Upload
phungtram
View
227
Download
0
Embed Size (px)
Citation preview
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 1
Cisco ASR 1000 Series Introduction
Igor Bliznyukov Business development manager, SPTG
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 2
Cisco: History of Innovation Getting Ahead of Market Trends
Then 1984
1986
1995
2001
2004
2004
Employees exceed 63,000 Cisco founded by two people, developing the first mainstream IP router
More than 60 million routers shipped
Ships first router
Shipped in excess of 350,000 units Cisco introduces 7200 series optimized WAN aggregation router
More than 50,000 shipped, $1B annual run rate
Cisco introduces 7600 series, establishing Carrier Ethernet
More than 1000 shipped in less than three years
CRS-1 introduced for core, declared overkill by some with predictions of no more than 50 ever needed
More than 2,000,000 shipped in first two years
Integrated services router introduced for CPE
Cisco Aggregation Services Router Series Introduced for Edge 2008
Now
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 3
Cisco ASR 1000 Series Powered by Cisco QuantumFlow Processor
World’s Most Advanced Piece of Networking Silicon
Massive Parallel
Processing
Advanced Memory
Management
Customized Quality of Service
Integrated Services and
Programmability
Cisco QuantumFlow
Processor
Business Benefits • High performance embedded services • User/Application optimization • Platform longevity
Technical Benefits • 40 independent processors • 160 threads in parallel • Services without penalty
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 4
Cisco “Quantum Flow Processor” Feature Summary
• Packet Processing Engine (QFP-PPE) – 40 Packet Processors with 4 Contexts
(threads) each; 160 simultaneous threads – Up to 1.2GHz Tensilica ISA processors +
DRAM packet memory – Single TCAM4 I/F; can cascade 1-4 devices – C-language for feature development;
extensive development support tools – HW assist for flow-locks, look-ups, stats,
WRED, policers, range lookup, crypto, CRC
• Buffer/queue subsystem (QFP-BQS) – HW hierarchical 3-parameter (min, max &
excess) scheduler – Fully configurable # of layers based on HQF – Priority propagation through the multiple
layers
Multi-Core (40) Packet Processor
Traffic Manager (BQS)
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 5
SPA Slots # of ESP Slots # of RP Slots # of SIP Slots IOS Redundancy Built in GigE Height Bandwidth Performance Air Flow Power Supply (Watts)
Aggregated Services & Scale
ASR 1000 Product Family
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 6
I/O – Shared Port Adapters
ATM: • T3/E3 • OC3 • OC12
POS: • OC3 • OC12 • OC48 • OC192
POS/DPT/RPR: Channelized: • T1/E1 • T3 • STM1 • OC12 • OC48
Ethernet: • FE • GE • 10GE
Clear Chan.: • T3/E3
Double- Wide SPA
Single-Height SPA
Double- Height SPA
• SPAs currently supported in other Cisco Platforms will also be supported on ASR 1000
• Please refer to Roadmap for roll-out plan
CEOP: • OC3 • T3/E3 • T1/E1
RPR • GE • 10GE
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 7
Cisco ASR 1000 Series Hardware Architecture
Igor Bliznyukov Business development manager, SPTG
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 8
ASR 1000 Building Blocks
RP (Route Processor) Handles control plane traffic Manages system
ESP Handles forwarding plane
traffic SPA Interface Processor
Houses the SPAs SPAs
Provide interface connectivity
Centralized Forwarding Architecture
All traffic flows through the ESP
Route Processor (standby)
RP
Interconn.
Forwarding Processor
(active)
FECP
Interconn.
QFP subsys
-tem Crypto assist
Forwarding Processor (standby)
FECP
Interconn.
QFP subsys
-tem Crypto assist
SPA SPA
IOCP SPA Agg.
…
Interconn.
SPA SPA
IOCP SPA Agg.
…
Interconn.
SPA SPA
IOCP SPA Agg.
…
Interconn.
Route Processor
(active)
RP
Interconn.
SPA-SPI, 11.2Gbps Hypertransport, 10Gbps
ESI, (Enhanced Serdes Interface) 11.5Gbps
Midplane
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 9
System Architecture Control Plane
Two different control plane links separate from the dataplane links
– Ethernet out-of-band Channel (EOBC).
– I2C - Monitor health of hardware components
SPA control links Run between IOCP and SPAs
SPA SPA
IOCP SPA Agg.
…
Interconn.
SPA SPA
IOCP SPA Agg.
…
Interconn.
SPA SPA
IOCP SPA Agg.
…
Interconn.
Route Processor (Standby)
Route Processor
(active)
Forwarding Processor (Standby)
FECP
Interconn.
QFP subsys
-tem Crypto assist
Forwarding Processor
(active)
FECP
Interconn.
QFP subsys
-tem Crypto assist
Midplane
RP RP
EOBC - 1Gbps I2C – Inter Integrated Circuit SPA Control SPA Bus
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 10
ASR 1000 Route Processor RP1
General Purpose CPU 1.5GHz
Memory
DRAM: Default: 2 GB; Max: 4 GB
1GB of Internal Flash
– For code storage, boot, config, logs, etc.
– 2X32 MB of NVRAM are partitioned
Management Interfaces
Ethernet management port, auxiliary port, console port
Storage
Default: 40 GB Hard Disk Drive
– 2X32 MB NVRAM are partitioned
Option: 32 GB Solid State Drive (Post – FCS)
For core dumps, failure capture, etc
External USB flash for IOS configurations or File copying
40 GB HDD
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 11
ASR 1000 Embedded Services Processor ESP-5G, ESP-10G
Cisco QFP engine Centralized forwarding engine Programmable providing full-packet processing
Cisco QFP Traffic Manager Packet buffering and queuing/scheduling For output traffic to carrier cards/SPA’s For special features such as input shaping,
reassembly, replication, punt to RP, etc.
Interconnect providing data path links (ESI) to/from other cards over mid-plane
Transports traffic into and out of QFP Input scheduler for allocating BW among links
ESP CPU managing QFP, crypto engine, mid-plane links, etc QFP Engine and
QFP Traffic Manager
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 12
SPA Interface Processor – SIP-10G
Physical termination of SPA Supports up to 4 SPA’s
4 half-height, 2 full-height, 2 HH+1FH full OIR support
Does not participate in forwarding Limited QoS
– Ingress packet classification – high/low – Ingress over-subscription buffering (low
priority) until ESP can service them. Up to 128MB of ingress oversubscription buffering
Capture stats on dropped packets Network clock distribution to SPA’s,
reference selection from SPA’s IOCP manages Midplane links, SPA OIR,
SPA drivers
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 13
ASR 1000 ESP Generations
ESP-5G ESP-10G ESP-20G
Bandwidth 5Gbps 10Gbps 20Gbps
Based on QFP QFP QFP
# of Processors 20 40 40
Clock Rate 900 Mhz 900 Mhz 1.2 Ghz
Crypto Engine BW ~1Gbps 3Gbps 8Gbps
QFP Memory 256MB 512MB 1GB
Packet Buffer 64MB 128MB 256MB
TCAM 10MB 10MB 40MB
Roadmap
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 14
What does the ESP Bandwidth mean? ESP bandwidth denotes the total ‘output’ bandwidth of the system, regardless of
the direction High priority traffic (as long as it is not over-subscribed - Example: <=10G for
ESP-10G) will not be affected by this bandwidth limit ESP-10G Examples:
5G 5G 5G 5G ASR 1000
5G Unicast in each direction Total Output bandwidth 5+5=10
1G 8G 2G 2G
1G Multicast with 8X replication in one direction 2G unicast in the other direction Total Output bandwidth 8+2=10G
5G 5G 6G 6G
5G Unicast in one direction & 6G Unicast in the other direction Total output bandwidth (5+6=11) exceeds 10G; Only 10G will go through
1G 10G 1G 1G
1G Multicast with 10X replication in one direction 1G Unicast in the other direction Total bandwidth (10+1=11) exceeds 10G; only 10G will go through
ASR 1000
ASR 1000 ASR 1000
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 15
ASR 1000 Ingress Oversubscription
ESP Version
Max SPAs per SIP
Max BW / SPA (Gbps)
Max BW / SIP (Gbps)
SIP Oversubscription Ratio (worst case)
ASR1006 Oversubscription Ratio (worst case)
ESP10 (with SIP10)
4 10 10 4:1 12:1
The ASR 1000 Series is designed for oversubscription
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 16
Cisco ASR 1000 Series Software Architecture
Igor Bliznyukov Business development manager, SPTG
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 17
Cisco Network Operating Systems The Right Tools in the Right Places
Cisco IOS XE Software
SP Edge & Enterprise Focused Service provider-grade services
State-of-the-art resiliency Integrated Firewall and SBC Services
Broadband, Enterprise and SP network edge
Cisco IOS® XR Software
Core Focused Service provider-grade services
State-of-the-art resiliency Large-scale networks
WAN-core link-layer types
Cisco IOS Software
Ubiquitous Powerful feature set Powerful flexibility Robust resiliency
LAN/WAN link-layer types
SBC
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 18
IOS XE
IOS XR
IOS
• Many processors • Microkernel-based
distributed infrastructure • 1000s of processes • Pre-emptive scheduling • Protected memory
Cisco IOS Software Family IOS Software Architectures
Cisco IOS Technologies
BGP
MPLS
TCP
IS-IS
OSPF SEC
VCE NAT
IPS …
• Several processors • Microkernel-based
infrastructure • 10s of processes • Pre-emptive scheduling • Protected memory
• Single processor • IOS Kernel Infrastructure • Cooperative scheduling • Shared memory
CPU
CPU / ASICs
CPU / SPP CPU / SPP
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 19
IOS XR/XE Differentiators
IOS XR Multi-Chassis Support and Multi-Terabit Scalability Distributed RP and Process Placement Logical Router Process Level Fault Containment and Patchability Configuration Rollbacks and Protocol Based CLI
IOS XE Converged Broadband, Enterprise and SP Feature Support 64-bit Software Support SW Redundancy on Non-Redundant HW Full Packet Deep Packet Inspection Integrated Firewall Integrated SBC
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 20
Software Architecture – IOS XE
Embedded Services Processor
Route Processor
SPA Interface Processor
Control Messaging
Kernel Kernel
Kernel
QFP Client/Driver
IOS XE = IOS + IOS XE Middleware + Platform Software
Operational Consistency - same look and feel as IOS Router
IOS runs as its own Linux process for control plane (Routing, SNMP, CLI etc). Capable of 64bit operation.
Linux kernel with multiple processes running in protected memory for – Fault containment – Re-startability – ISSU of individual SW packages
ASR 1000 HA Innovations – Zero-packet-loss RP Failover – <50ms ESP Failover – “Software Redundancy”
SPA Driver
SPA Driver
SPA Driver
SPA Driver
IOS (Standby)
IOS (Active)
IOS XE Platform Adaptation Layer (PAL)
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 21
Cisco IOS XE Consolidated SW Packages Cisco ASR1000
Series RP1 Advanced Enterprise
Services (SASR1R1-AESK9)
• SSL, SSH
• Broadband • L2 & L3 VPN • MPLS • IPv6 • ATOM, VPLS • BGP, EIGRP,
IGRP, OSPF • PfR • Security, LI • Multicast • SBC
• Legacy – IPX, Appletalk, DecNet, etc
• RIP, BGP, OSPF, ISIS
• ACL • HSRP/VRRP • NAT • HA: BFD, ISSU • Netflow • QoS, WCCPv2
Cisco ASR1000 Series IP Base
(SASR1R1-IPBK9)
• RIP, BGP, OSPF, ISIS
• ACL • HSRP/VRRP • HA: BFD, ISSU • NAT • Netflow • QoS, WCCPv2
• SSL, SSH
Cisco ASR1000 Series IP Base
w/o Crypto (SASR1R1-IPB)
• RIP, BGP, OSPF, ISIS
• ACL • HSRP/VRRP • HA: BFD, ISSU • NAT • Netflow • QoS, WCCPv2
• SW redundancy • SBC • IPSec • Firewall • Flexible Packet
Inspection
Cisco ASR 1000 Series
Feature Licenses
Optional Features
Cisco ASR1000 Series RP1 Advanced IP
Services (SASR1R1-AISK9)
• SSL, SSH
• RIP, BGP, OSPF, ISIS
• ACL • HSRP/VRRP • HA: BFD, ISSU • NAT • Netflow • QoS, WCCPv2
• Broadband • L2 & L3 VPN • MPLS • IPv6 • ATOM, VPLS • BGP, EIGRP,
IGRP, OSPF • PfR • Security, LI • Multicast • SBC
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 22
Cisco ASR 1000 Series High Availability
Igor Bliznyukov Business development manager, SPTG
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 23
System Level Resiliency • Reliable, robust hardware • Cisco IOS Software that mitigates fault impact
Cisco IOS High Availability Strategy: Based on Customer Needs
Embedded Management
Service Provider Core
Service Provider
Edge
Enterprise Edge
Enterprise Campus Core
Campus Distribution Layer
Campus Access Layer
Data Center Building Block
Provide continuous access to applications, data, and content anywhere, anytime
Address every potential cause of downtime with functionality, design, or best practice
Embedded Management Embedded Cisco IOS Software intelligence for proactive fault/events configuration & availability tracking
Cisco IOS Software features for faster convergence, protection, and restoration
Network Level Resiliency
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 24
End-to-End High Availability Technologies Requirements Technologies
System-Level Resiliency
In-Service Software Upgrade (ISSU) IP NSF/SSO MPLS NSF/SSO—LDP, VPNs (including Inter-AS and CsC) BGP Nonstop Routing Line Card Redundancy with Y-Cables Gateway Load Balancing Protocol Stateful NAT Stateful IPSec Warm Reload Warm Upgrade Control Plane Policing
Network- Level Resiliency
NSF Awareness (BGP, OSPF, IS-IS, EIGRP, LDP, RSVP) Routing Convergence Enhancements
BGP Optimization Incremental SPF optimization IP Event Dampening
Multicast Sub-second Convergence MPLS Fast Reroute Fast Convergence (OSPF, IS-IS) Bi-Directional Forwarding Detection (BFD)
Embedded Management
Embedded Event Manager (EEM 2.1, EEM 2.2) Component Outage On-Line (COOL) Embedded Resource Manager (ERM) Configuration Rollback
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 25
ASR 1000 HA Highlights
ASR 1000 leverages Cisco IOS HA infrastructure NSF/SSO, ISSU
1+1 redundancy option for RP and ESP Active and standby
Software Redundancy with Single RP – INDUSTRY FIRST!
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 26
Route Processor (standby)
RP
Interconn.
ESP (active)
FECP
Interconn.
QFP subsys
-tem Crypto assist
ESP (standby)
FECP
Interconn.
QFP subsys
-tem Crypto assist
SPA SPA
IOCP SPA Agg.
…
Interconn.
SPA SPA
IOCP SPA Agg.
…
Interconn.
SPA SPA
IOCP SPA Agg.
…
Interconn.
Midplane
Route Processor
(active)
RP
Interconn.
ASR 1000 Hardware Redundancy ASR1006
ASR 1006 supports redundancy ASR 1006 redundant components
RP, ESP (operate in active/standby mode) BITS Clock input Ethernet out-of-band control channel Data path channels (ESI) Power supplies Dual IOS processes NOT supported on a
single RP in this configuration
ASR1002/ASR1004 do NOT support redundant RP or ESP components
Redundant power supplies are supported But DOES support redundant IOS
processes on RP
The following ASR 1000 components are non-redundant
Carrier card (SIP) holding the SPAs SPAs themselves Y-cable support on the roadmap
Loopback Loopback Loopback
SPA-SPI, 11.2Gbps ESI, 11.2Gbps
Hypertransport, 10Gbps
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 27
ASR1006 Sub-50ms Switchover RP’s are separate from ESP’s 1+1 redundancy option for RP and ESP in active/standby mode
No redundancy for SIP or other I/O cards Switchover of ESP does not result in switchover of RP Switchover of RP/IOS does not result in switchover of ESP
Single RP may be configured with dual IOS for SW redundancy
Active ESP
Active Route
Processor
Standby Route
Processor
Standby ESP
SIP SPA SPA
SPA SPA
SIP SPA SPA
SPA SPA
SIP SPA SPA
SPA SPA
Zero Packet Loss RP fails
HW or SW
Standby Becomes
Active
Active Forwarding Processor
Active Route
Processor
Standby Route
Processor
Standby Forwarding Processor
SIP SIP SIP
SPA SPA SPA SPA SPA SPA
SPA SPA SPA SPA SPA SPA
Minimal Data Interruption
ESP fails SW or HW
Standby Becomes Active
Punt Path
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 28
Software Redundancy on Single RP/ESP
Rollback Protection for IOS Upgrades
No Packet Loss Support for All SSO/NSF
Features on Dual RP Systems
OSPF IS-IS BGP MPLS
Requires 4GB of RP Memory
Route Processor
Kernel
IOS 12.2XE (Standby)
IOS 12.2XE (Active)
IOS XE “Middleware”
IOS Fails
Standby Becomes
Active
Zero Packet Loss
High Availability on a Single RP ASR1002 & ASR1004 Systems
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 29
Cisco ASR 1000 Series Security
Igor Bliznyukov Business development manager, SPTG
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 30
Security Built-in Firewall
Built-in IPSec
Deep Packet Inspection
Security with QoS
No Services Modules Required
QOS / NBAR
INTERNET Service Provider
Enterprise Data Center
ACL FW/NAT
Branch Offices
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 31
HQ / Regional HQ
Branch Offices
GigE / 10GigE POS / ATM
small medium large
Public WAN
Industry-leading VPN Performance Multi-Gigabit Integrated, Secure VPN Head-end
QFP
QFP
QFP
• Offer a full service IPsec VPN Aggregation Router which scales to meet new BW demands
• Supports industry-leading site-to-site and RA VPN: DMVPN, Enhanced Easy VPN
• No service SPA required • Optimized for QOS & Encrypting
IP Multicast • Up to 3 Gbps Crypto throughput • Up to 10K tunnels • Up to 50 Tunnels Per Second • In-box IPsec HA
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 32
Unmatched IOS Zone-Based Firewall scale Multi-Gigabit Firewall in a Router WAN Aggregation or Internet Gateway HQ / Regional HQ
Branch Offices Full T1’s w/ satellite, DSL etc. backup Going to multiples of Ethernet/DSL/Wireless…
18xx 38xx 28xx
GigE / 10GigE / POS/ATM
small medium large
Private/ Public WAN
QFP
QFP
QFP
• Being able to use IOS Zone-Based FW up to Multi-Gigabit BW • In-box stateful HA • Firewalling supported on all interfaces in the router • No service blades required • Full Firewalling is done within QFP (including ALGs) • High-Speed Security Event Logging available via NetFlow v9
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 33
Scalable Event Logging and Data Monitoring NetFlow Event Logging in a Router
• Security Event correlation and reduction for multi-gigabit traffic • Enables Compliance Auditing • Reduces bandwidth consumption due to binary format • Identifying rogue devices, mis-configured hosts, unauthorized applications and other policy violations • Up to 40K events per second • NetFlow export directly from Cisco QFP, hence no Routing Plane Impact • FW and NAT events, using NetFlow v9 templates
Cisco ASR 1000
CS-MARS 3rd Party NetFlow Collector
Netflow v9
QFP
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 34
Various HW-offload
IOS Feature HW Resource Benefits
Access Lists (v4/v6) TCAM, and ACL Range Lookup
Faster look-up, with no degradation
uRPF Pointer Lookup Unit Minimal degradation with uRPF turned on
NAT/FW Session Lookup
Hash Mod Read Holding performance with large # of sessions
Policing QFP No degradation for turning on CoPP to protect against DDoS
IPSec Crypto Engine Multi-core chip for high throughput and minimal latency crypto offload
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 35
ASR 1000 IPsec High Availability
ASR 1000 IPSec HA support at FCS offers stateful ESP-ESP switchover on a ASR1006 configuration
This dynamic information (IKE SA, IPSec flows) – Is recorded by the RP (active)
– Is distributed by the RP (active) to the RP (standby) and ESP (active + standby)
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 36
Cisco ASR 1000 Series Sample applications
Igor Bliznyukov Business development manager, SPTG
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 37
ASR 1000 Service Provider IP NGN Insertion Portal
Policy Control Plane
Policy Definition
Identity Address Mgmt
Subscriber Database
Monitoring Billing
Edge
HGW
Residence
Business
Mobile Subscriber
CPE RR
ISP
• High Speed CPE • BRAS (LAC, PTA, ISG) • IPSec Aggregator • Session Border Controller • PE (L3VPN PE)
• LNS • Route Reflector
VOD TV SIP
Content Farm
BRAS
IPSec
SBC
PE
Access & Aggregation
ETTx
OLT xPON
xDSL
DSLAM
Wireless
Wireline
WiMAX
Cable DOCSIS M-CMTS
LNS
IP/MPLS Core A
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 38
ASR 1000 Service Provider IP NGN Insertion Portal
Policy Control Plane
Policy Definition
Identity Address Mgmt
Subscriber Database
Monitoring Billing
Integrated Service Edge
HGW
Residence
Business
Mobile Subscriber
CPE RR
ISP
• High Speed CPE • BRAS (LAC, PTA, ISG) • IPSec Aggregator • Session Border Controller • PE (L3VPN PE)
• LNS • Route Reflector
VOD TV SIP
Content Farm
QFP
Access & Aggregation
ETTx
OLT xPON
xDSL
DSLAM
Wireless
Wireline
WiMAX
Cable DOCSIS M-CMTS
LNS
IP/MPLS Core A
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 39
Access SW
IPv4 / IPv6 Dual Core Residence
FTTH
CPE GE-PON ONT OLT
Content Servers
SBC
MG
Access SW
Applications
B’cast TV Video Conf VoIP VOD
RACS
H.248 Control
….
LNS
ASR 1000 Integrated Services Distributed Edge
Gq’
Dia
met
er
ASR 1000 in Distributed Integrated Service Edge Voice & Video Telephony (SBC, v6/v4)
POTS
VoIP Operators
IPTV VoD (SBC, HDTV, v6) Internet Access (BB, LAC, PPPoE, v4)
IPTV B’cast TV (Multicast, SDTV/HDTV, v6)
• LAC, DHCP Relay, SBC DBE • Multicast Replication • Sophisticated QoS Model to support
multiple services per subscriber • Single VLAN per subscriber
QFP
QFP
QFP
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 40
ASR 1000 Distributed BRAS for PTA Solution Objective • Offer high-speed Internet access
focused on residential customers
Solution Benefits • Various access speeds • Different QoS levels • End-to-end SLAs & reporting • Optional: DSL fastpath • Upsell service: voice, video, remote
access into VPN
Keys to ASR 1000 – Scalability up to 32K subscribers
with QoS – Broadband high availability (HA) – Carrier-class modular chassis – Integrated features for future
value-added services
IP/MPLS Core
Aggregation
Internet
Residence
CPE
Residence
CPE
Applications
B’cast TV
VConf.
VoIP
VOD
…
Billing
Policy Control Plane
RADIUS
RACS
Portal
…
PE
BRAS
PE
PE
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 41
ASR 1000 LAC/LNS Solution Objective • Offer wholesale service to Internet
Service Providers (ISPs)
Solution Benefits • Tunneling of PPP sessions via L2TP • Authentication before tunnel entry • Dynamic IP addressing • LNS redundancy • End-to-end SLAs & reporting
Keys to ASR 1000 – Scalability up to 16K tunnels with
QoS – L2TP high availability (HA) – Carrier-class modular chassis – Consolidate a stack of 7200s
IP/MPLS Core
Aggregation
ISP 1
Residence
CPE
Residence
CPE
ISP 2
LAC
LNS LNS
Billing
Policy Control Plane
RADIUS
RACS
Portal
…
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 42
ASR 1000 Per-user Firewall Solution Objective • Offer Virtual Firewall service to the
Broadband Subscribers
Solution Benefits • Hosted FW service • Customized FW subscription • Elimination of FW maintenance
/update by subscribers
Keys to ASR 1000 – Scalability up to 32K sessions – Scalability of sessions with FW –
up to 32K – Carrier-class modular configuration
providing High Availabiltiy
IP/MPLS Core
Aggregation
ISP 1
Residence
CPE
Residence
CPE
Billing
Policy Control Plane
RADIUS
RACS
Portal
…
LAC
LNS
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 43
ASR 1000 L2TP Tunnel Switch Solution Objective • Offer combined LAC/LNS
functionality to increase scalability for a broadband wholesale service
Solution Benefits • Grooming of PPP sessions via
L2TP • Increase scalability by avoiding full
connectivity to all LNSs for each LAC
• Redundancy & load balancing • VRF support
Keys to ASR 1000 – Scalability up to 16K tunnels with
QoS – L2TP high availability (HA) – Carrier-class modular chassis – Consolidate a stack of 7200s
IP/MPLS Core
Aggregation
ISP 1
Residence
CPE
Residence
CPE
ISP 2
LNS LNS
LAC
LTS
Billing
Policy Control Plane
RADIUS
RACS
Portal
…
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 44
ASR 1000 RA-MPLS Solution Objective • Offer Remote access to Employees
of VPN Enterprise customers
Solution Benefits Branches/Employees with BB access
from Wholesale SP have direct access to Corporate Network with PPP sessions
Communicate directly with customer AAA without needing proxy
Multiple VRFs separate customer traffic without overhead of L2TP tunneling for each customer
Keys to ASR 1000 – Scalability up to 16K tunnels & 1K
VRFs – L2TP & MPLS high availability (HA) – Carrier-class modular chassis
IP/MPLS Core
Aggregation
Customer A
Residence
CPE
Residence
CPE
Customer B
LAC
LNS
Billing
Policy Control Plane
RADIUS
RACS
Portal
…
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 45
Solution Benefits • SP solution (BGF) to support SP-to
-SP, IP PBX-to-SP peering, Telepresence and the fast-growing residential IP telephony.
• Eliminate need for overlay networks and standalone appliances
• Distributed SBC for scalable design w/ centralized signaling & control
HGW
Residence
Business
A
SBC
Centralized Signaling and
Control
Peering SBC
Media Gateway
Access SBC
IP/MPLS Core
Solution Objective • To enable end-to-end feature rich
and secure IP communications
Keys to ASR1000 • No extra service blades required • Scalable solution, upto 32K
sessions • High Availability (SSO, ISSU) • Consistent w/ other high end Cisco
SBCs for features and interop • Extensible through modular design
SBC
ASR 1000 Session Border Controller
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 46
ASR 1000 High-End IPSec Terminator Solution Objective • Offer full-service IPSec VPN
termination
Solution Benefits • Terminate a large number of IPSec
tunnels • Price/performance with built-in
cryptography chip
Keys to ASR 1000 (FP-10G) – 2+Mpps throughput with services
enabled – Scalability to 1000s of sites /
tunnels – TCAM-assisted source address
(SA) lookups
IP/MPLS Core
IPSec Tunnels
Head-end
Branch Branch
Branch
© 2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 47
ASR 1000 Route Reflector Solution Objective • Offer BGP route reflector to power
SP core networks
Solution Benefits • Scaleable BGP routing architecture • Full-mesh to other iBGP peers • Fast and scalable control plane
Keys to ASR 1000 – Unmatched routing scalability (1
M+ routes) – Rich Cisco IOS routing feature set – 2RU/4RU chassis options with
10GE – Extensible through modular design
FE
GE 802.1q
AAL5
IP/MPLS Core
RR
RR