This lab example is to setup the underlay routing, both the "internet" and "MPLS L3 VPN".
CSR1
interface GigabitEthernet1.1031
encapsulation dot1Q 1031
ip address 103.1.3.1 255.255.255.0
!
interface GigabitEthernet1.1051
encapsulation dot1Q 1051
ip address 105.1.5.1 255.255.255.0
!
interface GigabitEthernet1.1091
encapsulation dot1Q 1091
ip address 109.1.9.1 255.255.255.0
!
interface GigabitEthernet1.1111
encapsulation dot1Q 1111
ip address 111.1.11.1 255.255.255.0
!
interface GigabitEthernet1.1121
encapsulation dot1Q 1121
ip address 112.1.12.1 255.255.255.0
CSR2
interface Loopback0
ip address 2.2.2.2 255.255.255.255
!
interface GigabitEthernet1.1024
encapsulation dot1Q 1024
ip address 10.2.4.2 255.255.255.0
!
interface GigabitEthernet1.1026
encapsulation dot1Q 1026
ip address 10.2.6.2 255.255.255.0
!
interface GigabitEthernet1.10210
encapsulation dot1Q 1020
ip address 10.2.10.2 255.255.255.0
!
interface GigabitEthernet1.10211
encapsulation dot1Q 1021
ip address 10.2.11.2 255.255.255.0
!
interface GigabitEthernet1.10212
encapsulation dot1Q 1022
ip address 10.2.12.2 255.255.255.0
!
router bgp 2
bgp log-neighbor-changes
no bgp default ipv4-unicast
neighbor 10.2.4.4 remote-as 65101
neighbor 10.2.6.6 remote-as 65102
neighbor 10.2.10.10 remote-as 65103
neighbor 10.2.11.11 remote-as 65104
neighbor 10.2.12.12 remote-as 65105
!
address-family ipv4
redistribute connected
neighbor 10.2.4.4 activate
neighbor 10.2.6.6 activate
neighbor 10.2.10.10 activate
neighbor 10.2.11.11 activate
neighbor 10.2.12.12 activate
exit-address-family
CSR3
vrf definition INET
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1031
encapsulation dot1Q 1031
vrf forwarding INET
ip address 103.1.3.3 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 103.1.3.1
CSR4
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1024
encapsulation dot1Q 1024
vrf forwarding MPLS
ip address 10.2.4.4 255.255.255.0
!
router bgp 65101
!
address-family ipv4 vrf MPLS
neighbor 10.2.4.2 remote-as 2
neighbor 10.2.4.2 activate
exit-address-family
CSR5
vrf definition INET
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1051
encapsulation dot1Q 1051
vrf forwarding INET
ip address 105.1.5.5 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 105.1.5.1
CSR6
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1026
encapsulation dot1Q 1026
vrf forwarding MPLS
ip address 10.2.6.6 255.255.255.0
!
router bgp 65102
!
address-family ipv4 vrf MPLS
neighbor 10.2.6.2 remote-as 2
neighbor 10.2.6.2 activate
exit-address-family
CSR9
vrf definition INET
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1091
encapsulation dot1Q 1091
vrf forwarding INET
ip address 109.1.9.9 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 109.1.9.1
CSR10
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1021
encapsulation dot1Q 1020
vrf forwarding MPLS
ip address 10.2.10.10 255.255.255.0
!
router bgp 65103
!
address-family ipv4 vrf MPLS
neighbor 10.2.10.2 remote-as 2
neighbor 10.2.10.2 activate
exit-address-family
CSR11
vrf definition INET
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1111
encapsulation dot1Q 1111
vrf forwarding INET
ip address 111.1.11.11 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 111.1.11.1
!
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1021
encapsulation dot1Q 1021
vrf forwarding MPLS
ip address 10.2.11.11 255.255.255.0
!
router bgp 65104
!
address-family ipv4 vrf MPLS
neighbor 10.2.11.2 remote-as 2
neighbor 10.2.11.2 activate
exit-address-family
CSR12
vrf definition INET
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1121
encapsulation dot1Q 1121
vrf forwarding INET
ip address 112.1.12.12 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 112.1.12.1
!
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1022
encapsulation dot1Q 1022
vrf forwarding MPLS
ip address 10.2.12.12 255.255.255.0
!
router bgp 65105
!
address-family ipv4 vrf MPLS
neighbor 10.2.12.2 remote-as 2
neighbor 10.2.12.2 activate
exit-address-family
CSR3#ping vrf INET 109.1.9.9
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 109.1.9.9, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 3/8/24 ms
CSR3#ping vrf INET 111.1.11.11
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 111.1.11.11, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/3/4 ms
CSR3#ping vrf INET 112.1.12.12
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 112.1.12.12, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/2/3 ms
CSR4#show bgp vpnv4 unicast all
BGP table version is 7, local router ID is 4.4.4.4
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
t secondary path,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path
Route Distinguisher: 1:1 (default for vrf MPLS)
*> 2.2.2.2/32 10.2.4.2 0 0 2 ?
r> 10.2.4.0/24 10.2.4.2 0 0 2 ?
*> 10.2.6.0/24 10.2.4.2 0 0 2 ?
*> 10.2.10.0/24 10.2.4.2 0 0 2 ?
*> 10.2.11.0/24 10.2.4.2 0 0 2 ?
*> 10.2.12.0/24 10.2.4.2 0 0 2 ?
CSR4#ping vrf MPLS 10.2.10.10
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.2.10.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/6 ms
CSR4#ping vrf MPLS 10.2.11.11
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.2.11.11, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 3/3/3 ms
CSR4#ping vrf MPLS 10.2.12.12
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.2.12.12, timeout is 2 seconds:
!!!!!
CSR1
interface GigabitEthernet1.1031
encapsulation dot1Q 1031
ip address 103.1.3.1 255.255.255.0
!
interface GigabitEthernet1.1051
encapsulation dot1Q 1051
ip address 105.1.5.1 255.255.255.0
!
interface GigabitEthernet1.1091
encapsulation dot1Q 1091
ip address 109.1.9.1 255.255.255.0
!
interface GigabitEthernet1.1111
encapsulation dot1Q 1111
ip address 111.1.11.1 255.255.255.0
!
interface GigabitEthernet1.1121
encapsulation dot1Q 1121
ip address 112.1.12.1 255.255.255.0
CSR2
interface Loopback0
ip address 2.2.2.2 255.255.255.255
!
interface GigabitEthernet1.1024
encapsulation dot1Q 1024
ip address 10.2.4.2 255.255.255.0
!
interface GigabitEthernet1.1026
encapsulation dot1Q 1026
ip address 10.2.6.2 255.255.255.0
!
interface GigabitEthernet1.10210
encapsulation dot1Q 1020
ip address 10.2.10.2 255.255.255.0
!
interface GigabitEthernet1.10211
encapsulation dot1Q 1021
ip address 10.2.11.2 255.255.255.0
!
interface GigabitEthernet1.10212
encapsulation dot1Q 1022
ip address 10.2.12.2 255.255.255.0
!
router bgp 2
bgp log-neighbor-changes
no bgp default ipv4-unicast
neighbor 10.2.4.4 remote-as 65101
neighbor 10.2.6.6 remote-as 65102
neighbor 10.2.10.10 remote-as 65103
neighbor 10.2.11.11 remote-as 65104
neighbor 10.2.12.12 remote-as 65105
!
address-family ipv4
redistribute connected
neighbor 10.2.4.4 activate
neighbor 10.2.6.6 activate
neighbor 10.2.10.10 activate
neighbor 10.2.11.11 activate
neighbor 10.2.12.12 activate
exit-address-family
CSR3
vrf definition INET
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1031
encapsulation dot1Q 1031
vrf forwarding INET
ip address 103.1.3.3 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 103.1.3.1
CSR4
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1024
encapsulation dot1Q 1024
vrf forwarding MPLS
ip address 10.2.4.4 255.255.255.0
!
router bgp 65101
!
address-family ipv4 vrf MPLS
neighbor 10.2.4.2 remote-as 2
neighbor 10.2.4.2 activate
exit-address-family
CSR5
vrf definition INET
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1051
encapsulation dot1Q 1051
vrf forwarding INET
ip address 105.1.5.5 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 105.1.5.1
CSR6
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1026
encapsulation dot1Q 1026
vrf forwarding MPLS
ip address 10.2.6.6 255.255.255.0
!
router bgp 65102
!
address-family ipv4 vrf MPLS
neighbor 10.2.6.2 remote-as 2
neighbor 10.2.6.2 activate
exit-address-family
CSR9
vrf definition INET
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1091
encapsulation dot1Q 1091
vrf forwarding INET
ip address 109.1.9.9 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 109.1.9.1
CSR10
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
interface GigabitEthernet1.1021
encapsulation dot1Q 1020
vrf forwarding MPLS
ip address 10.2.10.10 255.255.255.0
!
router bgp 65103
!
address-family ipv4 vrf MPLS
neighbor 10.2.10.2 remote-as 2
neighbor 10.2.10.2 activate
exit-address-family
CSR11
vrf definition INET
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1111
encapsulation dot1Q 1111
vrf forwarding INET
ip address 111.1.11.11 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 111.1.11.1
!
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1021
encapsulation dot1Q 1021
vrf forwarding MPLS
ip address 10.2.11.11 255.255.255.0
!
router bgp 65104
!
address-family ipv4 vrf MPLS
neighbor 10.2.11.2 remote-as 2
neighbor 10.2.11.2 activate
exit-address-family
CSR12
vrf definition INET
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1121
encapsulation dot1Q 1121
vrf forwarding INET
ip address 112.1.12.12 255.255.255.0
!
ip route vrf INET 0.0.0.0 0.0.0.0 112.1.12.1
!
vrf definition MPLS
rd 1:1
!
address-family ipv4
exit-address-family
!
!
interface GigabitEthernet1.1022
encapsulation dot1Q 1022
vrf forwarding MPLS
ip address 10.2.12.12 255.255.255.0
!
router bgp 65105
!
address-family ipv4 vrf MPLS
neighbor 10.2.12.2 remote-as 2
neighbor 10.2.12.2 activate
exit-address-family
CSR3#ping vrf INET 109.1.9.9
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 109.1.9.9, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 3/8/24 ms
CSR3#ping vrf INET 111.1.11.11
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 111.1.11.11, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/3/4 ms
CSR3#ping vrf INET 112.1.12.12
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 112.1.12.12, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/2/3 ms
CSR4#show bgp vpnv4 unicast all
BGP table version is 7, local router ID is 4.4.4.4
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
t secondary path,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path
Route Distinguisher: 1:1 (default for vrf MPLS)
*> 2.2.2.2/32 10.2.4.2 0 0 2 ?
r> 10.2.4.0/24 10.2.4.2 0 0 2 ?
*> 10.2.6.0/24 10.2.4.2 0 0 2 ?
*> 10.2.10.0/24 10.2.4.2 0 0 2 ?
*> 10.2.11.0/24 10.2.4.2 0 0 2 ?
*> 10.2.12.0/24 10.2.4.2 0 0 2 ?
CSR4#ping vrf MPLS 10.2.10.10
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.2.10.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/6 ms
CSR4#ping vrf MPLS 10.2.11.11
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.2.11.11, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 3/3/3 ms
CSR4#ping vrf MPLS 10.2.12.12
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.2.12.12, timeout is 2 seconds:
!!!!!
