shortest path bridging 802.1 aq
Post on 12-May-2015
1.636 Views
Preview:
DESCRIPTION
TRANSCRIPT
Shortest Path Bridging 802.1AQ
© 2011 Avaya Inc. All rights reserved. 22
Values of 802.1aq SPB
Plug&play services enabled by end-point provisioning
Operational Simplicity
Increased network uptime
Predictable network behavior
Optimal network bandwidth utilization
Maximum network design flexibility
Immune to errors introduced by end-user
2
© 2011 Avaya Inc. All rights reserved. 3
Shortest Path Bridging – Network VirtualizationStandard Year Name Loopfree
topology by:Service ID‘s Provisioning Virtualization
of
IEEE 802.1Q
1998 Virtual Lans
(VLAN Tagging)
Spanning Tree
SMLT
4096 Edge and Core Layer 2
IEEE 802.1ad
2005 Provider Bridging
(QinQ)
Spanning Tree
SMLT
4096x4096 Edge and Core Layer 2
IEEE 802.1ah
2008 Provider Backbone Bridging (MacInMac)
Spanning Tree
SMLT
16 Mil. Edge and Core Layer 2
IEEE 802.1aq
2011 Shortest Path Bridging
(SPBm)
Link-State-Protocol (IS-IS)
16 Mil. Only Service Access Points
IEEE: Layer 2
IETF draft: Layer 3 Unicast & Multicast
802.1Qbg 2012+ Edge Virtual Bridging
VEPA & VEB QnQAttachements to ISIDs & VLANs
VDP (LLDP) discovery ofVM‘s
VM attachmentto the network
Ethernet = IEEE
Time
3
© 2011 Avaya Inc. All rights reserved. 44
Spanning Tree IGP
Tradition
?
Which would you rather do?
GVRP PIM-SM
IGP
mLDP
Signal after convergence Compute
Disruption
Unicast FIB
Multicast FIB
IGP
Unicast & Multicast FIB
BGP
© 2011 Avaya Inc. All rights reserved. 55
Virtualization Technology ComparisonMPLS versus VENA
e.g. PIMProtocol
Infrastructure
e.g. RIP/OSPFProtocol
Infrastructure
e.g. 802.1q/DProtocol
Infrastructure
e.g. RFC4364Protocol
Infrastructure
e.g. Draft RosenProtocol
Infrastructure
802.1Q(VLAN)
802.1D(Spanning Tree)
SONET, SDH, Ethernet, etc…
UC IGP(IS-IS or OSPF)Layer 3 Unicast
Service
Layer 3 Multicast Service
Layer 3 Virtualized Multicast Service
Physical Infrastructure
Layer 3 Virtualized Multicast Service
Top
–D
own
Verti
cal d
epen
denc
y
Layer 3 Virtualized Unicast Service
Layer 3 Virtualized
Unicast Service
Layer 3 Multicast Service
Layer 3 Unicast Service
Layer 2 Virtualized
Service
Layer 2 Virtualized
Service IP/SPB, SPBm/SPBmProtocol Infrastructure
SONET, SDH, Ethernet, etc…
Physical Infrastructure
Horizontally Independent
Connectivity Services independent from Infrastructure
5
© 2011 Avaya Inc. All rights reserved. 66
The Benefits of Virtualization
Server VirtualizationAllows aggregation of multiple
independent virtual servers to exist on a physical server
Network VirtualizationDecouples the physical infrastructure from the connectivity services making
the network adaptive and dynamic with simple one-touch provisioning
Network Virtualization enabled via Shortest Path Bridging
ComputeAccess
Data CenterCore
CampusCore
DistributionLayer
AccessLayer
© 2011 Avaya Inc. All rights reserved. 77
Understanding Shortest Path BridgingAn IEEE technology using MAC-in-MAC encapsulation
– Evolved from Provider Backbone Bridging (802.1ah)
– Deployed around the world providing Carrier metro service
Standards-based OA&M (802.1ag)– Configuration and Fault Management tools built-in
– Deployed around the world testing SLA of Metro Ethernet
Eliminates the need for multiple protocols in the core– Uses a single Ethernet-based link state protocol (IS-IS)
providing virtualization services at both Layer 2 and 3
SPB is an essential component for the Avaya VENA implementation7
© 2011 Avaya Inc. All rights reserved. 8 8
Shortest Path Bridging (SPB)IEEE 802.1aq & RFC 6329
SPB Shortest Path Tree from Node A
Node A802.1ah
interfaces
SPB Network
PB Network
MPLS Network
CPE
SPB/MPLS Interworking
SPB Shortest Path Tree for Green Service from Node A
SPB is a Spanning-Tree Protocol replacement for Ethernet and introduces:Network Efficiency - No blocked portsFast resiliency - Network reconvergence in 100s of millisecondsSimplicity - Well-known networking paradigm (link state)Customized Broadcast - Broadcast only to need-to-know nodesOne-touch provisioning - Dynamic auto-discovery of end-points
© 2011 Avaya Inc. All rights reserved. 99
The Basics of How SPBm Works
ISIS
ISIS ISIS
ISISISIS
ISISISIS
ISIS ISIS
ISIS
ISIS
CREATEISID=100
1. Discover network topology• IS-IS natural L2 routing protocol• Hierarchy built in for scaling
2. IS-IS nodes automatically build trees from themselves to all nodes:
Important properties:• Shortest path tree based on link metrics• No blocked links• RPFC to eliminate loops• Symmetric datapath between any two nodes
provides closed OAM system• unicast path now exists from every node to
every other node
3. Use IS-IS to advertise newservices communities of interest
• Floods topology, MAC and ISID information to network
4. When nodes receive notice of a new service AND they are on the shortest path, update FDB
• ISID/Service specific entries ISID=100
#config vlan 20 isid 100
CLI applied to edge switch only
Vlan 20
Vlan 20
Vlan 20
100100100
100
100
100
100100
100
100
A
B
C
9
© 2011 Avaya Inc. All rights reserved. 1010
The Basics of How SPBm Works
ISIS
ISIS ISIS
ISISISIS
ISISISIS
ISIS ISIS
ISIS
ISIS
CREATEISID=100
1. Discover network topology• IS-IS natural L2 routing protocol• Hierarchy built in for scaling
2. IS-IS nodes automatically build trees from themselves to all nodes:
Important properties:• Shortest path tree based on link metrics• No blocked links• RPFC to eliminate loops• Symmetric datapath between any two nodes
provides closed OAM system• Unicast path now exists from every node to
every other node
3. Use IS-IS to advertise newservices communities of interest
• Floods topology, MAC and ISID information to network
4. When nodes receive notice of a new service AND they are on the shortest path, update FDB
• ISID/Service specific entries
Vlan 20
Vlan 20
Vlan 20
ISID=100
#config vlan 20 isid 100
CLI applied to edge switch only
A
B
C
10
© 2011 Avaya Inc. All rights reserved. 1111
The Basics of How SPBm Works
ISIS
ISIS ISIS
ISISISIS
ISISISIS
ISIS ISIS
ISIS
ISIS
CREATEISID=100
1. Discover network topology• IS-IS natural L2 routing protocol• Hierarchy built in for scaling
2. IS-IS nodes automatically build trees from themselves to all nodes:
Important properties:• Shortest path tree based on link metrics• No blocked links• RPFC to eliminate loops• Symmetric datapath between any two nodes
provides closed OAM system• Unicast path now exists from every node to
every other node
3. Use IS-IS to advertise newservices communities of interest
• Floods topology, MAC and ISID information to network
4. When nodes receive notice of a new service AND they are on the shortest path, update FDB
• ISID/Service specific entries
Vlan 20
Vlan 20
Vlan 20
A
B
C
11
© 2011 Avaya Inc. All rights reserved. 1212
The Basics of How SPBm Works
ISIS
ISIS ISIS
ISISISIS
ISISISIS
ISIS ISIS
ISIS
ISIS
CREATEISID=100
1. Discover network topology• IS-IS natural L2 routing protocol• Hierarchy built in for scaling
2. IS-IS nodes automatically build trees from itself to all nodes:
Important properties:• Shortest path tree based on link metrics• No blocked links• RPFC to eliminate loops• Symmetric datapath between any two nodes
provides closed OAM system• Unicast path now exists from every node to
every other node
3. Use IS-IS to advertise newservices communities of interest
• Floods topology, MAC and ISID information to network
4. When nodes receive notice of a new service AND they are on the shortest path, update FDB
• ISID/Service specific entries
Vlan 20
Vlan 20
Vlan 20
A
B
C
12
© 2011 Avaya Inc. All rights reserved. 1313July 18
IEEE Plenary San Francisco
13
Simulate a Large Network
<ottawa-s9300-6>d spb statusSPB Status:
mode SPBM, nodes 187, links 412, adj 6, ufib 372, mfib 45
© 2011 Avaya Inc. All rights reserved. 14
SPBm 802.1ah Mac-in-Mac Encapsulation
DASA
Payload
VLAN ID
DASA
Payload
C-VID
B-DAB-SAB-VID
802.1Q
802.1ahProvider BackboneBridges
Legend:
SA = Source MAC addressDA = Dest. MAC addressVID = VLAN IDC-VID = Customer VIDI-SID = 24 Bit Service IDB-VID = Backbone VIDB-DA = Backbone DAB-SA = Backbone SA
I-SID
Tunnel IdentifiersService Identifiers
CustomerVLANs
DASA
Payload
CustomerwithNo VLAN Tags
or
Consolidated Service and Tunnel
Simplified and integrated forwarding like MPLS without the complexity
© 2011 Avaya Inc. All rights reserved. 1515
Transparent NetworkingTRILL & SPB Lookup Compared
Outer-Eth
Z | B
Rbridge ATRILL
Nickname TA
Router B Router C Router D Rbridge ETRILL
Nickname TE
Host X Host YMAC Z MAC B MAC C MAC D MAC N MAC F MAC H MAC I
TRILL
N | F
Host X Host Y
SPB A SPB B SPB C SPB D SPB E
A | EEth
Route Lookup
TRILL
SPB
SPB is much simpler, lower cost, OAM transparent Solution
EthMPLS
C | D H | IPayload
L2VSN
TA | TEX | Y
X
Y
Inner-Eth
Outer-EthTRILLPayload
TA | TEX | YInner-Eth
Outer-EthTRILLPayload
TA | TEX | YInner-Eth
Outer-EthTRILLPayload
TA | TEX | YInner-Eth
X
Y
X | Y
FCS
FCS’
FCS’’
FCS’’’
FCSEth
A | EEth
X | YFCSIP
IP/L3VSN
Only small scale L2
Full set of L2 and L3 services
© 2011 Avaya Inc. All rights reserved. 1616
Transparent NetworkingMPLS & SPB Lookup Compared
Outer-Eth
Z | B
Router A Router B Router C Router D Router E
Host X Host YMAC Z MAC B MAC C MAC D MAC N MAC F MAC H MAC I
N | F
Host X Host Y
SPB A SPB B SPB C SPB D SPB E
A | EEth
Route Lookup
MPLS – creates a LSP
SPB – creates a ESP
SPB is much simpler, lower cost, OAM transparent Solution
C | D H | IPayload
Payload
24
X
Y
Payload
Payload
Outer-EthPayload Label
X
Y
32
11
11
Outer-EthLabel
Outer-EthLabel Outer-EthLabel
© 2011 Avaya Inc. All rights reserved. 17
SPB
The power of Service AwarenessHost->VLAN->L2VSN->L3VSN
VSI’s
VRF’s
VLAN’s
Example Configuration of Service Mapping
Simplified Troubleshooting VSN connectivity fully redundant Regardless of edge switch model Hosts mapped to VLANs VLANs mapped to VSNs Multi-pathing – symmetric flows
Simple Management
© 2011 Avaya Inc. All rights reserved. 1818
What Problems Are We Solving?Fixing the problems of STP, MSTP, MMRP, etc…
Need to improve efficiency and flexibility
Using All Paths and Bandwidth Fast Convergence MAC Explosion Simplified Change Control
Efficiency
Physical Topology Independent Service Virtualization L2/L3 Networks Where Needed Small to Large Networks
Flexibility
Private Cloud
© 2011 Avaya Inc. All rights reserved. 1919
Shortest Path Bridging – SPBmEase of Setup
Create Backbone VLAN
VLAN
VLAN
VLAN
VLAN
VLAN
VLAN VLAN
VLAN
VLAN
Place NNI ports in Backbone VLAN Enable ISIS
Create VSN i-sid end points associated with VLAN or VRF
Services are Discovered
Network is operational
Backbone is Discovered
© 2011 Avaya Inc. All rights reserved. 2020
Shortest Path Bridging – SPBmNetwork Virtualization and Operational Simplification
Enable flexible Virtual Services Networks (VSNs) at L2 or L3 quickly and easily
Define VSN end points in the network – a virtual “plug-and-play” approach
No hop-by-hop provisioning or configuration to establish end-to-end services
Elimination of Spanning Tree and its associated issues – no blocked or orphaned links as when using Spanning Tree
Fast network convergence ~ 200 milliseconds
DestMAC
SrcMAC
VLANID Data
User data
DestMAC
SrcMAC
ServiceID Yel
DestMAC
SrcMAC
VLANID Data
User data encapsulated into the backbone
DestMAC
SrcMAC
ServiceID Red
DestMAC
SrcMAC
VLANID Data
D-MAC S-MAC VLAN Data
VLAN
VLAN
VLAN
VLAN
VLAN
VLAN VLAN
VLAN
VLAN
© 2011 Avaya Inc. All rights reserved. 21
SPB Service TypesLayer 2 Virtual Services Network
VLAN 200
VLAN 200
Non-SPB Switch
Non-SPB Switch
BEBSwitch
BEBSwitch
BCBSwitch
BCBSwitch
SPBm ISIS Domain802.1QVLAN Tagged
802.1QVLAN Tagged
VLAN 200
VLAN 200
I-SID200
I-SID200
VLAN 120
VLAN 150
VLAN 150
I-SID110
VLAN 120
I-SID110
• Transparent Layer 2 VLAN extension of services across SPB domain• Simply associate I-SID to VLAN in BEB Switches
© 2011 Avaya Inc. All rights reserved. 22
SPB Service TypesLayer 3 Virtual Services Network
VLAN 10
VLAN 10
Non-SPB Switch
Non-SPB Switch
BEBSwitch
BEBSwitch
BCBSwitch
BCBSwitch
SPBm ISIS Domain802.1QVLAN Tagged
802.1QVLAN Tagged
VLAN 200
VLAN 200
VLAN 120
VLAN 120
• Simply associate I-SID to VRF Instance in BEB Switches• SPB IPVPN reachability TLV 184 used to advertise IPVPN reachability among ISIS
peer switches within the SPB domain
I-SID500
I-SID500
© 2011 Avaya Inc. All rights reserved. 23
SPB Service TypesInter-VSN Routing
VLAN 10
VLAN 200
VLAN 10
VLAN 10
Non-SPB Switch
Non-SPB Switch
BEBSwitch
BEBSwitch
BEBSwitch
BCBSwitch
SPBm ISIS Domain802.1QVLAN Tagged
802.1QVLAN Tagged
VLAN 200
VLAN 200
I-SID10
I-SID10
I-SID200
I-SID200
VLAN 100
VLAN 150
I-SID110
I-SID110
• IP Route from any Layer 2 Virtual Services Network to other Layer 2 VSNs
VLAN 150
VRFVirtual Router Instance
© 2011 Avaya Inc. All rights reserved. 24
SPB Service TypesIP Shortcuts (Route propagation into ISIS)
VLAN 10
VLAN 10
Non-SPB Switch
Non-SPB Switch
BEBSwitch
BEBSwitch
BCBSwitch
BCBSwitch
SPBm ISIS Domain802.1QVLAN Tagged
802.1QVLAN Tagged
VLAN 200
VLAN 200
VLAN 120
VLAN 120
VLAN 100
VLAN 100
Route redistributionacross ISIS
• Direct IP forwarding over IS-IS• Simply enable IS-IS Redistribution (direct – rip – ospf – static – bgp)
© 2011 Avaya Inc. All rights reserved. 25
SPB Service TypesBGP IP-VPN over IS-IS
VLAN 10
VLAN 10
Non-SPB Switch
Non-SPB Switch
BEBSwitch
BEBSwitch
BCBSwitch
BCBSwitch
SPBm ISIS Domain802.1QVLAN Tagged
802.1QVLAN Tagged
VLAN 200
VLAN 200
VLAN 120
VLAN 120
VLAN 100
VLAN 100
• BGP-Based IP-VPNs and IP VPN Lite allow hub and spoke configuration by import and export Route Target values
GRT/NRE Over IS-IS
iBGP Peering CLIPCLIP
© 2011 Avaya Inc. All rights reserved. 26
SPB ServicesSMLT Switch Clustering Interoperability
VLAN 200
VLAN 200
Non-SPB Switch
Non-SPB Switch
BEBSwitch
BEBSwitch
BCBSwitch
BCBSwitch
SPBm ISIS Domain802.1QVLAN Tagged
VLAN 200
I-SID200
• All L2 VSN and L3 VSN and IP VPN Services Supported• Full backwards compatibility with Avaya SMLT-Based Switch Clustering
VLAN 200
VLAN 200
I-SID200
I-SID200
© 2011 Avaya Inc. All rights reserved. 27
SPB ServicesLayer 2 and Layer 3 QoS and Policing
VLAN 10
VLAN 10
Non-SPB Switch
Non-SPB Switch
BEBSwitch
BEBSwitch
BCBSwitch
BCBSwitch
SPBm ISIS Domain
VLAN 200
VLAN 200
VLAN 120
VLAN 120
• Map Port/VLAN/VSN markings to 802.1p Layer 2 marking used throughout SPB backbone
I-SID500
I-SID500
Port Policer
Edge port Trusted or Untrusted
Full 802.1p and IP DiffServ QoS SupportMap ingress DSCP or 802.1p markings to SPB Backbone 802.1p QoS markings
Queue based on 802.1p priority within SPB backbone
© 2011 Avaya Inc. All rights reserved. 2828
802.1ag CFM– Maintenance hierarchies– Layer 2 Ping– Layer 2 Traceroute– Layer 2 Tracetree
Network Discovery– Service (e.g., all BEBs supporting
common service instance)– Network (e.g. all devices common
to a domain)
Y.1731 Performance Monitoring– Frame Delay– Frame Delay Variation– Frame Loss
EdgeSwitch
EdgeSwitch
TransitSwitch
Adapt Adapt
NNILink
NNILink
UNILink
UNILink
Link OAMTrunk OAM
Service OAM (SID)
customer demarcs
Link OAM Link OAM
Trunk
802.1ag
802.1ag
Service
802.1ag Maintenance levels/hierarchy
Conceptually:-monitor the trunk or the service… or both
Built-in and on-switch
IEEE 802.1ag CFM – Connectivity Fault Management and ITU Y.1731 Performance Management
28
© 2011 Avaya Inc. All rights reserved. 2929
IEEE 802.1ag Overview and SupportWhy implement it?
IEEE 802.1ag provides connectivity fault management previously not available in ethernet networks:– Fault Detection (failures)– Fault Verification (misconfigurations)– Fault Isolation (troubleshooting)– Fault Notification (SNMP traps)
CFM can be provided at the Ethernet service and trunk layers:– Service layer : Client (C-VLAN)– Trunk layer : B-VLAN, Trunk, Port
29
© 2011 Avaya Inc. All rights reserved. 3030
Data Center ConnectivityCase Study: Server Deployment with VMware & VMotion
Data Center 1
Core
iSCSI Array
Data Center 2
Modular Switch
Net Mgmt
Virtualized ServerStackable Switch
Scenario• HR needs three new web servers• The traffic flowing between these servers and
other servers must be completed separated from the rest of the organization
• VMware/Vmotionrequired
• DC1 – 2 servers• DC2 – 1 server
VRF VRF
VRF
Return
SPB VPN connectivity established end-to-end
Define I-SID end point
Define I-SID end point
Define I-SID end point
© 2011 Avaya Inc. All rights reserved. 31
End-to-End Provisioning for VMware SystemsAutomated End-to-End Provisioning
• VM instances are provisioned through VCenter
• UCM/Virtual Provisioning Service recognizes through API that new VMWareinstance on virtual Port Group is being configured and provisions network connectivity accordingly
Virtual SwitchPort group 106
Virtual SwitchPort Group 20
ISID 10
VLAN 10
Port Group10
ISID 20
Vlan 20
Port Group20
1/1 2/14
1/14 2/5
VCenter
VPS
NIC2NIC1
VM instances
API
Virtual SwitchPort group 106
Virtual SwitchPort Group 20
ISID 10VLAN 10
Port Group10
ISID 20Vlan 20
Port Group20
1/1 2/14
1/14 2/5
Core
NIC2NIC1
VM instances
Core
PreconfiguredRule Set for binding:Server-Type: “Production“Port: anyVLAN: 10Isid: isid=200
Learns topology
Link LevelTopology Protocol
Link LevelTopology Protocol
top related