Cisco ASR 1000 Series€¦ · Input scheduler for allocating BW among links ESP CPU managing QFP, crypto engine, mid-plane links, etc QFP Engine and QFP Traffic Manager . Presentation_ID

© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 1

Cisco ASR 1000 Series Introduction

Igor Bliznyukov Business development manager, SPTG


Cisco: History of Innovation Getting Ahead of Market Trends

Then 1984

1986

1995

2001

2004

2004

Employees exceed 63,000 Cisco founded by two people, developing the first mainstream IP router

More than 60 million routers shipped

Ships first router

Shipped in excess of 350,000 units Cisco introduces 7200 series optimized WAN aggregation router

More than 50,000 shipped, $1B annual run rate

Cisco introduces 7600 series, establishing Carrier Ethernet

More than 1000 shipped in less than three years

CRS-1 introduced for core, declared overkill by some with predictions of no more than 50 ever needed

More than 2,000,000 shipped in first two years

Integrated services router introduced for CPE

Cisco Aggregation Services Router Series Introduced for Edge 2008

Now


Cisco ASR 1000 Series Powered by Cisco QuantumFlow Processor

World’s Most Advanced Piece of Networking Silicon

Massive Parallel

Processing

Advanced Memory

Management

Customized Quality of Service

Integrated Services and

Programmability

Cisco QuantumFlow

Processor

Business Benefits •  High performance embedded services •  User/Application optimization •  Platform longevity

Technical Benefits •  40 independent processors •  160 threads in parallel •  Services without penalty


Cisco “Quantum Flow Processor” Feature Summary

•  Packet Processing Engine (QFP-PPE) –  40 Packet Processors with 4 Contexts

(threads) each; 160 simultaneous threads –  Up to 1.2GHz Tensilica ISA processors +

DRAM packet memory –  Single TCAM4 I/F; can cascade 1-4 devices –  C-language for feature development;

extensive development support tools –  HW assist for flow-locks, look-ups, stats,

WRED, policers, range lookup, crypto, CRC

•  Buffer/queue subsystem (QFP-BQS) –  HW hierarchical 3-parameter (min, max &

excess) scheduler –  Fully configurable # of layers based on HQF –  Priority propagation through the multiple

layers

Multi-Core (40) Packet Processor

Traffic Manager (BQS)


SPA Slots # of ESP Slots # of RP Slots # of SIP Slots IOS Redundancy Built in GigE Height Bandwidth Performance Air Flow Power Supply (Watts)

Aggregated Services & Scale

ASR 1000 Product Family


I/O – Shared Port Adapters

ATM: •  T3/E3 •  OC3 •  OC12

POS: •  OC3 •  OC12 •  OC48 •  OC192

POS/DPT/RPR: Channelized: •  T1/E1 •  T3 •  STM1 •  OC12 •  OC48

Ethernet: •  FE •  GE •  10GE

Clear Chan.: •  T3/E3

Double- Wide SPA

Single-Height SPA

Double- Height SPA

•  SPAs currently supported in other Cisco Platforms will also be supported on ASR 1000

•  Please refer to Roadmap for roll-out plan

CEOP: •  OC3 •  T3/E3 •  T1/E1

RPR •  GE •  10GE


Cisco ASR 1000 Series Hardware Architecture



ASR 1000 Building Blocks

  RP (Route Processor) Handles control plane traffic Manages system

  ESP Handles forwarding plane

traffic   SPA Interface Processor

Houses the SPAs   SPAs

Provide interface connectivity

  Centralized Forwarding Architecture

All traffic flows through the ESP

Route Processor (standby)

RP

Interconn.

Forwarding Processor

(active)

FECP

Interconn.

QFP subsys

-tem Crypto assist

Forwarding Processor (standby)

FECP

Interconn.

QFP subsys

-tem Crypto assist

SPA SPA

IOCP SPA Agg.

…

Interconn.

SPA SPA

IOCP SPA Agg.

…

Interconn.

SPA SPA

IOCP SPA Agg.

…

Interconn.

Route Processor

(active)

RP

Interconn.

SPA-SPI, 11.2Gbps Hypertransport, 10Gbps

ESI, (Enhanced Serdes Interface) 11.5Gbps

Midplane


System Architecture Control Plane

  Two different control plane links separate from the dataplane links

– Ethernet out-of-band Channel (EOBC).

– I2C - Monitor health of hardware components

  SPA control links Run between IOCP and SPAs

SPA SPA

IOCP SPA Agg.

…

Interconn.

SPA SPA

IOCP SPA Agg.

…

Interconn.

SPA SPA

IOCP SPA Agg.

…

Interconn.

Route Processor (Standby)

Route Processor

(active)

Forwarding Processor (Standby)

FECP

Interconn.

QFP subsys

-tem Crypto assist

Forwarding Processor

(active)

FECP

Interconn.

QFP subsys

-tem Crypto assist

Midplane

RP RP

EOBC - 1Gbps I2C – Inter Integrated Circuit SPA Control SPA Bus


ASR 1000 Route Processor RP1

General Purpose CPU 1.5GHz

Memory

  DRAM: Default: 2 GB; Max: 4 GB

  1GB of Internal Flash

–  For code storage, boot, config, logs, etc.

–  2X32 MB of NVRAM are partitioned

Management Interfaces

  Ethernet management port, auxiliary port, console port

Storage

  Default: 40 GB Hard Disk Drive

–  2X32 MB NVRAM are partitioned

  Option: 32 GB Solid State Drive (Post – FCS)

  For core dumps, failure capture, etc

  External USB flash for IOS configurations or File copying

40 GB HDD


ASR 1000 Embedded Services Processor ESP-5G, ESP-10G

Cisco QFP engine Centralized forwarding engine Programmable providing full-packet processing

Cisco QFP Traffic Manager Packet buffering and queuing/scheduling For output traffic to carrier cards/SPA’s For special features such as input shaping,

reassembly, replication, punt to RP, etc.

Interconnect providing data path links (ESI) to/from other cards over mid-plane

Transports traffic into and out of QFP Input scheduler for allocating BW among links

ESP CPU managing QFP, crypto engine, mid-plane links, etc QFP Engine and

QFP Traffic Manager


SPA Interface Processor – SIP-10G

  Physical termination of SPA   Supports up to 4 SPA’s

4 half-height, 2 full-height, 2 HH+1FH full OIR support

  Does not participate in forwarding   Limited QoS

–  Ingress packet classification – high/low –  Ingress over-subscription buffering (low

priority) until ESP can service them. Up to 128MB of ingress oversubscription buffering

  Capture stats on dropped packets   Network clock distribution to SPA’s,

reference selection from SPA’s   IOCP manages Midplane links, SPA OIR,

SPA drivers


ASR 1000 ESP Generations

ESP-5G ESP-10G ESP-20G

Bandwidth 5Gbps 10Gbps 20Gbps

Based on QFP QFP QFP

# of Processors 20 40 40

Clock Rate 900 Mhz 900 Mhz 1.2 Ghz

Crypto Engine BW ~1Gbps 3Gbps 8Gbps

QFP Memory 256MB 512MB 1GB

Packet Buffer 64MB 128MB 256MB

TCAM 10MB 10MB 40MB

Roadmap


What does the ESP Bandwidth mean?   ESP bandwidth denotes the total ‘output’ bandwidth of the system, regardless of

the direction   High priority traffic (as long as it is not over-subscribed - Example: <=10G for

ESP-10G) will not be affected by this bandwidth limit   ESP-10G Examples:

5G 5G 5G 5G ASR 1000

5G Unicast in each direction Total Output bandwidth 5+5=10

1G 8G 2G 2G

1G Multicast with 8X replication in one direction 2G unicast in the other direction Total Output bandwidth 8+2=10G

5G 5G 6G 6G

5G Unicast in one direction & 6G Unicast in the other direction Total output bandwidth (5+6=11) exceeds 10G; Only 10G will go through

1G 10G 1G 1G

1G Multicast with 10X replication in one direction 1G Unicast in the other direction Total bandwidth (10+1=11) exceeds 10G; only 10G will go through

ASR 1000

ASR 1000 ASR 1000


ASR 1000 Ingress Oversubscription

ESP Version

Max SPAs per SIP

Max BW / SPA (Gbps)

Max BW / SIP (Gbps)

SIP Oversubscription Ratio (worst case)

ASR1006 Oversubscription Ratio (worst case)

ESP10 (with SIP10)

4 10 10 4:1 12:1

The ASR 1000 Series is designed for oversubscription


Cisco ASR 1000 Series Software Architecture



Cisco Network Operating Systems The Right Tools in the Right Places

Cisco IOS XE Software

SP Edge & Enterprise Focused Service provider-grade services

State-of-the-art resiliency Integrated Firewall and SBC Services

Broadband, Enterprise and SP network edge

Cisco IOS® XR Software

Core Focused Service provider-grade services

State-of-the-art resiliency Large-scale networks

WAN-core link-layer types

Cisco IOS Software

Ubiquitous Powerful feature set Powerful flexibility Robust resiliency

LAN/WAN link-layer types

SBC


IOS XE

IOS XR

IOS

• Many processors • Microkernel-based

distributed infrastructure • 1000s of processes • Pre-emptive scheduling • Protected memory

Cisco IOS Software Family IOS Software Architectures

Cisco IOS Technologies

BGP

MPLS

TCP

IS-IS

OSPF SEC

VCE NAT

IPS …

• Several processors • Microkernel-based

infrastructure • 10s of processes • Pre-emptive scheduling • Protected memory

• Single processor •  IOS Kernel Infrastructure • Cooperative scheduling • Shared memory

CPU

CPU / ASICs

CPU / SPP CPU / SPP


IOS XR/XE Differentiators

IOS XR   Multi-Chassis Support and Multi-Terabit Scalability   Distributed RP and Process Placement   Logical Router   Process Level Fault Containment and Patchability   Configuration Rollbacks and Protocol Based CLI

IOS XE   Converged Broadband, Enterprise and SP Feature Support   64-bit Software Support   SW Redundancy on Non-Redundant HW   Full Packet Deep Packet Inspection   Integrated Firewall   Integrated SBC


Software Architecture – IOS XE

Embedded Services Processor

Route Processor

SPA Interface Processor

Control Messaging

Kernel Kernel

Kernel

QFP Client/Driver

  IOS XE = IOS + IOS XE Middleware + Platform Software

  Operational Consistency - same look and feel as IOS Router

  IOS runs as its own Linux process for control plane (Routing, SNMP, CLI etc). Capable of 64bit operation.

  Linux kernel with multiple processes running in protected memory for –  Fault containment –  Re-startability –  ISSU of individual SW packages

  ASR 1000 HA Innovations –  Zero-packet-loss RP Failover –  <50ms ESP Failover –  “Software Redundancy”

SPA Driver

SPA Driver

SPA Driver

SPA Driver

IOS (Standby)

IOS (Active)

IOS XE Platform Adaptation Layer (PAL)


Cisco IOS XE Consolidated SW Packages Cisco ASR1000

Series RP1 Advanced Enterprise

Services (SASR1R1-AESK9)

• SSL, SSH

•  Broadband •  L2 & L3 VPN •  MPLS •  IPv6 •  ATOM, VPLS •  BGP, EIGRP,

IGRP, OSPF •  PfR •  Security, LI •  Multicast •  SBC

• Legacy – IPX, Appletalk, DecNet, etc

•  RIP, BGP, OSPF, ISIS

•  ACL •  HSRP/VRRP •  NAT •  HA: BFD, ISSU •  Netflow •  QoS, WCCPv2

Cisco ASR1000 Series IP Base

(SASR1R1-IPBK9)


•  ACL •  HSRP/VRRP •  HA: BFD, ISSU •  NAT •  Netflow •  QoS, WCCPv2

• SSL, SSH

Cisco ASR1000 Series IP Base

w/o Crypto (SASR1R1-IPB)



•  SW redundancy •  SBC •  IPSec •  Firewall •  Flexible Packet

Inspection

Cisco ASR 1000 Series

Feature Licenses

Optional Features

Cisco ASR1000 Series RP1 Advanced IP

Services (SASR1R1-AISK9)

• SSL, SSH



•  Broadband •  L2 & L3 VPN •  MPLS •  IPv6 •  ATOM, VPLS •  BGP, EIGRP,

IGRP, OSPF •  PfR •  Security, LI •  Multicast •  SBC


Cisco ASR 1000 Series High Availability



System Level Resiliency •  Reliable, robust hardware •  Cisco IOS Software that mitigates fault impact

Cisco IOS High Availability Strategy: Based on Customer Needs

Embedded Management

Service Provider Core

Service Provider

Edge

Enterprise Edge

Enterprise Campus Core

Campus Distribution Layer

Campus Access Layer

Data Center Building Block

Provide continuous access to applications, data, and content anywhere, anytime

Address every potential cause of downtime with functionality, design, or best practice

Embedded Management Embedded Cisco IOS Software intelligence for proactive fault/events configuration & availability tracking

Cisco IOS Software features for faster convergence, protection, and restoration

Network Level Resiliency


End-to-End High Availability Technologies Requirements Technologies

System-Level Resiliency

  In-Service Software Upgrade (ISSU)   IP NSF/SSO   MPLS NSF/SSO—LDP, VPNs (including Inter-AS and CsC)   BGP Nonstop Routing   Line Card Redundancy with Y-Cables   Gateway Load Balancing Protocol   Stateful NAT   Stateful IPSec   Warm Reload   Warm Upgrade   Control Plane Policing

Network- Level Resiliency

  NSF Awareness (BGP, OSPF, IS-IS, EIGRP, LDP, RSVP)   Routing Convergence Enhancements

BGP Optimization Incremental SPF optimization IP Event Dampening

  Multicast Sub-second Convergence   MPLS Fast Reroute   Fast Convergence (OSPF, IS-IS)   Bi-Directional Forwarding Detection (BFD)

Embedded Management

  Embedded Event Manager (EEM 2.1, EEM 2.2)   Component Outage On-Line (COOL)   Embedded Resource Manager (ERM)   Configuration Rollback


ASR 1000 HA Highlights

  ASR 1000 leverages Cisco IOS HA infrastructure NSF/SSO, ISSU

  1+1 redundancy option for RP and ESP Active and standby

  Software Redundancy with Single RP – INDUSTRY FIRST!


Route Processor (standby)

RP

Interconn.

ESP (active)

FECP

Interconn.

QFP subsys

-tem Crypto assist

ESP (standby)

FECP

Interconn.

QFP subsys

-tem Crypto assist

SPA SPA

IOCP SPA Agg.

…

Interconn.

SPA SPA

IOCP SPA Agg.

…

Interconn.

SPA SPA

IOCP SPA Agg.

…

Interconn.

Midplane

Route Processor

(active)

RP

Interconn.

ASR 1000 Hardware Redundancy ASR1006

  ASR 1006 supports redundancy   ASR 1006 redundant components

RP, ESP (operate in active/standby mode) BITS Clock input Ethernet out-of-band control channel Data path channels (ESI) Power supplies Dual IOS processes NOT supported on a

single RP in this configuration

  ASR1002/ASR1004 do NOT support redundant RP or ESP components

Redundant power supplies are supported But DOES support redundant IOS

processes on RP

  The following ASR 1000 components are non-redundant

Carrier card (SIP) holding the SPAs SPAs themselves Y-cable support on the roadmap

Loopback Loopback Loopback

SPA-SPI, 11.2Gbps ESI, 11.2Gbps

Hypertransport, 10Gbps


ASR1006 Sub-50ms Switchover   RP’s are separate from ESP’s   1+1 redundancy option for RP and ESP in active/standby mode

No redundancy for SIP or other I/O cards Switchover of ESP does not result in switchover of RP Switchover of RP/IOS does not result in switchover of ESP

  Single RP may be configured with dual IOS for SW redundancy

Active ESP

Active Route

Processor

Standby Route

Processor

Standby ESP

SIP SPA SPA

SPA SPA

SIP SPA SPA

SPA SPA

SIP SPA SPA

SPA SPA

Zero Packet Loss RP fails

HW or SW

Standby Becomes

Active

Active Forwarding Processor

Active Route

Processor

Standby Route

Processor

Standby Forwarding Processor

SIP SIP SIP

SPA SPA SPA SPA SPA SPA

SPA SPA SPA SPA SPA SPA

Minimal Data Interruption

ESP fails SW or HW

Standby Becomes Active

Punt Path


Software Redundancy on Single RP/ESP

  Rollback Protection for IOS Upgrades

  No Packet Loss   Support for All SSO/NSF

Features on Dual RP Systems

OSPF IS-IS BGP MPLS

  Requires 4GB of RP Memory

Route Processor

Kernel

IOS 12.2XE (Standby)

IOS 12.2XE (Active)

IOS XE “Middleware”

IOS Fails

Standby Becomes

Active

Zero Packet Loss

High Availability on a Single RP ASR1002 & ASR1004 Systems


Cisco ASR 1000 Series Security



Security  Built-in Firewall

 Built-in IPSec

 Deep Packet Inspection

 Security with QoS

 No Services Modules Required

QOS / NBAR

INTERNET Service Provider

Enterprise Data Center

ACL FW/NAT

Branch Offices


HQ / Regional HQ

Branch Offices

GigE / 10GigE POS / ATM

small medium large

Public WAN

Industry-leading VPN Performance Multi-Gigabit Integrated, Secure VPN Head-end

QFP

QFP

QFP

•  Offer a full service IPsec VPN Aggregation Router which scales to meet new BW demands

•  Supports industry-leading site-to-site and RA VPN: DMVPN, Enhanced Easy VPN

•  No service SPA required •  Optimized for QOS & Encrypting

IP Multicast •  Up to 3 Gbps Crypto throughput •  Up to 10K tunnels •  Up to 50 Tunnels Per Second •  In-box IPsec HA


Unmatched IOS Zone-Based Firewall scale Multi-Gigabit Firewall in a Router WAN Aggregation or Internet Gateway HQ / Regional HQ

Branch Offices Full T1’s w/ satellite, DSL etc. backup Going to multiples of Ethernet/DSL/Wireless…

18xx 38xx 28xx

GigE / 10GigE / POS/ATM

small medium large

Private/ Public WAN

QFP

QFP

QFP

• Being able to use IOS Zone-Based FW up to Multi-Gigabit BW • In-box stateful HA • Firewalling supported on all interfaces in the router • No service blades required • Full Firewalling is done within QFP (including ALGs) • High-Speed Security Event Logging available via NetFlow v9


Scalable Event Logging and Data Monitoring NetFlow Event Logging in a Router

•  Security Event correlation and reduction for multi-gigabit traffic •  Enables Compliance Auditing •  Reduces bandwidth consumption due to binary format •  Identifying rogue devices, mis-configured hosts, unauthorized applications and other policy violations •  Up to 40K events per second •  NetFlow export directly from Cisco QFP, hence no Routing Plane Impact •  FW and NAT events, using NetFlow v9 templates

Cisco ASR 1000

CS-MARS 3rd Party NetFlow Collector

Netflow v9

QFP


Various HW-offload

IOS Feature HW Resource Benefits

Access Lists (v4/v6) TCAM, and ACL Range Lookup

Faster look-up, with no degradation

uRPF Pointer Lookup Unit Minimal degradation with uRPF turned on

NAT/FW Session Lookup

Hash Mod Read Holding performance with large # of sessions

Policing QFP No degradation for turning on CoPP to protect against DDoS

IPSec Crypto Engine Multi-core chip for high throughput and minimal latency crypto offload


ASR 1000 IPsec High Availability

 ASR 1000 IPSec HA support at FCS offers stateful ESP-ESP switchover on a ASR1006 configuration

 This dynamic information (IKE SA, IPSec flows) –  Is recorded by the RP (active)

–  Is distributed by the RP (active) to the RP (standby) and ESP (active + standby)


Cisco ASR 1000 Series Sample applications



ASR 1000 Service Provider IP NGN Insertion Portal

Policy Control Plane

Policy Definition

Identity Address Mgmt

Subscriber Database

Monitoring Billing

Edge

HGW

Residence

Business

Mobile Subscriber

CPE RR

ISP

•  High Speed CPE •  BRAS (LAC, PTA, ISG) •  IPSec Aggregator •  Session Border Controller •  PE (L3VPN PE)

•  LNS •  Route Reflector

VOD TV SIP

Content Farm

BRAS

IPSec

SBC

PE

Access & Aggregation

ETTx

OLT xPON

xDSL

DSLAM

Wireless

Wireline

WiMAX

Cable DOCSIS M-CMTS

LNS

IP/MPLS Core A


ASR 1000 Service Provider IP NGN Insertion Portal


Policy Definition

Identity Address Mgmt

Subscriber Database

Monitoring Billing

Integrated Service Edge

HGW

Residence

Business

Mobile Subscriber

CPE RR

ISP

•  High Speed CPE •  BRAS (LAC, PTA, ISG) •  IPSec Aggregator •  Session Border Controller •  PE (L3VPN PE)

•  LNS •  Route Reflector

VOD TV SIP

Content Farm

QFP

Access & Aggregation

ETTx

OLT xPON

xDSL

DSLAM

Wireless

Wireline

WiMAX

Cable DOCSIS M-CMTS

LNS

IP/MPLS Core A


Access SW

IPv4 / IPv6 Dual Core Residence

FTTH

CPE GE-PON ONT OLT

Content Servers

SBC

MG

Access SW

Applications

B’cast TV Video Conf VoIP VOD

RACS

H.248 Control

….

LNS

ASR 1000 Integrated Services Distributed Edge

Gq’

Dia

met

er

ASR 1000 in Distributed Integrated Service Edge Voice & Video Telephony (SBC, v6/v4)

POTS

VoIP Operators

IPTV VoD (SBC, HDTV, v6) Internet Access (BB, LAC, PPPoE, v4)

IPTV B’cast TV (Multicast, SDTV/HDTV, v6)

•  LAC, DHCP Relay, SBC DBE •  Multicast Replication •  Sophisticated QoS Model to support

multiple services per subscriber •  Single VLAN per subscriber

QFP

QFP

QFP


ASR 1000 Distributed BRAS for PTA Solution Objective •  Offer high-speed Internet access

focused on residential customers

Solution Benefits •  Various access speeds •  Different QoS levels •  End-to-end SLAs & reporting •  Optional: DSL fastpath •  Upsell service: voice, video, remote

access into VPN

Keys to ASR 1000 –  Scalability up to 32K subscribers

with QoS –  Broadband high availability (HA) –  Carrier-class modular chassis –  Integrated features for future

value-added services

IP/MPLS Core

Aggregation

Internet

Residence

CPE

Residence

CPE

Applications

B’cast TV

VConf.

VoIP

VOD

…

Billing


RADIUS

RACS

Portal

…

PE

BRAS

PE

PE


ASR 1000 LAC/LNS Solution Objective •  Offer wholesale service to Internet

Service Providers (ISPs)

Solution Benefits •  Tunneling of PPP sessions via L2TP •  Authentication before tunnel entry •  Dynamic IP addressing •  LNS redundancy •  End-to-end SLAs & reporting

Keys to ASR 1000 –  Scalability up to 16K tunnels with

QoS –  L2TP high availability (HA) –  Carrier-class modular chassis –  Consolidate a stack of 7200s

IP/MPLS Core

Aggregation

ISP 1

Residence

CPE

Residence

CPE

ISP 2

LAC

LNS LNS

Billing


RADIUS

RACS

Portal

…


ASR 1000 Per-user Firewall Solution Objective •  Offer Virtual Firewall service to the

Broadband Subscribers

Solution Benefits •  Hosted FW service •  Customized FW subscription •  Elimination of FW maintenance

/update by subscribers

Keys to ASR 1000 –  Scalability up to 32K sessions –  Scalability of sessions with FW –

up to 32K –  Carrier-class modular configuration

providing High Availabiltiy

IP/MPLS Core

Aggregation

ISP 1

Residence

CPE

Residence

CPE

Billing


RADIUS

RACS

Portal

…

LAC

LNS


ASR 1000 L2TP Tunnel Switch Solution Objective •  Offer combined LAC/LNS

functionality to increase scalability for a broadband wholesale service

Solution Benefits •  Grooming of PPP sessions via

L2TP •  Increase scalability by avoiding full

connectivity to all LNSs for each LAC

•  Redundancy & load balancing •  VRF support

Keys to ASR 1000 –  Scalability up to 16K tunnels with

QoS –  L2TP high availability (HA) –  Carrier-class modular chassis –  Consolidate a stack of 7200s

IP/MPLS Core

Aggregation

ISP 1

Residence

CPE

Residence

CPE

ISP 2

LNS LNS

LAC

LTS

Billing


RADIUS

RACS

Portal

…


ASR 1000 RA-MPLS Solution Objective •  Offer Remote access to Employees

of VPN Enterprise customers

Solution Benefits   Branches/Employees with BB access

from Wholesale SP have direct access to Corporate Network with PPP sessions

  Communicate directly with customer AAA without needing proxy

  Multiple VRFs separate customer traffic without overhead of L2TP tunneling for each customer

Keys to ASR 1000 –  Scalability up to 16K tunnels & 1K

VRFs –  L2TP & MPLS high availability (HA) –  Carrier-class modular chassis

IP/MPLS Core

Aggregation

Customer A

Residence

CPE

Residence

CPE

Customer B

LAC

LNS

Billing


RADIUS

RACS

Portal

…


Solution Benefits •  SP solution (BGF) to support SP-to

-SP, IP PBX-to-SP peering, Telepresence and the fast-growing residential IP telephony.

•  Eliminate need for overlay networks and standalone appliances

•  Distributed SBC for scalable design w/ centralized signaling & control

HGW

Residence

Business

A

SBC

Centralized Signaling and

Control

Peering SBC

Media Gateway

Access SBC

IP/MPLS Core

Solution Objective •  To enable end-to-end feature rich

and secure IP communications

Keys to ASR1000 •  No extra service blades required •  Scalable solution, upto 32K

sessions •  High Availability (SSO, ISSU) •  Consistent w/ other high end Cisco

SBCs for features and interop •  Extensible through modular design

SBC

ASR 1000 Session Border Controller


ASR 1000 High-End IPSec Terminator Solution Objective •  Offer full-service IPSec VPN

termination

Solution Benefits •  Terminate a large number of IPSec

tunnels •  Price/performance with built-in

cryptography chip

Keys to ASR 1000 (FP-10G) –  2+Mpps throughput with services

enabled –  Scalability to 1000s of sites /

tunnels –  TCAM-assisted source address

(SA) lookups

IP/MPLS Core

IPSec Tunnels

Head-end

Branch Branch

Branch


ASR 1000 Route Reflector Solution Objective •  Offer BGP route reflector to power

SP core networks

Solution Benefits •  Scaleable BGP routing architecture •  Full-mesh to other iBGP peers •  Fast and scalable control plane

Keys to ASR 1000 –  Unmatched routing scalability (1

M+ routes) –  Rich Cisco IOS routing feature set –  2RU/4RU chassis options with

10GE –  Extensible through modular design

FE

GE 802.1q

AAL5

IP/MPLS Core

RR

RR


Documents

Cisco ASR 1000 Series€¦ · Input scheduler for allocating BW among links ESP CPU managing QFP, crypto engine, mid-plane links, etc QFP Engine and QFP Traffic Manager . Presentation_ID