当前位置:首页>> >>


跨域BGPMPLSVPN方案设计与实现.rar

收藏

资源目录
    文档预览:
    编号:20180913212856433    类型:共享资源    大小:4.14MB    格式:RAR    上传时间:2018-09-13
    尺寸:148x200像素    分辨率:72dpi   颜色:RGB    工具:   
    50
    金币
    关 键 词:
    跨域 BGPMPLSVPN 方案设计 实现
    资源描述:
    成都学院学士学位论文(设计)跨域 BGP/MPLS VPN 方案设计与实现专 业:网络工程 学 号:200810420140学 生:陈天云 指导教师:张修军摘要:论文分析了现存的 MPLS VPN 解决方案,重点阐述了跨域 BGP/MPLS VPN OPTION C 相关技术。采用该技术,ASBR 路由器不再处理路由信息,由 PE 路由器之间直接交换 VPN 信息。该技术减轻了 LSR 路由器处理路由的负担,增强了 MPLS 标签转发的速度,提高了整个 MPLS VPN 网络的转发效率。本文以此技术为某公司设计并实现了一个可靠稳定的 BGP/MPLS VPN 网络,此网络既能满足部分系统之间的数据隔离,又能实现部分系统之间的数据互访。BGP/MPLS VPN 技术使该公司在未来 VPN 业务大量接入的情况下,核心网络不会受较大影响。VPN 业务接入规模越大,越能充分发挥 LSR 路由器处理标签的能力。该技术适合于大型网络,并能提供多种 VPN 业务接入,完全符合该公司的网络需求。最后本文在 GNS3 模拟器上成功模拟了跨域 BGP/MPLS VPN OPTION C 方案,实现了 MPLS 标签的高速转发。此论文所提出的技术对运营商及企业的大规模VPN 业务接入具有一定的借鉴意义。关键词:虚拟专用网络;跨域;BGP;MPLS VPN成都学院学士学位论文(设计)Cross-Domain BGP/MPLS VPN Design and ImplementationSpecialty: Network Engineering Student Number: 200810420140Student: Chen Tianyun Supervisor: Zhang XiuJunAbstract: The thesis analyzes the existing MPLS VPN solution, and focuses on elaborating the cross-domain BGP/MPLS VPN the OPTION C and related technologies. Using the technology, ASBR routers need not to process the route information, and VPN information is exchanged by PE routers directly. The technology reduces the burden of the routers LSR processing the routing, enhances the speed of its MPLS label forwarding, and improves the efficiency of forwarding for entire MPLSVPN network. This thesis uses this technology, to design a reliable and stable network for a company, not only to realize the isolation of data between parts of the systems, but also to realize data exchange visits between them. When a large number of VPN service is accessing, the core network will not be affected much. The larger the scale of the VPN service access, the more it can give full play to the ability of the LSR router of handling the label. The technique is suitable for large network, and can provide a variety of VPN service access, fully in line with the company's network needs. Finally, this thesis successfully simulates BGP/MPLS VPN program in GNS3 simulator, and realizes High-speed forwarding of MPLS label. The technology this thesis discusses provides a valuable reference for today's large-scale VPN business for operators and companies.Key words: VPN; Cross-Domain; BGP; MPLS VPN成都学院学士学位论文(设计)I目 录绪 论 ........................................................................................................................................................11 MPLS VPN 技术简介 ...........................................................................................................................31.1 MPLS 介绍 .....................................................................................................................................31.2 MPLS 体系结构 .............................................................................................................................31.3 MPLS 基本工作流程 .....................................................................................................................41.4 MPLS 封装格式与标签 .................................................................................................................41.5 MPLS 标签分配和分发 .................................................................................................................51.6 MPLS 的优点 .................................................................................................................................62 BGP MPLS VPN 技术简介 ..................................................................................................................72.1 BGP MPLS VPN 跨域技术产生的背景 ........................................................................................72.2 为什么选 MPLS.............................................................................................................................72.3 为什么选 BGP................................................................................................................................72.4 BGP MPLS VPN 概述 ....................................................................................................................82.5 BGP MPLS VPN 基本概念 ............................................................................................................92.5.1 Site .......................................................................................................................................92.5.2 VPN 实例 .............................................................................................................................92.5.3 VPN、Site 和 VPN 实例的关系 ......................................................................................102.5.4 VPN-IPV4 地址 .................................................................................................................102.5.5 RD ......................................................................................................................................102.5.6 Route Target.......................................................................................................................112.5.7 MP-BGP.............................................................................................................................112.5.8 路由策略 ...........................................................................................................................112.5.9 隧道策略 ...........................................................................................................................122.6 BGP MPLS VPN 的报文转发 ......................................................................................................122.7 跨域方案 ......................................................................................................................................132.7.1 Inter-Provider Option A.....................................................................................................132.7.2 Inter-Provider Option B .....................................................................................................142.7.3 Inter-Provider Option C .....................................................................................................152.8 BGP MPLS 分层 PE 技术简介 ....................................................................................................163 XX 公司网络总体方案设计 ..............................................................................................................193.1 项目概述 ......................................................................................................................................19成都学院学士学位论文(设计)II3.2 网络方案设计原则 ......................................................................................................................193.3 网络拓扑 ......................................................................................................................................223.4 网络设备选型 ..............................................................................................................................243.4.1 核心路由器(P) ............................................................................................................243.4.2 汇聚路由器(PE) ...............................................................................................................273.4.3 接入路由器(CE) ...............................................................................................................303.4.4 接入交换机 .......................................................................................................................353.5 网络设备命名方案 ......................................................................................................................383.6 各节点业务接入 ..........................................................................................................................424 路由协议规划 ....................................................................................................................................464.1 OSPF ROUTER ID 规划 ..................................................................................................................464.2 OSPF AREA 规划 ..........................................................................................................................464.3 在 OSPF 路由中重分发其它路由协议 ......................................................................................484.4 在 OSPF 中统一接口 COST 值 ..................................................................................................485 BGP 路由协议规划 ............................................................................................................................495.1 AS 号划分 ....................................................................................................................................495.2 路由反射器的规划 ......................................................................................................................496 IP 地址分配方案 .................................................................................................................................516.1 XX 公司 IP 地址分配表 ..............................................................................................................516.2 设备 LOOPBACK 地址的分配 ......................................................................................................537 业务接入方案设计 ............................................................................................................................557.1 总体规划原则 ..............................................................................................................................557.2 核心层节点业务系统接入方案 ..................................................................................................557.3 汇聚层节点业务接入方案 ..........................................................................................................567.4 接入层节点业务接入方案 ..........................................................................................................578 BGP MPLS VPN 设计和配置 ............................................................................................................588.1 VPN 部署方案 ..............................................................................................................................588.2 VPN 相关公共资源规划 ..............................................................................................................588.3 RT—ROUTETARGET 命名规则 ....................................................................................................588.4 层 PE 方式部署 MPLS VPN.......................................................................................................598.5 跨域方案的选择 ..........................................................................................................................608.6 LOOPBACK 地址的使用 ................................................................................................................619 QOS 部署方案 ....................................................................................................................................62成都学院学士学位论文(设计)III9.1 QOS 部署方案 ..............................................................................................................................6210 网络管理方案 ..................................................................................................................................6410.1 总体需求 ....................................................................................................................................6410.2 H3C IMC 智能管理中心平台 ....................................................................................................6410.3 H3C IMC MVM MPLS VPN 管理系统 .....................................................................................6611 网络安全方案 ..................................................................................................................................7111.1 通过 BGP MPLS VPN 确保不同类型业务及地域之间的有效隔离 ......................................7111.2 网络设备采用认证登录 ............................................................................................................7111.3 限制 TELNET 用户访问权限 .....................................................................................................7111.4 路由信息交换需要认证 ............................................................................................................7111.5 所有网络设备重要事件日志记录 ............................................................................................7212 网络设备配置模板 ..........................................................................................................................7312.1 配置模板网络拓扑 ....................................................................................................................7312.2 配置模板 ....................................................................................................................................7312.3 配置注意事项 ............................................................................................................................8113 仿真跨域 BGP MPLS VPN 技术 ....................................................................................................8213.1 仿真目的 ....................................................................................................................................8213.2 仿真环境 ....................................................................................................................................8213.3 仿真网络拓扑 ............................................................................................................................8213.4 仿真网络设备配置 ....................................................................................................................8313.5 仿真结果 ....................................................................................................................................83结 论 ......................................................................................................................................................86附 录 ......................................................................................................................................................87参考文献 ................................................................................................................................................99致 谢 ....................................................................................................................................................100成都学院学士学位论文(设计)1绪 论随着计算机网络的进步与发展,运营商和企业组网的方式越来越多,使互联网开展到了各家各户,人们上网也越来越方便。紧随而来的网络安全问题却一直困扰着大家,尤其是网络病毒,广播风暴,ARP 欺骗等问题,经常导致网络故障,特别是企业现在办公越来越自动化,离不开计算机,更离不开网络。所以网络安全已是一个迫在眉睫的问题。什么样的组网方式才能使网络更安全呢?大家可能第一时间想到 VPN,架设在公用网络服务商所提供的网络平台之上的逻辑网络,用户数据在逻辑链路中传输,而且 VPN 隧道中传输的数据都是加密过的。但是 VPN 需要在用户的两端都需要有 VPN 设备(费用昂贵) ,而且每条隧道都需要手动建立,对于运营商和企业来说,手动来建立每一条隧道,这是不太现实的。针对现阶段网络安全的需要,本文提出了“跨域 BGP/MPLS VPN”的解决方案。本方案旨在为运营商、企业部署安全的网络提供全面解决方案,实现 VPN 隧道的动态建立,跨域 BGP/MPLS VPN 方案针对动态建立 VPN 隧道,并对数据加密这一特点,可在网络建设过程中有效的减少人力资源的投入,简化网络结构,大幅度降低网络建设的成本以及后期网络运营和维护的成本,提高网络建设的效率。国内外在提供服务的骨干网络中,跨越不同服务提供商管理边界的跨域部署成为必然的要求。跨域 VPN 的建立过程经过近几年的实践和快速发展,业界提出了几种VPN 跨域方法,即 OPTION A/B/C 三种。MPLS VPN 可以分为 MPLS/BGP 三层 VPN和 MPLS L2VPN,两种 VPN 都支持上述的三种跨域方法,采用相同的跨域理念。MPLS VPN 跨域技术突破单个服务提供商管理域的限制,扩展了 MPLS VPN 架构的灵活性,使得部署方式满足了不断扩展的网
    展开阅读全文
    1
      金牌文库所有资源均是用户自行上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作他用。
    0条评论

    还可以输入200字符

    暂无评论,赶快抢占沙发吧。

    关于本文
    本文标题:跨域BGPMPLSVPN方案设计与实现.rar
    链接地址:http://www.gold-doc.com/p-139163.html
    关于我们 - 网站声明 - 网站地图 - 资源地图 - 友情链接 - 网站客服客服 - 联系我们
    copyright@ 2014-2018 金牌文库网站版权所有
    经营许可证编号:浙ICP备15046084号-3
    收起
    展开