Javier Emicuri | 6 Oct 17:42 2008
Picon
Picon

: MPLS VPN Management

Hi guys,

I am planning a MPLS VPN service in which the Service Provider will be 
in charge of the installation and management of the CE, and have some 
doubts on how to implement the management architecture of this service.

I have already read the RFC 4364 in which they suggest to use import and 
export targets (a management VPN).

•Is that the best way to implement the management? Are there any 
security issues?

•Should I export the WAN or the Loopback of the CE to the management VPN?

•Should I use /31 or /32 for the WAN?

Can anyone help me with this stuff?

Thanks in advance

Javier Emicuri

------------------

The MPLS-OPS Mailing List
Subscribe/Unsubscribe:  http://www.mplsrc.com/mplsops.shtml
Archive: http://www.mplsrc.com/mpls-ops_archive.shtml

Andy Saykao | 7 Oct 05:14 2008
Picon

: RE: MPLS VPN Management

Hi Javier,

This was discussed on the cisco-nsp mailing list a while back.

http://puck.nether.net/pipermail/cisco-nsp/2005-August/023005.html

Hope that helps.

Andy

-----Original Message-----
From: Javier Emicuri [mailto:emicuri <at> adinet.com.uy] 
Sent: Tuesday, 7 October 2008 2:43 AM
To: mpls-ops <at> mplsrc.com
Subject: [MPLS-OPS]: MPLS VPN Management

Hi guys,

I am planning a MPLS VPN service in which the Service Provider will be
in charge of the installation and management of the CE, and have some
doubts on how to implement the management architecture of this service.

I have already read the RFC 4364 in which they suggest to use import and
export targets (a management VPN).

*Is that the best way to implement the management? Are there any
security issues?

*Should I export the WAN or the Loopback of the CE to the management
VPN?
(Continue reading)

Andy Saykao | 31 Oct 06:54 2008
Picon

: Monitoring tools for MPLS VPN customers

Hi All,
 
We have some MPLS VPN customers waiting to come on board and have asked us about what sort of monitoring we can provide for all their sites. By monitoring I can only guess that the customer is asking us to identify when a VPN site goes down. Other desirable features might be to implement some SLA to monitor latency and round trip time for those customer's who rely heavily on VoIP. Ideally, the IT person for the organization should be doing most of this monitoring, but Management have asked me to investigate what we sort of monitring we can provide to the customer to help bring them on baord.
 
We are currently using Cisco's MPLS Diagnostics Expert but this doesn't seem to have any proactive monitoring tool via it's SLA feature. We could set up a management station within a management VRF and run some monitoring software on it which is another option.
 
Just curious to know what software Service Providers are using to proactively monitor their VPN customers.
 
Thanks.
 
Andy

This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Please notify the sender immediately by email if you have received this email by mistake and delete this email from your system. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the organisation. Finally, the recipient should check this email and any attachments for the presence of viruses. The organisation accepts no liability for any damage caused by any virus transmitted by this email.

Roger Williams (rogwilli | 31 Oct 12:31 2008
Picon

RE: : Monitoring tools for MPLS VPN customers

Andy, I know Cisco's Info Center (fault) has a tie-in with Cisco's IP Solution Center (provisioning) that allows things like the Customer names and VPNs to show up as well when an interface goes down. Also, there is some new part of Cisco's CiscoWorks coming out now that has a VPN component.
 
You are right, MDE (a licensed part of IP Solution Center) is not proactive. Good tool to figure stuff out across the whole L3VPN path, but not a fault manager per se. Now, when it allows the tracing of L2VPNs, that will be very fine....
 
Roger Williams

From: Andy Saykao [mailto:andy.saykao <at> staff.netspace.net.au]
Sent: Friday, October 31, 2008 1:55 AM
To: mpls-ops <at> mplsrc.com
Subject: [MPLS-OPS]: Monitoring tools for MPLS VPN customers

Hi All,
 
We have some MPLS VPN customers waiting to come on board and have asked us about what sort of monitoring we can provide for all their sites. By monitoring I can only guess that the customer is asking us to identify when a VPN site goes down. Other desirable features might be to implement some SLA to monitor latency and round trip time for those customer's who rely heavily on VoIP. Ideally, the IT person for the organization should be doing most of this monitoring, but Management have asked me to investigate what we sort of monitring we can provide to the customer to help bring them on baord.
 
We are currently using Cisco's MPLS Diagnostics Expert but this doesn't seem to have any proactive monitoring tool via it's SLA feature. We could set up a management station within a management VRF and run some monitoring software on it which is another option.
 
Just curious to know what software Service Providers are using to proactively monitor their VPN customers.
 
Thanks.
 
Andy

This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Please notify the sender immediately by email if you have received this email by mistake and delete this email from your system. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the organisation. Finally, the recipient should check this email and any attachments for the presence of viruses. The organisation accepts no liability for any damage caused by any virus transmitted by this email.

Irwin.Lazar | 31 Oct 13:54 2008

Re: : Monitoring tools for MPLS VPN customers

Hi Andy, there are a number of companies that deliver performance management platforms for service providers.  These can be used to manage SLAs or provide application management functionality.  Have a look at Fluke Networks, BlueCoat, and Ipanema to name a few.

irwin

-------
Irwin Lazar
Principal Research Analyst and Program Director, Unified Communications and Collaboration
irwin.lazar <at> nemertes.com
703-794-3696
AOL/Gtalk/MSN/Skype/Yahoo: imlazar
Time Zone: EDT (GMT:-5)


From: "Andy Saykao" <andy.saykao <at> staff.netspace.net.au>
To: <mpls-ops <at> mplsrc.com>
Date: 10/31/2008 02:04 AM
Subject: [MPLS-OPS]: Monitoring tools for MPLS VPN customers




Hi All,
 
We have some MPLS VPN customers waiting to come on board and have asked us about what sort of monitoring we can provide for all their sites. By monitoring I can only guess that the customer is asking us to identify when a VPN site goes down. Other desirable features might be to implement some SLA to monitor latency and round trip time for those customer's who rely heavily on VoIP. Ideally, the IT person for the organization should be doing most of this monitoring, but Management have asked me to investigate what we sort of monitring we can provide to the customer to help bring them on baord.
 
We are currently using Cisco's MPLS Diagnostics Expert but this doesn't seem to have any proactive monitoring tool via it's SLA feature. We could set up a management station within a management VRF and run some monitoring software on it which is another option.
 
Just curious to know what software Service Providers are using to proactively monitor their VPN customers.
 
Thanks.
 
Andy

This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Please notify the sender immediately by email if you have received this email by mistake and delete this email from your system. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the organisation. Finally, the recipient should check this email and any attachments for the presence of viruses. The organisation accepts no liability for any damage caused by any virus transmitted by this email.

Hansberry, Robert | 31 Oct 14:07 2008

RE: : Monitoring tools for MPLS VPN customers

Check out NetScout probes and nGenius Performance Manager as well.  Call Dean Fuller for info:  704-364-9360.  I have been using this tool for several years.  With this year’s merger with CA’s Sniffer NetScout has a pretty good product that interfaces with all MoM platforms (HP OV, Tivoli, etc.).     

 

Robert Hansberry

 

From: Irwin.Lazar <at> nemertes.com [mailto:Irwin.Lazar <at> nemertes.com]
Sent: Friday, October 31, 2008 8:55 AM
To: Andy Saykao
Cc: mpls-ops <at> mplsrc.com
Subject: Re: [MPLS-OPS]: Monitoring tools for MPLS VPN customers

 

Hi Andy, there are a number of companies that deliver performance management platforms for service providers.  These can be used to manage SLAs or provide application management functionality.  Have a look at Fluke Networks, BlueCoat, and Ipanema to name a few.

irwin

-------
Irwin Lazar
Principal Research Analyst and Program Director, Unified Communications and Collaboration
irwin.lazar <at> nemertes.com
703-794-3696
AOL/Gtalk/MSN/Skype/Yahoo: imlazar
Time Zone: EDT (GMT:-5)


From:

"Andy Saykao" <andy.saykao <at> staff.netspace.net.au>

To:

<mpls-ops <at> mplsrc.com>

Date:

10/31/2008 02:04 AM

Subject:

[MPLS-OPS]: Monitoring tools for MPLS VPN customers

 




Hi All,
 
We have some MPLS VPN customers waiting to come on board and have asked us about what sort of monitoring we can provide for all their sites. By monitoring I can only guess that the customer is asking us to identify when a VPN site goes down. Other desirable features might be to implement some SLA to monitor latency and round trip time for those customer's who rely heavily on VoIP. Ideally, the IT person for the organization should be doing most of this monitoring, but Management have asked me to investigate what we sort of monitring we can provide to the customer to help bring them on baord.
 
We are currently using Cisco's MPLS Diagnostics Expert but this doesn't seem to have any proactive monitoring tool via it's SLA feature. We could set up a management station within a management VRF and run some monitoring software on it which is another option.
 
Just curious to know what software Service Providers are using to proactively monitor their VPN customers.
 
Thanks.
 
Andy

This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Please notify the sender immediately by email if you have received this email by mistake and delete this email from your system. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the organisation. Finally, the recipient should check this email and any attachments for the presence of viruses. The organisation accepts no liability for any damage caused by any virus transmitted by this email.


Gmane