Technical design guide

A brief technical overview of HP MSR Series of routersHP FlexBranch Routing

Table of contents

3 Introduction

5 Value proposition

10 Design guidelines

15 Features

17 Configurations

19 Specifications

20 For more information

3

IntroductionWithin the HP FlexNetwork architecture, the HP Multiple Services Router (MSR) Series is the key component, providing a modular platform for routing and converged infrastructure based on open standards, scalability, resiliency, and a broad range of interfaces that allow connectivity to LAN, WAN, WLAN, and 3G systems. The HP MSR Series of routers provide the connectivity that organizations need to bridge the WAN to the LAN at branch offices with a lower TCO that helps simplify deployments, improve business productivity, centralize management, and reduce IT costs.

This technical design guide (TDG) provides a high-level overview of the HP MSR Series. This TDG identifies the hardware components and describes the major software features of the HP MSR Series. The intended audience for this TDG is HP Networking Solution Architects, HP Networking Technical Consultants, and HP Networking partner technical staff looking to help customers deploy HP FlexBranch solutions.

Routing in the branch officeTo stay competitive and enhance customer service, businesses want services delivered where their customers are. In many organizations, the branch office is the place where employees interact with customers using services and applications that are delivered through the corporate network. Branch offices come in all shapes and sizes, from small branch offices with less than 10 employees to large branch offices with up to 100 employees. In today’s global economy, branch offices can number in the dozens, in the hundreds, and even in the thousands of locations in a given country and throughout the globe.

The essence of routing in a network infrastructure is all about forwarding packets of data from source to destination. At the branch office, employees at a personal computer or customers at a point of sale (POS) device are the source, initiating data requests to a destination that is typically an application running on a server hosted in a corporate data center, which can also be referred to as the “cloud.”

In a branch office, a router is typically situated at the edge of the network in a wiring closet, providing an interface from the LAN and WAN so that employees and customers at the branch office can utilize the services and applications that are running in the cloud or Internet. To implement the interface between LAN and WAN, a router uses many protocols that reside on multiple layers of the OSI reference model.

On the LAN side, a router interfaces with switches, wireless access points, IP phones, and analog devices (such as facsimile machines, analog phones, and analog modems) at Layers 1 through 3 by supporting:

• Different physical connectivity at Layer 1 such as CAT-5 cables, fiber cables, FXS CAT-3 cables for phones and analog devices, or wireless (802.11b/g/n)

• Layer 2 protocols such as virtual LAN (802.1Q VLAN), 802.1p prioritization, 802.1x authentication, multicast Internet Group Management Protocol, and Link Layer Discovery Protocol (LLDP)

• Layer 3 protocols − For services such as Ethernet Address Resolution Protocol (Ethernet ARP), Dynamic Host Configuration Protocol (DHCP), Domain Name System (DNS)

− For routing such as static routing, Routing Information Protocol (RIP), and Open Shortest Path First (OSPF)

• Layer 4 Network protocols such Internet Protocol (IP) v4, IPv6, and Internetwork Packet Exchange (IPX)

• Layers 5—7 for data packet delivery, data packet inspection for firewall, security, and implementing corporate IT policies

On the WAN side, a router can interface to a Service Provider (SP), Internet Service Provider (ISP), PSTN, cellular networks, or any combination of these by supporting:

• Layer 1 physical connectivity − For WAN, examples include Ethernet CAT-5 or fiber cables, serial, analog modem, DSL, ISDN, E1, T1, E3, T3, ATM, and Packet over SONET

− For PSTN, examples include FXO, ISDN BRI, E1, T1, and E&M − For cellular, an example is 3G

• Layer 2 link layer protocols such as PPP, Serial Line Internet Protocol (SLIP), IP over ATM, Multilink PPP, Frame Relay, X, 25, Data Link Switching (DLSw), SDLC, and L2TP

• Layer 3 routing protocols − For services such NAT, Tunneling, Generic Routing Encapsulation (GRE), and (VPN), PIM-DM, and PIM-SM

− For routing protocols such as BGP, Intermediate System-to-Intermediate System (IS-IS), and MPLS

• Layers 4—7 for data packet encapsulation, delivery, data packet inspection for firewall, security, and implementing corporate IT policies

Embedded security

Data center

Network core

LAN

Applications

Central management

WANWAN

LAN

WLAN

Corporate/regional office Branch office

4

HP MSR in the FlexBranch reference architectureOrganizations are facing increased pressure to realize operational efficiencies end-to-end from the data center to branch offices, to optimize customer satisfaction, increase productivity, and positively impact business outcomes. As an important part of the HP FlexNetwork architecture, the HP FlexBranch networking solution converges infrastructure needs in branch offices and simultaneously delivers an open platform for third-party applications to dramatically simplify branch office deployments, centralize management, improve business productivity, and reduce IT costs.

Benefits of the HP MSR Series of routers include:

• Convergence of routing, switching, security, and voice • Modular, multibus architecture provides high reliability and

high performance • Full line of enterprise modular routers for small offices to

medium-large data centers • Embedded encryption, QoS, firewall, security features • Redundant power supply and hot swapping available on

select models • Unified management platform • Common modules across many platforms • Open application architecture enabled • No extra license cost for features

To help the corporate IT staff deliver cost-effective and efficient services, enterprises are shifting from an operational model that uses dedicated application servers running in branch offices to a centralized model that encompasses predictable application delivery along with ease of management and comprehensive security. Compliance with corporate governance policies, the elimination of remote IT staff, and overall cost efficiencies are key drivers in this shift.

The FlexBranch architecture supports switch-based convergence of switching, wireless, voice, security, WAN optimization, and other third-party applications.

The HP MSR Series of routers provide the WAN routing functionality within an HP FlexBranch Office solution, supporting a large variety of WAN interfaces such as serial/T1/T3/E1/E3/ATM/xDSL/POS/CPOS/3G and protocols such as RIP/OSPF/IS-IS/BGP/MPLS/HSPA/WCDMA/IPv4/IPv6. The HP MSR Series of routers have multiple models available for different price/performance/capacity combinations, supporting small branch offices with just Ethernet connectivity to large branch offices with needs for high performance, modularity, up to OC-3/T3/E3 WAN bandwidth, security, resiliency, and scalability.

Figure 1. HP FlexNetwork architecture components

MSR 50-40

MSR 30-10

MSR 20-20

MSR 20-11

MSR 20-10

MSR 900 MSR 900W MSR 920 MSR 920W

MSR 20-12W

MSR 20-12 MSR 20-12T

MSR 20-12TW MSR 20-13WMSR 20-15A

MSR 20-15 MSR 20-151

MSR 20-15W

MSR 20-13

MSR 20-15AW

MSR 20-21 MSR 20-40

MSR 30-11E

MSR 30-11F

MSR 30-16MSR 30-20

MSR 30-40MSR 30-60

MSR 50-60

5

The HP MSR Series of networking products play an essential role within the FlexBranch architecture by providing a modular, scalable, resilient, and flexible router that also supports the ability to implement multiple services. The HP MSR Series has a wide range of models to select from, providing the right level of performance, scalability, and resiliency needed for all kinds of branch offices. The HP MSR Series supports many types of standards-based LAN and WAN connectivity, wireless connectivity, voice connectivity, and mobile network connectivity.

For routers, the ability to implement multiple services is a key requirement for enterprises looking to reduce their overall IT costs. By supporting multiple services, the number of devices in a branch office wiring closet is reduced, along with the associated heat, power consumption and cabling costs. In addition, fewer devices in the wiring closet means fewer devices to administer, manage, and fix/repair.

The HP MSR Series also supports features such as QoS, embedded encryption, security, zero touch administration, Dynamic VPN (DVPN), centralized management, and other functions that help enterprises converge their infrastructure at the branch office, optimize productivity, enhance customer satisfaction, and help reduce overall IT costs.

Value propositionWide selection of modelsThe HP MSR Series includes these series of products:

• HP MSR50 router Series − High performance, reliable, scalable, available with PoE or DC models for large branch offices

• HP MSR30 router Series − Medium to large branch office routers with Smart Interface Card (SIC) and Multiple Interface Model slots, available PoE and DC models, supports external Redundant Power Supply, and 1 GB WAN interfaces

• HP MSR20 router Series − Small branch office routers with 2 or 4 SIC slots

• HP MSR20-1x router Series − Small branch office routers with fixed WAN interface connectivity with up to 2 SIC slots and WLAN models

• HP MSR900 router Series − Small branch office routers with Ethernet 10/100 WAN connectivity, WLAN models, and 4 or 8 Ethernet ports built-in

The following figure illustrates the portfolio of HP MSR Series of routers.

Figure 2. HP MSR model portfolio

Multiple bus service integration

High-speed internal switching

System GE/FE interfaceData service module

Voice service module

Ethernet switchingservice module

Internal private service bus

Data switching private engine

Audio codec Co-processing engine

High-speed hardware encryption engine

Voice switching bus

Internal switching bus

System data bus

USB multi-serviceinterface

Multi-service openmodule

Switchvoice

L4-L7

CPU Hardware encryptionengine

SIC

SIC

SIC

DSIC

HP MSR50-60 Router

HP MSR20-11 Router HP MSR30-60 Router 0.5U MIM

1U MIM

DFIC

FIC

6

Modular designThe HP MSR Series offers a flexible, modular design that delivers integrated, concurrent services on a single platform, creating operational efficiencies, reducing costs, and maximizing precious rack space and power. The HP MSR Series features a comprehensive set of integrated modules that deliver voice and data interfaces, routing and switching capabilities to deliver the functionality of multiple appliances in a single platform.

The HP MSR Series of routers are based on an N-Bus architecture that allows multiple services to be implemented together on a single modular, high-performance chassis. The following figure illustrates the architecture of the HP MSR Series, which highlights its modular design.

The following figure provides examples of HP MSR models and identifies the different kinds of interface modules that can be installed on them.

Figure 3. HP MSR Series modular design

Figure 4. HP MSR Series interface modules on router models examples

SIC

DSIC

XMIM (1U Height)

MIM (0.5U Height) MIM (1U Height)

Double height (1U)Double width

Removableslot dividerson chassis

Double width

DMIM

FIC

DFIC

SIC

MIM

FIC

7

Interface Types and AcronymsThe HP MSR Series supports embedded cards and interface modules. Embedded cards are installed on the motherboard of the HP MSR Series chassis. HP MSR Series embedded cards include:

• SIC Smart Interface Card• Double Width Smart Interface Card (DSIC)• MIM• Double Width and Height Multiple Interface Module (DMIM)• MSR 30-10/30-11 provides one XMIM slot (XMIM)• Flexible Interface Card (FIC)• Double Width Flexible Interface Card (DFIC)• Open Applications Platform Module (OAP)

The following diagram illustrates the different interface modules and their size relative to each other.

MSR interface module types on router modelsThere are different HP MSR interface module types to support the different HP MSR models, providing a full range of router interface solutions based on performance, density, and resiliency.

HP MSR Series embedded cards include:

• Enhanced Services Module (ESM) Security Cards − ESM-ANDE (Enhanced Services Module—Advanced Network Data Encryption)

• Twice the performance of Standard Network Data Encryption (SNDE), supports IPsec

− ESM-SNDE (Enhanced Service Module—Standard Network Data Encryption)• Supports IPsec

• Voice Cards − VPM (Voice Processing Module)—Provides T1/E1 voice transcoding

− VCPM (Voice Co-Processing Module)—Provides clocking

HP MSR Series modular interfaces include:

• The FIC interface modules are only for the HP MSR50 router Series, which supports hot-swap of SIC and FIC modules and has the highest performance and scalability of the HP MSR Series.

• The MIM interface modules are only for the HP MSR30 router Series, providing density in number of ports per module and scalability in number of modules per router chassis.

• The SIC interface modules can be installed on different HP MSR Series models from HP MSR20-1x router Series through HP MSR50 router Series, providing a common set of interfaces used across HP MSR Series models.

− SIC interface modules can only be installed on HP MSR50 router Series models using MPU (Main Processor Unit) processor boards.

Figure 5. HP MSR Series interface module types

8

Figure 6. HP MSR models and interface types

Figure 7. Examples of HP MSR Series interfaces

MSR model SIC MIM FIC

HP MSR50 router Series • •HP MSR30 router Series • •HP MSR20 router Series • •HP MSR20-1x router Series •HP MSR900 router Series

• SIC modules available only on HP MSR50 Series platforms using Main Processor Unit (MPU) processor boards

Wide selection of interfacesThe HP MSR Series of routers support a wide variety of interfaces implemented on HP MSR SIC, MIM, or FIC interface modules. The router model type determines the type of interface modules available, and will also determine the density and performance characteristics of the interface modules.

The HP MSR Series of routers support these types of interfaces:

• Ethernet LAN/WAN interface and LAN switching − SIC, MIM, FIC

• Narrowband and broadband WAN access − SIC, MIM, FIC

• Terminal access − SIC, MIM, FIC

• Security − ESM

• Voice − SIC, MIM, FIC, VPM, VCPM

• WLAN − SIC

• 3G − SIC, USB Modem

The following figure illustrates several examples of HP MSR Series router interface modules.

Connectivity and capacity

xDSL or Ethernet WAN connectivity

T1/T3/E1/E3 ATM

Capa

bilit

ies

OC-3 ATM/POS/CPOS

9

Figure 8. HP MSR Series scalability

ScalabilityThe HP MSR Series of routers provide scalability in a number of ways, including:

• Broad range of models and interface modules • Wide range of scalability (density) within a specific interface type• Steady performance in all types of small, mid-segment, and

large offices• Interface types are used on HP MSR Series router models based on

bandwidth and performance requirements − For example, T1/E1 can be found on all HP MSR interface module types (SIC, MIM, FIC)

− T3/E3/OC-3 POS are supported on HP MSR30 and HP MSR50 Series models

− OC-3 CPOS are supported on FIC interface modules only for HP MSR50 Series models

• Ability to enhance security encryption while not taking up external interface slots

Figure 8 provides an example of HP MSR Series scalability.

Methods for indirectly increasing the interface density :

• Replace the external encryption module with the CPU built-in encryption function

• Replace the external encryption module with the main board encryption card

• Support the voice separation modules VPM and VCPM on the main board (increasing the voice interface density)

• Increase the quantity of interfaces on the board such as 2VE1/T1• Use two or more slots to support high-density interface modules

such as 24/48-port switching module

10

Design guidelinesSelecting the right router for HP FlexBranchThe HP MSR Series has a full portfolio of models to select from, with routers to meet the flexibility and cost-effective needs of small branch offices to the high-performance, scalability, and resiliency needs of large branch offices.

So which model do you choose for any given HP FlexBranch deployment? The answer to that question will depend on these primary criteria:

• Size of branch office − For HP FlexBranch, small is less than 50 and large is up to 100

• WAN connectivity requirements − Ethernet (10/100/1000), xDSL, ISDN BRI, Serial, Analog Modem, T1, E1, T3, E3, OC-3, ATM, POS, MPLS, 3G

• LAN connectivity requirements − Number of 10/100/1000 Ethernet ports for connecting to switches/routers

− Number of 10/100 ports for connecting end point devices (includes non-PoE and PoE ports)

• Performance requirements − Forwarding throughput, embedded encryption

• Redundancy requirements − Hot-swappable interface modules, power supply redundancy, external redundant power supply

• Power supply requirements − AC or DC

• Power over Ethernet requirements − Number of 10/100 ports for connecting PoE (802.3af) end point devices

• Wireless LAN requirements − 802.11b/g wireless access point, 802.11b/g/n wireless access point

• Security requirements − IPsec, SSL

• Quality of service requirements − Hierarchical QoS, 802.1Q VLAN, 802.1p

• Voice requirements − PSTN access for analog trunks Foreign Exchange Office (FXO), connectivity to analog devices Foreign Exchange Subscriber (FXS), voice E1/T1/ISDN BRI/E&M connectivity to PSTN, SIP media gateway, basic SIP Trunking, TLS, Secure Real-time Transport Protocol (SRTP), limited local survivability

Based on the primary criteria mentioned here, recommendations for the right HP MSR Series router model for a given HP FlexBranch deployment include:

• Large branch office − Modular scalable chassis, PoE, voice, embedded encryption, DC power supply options

− Highest performance, redundant PS, hot-swap:• HP MSR50 router Series

− External RPS: • HP MSR30 router Series

• Small branch office − Modular chassis, voice, and embedded encryption options:• HP MSR20 router Series

− Modular with fixed WAN interfaces, built-in LAN ports, and WLAN models:• HP MSR20-1x router Series

− Fixed port chassis with built-in LAN ports and WLAN models:• HP MSR900 router Series

Connecting to the WANOne of the most important capabilities of an HP FlexBranch router is to connect branch office internal networks to external networks. The connections to these external networks are typically made through dedicated corporate WAN links, leased-line WAN from a SP, PSTN access, Ethernet WAN or Internet access from Internet ISP, or Internet access from a 3G provider.

The HP MSR Series helps HP FlexBranch customers by offering a wide selection of WAN connectivity from analog modem all the way to OC-3, by providing scalability options, and by offering common interface modules that work the same way among different HP MSR Series models. The HP MSR Series WAN connectivity includes interfaces that are located fixed on the chassis or on a SIC, MIM, or FIC module. The WAN connectivity interfaces available for the HP MSR Series includes:

• Narrowband − Serial (ASE, SAE), Analog Modem, ISN BRI S/U, E1, and T1 modules

• Broadband − E3, T3, POS, CPOS, ADSL, and G.SHDSL modules − ATM• IMA-E1, IMA-T1, AE3, AT3, and ATM-OC3 modules

• Ethernet − FEA, FEF, GEC, GBE, GEF modules

WAN

3G

HP MSR Series

Manage

Switch

11

Figure 9. HP MSR Series mobile network connectivity

Connecting to mobile networksA 3G connection to a mobile network provider allows branch offices to connect to the Internet and securely access corporate VPN resources using a 3G interface installed on an HP MSR Series router. Branch offices that are remote or unattended remote sites might use 3G connectivity for primary access, while small branch offices in urban locations might use it as an inexpensive backup option.

3G connectivity on the HP MSR Series of routers can be used as the primary access to the Internet and WAN or it can provide backup access. The HP MSR Series of routers can establish IPsec or L2TP tunnels over a 3G link, providing the ability to securely connect users to different VPN instances over 3G DVPN or 3G L2TP.

The following diagram illustrates mobile network connectivity using an HP MSR Series router.

3G interfaces available on the HP MSR Series of routers include:

• 3G SIC interface module − Supports HSPA/WCDMA/GSM − 3G networks:• GPRS, EDGE, UMTS, HSDPA, EVDO

• 3G USB modem interfaces include: − Huawei E226, E170, E160, E169, E156, E172, E173, E176, E180, E1750, E176G, E1756, E1556, K3765, K4505, E1820, E367m, E1553• Huawei E226 requires 2 USB ports, only available for MSR

models with 2 USB ports − Sierra Wireless 250U (Sprint)• Supported on MSR900, MSR20-1x, MSR20, and

MSR30 router Series − Sierra USBConnect Shockwave 308 (AT&T SKU 65200)• Supported on MSR900, MSR20-1x, MSR20, and

MSR30 router Series

12

Connecting to the LANAn HP MSR Series router integrates switching with routing on a single chassis, providing additional connectivity options and benefits at the HP FlexBranch. The HP MSR Series of routers have a variety of Ethernet Layer 2 switching modules supporting 10/100 Mbps speeds that provide an interface between the router and the LAN. This allows the HP MSR router to provide additional capacity for Ethernet connectivity at branch office or to provide an all-in-one branch office network component at small branch offices.

PoE using the standard 802.3af is supported on PoE models for HP MSR30-16/20/40/60 Series routers and also on HP MSR50 Series routers. Specific PoE models are used for the MSR30 router Series, while the HP MSR50 router Series uses a PoE module that is installed on the router.

The HP MSR Series of routers support these additional switching features:

• Segment networks using virtual LAN for data and voice traffic• Eliminate loops in the network using spanning tree• Increase bandwidth and reliability using link aggregation• Isolate Layer 2 traffic for data privacy and security• Suppress undesired broadcast, multicast, or unicast traffic• Apply Layer 2 QoS and security policies

The switching interface modules for the HP MSR Series include:

• SIC, DSIC, MIM, DMIM, XMIM, FIC, and DFIC modules• 4, 9, 16, or 24 ports depending on module type• MSR20-10 and above

Several HP MSR Series router models have Ethernet Layer 2 switching ports built-in the router, including the MSR900, MSR20-1x, and MSR30-11E/F router Series.

Figure 10 illustrates some of the Ethernet interface and switch modules available for the HP MSR Series.

Connecting wireless devicesAt many branch office locations, wireless devices can play a key role in user productivity and connecting remote devices to the network. For example, wireless-enabled tablets in the hands of roaming employees can enhance customer satisfaction by allowing the employees to access information for customers quickly and accurately over the network. Devices like centralized multi-function printer/scanner/fax can also be connected to the network using wireless technology, which helps reduce costs associated with cabling.

The HP MSR Series supports built-in 802.11b/g wireless access point connectivity in the MSR900 router Series and MSR20-1x router Series, and supports an 802.11b/g/n wireless access point SIC interface module. The HP MSR Series wireless connectivity provides an alternative for the HP MSM wireless solution, for example when an HP MSR Series router is providing all-in-one branch office functionality.

The HP MSR Series wireless connectivity are simple access points (sometimes referred to as “fat AP’s”), and do not integrate with the HP MSM wireless solution.

HP MSR Series of routers support for wireless connectivity includes:

• 802.11b/g and 802.11a/b/g/n• 802.11e QoS• 64/128 bit WEP, WPA, 802.11i, and WAPI encryption• 802.1X, PSK, MAC, and WAPI authentication• Layer 2 isolation and multi-virtual AP (multi-SSID) isolation• Up to 16 virtual AP’s

Figure 10. HP MSR Series LAN connectivity

WAN

FXS PRI, QSIG, BRI

T1, E1, BRI S/T

FXO, E&M

PSTN

PBX

FXS

Analogphone/fax

combo

Analogphone

HP MSR30 router Series

HP 5406zl Switch Series

13

Connecting voiceVoice is one of the most important aspects of connectivity for branch offices of all kinds. Employees need to be able to talk to each other on the phone within the branch, place calls to local and long-distance destinations, and receive calls from outside local and long-distance sources. The PSTN has traditionally provided the connectivity for outside calls using analog or digital interfaces at the branch office.

Today, many PSTN access providers and ITSP use SSIP over IP trunks to the branch office for the majority of calls and use analog interfaces for emergency or backup voice connectivity to the PSTN.

The HP MSR Series of routers support for native voice functionality includes:

• Wide variety of voice interface modules in various densities• Voice interfaces supported on models starting from MSR20-1x

router Series• Connect local analog phones, modems, and fax machines • Connect to PSTN or PBX

• Configure rules for number matches, number substitution, and call routing

• SIP media gateway for PSTN/analog connectivity for: − Avaya Aura UC&C systems

• Integrate fax• Voice survivability options

− Analog device to PSTN (FXS to FXO) 1-to-1 mapping, provides line relay when power fails

− Register third-party local SIP phones, providing ability to place calls between PSTN and local SIP phones

• Basic SIP trunking • TLS/SRTP for voice securityThe following figure illustrates analog voice connectivity with the HP MSR Series.

Figure 11. HP MSR Series analog voice connectivity

HP MSR30 router Series

AC input

HP MSR50 router Series

AC inputPower 2

Power 1 AC inputAC power source 1

RPS

AC power source 1

AC power source 2

14

Providing QoSWith many kinds of services being delivered over the network at branch offices, QoS becomes an important aspect when designing branch office networks. Branch offices are typically constrained to a certain bandwidth—internal and external—with different services running within that bandwidth, and QoS provides the mechanisms to provide the level of user experience desired at the branch.

QoS functionality of the HP MSR Series of routers includes:

• 802.1p and Layer 2 QoS• Traffic classification and ACL• Line rate, priority mapping and marking• Traffic policing/shaping/filtering• Congestion management and avoidance• Weighted random early detection (WRED)• FR QoS, MPLS QoS, MP QoS/LFI, PPP QoS, and ATM QoS• Subinterface QoS and nested QoS

When considering QoS for the HP MSR Series, keep in mind that the SIC modules, MSR20-1x, MSR9xx, and MSR20-21 Layer 2 switching interfaces do not support MQC, frame filtering, frame redirection, priority mark, and traffic policing committed access rate (CAR).

Providing security With the network being the primary method of accessing corporate information about customers, policies, and contacts, security of the network is another important aspect when designing branch office networks. Users must be properly authenticated, non-users or guests should have none or only basic connectivity and threats need to be detected and protected against internal and external attacks.

Security capabilities of the HP MSR Series of routers include:

• Static packet filter firewall based on ACL• Dynamic status-based Application Specific Packet Filter (ASPF)• Deep Application Recognition (DAR)• AAA, RADIUS, Hardware Terminal Access Controller Access Control

System (HWTACACS/TACACS+), portal authentication• Port-based 802.1x authentication• MAC authentication on MSR30 and MSR50 router Series• Embedded hardware encryption, SSH, SFTP• VPN – GRE, L2TP, DVPN, IPsec• Attack detection and TCP/ICMP attack protection• Connection Limit, password control, HABP, PKI, EAD, URPF

ResiliencyA router in a branch office is the primary, if not the only, connection to the corporate network via WAN or to the Internet. Designing resiliency into the branch office network is a critical step to help ensure business continuity in different failure scenarios.

Resiliency features of the HP MSR Series of routers include:

• BFD, VRRP, VRRP Load Balancing, Interface Backup, Track• MSR30 Series (starting with MSR30-16-POE) supports a connector

to an external redundant power supply• MSR50 Series supports optional built-in dual Power Supply Unit• MSR50 Series supports hot-swap of FIC modules

The following figure illustrates power supply resiliency supported with the HP MSR Series.

Figure 12. HP MSR Series power supply resiliency

15

FeaturesLink layer protocolsA link is a physical and logical component of a network that connects hosts and nodes on a network. The link layer is a set of protocols that operate on a host’s link, allowing different hosts and nodes to communicate together to effectively forward network traffic. For example, the ARP allows hosts to communicate at Layer 2, LLDP allows hosts to exchange configuration information, and L2TP and PPP provide logical tunnels over different physical connections.

Link Layer protocols supported by the HP MSR Series of routers include:

• ARP, Gratuitous ARP (GARP), Proxy ARP, Authorized ARP, GVRP• LLDP, LLDP-MED• HDLC, SLIP, Link Access Procedure, Balanced (LAPB)• DLSw, DLSw redundancy• L2TP, L2TP-auto-initiated• Transparent bridging • FR, ML-FR, and FR compression and fragmentation• PPP, MLPPP, PPPoA, EtoPPP, PPPoE, PPPoEoA, EtoFR, FRoIP,

PPPoFR, and MLPPPoFR• X.25, XOT, X2T, CUG, PAD access, hunt group, load sharing,

and LAPB

IP servicesIn the overall design of an enterprise network, a router in a branch office can be both a client to corporate network services and a provider of network services for clients local to the branch office. These Layer 3 network services include the ability to resolve IP addresses, obtain or provide IP addresses to clients, perform external-to-internal and internal-to-external IP address mapping, and to dynamically setup secure VPN tunnels.

IP Services provided by the HP MSR Series of routers include:

• DHCP client, server, relay, snooping• IP Addressing, BOOTP client, DNS, DDNS• Fast forwarding and IP performance optimization• NAT, NAT-PT• DVPN• Tunneling• UDP helper• GRE

IP routing protocolsIn its position at the edge of the network boundary, a branch office router must support a variety of IP routing protocols, including inward and outward facing. The IP routing protocols provide the foundational ability to forward data between different network segments in the most efficient (or least cost) manner possible.

Inward facing IP routing protocols include static routing, RIP, OSPF, and IS-IS. Outward facing IP routing protocols include BGP and MPLS. Services like PBR and multilink load balancing are also available to intelligently route traffic between networks.

IP routing protocols supported by the HP MSR Series include:

• Static routing• RIP• OSPF• IS-IS• BGP• PBR• Multi link load balancing• MPLS

16

Managing MSR with a single pane of glassThe administration and management of the routers in an enterprise network can be an extensive task for any IT department, with different WAN configurations, security profiles, VPN, and local network configurations to manage. Additionally, tasks such as resource and asset management, configuration and change management, fault management, reporting, and performance management are part of the overall TCO equation. Lastly, consider the different kinds of network equipment from different vendors that must be administered and managed.

The HP Intelligent Management Center (IMC) provides administrators and operators with the basic and advanced functionality needed to manage devices in the network infrastructure.

• Unique, highly integrated, single-pane management − One tool to support LAN, WAN, wireless, security − Delivers full fault, configuration, asset management and auditing, performance, and security (FCAPS) solution

• Client Server and SOA − Enables highly integrated modules to deliver new functionality

• Supports HP, Cisco and third-party devices − Multivendor configuration and fault management

• Rich Enterprise class functionality − Modularity, extensibility, and scalability

• Advanced feature packs for MPLS, traffic monitoring, wireless, SLA, NAC, etc., utilizing common platform, database, and look and feel

The HP MSR Series of routers support administration using CLI via auxiliary and console serial ports, telnet, and SSH. The HP MSR Series also supports administration using a web interface. Management of the HP MSR Series is supported using the HP IMC and these IMC modules:

• ACL management• VLAN management• User behavior management• Network traffic analysis (NTA)• QoS management• SLA management• MPLS VPN management• IPsec management• Voice services management• User access management (UAM)• Endpoint admission defense (EAD) Management• Branch intelligent management system (BIMS)

HP MSR50-40 SeriesModular Router

HP 6608 SeriesCore Router

HP 6608 SeriesCore Router

HP MSR50-40 SeriesModular Router

Async Serial

Async Serial

HP 5406zal SeriesModular Switch

HP 5406zal SeriesModular Switch

MSM760 APMSM760 AP

FXSFXS

1 GE 1 GE

1 GE1 GE

Voice T1Voice T1

FXO FXO

3G 3G

T3

T3

T3

T3

POS OC-3

POS OC-3

POS OC-3

POS OC-3PSTN

1 GE

1 GE1 GE

1 GE

T1-F

T1-FT1-F

T1-F

3rd PartyBox

3rd PartyBox

ConsolePort

ConsolePort

WAN

17

ConfigurationsHP MSR in an HP FlexBranch large branch officeThis configuration represents a large HP FlexBranch office for up to 100 users and where redundancy is a key requirement. The HP MSR50 router Series is an excellent choice for this configuration, with these capabilities:

• Modular scalable chassis − MSR50-60 router Series has 6 FIC slots and MSR50-40 router Series has 4 FIC slots

• PoE, DC power supply options• High performance

− Standard (MPU-F) has 4 SIC slots and 2 GE WAN ports − High performance (MPU-G2) 3 GE WAN ports, and 1 FE WAN port

• Redundant power supply• Hot-swap of FIC modulesThe following diagram illustrates the connectivity of a redundant pair of HP MSR50-40 router Series in a large HP FlexBranch office and shows examples of different types of WAN, LAN, and voice interfaces that can be connected.

Figure 13. Example of HP MSR50-40 Series in a large redundant FlexBranch office

HP MSR20-40 SeriesModular Router

HP 2910al Series48-port PoE+ Switch

MSM760 AP

FXS 1 FE

FXO3G

1 GET1-F

WAN

18

HP MSR in an HP FlexBranch small branch officeThis configuration represents an HP FlexBranch small office for up to 50 users. The HP MSR20 router Series is an excellent choice for this configuration, with these capabilities:

• Modular chassis − MSR20-40 router Series has 2 FE WAN ports, 4 SIC slots, 2 ESM slots, 1 VCPM slot, and 1 VPM slot

• Supports voice T1/E1 capability • Highest performance in MSR20 Series

− MSR20-21 router Series has 2 FE WAN ports, 2 SIC slots, 8 10/100 FSW ports, and 1 ESM slot

− MSR20-20 router Series has 2 FE WAN ports, 2 SIC slots, and 1 ESM slot

The following diagram illustrates the connectivity of an HP MSR20-40 router Series in an HP FlexBranch small office and shows examples of different types of WAN, LAN, and voice interfaces that can be connected.

Figure 14. HP MSR Series in FlexBranch small office

19

SpecificationsScalability of HP MSR interface typesThe following figure compares the maximum number of interface slots supported on four HP MSR Series router models: HP MSR20-15, HP MSR20-40, HP MSR30-60, and HP MSR50-60 router Series.

Figure 15. Example of HP MSR Series interface scalability

Interface MSR20-15 MSR20-40 MSR30-60 MSR50-60

USB ports 1 1 2 2

CF card slots (default/max) 0 1 (256M/1G) 1 (256M/1G) 1 (256M/1G)

AUX interface 1 1 1 1

Console interface 1 1 1 1

ESM slots 0 2 2 2 (on optional Multi-Service Module)

VCPM slots 1 1 1 1 (on optional Multi-Service Module)

VPM slots 1 2 3 4 (on optional Multi-Service Module)

SIC slots 1 4 4 4 (using MPU-F processor)

MIM slots 6

FIC slots 6

Scalability of HP MSR Interface ModulesThe figure 16 compares the maximum number of ports for different interface modules on four HP MSR Series router models: HP MSR20-15, HP MSR20-40, HP MSR30-60, and HP MSR50-60 Series.

The HP Multiple Services Router (MSR) Series of routers provide play an essential role in the HP FlexBranch architecture by providing a modular, scalable, resilient, and flexible router that also supports the ability to implement multiple services. The HP MSR Series has a wide range of models to select from, providing the right level

of performance, scalability, and resiliency needed for all kinds of branch offices. The HP MSR Series supports many types of standards-based LAN and WAN connectivity plus wireless, voice, and 3G mobile network connectivity.

For more information To implement, use, and maintain your small and large branch offices with HP MSR Series of routers, visit hp.com/networking/routers.

Get connected hp.com/go/getconnected

Current HP driver, support, and security alerts delivered directly to your desktop

© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.

4AA4-3841ENW, Created December 2012

Figure 16. Example of HP MSR Series port scalability

Interface MSR20-15 MSR20-40 MSR30-60 MSR50-60

Fixed Layer 2 Ethernet ports 4 FSW

Layer 2 Ethernet ports 13 FSW 18 FSW 130 FSW 96 FSW

Layer 3 Ethernet ports 1 GE/2 FE 2 GE/4 FE 16 GE/26 FE 16 GE/26 FE

WLAN modules 1 1 2 2

3G modules 1 1 2 3

Sync serial ports 4 52 48

xDSL ports 1 2 8 8

ISDN BRI ports 1 4 4 32

T1/E1 ports 1/1 4/4 52/56 28/32

T3/E3 ports 6/6 6/6

OC-3 ports 2 2