Multi-VRF based VPN

From CT3

Jump to: navigation, search

By Ivan Pepelnjak

The Multi-VRF functionality allows you to implement multiple independent routing tables on a single physical router without full-blown MPLS VPN functionality. Each VRF (or the global IP routing table) has its own set of associated interfaces and routing processes.

In an enterprise network, you could use the global IP routing table to support the regular traffic and create an overlay VPN by deploying VRFs on the VPN endpoints. The VPN endpoints can be linked with GRE tunnels, allowing you to build simple VPNs across an enterprise network without deploying full MPLS VPN functionality.

The multi-VRF based approach does not scale well. If you’re planning to introduce multiple VPNs in your network or deploy a single VPN on numerous locations, you should deploy MPLS VPN in your enterprise network.
Conceptual multi-VRF overlay VPN solution in an enterprise network
If you need professional help in designing or deploying solutions described in this tutorial, contact the author or NIL's Professional Services team

Read more in the Add a VPN to an Enterprise Network with Multi-VRF Functionality IP corner article

Personal tools

CT3

Main menu