User guide
MPLS Module Installation and User Guide 7-19
Using ESRP with MPLS TLS
Figure 7-6: Tunnel endpoint VLANs
In Figure 7-6, redundant LSRs are installed at both ends of a TLS tunnel. This example
takes advantage of the IP multinetting feature in ExtremeWare by creating an overlay
tunnel endpoint VLAN that shares the same Ethernet ports as the user VLAN that is
extended across the MPLS backbone network. A tunnel endpoint VLAN is created at
both sites.
ESRP is enabled on the tunnel endpoint VLANs and the user VLANs. To ensure that the
same LSR is selected as the ESRP master for both VLANs, the ESRP configuration of the
user VLAN and the associated tunnel endpoint VLAN must be identical. Enabling ESRP
MPLS_07
MPLS
NETWORK
CUSTOMER SITE 1
CUSTOMER SITE 2
Active
Tunnel
LSPs
TLS command issued on LSR A & LSR B:
config mpls add tls-tunnel tls1 IP
T2
user tls-labels 8f002 81001
TLS command issued on LSR C & LSR D:
config mpls add tls-tunnel tls1 IP
T1
user tls-labels 8f001 81002
Inactive
Tunnel
LSPs
LSR A
ESRP master
IP
U1
IP
T1
User VLAN (ESRP enabled)
Tunnel Endpoint VLAN (ESRP enabled)
User VLAN (ESRP enabled)
Tunnel Endpoint VLAN (ESRP enabled)
LSR C
ESRP master
IP
U2
IP
T2
LSR D
ESRP slave
IP
T2
IP
U2
LSR B
ESRP slave
IP
T1
IP
U1