1.

Khi nim MPLS (Multi Protocol Label Switching)

MPLS label c qung b gia cc router chng c th xy dng mt lc

mapping theo dng label-to-label. Cc nhn (label) c nh km theo cc IP packet, gip
router forward packet da theo label m khng da vo a ch IP ch. Cc packet c forward
bi chuyn mch nhn (label switching), khng phi chuyn mch IP (IP switching).

K thut chuyn mch nhn khng phi l mt khi nim mi. Trc y, Frame Relay
v ATM s dng n di chuyn cc frame hoc cell qua mi trng mng. i vi cng ngh
Frame Relay, frame c th c kch thc bt k; trong khi , vi cng ngh ATM, cell c kch
thc c nh (bao gm mt header 5 bytes v payload 48 bytes). Header ca ATM cell hay
frame ca Frame Relay c dng xc nh frame hay cell ang thuc virtual circuit no.
im tng t gia Frame Relay v ATM l ti mi chng trn ng i t ngun n ch,
label trong header li c thay i. Chnh iu ny to nn s khc bit so vi IP packet
forwarding (a ch ch khng thay i khi gi tin i t ngun n ch).

Trc khi c cng ngh MPLS, cc giao thc WAN c s dng ph bin l ATM v
Frame Relay. Vi s pht trin ca Internet, IP sm tr thnh giao thc ph bin. Lc ny, xu
hng c cc khch hng thng dng l thu cc ng truyn ATM, Frame Relay hoc
leased line, sau trin khai mng private ca doanh nghip trn . V router ca cc ISP cung
cp dch v lp 2 , lm nn cho cc router khch hng giao tip vi nhau thng qua lp 3 nn c
th chia tch c mng ca cc khch hng vi nhau. K thut ny gi l overlay network.

Hin nay, k thut overlay network vn cn tip tc c s dng. Tuy nhin nhiu
khch hng vn u tin s dng loi dch v MPLS VPN hn, bi cng ngh MPLS c u im
ni bt hn so vi cc cng ngh trc y nh :

S dng h tng mng ng nht.

S dng BGP free core.

Trin khai c m hnh peer to peer.

Ti u ha traffice flow.

H tr tnh nng traffic engineer.

Kh nng tch hp tt hn so vi k thut IP over ATM.

1.1.S dng h tng mng ng nht

Vi MPLS, tng thc hin l nh du cc gi tin i vo da trn a ch ch hoc

cc yu t c xc nh, sau chuyn packet i trn mt h tng mng dng chung. Chnh
iu ny to nn u th ln cho MPLS. Mt trong cc l do khin IP c s dng nhiu,
l a s cc cng ngh u c th c trin khai trn , khng ch d liu c truyn i trn
mi trng IP m c tn hiu thoi cng c th c truyn ti trn .

Mt c im cho php bt c frame no cng c th di chuyn trn h tng MPLS l

AToM (Any Transport over MPLS). Khi mt thit b nh tuyn x l AToM traffic, n khng
cn quan tm n MPLS payload, bi n gin n ch cn nhn vo label ti v tr header
chuyn gi tin i.

AToM cho php ISP cung cp dch v lp 2 ging nh cc giao thc trc y, ng thi
cng ch cn s dng mt h tng mng ng nht vn chuyn bt k loi traffic no ca
khch hng.

1.2.Kh nng tch hp IP tt hn so vi ATM

Trc y, i vi ATM, nhiu gii php cng tng c s dng tch hp IP vo,
chy trn nn lp 2 ca ATM nh : Multiprotocol encapsulation over ATM Adaption layer 5,
LAN emulation, Mutiprotocol over ATM. Tuy nhin cc giao thc ny u kh thc thi v
troubleshoot. MPLS ra i, to ra kh nng tch hp IP tt hn so vi ATM.

1.3.BGP-Free Core

Khi mt router thuc vng mng ca ISP mun forward traffic n ch, n phi thc
hin tra cu a ch IP ch ca gi tin. Nu a ch ch ca packet c gi nm bn ngoi
mng ca ISP th cc prefix external phi c trong bng nh tuyn ca mi router. Chnh v vy,
tt c cc router ca ISP phi chy giao thc nh tuyn BGP.

Tuy nhin, khi trin khai MPLS, vic forward packet da trn label, khng da trn a
ch IP ch. Label c nh km theo packet, gip cc router trung gian xc nh c cn
forward packet n router no k tip. Khi s dng chuyn mch nhn, cc router core khng cn
quan tm n a ch IP ch, do khng cn chy giao thc BGP, BGP ch cn thc thi trn
cc router bin (edge router) ca MPLS network. Mi BGP prefix trong bng nh tuyn ca
MPLS ingress router s c mt a ch IP next-hop lin kt vi n. IP next-hop ny chnh l a
ch IP ca egress MPLS router. Label lin kt vi IP packet th cng lin kt vi a ch next-
hop. V cc core router forward packet da trn MPLS label lin kt vi IP next-hop, do
chng phi bit a ch IP ca egress MPLS router. Cc giao thc nh tuyn ni vng IGP nh
OSPF hay IS-IS c th c dng thc hin nhim v ny.

1.4.Peer to peer VPN model

VPN l k thut c trin khai to kt ni mng private cho doanh nghip trn h
tng mng dng chung. C hai loi m hnh VPN c s dng :

- Overlay VPN model

- Peer to peer VPN model

a.Overlay VPN model

Trong m hnh overlay VPN, ISP s dng h tng mng ca mnh cung cp kt ni
point to point gia cc router ca khch hng, routing peering cng c hnh thnh trao i
thng tin gia hai im, router ca ISP khng tham gia trong phin routing peering ny.
 Cc dch v point-to-point ny c th l layer 1, layer 2 hoc 3. V d ca dch v layer 1
l TDM, E1, E3, SONET hoc SDH , layer 2 l X25, ATM hoc Frame Relay.

Khi trin khai m hnh overlay VPN trn nn Frame Relay, cc switch s to ra cc
virtual circuit kt ni gia cc router ca khch hng.

Dch v point-to-point cn c th trin khai trn h tng layer 3 ca ISP, cng ngh c
s dng l GRE tunnel.
 i vi cch trin khai ny, d liu trc khi i qua tunnel c ng thm GRE header.
Thng tin cha trong GRE header chnh l loi giao thc transport c s dng. Ipsec c th
c s dng km theo tng cng tnh bo mt, v d liu lc ny s c m ha.

b.Peer-to-peer VPN model

Cng ging nh m hnh overlay VPN, trong m hnh peer-to-peer VPN, ISP cng to ra
kt ni point-to-point gia cc site ca khch hng, tuy nhin im khc bit so vi m hnh
overlay l lc ny router ca ISP s peer trc tip vi router ca khch hng.

Trc khi c cng ngh MPLS, vic thit lp VPN gia cc site ca mt khch hng cn
cu hnh access-list iu khin d liu n v i t customer router, hoc route filter
lc/chn cc tuyn qung b t khch hng. Vic cu hnh ny tng i phc tp, do k thut
overlay VPN c cc ISP s dng nhiu hn.

Khi cng ngh MPLS ra i, vic to ra kt ni VPN theo m hnh peer-to-peer tr nn

d dng hn.
 Mt mng private VPN c hnh thnh nh s dng k thut VRF, d liu c
forward trong MPLS backbone l cc gi IP c gn nhn. VRF m bo cho thng tin nh
tuyn t cc khch hng khc nhau c phn tch ring bit. Trong m hnh MPLS VPN, router
pha khch hng c gi l CE(customer edge) router, v PE(provider edge) router ch router
pha ISP.

Trong m hnh ny, khi pha khch hng pht sinh site mi cn VPN, vic cu hnh n
gin ch l thm mt routing peering trn PE router ca ISP.

1.5.Ti u ha traffic flow

Trong cng ngh ATM, Frame Relay, cc switch thun ty l cc thit b chuyn mch
layer 2, cc router giao tip vi nhau thng qua cc virtual circuit c to ra. Khi mt router c
nhu cu trao i d liu vi mt router khc, mt virtual circuit phi c to ra gia chng.

Trong trng hp khch hng c yu cu kt ni any-any gia cc site, mt mng mesh

cc virtual circuit c hnh thnh, iu ny to nn s cng knh trong cu trc ca h thng
mng v khng hiu qu v mt kinh t. i vi cc khch hng khng s dng kiu kt ni full
mesh, traffic c th phi c chuyn tip qua mt site trung gian trc khi n site cn nhn, do
khng ti u ha c traffic flow.
 Khi s dng MPLS VPN, traffic flow c trao i trc tip gia cc site, khng cn
phi chuyn tip qua site trung gian.

1.6.Traffic engineering

Mc ch ca vic s dng k thut traffic engineering l ti u ha vic s dng h tng

mng, cho php traffic c gi i trn nhiu hng khc nhau, iu hng traffic i trn cc
tuyn c ch nh, khng da theo tuyn ti u m thut ton la chn.

Xt v d trn, khi s dng traffic engineering, d liu t A n B c chuyn i theo

tuyn di, qua 4 hop (tuyn qua nhiu chn hn so vi tuyn trn). Mc ch l phc v nhu
cu qun tr, iu hng traffic m bo cht lng dch v.
 Tc dng ca traffic engineering s c thy r hn khi xt v d tip theo sau y :

i vi trng hp ny, bnh thng khi ng trn router A, khng th s dng cc lnh
cu hnh iu hng traffic i qua router C phi s dng tuyn di chuyn d liu n B,
iu ny ch c thc hin khi ang login ti router C.

Tuy nhin, khi p dng k thut MPLS traffic engineeing, ti router A, ta c th tc ng

n router C chuyn hng d liu i theo tuyn bn di. S d c th thc hin c iu
ny v MPLS s dng c cu forwarding da theo nhn (label). K thut iu hng c thc
hin trn router A gi l k thut source-based-routing.

2.Kin trc MPLS

2.1.MPLS label

MPLS label c chiu di 32 bit, vi cu trc nh sau :

20 bit u tin l gi tr label, gi tr ny thuc phm vi t 0 (220 -1). Cc bit t 20 n

22 l cc bit EXP, c dng cho mc ch QoS. Bit 23 l BoS (Bottom of Stack) bit. Khi label
nm v tr cui cng ca stack, bit ny c gi tr 1, ngc li n s c gi tr l 0. S lng
label trong mt stack l khng gii hn. Cc bit c s th t t 24 n 31 c dng biu din
gi tr TTL. Gi tr ny gim i 1 n v khi i qua mi hop. Tc dng ca vic s dng TTL l
trnh xy ra loop.

2.2.Label stack

Label stack c cu trc nh hnh bn di, trong label trn cng ca stack gi l top
label, label di cng gi l bottom label (bit BoS ca label ny c gi tr l 1).

2.3.Encoding MPLS

Trong mt frame, label stack nm v tr u tin trong layer 3 packet (trc transported
protocol ) v sau layer 2 header, c th nh hnh bn di :

Kiu ng gi layer 2 c th l PPP, HDLC (High-level Data Link Control),

Ethernet,V MPLS label trong layer 2 frame c v tr trc layer 3 header, do phi s
dng thm mt gi tr trong trng Data Link Layer Protocol, nhm thng bo c MPLS label
packet pha sau layer 2 header. Trng c thm vo gi l Protocol Identifier.
2.4. Label switch router

Label switch router (LSR) l router c h tr MPLS, c kh nng hiu c MPLS label,
tham gia vo qu trnh gi v nhn label packet trn data link. Trong MPLS, tn ti ba loi LSR :

- Ingress LSR : L thit b nhn packet cha dn nhn, n s thc hin vic dn
nhn packet v gi i trn data link.

- Egress LSR : L thit b nhn label packet, remove label v gi packet i trn data
link.

- Intermediate LSR : L thit b trung gian, nhn packet c dn nhn gi n, x

l packet v gi packet n ng kt ni data link.

Ba hnh ng m mt LSR cn x l, l : pop, push v swap.

2.5.Label switched path

Mt label switched path (LSP) l tp hp cc LSR c nhim v switch label packet qua
mng MPLS. LSR u tin ca mt LSP l ingress LSR v LSR cui cng ca LSP l egress
LSR. Cc LSR nm gia ingress v egress LSR gi l intermediate LSR.

c im ca LSP l tnh n hng. Ingress LSR ca mt LSP khng nht thit phi l
router lm nhim v dn nhn cho packet, packet c th c dn nhn bi mt LSR trc ,
trng hp ny gi l nested LSP (mt LSP nm bn trong mt LSP khc), nh hnh bn di.

2.6.Forwarding Equivalence Class

FEC (Forwarding Equivalence Class) l mt tp hp hay mt flow cc packet c

forward theo cng mt hng. Tt c cc packet thuc cng FEC s c cng label. Mc d vy,
khng phi tt c cc packet c cng label s thuc cng mt FEC, v gi tr EXP ca chng c
th khc nhau. Router s quyt nh lm ingress LSR cho packet no thuc FEC no. Mt s v
d ca FEC nh sau :

- Cc packet c a ch layer 3 match vi mt prefix xc nh.

- Multicast packet thuc mt group xc nh.

- Cc packet c cng kiu forwarding da precedence hoc IP DifServ Code Point.

- Cc frame layer 2 khi qua mng MPLS nhn c trn mt VC( hoc
subinterface) ca ingress LSR v c pht trn mt VC( hoc subinterface) ca
egress LSR.

- Cc packet vi a ch ch lp 3 thuc cng mt tp BGP prefix v cng BGP

nexthop.

2.7.Label Distribution

Label u tin c p bi ingress LSR v dn nhn ty thuc vo LSP.