Designing MPLS Layer 3 Site-to-Site VPNs

Multiprotocol Label Switching (MPLS) Layer 3 VPNs are (predominantly) service-provider-provisioned VPNs that offer advantages such as any-to-any connectivity, support for real-time applications such as voice and video, and WAN routing simplicity for customers.

You can provision MPLS Layer 3 VPNs over an MPLS backbone network or an IP back-bone network (using GRE, L2TPv3, or other tunneling technologies). Unless otherwise specified, this chapter assumes that they are provisioned over an MPLS backbone.


MPLS Layer 3 VPNs are described in RFC 4364. They were formerly described in Internet Draft draft-ietf-l3vpn-rfc2547bis (RFC2547bis).

Figure 4-1 illustrates an MPLS backbone with two customer VPNs.

Figure 4-1. Simple MPLS Layer 3 VPNs

Figure 4-1 shows an MPLS backbone network and two customer VPNs:

  • mjlnet_VPN
  • cisco_VPN

Each customer VPN has two sites.

Part I: Understanding VPN Technology

What Is a Virtual Private Network?

Part II: Site-to-Site VPNs

Designing and Deploying L2TPv3-Based Layer 2 VPNs

Designing and Implementing AToM-Based Layer 2 VPNs

Designing MPLS Layer 3 Site-to-Site VPNs

Advanced MPLS Layer 3 VPN Deployment Considerations

Deploying Site-to-Site IPsec VPNs

Scaling and Optimizing IPsec VPNs

Part III: Remote Access VPNs

Designing and Implementing L2TPv2 and L2TPv3 Remote Access VPNs

Designing and Deploying IPsec Remote Access and Teleworker VPNs

Designing and Building SSL Remote Access VPNs (WebVPN)

Part IV: Appendixes

Designing and Building SSL Remote Access VPNs (WebVPN)

Appendix B. Answers to Review Questions

Comparing, Designing, and Deploying VPHs
Comparing, Designing, and Deploying VPNs
ISBN: 1587051796
EAN: 2147483647
Year: 2007
Pages: 124
Authors: Mark Lewis © 2008-2020.
If you may any questions please contact us: