L3VPN Working Group Chen. Li Internet-Draft Lianyuan. Li Updates: 4382 (if approved) Lu. Huang Intended status: Standards Track China Mobile Expires: April 27, 2011 Ke. Ma Hao. Tang China Academy of Telecommunication October 24, 2010 MPLS Layer 3 Carrier Support Carrier Virtual Private Network Management Information Base draft-li-network-mpls-l3vpn-csc-vpn-mib-01 Abstract This memo defines an portion of the Management Information Base (MIB) for use with network management protocols in the Internet community. In particular, it describes managed objects to configure and/or monitor Multi-protocol Label Switching Layer-3 Carrier Support Carrier Virtual Private Networks on a Multi-Protocol Label Switching (MPLS) Label Switching Router (LSR) supporting this feature. this memo supplements RFC [4382] which focus on MPLS VPN MIB. Status of this Memo This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet- Drafts is at http://datatracker.ietf.org/drafts/current/. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." This Internet-Draft will expire on April 27, 2011. Copyright Notice Copyright (c) 2010 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal Li, et al. Expires April 27, 2011 [Page 1] Internet-Draft MPLS L3 CSC VPN MIB October 2010 Provisions Relating to IETF Documents (http://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Simplified BSD License. Table of Contents 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3 2. Requirements Language . . . . . . . . . . . . . . . . . . . . . 3 3. The MPLS-L3-CSC-VPN-MIB Objects . . . . . . . . . . . . . . . . 3 4. MPLS-L3-CSC-VPN-MIB Module Definition . . . . . . . . . . . . . 4 5. Security Considerations . . . . . . . . . . . . . . . . . . . . 9 6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . . 9 7. Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . . 9 8. Normative References . . . . . . . . . . . . . . . . . . . . . 9 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 9 Li, et al. Expires April 27, 2011 [Page 2] Internet-Draft MPLS L3 CSC VPN MIB October 2010 1. Introduction This memo defines an portion of the Management Information Base (MIB) for use with network management protocols in the Internet community. In particular, it describes managed objects to configure and/or monitor Multi-protocol Label Switching Layer-3 Carrier Support Carrier(CSC) Virtual Private Networks on a Multi-Protocol Label Switching (MPLS) Label Switching Router (LSR) supporting this feature. This document adopts the definitions, acronyms and mechanisms described in [2547] and [4382] . Unless otherwise stated, the mechanisms of [2547] and [4382] apply and will not be re-described here. 2. Requirements Language The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in [RFC2119]. 3. The MPLS-L3-CSC-VPN-MIB Objects The MIB objects related with MPLS L3 CSC VPN are defined by mplsL3CscVpnVrfLabelSwtichTable. This table represents the MPLS L3 CSC VPN VRF Table that are configured. A Network Management System (NMS) or SNMP agent creates an entry in this table for every MPLS L3 CSC VPN configured on the LSR being examined. The table supplements the MIB Objects in RFC 4382. The relationship between this draft and RFC4382 can be described as the image below: MPLS L3VPN MIB |--MplsL3VpnObject |----MplsL3VpnRoute |------mplsL3VpnVrfRteTable |--------mplsL3VpnVrfRteTable |--------(New)mplsL3CscVpnVrfLabelSwtichTable Li, et al. Expires April 27, 2011 [Page 3] Internet-Draft MPLS L3 CSC VPN MIB October 2010 4. MPLS-L3-CSC-VPN-MIB Module Definition -- VPN VRF Label Switch Table mplsL3VpnVrfLabelSwitchTable OBJECT-TYPE SYNTAX SEQUENCE OF MplsL3VpnVrflabelSwitchEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "This table specifies per-interface MPLS L3 CSC VPN VRF Table label switching information. Entries in this table define VRF label switching entries associated with the specified MPLS CSC VPN interfaces." ::= { mplsL3VpnRoute 2 } mplsL3VpnVrfLabelSwitchEntry OBJECT-TYPE SYNTAX MplsL3VpnVrfLabelSwitchEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry in this table is created by an LSR for every label within the context of a specific VRF capable of supporting MPLS/BGP CSC VPN. The indexing provides an ordering of VRFs per-VPN interface." INDEX { mplsL3VpnVrfName, mplsL3VpnVrfLabelSwtichInLabel, mplsL3VpnVrfLabelSwtichOutLabel, mplsL3VpnVrfLabelSwtichPushLabel, mplsL3VpnVrfLabelSwtichNHopType, mplsL3VpnVrfLabelSwtichNHop, } Li, et al. Expires April 27, 2011 [Page 4] Internet-Draft MPLS L3 CSC VPN MIB October 2010 ::= { mplsL3VpnVrfLabelSwitchTable 1 } MplsL3VpnVrfLabelSwitchEntry ::= SEQUENCE { mplsL3VpnVrfLabelSwitchInLabel MplsLabel, mplsL3VpnVrfLabelSwtichOutLabel MplsLabel, mplsL3VpnVrfLabelSwtichPushLabel MplsLabelorZero, mplsL3VpnVrfLabelSwtichAge Gauge32, mplsL3VpnVrfLabelSwitchNHop InterfaceIndexorZero, mplsL3VpnVrfLabelSwtichProto INTEGER, mplsL3VpnVrfLabelSwitchProtectLabel MplsLabelorZero, mplsL3VpnVrfLabelSwitchProtectNHop InterfaceIndexorZero, mplsL3VpnVrfLabelSwitchProtectType INTEGER, } ::= { mplsL3VpnVrfLabelSwitchTable 1 } mplsL3VpnVrfLabelSwitchInLabel OBJECT-TYPE SYNTAX MplsLabel MAX-ACCESS not-accessible STATUS current DESCRIPTION "The outer label of the packet, The label point to the remote tier_2 PE" ::= { mplsL3VpnVrfLabelSwitchEntry 1 } mplsL3VpnVrfLabelSwitchOutLabel OBJECT-TYPE SYNTAX MplsLabel MAX-ACCESS not-accessible STATUS current Li, et al. Expires April 27, 2011 [Page 5] Internet-Draft MPLS L3 CSC VPN MIB October 2010 DESCRIPTION "The new label point to the remote tier_2 PE, which will replace the inlabel" ::= { mplsL3VpnVrfLabelSwitchEntry 2 } mplsL3VpnVrfLabelSwitchPushLabel OBJECT-TYPE SYNTAX MplsLabelorZero MAX-ACCESS not-accessible STATUS current DESCRIPTION " The label point to the remote tier_1 PE, which will be pushed to the packet. A value of 0 is valid and represents the scenario that the packet should be sent to tier_2 network" ::= { mplsL3VpnVrfLabelSwitchEntry 3 } mplsL3VpnVrfLabelSwtichAge OBJECT-TYPE SYNTAX Gauge32 MAX-ACCESS read-only STATUS current DESCRIPTION "The number of seconds since this label switch item was last updated or otherwise determined to be correct. " ::= { mplsL3VpnVrfLabelSwitchEntry 4 } mplsL3VpnVrfLabelSwitchNHop OBJECT-TYPE SYNTAX InterfaceIndexOrZero MAX-ACCESS read-create STATUS current DESCRIPTION Li, et al. Expires April 27, 2011 [Page 6] Internet-Draft MPLS L3 CSC VPN MIB October 2010 "The ifIndex value that identifies the local interface through which the next hop of the packet should be forwarded. A value of 0 is valid and represents the scenario where no interface is specified." DEFVAL { 0 } ::= { mplsL3VpnVrfLabelSwitchEntry 5 } mplsL3VpnVrfLabelSwtichProto OBJECT-TYPE SYNTAX INTEGER { other (1), LDP (2), BGP (3), RSVP (4), } MAX-ACCESS read-creat STATUS current DESCRIPTION "The label distributing mechanism." DEFVAL { other } ::= { mplsL3VpnVrfLabelSwitchEntry 6 } mplsL3VpnVrfLabelSwitchProtectLabel OBJECT-TYPE SYNTAX MplsLabelorZero MAX-ACCESS not-accessible STATUS current DESCRIPTION " The backup label point to the remote tier_1 PE. A value of 0 is valid and represents the scenario that there isn't any protect path and label" Li, et al. Expires April 27, 2011 [Page 7] Internet-Draft MPLS L3 CSC VPN MIB October 2010 DEFVAL { 0 } ::= { mplsL3VpnVrfLabelSwitchEntry 7 } mplsL3VpnVrfLabelSwitchProtectNHop OBJECT-TYPE SYNTAX InterfaceIndexOrZero MAX-ACCESS read-create STATUS current DESCRIPTION "The ifIndex value that identifies the backup interface through which the next hop of the packet should be forwarded. A value of 0 is valid and represents the scenario where no interface is specified." DEFVAL { 0 } ::= { mplsL3VpnVrfLabelSwitchEntry 8 } mplsL3VpnVrfLabelSwitchProtectType OBJECT-TYPE SYNTAX INTEGER { other (1), bypass (2), detour (3), } MAX-ACCESS read-creat STATUS current DESCRIPTION "The MPLS TE fast reroute protect mechanism. Bypass refers to facility backup LSP. Detour refers to one-to-one backup LSP." DEFVAL { other } ::= { mplsL3VpnVrfLabelSwitchEntry 9 } -- End of MPLS-L3-CSC-VPN-MIB Li, et al. Expires April 27, 2011 [Page 8] Internet-Draft MPLS L3 CSC VPN MIB October 2010 5. Security Considerations MPLS-L3-CSC-VPN-MIB is useful for monitoring of MPLS LSRs supporting L3. MPLS CSC VPN. This MIB module can also be used for configuration of certain objects, and anything that can be configured can be incorrectly configured, with potentially disastrous results. mplsL3CscVpnVrfLabelSwtichTable contain objects which may be used to provision L3VPN switch interfaces and configuration. Unauthorized access to objects in the tables, could result in disruption of traffic on the network. This is especially true if these VRFs have been previously provisioned and are in use. The use of stronger mechanisms such as SNMPv3 security should be considered where possible. Specifically,SNMPv3 VACM and USM MUST be used with any v3 agent which implements this MIB module. Administrators should consider whether read access to these objects should be allowed, since read access may be undesirable under certain circumstances. 6. IANA Considerations It is no necessary to request new IANA code in the draft. 7. Acknowledgments This document has benefited from discussions and input from Lilianyuan, Ma Ke, Huang Lu,Tang Hao, and Li Zhenqiang. 8. Normative References [RFC4382] Nadeau, T. and H. van der Linde, "MPLS/BGP Layer 3 Virtual Private Network (VPN) Management Information Base", RFC 4382, February 2006. Authors' Addresses Chen Li China Mobile Unit2, Dacheng Plaza, No. 28 Xuanwumenxi Ave, Xuanwu District Beijing 100053 P.R. China Email: lichenyj@chinamobile.com Li, et al. Expires April 27, 2011 [Page 9] Internet-Draft MPLS L3 CSC VPN MIB October 2010 Lianyuan Li China Mobile Unit2, Dacheng Plaza, No. 28 Xuanwumenxi Ave, Xuanwu District Beijing 100053 P.R. China Email: lilianyuan@chinamobile.com Lu Huang China Mobile Unit2, Dacheng Plaza, No. 28 Xuanwumenxi Ave, Xuanwu District Beijing 100053 P.R. China Email: huanglu@chinamobile.com Ke Ma China Academy of Telecommunication No.52 HuaYuanBeiLu Beijing 100191 P.R. China Email: make@mail.ritt.com.cn Tang Hao China Academy of Telecommunication No.52 HuaYuanBeiLu Beijing 100191 P.R. China Email: tanghao@mail.ritt.com.cn Li, et al. Expires April 27, 2011 [Page 10]