Развитие платформ cisco для mpls доступа и пре-агрегации
TRANSCRIPT
Операторы)связи
Cisco&Club’16
Развитие&платформ&Cisco для&MPLS&доступа&и&преBагрегации
Денис&КоденцевИнженерBконсультант,&CCIE07.12.2016
Позиционирование&платформ
DCI SP&Data&Center
NCS6KASR9K
nV,&AN,&MPLS,&Ethernet
MPLS(SR,&LDP,&BGP,&mLDP,&nV) Core
MPLS&(SR,&SRTE,&mLDP,&BGP)
AccessCE/NID Preggregation
InternetMPLS
(SR,&LDP,&BGP,&mLDP)
ASR&900ASR9K
ASR&9000v
ASR&920
ASR920B12SZBIM
Aggregation
ASR9K ASR&907
Service&Edge
ASR9K
InternetGateway
ME&1200
NCS)5500
NCS)5000
NCS&5000NCS&5000
NCS)5500
NCS)5500NCS&4000
Оборудование)доступа)и)агрегации)для)рынка)SPПлатформы)оптимизированные)для)использования)в)Mobile,)Carrier)Ethernet
Carrier)Class)Aggregation
Modular)chassis)
Redundant)switch)processors
Wide)selection)of)interface)types
FE/GE/10GE)Ethernet)access
TDM)interface
Temperature)hardened
Low)power)consumption
Line)Rate)Performance,)MultidDimensional)Service)Scale
ASR)902
ME)3800X)
ME)3400E)ME)3600X)
ASR)903
ME)1200E
ASR901S ASR901
ASR)920
ASR)907
ASR&900/920
Портфолио&Cisco&ASR&920&
ASRd920d4SZdA/ASRd920d4SZd
D
ASRd920d12CZdA/ASRd920d12CZd
DASRd920d10SZd
PD ASRd920d24TZdM ASRd920d24SZdM ASRd920d24SZdIM ASRd920d12SZdIM
Size 1RU 1RU 2B4RU 1RU 1RU 1.5RU 1RU
IM)Slots B B B B B 1 1
Air)Flow Front&to&Back Front&to&Back B Front&to&Back Front&to&Back Front&to&Back/Side&to&Back
Front&to&Back
1G)ports 2/6 12/14 10 24 24 24 12/16
10G)ports 4 2 2 4 4 4 4
TDM B B B B B Yes Yes
ASR920BPC&– защищенное&исполнение
• ASR920BPC&базовых&тип&инсталляции&B установка&в&защищающий&от&осадков&шкаф&(GRB3108&Class&3)
• Возможна&установка&в&стойку&:&Вертикальная&или&Горизонтальная&
• ASR920BPC&имеет&пассивное&охлаждение:• При&горизонтальной&установке&необходимо&предусмотреть&обдув&устройства&потоком&воздуха&в&&1м/с и&свободное&пространство&в&1RU&вокруг&шасси&
• При&вертикальном&монтаже&необходимо&обеспечить&свободное&пространство&в&1RU&вокруг&шасси
• 4&x&1G/10G&SFP+,&4&x&1GE&SFP,&8&x&1GE&Cu/RJ45 +&POE
• Слот&IM&для&TDM,&10GE,&uPoE на медных&интерфейсах
• Блоки&питания&резервируются,&работа&в&широком&диапазоне&температур,&встроенный&GNSS приемник(GPS,&GLONASS,&Galileo,&Beidou,&QZSS&timing),&поддержка&IPSEC,&NAT/PAT
• Поддержка&IM&в&FCS&=&8&x&GE&Cu,&8&x&GE&SFP,&8/16&E1/T1,&1&x&10G&XFP
ASRB920B12SZBIM:&CSR&следующего&поколения
10MHz,1PPS TOD)PortGNSS)receiver 4x1GE/10GE 4х1GE)SFP 8xCu)RJ45
Single)IM)slot
Cisco&Confidential 8©&2013B2014&&Cisco&and/or&its&affiliates.&All&rights&reserved.
ASR920&– масштабируемость&L2&сервисовFeature/Parameter ASR920
CPU 1GHz Dual&Core&PowerPC
System Memory 4GB
MAC Address&Table 16,000MAC Address&Table per&Bridge&Domain 16,000
EFP 4,000Bridge Domains 4,000Max&EFPs&per&Bridge Domain 128
REP&Rings 14MST&Instances 16Port&Channel 64Max PortBchannel&Member 8Max&MTU&Size 9,216EoMPLS PWs 2000EoMPLS&PWs&with&Redundancy 1000
Cisco&Confidential 9©&2013B2014&&Cisco&and/or&its&affiliates.&All&rights&reserved.
ASR920&B масштабируемость&L3&сервисовFeature/Parameter ASR)920)(I)&)C)
IPv4&Routes 20,000IPv6&Routes 4,000IPv4 Multicast&Routes 1,000Max&Layer&3 Interfaces (not&including&Loopbacks) 1024
OSPF Neighbors 400OSPF Instances 30ISIS&Neighbors 400ISIS&Instances 30BGP Neighbors 400IPv4 ACL&Entries 2,000Max IPv4 ACL&Entries&per&ACL 500IPv6&ACL&Entries 1000Max IPv6 ACL&Entries&per&ACL 256VRF&LITE 128MPLS&VPN 128
ASR)902ASR)903
Большая)плотность)портов)на)уровне)агрегацииУниверсальное)решениеКомпактный,)подходит)для)
небольшого)узла)доступа/агрегации
• Designed)for)space)constrained)locations
• High)density)with)mixed)interface)needs
• Future)ready
• Optimized)for)Multi)Service• High)interface)density• Ideal)for)medium)size)sites• Full)ISSU)support
• Small)footprint)• Complete)IOSdXE)feature)capabilities
• Ideal)for)Distributed)environments
Модульные ASR&900:&Обзор&платформымасштабируемая&линейка&оборудования
*Total)Fabric)BWTransport iMSG Aggregation CE Mobility Broadband
Единая)платформа, единая)ОS, обшие)компоненты)и)одинаковые)возможности
Pre-Aggregation
4 LC / 1 RSP
480G
6 LC / 2 RSP
560G
16 LC / 2 RSP
> 2T
ASR)907
• A900BIMA1C:&1&x&100GE&CPAK4&IM• CPAK&based,&supporting&100GBaseBSR10,&BLR4,&BER4• Configurable&for&100GE&LAN&Phy and&OTU4&OTN&Framing&
• A900BIMA8Z:&8&x&10GE&IM• SFP+&based,&supporting&10GBaseBSR,&BLR,&BER,&BZR,&BBX• Configurable&for&10GE&LAN&PHY&and&OTU2&OTN&Framing&
• A900BIMA2F:&2&x&40GE&IM• QSFP&based,&supporting&40GBaseBSR4,&&BLR4,&BER4• Configurable&for&40GE&LAN&Phy and&OTU3&OTN&Framing&
• Возможности&RSP3:• Поддержка&24x10G&+&2x100G&либо 16x10G&+&2x100G&+&80x1G&на& ASRB907
• Поддержка&24x10G&+&2x100G&либо 48x10G&на&ASRB903
Новые&интерфейсные&модули&ASRB900
1x&CPAK
8x&SFP+
2x&QSFP
Cisco&ASR&907&RSP3&(A900BRSP3CB400BW)
Ethernet&Management&PortConsole&Port
USB&or&Serial
10MHz&portsIn&and&out
BITS&interface
One&pulsePer&second&(1PPS)&ports&in&and&out
RSPStatus&LEDs
USB&flashport
Serial&TimeOf&Day&
(TOD)&portin&and&out
GPS&/&GNSSmodule&slot
Cisco&ASR&903&RSP3&(A900BRSP3CB400BS)
• Same&capabilities&as&A900BRSP3CB400W• Same&size&as&RSP1&and&RSP2• Supported&on&the&ASR903,&but¬&on&the&ASR902
Cisco)ASR)900)RSP3)(A900dRSP3Cd200dS)
• Same&feature&support&as&A900BRSP3CB400• Same&size&as&RSP1&and&RSP2• Reduced&throughput&compared&with&A900BRSP3CB400• Supported&on&both&ASR903&and&ASR902
Архитектура&RSP3CB400&&
Switching&Complex
FPGAPCIEx1 PCIEx1
PCIEx1
RSP3CB400
Chip&Interconnect&(fullBduplex)Non&Blocking
ASIC&1ASIC&0
Statistics&I/f
BackplaneIM0 IM1 IM… IM… IM14 IM15
ControlPlane&CPU
Backplane&– ASIC&Serial&Connect&Logic
Statistics&I/f
Архитектура&RSP3CB200&&
Switching&Complex
FPGAPCIEx1
PCIEx1
RSP3CB200
ASIC
Statistics&I/f
BackplaneIM0 IM1 IM2 IM3 IM4 IM5
ControlPlane&CPU
Backplane&– ASIC&Serial&Connect&Logic
RSP3&– NPU• 200G/300Mpps&Bidirectional&PP&Engine
• RSP3B400&hosts&2&NPU&to&provide&400G
• Capable&of&480G&in&overBsubscribed&mode
• Non&Blocking&mesh&between&2&NPUs
• Hierarchical&QOS&scheduler&B VOQ&based
• Supports&line&rate&performance&for&features
• IPv4/MPLS&databases&hosted&in&external&TCAM,&providing&large&scale
Ingress&TX&Pack&
Processor
Mesh&Connectivity
Ingress&TM&(VOQs/FM
Qs)
Ingress&Receive&PP
RX&Interfaces
TX&Interfaces
Egress&TX&PP
Egress&TM&(PortBPriQs)
Egress&Receive&PP
SEM&LEM&LPM&TCAM&Stats&EncapRecycle
Ingress&Pipeline
Egress&Pipeline
Cisco&ASR&900&RSP3B400&&Обработка&«обычного»&пакета
Backplane
ControlPlane&CPU
Chip&InterconnectNPU&0 NPU&1
RSP3
Cisco&ASR&900&RSP3B400&&Обработка&«сигнального»&пакета&(e.g.&OSPF&hello,&LDP&hello,&ICMP)
Backplane
ControlPlane&CPU
Chip&InterconnectNPU&0 NPU&1
RSP3
Punt&always&happensfrom&NPU&0
ASR&900&RSP&– сравнение&возможностейFeatures RSP1 RSP2 RSP3
Throughput 55 Gbps fullBduplex65&Mpps processing&rate
128&Gbps fullBduplex180&Mpps process&rate
400&Gbps fullBduplex*600&Mpps processing&rate&
Scalability RSP1AB55:&Base&route&scaleRSP1BB55:&High&route scale
RSP2A has&similar&scale&as&RSP1AB55RSP2AB64&&&RSP2AB128:&Cost&optimizedfor&ASR903&/ASR902
RSP3CB200:&High route&scale,&RSP1B&replacement&(March&CY16)
RSP3CB400:&High route/interface&scale
1)x)100GE)IM No No Yes
2)x)40GE)IM No No Yes
8)x)10GE IM No No Yes
IPSec (Hardware)Accelerated)) No No Yes*&(up&to&~5Gbps&physical&capacity&for&
the&system)
Netflow No Yes Yes*
Timing Frequency, Phase,&TOD Frequency, Phase,&TOD Frequency, Phase,&TOD
GPS/GNSS)Receiver External External Pluggable GPS/GNSS&module*
New
Совместимость&IM&модулей&и&RSP&– примерRSP3)on)ASR)902 S00 S01 S02 S03A900BIMA1X ! ! B B
A900BIMA8SA900BIMA8T ! ! ! !
A900BIMA8S1ZA900BIMA8T1Z ! ! ! !
A900BIMA2Z ! ! ! !
A900BIMA8Z ! B B B
A900BIMA1C ! B B B
A900BIMA2F ! B B B
A900BIMA16D !* !* !* !*
A900BIMA8DA900BIMA32D !* !* !* !*
A900BIMA4OS ! ! B B
RSP3)on)ASR)903 S00 S01 S02 S03 S04 S05A900BIMA1X ! B ! B ! B
A900BIMA8SA900BIMA8T ! ! ! ! ! !
A900BIMA8S1ZA900BIMA8T1Z ! ! ! ! ! !
A900BIMA2Z ! ! ! ! ! !
A900BIMA8Z B B B B ! B
A900BIMA1C B B B B ! B
A900BIMA2F B B B B ! B
A900BIMA16D !* !* !* !* !* !*
A900BIMA8DA900BIMA32D !* !* !* !* !* !*
A900BIMA4OS ! B ! B ! B
RSP3&– функционал&представленный&в&IOS&XE&3.17
B Virtual&Private&LAN&Services&(VPLS)B VPLS&Autodiscovery,&BGPBbasedB VPLS&BGP&SignalingB HBVPLS&NBPE&Redundancy&for&MPLS&AccessB VPLS&MAC&Address&WithdrawalB GPS&SupportB VPLS&over&remote&LFAB BFD&Echo&mode&offload&in&HardwareB MPLSBTEB MPLS&TE&B Bundled&Interface&Support&(EtherChannel and&MLP)B Dynamic&ARP&Inspection&(DAI)B DHCP&Option&82&Configurable&Circuit&ID&and&Remote&IDB DHCP&Snooping
RSP3&– функционал&представленный&в&IOS&XE&3.18B Y.1731&Performance&MonitoringB Y.1731&DMMB IEEE&802.3ad&LACPB Min&Link&Support&for&EtherBChannelB LACP&1B1&redundancy&with&fast&switchoverB Y.1731&Synthetic&Frame&Loss&Measurement&(ETH!SLM)B IPSLA&Support&for&Y.1731Ð!SLMB Trunk&EFP&Support&on&Ether!Channel&InterfacesB QoS Support&for&EtherBChannelB IPBSLA&Y.1731&SLM&Feature&EnhancementsB SLM&Over&VPLSB PTP&Hybrid&BMCAB PTP&over&BDIB PTP&BC&over&MPLSB VPLS&over&rLFAB Egress&marking&based&on&color&of&the&trafficB EVPN&VPWS&single&homed
RSP3&– масштабируемость&L2&сервисовFeature/Parameter RSP1A RSP1B RSP2Ad64 RSP2Ad128 RSP3d400MAC Address&Table 16,000 256,000 16,000 16,000 200,000
MAC Address&Table per&Bridge&Domain 16,000 256,000 16,000 16,000 64,000
EFP 3,998 16,000 3,998 3,998
8,000 on&system&with&enable_8k_efp&template
if¬&5,000 per&system.4,000&per&ASIC
Bridge Domains 4,000 4,000 4,000 4,000 4,000
Max&EFPs&per&Bridge Domain 62 62 128 128 256
MST&Instances 16 16 16 16 16
Port&Channel 16 16 64 64 48
Max PortBchannel&Member 8 8 8 8 8
EoMPLS PWs 2,000 8,000 2,000 2,000 8,000
VPLS Instances 2,000 2,000 2,000 2,000 3500
Max VPLS&Sessions2,000 2,000 2,000 2,000
3500&(HVPLS&case&3500&hub&and&500&spoke)
Max VPLS&neighbors&(per&BD) 62 62 64 64 64L2&Multicast&Groups 1,000 4,000 1,000 1,000 4,000
RSP3&– масштабируемость&L3 сервисовFeature/Parameter RSP1A RSP1B RSP2Ad64 RSP2Ad
128 RSP3d400
IPv4&Routes 20,000 32,000 20,000 20,000 Default&template:192,512IPv6&template:&77824
VPNv4&Routes 20,000 32,000 20,000 20,000 Default&template:192,512IPv6&template:&77824
IPv6/VPNv6&Routes 6,000 16,000 4,000 4,000 Default&template: 8192&IPv6&template:&65536
IPv4 Multicast&Routes 1,000 8,000 1,000 1,000 4,000&(FCS:1000)
OSPF Neighbors 400 400 400 400 400
OSPF Instances 30 30 30 30 30
ISIS&Neighbors 400 400 400 400 400
ISIS&Instances 30 30 30 30 30
BGP Neighbors 400 400 400 400 400
IGP&Prefixes&protected&via&LFABFRR 1500 1500 1500
L2VPN&sessions&protected&via&LFABFRR 2000 2000 2000
L3VPN&Prefixes&protected&via&LFABFRR 4000 4000 4000
ASR&1000
Up&to&78Gbps&Crypto&capacityMore&flexible&power&supply&configurationSupport&for&up&to&200&Gbps in&every&slot&with&ESP200BX&and&upHardware&redundancy
Эволюция&серии&маршрутизаторов&Cisco&ASR&1000
ASR1002BX
ASR1006BX
ASR1009BX
ASR1013
ASR1001BX 2.5&B 20&Gbps5&B 36&Gbps
40&– 200+&Gb/sec
ASR1002BHX
EPA
100&Gbps for&slots&2&and&3Hardware&redundancy
40&B 200&Gb/secEPA
ESP100BX,&ESP200BX&and&ESP400BX&on&roadmap&with&&line&rate&crypto
More&power&flexibility200&Gbps in&everyHardware&redundancy40&B 100&GbpsEPA
RP3
RP3
High&performance&control&plane&with&crypto&assist.
RP3
RP3
ESPX
ASR1001BHXUp&to&39Gbps&crypto40&– 100&GbpsEPA
8&or&20Gbps&crypto60&Gbps
ASR1000&BX&новые&модульные&шасси
RP0)and)RP1control&plane&processing
FP0 and)FP1data&plane&processing
SIPd40/ELC/MIPd100)0,)1,)2SPA&Interface&ProcessorEthernet&linecardsModular&Interface&Processor
ASR1009BX&and&ASR1006BX&supports&redundant&control&and&data&planes&via&active/standby&hardware.
ASR1000BMIP100 – новая&линейная&картаASR1000BMIP1000&delivers:
• 100&Gb/sec&forwarding&per&line&card
• Support&for&new&Ethernet&Port&Adapter&(EPA)&modular&interfaces
• Up&to&100&Gb/sec&interface&speeds• Complete&forwarding&feature&parity&with&existing&ASR1000&Ethernet&hardware
Supportfor:• High&density&10&Gb/sec&EPAs• High&density&1&Gb/sec&EPAs
ASR1000&– таблица&совместимости&для&модульных&шассиChassis RP2 RP3 SIP40 2x10GE+20
x1GE)&)6X10GE
MIP100)&)EPA
ESP40 ESP100 ESP200
ASR1004 Yes No Yes Yes No Yes No No
ASR1006 Yes No Yes Yes No Yes Yes No
ASR1013 Yes Yes Yes Yes Yes(2)(3) Yes Yes Yes
ASR1006BX Yes(1) Yes Yes Yes Yes(3) Yes Yes No
ASR1009BX Yes(1) Yes Yes Yes Yes(3) Yes Yes Yes
*
(1)RP2&with&new&CPLD
(2)100G&support&in&Slots&2&3ü&others&at&40G
(3)ASR1000BMIP100&is¬&supported&with&ESP40
Multi-Core Network Processor" 124 Cores" 4 Packet Threads / Core" 496 simultaneous threadsMiscellaneous" RJ45 & mini-USB console" SSD" Secure Boot
ASR&1002BHX
Network Interface Module" 1 double wide NIM slot or" 2 single wide NIM slots" NIM - Compatibility with
ISR4400 and ASR1001-X
EPA - Ethernet Port Adapter" 1x EPA slot
Built in I/O" 8x TenGigabit Ethernet interfaces enabled
by license" 8x Gigabit Ethernet interfaces in base" Multipoint MACSEC for linerate
encryption (1G & 10G)
Pay as you go" 50 Gbps base performance" Max performance of 120 Gbps,
licensed
Application level service performance" 58M Packets Per Second" Up to 25G Crypto IMIX w/ Suite B" Diverse VPN security solutions, 25G IMIX" 13M Firewall and traditional NAT Sessions
Control plane" CPU: Quad Core @ 2.5 GHz" Memory: 16GB DDR3
default memory,upgradeable to 32GB
System management" Cisco Prime" Glue Networks
Crypto module" Field upgradeable
Доступен&к&заказу!
ASR1002BHX&– сравнение&характеристикPlatform ISR4451dX ASR1001dX ASR1002dX ASR1002dHX
PAYG Bandwidth 1B2G 2.5B20G 5B36G 44GB100G
PPS Performance 1B2&Mbps 11 Mpps 30Mpps 58Mpps
IPv4&Routes 500K (4G)/IM&(8G/16G)
1M&(8G)/&3.5M&(16G) 500K (4G)/1M (8G)/&3.5M (16G)
500K (4G)/1M (8G)/&3.5M (16G)
BuiltBin&I/O 4x1GE 6x1GEü&2x10GE 6x1GE 8x1GE,&8x10GE
Extensible&I/O 3XNIM,2XSM 1x&SPA,&1x&NIM 3x SPA 1x&EPA,&1x&NIM
Encryption&Throughput
1.4G(IMIX) 5G&(IMIX) 4G (IMIX) 25G&(IMIX)
MACsec Point&to&Point Point to&Multipoint N/A Point to&Multipoint
ZB Firewall&Sessions 500K (200K FW+K2) 2M 2M 6M
NAT&Sessions 500K 2M 2M 6M
AVC 1G 5G 18G 52G
CUBE(Ent) 8K 10K Subscribers 10K subscribers 10K subscribers
BB& N/A 10K subscribers 29K subscribers 58K&subscribers
QoS&(Queues) TBD 16K 116K 232K
MACsec Yes&(128Bbits&only) Yes N/A Yes
SuiteBB Yes Yes Yes Yes
High&Availability No Yes (Redundant&IOS)
Yes&(RedundantIOS)
Yes&(RedundantIOS)
Clocking Yes&(&In&Future) Yes (SyncE) Yes (SyncE,&GPS,&BITS)
Yes (SyncE,BITS)
TCAM Software& 10Mbits 40Mbits 80Mbits
RP3&– модуль&управления&следующего&поколения
" Positioned&to&help&customers&migrate&from&RP1s&&&RP2s
" Investment&protection&– Supports&most&of&existing&and&all&planned&ESPs&(ESP100BX,&ESP200BX,&ESP400BX),&interface&cards&(SIP40,&MIP100)&and&modular&chassis&(ASR1013,&ASR1006BX&and&ASR1009BX)&
" Higher&maximum&DRAM&capacity&B 8G&default,&expandable&to&64GB
" BuiltBin&SSD&drive&B 100GB&default,&upgradeable&to&400GB+&for&log&/&core&/data&collection&and&for&running&container&apps&in&the&future
" Larger&Flash&memory&B 8G&default&for&NVRAM&contents
" Dedicated&Crypto&Assist&chip&for&better&crypto&performance&and&scale&(CPS)
" Same&price&as&RP2USB
Solid state drive
BITS clocking
DRAM
Management Enet
Console/Aux
Осень&2016
ASR&1001BHX
System Management" RJ45 GE Ethernet
" 2x USB Ports
" 8x 1GE Ports" MACSec enabled
" 4x 10GE Ports +" 4x configurable 10GE / 1GE Ports
enabled by license" MACSec enabled
Power Supplies" 2x AC or DC
Memory" 2x DIMM slots
(8GB each)
Crypto module" Field upgradeable (8
or 16Gbps)
6x Fans
System Management" Console" AUX
Multi-Core Network Processor" 62 Cores" 4 Packet Threads / Core" 248 simultaneous threads
Control plane" CPU: Quad Core @ 2.5 GHz" Memory: 8GB DDR3
default memory,upgradeable to 16GB
Pay as you go" 60 Gbps system performance" 16 Built-in 10GE/1GE ports enabled via
software license
Application level service performance" 30M+ Packets Per Second" Up to 20G Crypto IMIX w/ Suite B for diverse VPN
security solutions" 6M Firewall and traditional NAT Sessions
Осень&2016
Виртуализированные решенияCSR&1000v
Cisco&Cloud&Services&Router&(CSR)&1000VCisco&IOSXE&в&виртуальном&формBфакторе
•IOS&XE&Cloud&Edition" Поддержка&IOS&XE&функций&на&запросу&заказчиков
•Независимость&от&инфраструктуры" Нет&привязки&к&аппаратным&характеристиками&серверов,&
поддержка&ESXi,&KVM,&Xen и HyperBV&гипервизоров•Гибкая&производительность
" Производительность&от&10Mbps&до 20&Gbps при&задействовании&от&1&до 8&vCPU
•Гибкая&лицензионная&политика" Ограниченные&по&времени&действия&и&постоянные&лицензии
•Программируемость" Поддержка&RESTful API&(набор OnePK),&Netconf/YangСервер
ГипервизорВиртуальный)коммутатор
OS
App
OS
App
CSR)1000V
Функционал&и&лицензии&CSR&1000V
Лицензия IOSdXE)функционал Виртуализация
IPBase
" Basic Networking:)BGP, OSPF,&EIGRP,&RIP,&ISIS,&IPv6,&GRE,&VRFBLITE,&NTP,&QoS
" Multicast:)IGMP,&PIM" High)Availability: HSRP,&VRRP,&GLBP" Addressing:)802.1Q&VLAN,&EVC,&NAT,&DHCP,&DNS" Basic)Security:)ACL,&AAA,&RADIUS,&TACACS+" Management:)IOSBXE&CLI,&SSH,&Flexible&NetFlow,&SNMP,&EEM,&NETCONF
ESXi 5.5,)6.0
XenServer 6.1
KVM)(Ubuntu12.04)LTS,)RHEV)3.1,)RHEL)6.3)
Hyper!V)2012)R2
SECIPBase включая&…" Advanced)Security: Zone&Based&Firewall,&IPSec VPN,&EZVPN,&DMVPN,&
FlexVPN,&SSLVPN,&GETVPN
AppX
IPBase включая&…" Advanced)Networking:)L2TPv3,&BFD, MPLS,&VRF,&VXLAN" Application Experience:)WCCPv2,&AppXNAV,&NBAR2,&AVC,&IP&SLA" Hybrid)Cloud)Connectivity:)LISP,&OTV,&VPLS,&EoMPLS" Subscriber)Management:)PTA,&LNS,&ISG
AX Весь&доступный&функционал
CSR&1000V&структура&лицензирования
Функционал Производительность Тип)лицензии
Выберите)одну)позицию)из)каждой)колонки)…Пример:
IP)Base250)Mbps1dYear
IP)Base10)Mbps
50)Mbps
100)Mbps
250)Mbps
500)Mbps
1)Gbps
2.5)Gbps
5)Gbps
Постоянная
Подписка(1dгод)или)3dи)года)
По)использованию(доступно)в)Amazon)Cloud)
10)Gbps
SEC
AppX
AX
CSR1000v&как&vBNG – поддерживаемые&профили
Профиль vPTA)/)LAC vLNS vISG
Тип сессии PPPoEoVLAN PPPoVLANoL2TP IPoEoVLAN
Функционал Input/output&ACL,&ingress&QoS (policing)&/&egress&QoS (shaping),&
vrfBawareness,&IPv4/IPv6&dualBstack,&
AAA,&ANCP
IPv4/IPv6,&HQoS,&Input/output&ACL,&dualBstack&service&and&TC&
accounting,&CoA&Service&Push
DHCP,&Unclassified&MAC,&HQoS,&
Input/output&ACL,&ISG&TC,&L4R,&PBHK,&
Unauthenticated&timeout
vCPU 2&vCPUMemory 8GB
Sessions 8.000&/&8.000&L2TP&Tunnels 8.000
Max&Throughput&(large&packet) 2.5&Gbps 2.5&Gbps 5&Gbps
• Сессионный&функционал:• Idle&timeout&
• Input&ACL&
• Accounting
• Input&QOS&B policing&
• Output&QOS&B 2&level&hierarchy&QOS&shaping&with&4&queues&
• ESXi производительность&лучше&чем&KVM
• При&использовании&Direct&I/Oрежима&вводаBвывода&добавление&VM&на&каждом&сервере&приводит&к&линейному&увеличению&производительности&системы
CSR&1000v&IOS&XE vBNG ПроизводительностьESXi &&KVM&B Single&VM&(Tire1&SP&traffic&profile)
3200 2884
48444216
6410
8220
0
1000
2000
3000
4000
5000
6000
7000
8000
9000
2x)vCPU)/)4GB 4x)vCPU)/)8GB 8x)vCPU)/)8GB
System
'Throu
ghpu
t'(M
bps)
CSR1000v'System'Throughput'8 Single'VM'(PDR'0.01%)Profile:'8,000'IPoE Sessions'with'IMIX'8 75%'1430B'16.6%'578B'8.3%'80B
KVM)/)PCI)Passthrough ESXI)/)Vswitch
vBNG&производительность&8,5 Gbps&с&VMBFEX
UCS&Type UCS&C240&M4S&(2&Processors, 36&Cores)
UCS&Manager UCS&6248&Fabric&Interconnect&with&UCS&Manager&2.2&(3f)
NIC&Type Cisco&UCS&VIC&1225
I/O&Type 2x10GE,&VMBFEX
UCS&Server&OS Red&Hat&Enterprise&Linux&Server&release&7.1&(Maipo)
Hypervisor KVM
CSR&DUT&Label BLD_MCP_DEV_LATEST_20150611_123025
SP&Profile& Sessions:&4.000)IPoE,&Throughput&License:&ax_200GPer&Session&Features:&Input&ACL&(1ACE/ACL),&1&QOS&Output&Shaper&with&single&Queue,&Input&Policing,&Accounting&(60min&interval)
Acceptable Traffic&Loss
Partial Drop&Rate&(PDR)&0.01%&,&RFC2544 with&SP&Traffic&Profile
SP&Traffic&Profile 1430B =&75%,&578B&=&16.6%,&80B&=&8.3%&&~&(Avg Pkt Size&=&1175B)
Заказчик&предоставил&vBNG конфигурацию,&RADIUS&профиль&и&описание&трафикаПротестировано&в&Сиско лаборатории&на&KVM с VMBFEXДостигнутая&производительность:&
CSR&1000v&B 20&Gbps с&использованием&3&VMВ&среднем&8.5&Gbps на VM
x86&machine&
NIC
HostdOS)/)KVM
Qemu /&vHOST
tap
Open&vSwitch
layerB2&sorter&/&switch&/&classifier
GuestdOS
VirtioBnet
GuestdOS
VirtioBnet
Qemu /&vHOST
tap
CSR CSR
PF&driver
PF
CSRPerformance
UnBconstrained&NICBVM&Path
Unconstrained&system&architecture&(emulated&
with&VMBFex)
IntraBVM&Bottleneck
pNIC Bottleneck
vSwitch Bottleneck
HV&Bottleneck
41
Применение&Elastic&Services&Controller&для&управления&жизненным&циклом&VNF
Функционал&Elastic&Services&Controller&(ESC)&:1. Запустить&CSR1000V&VM
2. Применить&day0&конфигурацию
3. Мониторинг&состояния&VNF&в&части&доступности&и&загрузки
4. Динамически&создавать&либо&удалять&VNF&инсталляции
42
Детализация&ESC&VNF&lifecycle&managementElastic)Services)Controller
ProvisionVM
Create'VMVM'/'Service'Bootstrap'Process
Servicealive
VMalive Service
Functional
ServiceOverloaded)/)Underloaded
VNFProvisioning
VNF)MonitorVNF)Configuration
ConfigureService
Service)DEAD
VM)DEAD
Custom Script Action
VMOverloaded)/)Underloaded
Predefined Action
Custom Script Action
Predefined Action
Custom Script Action Predefined Action
Custom Script Action Predefined Action
Custom Script Action Predefined Action
Custom Script Action Predefined Action
Analytic)Engine Rule)Engine
Simple)Rules
One)Event)!>)one)action
Service)Alive)=>))advertise
Complex)Rules
One'Event'8>'multiple'actions
Service''Alive'=>''Advertise,'Notify'
43
ESC&использует&KPI значения&для&VM&мониторинга
Threshold)Name ThresholdType
Metric Value ESC)Action Customized)Action
VM_ALIVE Rising/Falling ICMP&Ping&Reachability
3&successfulpings
Service Booted Verify&CSR connectivityAdd&to&Radius
VM_OVERLOADED Rising Session Count >7000 Service&ScaledUp)(add VM) Adjust&Radius&LoadBBalancing
VM_OVERLOADED_FULL Rising Session Count >8000 None Adjust&Radius&LoadBBalancing&to&exclude&this&CSR
VM_OVERLOADED_LIGHT Falling Session Count <2000 None Adjust&Radius&LoadBBalancing
VM_OVERLOADED_EMPTY Falling Session Count <1 Service&ScaleBDown(remove&VM)
Remove&CSR from&Radius&LoadBBalancing
<kpi><event_name>VM_OVERLOADED</event_name><metric_value>7000</metric_value><metric_cond>GT</metric_cond><metric_collector><type>SUBSCRIBER_SESSION</type><nicid>0</nicid><poll_frequency>15</poll_frequency><polling_unit>seconds</polling_unit>
</metric_collector></kpi>
<rule><event_name>VM_OVERLOADED</event_name><action>ALWAYS&log</action><action>TRUE&servicescaleup.sh</action><action>TRUE&sp_demo_script_service_scale_up</action>
</rule>…<configuration><dst>iosxe_config.txt</dst><file>file://cisco/csr_SP_config.sh</file>
</configuration>
KPI&XML&Definition: Specification&of&actions&in&the&same&file:
Клуб&Cisco
Есть&вопросы&по&приобретению&оборудования&Cisco?8&800&700&05&22
Благодарим&за&участие
Cisco CiscoRu CiscoRussia CiscoRu