
When configuring [MPLS](/mpls) Layer 3 [VPN](/vpn)s direct communication between the customer networks on the CE and the PE is not possible.  Similarly to [direct CE to CE communication](/mpls-layer-3-vpn-communication-between-ce-routers), direct communication between the CE and PE routers is not possible.  Indeed it is undesirable.  Take a look at this diagram:

![mpls-vpn-pe-ce-ospf.png.pagespeed.ic.XhBhTPjOcO.png](/attachments/mpls-vpn-pe-ce-ospf.png.pagespeed.ic.XhBhTPjOcO.png)

The PE routers don’t need to be able to reach the loopback of the CE routers. They don’t need that information in their routing tables because **you will never have direct communication between a PE router and the customer network**. However, PE routers must be able to **direct transient traffic** (traffic that doesn’t originate from themselves) to the intended destination, and this is achieved using the BGP VPN table.

We can see this in the BGP VPNv4 table like so:

```
PE1#show ip bgp vpnv4 all
BGP table version is 4, local router ID is 2.2.2.2
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, 
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter, 
              x best-external, a additional-path, c RIB-compressed, 
              t secondary path, 
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network          Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 1:1 (default for vrf CUSTOMER)
 *>   1.1.1.1/32       192.168.12.1             0             0 12 i
 *>i  5.5.5.5/32       4.4.4.4                  0    100      0 12 i
PE1#
```

Here, you can see that PE1 has a next hop assigned for both the 1.1.1.1 and the 5.5.5.5 networks, which route traffic to their intended destinations.  However, these networks do not appear in the routing table of the PE1 router, thus they are not directly reachable from the PE1 router.

Links:

https://forum.networklessons.com/t/mpls-layer-3-vpn-bgp-allow-as-in/1322/22?u=lagapides

https://networklessons.com/mpls/mpls-layer-3-vpn-configuration/

MPLS Layer 3 VPN communication between CE and PE routers

LISP where EID-to-RLOC mappings originate

LISP

Logging buffered command

Loop-Free Alternate (LFA) Fast Reroute (FRR)

Loop-Free Alternate (LFA) and remote LFA

Loops in layers 2 and 3

MAC Access List EtherType

MAC Access List

MAC address flapping

MAC address of all zeros

MAC address table - multiple entries of the same MAC address

MAC address table - show command on Nexus device

MAC address table populated using source address field

MAC address table static multicast entry

MAC address table

MAC address

MPLS - BGP customer prefixes do not appear in the LFIB

MPLS - Connecting IPv6 sites over an IPv4 backbone

MPLS - Disabling IPv4 address family in BGP for VPNv4

MPLS - Ethernet over MPLS (EoMPLS)

MPLS - L3VPN BGP EIGRP redistribution

MPLS - L3VPN BGP OSPF Redistribution

MPLS - LDP source interface

MPLS - Layer 2 VPNs

MPLS - Multi-VRF CE

MPLS - Segment Routing over MPLS

MPLS - Transport Profile

MPLS - Using the BGP Allow-AS in feature

MPLS - VPN label

MPLS - VPNv4 Labels are assigned per route

MPLS - Virtual Private Network (VPN)

MPLS - label distribution using MP-BGP

MPLS - label

MPLS - multiarea OSPF in the core

MPLS - network redundancy

MPLS - what is fate sharing

MPLS - what is seamless MPLS

MPLS 6PE uses two labels in the data plane

MPLS Bytes Label Switched in the LFIB

MPLS Customer Edge Router

MPLS L3VPN Inter-AS Options

MPLS LDP Label Filtering

MPLS LDP Session Protection

MPLS LDP Targeted Hellos

MPLS LSR ID

MPLS Label Distribution Protocol

MPLS Label Distribution and Swapping

MPLS Label Edge Router

MPLS Label Switch Router

MPLS Layer 3 VPN communication between CE routers

MPLS Local Label Allocation Filtering

MPLS Penultimate hop popping

MPLS Route Distinguisher

MPLS Route Target

MPLS TE - Affinity attribute flag assignment best practices

MPLS TE - TE Tunnels

MPLS TE setup and hold priority

MPLS Troubleshooting

MPLS VPN extranet route leaking unique addressing

MPLS VRF names locally significant

MPLS addresses bound to peer LDP Ident output

MPLS advertising multiple customer subnets

MPLS entropy label

MPLS explicit NULL

MPLS implicit NULL

MPLS mandatory use of CEF

MPLS traffic engineering

MPLS-TE - why are IGPs necessary

MPLS

MPP vs ACLs

MQTT return codes

MST - Root port selection for switches outside MST topology

MST configuration revision number

MTU - Adjusting MTU to accommodate additional headers

MTU - Interface MTU configuration considerations

MTU - MSS and Jumbo Frames

MTU - Path MTU Discovery (PMTUD)

MTU - default interface MTU

MTU adjusting the MSS for TCP

MTU ip mtu allowed values

MTU on Etherchannel links

MTU on router subinterfaces

MTU size in Cisco IOS XR and IOS software

Management Plane Policing (MPP)

Media Access Control (MAC)

Memory - CAM and TCAM

MetroEthernet - VLAN design considerations

MetroEthernet - Virtual Private LAN service

MetroEthernet - Virtual Private Wire Service

MetroEthernet

Multi-Topology Routing

Multicast - ASM and SSM on same network

Multicast - Any Source Multicast (ASM)

Multicast - AutoRP

Multicast - Bootstrap Router (BSR)

Multicast - GLOP address space

Multicast - HSRP-aware PIM

Multicast - Local Network Control Block