CCIE notes – MPLS

Below are some notes from my CCIE written. Hope you enjoy them


MPLS IP Forwarding: Data Plane

– MPLS routers inject (push) or remove (pop) or forwards packets based on labels
– MPLS relies on the CEF while expanding the logic and data structures as well


LSR (Label Switch Router)

– any router that has awareness of MPLS Labels
FIB – used for incoming unlabled packets
LFIB – used for incoming labeled packets

MPLS header and Label
– header of 4 bytes, located before the IP header

MPLS header

EXP – experiemental (used for QoS)
S – bottom of the stack, if “1” it means the label immediatelly preceeding the IP header
TTL – time to live

MPLS TTL filed and MPLS TTL Propagation
-MPLS needs the TTL filed so it can completely ignore the encapsulation of the IP header TTL
– MPLS it only decrements its own TTL

By default this is how MPLS works:

  • Ingress E-LSR – after it decrements the IP TTL field, it copies the IP TTL field into the MPLS TTL filed
  • LSR – when it swaps the label it decrements the MPLS TTL
  • Egress E-LSR – decrements MPLS TTL, and copies the value into the IP TTL

Cisco can be configured to decrement MPLS propagation – when it is disabled, the MPLS TTL is 255 => the entire MPLS network appears as a single HOP, when you issue a traceroute



MPLS Forwarding – Control Plane

MPLS VPNs use 2 control planes: LDP and BGP (MP-BGP)

LDPLabel Distribution Protocol
– used to advertise labels for each prefix in the IP routing table, it says “if you want to send packets to this IP prefix, send them to me with the label listed in the LDP update”
– LDP is striggered by a new IP route in the unicast routing table
1. Pe learns a new unicast IP route
2. PE allocates a new local label ( that doesn’t exist)
3. PE uses LDP to advertise to neigh the mapping between IP prefix and label to all LDP neigh

LSP – Label Switches Path
– unidirectional

MPLS LIB feeding FIB and LFIB
LIB – Label Information Based
LSR – Label Switch routers

LSR – stores labels and related information inside LIB
LIB – stores all labels and associated information, that could be used to forward a packet
– each must pick the best label and outgoing interface to actually use and then populate that information into the FIB and LFIB = > FIB and LFIB have only the best labels

LDP – use HELLO feature to discover LDP neighbors
– multicasts LSR are sent to ( UDP port 646 , TDP uses UDP port 711_
– the HELLO lists the LSR’s LDP ID (2ID) which consists of a 32-bit dotted-decimal number and a 2byte label space number
– can list a “transparent address” in HELLO message, which is the IP address that LSR wants to use for any LDP TCP connection

– after becoming neighbors, they use the unicast address listed in the HELLOs. The address must be present in the IP routint table


LDP reference

LDP Feature LDP Implementation
Transport protocols UDP (Hellos) , TCP (updates)
Port Number 646 (LDP), 711 (TDP)
Hello dest address
Who initates TCP connection highest LDP ID
TCP connection uses this address Transparent IP address (if configurated) or LDP ID if no transparent address is configured
LDP ID determines by these rules, in order of precedance a. Configuration
b. Highest IP address of an up/up loopback interface, when LDP comes up
c. Highest IP address of an up/up non -loopback when LDP comes up




ATM and Frame Relay are replaced by MPLS VPNs
– use MPLS unicast IP forwarding with other ffeature
MPLS VPN – uses MP-BGP to overcome name of the challenges when connecting an IP network to a large nr. of customer IP internetworks

MPLS VPN VRFs – are used so you can have multiple routing tables
Router Roles: CE, PE, P
-both PE and P routers run LDP and an IGP to support unicast IP routing
– the IGP advertises routes only for subnets inside the MPLS networking, with no customer routes included => P and PE routes can together lable switch packets from the ingress PE to egress PE
– to keep track of all the routes from clients (that can override), the PE stores the routes in separate, per-customer routing tables, called VRFs

Then PE use IBGP to exchange the customer routes with other PEs – it never advertises the routes to other P routers
– PE places 2 lables on the packet:
1. An router MPLS header (S-bit = 0 ), with a label value that causes the packet to be label switches to the egress PE 0 used for the MPLS (to be forwarded through the MPLS network)
2. An INNER MPLS header (S-bit=1), with a label that identifies the egress VRF on which to base forwarding decision – used for the VPN (label for VPNs)

MPLS VPN Control Plane
1. VRFs
2. RD (Route Distinguishers)
3. RT (Route Targets)

1. VRFs

– to support multiple customers, MPLS includes the concept of virtual router
– MPLS routers need a minimal of one VRF for each customer attached to that particular router

Each VRF has
a. An IP routing table (RIB)
b. A CEF file, that is populated based on the RIB
c. A separate instance or process of the routing protocol used to exchange routes with the CEs, that need to be supported by the VRFs

MPLS deals with the overlapping prefix problem by adding another number in frount of the original BGP NLRI (prefix)


2. RDs

– allows GP to advertise and distinguish between duplicate IPv4 prefixes
– concept: advertises each prefix as a traditional IPv4 prefix but adds another number (the RD) that uniquely identifies the route
– the new prefix format, called VPNv4, has the following two parts
a. A 64-bit RD
b. A 32-bit IPv4 prefix
-every VRF must be configured with an RD

RD is made of 8 bytes and has 3 formats:

  • 2-byte integer:4-byte-integer
  • 4-byte-integer:2-byte-integer
  • 4-byte-dotted-decimal:2-byte-integer

– in all 3 formats, the 1st value (before the colon) should be either an ASN or an IPv4 address


3. Route Targets (RT)

– are advertised in BGP updates, as BGP extended Community Path Attributes (PAs)
– BGP extended connections are 8 bytes in lenghts
RT values follow the same basic format as the values of an RD; for a particular prefix, only one RD is defined, but i can have one or more RTs
– MPLS use RT to determine into which VRFs a PE places iBGP learned routes
– uses “export” and “import” commands
“export” -redistribute out of the VRF into BGP
“import” -redistribute into the VRF from BGP

Overlapping VPNs
– can support overlapping VPNs by the virtue of the RT concept
– the RT concept allows an MPLS network to leak routes from multiple VPNs into a particular VRF

Configuration of the MPLS. Steps:
1. Create each VRF, RD and RT, plus association to the customer
2. Configure the IGP between PE and CE
3. Configure mutual redistribuition between IGP and BGP
4. Configure MP-BGP between PEs

Other MPLS Applications
1. FEC (Forwarding Equivalence Class)
– a set of packets that receives the same forwarding treatment by a single LSR
2. VRF-Lite – known as Multi-VRF CE, provides multiple instance of IP routing tables in a single router

VRF-Lite without MPLS
– allows two separate IP internetworks into different domains or grouping without req separate routers and without requiring separate physical connections

7 Responses to “ “CCIE notes – MPLS”

  1. For some reason, I use this kind of difficult experience with these drastically captcha requirements. Therefore pleased this particular spot doesnt’ utilize it! You can scarcely read these individuals!
    Cheap Nike Trainers

  2. is there a some sort of detector in which our speak partner will never realize that i actually utilized cams recorder? just simply making certain the following.
    Nike Air Max Mujer

  3. Hi great blog! Does running a blog similar to this take a great deal of work? I have very little understanding of programming however I had been hoping to start my own blog in the near future. Anyhow, if you have any ideas or tips for new blog owners please share. I know this is off subject however I simply wanted to ask. Thanks!

  4. I know this if off topic but I’m looking into starting my own weblog and was curious what all is needed to get set up? I’m assuming having a blog like yours would cost a pretty penny? I’m not very internet savvy so I’m not 100% certain. Any suggestions or advice would be greatly appreciated. Thank you

  5. Write more, thats all I have to say. Literally, it seems as though you relied on the video to make your point. You definitely know what youre talking about, why waste your intelligence on just posting videos to your blog when you could be giving us something enlightening to read?

  6. Hey just wanted to give you a quick heads up and let you know a few of the images aren’t loading correctly. I’m not sure why but I think its a linking issue. I’ve tried it in two different browsers and both show the same outcome.

  7. Heya! I realize this is sort of off-topic however I had to ask. Does managing a well-established blog such as yours take a large amount of work? I’m brand new to operating a blog but I do write in my journal every day. I’d like to start a blog so I can share my experience and feelings online. Please let me know if you have any kind of suggestions or tips for new aspiring blog owners. Thankyou!

Leave a Reply

Your email address will not be published. Required fields are marked *