Ccmigration 09186a00801ed3ea

Cisco IOS MPLS Virtual Private LAN Service (VPLS) Technical Deployment Overview
Enabling Innovative Services
2004 Cisco Systems, Inc. All rights reserved.
Agenda
Introduction VPLS Technical Overview VPLS Architectures Deployment Scenarios Summary
Introduction
Presentation_ID
2004 Cisco Systems, Inc. All rights reserved. 2003
Metro Ethernet: Emerging Multiservice Access Opportunity

Storage Hosting Storage Hosting Hosted Telephony Videoconferencing Hosted Telephony Videoconferencing Business Continuance Business Continuance Directory Services Directory Services Unified Messaging Unified Messaging Web Hosting Web Hosting Mobile Access Mobile Access Secure E-Mail Secure E-Mail
STB
Internet
Residential CPE
PSTN
Multitenant Unit (MTU) Basement Access Device

100 Mbps Ethernet
Remote Office 1
EthernetConnected Branch
Remote Office 2
SP Metro Ethernet Network

Ethernet, SONET/SDH, RPR, DWDM/CWDM, MPLS/IP 10 Mbps Ethernet
Regional Headquarters
EthernetConnected Branch Remote Worker

4
Subscriber
Metro Ethernet: Business Drivers*

Service Provider Revenue Growth New, Differentiated Services Expanded Enterprise Penetration Cost Efficiencies Network Convergence Flexible Bandwidth Provisioning Best Value for Increased Bandwidth
STB
Enterprise Business Demands Increased Productivity Peer-to-Peer Applications Service Expectations Scalable Bandwidth (from 1Mbps to 1Gbps) Customized Services Multipoint Connectivity Operational Simplicity
Internet
PSTN
Remote Office 1
Multi-Tenant Unit (MTU) Basement Access Device

100 Mbps Ethernet
Residential CPE
EthernetConnected Branch
Remote Office 2
SP Metro Ethernet Network

Ethernet, SONET/SDH, RPR, DWDM/CWDM, MPLS/IP 10 Mbps Ethernet
Regional Headquarters
*Cisco VPLS Statement of
EthernetConnected Branch Remote Worker

5
Subscriber
2004 Cisco Systems, Inc. All rights reserved. Direction http://www.cisco.com/en/US/products/hw/routers/ps368/products_white_paper09186a00801df1df.shtml
The Ethernet Advantage

Connectionless, IP aware-operation Distributed intelligence Inexpensive, scalable bandwidth options L2 VPNs
Point-to-point Multipoint
L3 VPNs High speed transport enables innovative services and applications

Storage, IP video conferencing
Value added services

IP Telephony IP video conferencing High speed, bBusiness class Internet Managed Security Managed Storage
VPLS Overview for Metro Ethernet

Metro A u-PE
Metro C
PE-AGG
Si
10/100/ 1000 Mpbs
GE Ring
Hub & Spoke
n-PE
n-PE
u-PE
10/100/ 1000 Mpbs
Metro B DWDM/ CDWM
C7600
VPLS Network
C7600
P
SONET/SDH Ring
10/100/ 1000 Mpbs

/ 00 s /1 pb 10 0 M 0 10
n-PE
C7600
u-PE
u-PE
Metro D
Delivers Ethernet-based multipoint L2 VPN service Enhances L2 VPN scalability (geographic sites & no. of customers) Leverages existing SP MPLS Core Supports operational speeds of GB to 10 GB On track for IETF standardization: Draft Lasserre-Kompella Uses familiar Systems, Inc. All rights user network interface 2004 Cisco Ethernet reserved.
7
VPLS Technical Overview
Presentation_ID
Virtual Private LAN Services (VPLS)

VPLS Is An Architecture
CE PE
MPLS Network
PE
CE
CE
VPLS defines an architecture that delivers Ethernet Multipoint Services (EMS) over an MPLS network VPLS operation emulates an IEEE Ethernet bridge Two VPLS drafts in existance
Draft-ietf-l2vpn-vpls-ldp-01 draft-ietf-l2vpn-vpls-bgp-01
Ciscos Implementation
9
VPLS & H-VPLS

VPLS
192.168.11.1/24 192.168.11.25/24 192.168.11.11/24
VPLS Direct Attachment

Single Flat Hierarchy MPLS to the Edge
192.168.11.2/24 192.168.11.12/24
H-VPLS
Two Tier Hierarchy MPLS or Ethernet Edge MPLS Core
H-VPLS
n-PE PE-POP PE-rs PW n-PE PE-POP PE-rs
u-PE PE-CLE MTU-s GE
u-PE PE-CLE MTU-s
Ethernet Edge Point-to-Point or Ring
MPLS Core
MPLS Edge
10
VPLS Components
Attachment Circuit n-PE CE PW CE PW
el L SP
n-PE CE
Tunnel LSP
PW
CE
CE
nn Tu Tu nn
CE Red VSI Blue VSI Green VSI CE
Red VSI Blue VSI Green VSI
L el SP
Directed LDP session between participating PEs

CE
Full Mesh of PWs between VSIs

n-PE Blue VSI
Legend
CE n-PE VSI PW Tunnel LSP - Customer Edge Device - network facing-Provider Edge - Virtual Switch Instance - Pseudo-Wire - Tunnel Label Switch Path that provides PW transport
Red VSI
11
VPN & VPLS Desirable Characteristics

Auto-discovery of VPN membership
Reduces VPN configuration and errors associated with configuration
Signaling of connections between PE devices associated with a VPN Forwarding of frames

AToM uses Interface based forwarding VPLS uses IEEE 802.1q Ethernet Bridging techniques
Loop prevention
MPLS Core will use a full mesh of PWs and split-horizon forwarding H-VPLS edge domain may use IEEE 802.1s Spanning Tree, RPR, or SONET Protection
12
Cisco VPLS Building Blocks

Layer 2 VPN Point-to-Point Layer 2 VPN Interface-Based/ Sub-Interface Multipoint Layer 2 VPN Ethernet Switching (VFI) Layer 3 VPN
Forwarding Mechanism VPN Discovery Signaling
IP Routing Distributed BGP
DNS
Centralized Radius Directory Services Label Distribution Protocol MPLS IP
NMS/ OSS
Tunnel Protocol Hardware
Cisco 7600
Catalyst 6500
A Comprehensive Solution: Robust, Flexible, Scalable, Manageable

13
VPLS Auto-discovery & Signaling

VPN Discovery Signaling
DNS
Centralized Radius Directory Services Label Distribution Protocol
Distributed BGP
Draft-ietf-l2vpn-vpls-ldp-01 does not mandate an auto-discovery protocol

Can be BGP, Radius, DNS, AD based
Draft-ietf-l2vpn-vpls-ldp-01 describes using Targeted LDP for Label exchange and PW signaling
PWs signal other information such as Attachment Circuit State, Sequencing information, etc Cisco IOS supports Targeted LDP for AToM and Virtual Private LAN Services
14
VPLS: Layer 2 Forwarding Instance Requirements

A Virtual Switch MUST operate like a conventional L2 switch! Flooding / Forwarding:
MAC table instances per customer and per customer VLAN (L2VRF idea) for each PE VSI will participate in learning, forwarding process Uses Ethernet VC-Type defined in pwe3-control-protocol-xx
Address Learning / Aging:

Self Learn Source MAC to port associations Refresh MAC timers with incoming frames New additional MAC TLV to LDP
Loop Prevention:
Create partial or full-mesh of EoMPLS VCs per VPLS Use split horizon concepts to prevent loops Announce EoMPLS VPLS VC tunnels
15
VPLS Overview: Flooding & Forwarding

?
Data
SA
Flooding (Broadcast, Multicast, Unknown Unicast) Dynamic learning of MAC addresses on PHY and VCs Forwarding
-Physical port -Virtual circuit
16
VPLS Overview: MAC Address Learning

Send me traffic with Label 102
CE
102
PE1
MAC 1
MAC 2
Data
PE2
Send me traffic with Label 201

CE
E0/0 MAC Address MAC 2 MAC 1 MAC x Adj 201 E0/0 xxx
VC Label 102 Tx Tx VC Label 201
E0/1 MAC Address MAC 2 MAC 1 MAC x Adj E0/1 102 xxx
Data
MAC 1
MAC 2
201
Broadcast, Multicast, and unknown Unicast are learned via the received label associations Two LSPs associated with an VC (Tx & Rx) If inbound or outbound LSP is down, then the entire circuit is considered down
17
VPLS Overview: MAC Address Withdrawal

LDP Address Withdrawal
Primary link failure triggers notification message PE removes any locally learned MAC addresses and sends LDP address withdrawal (RFC3036) to remote PEs in VPLS New MAC TLV is used
18
VPLS Overview: Data Forwarding in Ethernet Edge H-VPLS

Topology 2: L2VPN, Ethernet Virtual Circuit Service (Distributed PE)
3550s
7600s QinQ Full Mesh LDP N-PE

MPLS Network
802.3
CE1
.1Q U-PE
401
N-PE
CE4
Customer VLAN
SP VLAN
Data
133
Ether Type
SA
DA
401
Ether Type
SA
DA
VC Label
Customer frames / VLANs are forwarded only Service delimiters are local to PE
.1q tags, VC-labels, RFC1483, etc.
Allows for hierarchical design options

19
VPLS Overview: VPLS Loop Prevention

CEs
PEs
MPLS Network
- LDP between VPLS members
PE view
- EoMPLS PW to each peer
Each PE has a P2MP view of all other PEs it sees it self as a root bridge, split horizon loop protection Full mesh topology obviates STP requirements in the service provider network Customer STP is transparent to the SP / customer BPDUs are forwarded transparently Traffic received from the network will not be forwarded back to the network
20
VPLS Overview: VPLS Learning

Unqualified
Single port assigned for all customer VLANs Single broadcast domain for all customer VLANs Single MAC address space (no overlap!)
Qualified
Each VLAN has its own VPLS instance A VLAN has its own broadcast space and MAC address space Customer MAC addresses MAY overlap One FIB per customer VLAN Broadcast domain limited to VLAN scope
21
VPLS Architectures
Presentation_ID
22
VPLS & H-VPLS

VPLS
192.168.11.1/24 192.168.11.25/24 192.168.11.11/24
VPLS
192.168.11.2/24 192.168.11.12/24
H-VPLS
H-VPLS
u-PE PE-CLE MTU-s
MPLS Core
MPLS Edge
23
VPLS Overview: Illustrated Direct Attachment (Flat)

Address MAC 1 MAC 2 MAC 3 Tx / Rx 102 / 201 E1/1 303 / 203
CE2 MAC 2
PE1, VCID 100

Address MAC 1 MAC 2 MAC 3 Tx / Rx E0/0 201 / 102 301 / 103
PE2
MPLS Network
Address MAC 1 MAC 2 MAC 3
Tx / Rx 103 / 301 203 / 302 E0/1
PE3 CE1 MAC 1 PE1
CE3 MAC 3
Port or P-VLAN based membership in the VSI in PEs All packet replication occurs on PEs
24
VPLS: Configuration Example PE PE

Create a L2 VFI with a full mesh of participating VPLS PE nodes 1.1.1.1 / 32 PE-1
l2 vfi PE1-VPLS-A manual vpn id 100 neighbor 2.2.2.2 encapsulation mpls neighbor 3.3.3.3 encapsulation mpls ! Interface loopback 0 ip address 1.1.1.1 255.255.255.255 MPLS Network l2 vfi PE2-VPLS-A manual vpn id 100 neighbor 1.1.1.1 encapsulation mpls neighbor 3.3.3.3 encapsulation mpls ! Interface loopback 0 ip address 2.2.2.2 255.255.255.255
PE-2 2.2.2.2 / 32
PE-3 3.3.3.3 / 32
l2 vfi PE3-VPLS-A manual vpn id 100 neighbor 1.1.1.1 encapsulation mpls neighbor 2.2.2.2 encapsulation mpls ! Interface loopback 0 ip address 3.3.3.3 255.255.255.255
25
VPLS: Configuration Example PE CE

CE1
PE-1 FE0/0
MPLS Network
PE-2
FE0/0
CE1
Interface fastethernet0/0 switchport switchport mode dot1qtunnel switchport access vlan 100 ! Interface vlan 100 no ip address xconnect vfi PE1-VPLS-A ! vlan 100 state active
!
PE-3
Interface fastethernet0/0 switchport switchport mode dot1qtunnel switchport access vlan 100 ! Interface vlan 100 no ip address xconnect vfi PE2-VPLS-A ! vlan 100 state active
FE0/1
CE1
Interface fastethernet0/1 switchport switchport mode dot1qtunnel switchport access vlan 100 Interface vlan 100 no ip address xconnect vfi PE3-VPLS-A etc.
26
VPLS: Sample Output

VPLS1#show mpls l2 vc Local intf ------------Vi1 Vi1 Vi1 Vi1 Vi1 Local circuit Dest address VC ID Status -------------------- --------------- ---------- ---------VFI 22.22.22.22 100 DOWN VFI 22.22.22.22 200 UP VFI 33.33.33.33 100 UP VFI 44.44.44.44 100 UP VFI 44.44.44.44 200 UP
PE-1#show vfi PE1-VPLS-A PE-1#show PE1-VPLS-A WORD VFI name PE-1#show vfi PE1-VPLS-A PE-1#show PE1-VPLS-A VFI name: VPLSA, state: up Local attachment circuits: Vlan100 Neighbors connected via pseudowires: 2.2.2.2 3.3.3.3
PE-1
MPLS Network
PE-2
PE-3
27
VPLS: Sample Output (Cont)

VPLS1#show mpls l2transport vc vcid 200 detail Local interface: Vi1 up, line protocol up, VFI Destination address: 22.22.22.22, VC ID: 200, VC status: up Tunnel label: imp-null, next hop point2point Output interface: PO2/1, imposed label stack {16} MPLS VC labels: local 18, remote 16 Group ID: local 200, remote 200 MTU: local 1500, remote 1500 Remote interface description: Sequencing: receive disabled, send disabled VC statistics: packet totals: receive 0, send 0 byte totals: receive 0, send 0 packet drops: receive 0, send 0 ..contfor all VPLS PWs sharing a common VC ID
PE-1
MPLS Network
PE-2
Use common AToM show commands
PE-3
28
VPLS Architecture: Characteristics - Direct Attachment (Flat)

Overview:
Okay for small customer implementations Simple provisioning Full mesh of directed LDP sessions required between participating PEs VLAN and Port level support (no QinQ)
Drawbacks:
No hierarchical scalability Scaling issues: PE packet replication Full mesh causes classic - N*(N-1) / 2 concerns
29
VPLS & H-VPLS

VPLS
192.168.11.1/24 192.168.11.25/24 192.168.11.11/24
VPLS
192.168.11.2/24 192.168.11.12/24
H-VPLS
H-VPLS
u-PE PE-CLE MTU-s
MPLS Core
MPLS Edge
30
VPLS Architecture: Architecture Ethernet Edge H-VPLS

3550s 7600s
802.3
CE1
.1Q
QinQ
Full Mesh LDP

n-PE n-PE
u-PE
101 102
CE4
CE2a
MPLS Network
400 401
CE2b
SP applied VLAN Tags for Customer isolation (PE-VLAN)

Customer applied VLAN Tags for WG isolation (CEVLAN)
n-PE
VPLS functioning between participating PEs
Dot1q Tunneling Data 401

Ether Type
SA
DA
102
Ether Type
SA
DA
31
VPLS Architecture: Architecture Ethernet Edge H-VPLS

3550s 7600s
802.3
CE1
.1Q
QinQ
Full Mesh LDP n-PEPoP

MPLS Network
u-PE
101 102
n-PE
CE4
CE2a
400 401
CE2b
SP applied VLAN Tags for Customer isolation (PE-VLAN)

Customer applied VLAN Tags for WG isolation (CEVLAN)
n-PE
PW VC Label is imposed at VSI
Data 401
Ether Type
SA DA 25
47
32
VPLS Architecture: Architecture MPLS Edge H-VPLS

L2VPN Router
802.3
CE1
.1Q
PE-CLE
AToM or L2TPv3
7600s
Full Mesh LDP PE-PoP
PE-PoP
CE4
PSN
CE2a
400 401
MPLS Network
CE2b
SP applied VC-Label & Tunnel LSP Label

Customer applied VLAN Tags for WG isolation (CE-VLAN)
PE-PoP
Data
401
Ether Type
SA
DA
1000
33
33
VPLS Architecture: Architecture MPLS Edge H-VPLS

L2VPN Router
802.3
CE1
.1Q
u-PE
AToM or L2TPv3
7600s
Full Mesh LDP
n-PE
n-PE
CE4
PSN
CE2a
400 401
MPLS Network
CE2b
AToM or L2TPv3 Header is now removed.

Customer applied VLAN Tags for WG isolation (CE-VLAN)
n-PE
PW VC & Tunnel labels are imposed
Data
401
Ether Type
SA
DA
25
47
34
VPLS Architecture: Characteristics H-VPLS

Benefits: Best for larger scale deployment Reduction in packet replication and signaling overhead on PEs Full mesh for core tier (Hub) only Attachment VCs virtual switch ports effected through Layer 2 tunneling mechanisms (AToM, L2TPv3, QinQ) Expansion affects new nodes only (no re-configuring existing PEs) Drawbacks: More complicated provisioning MPLS Edge H-VPLS requires MPLS to u-PE
Complex operational support Complex network design Expensive Hardware support
35
VPLS Deployment Scenarios
Presentation_ID
36
VPLS Deployment: SMB Connectivity

SFO-PE NYC-PE
CE-SITE1
MPLS Network
CE-SITE2
DFW-PE
CE-SITE3
New Layer 2 multipoint service offering Enterprise maintains routing and administrative autonomy Layer 3 protocol independence Full mesh between customer sites
37
VPLS Deployment: Layer 2 Multipoint Transit Provider

CE-1
SP-A
Transit Provider Network
SP-A
VPLS LDP FRoMPLS
CE-1
SP-As PEs appear back to back and packets are forwarded No LDP or Route exchange with transit provider Provides optimal traffic path to carriers PE
38
Summary
Presentation_ID
39
Phase I Architecture Support

Service Definitions Supported
Topology 1: L2VPN, Transparent LAN Service (Non-distributed PE)
802.3 CE1
dot1Q PE-PoP
7600s Full Mesh LDP PE-PoP

MPLS Network
CE4
Topology 2: L2VPN, Ethernet Virtual Circuit Service (Distributed PE)
3550s
7600s QinQ Full Mesh LDP PE-PoP

MPLS Network
40
802.3
CE1
.1Q PE-CLE
101
PE-PoP
CE4
Ethernet Standards Development

MEF Ethernet Service Defintion ITU-T Q3/SG13 L2PING & L2TRACE MEF UNI MEF E-LMI IEEE 802.1ad IETF VPLS IEEE 802.1ad MEF UNI MEF E-LMI
Ethernet CE
MPLS
Ethernet CE
IETF VPLS is a part of an overall Ethernet solution

IEEE 802.1ad Provider Bridges ITU SG12 Ethernet OAM L2TRACE & L2PING MEF Ethernet E-LMI, E-UNI and Ethernet Service Definitions
41
Cisco VPLS Summary

Fills L2 multipoint VPN gap between customer requirements and existing L2VPN pointto-point technologies Expands the service portfolio to for existing MPLS networks Has wide-industry support for LDP-based VPLS implementations & wide coordination between Ethernet focused standards bodies (IETF, IEEE, MEF, ITU) Cisco is actively driving development of standards and liaising between Forums to ensure the rapid development of standards and interoperable solutions
Metro A
CE
PE
Metro D
CE
C7600
CE
Metro E
Metro B
CE
PE
C7600
VPLS
PE
C7600
Metro C
CE
PE
C7600
Over Service Provider Network PE

C7600
CE
Metro F
42
World-Class Customer Support

2,000 Technical Support Professionals 1,600+ Support Engineers* (400 CCIEs) on 24x7 630+ Depots and 10,000 Field Engineers in 120 countries* 85,000+ Assisted cases/ month 321,000 Customer issues resolved/month 75% TAC Web resolved: of 25% assisted, 64% were web-initiated 98% Material availability 92% Orders submitted online, 55% no touch 60% Change orders submitted online
* Internal & Outsource Partners
Customer Advocacy Mission Customer Advocacy Mission

Accelerate customer success with Cisco through Accelerate customer success with Cisco through innovative services and world-class people, partners, innovative services and world-class people, partners, process, and tools. process, and tools.
43
Cisco leads in the MPLS Market

Americas EMEA AsiaPac/Japan Some 200 Customers (MPLS Core & L2/L3 Edge)
EBT
Korea Telecom
44
Cisco IOS MPLS

Smarter
The foundation for more The foundation for more services and more services and more revenues revenues
Enabling Innovative
A flexible QoS framework A flexible QoS framework to enable migration to a to enable migration to a converged infrastructure converged infrastructure
Faster
Services
Extensibility to different Extensibility to different transports with standardstransports with standardsbased open architecture based open architecture for investment protection for investment protection
45
Lasting

Ccmigration 09186a00801ed3ea

Încărcat de

Informații document

Descriere originală:

Titlu original

Drepturi de autor

Formate disponibile

Partajați acest document

Partajați sau inserați document

Opțiuni de partajare

Vi se pare util acest document?

Este necorespunzător acest conținut?

Drepturi de autor:

Formate disponibile

Ccmigration 09186a00801ed3ea

Încărcat de

Drepturi de autor:

Formate disponibile

Cisco IOS MPLS Virtual Private LAN Service (VPLS) Technical Deployment Overview

Enabling Innovative Services

2004 Cisco Systems, Inc. All rights reserved.

2004 Cisco Systems, Inc. All rights reserved.

2004 Cisco Systems, Inc. All rights reserved. 2003

Metro Ethernet: Emerging Multiservice Access Opportunity

Multitenant Unit (MTU) Basement Access Device

SP Metro Ethernet Network

EthernetConnected Branch Remote Worker

Metro Ethernet: Business Drivers*

Multi-Tenant Unit (MTU) Basement Access Device

SP Metro Ethernet Network

EthernetConnected Branch Remote Worker

2004 Cisco Systems, Inc. All rights reserved. Direction http://www.cisco.com/en/US/products/hw/routers/ps368/products_white_paper09186a00801df1df.shtml

The Ethernet Advantage

L3 VPNs High speed transport enables innovative services and applications

Value added services

VPLS Overview for Metro Ethernet

10/100/ 1000 Mpbs

Hub & Spoke

10/100/ 1000 Mpbs

Metro B DWDM/ CDWM

10/100/ 1000 Mpbs

VPLS Technical Overview

2004 Cisco Systems, Inc. All rights reserved. 2003

Virtual Private LAN Services (VPLS)

VPLS & H-VPLS

VPLS Direct Attachment

u-PE PE-CLE MTU-s GE

u-PE PE-CLE MTU-s

2004 Cisco Systems, Inc. All rights reserved.

Ethernet Edge Point-to-Point or Ring

CE Red VSI Blue VSI Green VSI CE

Red VSI Blue VSI Green VSI

Directed LDP session between participating PEs

Full Mesh of PWs between VSIs

VPN & VPLS Desirable Characteristics

Signaling of connections between PE devices associated with a VPN Forwarding of frames

2004 Cisco Systems, Inc. All rights reserved.

Cisco VPLS Building Blocks

Forwarding Mechanism VPN Discovery Signaling

IP Routing Distributed BGP

Centralized Radius Directory Services Label Distribution Protocol MPLS IP

Tunnel Protocol Hardware

A Comprehensive Solution: Robust, Flexible, Scalable, Manageable

VPLS Auto-discovery & Signaling

Centralized Radius Directory Services Label Distribution Protocol

Draft-ietf-l2vpn-vpls-ldp-01 does not mandate an auto-discovery protocol

2004 Cisco Systems, Inc. All rights reserved.

VPLS: Layer 2 Forwarding Instance Requirements

Address Learning / Aging:

VPLS Overview: Flooding & Forwarding

VPLS Overview: MAC Address Learning

Send me traffic with Label 201

VC Label 102 Tx Tx VC Label 201

VPLS Overview: MAC Address Withdrawal

VPLS Overview: Data Forwarding in Ethernet Edge H-VPLS

7600s QinQ Full Mesh LDP N-PE

Allows for hierarchical design options

VPLS Overview: VPLS Loop Prevention

- LDP between VPLS members

- EoMPLS PW to each peer