DOCSLIB.ORG

A Review Paper on MPLS VPN Architecture

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
A Review Paper on MPLS VPN Architecture International Journal of Engineering Technology, Management and Applied Sciences www.ijetmas.com May 2015, Volume 3, Issue 5, ISSN 2349-4476 A Review Paper on MPLS VPN Architecture Tejender Singh Rawat1, Manoj Kumar Pandey2, *Upendra Kumar3 1, 2, 3 - Assistant Professor, ECE Department, ASET, Amity University Haryana Abstract A Virtual Private Network (VPN) provides private network connections over a publicly accessible shared network like internet, instead of using leased lines. A number of VPN technologies have been outlined, among which IPSec VPN and SSL VPN are the most commonly used. In this paper we will discuss the integration of Virtual Private Network (VPN) with other technology like MPLS (i.e. Multiprotocol Label Switching). This integration of MPLS with VPN has been receiving much attention from industries and standards bodies as it enables service providers to provide IP services with key benefits like qos, traffic engineering and optimal routing over a shared MPLS backbone. This paper will focus on the integration of providing VPN services in an MPLS environment. 1. Introduction The IP-based VPN technology is rapidly becoming the foundation for the delivery of future Internet services and many service providers are offering value-added applications on top of their VPN transport networks [1]. Using MPLS, the service providers can deliver the IP VPN services that businesses demand across either switched or routed networks [2, 3]. MPLS is the enabling technology that protects today's rapidly growing VPN revenue sources, while paving the way for tomorrow's value added services portfolio [4]. This paper provides an overview of the MPLS VPN technology and compares it with other types of VPN. An implementation of VRF over MPLS using MP-BGP [5] protocol is presented that discusses the key benefits of MPLS-VPN. 2. VPN Structure or Models A virtual private network (VPN) can be defined loosely as a network in which customer connectivity amongs the multiple sites is deployed on a shared infrastructure that utilizes the same security, management, and qos policies that are applied in a private network. VPN services can be offered based on two major paradigms: 1. Overlay VPNs, whereby the service provider furnishes virtual point-to-point links between customer sites. 2. Peer-to-Peer VPNs, whereby the service provider participates in customer routing. 2.1. The overlay model: Tunnel-based VPNs The traditional approach for service providers has been to provide Tunnel-based managed VPN service, by setting up secure, end-to-end connections, often emulating leased lines or virtual circuits, over public networks, according to the “overlay” model. A tunnel has two end points where the security service is both negotiated and rendered. Tunnels can exist at several protocol layers. 2.1.1 Layer 2 tunnels. They carry point-to-point data link connections between tunnel endpoints in remote access VPN. Two layer 2 tunneling protocols are commonly used today. The Point to-Point Tunnel Protocol (PPTP) [6] provides authenticated and encrypted access from Windows desktops to Microsoft or third-party remote access servers with a double encapsulation of the network layer datagram with PPP and a modified version of generic routing encapsulation (GRE) [7]. The IETF standard Layer 2 Tunneling Protocol (L2TP) [8] also provides authenticated tunneling by creating 32 Tejender Singh Rawat, Manoj Kumar Pandey, Upendra Kumar International Journal of Engineering Technology, Management and Applied Sciences www.ijetmas.com May 2015, Volume 3, Issue 5, ISSN 2349-4476 Layer 2 tunnels across a variety of networks (e.g. IP, ATM). Recently, Cisco has pioneered the new L2TPv3 protocol, based on optimized extensions to L2TP standard that includes signaling enhancements, a new encapsulation header, and a protocol identifier to support the end-to-end transportation of multiple Layer 2 protocols such as ATM and Ethernet. 2.1.2. Layer 3 tunnels. They provide IP-based virtual connection and in this approach normal IP packets are routed between tunnel endpoints that are separated by any intervening network topology. These facilities are now provided by the IPSec protocol suite. IPSec provides three basic communication necessities: confidentiality, secure communications and authentication and data integrity and between parties. At the core of the IPSec architecture [9] is the concept of security association (SA), specifying security services that should be applied to the traffic. The IKE (Internet Key Exchange) Protocol enables the automatic negotiation of SAs between two IPSec entities. Data security and integrity are provided with many encryption/hashing algorithms (e.g. MD5, SHA1 and 3DES). 2.2. The peer model: Network-Based VPNs. As said before, the peer model is based on a Layer 3 connectionless architecture offering the advantages of a highly scalable VPN solution in which some or all VPN capabilities are deployed within the service provider's network. A customer site is required to "peer" with only one router located at the service provider's points of presence (POPs), as opposed to all other VPN terminators or customer routers in the same VPN. Actually the most promising approach to “peer model” VPN is based on the Multi-Protocol Label Switching (MPLS) technology that is rapidly emerging as a core technology for next generation networks, in particular optical networks. MPLS is essentially a hybrid routing and forwarding strategy, streamlining the backbone switching of IP packets between the network (Layer 3) and transport (Layer 2) mainly focused on improving Internet scalability through better Traffic Engineering practices and qos provisioning. 2.2.1. Layer 3 (or IP-based) MPLS VPNs. It leverages the BGP routing protocol already in use at the edge of ISP networks to propagate MPLS VPN information across the network. In more detail, MPLS is used to forward packets while BGP is used to distribute VPN routes over the backbone. The information about MPLS VPNs can be propagated via BGP on the Internet's backbone routers between different ISPs and Autonomous Systems by encoding customer IPv4 address prefixes into unique VPN-IPv4 NLRIs (Network layer reachability information). In this context, an NLRI is a prefix associated to a VPN route. Furthermore, through the use of the Extended BGP community attribute, the PE routers are able to control the distribution of these routes within the MPLS-VPN domain and between different AS. The interior of an MPLS VPN network is made up of MPLS-aware provider (P) router devices forming the MPLS core that are not directly connect to any VPN terminating router. Provider edge (PE) routers that surround the core devices enable the VPN functions of an MPLS VPN network. MPLS core and PE routers work as label switch routers (LSR) that are devices capable of switching packets based on their MPLS-imposed labels. The VPN-terminating router is referred to as a customer edge router (CE) and thus a VPN consists of a group of CE routers connected to the MPLS backbone PE routers [11]. Only the PE routers are aware of the VPN. The CE routers are not aware of the underlying network and perceive that they are connected via a true private network. Each RFC2547 MPLS VPN is associated with a VPN routing/forwarding instance (VRF). A VRF defines the VPN membership of a customer site attached to a PE router. 33 Tejender Singh Rawat, Manoj Kumar Pandey, Upendra Kumar International Journal of Engineering Technology, Management and Applied Sciences www.ijetmas.com May 2015, Volume 3, Issue 5, ISSN 2349-4476 A separate set of routing and forwarding tables is maintained for each VRF preventing information from being forwarded outside a VPN and also preventing packets that are outside a VPN from being forwarded to a router within the VPN. This is the mechanism that allows the VPN traffic to be kept in separate contexts. Within each VPN, there is any-to-any connectivity: each site can send IP packets directly to any other site in the VPN, without having to go through a central site. In an MPLS VPN, the customer sites run ordinary IP. They do not need to run MPLS, IPSec or any other special VPN functions. A route distinguisher (RD) identifies each individual VPN. It is used to prefix the IP addresses involved in the different VPNs giving us a way to tell duplicate private addresses apart, to distinguish them. The RD is configured at the PE router as part of the VPN setup and is not visible to the customer. MPLS-VPN enforces traffic separation between customers because forwarding within the MPLS backbone is based on stacked labels. The MPLS LSPs setup begins and terminates at the PE routers while the CE routers perform normal routing. The incoming interface on the PE is used to determine which forwarding table to use when handling a packet because each incoming interface on a PE router is associated with a particular VPN. 2.2.2 Layer 2 MPLS VPN. AToM is a framework for encapsulating and transporting Layer 2 frames across the MPLS network, fully supporting Layer 2 services such as ATM VPNs, while aggregating and integrating transport technologies and taking advantage of proven MPLS quality of service (QoS) and scalability. It can transport ATM AAL5, Ethernet, Frame Relay, PPP, and Cisco HDLC packets. Currently, AToM only provides "like-to-like" transfers across the IP/MPLS backbone not allowing any kind of interworking between distinct layer 2 technologies. Actually, the ATOM technology is still under definition/development and not yet matures for performance analysis, so the layer 2 VPN paradigm will not be exploited in our evaluation. 3. VPN performance and scalability Issues The operational challenge of managing many separate highly meshed VPNs has served to highlight the performance and scalability limitations of traditional VPN technology based on the overlay model.
Load more

Recommended publications
  • Glossaire Des Protocoles Réseau
    Glossaire des protocoles réseau - EDITION LIVRES POUR TOUS - http://www.livrespourtous.com/ Mai 2009 A ALOHAnet ALOHAnet, également connu sous le nom ALOHA, est le premier réseau de transmission de données faisant appel à un média unique. Il a été développé par l'université d'Hawaii. Il a été mis en service en 1970 pour permettre les transmissions de données par radio entre les îles. Bien que ce réseau ne soit plus utilisé, ses concepts ont été repris par l'Ethernet. Histoire C'est Norman Abramson qui est à l'origine du projet. L'un des buts était de créer un réseau à faible coût d'exploitation pour permettre la réservation des chambres d'hôtels dispersés dans l'archipel d'Hawaï. Pour pallier l'absence de lignes de transmissions, l'idée fut d'utiliser les ondes radiofréquences. Au lieu d'attribuer une fréquence à chaque transmission comme on le faisait avec les technologies de l'époque, tout le monde utiliserait la même fréquence. Un seul support (l'éther) et une seule fréquence allaient donner des collisions entre paquets de données. Le but était de mettre au point des protocoles permettant de résoudre les collisions qui se comportent comme des perturbations analogues à des parasites. Les techniques de réémission permettent ainsi d'obtenir un réseau fiable sur un support qui ne l'est pas. APIPA APIPA (Automatic Private Internet Protocol Addressing) ou IPv4LL est un processus qui permet à un système d'exploitation de s'attribuer automatiquement une adresse IP, lorsque le serveur DHCP est hors service. APIPA utilise la plage d'adresses IP 169.254.0.0/16 (qu'on peut également noter 169.254.0.0/255.255.0.0), c'est-à-dire la plage dont les adresses vont de 169.254.0.0 à 169.254.255.255.
    [Show full text]
  • MPLS L2-VPN Using Atom with Like to Like Circuit Using Ethernet at Layer 2
    ISSN (Online) 2278-1021 IJARCCE ISSN (Print) 2319-5940 International Journal of Advanced Research in Computer and Communication Engineering Vol. 8, Issue 3, March 2019 MPLS L2-VPN using Atom with Like to Like Circuit using Ethernet at Layer 2 Aarthi.M1, Suganya.R2 Assistant Professor, Department of Computer Science, Ponnaiyah Ramajayam Institute of Science and Technology PRIST University Thanjavur1 M.C.A., Scholar Department of Computer Science, Ponnaiyah Ramajayam Institute of Science and Technology PRIST University, Thanjavur2 Abstract: MPLS is the prime technology used in examine supplier Networks as quick pack forwarding mechanism. It is the tools used in service supplier networks to connect dissimilar remote sites. MPLS can be used to carry any kind of information whether it is layer 2 data such as frame relay, Ethernet, ATM data or layer 3 data such as IPV4, IPV6. MPLS creates two types of VPNs. One is Layer 3 MPLS VPN with Layer 2 MPLS VPN. In Layer 3 MPLS VPN, customer forms IP national distribute with Service Provider device. In Layer 3 VPN routing is performed between client edge device and Provider Edge device. Layer 2 VPNs behave like the consumer sites are connected using a Layer 2 Switch. Various L2 MPLS VPN techniques are Virtual Private LAN Service (VPLS), Virtual Private Wire Service (VPWS), and Ethernet VPN. This paper gives an indication of all these L2 and L3 MPLS VPN technologies. Keywords: MPLS, VPLS, VPWS, Atom I. INTRODUCTION MPLS VPN is the internet/intranet connection of the client to client who are geographically separated. MPLS VPN circuits are interconnected from one Service providers to another Service providers by using Exterior Border Gateway Protocol (EBGP).
    [Show full text]
  • Day One: Deploying MPLS
    Books Networks Juniper Books Networks Juniper THISTHIS WEEK: WEEK: DEPLOYING DEPLOYING MPLS MPLS THIS WEE THIS WEE While thereWhile are there many are books many and books papers and available papers available that cover that network cover networkarchitecture, architecture, MPLS MPLS JunosJunos® Networking® Networking Technologies Technologies Series Series services,services, and MPLS and cores, MPLS none cores, put none all these put all subjects these subjects together together in a “beginning-to-end” in a “beginning-to-end” walk- walk- through throughmethodology methodology using all using the necessary all the necessary configuration configuration examples examples for Juniper for routers,Juniper routers, with explanationswith explanations for each for configuration. each configuration. This Week: This Deploying Week: Deploying MPLS is MPLSa seminar-in-a- is a seminar-in-a- book onbook the process on the processof designing of designing and standing and standing up a MPLS up acore, MPLS as core,well asas provisioningwell as provisioning THISTHIS WEE WK:EE DEPLOYINGK: DEPLOYING MPLS MPLS MPLS servicesMPLS servicessuch as L3VPN,such as VPLS,L3VPN, and VPLS, Layer and 2 circuits. Layer 2 circuits. K K : : This Week:This Deploying Week: Deploying MPLS assumes MPLS assumes readers havereaders a working have a workingknowledge knowledge of OSPF of or OSPF ISIS, or ISIS, MPLS DEPLOYING MPLS DEPLOYING iBGP, andiBGP, eBGP, and and eBGP, have and already have madealready a choicemade a as choice to which as to IGP which to use IGP in to their
    [Show full text]
  • MPLS) Conformance and Performance Testing Whitepaper
    Enabling a Converged World™ Multi-Protocol Label Switching (MPLS) Conformance and Performance Testing whitepaper Multi-Protocol Label Switching (MPLS) Conformance and Performance Testing example test plans included Contents Abstract .....................................................................................................................................3 Introduction ..............................................................................................................................3 What is MPLS? .........................................................................................................................4 Historical perspective ........................................................................................................4 MPLS and IP .......................................................................................................................4 Advantages of MPLS .........................................................................................................4 How Does MPLS Work? ...........................................................................................................5 MPLS routing .....................................................................................................................5 Signaling and label distribution ........................................................................................6 Data flow in an MPLS network .........................................................................................7 How Is MPLS Used? ................................................................................................................8
    [Show full text]
  • Ixia Black Book: Advanced MPLS
    ADVANCED MPLS Black Book Edition 10 Advanced MPLS http://www.ixiacom.com/blackbookPN 915-2602-01 Rev I June 2014 June 2014 i Advanced MPLS Your feedback is welcome Our goal in the preparation of this Black Book was to create high-value, high-quality content. Your feedback is an important ingredient that will help guide our future books. If you have any comments regarding how we could improve the quality of this book, or suggestions for topics to be included in future Black Books, please contact us at [email protected]. Your feedback is greatly appreciated! Copyright © 2014 Ixia. All rights reserved. This publication may not be copied, in whole or in part, without Ixia’s consent. RESTRICTED RIGHTS LEGEND: Use, duplication, or disclosure by the U.S. Government is subject to the restrictions set forth in subparagraph (c)(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013 and FAR 52.227-19. Ixia, the Ixia logo, and all Ixia brand names and product names in this document are either trademarks or registered trademarks of Ixia in the United States and/or other countries. All other trademarks belong to their respective owners. The information herein is furnished for informational use only, is subject to change by Ixia without notice, and should not be construed as a commitment by Ixia. Ixia assumes no responsibility or liability for any errors or inaccuracies contained in this publication. PN 915-2602-01 Rev I June 2014 iii Advanced MPLS Contents How to Read this Book ................................................................................................................................
    [Show full text]
  • Network Configuration Example Interconnecting a Layer 2 Circuit with a Layer 2 VPN Copyright © 2017, Juniper Networks, Inc
    Network Configuration Example Interconnecting a Layer 2 Circuit with a Layer 2 VPN Modified: 2017-01-19 Copyright © 2017, Juniper Networks, Inc. Juniper Networks, Inc. 1133 Innovation Way Sunnyvale, California 94089 USA 408-745-2000 www.juniper.net Copyright © 2017, Juniper Networks, Inc. All rights reserved. Juniper Networks, Junos, Steel-Belted Radius, NetScreen, and ScreenOS are registered trademarks of Juniper Networks, Inc. in the United States and other countries. The Juniper Networks Logo, the Junos logo, and JunosE are trademarks of Juniper Networks, Inc. All other trademarks, service marks, registered trademarks, or registered service marks are the property of their respective owners. Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice. Network Configuration Example Interconnecting a Layer 2 Circuit with a Layer 2 VPN Copyright © 2017, Juniper Networks, Inc. All rights reserved. The information in this document is current as of the date on the title page. YEAR 2000 NOTICE Juniper Networks hardware and software products are Year 2000 compliant. Junos OS has no known time-related limitations through the year 2038. However, the NTP application is known to have some difficulty in the year 2036. END USER LICENSE AGREEMENT The Juniper Networks product that is the subject of this technical documentation consists of (or is intended for use with) Juniper Networks software. Use of such software is subject to the terms and conditions of the End User License Agreement (“EULA”) posted at http://www.juniper.net/support/eula.html. By downloading, installing or using such software, you agree to the terms and conditions of that EULA.
    [Show full text]
  • MPLS Layer 3 VPN Hamid Khanpour (Bachelor’S Degree in Electronic and Telecommunication)
    ISEL INSTITUTO SUPERIOR DE ENGENHARIA DE LISBOA SERVIÇO DE DOCUMENTAÇÃO E PUBLICAÇÕES INSTITUTO SUPERIOR DE ENGENHARIA DE LISBOA Área Departamental de Engenharia de Electrónica e Telecomunicações e de Computadores MPLS Layer 3 VPN Hamid Khanpour (Bachelor’s degree in Electronic and Telecommunication) Trabalho Final de Mestrado para Obtenção do Grau de Mestre em Engenharia de Electrónica e Telecomunicações Orientador: Professor Doutor Mário Pereira Véstias Júri: Presidente: Professora Doutora Paula Maria Garcia Louro Vogais: Professor Doutor Rui Policarpo Duarte Professor Doutor Mário Pereira Véstias December 2017 ACKNOWLEDGEMENTS First and foremost, I wish to express my most sincere gratitude and appreciation to Professor Doutor Mário Pereira Véstias for his guidance, patience, encouragement and advice that he has provided throughout the development of the project and likewise being an extraordinary mentor. This project would not be nearly as good without his helps and also Professor Doutor Rui Policarpo Duarte. Second, I would like to thank Professor Doutor Manuel Barata and Professor Doutor Edwardo Eusebio for their help and support. I must express my gratitude to my wife, Ukabed has been encouragement and extremely supportive of me throughout this entire process and has made countless sacrifices to help me get to this point. My parents and Dr. Ahmad Shahsavan (my wife’s father), deserve special thanks for their continued support and encouragement. Without such a team behind me, I doubt that I would be in this place today. i ABSTRACT Multiprotocol Label Switching (MPLS) is the principal technology used in Service Provider Networks as this mechanism forwarding packet quickly. MPLS is a new way to increase the speed, capability and service supplying abilities for optimization of transmission resources.
    [Show full text]
  • Comparative Analysis of MPLS Signaling Protocols
    International Journal of Computer Science Trends and Technology (IJCST) – Volume 3 Issue 4, Jul-Aug 2015 RESEARCH ARTICLE OPEN ACCESS Comparative Analysis of MPLS Signaling Protocols Damanjit Kaur [1], Er.Dinesh Kumar[2] Department of Computer Science and Engineering GZS PTU Campus, Bathinda Punjab-India ABSTRACT MPLS is the pioneer in Service Provider Networks. Every service provider use MPLS in its core network for fast label switching. This paper explains MPLS and its signaling protocols i.e. LDP, CR-LDP, RSVP, RSVP-TE. This paper explains every signaling protocol that is used in Multiprotocol Label Switching environment. This paper explains differences between MPLS signaling protocols on the basis of performance and security. Keywords: - MPLS, LDP, RSVP, CR-LDP, TE, LABEL, LSP I. INTRODUCTION Multiprotocol Label Switching(MPLS) is a packet- bits used for Quality of Service(QoS) purposes. Bit 23 is forwarding technology used in high performance the Bottom of Stack(BoS) bit. It is 0, unless the label is telecommunication networks. It is a popular networking bottom label of the stack. Bits 24 to 31 are eight bits used technology that uses labels attached to packets to forward for Time to Live(TTL), just like in IP header. them through the network. Routers forward the traffic by looking at the label and not the destination address, so the A. MPLS Signaling Protocols - packets are forwarded by label switching technique instead MPLS signaling protocols are used for label switching of IP Switching. The fact that the MPLS Labels are used to purposes. A Label Switch Path(LSP) must be set up forward the packets and no longer the destination IP with labels assigned at each hop before forwarding of address has led to the popularity of MPLS.
    [Show full text]
  • Oracle Communications Suite Reference Architecture Overview
    Oracle Communications Suite Reference Architecture Overview December 2007 Version 1.0 PURPOSE STATEMENT: THIS DOCUMENT PROVIDES AN OVERVIEW OF FEATURES AND ENHANCEMENTS INCLUDED IN: •• ORACLE COMMUNICATIONS BILLING AND REVENUE MANAGEMENT 7.3.1 •• ORACLE COMMUNICATIONS NETWORK MEDIATION 5.1 •• ORACLE COMMUNICATIONS ORDER AND SERVICE MANAGEMENT 6.3 •• ORACLE COMMUNICATIONS OBJECTEL 2.10.1 •• ORACLE COMMUNICATIONS SUBSCRIBER AND SERVICE MANAGEMENT 3.1.6 •• ORACLE COMMUNICATIONS ASAP 5.2.2 •• ORACLE COMMUNICATIONS IPSA 5.1.3 •• ORACLE COMMUNICATION AND MOBILITY SERVER 10.1.3 •• ORACLE APPLICATION INTEGRATION ARCHITECTURE FOR COMMUNICATIONS 2.0 •• ORACLE SIEBEL CRM 7.8.2 IN ADDITION TO DESCRIBING CURRENT GENERALLY AVAILABLE PRODUCT RELEASES, THIS DOCUMENT PROVIDES A STATEMENT OF INTENT OF POSSIBLE FUTURE FUNCTIONALITY. IT IS INTENDED SOLELY TO HELP YOU PLAN YOUR I.T. PROJECTS. Oracle Communications Suite Reference Architecture Overview Page 22 DISCLAIMER: THIS DOCUMENT IN ANY FORM, SOFTWARE OR PRINTED MATTER, CONTAINS PROPRIETARY INFORMATION THAT IS THE EXCLUSIVE PROPERTY OF ORACLE. YOUR ACCESS TO AANDND USE OF THIS CONFIDENTIAL MATERIAL IS SUBJECT TO THE TERMS AND CONDITIONS OF YOUR ORACLE SOFTWARE LICENSE AND SERVICE AGREEMENT, WHICH HAS BEEN EXECUTED AND WITH WHICH YOU AGREE TO COMPLY. THIS DOCUMENT AND INFORMATION CONTAINED HEREIN MAY NOT BE DISCLOSED, COPIED, REPRODUCED OR DISTRIBUTED TO ANYONE OUTSIDE ORACLE WITHOUT PRIOR WRITTEN CONSENT OF ORACLORACLE.E. THIS DOCUMENT IS NOT PARPARTT OF YOUR LICENSE AGREEMENT NOR CAN IT BE INCORPORATED INTO ANY CONTRACTUAL AGREEMENT WITH ORACLE OR ITS SUBSIDIARIES OR AFFILIATES. THIS DOCUMENT IS FOR INFORMATIONAL PURPOSES ONLY AND IS INTENDED SOLELY TO ASSIST YOU IN PLANNING FOR THE IMPLEMENTATION AND UPGRADE OF THE PRODUCT FEATURES DESCRIBED.
    [Show full text]
  • Product Overview
    Oracle Communications IP Service Activator™ Version 5.2.4 Product Overview Third Edition December 2008 Copyright © 1997, 2008, Oracle. All rights reserved. The Programs (which include both the software and documentation) contain proprietary information; they are provided under a license agreement containing restrictions on use and disclosure and are also protected by copyright, patent, and other intellectual and industrial property laws. Reverse engineering, disassembly, or decompilation of the Programs, except to the extent required to obtain interoperability with other independently created software or as specified by law, is prohibited. The information contained in this document is subject to change without notice. If you find any problems in the documentation, please report them to us in writing. This document is not warranted to be error-free. Except as may be expressly permitted in your license agreement for these Programs, no part of these Programs may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose. If the programs are delivered to the United States Government or anyone licensing or using the Programs on behalf of the United States Government, the following notice is applicable: U.S. GOVERNMENT RIGHTS Programs, software, databases, and related documentation and technical data delivered to U.S. Government customers are "commercial computer software" or "commercial technical data" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, use, duplication, disclosure, modification, and adaptation of the Programs, including documentation and technical data, shall be subject to the licensing restrictions set forth in the applicable Oracle license agreement, and, to the extent applicable, the additional rights set forth in FAR 52.227-19, Commercial Computer Software--Restricted Rights (June 1987).
    [Show full text]
  • Comparative Analysis of MPLS Layer 3Vpn and MPLS Layer 2 VPN Umar Bashir Sofi [1], Er
    International Journal of Computer Science Trends and Technology (IJCST) – Volume 3 Issue 3, May-June 2015 RESEARCH ARTICLE OPEN ACCESS Comparative Analysis of MPLS Layer 3vpn and MPLS Layer 2 VPN Umar Bashir Sofi [1], Er. Rupinder Kaur Gurm [2] Department of Computer Science and Engineering [1] PTU/RIMT Institute of Engineering and Technology Sirhind Side Mandi Gobindgarh Punjab – India ABSTRACT MPLS is the prime technology used in Service Provider Networks as fast packet forwarding mechanism. It is the technology used in service Provider networks to connect different remote sites. MPLS can be used to transport any kind of data whether it is layer 2 data such as frame relay, Ethernet, ATM data etc or layer 3 data such as IPV4, IPV6. MPLS creates two type of VPNs. One is Layer 3 MPLS VPN and other one is Layer 2 MPLS VPN. In Layer 3 MPLS VPN, customer forms IP neighbor ship with Service Provider device. In Layer 3 VPN routing is performed between customer edge device and Provider Edge device. Layer 2 VPNs behave like the customer sites are connected using a Layer 2 Switch. Various L2 MPLS VPN techniques are Virtual Private LAN Service (VPLS), Virtual Private Wire Service (VPWS), and Ethernet VPN. This paper gives an overview of all these L2 and L3 MPLS VPN technologies Keywords:- MPLS, LDP, VRF, RD, RT, VPWS/AToM, VPLS, L3 MPLS VPN I. INTRODUCTION MPLS is a packet forwarding mechanism that uses labels to create both Layer 2 and Layer 3 MPLS VPNs. MPLS also forward packets. Labels are attached to packets and a label provides many more benefits like Traffic Engineering, use of mapping is done from one edge router of provider to other one unified network infrastructure, optimal traffic flow, better edge router of provider.
    [Show full text]
  • MPLS and MPLS Vpns: Basics for Beginners Christopher Brandon Johnson
    MPLS and MPLS VPNs: Basics for Beginners Christopher Brandon Johnson Abstract Multi Protocol Label Switching (MPLS) is a core networking technology that operates essentially in between Layers 2 and 3 of the OSI model; for this reason, MPLS has been referred to as operating at Layer 2.5. MPLS can overlay existing technologies such as ATM (Asynchronous Transfer Mode) or Frame Relay, or it can operate in an entirely IP native environment; this can allow users to take advantage of existing CPE (Customer Premises Equipment) while making a move towards converging all network traffic, such as data, video and voice, at a pace that users can accommodate and afford. MPLS provides its users a number of advantageous features such as traffic engineering, network convergence, failure protection, and the ability to guarantee Quality of Service (QoS) over IP. MPLS Vans take advantage of the inherent characteristics of MPLS to provide secure data networking, typically for business users, in conjunction with other VPN technologies to help increase scalability while keeping costs at a manageable level. This paper should help to provide a basic understanding of MPLS technology, its advantages and limitations, and its application as an IP VPN. Introduction to Multi Protocol Label Switching Frame Relay and Asynchronous Transfer Mode (ATM) have been the benchmarks for transmitting data quickly and securely thru point-to-point connections. This is established by utilizing Private Virtual Circuits (PVC’s) between all the end user locations, or respective hub locations, creating a mesh topology. This is an effective, secure way to transmit especially when the traffic has specific bandwidth requirements such as IP Telephony and live video.
    [Show full text]