Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 895
  • Last Modified:

Subnetting for an MPLS

Our company has two sites. Currently we use a router to router IPsec VPN to connect the two sites. Next month we will be upgrading to an MPLS connection. But I'm not sure how to network this configuration.

I've attached a diagram to hopefully make this discussion easier. I've also attached the visio drawing in case someone wants to modify it and re-upload it.

I want all of the devices at site 1 to have access to all the devices at site 2 and vice versa. But if there a two routers then I will need to set up a new subnet in between them to allow them to communicate.

IE:
router 1 LAN port IP = 192.6.171.254
router 1 MPLS port IP = 10.8.8.1
router 2 MPLS port IP = 10.8.8.2
router 2 LAN port IP = 192.168.111.254

I can set a default route so that any traffic comming from site 2is forwarded through the MPLS but after it get translated to the 10.8.8.0 subnet how does the router 2 know where to send the traffic?

Maybe I'm just crazy and this will work fine. Idk. I finished college so many years ago and haven't done this since. Any help you can give me will be appreciated.
MPLS-Visio.png
MPLS-Visio.vsd
0
David11011
Asked:
David11011
2 Solutions
 
giltjrCommented:
You do want a new subnet for the MPLS network.

Are you planning to leave the VPN network connection in place as a backup?  I would.

You can setup some type of dynamic routing between GW1 and GW2 so that it would perfer the MPLS connection as long as it is up.  If it fails then it would use the VPN connection.

Then the only way you loose connectivity is if one of the GW routers fail.
1
 
pergrCommented:
First of all, the answer will depend on what type of MPLS service you have bought - the main options being a L3VPN or a VPLS.

With L3VPN you will need two new subnets - one subnet at each site.
With VPLS you will need a single new subnet - as you have proposed.

One important thing is to NOT use NAT on the port to the MPLS service.
Also, your default route should go out to the WAN.
The route to the MPLS should only be for the remote network.

For example, in site 1, route 192.168.111.0/24 to next-hop 10.8.8.2 (with VPLS), when you use static routing.


It would also be possible to have site 2 use the internet connection from site 1 as a backup, in case the internet connection at site 2 is down. That can be done with "floating static" routes, or with a dynamic protocol (like OSPF). As giltjr mentions, also the IPSec connection could be a backup for the MPLS service in a similar way,
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now