Deploying Carrier Ethernet Features on Cisco ASR 9000

Similar documents
Deploying Carrier Ethernet Features on Cisco ASR 9000 BRKSPG-2202

Deploying Carrier Ethernet Services on Cisco ASR 9000 Vinod Kumar Balasubramanyam Technical Marketing Engineer BRKSPG-2202

Configure Multipoint Layer 2 Services

Configuring Virtual Private LAN Services

Configuring Virtual Private LAN Service (VPLS) and VPLS BGP-Based Autodiscovery

Configuring Ethernet Virtual Connections on the Cisco ASR 1000 Series Router

Ethernet Virtual Connections Configuration

Configure Virtual LANs in Layer 2 VPNs

L2VPN Protocol-Based CLIs

Configuring Point to Point Layer 2 Services

Carrier Ethernet Services

Frame Relay over L2TPv3

Cisco CPT Packet Transport Module 4x10GE

Understanding Basic 802.1ah Provider Backbone Bridge

Configuring Traffic Mirroring

Configuring Traffic Mirroring

Building Carrier Ethernet Services Using Cisco Ethernet Virtual Circuit (EVC) Framework

Configuring VPLS. VPLS overview. Operation of VPLS. Basic VPLS concepts

Designing Next Generation Carrier Ethernet Access Network. Benjamin Lee Session ID 20PT Consulting Systems Engineer

Implementing IEEE 802.1ah Provider Backbone Bridge

Deploying MPLS L2VPN

Cisco CPT Packet Transport Fabric 256G Fabric Card with 4x10GE

Implementing Virtual Private LAN Services

Ethernet Local Management Interface

Segment Routing On Demand for L2VPN/VPWS

Pseudowire Concepts and troubleshooting

The Cisco ASR 9000 Series Routers Carrier Ethernet Model

Dynamic Ethernet Service Activation

Deploy VPLS. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by:

Configuring MPLS L2VPN

Implementing Multiple Spanning Tree Protocol

Configuring MPLS L2VPN

ETHERNET Transport Service in Wide Area Network

IEEE 802.1ah on Provider Backbone Bridges

LARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF

Deploying Carrier Ethernet Services

L2VPN over IOS-XE and IOS-XR: Configuration, Deployment and Troubleshooting LTRSPG-2500

Module 11b MPLS VPLS Configuration Lab (LDP Manual)

Configuring Pseudowire Group Switchover

Cisco Evolved Programmable Network Implementation Guide for Large Network with End-to-End Segment Routing, Release 5.0

Configuring Routed Pseudowire and VPLS

Ethernet VPN (EVPN) and Provider Backbone Bridging-EVPN: Next Generation Solutions for MPLS-based Ethernet Services. Introduction and Application Note

Configure L2VPN Autodiscovery and Signaling

Cisco Carrier Packet Transport (CPT) 50 Series

ASR 9000 Series Common Problems with Spanning Tree Protocols

Transparent CFM. Information About Transparent CFM. EFP (Q-in-Q interfaces with dot1q or dot1ad C-UNI)

Configuring 802.1Q VLAN Interfaces

L2VPN Interworking. Finding Feature Information

ITU-T G.8032 Ethernet Ring Protection Switching

MC-LAG to VPLS Technology and Solution Overview

Overview of Circuit Emulation

Configuring Ethernet OAM, CFM, and E-LMI

Monitoring Ethernet Operations, Administration, and Maintenance Tool Properties

MPLS: Layer 2 VPNs, Configuration Guide, Cisco IOS Release 15S

Configuring Switched Port Analyzer

Module 11a MPLS VPWS Configuration Lab (LDP)

Resilient Ethernet Protocol (REP)

Configuring Ethernet CFM and E-LMI

Loop-Free Alternate Fast Reroute with L2VPN

L2 VPNs. Javed Asghar Muhammad Waris Sagheer 2005, Cisco Systems, Inc. All rights reserved.

Configuring Resilient Ethernet Protocol

Network Virtualization. Duane de Witt

H-VPLS N-PE Redundancy for MPLS Access

Overview of Circuit Emulation

Configuring MPLS L2VPN

Introduction to Multi-Protocol Label

Numerics I N D E X. AAL (ATM Adaptation Layer), AAL5 CPCS-SDU mode,

Configuring MPLS Transport Profile

Configuring Pseudowire

Configuring Ethernet OAM

Cisco Evolved Programmable Network Service Orchestration User Guide, Release 5.0

Cisco EXAM Cisco ADVDESIGN. Buy Full Product.

Hands-On Metro Ethernet Carrier Class Networks

Implementing Integrated Routing and Bridging

Implementing VXLAN. Prerequisites for implementing VXLANs. Information about Implementing VXLAN

Ethernet. Access Technologies 2 Moldován István. Department of Telecommunications and Media Informatics

VLAN Subinterface Commandsonthe Cisco IOS XR Software

The multiple spanning-tree (MST) implementation is based on the IEEE 802.1s standard.

Configuration and Management of Networks. Pedro Amaral

MPLS Transport Profile

ethernet cfm mep crosscheck through location prefer

Configuring Ethernet OAM, CFM, and E-LMI

Configuring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling

Configuring Bridge Domain Interfaces

Developing Standards for Metro Ethernet Networks

Configuring MPLS and EoMPLS

EVC Command Reference

IP SLA Service Performance Testing

Configuring Rapid PVST+ Using NX-OS

VPLS configuration commands

CertifyMe. CertifyMe

Configuring Ethernet Connectivity Fault Management in a Service Provider Network

Configuring Ethernet OAM, CFM, and E-LMI

AToM (Any Transport over MPLS)

Configuring IEEE 802.1Q and Layer 2 Protocol Tunneling

Network Configuration Example

Free4Torrent. Free and valid exam torrent helps you to pass the exam with high score

Dual hot-swappable power supply, with voltage/temperature alarms

Optimizing Ethernet Access Network for Internet Protocol Multi-Service Architecture

Network Configuration Example

Transcription:

Deploying Carrier Ethernet Features on Cisco ASR 9000 Vinod Kumar Balasubramanyam (vinbalas@cisco.com) Technical Marketing Engineer

Agenda Carrier Ethernet Overview Cisco ASR 9000 Overview EFP Overview and Configurations Ethernet Services Overview, Configurations and Verification (VPLS, VPWS, H-VPLS, Bridging) Access Gateway Feature Overview, Configurations and Verification EOAM Overview and Configurations Best Practices and Case Studies 3

Agenda Carrier Ethernet Overview Cisco ASR 9000 Overview EFP Overview and Configurations Ethernet Services Overview, Configurations and Verification (VPLS, VPWS, H-VPLS, Bridging) Access Gateway Feature Overview, Configurations and Verification EOAM Overview and Configurations Best Practices and Case Studies 4

Carrier Ethernet Overview

Why Carrier Ethernet? Proliferation and Advantage of ETHERNET. CARRIER ETHERNET - Suite of protocols that help you extend Ethernet Over WAN. Standardized Services Reliability Scalability Quality Of Service Service Management 7

Carrier Ethernet Network Mobile L2 Access Network STP/REP Access 802.1Q 2G/3G/4G Node RAN Access Network MPLS/IP Local Carrier VLAN Ethernet Significance Aggregation Flexible service Aggregation mapping Security features Node Edge Multiservice Core Business Corporate Residential STB Aggregation Node Aggregation Network MPLS/IP Distribution Node EoMPLS VPLS VoD TV SIP Content Network Core Network IP / MPLS Business Corporate Residential DSLNod e PON Node Aggregation Node Aggregation Node Distribution Node Content Network VoD TV SIP STB 8

Ethernet Virtual Connection (EVC) and types CE UNI CE UNI CE CE UNI Point-to-Point Multipoint-to-Multipoint Rooted-Multipoint CE UNI UNI CE CE UNI UNI CE CE CE UNI UNI CE CE An association of two or more UNIs Three types: Point-to-point EVC (E-line) Multipoint-to-multipoint EVC (E-LAN) Rooted-multipoint EVC (E-tree) 9

EVC Configuration Points in the Network Configure the PE Physical interface facing the CE to Classify the Services Traffic - EFP Configure one or many Pseudo Wires to transport the Services Traffic across the Core network to the remote PE L2VPN CE PE UNI Point-to-Point L2VPN EFP PE CE 10

Carrier Ethernet Overview

Cisco ASR 9000 Portfolio Chassis ASR 9001 ASR 9006 ASR 9010 ASR 9000v ASR 9922 Max. Linecards per Chassis Max. Linecard Bandwidth Max. Slot Bandwidth 2 IO Slots 4 LC 8 LC Fixed Ports 20 LC Modular + 4x10GE 360 Gbps 360 Gbps 44xGE + 4x10GE 360 Gbps 440 Gbps 440 Gbps 1.2 Tbps Chassis Bandwidth 120 Gbs 3.5 Tbps 7.0 Tbps 80 Gbs 48 Tbps ASR 9001 ASR 9006 ASR 9010 ASR 9000v ASR 9922 12

ASR 9000 System Architecture Highlights Line Card RSP Fully Distributed Architecture True Modular OS IOS XR Active-Active Fabric system Intelligent Multicast Replication CPU FIC CPU BITS/DTI FIA Switch Fabric 13

ASR 9000 Carrier Ethernet Foundation Summary Flexible, Scalable and Complete Flexible EVC Infrastructure Scalable and Efficient Standard Based with Full Service Support Flexible frame matching Flexible VLAN tag manipulation Flexible service mapping IOS-XR fully distributed OS Fully distributed hardware resource Hardware based MAC learning and feature assist. Standard compliant: MEF, IETF, IEEE, ITU Full service support: E-LINE, E-LAN, E- Tree, Native L2 and L2VPN, IRB, L3

ASR 9000 Flexible Ethernet SW Infrastructure EFP (Ethernet Flow Point) or sub-interface Flexible VLAN tag classification L3 Routing Bridging VPLS P2P VPWS EoMPLS PW EoMPLS PW Flexible VLAN tag rewrite Flexible Ethertype (.1Q, QinQ,.1ad P2P local connect X Bridging EoMPLS PW Multipoint bridging Flexible service mapping and multiplexing L2 and L3, P2P and MP services concurrently on the same port 15

EFP (Ethernet Flow Point) Overview and Configurations

EFP Overview interface 0/0/slot/port.<sub-intf no.> l2transport <match criteria commands> (VLAN tags, MAC, Ether type) <rewrite commands> (VLAN tags pop/push/translation) <feature commands> (QoS, ACL etc) int Gig 0/3/0/0.100 int Gig 0/3/0/0 17

EFP Flexible Tag Classification Match upto 2 VLAN tags Match unique, multiple, or range of VLAN tags Match Untagged frame for control protocols Match Default Match 802.1ad RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation? default Packets unmatched by other service instances dot1ad IEEE 802.1ad VLAN-tagged packets dot1q IEEE 802.1Q VLAN-tagged packets untagged Packets with no explicit VLAN tag RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation dot1q 100-200,205? comma comma exact Do not allow further inner tags second-dot1q IEEE 802.1Q VLAN-tagged packets RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation dot1q 100 second-dot1q 10-20,35? comma comma exact Do not allow further inner tags 18

EFP Flexible Tag Classification Exact vs. Non-Exact Match 10 10 100 10 interface GigabitEthernet0/2/0/11.100 l2transport encapsulation dot1q 10 interface GigabitEthernet0/3/0/11.200 l2transport encapsulation dot1q 10 exact 10 10 100 200 10 100 100 interface GigabitEthernet0/4/0/11.300 l2transport encapsulation dot1q 10 second-dot1q 100 interface GigabitEthernet0/5/0/11.400 l2transport encapsulation dot1q 10 second-dot1q 100 exact 19

EFP Flexible Tag Classification The Longest Match Rule and the default option Only longest tag is supported with in the same physical port 10 10 10 130 200 100 20 130 200 dot1q 10 dot1q 10 sec 100 exact dot1q 10 sec 128-133 default int Gig 0/3/0/0 20

EFP Flexible VLAN Tag rewrite Pop tag 1 or 2 Push tag 1 or 2 Tag translation 1-1, 1-2, 2-1, 2-2 RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag? pop Remove one or more tags push Push one or more tags translate Replace tags with other tags RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag pop? 1 Remove outer tag only 2 Remove two outermost tags RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag push? dot1ad Push a Dot1ad tag dot1q Push a Dot1Q tag Symmetric option RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag push dot1q 100? second-dot1q Push another Dot1Q tag symmetric All rewrites must be symmetric RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag translate? 1-to-1 Replace the outermost tag with another tag 1-to-2 Replace the outermost tag with two tags 2-to-1 Replace the outermost two tags with one tag 2-to-2 Replace the outermost two tags with two other tags 21

Ethernet Services Local Connect, Local Bridging, Psuedowire and IRB Services.

IOS XR CLI for configuring Ethernet Services. There are two types: 1. Point to Point Local Connect VPWS/EoMPLS 2. Multi Point Local Bridging VPLS H-VPLS Ethernet Services are always configured under l2vpn CLI l2vpn xconnect group name1 p2p name1 bridge group name1 bridge-domain name1 end 24

Point to Point Services Local Connect To Connect 2 local interfaces (Physical or Virtual) No MAC address learning EFP INTF Linecard Linecard INTF EFP l2vpn xconnect group CISCO p2p LCONNECT interface GigabitEthernet0/0/0/4.1 interface GigabitEthernet0/0/0/5.1 25

Point to Point Services Local Connect Sample Configuration interface GigabitEthernet0/2/0/8.100 l2transport encapsulation dot1q 100 interface GigabitEthernet0/2/0/9.100 l2transport encapsulation dot1q 100 l2vpn xconnect group lab1 p2p lab1 interface GigabitEthernet0/2/0/8.100 interface GigabitEthernet0/2/0/9.100 end 26

Point to Point Services Local Connect Verification commands RP/0/RSP0/CPU0:PR-ASR9K-1#sh l2vpn xconnect group lab1 detail Group lab1, XC lab1, state is up; Interworking none AC: GigabitEthernet0/2/0/8.100, state is up Type VLAN; Num Ranges: 1 VLAN ranges: [100, 100] MTU 1504; XC ID 0x104000c; interworking none Statistics: packets: received 561494, sent 0 bytes: received 278501024, sent 0 drops: illegal VLAN 0, illegal length 0 AC: GigabitEthernet0/2/0/9.100, state is up Type VLAN; Num Ranges: 1 VLAN ranges: [100, 100] MTU 1500; XC ID 0x104000d; interworking none Statistics: packets: received 0, sent 561494 bytes: received 0, sent 278501024 drops: illegal VLAN 0, illegal length 0 27

Point to Point Services VPWS/EoMPLS Point to Point Psuedowire/L2VPN. No MAC address learning. EFP INTF Linecard Linecard INTF PW l2vpn xconnect group CISCO p2p VPWS interface GigabitEthernet0/0/0/4.1 neighbor 1.1.1.1 pw-id 100 28

Point to Point Services VPWS Sample Configuration interface GigabitEthernet0/2/0/8.200 l2transport encapsulation dot1q 200 rewrite ingress tag pop 1 symmetric l2vpn pw-class vpws encapsulation mpls xconnect group lab2 p2p vpws interface GigabitEthernet0/2/0/8.200 neighbor 172.16.0.23 pw-id 200 pw-class vpws end 29

Point to Point Services VPWS Verification commands Local PE RP/0/RSP0/CPU0:PR-ASR9K-1#sh l2vpn xconnect Group lab2 detail Group lab2, XC vpws, state is up; Interworking none AC: GigabitEthernet0/2/0/8.200, state is up Type VLAN; Num Ranges: 1 VLAN ranges: [200, 200] MTU 1500; XC ID 0x104000e; interworking none Statistics: packets: received 13499325, sent 0 bytes: received 6695665200, sent 0 drops: illegal VLAN 0, illegal length 0 PW: neighbor 172.16.0.23, PW ID 200, state is up ( established ) PW class vpws, XC ID 0x104000e Encapsulation MPLS, protocol LDP PW type Ethernet, control word disabled, interworking none PW backup disable delay 0 sec Sequencing not set MPLS Local Remote ------------ ------------------------------ ----------------------------- Label 16011 36 Group ID 0x8000280 0x0 Interface GigabitEthernet0/2/0/8.200 unknown MTU 1500 1500 Control word disabled disabled PW type Ethernet Ethernet VCCV CV type 0x2 0x6 (LSP ping verification) (LSP ping verification) (BFD PW FD only) VCCV CC type 0x6 0x6 (router alert label) (router alert label) (TTL expiry) (TTL expiry) ------------ ------------------------------ ----------------------------- MIB cpwvcindex: 4294705162 Create time: 07/10/2011 20:49:18 (00:55:08 ago) Last time status changed: 07/10/2011 20:49:23 (00:55:03 ago) Statistics: packets: received 0, sent 13499325 bytes: received 0, sent 6695665200 30

Point to Point Services VPWS Verification commands Remote PE PR-7600-1#sh mpls l2 vc 200 detail Local interface: Gi1/9 up, line protocol up, Eth VLAN 200 up Destination address: 172.16.0.11, VC ID: 200, VC status: up Output interface: Gi1/40, imposed label stack {16007 16011} Preferred path: not configured Default path: active Next hop: 172.16.123.1 Create time: 00:54:05, last status change time: 00:53:45 Signaling protocol: LDP, peer 172.16.0.11:0 up Targeted Hello: 172.16.0.23(LDP Id) -> 172.16.0.11, LDP is UP Status TLV support (local/remote) : enabled/not supported LDP route watch : enabled Label/status state machine : established, LruRru Last local dataplane status rcvd: No fault Last BFD dataplane status rcvd: Not sent Last local SSS circuit status rcvd: No fault Last local SSS circuit status sent: No fault Last local LDP TLV status sent: No fault Last remote LDP TLV status rcvd: Not sent Last remote LDP ADJ status rcvd: No fault MPLS VC labels: local 36, remote 16011 PWID: 16469 Group ID: local 0, remote 134218368 MTU: local 1500, remote 1500 Remote interface description: GigabitEthernet0_2_0_8.200 Sequencing: receive disabled, send disabled Control Word: Off (configured: autosense) VC statistics: transit packet totals: receive 13499325, send 0 transit byte totals: receive 6749662500, send 0 transit packet drops: receive 0, seq error 0, send 0 31

Multipoint Services Concept of Bridge Domain Bridge Domain is the basic building block of Multipoint Services. Data Frames are switched with a Bridge Domain based on the destination MAC addresses L2 subinterface Physical interface Bridge-Domain MAC learning/forwarding L3 Interface BVI Bundle interface L2 bundle subinterface L2 Psuedowire VPLS. VPWS

MultiPoint Services Layer 2 Bridging EFP INTF Linecard Linecard INTF EFP EFP INTF Linecard l2vpn bridge group CISCO bridge-domain BD1 interface TenGigE0/1/0/0.1 interface TenGigE0/1/1/0.1 interface TenGigE0/1/2/0.1 33

MultiPoint Services Layer 2 Bridging - Configuration interface GigabitEthernet0/2/0/8.300 l2transport encapsulation dot1q 300 interface GigabitEthernet0/2/0/9.300 l2transport encapsulation dot1q 300 interface GigabitEthernet0/2/0/10.300 l2transport encapsulation dot1q 300 l2vpn bridge group lab4 bridge-domain lab4 interface GigabitEthernet0/2/0/8.300 interface GigabitEthernet0/2/0/9.300 interface GigabitEthernet0/2/0/10.300 end 34

MultiPoint Services Layer 2 Bridging Verification commands RP/0/RSP0/CPU0:PR-ASR9K-1#sh l2vpn bridge-domain bd-name lab4 detail Sat Oct 8 00:16:28.113 UTC Bridge group: lab4, bridge-domain: lab4, id: 1, state: up, ShgId: 0, MSTi: 0 MAC learning: enabled MAC withdraw: enabled MAC withdraw for Access PW: enabled Flooding: Broadcast & Multicast: enabled Unknown unicast: enabled MAC aging time: 300 s, Type: inactivity MAC limit: 4000, Action: none, Notification: syslog MAC limit reached: no MAC port down flush: enabled MAC Secure: disabled, Logging: disabled Split Horizon Group: none Dynamic ARP Inspection: disabled, Logging: disabled IP Source Guard: disabled, Logging: disabled DHCPv4 snooping: disabled IGMP Snooping profile: none Bridge MTU: 1500 MIB cvplsconfigindex: 2 Filter MAC addresses: Create time: 07/10/2011 23:10:10 (01:06:17 ago) No status change since creation ACs: 3 (3 up), VFIs: 0, PWs: 0 (0 up), PBBs: 0 (0 up) List of ACs: AC: GigabitEthernet0/2/0/10.300, state is up Type VLAN; Num Ranges: 1 VLAN ranges: [300, 300] MTU 1500; XC ID 0x1040014; interworking none MAC learning: disabled (Admin) Flooding: Broadcast & Multicast: enabled Unknown unicast: enabled MAC aging time: 300 s, Type: inactivity MAC limit: 4000, Action: none, Notification: syslog MAC limit reached: no MAC port down flush: enabled MAC Secure: disabled, Logging: disabled Split Horizon Group: none Dynamic ARP Inspection: disabled, Logging: disabled IP Source Guard: disabled, Logging: disabled 35

MultiPoint Services Layer 2 Bridging Verification commands DHCPv4 snooping: disabled IGMP Snooping profile: none Storm Control: disabled Static MAC addresses: Statistics: packets: received 0, sent 16403420 bytes: received 0, sent 8136096264 Storm control drop counters: packets: broadcast 0, multicast 0, unknown unicast 0 bytes: broadcast 0, multicast 0, unknown unicast 0 Dynamic ARP inspection drop counters: packets: 0, bytes: 0 IP source guard drop counters: packets: 0, bytes: 0 AC: GigabitEthernet0/2/0/8.300, state is up Type VLAN; Num Ranges: 1 VLAN ranges: [300, 300] MTU 1500; XC ID 0x1040012; interworking none MAC learning: disabled (Admin) Flooding: Broadcast & Multicast: enabled Unknown unicast: enabled MAC aging time: 300 s, Type: inactivity MAC limit: 4000, Action: none, Notification: syslog MAC limit reached: no MAC port down flush: enabled MAC Secure: disabled, Logging: disabled Split Horizon Group: none Dynamic ARP Inspection: disabled, Logging: disabled IP Source Guard: disabled, Logging: disabled DHCPv4 snooping: disabled IGMP Snooping profile: none Storm Control: disabled Static MAC addresses: Statistics: packets: received 24352205, sent 13828732 bytes: received 12078693680, sent 6859051072 Storm control drop counters: packets: broadcast 0, multicast 0, unknown unicast 0 bytes: broadcast 0, multicast 0, unknown unicast 0 Dynamic ARP inspection drop counters: packets: 0, bytes: 0 IP source guard drop counters: packets: 0, bytes: 0 \ 36

Multi Point Services Concept of Split Horizon and Split Horizon groups. Split Horizon is disabled on AC by default Split Horizon is enabled on PW by default 3 Split Horizon groups are defined in XR Group 0 is default. Group 1 Any PW configured under the vfi Group 2 Any AC configured with split-horizon keyword. 37

MultiPoint Services VPLS EFP INTF Linecard Linecard INTF PW Linecard INTF PW EFP INTF Linecard l2vpn bridge group CISCO bridge-domain BD1 interface TenGigE0/1/0/0.1 interface TenGigE0/1/1/0.1 vfi CISCO neighbor 1.1.1.1 pw-id 100 neighbor 2.2.2.2 pw-id 100 38

MultiPoint Services VPLS - Configuration interface GigabitEthernet0/2/0/8.400 l2transport encapsulation dot1q 400 second-dot1q 500 exact rewrite ingress tag pop 2 symmetric interface GigabitEthernet0/2/0/9.400 l2transport encapsulation dot1q 400 second-dot1q 500 exact rewrite ingress tag pop 2 symmetric l2vpn bridge group lab5 bridge-domain lab5 interface GigabitEthernet0/2/0/8.400 interface GigabitEthernet0/2/0/9.400 vfi lab5 vpn-id 101 neighbor 172.16.0.12 pw-id 100 neighbor 172.16.0.23 pw-id 100 39

MultiPoint Services VPLS - Verification RP/0/RSP0/CPU0:PR-ASR9K-1#sh l2vpn bridge-domain group lab5 detail Sat Oct 8 04:04:41.980 UTC Bridge group: lab5, bridge-domain: lab5, id: 2, state: up, ShgId: 0, MSTi: 0 MAC learning: enabled MAC withdraw: enabled MAC withdraw for Access PW: enabled Flooding: Broadcast & Multicast: enabled Unknown unicast: enabled MAC aging time: 300 s, Type: inactivity MAC limit: 4000, Action: none, Notification: syslog MAC limit reached: no MAC port down flush: enabled MAC Secure: disabled, Logging: disabled Split Horizon Group: none Dynamic ARP Inspection: disabled, Logging: disabled IP Source Guard: disabled, Logging: disabled DHCPv4 snooping: disabled IGMP Snooping profile: none Bridge MTU: 1500 MIB cvplsconfigindex: 3 Filter MAC addresses: Create time: 08/10/2011 03:03:50 (01:00:51 ago) No status change since creation ACs: 2 (2 up), VFIs: 1, PWs: 2 (2 up), PBBs: 0 (0 up) List of ACs: AC: GigabitEthernet0/2/0/8.400, state is up Type VLAN; Num Ranges: 1 Outer Tag: 400 VLAN ranges: [500, 500] MTU 1500; XC ID 0x1040016; interworking none MAC learning: enabled Flooding: Broadcast & Multicast: enabled Unknown unicast: enabled MAC aging time: 300 s, Type: inactivity MAC limit: 4000, Action: none, Notification: syslog MAC limit reached: no MAC port down flush: enabled MAC Secure: disabled, Logging: disabled Split Horizon Group: none 40

MultiPoint Services VPLS - Verification Dynamic ARP Inspection: disabled, Logging: disabled IP Source Guard: disabled, Logging: disabled DHCPv4 snooping: disabled IGMP Snooping profile: none Storm Control: disabled Static MAC addresses: Statistics: packets: received 1625928, sent 8807355 bytes: received 806460288, sent 4368448080 Storm control drop counters: packets: broadcast 0, multicast 0, unknown unicast 0 bytes: broadcast 0, multicast 0, unknown unicast 0 Dynamic ARP inspection drop counters: packets: 0, bytes: 0 IP source guard drop counters: packets: 0, bytes: 0 AC: GigabitEthernet0/2/0/9.400, state is up Type VLAN; Num Ranges: 1 Outer Tag: 400 VLAN ranges: [500, 500] MTU 1500; XC ID 0x1040017; interworking none MAC learning: enabled Flooding: Broadcast & Multicast: enabled Unknown unicast: enabled MAC aging time: 300 s, Type: inactivity MAC limit: 4000, Action: none, Notification: syslog MAC limit reached: no MAC port down flush: enabled MAC Secure: disabled, Logging: disabled Split Horizon Group: none Dynamic ARP Inspection: disabled, Logging: disabled IP Source Guard: disabled, Logging: disabled DHCPv4 snooping: disabled IGMP Snooping profile: none Storm Control: disabled Static MAC addresses: Statistics: packets: received 0, sent 8585354 bytes: received 0, sent 4258335584 Storm control drop counters: packets: broadcast 0, multicast 0, unknown unicast 0 bytes: broadcast 0, multicast 0, unknown unicast 0 41

MultiPoint Services VPLS - Verification Dynamic ARP inspection drop counters: packets: 0, bytes: 0 IP source guard drop counters: packets: 0, bytes: 0 List of Access PWs: List of VFIs: VFI lab5 PW: neighbor 172.16.0.12, PW ID 100, state is up ( established ) PW class not set, XC ID 0xfffc000b Encapsulation MPLS, protocol LDP PW type Ethernet, control word disabled, interworking none PW backup disable delay 0 sec Sequencing not set MPLS Local Remote ------------ ---------------------------------------------- Label 16034 16032 Group ID 0x2 0x0 Interface lab5 lab5 MTU 1500 1500 Control word disabled disabled PW type Ethernet Ethernet VCCV CV type 0x2 0x2 (LSP ping verification) (LSP ping verification) VCCV CC type 0x6 0x6 (router alert label) (router alert label) (TTL expiry) (TTL expiry) ------------ ------------------------------ ------------------------- MIB cpwvcindex: 4294705163 Create time: 08/10/2011 03:03:50 (01:00:51 ago) Last time status changed: 08/10/2011 03:29:09 (00:35:32 ago) MAC withdraw message: send 0 receive 0 Static MAC addresses: Statistics: packets: received 4, sent 393978 bytes: received 1952, sent 192261264 DHCPv4 snooping: disabled IGMP Snooping profile: none PW: neighbor 172.16.0.23, PW ID 100, state is up ( established ) PW class not set, XC ID 0xfffc000c Encapsulation MPLS, protocol LDP 42

MultiPoint Services VPLS - Verification PW type Ethernet, control word disabled, interworking none PW backup disable delay 0 sec Sequencing not set MPLS Local Remote ------------ ------------------------------ ----------------------- -- Label 16036 21 Group ID 0x2 0x0 Interface lab5 unknown MTU 1500 1500 Control word disabled disabled PW type Ethernet Ethernet VCCV CV type 0x2 0x6 (LSP ping verification) (LSP ping verification) (BFD PW FD only) VCCV CC type 0x6 0x6 (router alert label) (router alert label) (TTL expiry) (TTL expiry) ------------ ------------------------------ ------------------------- MIB cpwvcindex: 4294705164 Create time: 08/10/2011 03:03:50 (01:00:51 ago) Last time status changed: 08/10/2011 03:18:07 (00:46:34 ago) MAC withdraw message: send 0 receive 0 Static MAC addresses: Statistics: packets: received 8807354, sent 1625928 bytes: received 4297988752, sent 793452864 DHCPv4 snooping: disabled IGMP Snooping profile: none VFI Statistics: drops: illegal VLAN 0, illegal length 0unicast 43

MultiPoint Services H-VPLS PW INTF Linecard Linecard INTF PW Linecard INTF PW PW INTF Linecard l2vpn bridge group CISCO bridge-domain BD1 neighbor 11.1.1.1 pw-id 200 neighbor 22.2.2.2 pw-id 201 vfi CISCO neighbor 1.1.1.1 pw-id 100 44

MultiPoint Services H-VPLS Configuration interface GigabitEthernet0/2/0/8.400 l2transport encapsulation dot1q 400 second-dot1q 500 exact rewrite ingress tag pop 2 symmetric interface GigabitEthernet0/2/0/9.400 l2transport encapsulation dot1q 400 second-dot1q 500 exact rewrite ingress tag pop 2 symmetric l2vpn bridge group lab5 bridge-domain lab5 neighbor 1.1.1.1 pw-id 200 neighbor 2.2.2.2 pw-id 201 vfi lab5 vpn-id 101 neighbor 172.16.0.12 pw-id 100 45

ASR 9000 MAC Learning Overview Distributed and Hardware based MAC address learning. MAC synchronization achieved by special MAC notificaion. PHY NP0 CPU CPU NP0 PHY PHY PHY PHY NP1 NP2 NP3 FIA Switch Fabric FIA NP1 NP2 NP3 PHY PHY PHY MAC learning/aging/flushing is done by hardware and fully distributed on each NP independently 46

Looking at MAC address table RP/0/RSP1/CPU0:PR-ASR9K-1#sh l2vpn forwarding bridge-domain MS:MS mac-address location 0/3/CPU0 To Resynchronize MAC table from the Network Processors, use the command... l2vpn resynchronize forwarding mac-address-table location <r/s/i> Mac Address Type Learned from/filtered on LC learned Resync Age Mapped to -------------------------------------------------------------------------------------------------------------------- 0000.0000.0011 dynamic Gi0/2/0/8.301 0/3/CPU0 0d 0h 0m 0s N/A 47

Integrated Routing and Bridging (IRB)

What s IRB? IRB allows you to route a given protocol between routed interfaces and bridge groups within a single switch router IRB is old technology on Router platform for over 10 years IRB use BVI (Bridge-group virtual interface) for L3 routing. BVI represents logical L3 interface for a group of L2 ports BVI is considered as regular L3 logical interface, which has IP address and other L3 feature 50

IRB CLI Example L2 subinterface Physical interface Bundle interface L2 bundle subinterface L3 Interface BVI Bridge-Domain L2 Psuedowire VPLS. VPWS Interface gig 0/0/0/1.50 l2transport encapsulation dot1q 50 rewrite ingress tag pop 1 Symmetric Interface gig 0/0/0/5.20 encapsulation dot1q 20 ipv4 address 2.2.2.2 255.255.255.0 Interface bvi 20 BVI ipv4 address 1.1.1.1 255.255.255.0 l2vpn bridge group cisco bridge-domain domain50 Interface gig 0/0/0/1.50 Interface gig 0/0/0/2 routed interface bvi 20 BVI neighbor 1.2.3.4 pw-id 55 vfi 60 neighbor 2.3.4.5 pw-id 60 51

Access Gateway (AG)

Access Gateway An innovative solution from Cisco Used in dual Homed scenarios Light weight implementation of access protocols (MST, PVST and REP) Loop free access Detect and reconverge on failures. Standard based Faster Convergence Better Scalability Access Aggregation 53

Access Gateway MST AG Simple Working PE (MST Gateway) sends pre-canned BPDUs to the access network. Reacts to Topology Change Notifications from access. Sends MAC withdrawal to the VPLS domain. Hi, access, I m the best root bridge Hi access, I m the second best root bridge Access Aggregation Hi access, I m the best root bridge 54

Access Gateway MST AG - Configuration Interface gig 0/0/0/10.1 l2 encapsulation untagged spanning-tree mstag ring1 interface GigabitEthernet0/0/0/10.1 name cisco revision 1 bridge-id 0000.0000.0001 instance 0 I m the root root-id 0000.0000.0001 priority 4096 root-priority 4096 instance 1 vlan-ids 101,103,105,107 root-id 0000.0000.0002 priority 8192 root-priority 4096 instance 2 I m the root vlan-ids 20-4094 root-id 0000.0000.0001 priority 4096 root-priority 4096 Access MST root bridge for instance 0 and 2 Aggregation MST root bridge for instance 1 Interface gig 0/0/0/10.1 l2 encapsulation untagged spanning-tree mstag ring1 interface GigabitEthernet0/0/0/10.1 name cisco revision 1 bridge-id 0000.0000.0001 instance 0 I m the root root-id 0000.0000.0001 priority 4096 root-priority 4096 instance 1 vlan-ids 101,103,105,107 root-id 0000.0000.0002 priority 8192 root-priority 4096 instance 2 I m the root vlan-ids 20-4094 root-id 0000.0000.0001 priority 4096 root-priority 4096 55

Access Gateway MST AG Verification RP/0/RSP0/CPU0:Miami#sh spanning-tree mstag r1 Sun May 6 20:22:41.953 UTC GigabitEthernet0/3/0/1.1 Pre-empt delay is disabled Name: 0000:0000:0001 Revision: 1 Max Age: 20 Provider Bridge: no Bridge ID: 0000.0000.0001 Port ID: 1 External Cost: 0 Hello Time: 2 Active: yes BPDUs sent: 87 MSTI 0 (CIST): VLAN IDs: 1-19 Bridge Priority: 4096 Port Priority: 128 Cost: 0 Root Bridge: 0000.0000.0001 Root Priority: 4096 Topology Changes: 4 MSTI 1 VLAN IDs: 20-4094 Bridge Priority: 4096 Port Priority: 128 Cost: 0 Root Bridge: 0000.0000.0002 Root Priority: 4096 Topology Changes: 3 56

Access Gateway REP AG Overview and Configuration Gateway doesn t run REP code. Uses the TCN BPDU to trigger MAC withdrawal. Neighboring access switches run in REP no neighbor state. REP AG REP No-neighbor V F I V F I V F I V F I REP No-neighbor interface GigabitEthernet0/0/0/20.1 l2transport encapsulation untagged spanning-tree repag ring1 interface GigabitEthernet0/0/0/20.1 57

Ethernet OAM

Why Ethernet OAM? L2 Virtual Circuits same common network infrastructure. How do you monitor these individual Virtual circuits? Traditional Network Monitoring tools Monitor Network and Physical Layer Not Service Layer Need service layer visibility EOAM 59

Ethernet OAM Where They Play Customer E-LMI Core Connectivity Fault Management Customer Business Backbone Bridges Backbone Bridges Business Provider Bridges Provider Bridges Residential Ethernet Link OAM IP/MPLS Residential NNI NNI NNI UNI Link OAM - Any point-point 802.3 link Link Level OAM CFM - End-to-End UNI to UNI Service Level OAM 60

Ethernet OAM Link OAM configuration interface GigabitEthernet0/0/0/30 ethernet oam interface GigabitEthernet0/0/0/30 ethernet oam Connection hello-interval link-monitor mode remote-loopback require-remote uni-directional ethernet oam profile EOAM_PROF connection hello-interval link-monitor mode remote-loopback require-remote uni-directional interface GigabitEthernet0/0/0/30 ethernet oam profile EOAM_PROF 61

Ethernet OAM Link OAM Verification RP/0/RSP0/CPU0:Miami#sh ethernet oam discovery interface gigabitethernet 0/3/0$ Mon May 7 02:28:48.346 UTC GigabitEthernet0/3/0/1: Local client ------------ Administrative configuration: PDU revision: 3 Mode: Active Unidirectional support: N Link monitor support: Y Remote loopback support: N MIB retrieval support: N Maximum PDU size: 1500 Mis-wiring detection key: 71CF Remote client ------------- MAC address: Vendor (OUI): 0023.ea95.e40d 00.00.0C (Cisco) Administrative configuration: PDU revision: 0 Mode: Active Unidirectional support: N Link monitor support: Y Remote loopback support: N MIB retrieval support: N Maximum PDU size: 1518 Operational status: Port status: Operational Loopback status: None Interface mis-wired: N 62

Ethernet OAM CFM configuration ASR9K1 ASR9K1 Customer X Customer X MEP MEP Provider Level (ISP1) ASR9K-1 ethernet cfm domain ISP1 level 1 service ISP1_SRV10 xconnect group OAM p2p OAM continuity-check interval 10s interface GigabitEthernet0/3/0/1.100 l2transport ethernet cfm mep domain ISP1 service ISP1_SRV10 mep-id 11 ASR9K-2 ethernet cfm domain ISP1 level 1 service ISP1_SRV10 xconnect group OAM p2p OAM continuity-check interval 10s interface GigabitEthernet0/3/0/19.100 l2transport ethernet cfm mep domain ISP1 service ISP1_SRV10 mep-id 10 63

Case Studies and Best Practices

Case Studies Consolidating the Edge Mobile Mobile 2G/3G/4G Node Business Corporate Residential ST B Mobile Services Router Residential/Busi ness Data Services Router Video Data Services Router Multi-Services Router Data, Video, Voice 2G/3G/4G Node Business Corporate Residential ST B ST B Residential ST B Residential 65

Case Studies Data Center Interconnect Objectives Connectivity to SP Core and DC Feature set to support multiple services Maximize ROI ASR-9000 Value-add Single converged multipurpose platform Provide IP/MPLS PE connectivity to DC Core Application agnostic scalable L2 and/or L3 Data center interconnect Ability to implement collapsed DC edge as well as DCI 66

Case Studies Data Center Interconnect DC Aggregation DC Core Data Center 1 Data Center 2 Cloud Applications DC Connectivity to SP core via ASR-9000 PE May also be used for Data Center Interconnect Collapsed DC PE/DCI design provides maximum ROI Removes need for additional single purpose device Ability to support L2/L3 DCI Cloud Applications DC Aggregation DC Core VPLS, EoMPLS or L3VPN ASR9000 MPLS PE ASR9000 MPLS PE Service Provider MPLS/IP Service Provider Core MPLS/IP Core Logical Data Center Interconnect over SP IP/MPLS Core Service Provider MPLS/IP Core 67

Best Practices Port Distribution Distribute the Traffic across different NPs POP VLAN tags To avoid interoperability issues. - Verify MTU : VPWS changes MTU based on AC config Define Group Names Better Configuration Management. Moderate L2 Control Traffic Define L2 ACL to moderate L2 control traffic (STP BPDUs, CDP, VTP). l2transport Use l2transport keyword always while configuring L2 parameters 68

Summary Carrier Ethernet and ASR 9000 EFP Ethernet Services Access Gateway OAM 69

Q & A

Complete Your Online Session Evaluation Give us your feedback and you could win fabulous prizes. Winners announced daily. Receive 20 Cisco Daily Challenge points for each session evaluation you complete. Complete your session evaluation online now through either the mobile app or internet kiosk stations. Maximize your Cisco Live experience with your free Cisco Live 365 account. Download session PDFs, view sessions on-demand and participate in live activities throughout the year. Click the Enter Cisco Live 365 button in your Cisco Live portal to log in. 71

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback