Cisco Systems OL-4344-01 manual About Cisco IP Solution Center

Page 1

C H A P T E R 1

About Cisco IP Solution Center

Cisco IP Solution Center (ISC) is a carrier-class network and service-management solution for the rapid and cost-effective delivery of IP services. IP based services targeted to enterprise customers can represent major revenue opportunities for service providers. Success in this highly competitive market requires the ability to effectively plan, provision, operate, and bill for such IP services.

Deploying and offering MPLS VPN services for enterprise customers requires planning of network resources, deploying, maintaining and finally configuring the network elements and services. This manual procedure can be time consuming and not accurate. A service provider needs to automate all these steps in order to be stay competitive in this high-touch market.

Figure 1-1shows all the major elements and devices that a service provider can employ to fully deploy ISC MPLS VPN management services.

A customer edge router (CE) is connected to a provider edge router (PE) in such a way that the customer’s traffic is encapsulated and transparently sent to other CEs, thus creating a virtual private network. CEs advertise routes to the VPN for all the devices in their site. The ISC provisioning engine accesses the configuration files on both the CE and PE to compute the necessary changes to those files that are required to support the service on the PE-CE link.

Figure 1-1 ISC MPLS VPN Management in the Service Provider Network

Management PE

Service Provider

network

ISC network management subnet

IP Solution

 

Processing

Center

 

server

 

 

 

 

 

 

 

 

 

 

89996

 

PE

Management VPN

Management CE

 

 

Collection

Collection

 

 

 

 

CE 1

 

server

server

 

 

 

 

 

 

CE

PE 1

Service provider

PE 2

 

MPLS core

CE 2

Multi-VRF

 

 

 

 

 

 

CE

 

 

 

CE 5

CE 4

CE 3

Catalyst

Catalyst 3550

2950 switch

Ethernet switch

Cisco IP Solution Center, 3.0: MPLS VPN Management User Guide, 3.0

 

OL-4344-01

1-1

 

 

 

Image 1
Contents About Cisco IP Solution Center ISC Network Management Subnet Overview of ISCISC Features Service Provider Network for Vlan ID Management Resource Pools Access Domain AssignedVPN Service Profile-Based Provisioning Features and Functions Provided in Provisioning with ISCRole-Based Access Control Rbac CPE Customer’s View of the Network Customer’s and Provider’s View of the NetworkAbout Multi-VRF CEs About Provider Edge Routers PEsA Multi-VRF CE Providing Layer 3 Aggregation Mapping IPsec Tunnels to Mpls VPNs Using Templates to Customize Configuration FilesUses for the Template Function Auditing Service RequestsVPNs Sharing Sites About Mpls VPNsIntranets and Extranets Characteristics of Mpls VPNsVPN Routing and Forwarding Tables VRFs Ip vrf site2 rd VRF Implementation ConsiderationsRoute Distinguishers and Route Targets Creating a VRF InstanceCE Routing Communities Route Target CommunitiesHub and Spoke Considerations Address Space and Routing Separation Security Requirements for Mpls VPNsAddress Space Separation Routing SeparationHiding the Mpls Core Structure Securing the Routing Protocol Resistance to AttacksLabel Spoofing Securing the Mpls Core Routing AuthenticationTrusted Devices PE-CE InterfaceSeparation of CE-PE Links LDP AuthenticationConnectivity Between VPNs Security Through IP Address Resolution MP-BGP Security FeaturesEnsuring VPN Isolation North Bound Interface NBIAPI Functionality Supported NBI Benefits Distributed Load BalancingAPI Approach 11 Simple Flat-Based Server Load Balancing Configuration Client tier Four-Tier System ArchitectureControl tier