ETHERNET SERVICES FOR MULTI-SITE CONNECTIVITY

Similar documents
Metro Ethernet Services A Technical Overview Ralph Santitoro

Multipoint Bridged Ethernet Using MPLS Virtual Private LAN Services

Ethernet Wide Area Networking, Routers or Switches and Making the Right Choice

CLOUD COMPUTING. A New Era of Business Opportunity. Matthew Maderios, CA Enterprise. IT Roadmap Conference & Expo San Jose, CA.

MetroEthernet Options

Small Enterprise Design Profile(SEDP) WAN Design

Data Center Interconnect Solution Overview

Evaluating networking technologies

How to Configure a Hybrid WAN in Parallel to An Existing Traditional Wan Infrastructure

Cisco Group Encrypted Transport VPN

SD-WAN AND BEYOND: DELIVERING VIRTUAL NETWORK SERVICES

Metro Ethernet Design and Engineering for CO

Service description ETHERNET

Metro Ethernet for Government Enhanced Connectivity Drives the Business Transformation of Government

NETWORK SERVICES: ETHERNET WAN ETHERNET SERVICES PRODUCT PORTFOLIO SUMMARY DOCUMENT

Configuration and Management of Networks. Pedro Amaral

Hands-On Metro Ethernet Carrier Class Networks

From Zero Touch Provisioning to Secure Business Intent

Avaya 132-S Avaya IP Telephony Design Elective.

Carrier Ethernet Service

Choosing the Right. Ethernet Solution. How to Make the Best Choice for Your Business

NSG100 Nebula Cloud Managed Security Gateway

NSG50/100/200 Nebula Cloud Managed Security Gateway

TREND REPORT. Ethernet, MPLS and SD-WAN: What Decision Makers Really Think

There are two ways to establish VCs:

Optimizing Ethernet Access Network for Internet Protocol Multi-Service Architecture

Three Pillars of Effective Disaster Recovery

Hands-On VPLS: Virtual Private LAN Service

Chapter 10: Planning and Cabling Networks

Cisco Webex Cloud Connected Audio

MASERGY S MANAGED SD-WAN

SCTE Event. Metro Network Alternatives 5/22/2013

Lecture 7. Network Layer. Network Layer 1-1

GTS Ethernet line is designed so as to be compliant with the specifications of the MEF 6.1 and MEF 10.2 standards.

Automating VPN Management

WAN Technologies CCNA 4

Cisco 5921 Embedded Services Router

L2CONNECT 2.0 E-ACCESS

University of San Francisco Course Syllabus and Outline

EXHIBIT A-1 to Appendix D to DIR Contract NO. DIR-TEX-AN-NG-CSA-ICXXX. Service Description: PCI Texas South Region Dedicated Burstable/Shared Network

Technology Brief. VeloCloud Dynamic. Multipath Optimization. Page 1 TECHNOLOGY BRIEF

Network Design with latest VPN Technologies

The Operational Advantages of Ethernet in a Metro Network An MEF Economic Study Supercomm, 2003

Universal Network Demarcation. Enabling Ethernet and wave services with the Nokia 1830 PSD. Application note. 1 Application note

QUESTION: 1 You have been asked to establish a design that will allow your company to migrate from a WAN service to a Layer 3 VPN service. In your des

WHITE PAPER ARUBA SD-BRANCH OVERVIEW

Choosing a WAN Solution IP VPN vs. Frame Relay or ATM

Top-Down Network Design

Simplifying the Branch Network

Secure VPNs for Enterprise Networks

Differentiated services code point (DSCP) Source or destination address

Q-Balancer Range FAQ The Q-Balance LB Series General Sales FAQ

MPLS vs SDWAN.

MPLS VPN: Business Ready Networks. The cost-effective, scalable and robust network solution

CONNECTING THE CLOUD WITH ON DEMAND INFRASTRUCTURE

SD-WAN Deployment Guide (CVD)

Logical Network Design (Part II)

Network Service Description

Packet-Optical, the Future of Transmission Networks?

Backbone Provider Bridging Networks A Highly Scalable VLAN (Multicast) Architecture

Simplifying WAN Architecture

IPsec VPN. Quick Guide 3/19/ EarthLink. Trademarks are property of their respective owners. All rights reserved.

Exam: : VPN/Security. Ver :

CertifyMe. CertifyMe

GRE and DM VPNs. Understanding the GRE Modes Page CHAPTER

Modular Policy Framework. Class Maps SECTION 4. Advanced Configuration

PrepKing. PrepKing

Exam Questions

The Micro Packet ONP: Leveraging Today s Optical Network For Next-Generation Ethernet Access

BT Ethernet Connect Global Service Annex to the General Service Schedule (Doc Ref: 13.1 July 2013)

Certified Cisco Networking Associate v1.1 ( )

itel MPLS (IP VPN) Maximum Network Potential

ENTERPRISE CONNECTIVITY

Intranets and Virtual Private Networks (VPNs)

The Designing & Implementing a Voice-Enabled IP Network course has been designed with three primary goals:

Chapter 6 Connecting Device

Cisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications

Frame Relay or Internet VPNs

ASA Access Control. Section 3

CCNA Exploration Network Fundamentals

FOOTHILLS COMMUNICATIONS. Network TRANSPARENCY statement

Elevate the Branch-Office Experience with an Application-Centric Platform

Truffle Broadband Bonding Network Appliance

Cisco Cisco Certified Network Associate (CCNA)

TRANSWORLD IPLC. Another variant of IPLC is International MPLS.

Cisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications

Mission Critical MPLS in Utilities

Introducing Campus Networks

WHITE PAPER Ericsson Delivers on Carrier Ethernet Solution IDC OPINION. Sponsored by: Ericsson. January 2009

CMPE 150 Winter 2009

Certified SonicWALL Security Administrator (CSSA) Instructor-led Training

ENTERPRISE CONNECTIVITY

Ch. 4 - WAN, Wide Area Networks

XO Wide Area Network ( WAN ) Services IP Virtual Private Network Services Ethernet VPLS Services

Campus Network Design

Enabling Branch Office Consolidation

NINESTAR CONNECT. Network TRANSPARENCY statement

Introduction to Segment Routing

Ardmore Telephone Network TRANSPARENCY statement

CCNP Switch Questions/Answers Cisco Enterprise Campus Architecture

Transcription:

SECURITY, PERFORMANCE, IP TRANSPARENCY INTRODUCTION Interconnecting three or more sites across a metro or wide area network has traditionally been accomplished via a hub and spoke network topology using Private Lines, Frame Relay or IP VPNs over the Internet. Ethernet services support hub and spoke topologies but also support an any-to-any network topology similar to a LAN but delivered over a wide area. This latter capability is unique to Ethernet services and cannot be cost effectively delivered using legacy point-to-point technologies such as Frame Relay or IP VPNs. This paper discusses two options for multi-site connectivity using Ethernet services. One option discusses the classical hub and spoke topology using Ethernet Virtual Private Lines (EVPL). The other option discusses the any-to-any topology using an Ethernet Private LAN (EP-LAN) service. Through examples, the paper illustrates the capabilities of the two approaches and their benefits. ETHERNET OR IP VPNs FOR MULTI-SITE WAN CONNECTIVITY? Because most applications today are IP-based, one may presume that IP VPNs are more suited than Ethernet VPNs. While both types of VPNs have their usage in the network and can provide similar connectivity, there are three significant benefits that Ethernet VPNs have over IP VPNs, namely, Security, QoS Performance and IP Transparency. Security Ethernet services do not use Layer 3 IP routing protocols since Ethernet does not need them for making traffic forwarding decisions. Therefore, Ethernet services are immune to Layer 3 Internet-based threats across the WAN because they do not traverse the Internet as IP VPNs do. While the payload for IP VPNs is encrypted, the outer IP header is not and is therefore vulnerable to popular Internet-based threats such as IP denial of service (DoS) attacks. QoS Peformance Because Ethernet services run over the service provider s managed network and not the Internet, the service provider can better control the end-to-end packet latency, packet loss and service availability. This results in more predictable WAN QoS performance when compared to running an IP VPN over the Internet. IP Transparency Ethernet services do not require IP routing information to be shared or coordinated with the service provider. This enables one to use their existing IP addressing and gives them the freedom to use any IP address as they expand their network or applications. Furthermore, if they need to support IPv6 applications, Ethernet services support these transparently. With an IP VPN, one needs to find a service provider that can support IPv6 or needs to purchase and manage routers that perform IPv6 to IPv4 conversion. This is unnecessary with Ethernet services. ETHERNET SERVICE OPTIONS FOR MULTI-SITE CONNECTIVITY There are different Ethernet service options for interconnecting three or more sites over a wide area network. One method uses the popular and familiar hub and spoke topology using Ethernet site-to-site connectivity services. 1

Another method uses a multi-point connectivity service. The next two sections explore these methods and discuss significant differences that impact IT operations management and cost. EVPL for Hub and Spoke Connectivity An Ethernet Virtual Private Line (EVPL) service provides site-to-site connectivity using a point-to-point Ethernet Virtual Connection (P2P ) between Ethernet ports (s) on one s service attaching equipment, e.g., a switch or router. EVPLs provide multi-site connectivity when deployed using a hub and spoke topology. The EVPL can also support multiple classes of service to provide different bandwidth and performance for each application supported over the EVPL. An EVPL service is ordered to connect each spoke site to the hub site. Each EVPL s P2P from the spoke sites is multiplexed onto a single Ethernet on the hub site s router. The hub site s Ethernet speed is determined by the amount of bandwidth required from all spoke sites and projected future growth of bandwidth or new spoke sites to be added. Refer to Figure 1. The benefit achieved with this approach is centralized traffic routing, requiring simpler and lower cost routers to attach to the EVPL at the spoke sites since these locations only need to make a direct, point-to-point connection to the hub site. EP-LAN for any-to-any connectivity An Ethernet Private LAN (EP-LAN) service provides any-to-any connectivity using a multipoint-to-multipoint (MP2MP) between Ethernet s on one s service attaching equipment. EP-LANs enable all sites connected to the MP2MP to communicate with each other over the WAN. An EP-LAN behaves like a LAN but over a wide area. The EP-LAN can support multiple classes of service providing different bandwidth and performance for each application supported over the EP-LAN. A single EP-LAN service is ordered to connect all sites. All sites are interconnected via a single MP2MP. Refer to Figure 2. With this type of connectivity, the Ethernet Service Provider performs all the switching, enabling each site to communicate with any other site. Since a single is present at each, centralized routing is not required as with an EVPL-based hub and spoke implementation. Hub Site P2P Hub P2P Spoke P2P s multiplexed at Hub Site Spoke MP2MP Site 2 Site 3 Figure 1: Hub & Spoke Implementation using EVPLs Figure 2: Multipoint Implementation using EP-LAN In a hub and spoke topology, spoke sites need to connect through the hub site to communicate with any other site. Since the hub site performs traffic routing among all sites, network operations personnel managing the hub site router are responsible for all route configuration and management to interconnect the remote spoke sites. The EVPLs provide connectivity between the spoke sites and the hub site but do not route traffic among the sites. One benefit achieved with this approach is simplicity in adding new sites to the shared EP-LAN service across the WAN. Routers at each site are able to automatically discover and reach all sites with no additional device configuration changes. Therefore, once a new site is added to the MP2MP, the routers learn the other site addresses and are able to quickly communicate with them. 2

Another benefit is that an EP-LAN service provides VLAN transparency meaning that one can use any VLAN ID across their WAN, including those used on the LAN. This is possible because, with an EP-LAN service, the Ethernet service provider doesn t use any VLAN IDs for traffic forwarding. DIFFERENCES BETWEEN HUB & SPOKE AND ANY-TO-ANY ETHERNET IMPLEMENTATIONS There are some significant differences to understand between an EVPL-based hub & spoke and an EP-LAN-based any-to-any WAN implementation. In addition to differences in service pricing and availability, assessing one s applications will help determine the more appropriate Ethernet service to meet their business requirements. Adding Bandwidth When adding bandwidth to any EVPL WAN implementation, one can add more bandwidth while keeping the speed the same provided that the bandwidth does not exceed the s physical port speed, e.g., 10,, 1, 10 or. Otherwise, one must upgrade to a higher speed port. This will result in additional CapEx if a new, higher-speed Ethernet port must be added to one s existing router and additional service cost (OpEx) if the Ethernet service provider needs to upgrade their customer premises equipment. If one s existing router is not upgradeable, a new device will need to be purchased. 10 10 Hub Site Bandwidth upgraded from 40 20 to 40 20 With an EVPL-based hub and spoke implementation, one can selectively apply bandwidth upgrades to those spoke sites that require the higher bandwidth. EVPL s to other spoke sites remain unaffected. Since the P2P interconnects the spoke site to the hub site, one must ensure that the hub site speed can support the new higher bandwidth. Refer to Figure 3. When adding bandwidth to an EP-LAN implementation, one needs to increase bandwidth for the MP2MP at the particular site. Refer to Figure 4. If the bandwidth exceeds the s port speed, one must upgrade to a higher speed port resulting in a service disruption at Site 2. In Figure 4, Site 2 s bandwidth is increased by 40 resulting in 120 of bandwidth. This requires the Ethernet port to be upgraded to 1 which is the next higher Ethernet port speed. While Site 2 s bandwidth has been increased, the other sites bandwidth remains unchanged. Bandwidth upgraded from 80 to 120 1 80 Speed upgraded from to 1 120 80 80 1 MP2MP Site 2 1 Site 3 Figure 4: Adding Bandwidth to EP-LAN Implementation By planning ahead, one can avoid this service disruption by initially using a that is one speed higher than required to support the current bandwidth needs. While in 2011 there is a significant cost difference between 1 and 10, 10 and are essentially the same cost and many newer devices support multi-rate 10//0 electrical interfaces for only a relatively small incremental cost. Figure 3: Adding Bandwidth in EVPL-based Hub & Spoke Implementation 3

Adding Sites Adding a site to an existing EVPL-based hub and spoke implementation requires a new EVPL service to connect the new spoke site to the existing hub site. No additional Ethernet ports need to be added or installed on the hub site router provided there is sufficient bandwidth available to support the new spoke site and existing s. One just adds the new EVPL and a new for the new spoke site. All spoke site s are multiplexed onto a single at the hub site. Refer to Figure 5. 1 MP2MP Site 2 Site 3 New added to MP2MP Site 4 added 30 Hub Site 20 New 10 added New Figure 5: New added to EVPL Implementation Adding the to the hub site router requires a software configuration change in the device which may require a reboot to activate the change. This can be scheduled during normal maintenance periods to minimize disruptions to users or applications at the spoke sites. Adding a site to an existing EP-LAN service does not require adding a new EP-LAN to connect the new site. One just adds a to connect to the existing EP-LAN s MP2MP. Refer to Figure 6. Unlike with a hub and spoke implementation, the other sites remain operational and unaffected as the new at site 4 is added to the. Figure 6: New site added to existing EP-LAN Implementation Traffic Flow Patterns A hub and spoke EVPL-based WAN implementation is a good approach if most of the communications are to a particular site, e.g., regional sites connecting to a headquarters site or to a data center. This implementation is also well suited for centralized IT management of Internet access, email and storage. An any-to-any EP-LAN WAN implementation is a good approach when regular communications are required between two or more sites. This eliminates the need for all traffic to traverse a centralized hub site. QoS Performance A hub and spoke EVPL-based WAN implementation enables bandwidth, packet latency and packet loss to be more granularly engineered and managed per site. The traffic patterns and behavior of one spoke site do not impact other spoke sites since each spoke site only connects to a hub site. Each site s different bandwidth and QoS performance requirements can be unique and each site s WAN costs can be more accurately allocated per site. While this flexibility adds some complexity, the application and site requirements may dictate this type of Ethernet WAN architecture. 4

An any-to-any EP-LAN WAN implementation enables bandwidth to be increased at a site or new sites added to an existing without impacting other connected sites. This enables IT WAN managers to easily add new sites or upgrade bandwidth at only those sites that require it. Since the EP-LAN is a shared resource, bandwidth management and QoS performance are more complex than a hub and spoke implementation and may need to be monitored more closely. Nonetheless, this approach can support many applications requiring different QoS performance such as IP telephony (VoIP) and IP video. SUMMARY EVPL-based hub & spoke and EP-LAN-based anyto-any WAN implementations can achieve secure, high performance multi-site connectivity with full IP transparency. The primary benefits of a hub and spoke EVPL-based implementation are centralized traffic routing and the flexibility and granularity to engineer and manage bandwidth and QoS performance for each site. ABOUT COMCAST BUSINESS ETHERNET Comcast offers a complete range of MEF certified business Ethernet services including Ethernet Private Line, Ethernet Virtual Private Line, Ethernet Network Service (MEF E-LAN compliant) and Ethernet Dedicated Internet. Each service is offered with a 10,, 1, or 10 Ethernet port in customer-selectable bandwidth increments ranging from 1 to 1. For more information or to request a consultation about Comcast s Business Ethernet Services, please visit http://business.comcast.com/ethernet. OUR COMCAST BUSINESS PROMISE Dedicated Project Managers Proactive Monitoring to the Customer Premise Service Level Agreement 24x7 Dedicated Enterprise Support The primary benefit of an any-to-any EP-LAN implementation is the simplicity of adding new sites. Once a new site s is added to an existing, one s service attaching switch or router at each site will autolearn the connectivity to all other sites. REFERENCES AND RESOURCES Understanding Business Ethernet Services, Comcast White Paper Metro Ethernet Services A Technical Overview, Ralph Santitoro, Metro Ethernet Forum Comcast 2013 Comcast Business Services. All Rights Reserved. WHT57211_Rev. 3.13 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback