WAN. Core Routing Module. Data Cente r LAB. Internet. Today: MPLS, OSPF, BGP Future: OSPF, BGP. Today: L2VPN, L3VPN. Future: VXLAN

Similar documents
Implementing VXLAN. Prerequisites for implementing VXLANs. Information about Implementing VXLAN

Introduction to External Connectivity

Data Center Configuration. 1. Configuring VXLAN

IP Fabric Reference Architecture

DHCP Relay in VXLAN BGP EVPN

DHCP Relay in VXLAN BGP EVPN

VXLAN Overview: Cisco Nexus 9000 Series Switches

Configuring VXLAN EVPN Multi-Site

Traffic Load Balancing in EVPN/VXLAN Networks. Tech Note

UniNets MPLS LAB MANUAL MPLS. UNiNets Multiprotocol label Switching MPLS LAB MANUAL. UniNets MPLS LAB MANUAL

Implementing VXLAN in DataCenter

VXLAN Design with Cisco Nexus 9300 Platform Switches

Module 11b MPLS VPLS Configuration Lab (LDP Manual)

Ethernet VPN (EVPN) in Data Center

OPEN CONTRAIL ARCHITECTURE GEORGIA TECH SDN EVENT

MPLS over GRE. Finding Feature Information. Prerequisites for MPLS VPN L3VPN over GRE

Verified Scalability Limits

Extreme Networks How to Build Scalable and Resilient Fabric Networks

Solution Guide. Infrastructure as a Service: EVPN and VXLAN. Modified: Copyright 2016, Juniper Networks, Inc.

Lecture 7 Advanced Networking Virtual LAN. Antonio Cianfrani DIET Department Networking Group netlab.uniroma1.it

Configuring Virtual Private LAN Service (VPLS) and VPLS BGP-Based Autodiscovery

Introduction to MPLS APNIC

Provisioning Overlay Networks

Hierarchical Fabric Designs The Journey to Multisite. Lukas Krattiger Principal Engineer September 2017

Verified Scalability Limits

Virtualizing The Network For Fun and Profit. Building a Next-Generation Network Infrastructure using EVPN/VXLAN

Configuring VXLAN EVPN Multi-Site

Network Configuration Example

Network Configuration Example

Creating private Megaport connections using Juniper MX and EX series devices

VXLAN Deployment Use Cases and Best Practices

Lecture 8 Advanced Networking Virtual LAN. Antonio Cianfrani DIET Department Networking Group netlab.uniroma1.it

Network Configuration Example

Contents. EVPN overview 1

TELCO GROUP NETWORK. Rafał Jan Szarecki 23/10/2011

Evolved Campus Core: An EVPN Framework for Campus Networks. Vincent Celindro JNCIE #69 / CCIE #8630

Network Configuration Example

Enterprise. Nexus 1000V. L2/L3 Fabric WAN/PE. Customer VRF. MPLS Backbone. Service Provider Data Center-1 Customer VRF WAN/PE OTV OTV.

Introduction to MPLS. What is MPLS? 1/23/17. APNIC Technical Workshop January 23 to 25, NZNOG2017, Tauranga, New Zealand. [201609] Revision:

Verified Scalability Limits

Configuring MPLS L2VPN

Hochverfügbarkeit in Campusnetzen

MPLS VPN. 5 ian 2010

VXLAN Design Using Dell EMC S and Z series Switches

Configuring VXLAN EVPN Multi-Site

Configuring Virtual Private LAN Services

I Commands. iping, page 2 iping6, page 4 itraceroute, page 5 itraceroute6 vrf, page 6. itraceroute vrf encap vxlan, page 12

Provisioning Overlay Networks

JN0-210.juniper. Number: JN0-210 Passing Score: 800 Time Limit: 120 min.

ARISTA DESIGN GUIDE Data Center Interconnection with VXLAN

Junos Fusion Data Center

DNA SA Border Node Support

CCIE R&S LAB CFG H2/A5 (Jacob s & Jameson s)

Virtual Extensible LAN (VXLAN) Overview

PassTorrent. Pass your actual test with our latest and valid practice torrent at once

Securizarea Calculatoarelor și a Rețelelor 32. Tehnologia MPLS VPN

Border Provisioning Use Case in VXLAN BGP EVPN Fabrics - Multi-Site

Optimizing Layer 2 DCI with OTV between Multiple VXLAN EVPN Fabrics (Multifabric)

This document is not restricted to specific software and hardware versions.

Cloud e Datacenter Networking

VXLAN EVPN Multihoming with Cisco Nexus 9000 Series Switches

Cisco CSR 1000V VxLAN Support 2

MP-BGP VxLAN, ACI & Demo. Brian Kvisgaard System Engineer, CCIE SP #41039 November 2017

Network Configuration Example

Configuring IPv6 VPN Provider Edge over MPLS (6VPE)

Cloud e Datacenter Networking

VXLAN EVPN Multi-Site Design and Deployment

Unicast Forwarding. Unicast. Unicast Forwarding Flows Overview. Intra Subnet Forwarding (Bridging) Unicast, on page 1

Open Compute Network Operating System Version 1.1

inet ZERO - JNCIE-DC

Configuring VPLS. VPLS overview. Operation of VPLS. Basic VPLS concepts

VXLAN Multipod Design for Intra-Data Center and Geographically Dispersed Data Center Sites

Configuring MPLS L2VPN

MPLS VPN--Inter-AS Option AB

Lab 1: Static MPLS LSP-RTX4-RTX1 LSP-RTX1-RTX4 LSP-RTX3-RTX2 LSP-RTX2-RTX3

Configuring MPLS L2VPN

Module 5: Cisco Nexus 7000 Series Switch Administration, Management and Troubleshooting

Network Configuration Example

ENTERPRISE MPLS. Kireeti Kompella

WAN Edge MPLSoL2 Service

Deploy VPLS. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by:

Fabric Connect Multicast A Technology Overview. Ed Koehler - Director DSE. Avaya Networking Solutions Group

MLDP In-Band Signaling/Transit Mode

Implementing IP in IP Tunnel

AToM (Any Transport over MPLS)

Implementing the ERSPAN Analytics Feature on Cisco Nexus 6000 Series and 5600 Platform Switches

Cloud Data Center Architecture Guide

Deploy MPLS L3 VPN. APNIC Technical Workshop October 23 to 25, Selangor, Malaysia Hosted by:

Multi-site Datacenter Network Infrastructures

Configuring Virtual Port Channels

EXTREME VALIDATED DESIGN. Network Virtualization in IP Fabric with BGP EVPN

IPv6 Switching: Provider Edge Router over MPLS

Contents. Introduction. Prerequisites. Requirements. Components Used

MPLS VPN Carrier Supporting Carrier Using LDP and an IGP

Configuring Virtual Port Channels

"Charting the Course...

Internet Engineering Task Force (IETF) Request for Comments: N. Bitar Nokia R. Shekhar. Juniper. J. Uttaro AT&T W. Henderickx Nokia March 2018

Network Configuration Example

MPLS VPN Inter-AS Option AB

HP A5820X & A5800 Switch Series MPLS. Configuration Guide. Abstract

Transcription:

150000 100000 50000 0 Trident+ Trident II NG 300 200 100 IPv4 FIB LPM IPv6 FIB LPM 0 Trident+ Trident II or + NG LAB Data Cente r Internet WAN Bandwidth in 10G Increment 40GE Ports 10GE Ports 100GE Ports Core Routing Module Building Aggregation 20 30 Buildings Building Aggregation 20 30 Buildings Building Building Building Building Today: MPLS, OSPF, BGP Future: OSPF, BGP Today: L2VPN, L3VPN Labs Security Devices Developer Internet Business Partners Others Future: VXLAN

Use Cases Simple Connectivity Over an IP Only Network Instant Connectivity From Service Source & Destination Tenant in a Data Center with an IP Only L3 Clos Fabric. Cost Efficient Service Extender Over a 3 rd Party IP Network Use Cost Efficient Ports When you Can and Expensive Ports Where you Must Cheap Pseudo Wires without MPLS API Driven Provisioning: Simplified and Easily Consumed by Developers Removal of additional Protocols to Manage Reduction in Cost, Driven by Merchant Silicon & Competition Remote Tap Termination Transport Wire Tap (SPAN) Aggregation Over an IP Network Lab Patch Panel Anywhere to Anywhere Patch Panel for Labs

Why VXLAN VXLAN for this presentation is not utilized for its intended use-case. NVGRE NOTE: - Utilized in Other Parts of Microsoft - Used in Overlay Network Creation UDP Header: Hashing Works Just Like Any Other UDP Traffic Supported in Wide Variety of Platforms Broadcom Trident 2: Arista Networks, Cisco Systems, Dell, Juniper Networks White Label: Bring Your Own Switch (BYOS) & Purchase Operating System (Cumulus & Others to Follow) Widely Deployed in Many Networks Dense, Power/Space Efficient & Cheap $60 100 per 10GE, Sometimes Better Supports Point to Point & Multi-Point Point to Point Doesn t Require Control Plane Software Multi-Point Does Require Control Plane Software or Self Provided Control Plane Software Wide Vendor Support & Interest

What Worked & Didn t Worked Tagged Packets (VLAN) VRRP OPSFv2, OSPFv3 BGP Address Family: IPv4, IPv6, VPNv4 RSVP NOTICE: Didn t Work or In Progress LACP Doesn t Pass Through (Ethernet Channel) LLDP Doesn t Pass Through, but works locally LDP (Possibly 224.0.0.2/1 Multicast Issue & Interception) IS-IS (Investigating) Continuously Investigating What Else Doesn t Work and What Can Work or be Fixed

Use Case: Lab Patch Panel Today: MPLS L2VPN Future: T2 Based Patch Panel Puget Sound Campus: 100+ Building Distributed Labs Building F Why VXLAN: IP Only is Cheap & MPLS is Expensive Wide Vendor Choice UDP: Hashing Less Protocols & Dependencies API Driven + Apps (Self Service with Windows Phone & Tablet) Building A Building E Building B Building D Building C

Use Case: VRF Extension Any T2 VTEP / SPINE Any T2 VTEP / SPINE

Use Case: TAP Remote Transport Reasons & Benefits: Limit Expensive Tools Deployment Redirect Captured Traffic for Personal Analysis No Tools in Local Location SPAN to VXLAN Transport Yet another RSPAN, but IP based Tap Output Loopback Cable VXLAN Input Port Terminating to Remote VXLAN Switch

Lab Environment: Physical Connectivity N3132Q Underlay Network IP Fabric N3132Q Overlay Network.10 switch

interface TenGigabitEthernet 0/0 ip address 192.168.254.0/31 interface TenGigabitEthernet 0/1 ip address 192.168.254.2/31 interface TenGigabitEthernet 0/2 ip address 192.168.254.4/31 interface TenGigabitEthernet 0/3 ip address 192.168.254.6/31 interface Loopback 0 ip address 192.168.254.100/32 router ospf 1 router-id 192.168.254.100 network 192.168.254.0/24 area 0 interface Ethernet1/49/1 no switchport ip address 192.168.254.1/31 interface Ethernet1/49/2 no switchport ip address 192.168.254.3/31 interface Ethernet1/49/3 no switchport ip address 192.168.254.5/31 interface Ethernet1/49/4 no switchport ip address 192.168.254.7/31 interface Ethernet1/50/1 no switchport ip address 192.168.254.9/31 Underlay Network Configuration interface Ethernet1/50/2 no switchport ip address 192.168.254.11/31 interface Ethernet1/50/3 no switchport ip address 192.168.254.13/31 interface Ethernet1/50/4 no switchport ip address 192.168.254.15/31 feature ospf router ospf 1 router-id 192.168.254.150 network 192.168.254.0/24 area 0.0.0.0 interface TenGigabitEthernet 0/0 ip address 192.168.254.8/31 interface TenGigabitEthernet 0/1 ip address 192.168.254.10/31 interface TenGigabitEthernet 0/2 ip address 192.168.254.12/31 interface TenGigabitEthernet 0/3 ip address 192.168.254.14/31 interface Loopback 0 ip address 192.168.254.200/32 router ospf 1 router-id 192.168.254.200 network 192.168.254.0/24 area 0

Overlay Network Configuration Part 1 Client Facing Base Client Facing Base feature vxlan gateway-ip 192.168.254.100 controller 1 10.37.33.35 port 6632 ptcp interface ManagementEthernet 0/0 ip address 10.37.33.35/24 management route 10.0.0.0/8 10.37.33.1 management route 172.16.0.0/12 10.37.33.1 interface TenGigabitEthernet 0/116 no ip address interface TenGigabitEthernet 0/117 no ip address interface TenGigabitEthernet 0/118 no ip address interface TenGigabitEthernet 0/119 no ip address feature vxlan gateway-ip 192.168.254.200 controller 1 10.37.33.35 port 6632 ptcp interface ManagementEthernet 0/0 ip address 10.37.33.36/24 management route 10.0.0.0/8 10.37.33.1 management route 172.16.0.0/12 10.37.33.1 interface TenGigabitEthernet 0/8 no ip address interface TenGigabitEthernet 0/116 no ip address interface TenGigabitEthernet 0/117 no ip address interface TenGigabitEthernet 0/118 no ip address interface TenGigabitEthernet 0/119 no ip address

Overlay Network Configuration Part 2 Controller: Flow Provisioning S6000-1 Controller: Flow Provisioning S6000-2 Creation of Logical Network: vtep-ctl --db=tcp:10.37.33.35:6632 add-ls "LN1:ELINE:1001" vtep-ctl --db=tcp:10.37.33.35:6632 add-ls "LN2:ELINE:1002" vtep-ctl --db=tcp:10.37.33.35:6632 add-ls "LN3:ELINE:1003" vtep-ctl --db=tcp:10.37.33.35:6632 add-ls "LN4:ELINE:1004" vtep-ctl --db=tcp:10.37.33.35:6632 add-ls "LN7:ELINE:1007 Creation of Logical Network: vtep-ctl --db=tcp:10.37.33.36:6632 add-ls "LN1:ELINE:1001" vtep-ctl --db=tcp:10.37.33.36:6632 add-ls "LN2:ELINE:1002" vtep-ctl --db=tcp:10.37.33.36:6632 add-ls "LN3:ELINE:1003" vtep-ctl --db=tcp:10.37.33.36:6632 add-ls "LN4:ELINE:1004" vtep-ctl --db=tcp:10.37.33.36:6632 add-ls "LN7:ELINE:1007 Bind Port to the Logical Network: vtep-ctl --db=tcp:10.37.33.35:6632 bind-ls "10.37.33.35" "Te 0/116" 0 LN1:ELINE:1001 vtep-ctl --db=tcp:10.37.33.35:6632 bind-ls "10.37.33.35" "Te 0/117" 0 LN2:ELINE:1002 vtep-ctl --db=tcp:10.37.33.35:6632 bind-ls "10.37.33.35" "Te 0/118" 100 LN3:ELINE:1003 vtep-ctl --db=tcp:10.37.33.35:6632 bind-ls "10.37.33.35" "Te 0/118" 200 LN4:ELINE:1004 vtep-ctl --db=tcp:10.37.33.35:6632 bind-ls "10.37.33.35" "Te 0/119" 0 LN7:ELINE:1007 Tunnel Termination to the Remote Node: vtep-ctl --db=tcp:10.37.33.35:6632 add-ucast-remote "LN1:ELINE:1001" "00:11:11:11:11:11" "192.168.254.200" vtep-ctl --db=tcp:10.37.33.35:6632 add-ucast-remote "LN2:ELINE:1002" "00:33:33:33:33:33" "192.168.254.200" vtep-ctl --db=tcp:10.37.33.35:6632 add-ucast-remote "LN3:ELINE:1003" "00:55:55:55:55:55" "192.168.254.200" vtep-ctl --db=tcp:10.37.33.35:6632 add-ucast-remote "LN4:ELINE:1004" "00:77:77:77:77:77" "192.168.254.200" vtep-ctl --db=tcp:10.37.33.35:6632 add-ucast-remote "LN7:ELINE:1007" "00:14:14:14:14:14" "192.168.254.200" Bind Port to the Logical Network: vtep-ctl --db=tcp:10.37.33.36:6632 bind-ls "10.37.33.36" "Te 0/116" 0 LN1:ELINE:1001 vtep-ctl --db=tcp:10.37.33.36:6632 bind-ls "10.37.33.36" "Te 0/117" 0 LN2:ELINE:1002 vtep-ctl --db=tcp:10.37.33.36:6632 bind-ls "10.37.33.36" "Te 0/118" 100 LN3:ELINE:1003 vtep-ctl --db=tcp:10.37.33.36:6632 bind-ls "10.37.33.36" "Te 0/119" 200 LN4:ELINE:1004 vtep-ctl --db=tcp:10.37.33.36:6632 bind-ls "10.37.33.36" "Te 0/8" 0 LN7:ELINE:1007 Tunnel Termination to the Remote Node: vtep-ctl --db=tcp:10.37.33.36:6632 add-ucast-remote "LN1:ELINE:1001" "00:22:22:22:22:22" "192.168.254.100" vtep-ctl --db=tcp:10.37.33.36:6632 add-ucast-remote "LN2:ELINE:1002" "00:44:44:44:44:44" "192.168.254.100" vtep-ctl --db=tcp:10.37.33.36:6632 add-ucast-remote "LN3:ELINE:1003" "00:66:66:66:66:66" "192.168.254.100" vtep-ctl --db=tcp:10.37.33.36:6632 add-ucast-remote "LN4:ELINE:1004" "00:88:88:88:88:88" "192.168.254.100" vtep-ctl --db=tcp:10.37.33.36:6632 add-ucast-remote "LN7:ELINE:1007" "00:15:15:15:15:15" "192.168.254.100"

Overlay Network Configuration Part 3 root@mx80# run show vrrp logical-system RTR1 Interface State Group VR state VR Mode Timer Type Address xe-0/0/0.0 up 1 master Active A 0.588 lcl 192.168.1.2 vip 192.168.1.1 root@mx80# run show vrrp logical-system RTR2 Interface State Group VR state VR Mode Timer Type Address xe-0/0/1.0 up 1 backup Active D 3.130 lcl 192.168.1.3 vip 192.168.1.1 mas 192.168.1.2 N3132Q-2# ping 192.168.1.1 vrf VRF1 packet-size 1422 count 3 df-bit PING 192.168.1.1 (192.168.1.1): 1422 data bytes 1430 bytes from 192.168.1.1: icmp_seq=0 ttl=63 time=2.233 ms 1430 bytes from 192.168.1.1: icmp_seq=1 ttl=63 time=1.922 ms 1430 bytes from 192.168.1.1: icmp_seq=2 ttl=63 time=2.079 ms --- 192.168.1.1 ping statistics --- 3 packets transmitted, 3 packets received, 0.00% packet loss round-trip min/avg/max = 1.922/2.077/2.233 ms RTR2 { interfaces { xe-0/0/1 { unit 0 { family inet { address 192.168.1.3/24 { vrrp-group 1 { virtual-address 192.168.1.1; priority 90; accept-data; RTR1 { interfaces { xe-0/0/0 { unit 0 { family inet { address 192.168.1.2/24 { vrrp-group 1 { virtual-address 192.168.1.1; accept-data; feature interface-vlan interface Ethernet1/2/1 switchport access vlan 300 spanning-tree port type edge speed 10000 interface Ethernet1/2/2 switchport access vlan 300 spanning-tree port type edge interface Vlan300 vrf member VRF1 ip address 192.168.1.10/24 switch

Verification Part 1 S6000-1#sho vxlan Instance : 1 Admin State : enabled Management IP : 10.37.33.35 Gateway IP : 192.168.254.100 MAX Backoff : 30000 Controller 1 : 10.37.33.35:6632 ptcp (connected) Fail Mode : non secure Port List : Te 0/8 Te 0/9 Te 0/10 Te 0/11 Te 0/116 Te 0/117 Te 0/118 Te 0/119 Te 0/120 Te 0/121 Te 0/124 S6000-1#sho vxlan logical-network Instance : 1 Total LN count : 7 Name VNID LN1:ELINE:1001 4656 LN2:ELINE:1002 4657 LN3:ELINE:1003 4658 LN4:ELINE:1004 4659 LN7:ELINE:1007 4660 LN5:ELINE:1005 4661 LN6:ELINE:1006 4662 S6000-1#sho vxlan logical-network name LN1:ELINE: 1001 Name : LN1:ELINE:1001 Description : Tunnel Key : 4656 VFI : 28673 Port Vlan Bindings: Te 0/116: VLAN: 0 (0x80000001), S6000-1#show vxlan physicallocator Instance : 1 Tunnel : count 1 192.168.254.200 : vxlan_over_ipv4 (up) S6000-1#sho vxlan unicast-mac-remote Total Local Mac Count: 7 VNI MAC TUNNEL 4656 00:11:11:11:11:11 192.168.254.200 4657 00:33:33:33:33:33 192.168.254.200 4658 00:55:55:55:55:55 192.168.254.200 4659 00:77:77:77:77:77 192.168.254.200 4660 00:14:14:14:14:14 192.168.254.200 4661 00:99:99:99:99:99 192.168.254.200 4662 00:12:12:12:12:12 192.168.254.200 S6000-1#sho vxlan statistics interface te 0/116 0 Port : Te 0/116 Vlan : 0 Rx Packets : 326100 Rx Bytes : 23360185 Tx Packets : 91579 Tx Bytes : 8487292

Verification Part 2

Summary Operationally Simple Ethernet Line Services Eliminate Protocol Dependency & Complexity Expand Vendor Choice Practical & Economical Service Deployments Deploy Services Over Legacy Networks or IP Only Networks Deploy Services Over Other Providers Networks Future Use Cases in the Works: ELINE Health Status Details Encapsulation / De-encapsulation Gateway Bridging of Overlay Networks Hub and Spoke ELINE Services More Mobile Management Applications to deliver Self Service Pass Through Encryption Module

- IPv4 & IPv6 VRRP - IPv4: TAG + OSPF + BGP - IPv6: TAG + OSPFv3 + BGP - Ethernet Bundle: TAG + IPv4 - MPLS: RSVP+ Remote PE - OPEN: N3132Q-2: VRF1 N3132Q-2 MX80: LSYS1 MX80 MX80: LSYS2 S6000-1 N3064 S6000-2 QFX5100-48s-6q PE MX80: LSYS3 N3132Q-1 N3132Q-2: VRF2 MX80: LSYS4 N3132Q-2: VRF3

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback