Advanced VPNs
Course No: EDU-JUN-VPN
Length: Three days
Cost: $2,025 (US)
Schedule and Registration:
> Register Americas
> Register EMEA
> Register APAC
Course Overview
This advanced course focuses on designing, deploying, and troubleshooting Layer 2 and Layer 3 provider-provisioned MPLS virtual private networks (VPNs).
Objectives
This is an intensive hands-on workshop, with students participating in a variety of configuration and troubleshooting scenarios. Each student team controls its own provider-edge (PE) and customer-edge (CE) router pairing, with the class sharing three provider routers that form the provider core.
Intended Audience
The primary audiences for this course include personnel who are responsible for the provisioning, deployment, and troubleshooting of provider-provisioned MPLS VPNs based on Juniper Networks M-series and T-series routers.
Course Level
This is an advanced-level course.
Prerequisites
Students should either have taken the Configuring Juniper Networks Routers class or have the equivalent experience from working with JUNOS Internet software in a production environment. A working knowledge of OSPF or IS-IS, BGP4, JUNOS policy, and MPLS is required for the hands-on portions of this workshop.
Course Contents
Day 1
Module 0: Introduction and Overview
Module 1: Introduction to VPNs
- Overview of VPNs
- CPE-Based VPNS
- Provider-Provisioned VPNs
- IETF Standards Update
- Conclusions
- Lab 1: General Setup
Module 2: Virtual and Logical Routers
- Routing Instances
- Virtual Routers
- Logical Routers
Module 3: Layer 3 VPNs
- RFC 4364 Terminology
- VPN-IPv4 Address Structure
- Optional Characteristics
Module 4: Basic Layer 3 VPN Configuration with JUNOS Software
- Preliminary Steps
- PE Configuration
- Lab 2: RSVP Signaling, Static, and BGP Routing
Module 5: Troubleshooting Layer 3 VPNs
- A Layered Approach
- The vpn-interface Switch
- PE– and CE–Based Traceroutes
- Viewing VRF Tables and PE-PE Signaling Flow
- Monitoring PE-CE Routing Protocols
Day 2
Module 6: Layer 3 VPN Scaling and Internet Access
- Scaling RFC 4364
- Public Internet Access Options
- Lab 3: Route Reflection and Internet Access
- Lab 4: LDP over RSVP Tunnels
Module 7: Layer 3 VPN Interprovider Backbones
- Carrier of Carriers
- Interprovider VPNs
- Public Internet Access Options
- Lab 5: Carrier of Carriers
Module 8: Layer 3 VPNs–Advanced Topics
- Sharing Routes between VRFs on the Same PE Router
- Hub-and-Spoke Technologies
- Multicast
- Layer 3 VPN CoS Options
- GRE Tunneling
- IPSec/RFC 4364 Integration
- Lab 6: Hub and Spoke (Optional)
Module 9: Layer 2 VPNs (Kompella)
- Overview of Layer 2 Provider-Provisioned VPNs
- Draft-Kompella Operational Model: Control
- Draft-Kompella Operational Model: Data Forwarding
Day 3
Module 10: Layer 2 VPN Configuration and Troubleshooting (Kompella)
- Preliminary Layer 2 VPN Configuration
- Layer 2 VPN Configuration
- Troubleshooting Layer 2 VPNs
- Lab 7: Layer 2 VPNS–Kompella
Module 11: Layer 2 VPN Scaling and CoS
- Review of VPN Scaling Mechanisms
- Layer 2 VPNs and CoS
Module 12: Layer 2 VPNs (Martini)
- Draft-Martini Configuration
- l2circuit Configuration
- l2circuit Monitoring and Troubleshooting
- Labs 8 and 9: Layer 2 VPNS–Martini and CCC (Optional)
Appendix A: MPLS Review and Background Information
Appendix B: Virtual Private LAN Service
Appendix C: Additional Features
