Mpls ldp protocol details

Mpls ldp protocol-destination-based LDP session

Generally,LDP neighborAll are built on the direct connection LSR, but the cross-LSR neighbors need to be established in the AToM and TE tunneling networks. These neighbors are not directly connected.

Mpls ldp protocol-LDP Authentication

LDP is based on TCP, so all TCP attacks will affect LDP, such as semi-open connections.

LDP peers can use MD5 authentication

Configuration: mpls ldp neighbor [vrf vpn-name] ip-addr password [0-7] pwd

Mpls ldp protocol-Label Distribution Control (outbound filtering)

You can configure LDP to advertise a LDP neighbor or not to advertise a specific label. In the mpls vpn environment, only the next hop address of prefixBGP is required for the traffic sent to the VPN) therefore, you can configure the P and PE routers to send labels about these prefixes to neighbors.

Configuration method:

1. Mpls ldp advertise-labels [vrf vpn-name] [interface intf] for acl1 to acl2

// Acl1 indicates which prefixes need to be advertised

// Acl2 indicates which peer can receive the notification

// Acl1 and 2 are both standard access lists.

2. No mpls ldp advertise-labels

// This sentence must be added; otherwise, the previous sentence will be invalid.

Mpls ldp protocol-Label Distribution Control inbound filtering)

Configuration method:

Mpls ldp neighbor [vrf vpn-name] nbr-address labels accept acl

Mpls ldp protocol-automatic configuration of LDP

Generally, LDP is enabled on all interfaces with IGP enabled. LDP is automatically configured to allow the router to automatically enable LDP on interfaces with IGP enabled. This name only supports OSPF.

Configuration method:

1. Mpls ldp autoconfig [aree area-id]

2. No mpls ldp igp autoconfig // disable LDP for an interface with IGP Enabled

For more information about the mpls ldp protocol, see section 2.