White Paper Abstract:
Many enterprises are thinking of replacing traditional Layer 2 VPNs such as ATM or Frame Relay (FR) with MPLS-based services. As Multiprotocol Label Switching (MPLS) is becoming a more widespread technology for providing virtual private network (VPN) services, MPLS architecture security is of increasing concern to service providers (SPs) and VPN customers. This paper gives an overview of MPLS architecture security for both SPs and MPLS users, and compares it with traditional Layer 2 services from a security perspective. This paper also recommends how to secure an MPLS infrastructure. The focus is specifically on the MPLS/Border Gateway Protocol (BGP) VPN architecture.