Date post: | 28-Nov-2014 |
Category: |
Documents |
Upload: | alexey-ponomarev |
View: | 520 times |
Download: | 5 times |
Customer UpdateCisco Expo 2010 - Split
Introducing recent Cisco7600 Innovations
Christian SchmutzerTechnical Marketing Engineer, [email protected] 25-Mar-2010Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
1
Cisco 7600 Services Ethernet leadershipConvergence of Transport & Service capabilities Carrier Ethernet 20G Linecards > 40G Linecards Broadband Aggregation Flexible QoS Resiliency: Multichassis LAG Ethernet OAM, CFM 8.1 L2/L3 Services Flexibility and Scale EVC Infrastructure Provider Bridging
Mobility Integrated Timing, SyncE, 1588v2 IP RAN Aggregation Cell Site Backhaul over MPLS Cell Packing Enhanced Gateway Capabilities Integrated Mesh WiFi agg PDSN/GGSN
VideoCisco 7600 Series LSM: P2MP-TE RSVP Call Admission Control Inline Video Monitoring 80G infrastructure capability Multicast HA NSF/SSO WAN PHY/OTN PHY
Over 95,000 Cisco 7600 Units Deployed
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
2
Investments Through Product Phases 1588 on ES+* 7600 Journey.. MPLS-TP *Foundation Quality ExcellenceProgrammable Ethernet *
2010 SIP-200/400/600 ATM, Ethernet, Serial, CHOC, POS SPAs IPSec SPA Foundation of Converged PE 2009 2007-08
2011+
Supervisor 720 720G Fabric E-FlexWAN Lan Cards Foundation of CE
2005-06
2003-04
S-Class Chassis ES20 LC CEOPs Services Introduction Voice, MGW Services Introduction, Extending in Mobile
40G ,ES+ LC IPoDWDM ES+ Combo LC ES+ LQ LC RSP720-10G HA Enhance Svc Aware Ethernet, Solidification of Mobile & CE
* Not Eced, under planning, Presentation_ID subject to change 2006 Cisco Systems, Inc. All rights reserved.
Seed
InvestCisco Confidential
Capitalize3
The Cisco7600 Road of Success
$5B in Revenue
100,000 Chassis
500,000 slots
7 Million Carrier Ethernet PortsPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
4
Cisco 7600 Service Evolution at the EdgeLAN, WAN, and Services
EnginesSupervisor 32 Supervisor 720 Route Switch Processor 720 Route Switch Processor 720 - 10G
Ethernet Services ModulesGE and 10GE with Rich QoS, Distributed, Line-rate Performance
SPA Interface ProcessorsModular Carriers Cards for WAN and Metro Shared Port Adapters
High-Density Ethernet ModulesHigh-Density GE and 10GE with Distributed, Line-rate Performance
Chassis3, 4, 6, 9, and 13 slots 80 gig capable Carrier class
Services ModulesDistributed Security; IPSEC SPA, Firewall, IDS, DoS Protection
Enhanced FlexWANPresentation_ID 2006 Cisco Systems, Inc. All rights reserved.
7500 Parity and PA Investment Protection
Cisco Confidential
5
7600 Engines Comparison
SUP720Control Plane Ctrl Plane CPU DRAM NVRAM Bootflash Forwarding Plane MAC (CAM) Table Size (pract./theor.) IP Subscriber Termination IP Forwarding MPLS Forwarding 10 GigE Uplinks MSFC3 600Mhz MIPS 1GB 2MB 64MB PFC3B/XL 32k / 64k x 30Mpps 20Mpps N/A
RSP720-10GE RSP720MSFC4 1.2GHz PowerPC Max 4GB 4MB 512MB PFC3C/XL 80k / 96k 32k 30Mpps 20Mpps RSP720-10GE
RSP720 Benefits1. Reduced Boot Time 2. Faster Convergence time 3. Increased Scale
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
6
ES+ Ethernet Services Plus FamilyHigh Performance GE & 10GE Options to 40 Gig Line-Rate L2/L3 multicast w/features EVC, CFM, VPLS, H-VPLS ANA EMS support
Dense QoS 256K queues 4-Level H-QOSBNGBROADBAND NEXT GEN.
Service Rich Subscriber Aware Ethernet BNG/ISG PPP/IP Sessions 802.1ah SyncE In-Line Video Monitoring Lawful Intercept Programmable microcode CWDM&DWDM SFPs/XFPs 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
Presentation_ID
7
Chassis Support: 7606, 7609, 7603-S, 7604, 7606-S, 7609-S, 7613 Processor Support: Sup720-3B/XL RSP720-3C/XL RSP720-10GE-3C/XL General Feature Support: Superset of ES+4x10GE 2x10GE
ES+XT Feature Highlights LAN, WAN, OTN PHY support ITU-T G.709/FEC support EFEC ITU G.975.1 I.4 mode between 7600s Performance Monitoring (OTN and WAN) CISCO-OTN-MIB support (FEC and Controller Tables) Clocking support (loop, line, internal)
BNGBROADBAND NEXT GEN.
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
8
2x10GE + 20x1
1x10GE + 10x1
ES+XC Feature Highlights
BNGBROADBAND NEXT GEN.
Presentation_ID
* ES+XT parityCisco Systems,(G.709/FEC) WANPHY support, post FCS (Rls 7 target) 2006 - OTN Inc. All rights reserved. Cisco Confidential
9
Multiple Savings From ES+XCRequirements 1 Redundant Uplinks Total Cost 2 20 GigE ES+ UNI ports$8 0k $8 0k $6 0k $4 5k
$370k$4 5k
3 Redundant RSPs
7606-S Chassis
Core or Optical NetworkPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
Redundant NNI Facing Links
UNI Facing Links10
Multiple Savings From ES+XC$8 7.5 k $8 7.5 k $4 5k $4 5k
7604 Chassis
Total Cost
$285kCore or Optical NetworkRedundant NNI Facing Links UNI Facing Links
1 Reduction in power
2 Reduction in footprint
3 Reduction in cost
-30%est. - 553w*Presentation_ID 2006 Cisco Systems, Inc. All rights reserved.
-29%- 2RUCisco Confidential
-23%- $85k*
*projected estimates
11
ES20 and ES+ Feature LicensingES+ LicensesLicenses 76-ES+BASIC-LIC 76-ES+ADVIP-LIC 76-ES+OTN-LIC 76-ES+ISG-LIC Description Per Card - Base License (included), IPv6 Per Card - MPLS VPN, MVPN, 6VPE Per Card - OTN License for G.709/FEC Per Chassis ISG License, 8k subs, 8 MPLS VRFs Comments All models All models ES+XT only Not for ES+T
ES20 LicensesLicenses 76-ES20-BASIC-LIC 76-ES20-ADVIP-LIC Description Per Card - Base License (included), IPv6 Per Card MPLS VPN, MVPN, 6VPE
IPv6 is now available in the Basic License License only required for cards that use licensed features Licenses can not be transferred between ES20 & ES+Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
12
Support in SRD3 & SRE SW images
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
13
L2 Shapers (4)
L3 Shapers (8)
L4 Queues (16)
ES+T1G or 10G port
Maximum of 16 queues at leaf level
Alternatives include 2/4/16 and asymmetric configurationsPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
14
ES20Number of Queues BNG Capable 10G Interface Modes OTN G.709/FEC Video Mon Capable L3VPN H-QoS L2VPN/VPLS SyncE Capable DFC Interfaces16k No LAN No No Yes Yes Yes No 3C/3CXL 2/4x10GE 20/40xGE
ES+128k (I/E) Yes LAN No Yes Yes Yes Yes Yes 3C/3CXL 2/4x10GE 20/40xGE
ES+XT ES+XC ES+T128k (I/E) Yes LAN/WAN SRD1 Yes Yes Yes Yes Yes 3C/3CXL 2x10GE 4x10GE 128k (I/E) Yes LAN/WAN Rls7 Yes Yes Yes Yes Yes 3C/3CXL 2x10+20X1 1x10+10X1 16/port Yes LAN/WAN SRD3 Yes Yes Yes Yes Yes 3CXL 2/4x10GE 20/40xGE
ES+, ES+XT, ES+XCExtended capability to support higher subscriber density applications with 128k queuesPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
ES+ T (Transport)Provides transport service capability with 16 queues per port, and price conscious scale15
12.2 SREDelivering ground breaking Mobile networking capabilitiesTiming EnhancementsSyncE Physical Layer Support on ES+2x10GE + 20x1GEBTS LTEFDD
RNC
BSC
1x10GE + 10x1GE
POC2ES+
POC1ES+ GE/10GE Ethernet
IP/ MPLS
SyncE (in)
LTE Gateway - GTPv2IP Address Allocation User Authentication/ Provisioning/ Accounting or nf tio ra ct t o ne e ge nn Re co S P e to RA PP bil ate Mo rpor Coca Coca Coca Co Cola Cola Cola VPN VPN VPN GGSN IP : 172.2.2.2 Charging tariff-times 0900, 1200 Charging record per MB of data access-point 1 name INTERNET_SERVICES No User AUTHENTICATION IP address from Radius access-point 2 name COCACOLA_CORP Authenticate User regenerate PPP VRF1 access-point 3 name PREPAID.NET Do AUTH/ACCT local IP address
PRC Cell Packing CEoPS and OC48 ATM SPAs Single Cell RelayTunnel Label 4 Bytes VC Label 4 Bytes ATM HEADER w/o HEC 4 Bytes Payload 48 Bytes
DHCP
AAA
CG
SGSN
P L2T
GGSNBEARER IP Address NETWORK configured static Mobile OR provisioned on radius/DHCP with GGSN Interfaces with SGSN/ Charging gateway/ RADIUS/ DHCPPresentation_ID
Packed Cell RelayTunnel Label 4 Bytes VC Label ATM HEADER w/o HEC 4 Bytes Payload Cells x N 52xN ATM HEADER w/o HEC 4 Byte Payload
Internet
APN1 SGSN GTP Tunnels APN2 APN3
4 Byte
48 Bytes
48 Bytes
GTP Mgmt. 2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
PACKED CELLS MAX 28 (28*52=1456 bytes)
16
Introduction to Synchronous EthernetSupported on all ES+ family membersES+, ES+T, ES+XT, ES+XC
SyncE uses physical layer to transmit clock information ESMC is not available in 12.2(33)SRE (planned for RLS7)ESMC Ethernet Synchronization Messaging Channel Used to transmit clock quality information
Up to 6 clock sources can be configured
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
17
Application #1Clock Recovery from SyncE NetworkSecondary
SDH/PDH Network
Primary
T1 I/Fs
CEOP
SUP/RSPGE or 10GE I/Fs 6/1 GE or 10GE I/Fs 5/1
SyncE Network
PRC
OCx
ATM
ES+
4/0/0
SyncE Network
GE or 10GE I/Fs
ES+3/1
Backplane Clock Distribution
ES+
7600! Example: configure core-facing GigE as timing source and transfer timing to downstream SyncE or SONET/PDH links ! interface GigabitEthernet 5/1 Recover clock from GE line synchronous mode clock source line Map GE clk to primary BP clock network-clock synchronization automatic network-clock input-source 1 GigabitEthernet 5/1 Map GE clk to secondary network-clock input-source 2 GigabitEthernet 6/1 BP clock (config not shown) interface ATM 4/0/0 clock source internal interface GigabitEthernet 3/1 synchronous mode clock source Cisco Systems, Inc. All rights reserved. Presentation_ID 2006 internal
Cisco Confidential
19
Application #2Clock Recovery from External (BITS)SDH/PDH NetworkT1 I/Fs
CEOP
SUP/RSP
BITS or other PRCtraceable reference
Secondary
OCx
Primary
ATM
Other LCBITS
4/0/0
SyncE Network
GE or 10GE I/Fs
ES+3/1
Backplane Clock Distribution
ES+
5/1
GE or 10GE I/Fs
SSU
7600! Example: configure core-facing GigE as timing source and transfer timing to downstream SyncE or SONET/PDH links ! interface GigabitEthernet 5/1 synchronous mode clock source internal interface GigabitEthernet 3/1 synchronous mode clock source internal interface ATM 4/0/0 atm clock internal network-clock synchronization automatic network-clock input-source 1 external 5/0/0 t1 sfPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
Automatic mode configures ES+ TX clocking to take system clock Non-intuitive Port Ref Alert BITS port is always x/0/0 X=slotnum20
What and Why Service Groups?Deploy many services on a single port Transport aspects of a Service are typically defined per EVC or Sub-IF QoS aspects historically can only be configured onPer EVC/Sub-IF basis Per physical port basisQos per EVC Wholesale Customers
Qos per physical port
Qos per Sub-IF
1. Customer buying service made of 2x Sub-IFs
Two major applications where we needed a solution for1.multi-service customer one customer buys multiple sub-IFs/EVCs but does want an aggregate QOS SLA 2.Provider does want to separate customers buying different products i.e. residential vs. business; retail vs wholesale and does want to assign certain QOS SLA to each of the different groups
Qos per physical port
Qos per Sub-IF
Qos per EVCPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
Retail Customers21
Configuring Service GroupsStep 1: Create a Service GroupPE2(config)#service-group 1 PE2(config-service-group)#? service-group submode commands default Set a command to its defaults description Service group specific description exit Leave the service-group configuration submode no Negate a command or set its defaults service-policy Attach a policy-map to a service group
Step 2: Configure Ingress and/or Egress QoSPE2(config-service-group)#service-policy ? input Attach a policy-map to ingress of a service group output Attach a policy-map to egress of a service group
Step 3: Assign a EVC to a Service GroupPE2(config)#int gi 2/0/10 PE2(config-if)#service instance 100 ethernet PE2(config-if-srv)#group ? Service group ID number
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
22
3-Level QoS ExampleService-group 2 service-policy out hqos Int gi 2/0/10 service instance 102 eth service-policy in policing service instance 103 eth service-policy in policing Policy-map flat class class-default shape average bandwidth remaining ratio Policy-map hqos class class-default shape average bandwidth remaining ratio service-policy llq Policy-map llq class pq police priority class cbwfq bandwidth percent
Service Group (egress)Parent: Rate-limited by shaper & Minimum bandwidth by BRR Child: queuing with 1x PQ and 1x CBWFQ
Policy-map policing class class-default police ...
EVC (ingress)Traffic is rate-limited and/or marked (DiffServ ingress Metering as per QoS SLA)Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
23
4-Level QoS ExampleService-group 1 service-policy out flat Int gi 2/10 service instance 100 eth group 1 service-policy out hqos service-policy in policing service instance 101 eth group 1 service-policy out hqos service-policy in policing Policy-map flat class class-default shape average bandwidth remaining ratio Policy-map hqos class class-default shape average bandwidth remaining ratio service-policy llq Policy-map llq class pq police priority class cbwfq bandwidth percent Policy-map policing class class-default police ...
Service Group (egress)Rate-limited by shaper Minimum bandwidth by BRR
EVC (egress)Child: queuing with 1x PQ and 1x CBWFQ
Parent: Rate-limited by shaper & Minimum bandwidth by BRR
EVC (ingress)Traffic is rate-limited and/or marked (DiffServ ingress Metering as per QoS SLA)Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
24
Different support on port-channel vs single-link
Policy Combinations Support MatrixPolicy combination ES+ Ingress H-QoS queuing on service only (3-level) H-QoS queuing on group only (3-level)H-QoS queuing on service and flat queuing on group (4-level)
ES20 Egress Yes Yes Yes No No Yes Yes No Ingress No No No No No Yes 2) Yes 2) No Egress Yes Yes No No No No No No
Yes 1) Yes 1) Yes 1) No No Yes Yes No
H-QoS queuing on group and flat queuing on service H-QoS queuing on service and group (5-level) Policing on service only Policing on group only Policing on service and group
1) not supported on Port-channel 2) not supported on Port-channelPresentation_ID
Planned for RLS7Cisco Confidential
Workaround: Hierarchical policing on Groups is supported!
2006 Cisco Systems, Inc. All rights reserved.
25
12.2 SRE Delivering Advanced Carrier Ethernet Services at the EdgeResiliency EnhancementsmLACP, Hot-Standby Pseudowire, REP+EVC
Shi p Q4C ping Y09
Carrier Ethernet Convergence802.1ah + VPLS , CFM 8.1, EVC expansionEPLAN: Port Classify default EPLAN: QinQ Access Classify S-VLAN Ingress Pop SVLAN symmetric EVPLAN: 802.1q Access Classify C-VLAN Ingress Pop CVLAN symmetricISID-1 ISID-1
MPLS Access Dual Homed Access MPLS/IP Core Ring Access
802.1q or QinQ C-MACBD2
H-VPLS Transport
VFI
802.1q or QinQ 802.1q or QinQ C-MACBD2 ISID-2 ISID-2
VFIB-MAC BD
VPLS PW
802.1q or QinQ
PBB AC
Video IntegrationMulticast HA, LSM: P2MP-TE, Video Mon (Q1CY10)MDI:HubCMTS GQAM /XDQA
MDI:Headend Cisco 7600 Cisco 7600 CRS-1 DCM DCM DNCS
HubCMTS
Cisco 7600 CRS-1
GQAM /XDQAPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
27
Cisco 7600 High AvailabilityNetwork and Node ResiliencyMicrowave Access
Access Resiliency MechanismsSR/MR APS Access Circuit Redundancy PW Redundancy, MS-PW Resilient Ethernet Protocol (REP) Spanning Tree (MST, PVRSTP) SR/MR 802.3ad (mLACP) R-L2GP (SRE), MAC withdrawal
BTS Node B
Cisco 7600Microwave
TDM/ATM Access
MPLS/IP Core
Node Resiliency MechanismsFully Redundant Commons Fast Fabric Synchronization Protocol Inclusive NSF/SSO EFSU/ISSU ISIS NSR (OSPF & BGP, Planned)
BTS
Node B
Core Resiliency MechanismsMPLS Access
BTS Node B
2-way PW Redundancy (SRE) MPLS TE/FRR, HSRP Hot Standby PW (SRE) BFD, BFD VCCV (Planned) PIC Edge (SRE), PIC Core IP FRR (Planned), MoFRR (Planned)Cisco Confidential
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
28
BGP Prefix Independent Convergence (PIC)Detection of Link layer failure Report failure to Route Controller Generate and flood an LSP Trigger and Commute an SPFBGP PIC 10s of milliseconds milliseconds 10s of milliseconds milliseconds
Adjust FIB with single event and communicate change to linecardsImmediate (0 milliseconds)
Immediate (0 milliseconds)
Install FIB adjustment into linecard HW path
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
29
BGP PIC VariantsBGP PIC CoreIGP path to BGP Next-Hop does change Examples: PE-P or P-P link failure, P node failure
BGP PIC EdgeBGP Next-hop does change Examples: Egress PE node failure, PE-CE link failure
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
30
BGP PIC CORESub-Second BGP Convergence
Cisco Leadership Feature!
Intf1 CE1 VPN1 site1 PE1 PE2 CE2 N/n VPN1 Site2
Normal forwarding path from ingress to egress PE
Intf1 CE1 VPN1 site1 PE1 PE2 Intf2 VPN1 Site2 CE2 N/n
Forwarding path from ingress to egress PE upon core failureConfigurationcef table output-chain build favor convergence-speedPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
31
Core Convergence without BGP PICReaction to this failure see next slide
In case of 10,000 BGP prefixes, 10,000 output chains need to be rewritten!
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
32
Core Convergence with BGP PICNew Output Chain Element (OCE) called loadinfo pointing to label OCE (IGP label) and adjacency OCE (outgoing interface)
Reaction to this failure see next slide
10,000 BGP prefixes point to loadinfo, one rewrite change in OCEs of loadinfo is enough to converge 10,000 prefixesPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
33
7600 BGP PIC Core Test Results
63,291 prefixes/sec
5,035 prefixes/sec
No PIC PIC
10,000 FIB rewrite events 10,000 new adjacencies are created, 10,000 pointers are redirected to new adjacency entries 1 FIB loadinfo inplace modification event Content of 1 adjacency is rewritten, no pointers are redirected 1)
No PIC PIC
10,000 FIB rewrite events 1 new adjacency is created, 10,000 pointers are redirected to 1 shared adjacency entry 1 FIB loadinfo inplace modification event Content of 1 adjacency is rewritten, no pointers are redirected35
1) PIC core for VPNv4 prefixes Inc. All rights reserved. Cisco ConfidentialCisco7600 Presentation_ID 2006 Cisco Systems, does use recirculation on
BGP PIC Edge Node Failure
2
No /32 IGP route to BGP Next-Hop
Recursive BGP 3 prefixes become unresolved Switchover to 4 Backup BGP Path via new NH
BGP Next-Hop 1 goes downPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
36
BGP PIC Edge - ConfigurationIngress PE
PIC Edge is a feature configured only on the local router!
cef table output-chain build favor convergencespeed router bgp 4711 modification bgp log-neighbor-changes neighbor 1.0.0.67 remote-as 4711 neighbor 1.0.0.67 update-source Loopback0 neighbor 1.0.0.68 remote-as 4711 neighbor 1.0.0.68 update-source Loopback0 neighbor 100.100.4.34 remote-as 1012 neighbor 100.100.4.34 fall-over bfd ! address-family ipv4 Install second best bgp additional-paths install BGP Path as backup bgp nexthop trigger delay 0 neighbor 1.0.0.67 route-map Lauda_v4 out neighbor 1.0.0.68 route-map Berger_v4 out neighbor 100.100.4.34 activate ! address-family vpnv4 neighbor 1.0.0.67 route-map Lauda_vpnv4 out neighbor 1.0.0.68 route-map Berger_vpnv4 out ! address-family ipv4 vrf vrf101 bgp additional-paths install bgp recursion host neighbor 100.101.4.34 fall-over bfdCisco Confidential
Enable inplace in CEF
Force BGP path resolution to /32s only for fast and reliable detection
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
37
BGP PIC Edge PE-CE Link Failure
Recursive BGP 3 prefixes become unresolved Switchover to 4 Backup BGP Path via new NHPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
1
Link to BGP Next-Hop goes down
38
7600 BGP PIC Edge Test ResultsDefault NHT delay is 5s
7,251 prefixes/sec
12,453 prefixes/sec
No PIC PIC
10,000 FIB rewrite events 10,000 new adjacencies are created, 10,000 pointers are redirected to new adjacency entries 1 FIB translation map rewrite event 10,000 adjacency entries pre-programmed, 10,000 HW pointers are redirected 1)Cisco Confidential
No PIC PIC
10,000 FIB rewrite events 1 new adjacency is created, 10,000 pointers are redirected to 1 shared adjacency entry 1 FIB loadinfo inplace modification event Content of 1 adjacency is rewritten, no pointers are redirected40
1) HW FIB pointer 2006 Cisco Systems,is very fast Presentation_ID re-direction Inc. All rights reserved.
SW CEF Entry for VPNv4 PrefixWith BGP PIC EdgeSoftware FIB (customer command)engine#sh ip cef vrf vrf101 65.0.1.0 de 65.0.1.0/24, epoch 4, flags rib defined all labels recursive via 1.0.0.11 label 1043 nexthop 1.1.14.32 GigabitEthernet3/0/1.114 label 27 recursive via 1.0.0.33 label 1043, repair nexthop 1.1.1.45 GigabitEthernet3/0/0.101 label 30
BGP paths are recursive via IGP
Inplace modification enabled
Backup path sent by BGP/RIB
Software FIB (internal command) CEF paths and flagsengine#sh ip cef vrf vrf101 65.0.1.0 in | i list|lock|adj|buck|choic|chain|> label|Path|Trans|Repair contains path extension list path 13342B1C, path list 1334E708, share 1/1, type recursive, for IPv4, flags must-be-labelled, neos indirection, recursive-via-host path 1A7214C4, path list 1C023BF8, share 1/1, type attached nexthop, for IPv4 nexthop 1.1.14.32 GigabitEthernet3/0/1.114 label 27, adjacency IP adj out of GigabitEthernet3/0/1.114, addr 1.1.14.32 1D312700 path 13342A2C, path list 1334E708, share 1/1, type recursive, for IPv4, flags must-be-labelled, neos indirection, repair, recursive-via-host path 13342FCC, path list 1C023E28, share 1/1, type attached nexthop, for IPv4 nexthop 1.1.1.45 GigabitEthernet3/0/0.101 label 30, adjacency IP adj out of GigabitEthernet3/0/0.101, addr 1.1.1.45 13348AA0Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
41
Redundant Access Gateway EnhancementsL3 Service Redundant Services L2 E-LINE L2 E-LAN IP Sessions
7600
1
MST Access Gateway REP or REP Access Gateway Multi-chassis Link aggregationL2 Access
L3 IP/MPLS
2
ASR 9000
3
IP/MPLS AggregationRedundant Access Gateway
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
48
R-L2GPL2 NetworkRootBPDU PE11SVI VFI
New in SRE
MPLS CoreVFI
PE21SVI
L2 Switch BPDU
VFI SVI VFI
SVI
PE22
PE12VFI VFI SVI SVI
Second Best Bridge
R-L2GP simplifies the solution by removing requirement to run full MSTP on N-PE Light modification to existing MST; static BPDU are generated and sent to L2 domain L2 domain isolation Access network is in its own STP domain. Access network is isolated to each other. Easy provisioning and troubleshooting Convergence time TCN propagationPresentation_ID
as per rapid STP BPDU snooping to trigger VPLS MAC withdrawalCisco Confidential
2006 Cisco Systems, Inc. All rights reserved.
49
mLACPDHD
New in SREStandby POA
Virtual LACP Peer
Inter-chassis Communication
EtherChannel with mLACPActive POA
mLACP with 2 sided PW redundancy integration provides a strong mechanism for multi-chassis resiliency DHD is attached to a group of Points of Attachments which look like a single node mLACP appears to DHD as a single 802.3ad LACP POA work in active/standby mode ICC exchanges redundancy information between chassis Links to standby PoA are in hot-standby state Similar enhancement applies to REP accessPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
50
mLACP with two sided VPWS/VPLS redundancyMPLS
New in SRE
Standby
L2
PE1
Standby
PW 2
Active Active Standby
L3PE2 Active
PW 1 PW 3
Standby
DHD1
L1Active
L4PE4 Standby
Active PE3 E Active
DHD2
PW 4
Standby
VPWS
Two PEs form one virtual group on each site, one PE is primary the other is backup PEs send primary/backup information during PW signaling PW with both sides status are established, others are hot standby MPLS uplinks, attachment circuits and PW status tracking Message exchange within virtual group (for mLACP it is ICC). New primary PE will send PW status message to its peer group, and bring up the PW into forwarding.VPLS
PW will be active between PEs with active access circuits only Single active path through VPLS domain between PE virtual groupPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
51
Introduction to MACinMAC (802.1ah)B-DA B-SA B-TAG TPDNRI C-DA C-SA C-TAG L2 PDU FCS
Octets 12 Ether-Type (0x88-e7) Bits
3 I-PCP Res1 Res2 I-DEI NCA
46 I-SID
712 C-SA
1318 C-DA
8 7 6 5 4 3 2 1
802.1ah Frame Format SettledPriority Code Point (I-PCP) Drop Eligible Indicator (I-DEI) No Customer Addresses (NCA) Reserved 1 (Res1) Reserved 2 (Res2) Backbone Service Instance Identifier (I-SID)Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
52
IEEE 802.1ah Control Plane ModelIB-BEBI-ComponentC-MAC Lookup Function MAC Relay
B-ComponentB-MAC Lookup Function MAC Relay
EFP(Physical) CIP
I-EFP(Virtual) PIP B-MAC Tagging/ I-SID Insertion
B-EFP(Virtual) CBP B-VLAN Re-write/ I-SID Validation
Switch Port(Physical)
PBP
Ingress EFP (802.1ah UNI) int gig1/1 service instance 15 ethernet encapsulation dot1q 9 second-dot1q 8 bridge-domain 10 c-mac
MAC Tunnel ethernet mac-tunnel virtual abc.com bridge-domain 100 service instance 31 ethernet encapsulation i-sid 10000 bridge-domain 10 c-mac
Egress switchport (NNI) int gig1/2 switchport switchport mode trunk switchport allowed vlan 100
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
53
802.1ah Related Terminologies and Inter-connectionsCE
MPLS Core
PE I I B BEB B B BEB
802.1ah PBBNB B BCB (PB) B B B B PE/ BEB B BEB B B IB BEB
C
802.1ad / Q-in-Q PBNS
C PEB
CE
S
Peer 802.1ah PBBN
PB S S I BEB S S PEB PB
CE S S CE
Hierarchical B 802.1ah BEB PBBN
I BEB I B
I
C
CE
I I BEB C
802.1QC Q C
Q
C
CE
MPLS Core
M P
Q
C
CE
Legend:
C C-Tagged Interface
S S-Tagged Interface IB BEB IB type Backbone Edge Bridge
I I-Tagged Interface PE/ BEB MPLS PE and Backbone Edge Bridge
B B-Tagged Interface PB Provider Bridge (S Bridge)
M MPLS Interface PEB Provider Edge Bridge (C + S) Bridge Q 802.1Q C Bridge CE Customer Equipment 54
I BEB I type Backbone Edge Bridge
B BEB B type Backbone Edge Bridge
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Pseudo-wire Scalability of VPLSPE PE IP/MPLS PE PE
VPLS Full mesh of PWs between virtual switching instances (VSI) Mesh per VPLS customer PW scale challenges Hierarchical VPLS (H-VPLS) Core interconnects edge domains (MPLS or Ethernet) Hub-and-spoke topology in IP/MPLS edge Smaller full mesh in core Mesh per VPLS customer H-VPLS with PBB U-PE adds/removes PBB encapsulation U-PE can group multiple I-SIDs in a B-VID Multiple customers per mesh possible if using VPLS instance per B-VID
PE PE PE
PE
N-PE U-PE
IP/MPLS
N-PE U-PE
IP/MPLS N-PE
802.1ad PB N-PE
N-PE U-PE
IP/MPLS
N-PE U-PE
IP/MPLS N-PE
802.1ah N-PE PBB
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
55
MAC Address Scalability in H-VPLSH-VPLSN-PE U-PE IP/MPLS N-PE U-PE U-PE
H-VPLS with PBBN-PE IP/MPLS N-PE U-PE
IP/MPLS N-PE
802.1ad PB N-PE
IP/MPLS N-PE
802.1ah N-PE PBB
c-mac c-mac : : : : : : : : : : : : : : : : : : : : : : : c-mac
c-mac c-mac : : : : : : : : : : : : : : : : : : : : : : : c-mac
c-mac c-mac : : : : : c-mac
b-mac b-mac : b-mac
b-mac b-mac : b-mac
c-mac c-mac : : : : : c-mac
No customer MAC addresses on N-PE nodes N-PEs only learn backbone MAC addresses imposed by U-PEsCisco Confidential
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
56
7600 MPLS + PBB IB-BEB ConfigurationVPWS + 802.1ah Service ImplementationStep 1Ingress EFP configuration (UNI)interface TenGigabitEthernet3/1 dot1q tunneling ethertype 0x88A8 service instance 100 ethernet description ** UNI EFP VPWS Service encapsulation dot1q 100 second-dot1q 1-4094 rewrite ingress tag pop 1 symmetric service-policy input vz-ingress-policer service-policy output vz-H-QoS-parent l2protocol forward bridge-domain 100 c-mac
Step 2Mac-in-Mac tunnel configurationethernet mac-tunnel virtual 1 description ** IB-BEB - Mac Tunnel 1 bridge-domain 1000 service instance 1 ethernet description ** VPWS Service - ISID encapsulation dot1ah isid 10000 bridge-domain 100 c-mac
Step 3VPWS configurationinterface Vlan1000 description ** IB-BEB VPWS Service xconnect 2.2.2.2 3000 encapsulation mpls
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
57
7600 MPLS + PBB IB-BEB ConfigurationVPLS + 802.1ah Service ImplementationStep 2 Step 1Ingress EFP configuration (UNI) Mac-in-Mac tunnel configurationethernet mac-tunnel virtual 1 description ** IB-BEB - Mac Tunnel 1 bridge-domain 1000 service instance 1 ethernet description ** VPWS Service - ISID encapsulation dot1ah isid 10000 bridge-domain 100 c-mac
interface TenGigabitEthernet3/1 dot1q tunneling ethertype 0x88A8 service instance 100 ethernet description ** UNI EFP VPLS Service encapsulation dot1q 100 second-dot1q 1-4094 rewrite ingress tag pop 1 symmetric service-policy input vz-ingress-policer service-policy output vz-H-QoS-parent l2protocol forward bridge-domain 100 c-mac
Step 3VPLS configurationl2 vfi Vz-MAC-Tunnel-1 manual vpn id 3000 neighbor 2.2.2.2 encapsulation mpls neighbor 3.3.3.3 encapsulation mpls
interface TenGigabitEthernet3/2 dot1q tunneling ethertype 0x88A8 service instance 100 ethernet description ** UNI EFP - VPLS Service encapsulation dot1q 100 second-dot1q 1-4094 rewrite ingress tag pop 1 symmetric service-policy input vz-ingress-policer service-policy output vz-H-QoS-parent l2protocol forward bridge-domain 100 c-mac
interface Vlan1000 description ** IB-BEB VPLS Service xconnect vfi Vz-MAC-Tunnel-1 manual
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
58
P2MP RSVP-TEHigh Bandwidth Source
Receiver PE3 Receiver PE1 P1 PE4 Receiver PE2
PE1 is the head-end Three tunnel destination: PE2, PE3 and PE4 PE1 sets up and maintains three S2L sub-LSPs via three RSVP Path messages (one per destination)Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
59
P2MP TE RSVP RSVP PATH MessagesPATH PATH
PE3
PE1PATH
PATH
P1
PATH
PE4 PE2
Head-end Router PE1 sends three path messages (one per destination) First PATH message: PE1 -> P1 -> PE3 Second PATH message: PE1 -> P1 -> PE4 Third PATH message: PE1 -> PE2Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
60
P2MP TE LSP Setup RSVP RESV MessageL=30RESVHeadend Branch pointPATH PA THRESV
Tailend1
L=50RESV
PE3
PATH
PE1RESV
RESV
L=50
P1
RESV
RESV RESV
RESV
L=40 L=20
PE4Tailend2
PE2 PE3 advertises incoming 30, PE4 advertises 40 and PE2 advertises 20 RSVP RESV from PE3 and PE4 may reach P1 at different times Upon arrival of RESV from PE3, P1 advertises incoming label 50 for the LSP destined for PE3 Upon arrival of RESV from PE4, P1 realizes that it is a branch point. Hence, P1 also advertises SAME incoming label 50 for LSP destined for PE4Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
61
P2MP TE LSP Data PlaneLabel 30 IPv4 packet Label 50 IPv4 packet IPv4 packet IPv4 packet
PE3IPv4 packet Label 40 IPv4 packet
PE1Label 20 IPv4 packet
P1 PE4
PE2
IPv4 packet
Mid-point Label Replication Advertise the same incoming label for LSP destined for PE3 and PE4 This mechanism allows upstream LSR to perform label replication Head-end Label Replication Sends one packet (outgoing label 50) for both LSP destined for PE3 and PE4
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
62
P2MP-TE Deployment ConsiderationsP2MP IOS Supported Platform : 7600 Image release : 122SRE 7600 P2MP Supports Egress replication only. So cannot co-exist with MVPN. Ingress capable cards have to be powered off. TE-FRR Link protection is only supported for this release. Supports head-end scalability of 1500 TE Tunnels/sub-lsps. Midpoint scalability limit of 10,000 tunnels/sub-lsps. For line rate performance use ES+ line cards. Active and backup have to be bundled interfaces across same line cards for port-channel FRRPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
63
Cisco 7600 Subscriber Aware Ethernet For 3-Play ServicesService Service Voice over IP Voice over IPSubscriber Subscriber User User Authentication Authentication Dynamic Dynamic Provisioning // Provisioning Self-provisioning Self-provisioning
IPTV IPTV
Accounting Accounting
High BW & High BW & Multicast Multicast
High Speed High Speed Internet Internet Access AccessPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
Hierarchical QOS Hierarchical QOS68
Flexible Ethernet Services Mapping Enabling Multiservice AggregationFlexible Mapping of subscriber VLANs to services (L2, L3, MPLS, ISG) VLAN translation capabilities for single and doubled tagged VLANs Residential Subscriber Sessions with RADIUS based zero-touch provisioning Business VPN L2/L3 Bitstream wholesale services
Residential
VLAN -802.1q -QinQ
STB Business Corporate
H-QOS per Session
ISG Subscriber Session
L3/VRF
Business Corporate
H-QOS per VLAN
Residential
Flexible VLAN Translation 1:1 2:2 1:2
L2, Bridged
Security
VPLS L2, Point to Point EoMPLS
STBPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
69
Cisco 7600 ES+ Subscriber-Aware EthernetRADIUS DHCP Portal
IP/PPP Sessions to meet tripleplay requirements with simple, flexible per-subscriber control Zero-touch provisioning and dynamic per-subscriber H-QOS with Cisco ISG Up to 40G per slot for business and residential services on same port Distribute architecture and decrease CAPEX spending with increased BW per subscriber
RADIUS / AAA push/pull Per Sub/Service AccountingISG
Self-provisioning / Selfcare L4R Internet
PPPoEoX IPoE
ISG Sessions
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
70
7600 BNG Feature HighlightsPPPoEoE (802.1q, QinQ) ISG IP Sessions ISG SupportZero-touch provisioning Change of Authorization Dynamic VRF assignment
ES+ support with 40Gbps per slot bandwidth Link Aggregation for PPPoE/IP Sessions -- 1:1 (ES+ only) Multicast Co-existence with IP sessions (ES+ only) NAS port option 82 + option 60 Transparent Auto Logon DHCP Authentication
RADIUS support DHCP relay/server DHCP Radius Proxy 48K VLAN subinterfaces Session HA for ISG IPoE and PPPoE Hierarchical QoS Lawful Intercept Control Plane Policing
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
71
ES+ Intelligent Services Gateway LicenseThe ES+ ISG license includes all the available features for subscriber aware sessions :IP sessions, ISG, PPPoE sessions, ISG dynamic QOS provisioning, IP session HA, radius accounting, DHCP relay, DHCP server, radius proxy, and TAL. 8 VRFs per license for internal management / operations use.
Purchase ISG licenses for the entire system, in units of 8000 sessions, for example:One 8K license for 8000 sessions on the system Two 8K licenses for 16,000 sessions on the system76-ES+ISG-LIC 76-ES+ISG-LIC= ES+ Intelligent Services Gateway (ISG) Software License ES+ Intelligent Services Gateway (ISG) Software License
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
72
7600 SW Releases and Planning TimelineSRAShipped June 06
End of Sale
SRCShipped January 08 EOS announced
SRC4
SRD3
SRD4Shipped Feb 10
Rls7 15.0(1)SFCS target Jul10 CCd
Rls9 15.1(2)SFCS target Mar11 Planning
Shipped Shipped May09 Sept09 EOS announced
2006
2007
2008
2009
2010
2011
SRBShipped February 07
SRDShipped October 08
SRB6Shipped Jun09
SREShipped Nov09
SRE1FCS target Apr2010 ECd
Rls8 15.1(1)SFCS target Nov10 Planning
Rls10 15.1(3)SFCS target Jul10 Planning
End of SaleRecommended SW Releases
Future Release Information is Subject to ChangePresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
73
Time Based Release -- BenefitsNew Time-Based Release Model for 7600 Starting with Rls7 in July 2010 Responsive to Business NeedsFaster Time to Market Feature release every 4 months Predictable schedule for new features and rebuilds Improved quality releases are more stable more quickly (no features in rebuilds)
Faster to Deploy
Broadened feature consistency across platforms (Shared components with ASR1000 ) Clear software deployment & migration guidelines
Easier to Manage
Proactive release support policies Consistent release numbering for new feature releases vs. maintenance rebuilds
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
74
Cisco 7600 and IOS Releases2H 2009SRB6SRB
1H 2010
2H 2010
1H 2011
2H 2011
1H 2012
2H 2013
EOS (Oct. 09)SRC4
EOS (May 10) Catalyst 6500 chassis support on 7600 SW branches
SRC
End of Sale AnnouncementSRD
SRD3
SRD4 (Feb 10)
SRE
12,2SRE CCO 11/09
SRE1 (Apr 10) SRE2 15.0(1)S S1
S2
S3
S4
7600-RLS7
CCO (July 10)7600-RLS8
CCO (Nov 10)
7600-RLS9
Initial CCO Rebuild PSIRTPresentation_ID 2006 Cisco Systems, Inc. All rights reserved.
CCO (Mar 11)
*
SW Release dates subject to change without notice75
Cisco Confidential
RLS7 Feature SummaryCarrier Ethernet 802.1ad full compliance REP configurable fast timers CLASS-based-QoS-MIB for EVC Private Host on SVI for VPLS and SVI based EoMPLS EVC over Portchannel/LACP with weighted load balancing
Status: ECd FCS : July 2010
High Availability MPLS TE-FRR for VPLS Port-Channel/LACP uplinks BRE plus Sonet/SDH APS support on SIP400 & SIP 200 BFD VCCV for ATM AC BFD over Port Channel Vidmon Static PW using P2MP TE or RSVP P2MP MPLS-TE NSF/SSO mLDP for mVPN and mVPN Extranet PIC Core for IGP with ECMP
QOS ES+ Port-Channel Qos Gap completion Policing for EVC over PortChannel/LACP on ES20 Non-Agg WRED on ATM (v1) SPA COS based WRED on L3 Main Interfaces on ES+
Video / Multicast
ISG and IP edgeDHCP Radius Proxy
Mobile 1588 v2 on Metronome SPA Synchonization Messaging via SSM/ESMC (including HA)
Hardware WAN PHY/OTN on ES+XC ATM v2 SPAs Tunable DWDM XFP for ES+ GLC-GE-100FX for ES+ XFP-10G-MM-SR for ES+ ONS-SC-155-EL Electrical STM1 for v1 and v2 ATM SPAs76
Routing
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Cisco 7600 delivers on next generation requirementsServices shift any service any screenSubscriber Aware Ethernet for Next Generation BNG features L2 & L3 service control and accounting with ISG for IP and Ethernet Leading 3G/4G Mobile Gateway solutions
New Broadband ProfilesHigh BW per subscriber ES+ 40 Gig LCs High queuing density and granularity Architecture Flexibility and scale
Focus on profitabilityLeading distributed edge architecture Residential, Business, and Wholesale profiles ISG 2.0 dynamic services for Ethernet Video performance and Management leadership
Execute on Carrier Ethernet visionISG Dynamic service creation for L2/L3 IP-RAN scale and migration to Ethernet Flexibility to respond to changing user behavior77
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Presentation_ID
2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
78