| With the development of network technology, MPLS becomes the most promising one used to building the VPN network. VPN based on BGP/MPLS has the advantage of the peer-to-peer VPN, the security like overlay VPN, the capability of expansion and flexibility.In this thesis, we first introduce the technology, which is used to provide the network security, the routing authentication technology and the basic theory of MPLS. Then we explain the advantages of the application of MPLS in VPN, the network structure, the internal mechanism, and the working process.In BGP/MPLS VPN, configuring the routing target correctly on PE is the key solution to configure routing information correctly, implement routing isolation and carry out access control. Here we propose a routing authentication scheme based on CE-CE, extent the architecture of the BGP UAPDATE package and change the routing process. It can isolate the wrong CE and give an alarm to this condition. On the basis of theory analyzing, we use the OPNET to do a simulation test. Then we have the result of the node connectivity in VPN, the system performance parameter including system throughout, delay time and CPU utility of PE. The comparison of the performance before and later we use the routing authentication indicates that the proposal is feasible and reasonable.
|
PDF Full Text Request