Designing MPLS Layer 3 Site-to-Site VPNs | Part II: Site-to-Site VPNs

Multiprotocol Label Switching (MPLS) Layer 3 VPNs are (predominantly) service-provider-provisioned VPNs that offer advantages such as any-to-any connectivity, support for real-time applications such as voice and video, and WAN routing simplicity for customers.

You can provision MPLS Layer 3 VPNs over an MPLS backbone network or an IP back-bone network (using GRE, L2TPv3, or other tunneling technologies). Unless otherwise specified, this chapter assumes that they are provisioned over an MPLS backbone.

Note

MPLS Layer 3 VPNs are described in RFC 4364. They were formerly described in Internet Draft draft-ietf-l3vpn-rfc2547bis (RFC2547bis).

Figure 4-1 illustrates an MPLS backbone with two customer VPNs.

Figure 4-1. Simple MPLS Layer 3 VPNs

Figure 4-1 shows an MPLS backbone network and two customer VPNs:

mjlnet_VPN
cisco_VPN

Each customer VPN has two sites.

Part I: Understanding VPN Technology

What Is a Virtual Private Network?

Part II: Site-to-Site VPNs

Designing and Deploying L2TPv3-Based Layer 2 VPNs

Designing and Implementing AToM-Based Layer 2 VPNs

Designing MPLS Layer 3 Site-to-Site VPNs

Designing MPLS Layer 3 Site-to-Site VPNs
Advantages and Disadvantages of MPLS Layer 3 VPNs
MPLS Layer 3 VPNs Overview
A Detailed Examination of MPLS Layer 3 VPNs
Deploying MPLS Layer 3 VPNs
Summary
Review Questions

Advanced MPLS Layer 3 VPN Deployment Considerations

Deploying Site-to-Site IPsec VPNs

Scaling and Optimizing IPsec VPNs

Part III: Remote Access VPNs

Designing and Implementing L2TPv2 and L2TPv3 Remote Access VPNs

Designing and Deploying IPsec Remote Access and Teleworker VPNs

Designing and Building SSL Remote Access VPNs (WebVPN)

Part IV: Appendixes

Designing and Building SSL Remote Access VPNs (WebVPN)

Appendix B. Answers to Review Questions