# Designing and Optimizing MPLS Tunnels with Paragon Routing Director This document contains the hands on lab related to the Paragon Automation **configuration template** topic. The lab will be done at the 2025 Tech Summits in: - APAC/EMEA (Dubai) - June - AMER (Las Vegas) - July ## Overview This hands-on lab provides a practical experience in traffic engineering using Juniper Networks' solutions. Participants will explore designing, planning, and provisioning MPLS tunnels within a private WAN infrastructure. The lab is designed for sales engineers looking to deepen their understanding of network optimization features and demonstrate these capabilities effectively. - **Objectives** By attending this lab, participants will: - Gain practical insights into designing MPLS tunnels using the Juniper Traffic Engineering controller. - Learn how to create and manage Path Intent and Optimization Profiles for efficient network traffic management. - Understand the application of endpoint profiles in defining LSP endpoints. - Develop skills that enhance their ability to articulate Juniper's network optimization solutions. - **Key Topics/Content** The lab will focus on: - Understanding Path Intent and its components, including tunnel, optimization, and endpoint profiles. - Creating Optimization Profiles to define conditions for recomputing LSPs. - Utilizing Endpoint Profiles to specify source and destination endpoints of LSPs. - Implementing network optimization techniques with Juniper's Traffic Engineering controller. - **Skills and Tools** **Necessary Skills:** - Basic understanding of MPLS technology. - Familiarity with network design principles. **Tools/Platforms:** - Juniper Traffic Engineering controller - Network simulation tools for practical exercises - **Methodology/Approach** The lab is structured as a step-by-step walkthrough, guiding participants through the process of designing and provisioning MPLS tunnels. It includes interactive problem-solving exercises to reinforce learning and application. - **Benefits and Value** Participants will leave with enhanced skills in traffic engineering and network optimization, empowering them to effectively communicate these capabilities within their sales roles. The hands-on experience gained from this lab provides valuable insights into the practical implementation of Juniper Networks' solutions. This structured approach ensures participants gain a comprehensive understanding of MPLS tunnel design and optimization using Juniper Technologies.... **NOTICE: You are going to work in a shared environment with write access role. Please be careful on the performed actions.** **REMEMBER: If you dont follow this steps, you might impact in the job of other colleagues.** **PLEASE: Finish all the lab steps, so the network environment is clean for the next user.** ### Time The lab will take around 10 to 30 minutes ## Starting Lab ### Topology ![Topology](images/Topology.png) ### Devices Devices have been already onboard for the sake of this demo. ### Dynamic topology Dynamic topology has been already configured and PCEP session has been established with PCC for the sake of this demo. BGP-LS configuration was already applied on one router in the domain (e.g. PE3) ``` set policy-options policy-statement pso-accept-link-state from family traffic-engineering set policy-options policy-statement pso-accept-link-state then accept set protocols bgp group BGP-LS type internal set protocols bgp group BGP-LS local-address set protocols bgp group BGP-LS family traffic-engineering unicast set protocols bgp group BGP-LS export pso-accept-link-state set protocols bgp group BGP-LS peer-as 65200 set protocols bgp group BGP-LS allow 0.0.0.0/0 ``` ### Connect to Routing Director 1. Make sure your Zscaler Private Connection is enabled. Then go the Routing Director GUI URL provided via email. Click `Advance` and then `Accept the Risk and Continue`. If you using Chrome and cannot continue, click anywhere on the webpage and type `thisisunsafe`. Use the same credentials provided via email. 2. Go to `Network Optimization Intent` from the left hand side menu: 3. On the Topology map, view the devices previously onboarded and the links associated to those devices. ![Topology](images/Topology.png) ### Network Optimization Traditionally, tunnels are provisioned on a per-instance basis directly from the network information. `Path intent` abstracts this process by breaking down the attributes of a tunnel into reusable components, known as sub-profiles. These sub-profiles include: - tunnel profile - optimization profile - endpoint profile This modular approach allows you to define and manage these components separately and then combine them to create one or more tunnels. Path intents simplify tunnel management and enhances the efficiency. In order to create a `path intent` it is mandatory to create first the different subprofiles. #### Tunnel Profile Create tunnel profiles to define some of tunnel properties like signaling protocol, routing method, and so on. 1. Navigate to the Tunnel Profiles tab and click `+` to create a `tunnel profile`. 2. Name the tunnel profile (e.g. `TS_2025_tunnel_profile_*$YOUR_JUNIPER_ID$*`). 3. Add a description if you want. 4. Select `SR` as the signaling protocol. 5. Select `Default` as the routing method. 6. Click on `+` to add `Properties`. 7. Select `Color community`. Type a color community (e.g. `200`). 8. Ensure that you `publish` the tunnel profile. ![Tunnel Profile](images/Tunnel_Profile.png) #### Optimization Profiles Create optimization profiles to define when the LSP must be recomputed, which can be later used to create path intents. 1. Navigate to the Optimization Profiles tab and click `+` to create an `optimization profile`. 2. Name the optimization profile (e.g. `TS_2025_optimization_profile_*$YOUR_JUNIPER_ID$*`). 3. Add a description if you want. 4. In this profile, only `Time interval` is supported. Specify the time duration in minutes. A new optimized path will be created within the specified time duration. 5. Ensure that you `publish` the optimization profile ![Optimization Profile](images/Optimization_Profile.png) #### Endpoint Profiles Endpoint profiles define the endpoints of the LSPs (tunnels), which can be later used to create a path intents. We are going to create 2 endpoint profiles. First one will be a `Full-Mesh` of all the nodes, and second one will be a `One-to-One` 1. Navigate to the Endpoint Profiles tab and click `+` to create the first endpoint profile. 2. Name the end profile (e.g. `TS_2025_Full_Mesh_endpoint_*$YOUR_JUNIPER_ID$*`). 3. Add a description if you want. 4. At the `Node A Selection`, there is a grey arrow pointing down. Click on it and select all 6 nodes. Make sure the connection is `Full Mesh`. Do the same for `Node B Selection`. 5. Ensure that you `publish` the endpoint profile. ![Endpoint Profile Full Mesh](images/EndPointGroup_FullMesh.png) 6. Navigate to the Endpoint Profiles tab and click `+` to create the second endpoint profile. 7. Name the end profile (e.g. `TS_2025_one2one_endpoint_*$YOUR_JUNIPER_ID$*`). 8. Add a description if you want. 9. At the node selection, you can either click `add nodes from the map` or select them as before with the grey arrow pointing down. Choose 2 of the routers (e.g. `EOP5-PE2` and `EOP5-PE3`) and make sure the connection is `One-to-One`. 10. Ensure that you `publish` the endpoint profile. ![Endpoint Profile One-One](images/EndPointGroup_one2one.png) #### Path intents Path intents implement specific LSP or segment routing policy configurations that define how traffic should be routed through the network. 1. Navigate to the Path Intent tab and click `+` to create a path intent. 2. Specify the name of the path intent (e.g. `TS_2025_path_intent_1_*$YOUR_JUNIPER_ID$*`). 3. Enter a description for the path intent if you want. 4. Select the first tunnel profile you created from the list (e.g. `TS_2025_tunnel_profile_*$YOUR_JUNIPER_ID$*`). Remember, a tunnel profile defines the properties of an LSP. Only published tunnel profiles are listed here. 5. Select an optimization profile from the list (e.g. `TS_2025_optimization_profile_*$YOUR_JUNIPER_ID$*`). Remember, an optimization profile defines the conditions when an LSP must be recomputed. Only published optimization profiles are listed here. 6. Select an endpoint group from the list (e.g. `TS_2025_Full_Mesh_endpoint_*$YOUR_JUNIPER_ID$*`). Remember, an endpoint group defines the source and destination endpoints of an LSP. Only published endpoint profiles are listed here. 7. In the update option, select whether you want a new tunnel to be provisioned before deleting the old tunnel or you want an old tunnel to be deleted before provisioning the new tunnel. 8. Ensure that you `publish` the path profile. When you click the `Publish` button, the path intent is applied to the network. The tunnels are created and all the attributes and constraints specified in the profiles are applied consistently across the tunnels. You can view and manage the tunnels on the network topology map. The topology map shows the start and end points of each tunnel, the path it takes, and any relevant attributes such as utilization and delay. You can filter and select tunnels to view detailed information and metrics, helping them monitor and manage the network effectively. This visualization is critical in understanding network topology and ensuring that tunnels meet the desired performance and reliability criteria. ![Path Intent](images/PathIntent_1.png) 9. Go to the `Tunnels` tab and there should be 30 new tunnels created with the prefix of your path intent (e.g. `TS_2025_path_intent_1_*$YOUR_JUNIPER_ID$*`). ![Tunnels](images/Tunnels_1.png) 10. View details of a tunnel profile. You can select and view the details of a tunnel profile. You can either click `More > Detail` or hover over the tunnel profile and click the `Detailed View` icon. The `Tunnel Profile Details` pane appears on the right side of the page displaying the details. 11. Repeat steps from step `#3` to `#6` with a new path intent name (e.g. `TS_2025_path_intent_2_*$YOUR_JUNIPER_ID$*`), but this time when selecting the endpoint group from the list, make sure you select the other one. The one related to the `One-to-One` (e.g. `TS_2025_one2one_endpoint_*$YOUR_JUNIPER_ID$*`). 12. Ensure that you `publish` the path profile. 13. Go again to the `Tunnels` tab and there should be 1 new tunnel created. 14. Check that this time it is only the one you created as `One-to-One`. 15. Once you have inspected your tunnels, please **delete** what you have created, so the next user can play with this lab after you: i. Path Intents (select each and click in the bin icon). ii. Tunnel Profile (select each and click in the bin icon). iii. Optimization Profile (select each and click in the bin icon). iv. Endpoint Profiles (select each and click in the bin icon). **You have successfully completed this Hands-On Lab!** ## Lab Survey Please take 2 minutes and complet the [Routing Director Network Optimization LCM Hands-On Lab Survey](https://www.surveymonkey.com/r/PCBGFQ3) ![Network-Optimization-hol-Survey-qr-code](./images/Network-Optimization-hol-Survey-qr-code.png)