Advanced Enterprise Routing & MPLS Backbone
Advanced Networking & Security Specialization Project
This project simulates a service provider core and multi-tenant enterprise network environment in GNS3. The infrastructure was built in two main phases: IS-IS routing for the internal gateways, and an MPLS backbone for customer separation.
I configured IS-IS (Level 1/2) routing with wide metrics, established internal and external BGP peerings (iBGP/eBGP), and achieved client isolation through VRF-Lite Finally, I layered an MPLS L3VPN tunnel over the backbone using LDP and MP-BGP, securing it via a site-to-site IPsec tunnel (using IKEv2 encryption) directly between the customer edge (CE) routers.
Interactive Network Topology Explorer
Filter by layer (IS-IS, BGP, VRF, etc.) and click on the network routers to view their live interface IPs and routing configuration flags. Use Ctrl + scroll to zoom.
Technical Highlights & Skills
- IGP Core (IS-IS)
Configured IS-IS L1/L2 routing with loopback interfaces as Net Entities and adjusted metrics for path preference.
- MPLS / LDP
Activated Label Distribution Protocol (LDP) across the backbone, mapping loopbacks for label propagation.
- MP-BGP & VPNv4
Peer-to-peer BGP sessions for exchanging VPNv4 routes with target communities (Route Distinguishers & Route Targets).
- CE-to-CE Security (IPsec)
Created a secure virtual tunnel over the untrusted carrier, utilizing IKEv2 profiles and strong cryptographic proposals.