Overlay MP
Overlay MP
Overlay MP
Agenda
• What is overlay routing?
• How is it implemented in the Viptela Overlay Network
• Role of Overlay Management Protocol (OMP)
• Types of routes advertised in OMP
• OMP routes
• TLOC routes
• Network-service routes
• Route redistribution
• Site-local to OMP
• OMP to site-local
• Best path algorithm
• Example configuration
• Lab setup
2 Viptela Confidential
What is Overlay Routing?
3 Viptela Confidential
Overlay Routing in Viptela SEN
4 Viptela Confidential
Overlay Routing in Viptela SEN
OMP learns and translates routing information across the VPN overlay
Static
Routes
Connected
Routes D2
D1
Overlay Routing
S1
S3
OSPF BGP
Routes Routes
5 Viptela Confidential
OMP: Details
System IP:
172.1.160.16
DTLS
Service
vEdge vEdge
S1 S3
6 Viptela Confidential
OMP Routes Advertised
7 Viptela Confidential
Types of OMP Routes
.1
.2 100.0.100.1
VPN1
D2
Transport TLOC: 172.1.100.6, Color
gold
3. Firewall routes
S1
TLOC: 172.1.10.1 , Color 2. TLOCs
gold
1. OMP Service-side
routes
Transport
S3
TLOC: 172.1.30.3, Color
VPN1 VPN1 gold
OSPF
10.2.50.0/24
8 Viptela Confidential
1. OMP Routes
Some Attributes:
• TLOC: System-IP of route originator + color
• Site-id: Site identifier of route
• VPN-id: VPN identifier of route
• Tag: optional transitive path attribute
• Preference: Degree of preference for a route
• Originator ID: Originator of route
• Origin: Protocol + metric
9 Viptela Confidential
1. OMP Routes
Step 5: OMP
redistributes
routes to each
VPN1
site if
configured
Transpor
t
S1
WAN IP:
TLOC: 1.1.17.16 Step 2:
vSmart learns
OSPF route
Step 3:
vSmart
S1
applies route
WAN IP:
policies
TLOC: 1.1.7.11
OMP Service-side routes
Step 1: OMP
S3
learns OSPF Step 4:
Transport WAN IP:
route vSmart TLOC: 1.1.12.13
reflects
VPN1 routes to VPN1
other sites
OSPF
10.2.50.0/24
10 Viptela Confidential
2. TLOC Routes
• Tag
• Site-id
• Encap type Internet (VM12)
MPLS(VM14)
11 Viptela Confidential
3. Network-service routes
12 Viptela Confidential
Route Redistribution
S1
WAN IP:
TLOC: 1.1.7.11
Service
OSPF
10.2.50.0/24
13 Viptela Confidential
Route Redistribution
S1
WAN IP:
TLOC: 1.1.7.11
Service
OSPF
10.2.50.0/24
14 Viptela Confidential
vSmart: Best Path Algorithm and Loop-Avoidance
15 Viptela Confidential
Network Segmentation
VPN 1 VPN 2
Transport D2
TLOC: 1.1.17.16,
gold
S1
TLOC: 1.1.7.11 , S3
gold TLOC: 1.1.12.13,
Transport
gold
16 Viptela Confidential
Network Segmentation
Extranets
VPN 1
D2
TLOC: 1.1.17.16,
gold
S1
TLOC: 1.1.7.11 ,
gold S3
TLOC: 1.1.12.13,
gold
VPN 2 VPN 3
10.2.50.0/24 10.0.100.0/24
17 Viptela Confidential
Example 1: Setup Basic OSPF on vEdge Router
Configuration example
interface ge3/0
exit Transport
exit
Service
!
! OSPF
10.2.50.0/24
18 Viptela Confidential
Operational Commands for Unicast Routing
19 Viptela Confidential
Lab Configuration
Configure
1. Configure OSPF on site-local routers vm9,vm10 and vm11
2. Configure OSPF on vEdge routers
• Configure OSPF on each interface in VPN 1
• Redistribute OMP on S1, S3, D1, D3
20 Viptela Confidential
OSPF vm9, vm10, vm11 Configuration
21 Viptela Confidential
Lab Configuration
Show commands
1. Verify Overlay is working and all sites are up
• Show omp summary
• Show omp peers
2. Confirm OSPF routes are learnt and installed
• Show ip routes
• Show omp routes
3. Confirm that S1,S3,D1,D3 are distributing OMP routes
• On routers VM9,VM10,VM11 do, show ip route
22 Viptela Confidential