75
MEN Switches & Routers 50630008

MEN Switches & Routers

Embed Size (px)

Citation preview

Page 1: MEN Switches & Routers

MEN Switches & Routers50630008

Page 2: MEN Switches & Routers

Confidential Slide

Content

MEN Architecture

VLAN

L3 Forwarding

Switches

Routers

2

Page 3: MEN Switches & Routers

Confidential Slide

MAN Network Evolution

Service

Access

Core

X.25

ADSL

Ethernet

PSTN

IP

ATM

FR

GSM/GPRS CDMA

Cable

PDHSDH

Wireless Voice

Wireless Data

High SpeedInternet

Voice

Streaming

Dial-up

VoIP

Message

Today

WirelessDSL FTTP/HFC3G

RAN

IP / MPLS

Network

Location &Presence

Message

Online G

aming

Voice

Data

Video

Storage

Directory

Tomorrow

Multiple networks merge together

IP based

Lower TCO

Unified network, diversified services

Gradual evolution

Page 4: MEN Switches & Routers

Confidential Slide

Position of Metro Ethernet

Page 5: MEN Switches & Routers

Confidential Slide

5

Backbone

MPLS

MAN

MAN Ring

MAN

MANMAN

MCN

Reliance MEN Architecture

8~16 BA Rings Upto 14 BNs / BA ring

Upto 4 BAN RingsBAN

BAN

BAN

BAN

Upto 4 BANs / BAN ring

Static path configuration

Bldg. s/w

HomeSTB

Fiber

• VLAN, IP, Port based policy for transmitting customer traffic

Layer 2 / Layer 3 service

Aggregation

Distribution

Core

Access

Page 6: MEN Switches & Routers

Confidential Slide

Characteristics of Metro Ethernet

MetroAN

Core

(IP/MPLS)

MetroEthernet

High Availability Switchover: <50ms Service availability: 99.999% Link Aggregation & node protection E2E Protection

Hard QoS E2E SLA

Scalability No VLAN Limitation Interface rate range from n Mbps to

N×10Gbps

Service Management Fast provisioning, OAM Unified management

TDM Seamless interoperation with legacy

TDM system Legacy Leased Line

Page 7: MEN Switches & Routers

VLAN

Page 8: MEN Switches & Routers

Confidential Slide

Broadcast Storm

broadcast ……

Page 9: MEN Switches & Routers

Confidential Slide

Divide Broadcast Domain by Router

broadcast……

Page 10: MEN Switches & Routers

Confidential Slide

Divide Broadcast Domain by VLAN

Engineering Department

Financial DepartmentMarketing Department

Broadcast domain1

VLAN 10Broadcast domain2

VLAN 20

Broadcast domain3VLAN 30

Page 11: MEN Switches & Routers

Confidential Slide

VLAN

Page 12: MEN Switches & Routers

Confidential Slide

Port Based VLAN

VLAN Table

Port 1 Port 2 Port 3 Port 4

Host A Host B Host C Host D

LAN Switch

Port VLAN

Port 1 VLAN5

Port 2 VLAN10

Port 3 VLAN5

Port 4 VLAN10

Page 13: MEN Switches & Routers

Confidential Slide

Format of 802.1Q Frame

DA SA Type Data CRC

Standard Ethernet Frame

DA SA Type Data CRCtag

TPID Priority CFI VLAN ID

TCI

Ethernet Frame with IEEE802.IQ Flag

Page 14: MEN Switches & Routers

Confidential Slide

Link Type

Access Link

Trunk Link or Hybrid Link

Page 15: MEN Switches & Routers

Confidential Slide

VLAN Trunking

Allows to send traffic for multiple VLAN across single link.

Two devices must support same trunking protocol – 802.1q

Device adds a header called tag to the original Ethernet

frame which has field for VLAN ID

Allowed VLANs – Each trunk allows all VLANs by default.

However, they can be added or removed from the list.

Page 16: MEN Switches & Routers

Confidential Slide

Frame Changes in Network Communication

VLAN 2 VLAN 3

VLAN 3 VLAN 2

Ethernet frame with tag

Ethernet frame with tag

Ethernet frame without tag

Page 17: MEN Switches & Routers

Confidential Slide

Trunk and VLAN

Broadcast

Trunk Link

VLAN 4

VLAN 2 VLAN 4 VLAN 3 VLAN 2 VLAN 4 VLAN 5 VLAN 5 VLAN 2

VLAN 5

Page 18: MEN Switches & Routers

L3 Forwarding

Page 19: MEN Switches & Routers

Confidential Slide

Integration of switching and routing

Functional integration of layer 2 switches and routers forms the layer 3 switch; the layer 3

switch functionally realizes VLAN classification, VLAN internal layer 2 switching and inter-VLAN

route functions.

VLAN 100 VLAN 200

VLAN 300

VLAN 100 VLAN 200

VLAN 300

Page 20: MEN Switches & Routers

Confidential Slide

Message to message Layer 3 switching

technology

1

2

3

1

2

3

1

2

3

1

2

3

Traditional layer 3 technology processes each message, and transfers messages based on the

destination IP addresses. This method is called from message to message

Page 21: MEN Switches & Routers

Confidential Slide

Layer 3 switching technology based on flow

switching

The first message

Subsequent messages

1

2

3

1

2

3

1

2

3

1

2

3

Page 22: MEN Switches & Routers

Huawei CX200D

Page 23: MEN Switches & Routers

Confidential Slide

Hardware Architecture of the CX200D

Dimensions 442mm×220mm×43.6mm

Port Switch capacity

Forwarding performance

8.8Gbps/6.6Mpps

Interface type 24*10/100TX+2*GE(SFP)

Power DC/AC 25W

CX200D

Page 24: MEN Switches & Routers

Confidential Slide

Software Architecture of the CX200D

System management plane

Help the users log in and manage the information of CX200D.

System service plane

Help the users configure and manage CX200D.

General control plane

Provide features such as access, service transmission, and QoS.

Hardware drivers

VRP platform (OS)

Information

center

System

management

plane

Terminal service

System service

System

service plane

General

control plane

Ethernet EoRPR

SNMP

Command line

HGMP

Trunk VLAN ARP MAC STP

IGMP

snoopingACL QoS

Page 25: MEN Switches & Routers

Confidential Slide

CX200D Significant Features

RRPP

IEEE802.3ah

IGMP Snooping

QoS

Page 26: MEN Switches & Routers

Confidential Slide

Metro Network

RRPP - Rapid Ring Protection Protocol

Main Node

Transit Node

Slave PortMain Port

Link-Down Notification

Block Status

Link Failure

Link-DownNotification

Main Ring

Sub-Ring 1

User1 User2

Hello Packet

RRPP provides Ethernet Ring solution with ordinary Ethernet Port Less than 50ms failure protection. Ring span support Link Aggregation

Transit NodeTransit Node

Transit Node

Sub-Ring 2

Page 27: MEN Switches & Routers

Confidential Slide

Ethernet OAM——802.3ah Protocol

802.3ah protocol is used to solve “The Last Mile”

problem, and suitable for Ethernet link between two

devices too.

Main Functions:

OAM Auto Discover

OAM Link Monitor

Remote Fault Notify

OAM Remote Loopback

Remote Taking MIB

CX200D

CX200D

CE PE

User to Network Interface

Link Failure Message

CX380

CE PE

Link Loopback Message

Test Message CX380

User to Network Interface

Page 28: MEN Switches & Routers

Confidential Slide

IGMP Snooping

Internet Internet

VOD Server1 VOD Server2

Multicast Router

CX200D

Multicast Group Member

Multicast Group Member

Multicast Group Member

Video Stream

Page 29: MEN Switches & Routers

Confidential Slide

Only one copy for whole ring

IGMP Snooping V1/V2

MVLAN+

Native L2 multicast forwarding easy to deploy

and maintain

50ms switch over

IGMP fast leave, fast zapping

Multicast function Feature

High Reliable Multicast

Convergence Layer

Core Layer

STP/RRPP CX200DCX200D

Page 30: MEN Switches & Routers

Confidential Slide

Q7

Q6

Q5

Q4

Q3

Q2

Q1

Q0

SP

SP

OSS and VoIP are marked with highest priority, scheduled with SP, and policed to be within the pre-

set maximum rate.

AN

802.1P Service

7 TDM packet

6 VoIP

5 BTV basic channel

4BTV extension channel

VPN gold

3 VPN silver

2VoD

VPN bronze

1 reserved

0 Internet

Scheduling with Diff-Serv QoS

WRR/

DRR

Page 31: MEN Switches & Routers

Cisco Catalyst 3550 Switch

Page 32: MEN Switches & Routers

Confidential Slide

QoS Model

Classification Marking Congestion

Avoidance

Mechanism

Policing &

Shaping

Queuing

(congestion mgt)

Identifying & Grouping different traffic types-FTP-VoIPCisco says min-4 & max-11 groups

Colors the packet so it can be quickly recognized else were in the network . Marking is between L2 & L3 or L3

Default is FIFO & Tail drop. i.e: drop if there is no memory ,even without looking at it.WRED-weighted random early detection. i.e: Randomly clears heavy packets to create space in the buffer

VoIP -1FTP-2HTTP-3Queuing will kick up only when there is congestion.But if VoIP uses more than allotted BW, start policing, we don’t want it to use all the BW

Page 33: MEN Switches & Routers

Confidential Slide

Problem to Distribute Multicast in L2 Ring

We have 2 user Vlans per switch in the ring and 28 user

vlans are sent over each trunk in the ring.

We need to be able to send all multicast streams to each

users

In standard multicast the distribution, the BAN needs to

replicate multicast streams to potentially 28 users Vlans

28 copies of each multicast packet might travel over the ring

Page 34: MEN Switches & Routers

Confidential Slide

Problem to Distribute Multicast in L2 Ring

Page 35: MEN Switches & Routers

Confidential Slide

MVR Operation

Page 36: MEN Switches & Routers

Confidential Slide

Supervisor Subsystem

Managing control plane traffic for the switch

Provides address learning capabilities

Page 37: MEN Switches & Routers

Confidential Slide

ACL

Network security through Cisco access control lists (ACLs) based on Layer 2 through Layer 4 information

Access control all packets

Lookups done in hardware : less delay

Security at the edge

Minimizes congestion by filtering unwanted traffic

Page 38: MEN Switches & Routers

Cisco ME 3400

Page 39: MEN Switches & Routers

Confidential Slide

Cisco ME 3400

24 Ethernet 10/100 ports

2 SFP gigabit uplinks (GBIC in 3550)

30W max power consumption (25 W less than 3550)

Operating temperature-50 deg (5 more than 3550)

Page 40: MEN Switches & Routers

Cisco Catalyst 3750

Page 41: MEN Switches & Routers

Confidential Slide

Cisco Catalyst 3750

12 SFP based Gigabit ports

32 Gbps high speed stacking bus

Power consumption 120W max

Page 42: MEN Switches & Routers

User Configuration Interface

Page 43: MEN Switches & Routers

Confidential Slide

Setup via Console

Router

PC

Console Port

Console Cable

RS-232 Serial Port

Page 44: MEN Switches & Routers

Confidential Slide

Setup via Telnet

Ethernet

100BASE-TX

WorkstationRouter

Server Laptop PC

Page 45: MEN Switches & Routers

Confidential Slide

Setup via the AUX Port

PSTN

Console Port

Router

Modem

Modem

PC

Modem

RS-232 Serial Port

TEL: 12345678

Page 46: MEN Switches & Routers

Confidential Slide

Command View

Huawei

The system commands are divided into four levels:

Visit:

Monitor:

Config:

Manage:

Cisco

There are two modes:

User

Enable

Configuration

Page 47: MEN Switches & Routers

Confidential Slide

Visit Level

The commands in visit level:

Visit: includes the commands of network diagnosis tools such as ping and tracert, and the commands for visit to external devices, such as Telnet client, SSH client, and RLOGIN.

Page 48: MEN Switches & Routers

Confidential Slide

Monitor Level

The commands in monitor level:

Commands used for system maintenance and service fault diagnosis, including display and debugging commands.

Page 49: MEN Switches & Routers

Confidential Slide

Config Level

The commands in config level:

Config: Service configuration commands including routing commands and the commands at the network layer.

Page 50: MEN Switches & Routers

Confidential Slide

Manage Level

The commands in

manage level:Manage: Commands essential to the system operations and the system support modules. They provide support to services that concerns file system, FTP, TFTP, XModem download, configuration file switch, power control, standby board control, user management, level setting, as well as the parameter setting within a system (the last case involves those non-protocol or non-RFC provisioned commands).

Page 51: MEN Switches & Routers

Confidential Slide

Command Views

Command lines are associated with command views like:

User view

System view/Enable View/Config View

Routing protocol views: OSPF, RIP, BGP, IS-IS……

Interface views: FE, GE, synchronous serial, cE1, E3, cT1, T3, ATM,

POS, CPOS, virtual-template, virtual Ethernet, loopback, null, tunnel

User interface view

L2TP group view

Route mapping view

Page 52: MEN Switches & Routers

Confidential Slide

Command Line On-line Help

Enter ―?‖ in any views and you will obtain all

the commands in this view and their simple

descriptions as well.

<Quidway> ?User view commands:cd Change current directoryclock Specify the system clock

……

Cisco>?

Page 53: MEN Switches & Routers

Confidential Slide

Command Line On-line Help (Continued)

Enter a command and a ―?‖ separated by a

space. If "?" stands for a key word, all the

keywords and their simple descriptions will be

given.

<Quidway> display ?aaa AAA status and configuration informationacl Acl status and configuration information

……

Page 54: MEN Switches & Routers

Confidential Slide

Command Line On-line Help (Continued)

Enter a command and a ―?‖ separated by a

space. If "?" stands for a parameter, descriptions

of these parameters will be given.

[Quidway] interface ethernet ?<3-3> Slot number[Quidway] interface ethernet 3?/[Quidway] interface ethernet 3/?<0-0>[Quidway] interface ethernet 3/0?/[Quidway] interface ethernet 3/0/?<0-0>[Quidway] interface ethernet 3/0/0 ?<cr>

Page 55: MEN Switches & Routers

Confidential Slide

Command Line On-line Help (Continued)

Enter a character string followed by a ―?‖. All

the commands starting with this string will be

displayed.

<Quidway> d?debugging delete dir display

Press <tab> after entering the first several letters of a keyword to display the complete

keyword, given that these letters can uniquely identify the keyword in this command.

Page 56: MEN Switches & Routers

Huawei CX600

Page 57: MEN Switches & Routers

Confidential Slide

Positioning of CX600

MSPCX600

DSLAMCMTS

AG

NodeB

Access

Acc Switch

SBC

RNC

SoftX

Internet

Headend

VoD CS

VoD ES

SGSN

P

P

Edge Core Application

PE

P

BRAS

MSPCX600

Aggregation

MSPCX600

MSPCX600

CX600 Metro Services Platform (MSP) is a high end Ethernetproduct. It focuses on Ethernet services access, aggregation andtransmission in metro area. It mainly locates at metro access andaggregation point and can provide FE, GE, 10 GE and RPRinterfaces with line speed performance.

Page 58: MEN Switches & Routers

Confidential Slide Page58

Introduction to CX600

„ Key components redundancy:„ 1:1 redundancy of the Switch and Route Processing Unit (SRUs) „ 3+1 load balancing and redundancy backup of the Switch Fabric Units (SFUs) „ Redundancy backup of power modules, fans, clock boards and management bus „ Support GR, NSF, Hot Patch

CX600-8

Current capacity Expansion capacity

Backplane

bandwidth

Switching

capacity

Port capacity

(bidirectional)

Switching

capacity

Port capacity

(bidirectional)

2Tbps 640Gbps160Gbps,

20G/slot1.28Tbps

640Gbps,

80G/slot

Port Capacity = sum of total interfaces capacity on 8 bidirectional LPU slotsOne LPU slot = 10Gbps service forwarding, i.e: 10*2 = 20 GbpsTotal capacity of CX600-8 = 10*8*2=160Gbps.

Page 59: MEN Switches & Routers

Confidential Slide

CX600 System Architecture

LPU

LPULPU

FAN

(redundancy)FAN

(redundancy)

SRU

(1:1 redundancy)

SFU板

(3+1备份)

交换矩阵

Monitor Bus Control Bus

SFU

3+1 redundancy

Switching

Fabric……

Data Bus

Redundancy design for all components, no single point failure

Distributed forwarding architecture to eliminate performance bottle neck and maximize

throughput

Separated data bus, control bus and monitor bus

2:1 speedup (=switching capacity : port capacity), non-blocking crossbar switching fabric

LPU

Page 60: MEN Switches & Routers

Confidential Slide

CX600 Slot/Card/Port Numbering

1 2 3 4 9 11 10 5 6 7 8

01

01

01

01

01

01

01

01

0 1

2 3

4 5

6 7

8 9

10 11

6/0/0

12

Page 61: MEN Switches & Routers

Confidential Slide

Strong Reliability Feature

Non-stop Forwarding

VPN FRR

Enhanced-VRRP for Layer 3 Access Reliability

Page 62: MEN Switches & Routers

Confidential Slide

RM

BACKUP

RM

ACTIVE

FIB

Signaling/protocol packet

FIBData Packet

FIB tableStatistics and status information

Forwarding Unit

Control Unit

1:1 redundancy

Stateful Switchover

Graceful Restart Capabilities

Separated Control Plane & Forwarding Plane

Stateful Switchover between active & standby MPU

Full Graceful Restart capabilities

Each line card has a duplicated FIB, forwards packets & maintains link status independently

Non-stop Forwarding

Page 63: MEN Switches & Routers

Confidential Slide Pag

e63

Metro Core Metro Edge

BFD for Detection of Path Failure

VPN FRR for fast Recovery

CX600

VoIP/VoD VLAN

VRF for NGN VPN Site1DIP PE-ID Interface Label Priority

MG2 PE3 Tunnel 2 200 20 Active

Tunnel 1

Tunnel 2

PE2

PE3

PE1

VRF for NGN VPN Site1DIP PE-ID Interface Label Priority

MG2 PE2 Tunnel1 100 10 Active MG2 PE3 Tunnel 2 200 20 Inactive

VPN FRR for Layer 3 VPN Reliability

Page 64: MEN Switches & Routers

Confidential Slide

Master Backup

VRRP

Normal VRRP, Master send VRRP Hello packet to Backup periodically

Backup device will be changed to Master when it can not receive VRRP Hello packet more than 3 times

The period of VRRP Hello packet could be configured to 1s minimum, which means switchover time will be more than 3s

Normal VRRP:

VRRP Hello

Master Backup

VRRP

In the Enhanced VRRP, link state is detected by BFD

BFD can detect the link failure in 50ms, then VRRP state will be changed between Master and Backup device

In some condition, the switchover time could be less than 30ms

Enhanced VRRP:

BFD for VRRP

Converge time: 3s

Converge time: 50ms

interface xvrrp vrid 1 virtual-ip x.x.x.xvrrp vrid 1 priority 150 interface y

vrrp vrid 1 virtual-ip x.x.x.xvrrp vrid 1 priority 120vrrp vrid 1 track bfd-session 10 increase 50

Enhanced-VRRP for Layer 3 Access Reliability

Page 65: MEN Switches & Routers

Confidential Slide

Normal PIM, DR and BDR send Hello packet periodicallyBDR will be changed to DR when it can not receive PIM Hello packet more than 3 timesThe period of PIM Hello packet could be configured to 1s minimum, which means switchover time will be more than 3sWith BFD for PIM, link state is detected by BFDBFD can detect the link failure in 50ms, then PIM state will be changed between DR and BDRIn some condition, the switchover time could be less than 50ms

CX600

Head EndCDN

DLSAM

PC RTU STB

BB Core

CX300

PIM-SM BFD for PIM

IGMP V2

Multicast DATA

BFD for PIM

Page 66: MEN Switches & Routers

Confidential Slide

Hierarchical QoS

Independent 24k Ingress and 24k Egress Queues

5 Level Hierarchical Scheduler

Egress QoSIngress QoS

L1-L4 info ,64Kbps granularity

precise traffic policing

5-level scheduling & shaping

Precise bandwidth management

Congestion avoidance with WRED

Classifier

Meter

Marker

NP

Scheduler

Shaper

Dropper

TM

Scheduler

Shaper

Dropper

TM

Classifier

Meter

Marker

NP

Page 67: MEN Switches & Routers

Cisco 7609

Page 68: MEN Switches & Routers

Confidential Slide

7609 Features

Features 720 Gbps of switching capacity

40 Gigabit/slot configuration

Line Rate Performance

9-vertical slots2 13456789

1/101

3/0/0

Page 69: MEN Switches & Routers

Confidential Slide

Router Architecture

Page 70: MEN Switches & Routers

Confidential Slide

7609 IOS

Page 71: MEN Switches & Routers

Confidential Slide

SUP 720 Module

Apply ACLs for traffic policing and marking, make policy

decisions, and determine where to switch the packet, all at

line rate regardless of packet size and flow length

Routing Engine : Routing Table maintenance

Packet Forwarding Engine

Page 72: MEN Switches & Routers

Confidential Slide

IOS Boot process

IOS image in SUP-BOOTFLASH

SP portion of image is decompressed & loaded in to SP-DRAM

The SP starts booting from this image

The SP then hands-over the control to RP, to continue booting

Next, RP downloads the IOS image in to RP-DRAM, and decompresses the image

RP boots using the RP-DRAM image & complete the boot sequence.

Console remains with RP

Page 73: MEN Switches & Routers

Confidential Slide

Optical Service Module

Page 74: MEN Switches & Routers

Confidential Slide

OSM features

High speed WAN services

Wide range of WAN connectivity: GE, ATM, SDH etc.

4 GBIC ports on every OSM

Packet buffers (64 MB to 128MB)

Page 75: MEN Switches & Routers

Thank you