serial restart-delay 0
fair-queue 64 256 37
ip rsvp bandwidth
!
interface Serial1/0.1 point-to-point
ip address 150.1.45.4 255.255.255.0
ip router isis
ip pim sparse-mode
mpls label protocol ldp
mpls ip
frame-relay interface-dlci 405
ip rsvp bandwidth 9000
ip rsvp resource-provider none
!
interface Serial1/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
router ospf 2
log-adjacency-changes
network 150.1.24.4 0.0.0.0 area 1
!
router isis
net 49.0024.0000.0000.0004.00
redistribute bgp 456 level-1-2
!
router bgp 456
bgp log-neighbor-changes
neighbor 150.1.6.6 remote-as 456
neighbor 150.1.6.6 update-source Loopback0
neighbor 150.1.24.2 remote-as 123
!
address-family ipv4
redistribute isis level-2
no neighbor 150.1.6.6 activate
neighbor 150.1.24.2 activate
neighbor 150.1.24.2 send-label
no auto-summary
no synchronization
bgp redistribute-internal
network 150.1.6.6 mask 255.255.255.255
exit-address-family
!
ip http server
no ip http secure-server
!
!
ip bgp-community new-format
ip pim bsr-candidate Loopback0 0
ip pim rp-candidate Loopback0
ip pim ssm default
ip msdp peer 150.1.24.2
!
!
ip prefix-list R3_LOOPBACK seq 5 permit 150.1.3.3/32
!
ip prefix-list R6_LOOPBACK seq 1 permit 150.1.6.6/32
access-list 1 permit 10.1.5.0
access-list 2 permit 150.1.3.3
access-list 2 permit 150.1.6.6
access-list 2 deny any
!
route-map BGP_TO_IGP permit 10
match ip address prefix-list R3_LOOPBACK
!
route-map R6_LOOPBACK permit 10
match ip address prefix-list R6_LOOPBACK
!
!
mpls ldp router-id Loopback0 force
!
control-plane
!
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
!
end
r5#sh run
Building configuration...
Current configuration : 2113 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r5
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 10
!
!
ip cef
no ip domain lookup
!
!
ip multicast-routing
!
no mpls ip propagate-ttl
!
class-map match-all EXP_2
match mpls experimental topmost 2
class-map match-all EXP_1
match mpls experimental topmost 1
!
!
policy-map EXP
class EXP_1
priority 40
class EXP_2
bandwidth remaining percent 50
policy-map DEFAULT
class class-default
shape average 1544000
service-policy EXP
!
interface Loopback0
ip address 150.1.5.5 255.255.255.255
ip router isis
ip pim sparse-mode
!
interface Ethernet0/0
ip address 150.1.56.5 255.255.255.0
ip router isis
ip pim sparse-mode
half-duplex
mpls label protocol ldp
mpls ip
mpls traffic-eng tunnels
ip rsvp bandwidth 9000
!
interface Ethernet0/1
ip address 10.1.45.5 255.255.255.0
half-duplex
!
interface Ethernet0/2
no ip address
shutdown
half-duplex
!
interface Ethernet0/3
no ip address
shutdown
half-duplex
!
interface Serial1/0
no ip address
encapsulation frame-relay
serial restart-delay 0
fair-queue 64 256 37
ip rsvp bandwidth
!
interface Serial1/0.1 point-to-point
ip address 150.1.45.5 255.255.255.0
ip router isis
ip pim sparse-mode
mpls label protocol ldp
mpls ip
mpls traffic-eng tunnels
frame-relay interface-dlci 504
service-policy output DEFAULT
ip rsvp bandwidth 9000
ip rsvp resource-provider none
!
interface Serial1/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
router isis
net 49.0024.0000.0000.0005.00
!
ip http server
no ip http secure-server
!
!
ip pim ssm default
!
access-list 1 permit 150.1.3.3
access-list 1 permit 150.1.6.6
access-list 1 deny any
!
!
mpls ldp router-id Loopback0 force
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
!
end
r6#sh run
Building configuration...
Current configuration : 4834 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r6
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$z33H$lPldDhpjw236SQOSNXMqN0
!
no aaa new-model
memory-size iomem 5
ip flow-cache mpls label-positions 1 2
!
!
ip cef
no ip domain lookup
ip domain name ccie.com
!
!
ip vrf SW1-SW2
rd 100:1
route-target export 100:1
route-target import 100:1
bgp next-hop Loopback0
mdt default 232.2.2.2
!
ip multicast-routing
ip multicast-routing vrf SW1-SW2
!
ipv6 flow-cache mpls label-positions 1 2
mpls label range 20000 1048574
no mpls ip propagate-ttl
!
!
key chain SW2
key 1
key-string cisco
!
!
!
!
!
!
!
!
!
!
!
!
!
username cisco password 0 cisco
!
!
class-map match-all af11
match ip dscp af11
class-map match-all exp1
match mpls experimental topmost 1
class-map match-all exp2
match mpls experimental topmost 2
class-map match-all any
match any
!
policy-map in
class af11
set mpls experimental imposition 1
class any
set mpls experimental imposition 2
policy-map exp
class exp1
set mpls experimental topmost 1
priority 40
class exp2
set mpls experimental topmost 2
bandwidth remaining percent 50
!
pseudowire-class L2TPv3
encapsulation l2tpv3
ip local interface Loopback0
!
!
!
!
!
!
interface Loopback0
ip address 150.1.6.6 255.255.255.255
ip router isis
ip pim sparse-mode
!
interface Tunnel1
ip unnumbered Loopback0
mpls traffic-eng tunnels
tunnel destination 150.1.3.3
tunnel mode mpls traffic-eng
tunnel mpls traffic-eng autoroute announce
tunnel mpls traffic-eng path-option 1 dynamic
no routing dynamic
!
interface Ethernet0/0
ip address 150.1.56.6 255.255.255.0
ip router isis
ip pim sparse-mode
ip route-cache flow
half-duplex
mpls label protocol ldp
mpls ip
service-policy output exp
ip rsvp bandwidth 9000
!
interface Ethernet0/1
ip vrf forwarding SW1-SW2
ip address 10.1.68.6 255.255.255.0
ip pim sparse-mode
ip virtual-reassembly
no ip route-cache cef
no ip route-cache
ip ospf authentication message-digest
ip ospf authentication-key cisco
half-duplex
no cdp enable
service-policy input in
!
interface Ethernet0/2
no ip address
shutdown
half-duplex
!
interface Ethernet0/3
no ip address
shutdown
half-duplex
!
interface Serial1/0
no ip address
encapsulation frame-relay
serial restart-delay 0
!
interface Serial1/0.1 point-to-point
ip address 54.1.1.6 255.255.255.0
ip nat outside
ip virtual-reassembly
frame-relay interface-dlci 101
!
interface Serial1/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
router eigrp 1
no auto-summary
!
address-family ipv4 vrf SW1-SW2
redistribute bgp 456 metric 10000 10 1 255 1500
network 10.1.68.6 0.0.0.0
auto-summary
autonomous-system 100
exit-address-family
!
router isis
net 49.0024.0000.0000.0006.00
!
router bgp 456
bgp log-neighbor-changes
neighbor 150.1.3.3 remote-as 123
neighbor 150.1.3.3 ebgp-multihop 255
neighbor 150.1.3.3 update-source Loopback0
!
address-family ipv4
no neighbor 150.1.3.3 activate
no auto-summary
no synchronization
exit-address-family
!
address-family vpnv4
neighbor 150.1.3.3 activate
neighbor 150.1.3.3 send-community extended
exit-address-family
!
address-family ipv4 vrf SW1-SW2
redistribute eigrp 100
no synchronization
network 10.1.68.0 mask 255.255.255.0
exit-address-family
!
ip http server
no ip http secure-server
ip route 165.233.0.0 255.255.255.0 Null0
ip flow-export version 9 bgp-nexthop
ip flow-aggregation cache prefix
export version 9
export destination 10.10.10.10 2055
!
ip bgp-community new-format
ip community-list 100 permit 7020:65000
ip pim ssm default
ip msdp peer 150.1.3.3
ip msdp vrf SW1-SW2 peer 10.1.37.3
ip nat pool VRF_SW1_SW2 165.233.0.1 165.233.0.254 netmask 255.255.255.0
ip nat source list VRF_SW1_SW2 pool VRF_SW1_SW2 vrf SW1-SW2
!
!
ip prefix-list R7 seq 5 permit 10.1.7.7/32
!
ip access-list extended VRF_SW1_SW2
permit ip 10.1.8.0 0.0.0.255 any
permit udp any any eq rip
permit pim any any
access-list 1 permit 150.1.3.3
access-list 1 permit 150.1.6.6
access-list 1 deny any
!
route-map R7 permit 10
match ip address prefix-list R7
!
route-map LOC-PREF permit 10
set local-preference 120
set weight 100
!
route-map LOC-PREF permit 20
match community 100
!
route-map LOC-PREF permit 30
set metric 20
!
route-map LOC-PREF permit 40
set weight 100
!
route-map soo permit 10
set extcommunity soo 7020:7020
!
!
mpls ldp router-id Loopback0 force
mpls static binding ipv4 vrf SW1-SW2 10.1.8.8 255.255.255.255 2000
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login local
transport input ssh
!
!
end
sw1#sh run
Building configuration...
Current configuration : 1273 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname sw1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
no ip domain lookup
!
!
ip multicast-routing
!
interface Loopback0
ip address 10.1.7.7 255.255.255.0
ip pim sparse-dense-mode
!
interface Ethernet0/0
no ip address
shutdown
half-duplex
!
interface Ethernet0/1
no ip address
shutdown
half-duplex
!
interface Ethernet0/2
no ip address
half-duplex
!
interface Ethernet0/3
ip address 10.1.37.7 255.255.255.0
ip pim sparse-dense-mode
ip igmp join-group 225.5.5.5
half-duplex
!
passive-interface Ethernet0/2
network 10.1.7.7 0.0.0.0
network 10.1.37.7 0.0.0.0
network 10.1.78.7 0.0.0.0
auto-summary
!
router bgp 65001
no synchronization
bgp log-neighbor-changes
network 10.1.7.0 mask 255.255.255.0
neighbor 10.1.37.3 remote-as 1
no auto-summary
!
ip http server
no ip http secure-server
!
!
ip pim bsr-candidate Loopback0 0
ip pim rp-candidate Loopback0
!
!
route-map soo permit 10
set extcommunity soo 7020:7020
!
!
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
!
end
sw2#sh run
Building configuration...
Current configuration : 3096 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname sw2
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
no ip domain lookup
!
!
ip multicast-routing
!
!
!
key chain SW2
key 1
key-string cisco
!
class-map match-all COS-INP-TELNET
match access-group name TELNET
class-map match-all DSCP-OUT-OTHER
match ip dscp 11
class-map match-all COS-INP-HTTP
match access-group name HTTP
class-map match-all COS-INP
class-map match-all DSCP-OUT-TELNET
match ip dscp 21
class-map match-all COS-INP-OTHER
match access-group name OTHER
class-map match-all QOS
class-map match-all OUT
match any
class-map match-all DSCP-OUT-HTTP
match ip dscp 31
!
!
policy-map COS-OUT
class DSCP-OUT-HTTP
bandwidth remaining percent 30
class DSCP-OUT-TELNET
bandwidth remaining percent 10
class DSCP-OUT-OTHER
bandwidth remaining percent 60
policy-map COS-IN
class COS-INP-TELNET
set ip dscp af31
class COS-INP-HTTP
set ip dscp af21
class COS-INP-OTHER
set ip dscp af11
policy-map any
class OUT
police 8000 conform-action transmit exceed-action set-dscp-transmit af11
!
interface Loopback0
ip address 10.1.8.8 255.255.255.0
ip pim sparse-mode
ip nat inside
ip virtual-reassembly
!
interface Loopback22
ip address 22.22.22.22 255.255.255.255
shutdown
!
interface Ethernet0/0
no ip address
no ip route-cache cef
no ip route-cache
shutdown
half-duplex
!
interface Ethernet0/1
ip address 10.1.68.8 255.255.255.0
ip pim sparse-mode
ip virtual-reassembly
ip ospf authentication message-digest
ip ospf authentication-key cisco
half-duplex
service-policy input COS-IN
service-policy output any
!
interface Ethernet0/2
ip address 10.1.78.8 255.255.255.0
ip pim sparse-mode
shutdown
half-duplex
service-policy output COS-OUT
!
interface Ethernet0/3
ip address 10.1.38.8 255.255.255.0
shutdown
half-duplex
!
router eigrp 100
network 10.1.8.8 0.0.0.0
network 10.1.68.8 0.0.0.0
network 10.1.78.8 0.0.0.0
no auto-summary
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
router bgp 65002
no synchronization
bgp log-neighbor-changes
network 10.1.8.0 mask 255.255.255.0
neighbor 10.1.68.6 remote-as 2
no auto-summary
!
ip http server
no ip http secure-server
!
!
ip bgp-community new-format
ip nat pool SW2-POOL 165.233.0.1 165.233.0.1 netmask 255.255.255.0
ip nat inside source list SW2-LOOP pool SW2-POOL overload
!
!
ip access-list extended HTTP
permit tcp any any eq www
ip access-list extended OTHER
permit ip any any
ip access-list extended TELNET
permit tcp any any eq telnet
access-list 1 permit 10.1.8.0 0.0.0.255 log
access-list 100 permit ip host 10.1.8.8 any log
!
route-map COMM permit 10
match ip address 1
set metric 50
set community 7020:65000
!
route-map COMM permit 40
set metric 20
!
route-map COMM permit 1000
!
route-map LOOP0 permit 10
match interface Loopback0
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
!
end
This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:43:36 ARST