Friday, July 12, 2013

L2TPv3 Interworking - L2 VPN Saga Continues...


R8#sh ip int b | e una|do
Interface                  IP-Address      OK? Method Status                Protocol
FastEthernet0/0            89.0.0.8        YES NVRAM  up                    up
Loopback0                  8.8.8.8         YES NVRAM  up                    up

R8#sh run | s r o
router ospf 1
 log-adjacency-changes
 network 0.0.0.0 255.255.255.255 area 0


R9#sh ip int b | e una|do
Interface                  IP-Address      OK? Method Status                Protocol
Serial1/0                  89.0.0.9        YES NVRAM  up                    up
Loopback0                  9.9.9.9         YES NVRAM  up                    up

R9#sh run | s r o
router ospf 1
 log-adjacency-changes
 network 0.0.0.0 255.255.255.255 area 0

R9#sh run int s1/0
Building configuration...

Current configuration : 132 bytes
!
interface Serial1/0
 ip address 89.0.0.9 255.255.255.0
 encapsulation ppp
 ip ospf network broadcast

 serial restart-delay 0
end


R2#sh ip int b | e una|do
Interface                  IP-Address      OK? Method Status                Protocol
FastEthernet0/0            12.0.0.2        YES NVRAM  up                    up
FastEthernet0/1            23.0.0.2        YES NVRAM  up                    up
Loopback0                  2.2.2.2         YES NVRAM  up                    up

R2#sh run | s r e
router eigrp 100
 network 0.0.0.0
 no auto-summary

R2#sh ip ro e
     1.0.0.0/32 is subnetted, 1 subnets
D       1.1.1.1 [90/409600] via 12.0.0.1, 00:10:30, FastEthernet0/0
     3.0.0.0/32 is subnetted, 1 subnets
D       3.3.3.3 [90/409600] via 23.0.0.3, 00:10:10, FastEthernet0/1

R2#sh mpls forwarding
Tag switching is not operational.
CEF or tag switching has not been enabled.
No TFIB currently allocated.



R1#sh run | s pseudo
pseudowire-class L2TPv3
 encapsulation l2tpv3
 interworking ip
 ip local interface Loopback0


R1#sh run int f2/1
Building configuration...

Current configuration : 124 bytes
!
interface FastEthernet2/1
 no ip address
 speed auto
 duplex auto
 no keepalive
 xconnect 3.3.3.3 13 pw-class L2TPv3
end


R3#sh run | s pseudo
pseudowire-class L2TPv3
 encapsulation l2tpv3
 interworking ip
 ip local interface Loopback0


R3#sh run int s1/1
Building configuration...

Current configuration : 122 bytes
!
interface Serial1/1
 no ip address
 encapsulation ppp
 serial restart-delay 0
 xconnect 1.1.1.1 13 pw-class L2TPv3
end


R8#sh ip ospf nei

Neighbor ID     Pri   State           Dead Time   Address         Interface
9.9.9.9           1   FULL/DR         00:00:37    89.0.0.9        FastEthernet0/0

R8#sh ip ro os
     9.0.0.0/32 is subnetted, 1 subnets
O       9.9.9.9 [110/11] via 89.0.0.9, 00:13:00, FastEthernet0/0

R8#ping 9.9.9.9 so lo0

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 9.9.9.9, timeout is 2 seconds:
Packet sent with a source address of 8.8.8.8
.!!!!
Success rate is 80 percent (4/5), round-trip min/avg/max = 88/120/180 ms


R1#sh l2tp tunnel all

L2TP Tunnel Information Total tunnels 1 sessions 1

Tunnel id 1100418086 is up, remote id is 2518749472, 1 active sessions
  Remotely initiated tunnel
  Tunnel state is established, time since change 00:14:48
  Tunnel transport is IP  (115)
  Remote tunnel name is R3
    Internet Address 3.3.3.3, port 0
  Local tunnel name is R1
    Internet Address 1.1.1.1, port 0
  L2TP class for tunnel is l2tp_default_class
  Counters, taking last clear into account:
    111 packets sent, 107 received
    9008 bytes sent, 8752 received
    Last clearing of counters never
  Counters, ignoring last clear:
    111 packets sent, 107 received
    9008 bytes sent, 8752 received
  Control Ns 9, Nr 13
  Local RWS 1024 (default), Remote RWS 1024
  Control channel Congestion Control is disabled
  Tunnel PMTU checking disabled
  Retransmission time 1, max 1 seconds
  Unsent queuesize 0, max 0
  Resend queuesize 0, max 1
  Total resends 0, ZLB ACKs sent 11
  Total out-of-order dropped pkts 0
  Total out-of-order reorder pkts 0
  Total peer authentication failures 0
  Current no session pak queue check 0 of 5
  Retransmit time distribution: 0 0 0 0 0 0 0 0 0
  Control message authentication is disabled


R1#sh l2tun session all

L2TP Session Information Total tunnels 1 sessions 1

Session id 3278375310 is up, logical session id 65537, tunnel id 1100418086
  Remote session id is 1558878854, remote tunnel id 2518749472
  Remotely initiated session
  Unique ID is 1
Session Layer 2 circuit, type is Ethernet, name is FastEthernet2/1
  Session vcid is 13
  Interworking type is IP
  Circuit state is UP

    Local circuit state is UP
    Remote circuit state is UP

Call serial number is 1168000001
Remote tunnel name is R3
  Internet address is 3.3.3.3
Local tunnel name is R1
  Internet address is 1.1.1.1
IP protocol 115
  Session is L2TP signaled

  Session state is established, time since change 00:15:43
    117 Packets sent, 113 received
    9488 Bytes sent, 9232 received
  Last clearing of counters never
  Counters, ignoring last clear:
    117 Packets sent, 113 received
    9488 Bytes sent, 9232 received
    Receive packets dropped:
      out-of-order:             0
      other:                    0
      total:                    0
    Send packets dropped:
      exceeded session MTU:     0
      other:                    0
      total:                    0
  DF bit off, ToS reflect disabled, ToS value 0, TTL value 255
  Sending UDP checksums are disabled
  Received UDP checksums are verified
  No session cookie information available
  FS cached header information:
    encap size = 24 bytes
    45000014 00000000 ff73b36f 01010101
    03030303 5cea9a86
  Sequencing is off
  Conditional debugging is disabled
  SSM switch id is 4096, SSM segment id is 8193


 Final Config - http://www.4shared.com/rar/T4TwmRG7/Interworking.html 

Further Readings:

http://www.cisco.com/en/US/docs/ios-xml/ios/mp_l2_vpns/configuration/15-2mt/mp-l2vpn-intrntwkg.html#GUID-E774CB40-066C-4B3F-8E1E-BEBCBED1087C

http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fsinterw.html#wp1057606

http://blog.ine.com/2008/01/28/poor-mans-vpls/


HTH...
Deepak Arora
Evil CCIE






2 comments:

  1. Im issuing a problem if using serial interface when using xconnect command, i got notification like this

    "Interworking specified in pw-class is not supported on this interface"

    but if using ethernet interface is works fine.

    i had search on google, i have to change the mtu to 1500 but still not working. i had tested your gns3 file, but still not working the problem occure same as on the top.

    Thanks

    ReplyDelete
  2. It might be an IOS limitation or platform you are using in GNS. I tested this with 12.2S on 7200 if I recall correctly.

    ReplyDelete