infrastruktura služeb v epn - · pdf fileredundancy) as pbb-evpn ethernet segment, as both...
TRANSCRIPT
Infrastruktura služeb v EPN TECH-SP-4
Martin Slinták, Systems Engineer
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Agenda
EPN Services Architecture
Service Edge Deployment Models & Innovations
3
EPN Services Architecture
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Services Architectures
Integrated BNG, WAG, SecGW, CGN Virtualized PGW
Virtualized RR, PCRF, CPEs
Virtualized Network Services
• Business Services
• MEF CE 2.0 services
• L3 VPN enterprise services
• Residential Services
• Mobile Transport
• AnyG
• Adaptive Microwave Coding
5
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Service Infrastructure Enhancements
New in this release
Integrated BNG, WAG, CGN
VNFs: vRR, QvPC-SI, QvBN,VXLAN GW,
vBRAS Cloud Policy and NMS
Ke
y H
igh
lig
hts
• Cost effective migration of BRAS functionality from Physical to virtual BRAS in Cloud
• Subscriber redundancy over any access with BNG SRG
• Efficient and Effective resource utilization with nV multicast offload
• Rapid deployment, management simplicity, for MEF Services with ZTD NID
• Improved Netflow based Cellular and Mobile Backhaul Network Capacity Planning
• Simplified MPLS VPN Scale Control for LTE and Simplified eNB interface
• Ethernet NID for Small Cell Aggregation
6
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Transport Services: MEF MPLS, Ethernet and nV Access Network
M ultiservice
Core Network
Pre-Aggregation Node
ASR-903, RSP2
Aggregation Node
ASR-9000
Large Scale
Aggregation Network
Legacy
Access Network
IP/MPLS Transport
X-Line
Ethernet Port, 802.1q or 802.1ad TDM, ATM IMA E1, STM1
Core Node CRS-3
IP/MPLS Transport
SONET/SDH DWDM, Fiber Rings, H&S, Hierarchical Topology DWDM, Mesh Topology
Aggregation Node
E-LAN VPLS, PBB-EVPN (includes E-TREE) Ethernet Port, 802.1q or 802.1ad
Ethernet P2P, G.8032 Ring
nV,
P2P, Chain, Ring, L2 Fabric
E-LAN VPLS, PBB-EVPN (includes E-TREE)
Ethernet Port, 802.1q
Ethernet 1q/QinQ PWHE Multiplexing per Access Node or per Access Port
X-Line
Ethernet Port, 802.1q TDM, ATM IMA E1, STM1
Access Node
ASR-920, ME-3600
ME-1200
NID
7
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
E-Tree: H-VPLS Based Solution
Consistent architecture as E-LINE and E-LAN
Access node use spoke PW
E-Tree split-horizon configuration is done on the aggregation node
Leaf UNI
Leaf UNI
Leaf UNI
Root UNI BD
Split-horizon
Leaf UNI
Leaf UNI
Leaf UNI
Root UNI
Split-horizon
No Split-horizon
No Split-horizon
Primary PW
Backup PW
Deployment example 1
Deployment example 2
• Link level failure is protected by LFA
• Aggregation node failure is protected by PW redundancy
Root UNI
BD
BD
8
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
E-Tree: PBB-EVPN Based Solution
Support multi-root and multi-leaf UNI per each EVI via RT filtering
Root and leaf uni can be mixed on the same PE only if belong to different EVI (different E-TREE instances)
Support multi root and multi leaf UNI
Support mixed root and leaf UNI on the same PE for the same EVI
Support spoke PW (with PW redundancy) as PBB-EVPN Ethernet Segment, as both root and leaf UNI
Root UNI, evi: A
Leaf UNI, evi: B
Root UNI, evi: A
Leaf UNI, evi: B
Leaf UNI, evi: A
Root UNI, evi: B
Leaf UNI, evi: A
Root UNI, evi: B
PBB-EVPN
Current Architecture
Leaf UNI, evi: A
Root UNI, evi: A
Leaf UNI, evi: A
Root UNI, evi: A
PBB-EVPN
Feature Evolution
evi
evi
evi
evi
evi evi
evi evi evi evi
evi evi
Leaf UNI, evi: A
Leaf UNI, evi: A
9
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
nV Multicast offload, ELAN VPLS Multicast
Core Network Access Network
Aggregation Network
PAN
CN-ABR
nV Satellite
PAN-SE
CPE
VPLS IGMP receiv er
IGMP snooping
IGMP IGMP
nV Satellite
nV ring
CPE IGMP receiv er
Multicast
Stream from
VPLS core
locally
replicated at
satellite nodes
• Multicast replication offloaded from nV host to satellite • Optimizes bandwidth utilization of the Fabric Links.
• One shared VLAN allocated for the entire VFI; same for unicast and multicast • Assigned as 802.1Q tag to individual subinterfaces (L2 attachments) to each branch. • Multicast Subinterfaces grouped into a common bridge-domain • IGMP snooping enabled on bridge domain to deliver multicast traffic
10
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Enterprise Services L3 VPN
M ultiservice
Core Network
Pre-Aggregation Node
ASR-9001, ASR-903 Remote Fixed Access Node
ME-3600X, ASR-901 Aggregation Node
ASR-9010
Large Scale
Aggregation Network Efficient
Access Network
IP/MPLS Transport
L3 VPN
Ethernet 1q/QinQ PWHE
Core Node
IP/MPLS Transport
xWDM, Fiber Rings DWDM, Fiber Rings, H&S, Hierarchical Topology DWDM, Mesh Topology
Ethernet 802.1q
Ethernet 1q/QinQ PWHE
Aggregation Node
ASR-9001, 9006
Ethernet 802.1q
Optimal Service Edge
MPLS VPN/Multicast VPN (mLDP)
MPLS VPN/Multicast VPN (mLDP)
Ethernet 1q/QinQ Ethernet 802.1q MPLS VPN/Multicast VPN (mLDP)
11
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
nV Multicast offload, Enterprise mVPN Core Network Access Network
Aggregation Network
PAN
CN-ABR
nV Satellite
PAN-SE
Enterprise A CPE 1
MVPN4 IGMP receiv er
IGMP snooping
PIM/MLDP IGMP
nV Satellite
nV ring
Enterprise A CPE 2
IGMP receiv er
Multicast Stream from MVPN4 core
locally replicated at satellite nodes
NID
NID
Multicast Vlan
Unicast
Vlan
Unicast
Vlan
• Multicast replication offloaded from nV host to satellite
• Optimizes bandwidth utilization of the Fabric Links. • One shared multicast VLAN allocated for entire enterprise VRF; in addition to unicast vlan for each branch
• Assigned as 802.1Q tag to individual multicast subinterfaces (L2 attachments) to each enterprise branch. • Multicast Subinterfaces grouped into a common bridge-domain; BVI interface used for multicast routing over nV network
• IGMP snooping on bridge domain for delivery of enterprise multicast traffic • Intermediate access device (NID) aggregates multicast and unicast VLANs into a single VLAN towards enterprise CPE and vice ve rsa.
• Configured with bridge Domain with Split-horizon groups on multicast and unicast EVCs 12
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Virtual Service Interface – Pseudowire Head-end
VLAN VLAN VLAN
VPLS
Internet
VRF
H-QOS
BFD ACL
Netflow
MAC Sec Storm CTL
VLAN rew rite
uRPF
Pseudowire
ESE
Access
Aggregation
Residential
STB
Business
Corporate
Mobile 2G/3G / LTE ASR9000
PE
ME3600 ME3800 ASR903 ASR901 ASR920
MPLS Core
13
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Residential Services
Unified MPLS Access Network
M ultiservice Core Network
Large Scale Aggregation Network
Intelligent Services Edge
Core Node
Remote DSLAM ME-4600
Efficient Access Network
EoMPLS Pseudowire EoMPLS PW
IPTV Transport Access Node UNI:
Non Trunk, N:1 or 1:1 VLAN;
IPv 6
IP, PPPoE Sessions
Integrated MAP-T BR
HSI, VoIP, Video unicast Transport
Optimal Service Edge
PWE3 IPv 6
IP, PPPoE Sessions
Integrated MAP-T BR
BNG with PWHE
Fiber, DSL DWDM, Fiber Rings, H&S, Hierarchical Topology DWDM, Mesh Topology
IP/MPLS Transport
IP or L3 VPN over Unified MPLS for 3play Unicast
MPLS (mLDP)
IP/MPLS Transport
Service Edge Node ASR-9000
Service Edge Node ASR-9000
Aggregation Node
ASR-9000 Pre-Aggregation Node
ASR-9001, ASR-903
Aggregation Node
ASR-9001, 9006
MPLS Access Node,
ASR-901, ME-3600
PIMv 4/v6
PIMv 4/v6
IP TV
IP or L3 VPN over Unified MPLS for 3play Unicast
MPLS (mLDP)
14
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Egress policer
per VLAN/all users
QOS Downstream Challenge
100M
100M
10M
Egress policer
per VLAN/user
20M
50M
50M
No control how much traffic each ONT gets
GPON needs
BNG to police
each subscriber
to a contract
downstream
MDU
? mbps
ETHERNET
GPON
15
BNG Deployment Models
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
SP Edge Architecture Candidates
17
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Architectural Comparisons
Capital Expenditures
Scalability (Bandwidth/Subscriber, Transport, Policy Control)
Operational Complexity (Troubleshooting, QoS)
Reuse of existing Operations procedures
Service Availability
Traffic Patterns (e.g. P2P, Video content Delivery)
Economically serving areas of differing subscriber density
Service Flexibility
Operational Flexibility
18
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Scalability—Bandwidth per Subscriber/CPS
Multimedia traffic impacts subscriber scalability per system – Bandwidth per subscriber increases to
5–10 Mbps/sub for multimedia services
– Traffic includes HIS including OTT traffic and VoD.
DS/US ratio in Europe about 4:1
Centralized single-edge architectures reach scalability limits
• Centralized architecture larger failure domain (At 100 CPS, it takes 16 minutes to set up 100K sessions)
Clustered, multi-edge or distributed architectures offer better architectural scalability
Avg DS rate (kbps) 2012
Avg DS rate (kbps) 2017
SP1 144 532
SP2 460 1702
SP3 274 1013
SP4 480 1776
SP5 143 529
Average 300 1110
BW
Gbps
Subs
0
20
40
60
80
100
120
140
10
K
20
K
30
K
40
K
50
K
60
K
70
K
80
K
90
K
10
0K
11
0K
12
0K
0,3Mbps
1,1Mbps
19
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Centralized Single-Edge
Distributed Single-Edge
Service Availability
Distributed and clustered architectures typically employ smaller systems
Smaller fault-domains impact fewer subscribers
In-box redundancy can be used to ensure that certain failures are transparent to subscriber sessions
Inter-box redundancy expensive in distributed architecture (nd edge, stdy replication…)
Aggregation
MPLS/IP/Ethernet
Failure Radius
Core
Failure Radius
Core
GEO-REDUNDANCY
20
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Service Flexibility
Increasing requirement for value added services
Single-edge architectures have more flexibility for quad-play services
Distributed architecture more conducive for wholesale
Allocate subscriber to BNG depending on actual load
vBNG and BNG termination on PWHE
21
BNG Innovations Linecard Based Subscribers
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
LC CPU
RP CPU
OSPF
BGP BNG
…
IO
S
X
R
LC CPU BNG
LC CPU BNG
LC CPU BNG
ASR 9000 BNG Scale Innovation
I
OS
XR
RP CPU
OSPF
BGP
…
LC CPU
LC CPU
LC CPU
BNG BNG BNG BNG
• Only XR Architecture allows true distribution
of BNG components
• Higher Horizontal scale/ CPS (CP increase with
addition of LC)
• Better Multi-service Scale • Support with existing
shipping HW
• Similar functional behavior
• Co-existent with RP based model
Target Feature Parity between the
models
Session Termination
23
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
ASR 9000 BNG Scale Innovation
$0,00
$2,00
$4,00
$6,00
$8,00
128K 256k 384k
Cisco RPBased
Cisco LCBased
JNPR
ALU
Price per Subscriber
Sample BoM , does not include Core facing cards
0
1000
2000
3000
4000
5000
6000
7000
128K 256k 384k
Cisco RPbased
Cisco LCbased
Total Power
RP based LC based
IPv4 Only sessions (PPPoE + IPoE) 128k 256k
IPv6 Only sessions (PPPoE + IPoE) 64k 128k
Dual Stack sessions (PPPoE + IPoE) 64k 128k
Sessions/LC 64k 64k
Sessions/NPU/Port 32k 32k
CPS 100 75 x LC
24
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Positioning RP vs LC based subs
RP Based LC Based
Scale 128K Target 512k
CPS ~100(real deployment) Target 600
PW-HE Yes No
pQoS Yes No (RoadMap)
Bundle Support Yes No
Redundancy (nv edge) Yes Via Geo Redundancy in 5.2.2
Service Accounting Yes No (Roadmap)
Access type L2/L3 Yes Only L2
Multicast Yes No*
Both Models can co-exist
* Limited only on MSE full scaled configs.
25
BNG Innovations Controller Based BNG
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Vision: Software Defined Fixed Mobile Convergence ASR 9000 Evolved Subscriber Management System
Scale SP WiFi Subscriber Management with SDN
– Up to 1 Million Subscriber per ASR9K gateway
– 3K CPS
– Tens of Millions on Cloud Based SDN Controller
Monetize with Cloud Services
– Leverage combined NfV based Services Delivery for Fixed and Mobile Access
– Service Chaining
– Virtualized Service Module for Integrated low-latency NfV functions
ASR 9000 FMC Gateway
SDN API
Elastic Telco Data Center
Common Services for mobile Gi-LAN + Fixed
OCS
HLR
AAA
CGF
Portal
Common Services
DPI
CG
N
WW
W
FW
CD
N
IPS
Load
Balanc
e
Load
Balanc
e
Load
Balanc
e
Load
Balanc
e
PCRF
Customer Group A
Customer Group B
Business Internet
DPI Virus/Malware
Scan
Firewall
NAT
NAT
Firewall Parental Ctrl. NAT
Session
Ctrl
VSM
SDN
PMIP or GTP
RANs
Wireline
Fiber
WiFi
Cable
27
BNG Innovations Geo-Redundancy
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
ASR 9000 Carrier Class Redundancy Resilient under all Failure Conditions
Link Failure
Linecard Failure
Hardware Failure
Critical Patch
Software Bug
Chasis Failure
• Handled via LAG support with BNG
• LAG is a baseline - Full feature/Scale support
• Handled via LAG support with BNG
• Link Bundle can be across two linecards
• ASR9000 MTBF data shows 99.999% Uptime
• Probability LOW
• With SMU capability, Patches can be done runtime
• BNG feature-sets also support SMU
• Process Restart capability -> Minimize/localize the failure
• Doesn’t impact other processes.
• Power Backups for power failure
• 1:1 Cluster Redundancy , M:N Geo Redundancy
29
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Limitations of Cluster Redundancy
Needs dedicated links between Cluster nodes
– Expensive to provision
– Colocation required due to latency factor does not provide geographical redundancy
– Inter-chassis links are used during normal operation as well
Restricted Access Node Dual-Homing Options
– ANs need to terminate their links to nodes of the same Cluster
– Flexible pairing across multiple routers not possible
Cluster provides redundancy for other services (L2VPN, L2VPN, mVPN…)
Geographical Redundancy across multiple BNG routers overcomes these limitations …
30
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Solution Summary CORE NETWORK INFRA
CPE1 CPE2 CPE3 CPE4 CPE5 CPEN
SRGs configured on BNG routers
in hot-standby or warm-standby
(1:1, N:1, M:N).
BNG sync channel setup between
master & slave just need L3
connectivity
SRG monitor their respective core and
access connectivity to detect failures.
Only the master sets up session
with the CPE and master & slave
both interact with backend servers
(e.g. Radius, DHCP, PCRF, etc.)
Access network design can use any technology
to provide dual-homing of access links within
a SRG to the two BNGs.
Access technology can put the links to the BNGs
in active/standby (e.g. MC-LAG) or active/active
(e.g. OLT ring) mode.
Failure detection and traffic switchover done based
on the technology used – optionally using a fast
heartbeat mechanism with the BNG access link.
ACESS NETWORK INFRA
CPEs are agnostic to redundancy feature
and do not see or do anything special.
They see one BNG and setup sessions with it.
Switchover is done transparently. 31
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Redundancy options
Hot-Standby Mode (aka. Stateful Redundancy)
All session states are synced on Back-up BNG, both software and hardware states.
Data-plane is pre-provisioned with all subscriber instances.
If access and core infra designed for fast convergence, sub-second convergence is achievable.
Warm-Standby Mode (aka. Partial Stateful Redundancy) Minimal session context is created in shadow database.
Hardware states are created from this shadow database, based on trigger.
Sub-second convergence not achievable using this approach
SYNC
32
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Deployment example
SRG1
SRG2
SRG1
SRG3
SRG2
SRG3
1.1.1.1
2.2.2.2
3.3.3.3
4.4.4.4
Gig-0/0/1/2
Gig-0/0/1/2
Gig-0/0/1/2
Gig-0/0/1/2
Gig-0/0/1/0
Gig-0/0/1/1
Gig-0/0/1/0
Gig-0/0/1/1
Gig-0/0/1/0
Gig-0/0/1/0
SUBSCRIBER ACCESS AGGREGATION CORE EDGE
AG
NO
ST
IC
i.e
. M
C-L
AG
, OLT, P
WH
E Could be different
chassis and run
different IOS-XR
33
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Unified MPLS Network
IP
IP
Residential PON Homes
IP
IP
PW E3
G.8032 Ring
Residential DSL Homes
IP
IP
DSL Access
AGN-SE with BNG SRG
PON Access
AGN-SE with BNG SRG
BNG Subscriber Redundancy Group (SRG)
• Subscriber Redundancy Groups (SRGs) between BNGs
• Ensure subscriber states are maintained across BNGs for redundancy
• One SRG per AN; Master and Standby BNG per SRG basis
• Only Master node is responsible for forwarding subscriber traffic.
• Access Node connectivity tracking to detect loss of connectivity and trigger failover
• MPLS access - Programmable logic for MCLAG failover with PW state change
• G.8032 access - MA between each access node and BNG; CFM down MEP over dedicated/residential vlan
• EFD on BNGs to monitor line protocol of ring facing interface
Hub and Spoke
Unified MPLS Network Access PE
34
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
BNG SRG Ethernet Access Node
MCLAG Active/ Standby links or
VLANs
AGN-SE
BNG Node
SR
G
core
Dual Homed
OLT
Active/Standby links
(per link or per VLAN)
• Redundant BNGs at the aggregation site
• Single uplink between AN and each BNG nodes • Uplinks bundled together at BNG in MultiChassis Link Aggregation Groups
• Operate in Active/Standby mode either at port or at individual VLAN level • Subscriber Redundancy Groups (SRGs) running between BNGs
• Ensure subscriber states are maintained across nodes • Only a single node is responsible for forwarding of subscriber traffic at a time
Access tracking: MCLAG driven
35
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
BNG SRG Ethernet G.8032 Access Ring
AGN-SE
BNG Node
(primary instance 1)
SR
G
core
G.8032 Instance1: S-VLANs A, B
G.8032 Instance2: S-VLANs C, D S-VLAN A
S-VLAN B
S-VLAN C
S-VLAN D
AGN-SE
BNG Node
(primary instance 2)
RPL owner Instance1
RPL owner Instance2
• Redundant BNGs at aggregation site terminate open ends of G.8032 access ring
• Two G.8032 instances, each blocking towards a different BNG, ensuring loadsharing between BNGs • Unique S-VLAN assigned to each access node for residential traffic; different S-VLANs allocated to different G.8032 instances.
• MA between each access node and BNG; CFM down MEP over dedicated/residential vlan • EFD on BNGs to monitor line protocol of ring facing interface
• Subscriber Redundancy Groups (SRGs) running between BNGs • Ensure subscriber states are maintained across nodes
• Only a single node is responsible for forwarding of subscriber traffic at a time.
Access tracking: per OLT CCMs
36
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
BNG SRG MPLS Access with PW-HE
AGN-SE
BNG Node
SR
G
core
Dual Homed
OLT
core
Single Homed
OLT
AGN-SE
BNG Node
SR
G
LAG
PW E(active)
PW E(standby)
MCLAG
• Redundant BNG nodes terminating Active/Standby pseudowire initiated by access PE(s)
• AN can be • Single homed to Access PE via single link or link bundling; Access PE initiates Active and Standby pseudowires towards BNGs.
• Dual homed to different Access PE nodes, via MCLAG; Each Access PE initiates a pseudowire towards one of the BNGs • Pseudowire state is coupled with state of MCLAG links at Access PE
• Programmable logic on Access PE performs MCLAG failover with pseudowire state change • Subscriber Redundancy Groups (SRGs) running between BNGs
• Ensure subscriber states are maintained across nodes • Only a single node is responsible for forwarding of subscriber traffic at a time
EEM
Correlation
Access tracking: PW state driven Access tracking: PW state driven
37
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Measured Failover times per access model Single session
Access Type
IPv4 traffic IPv6 traffic
Upstream Loss (ms)
Downstream Loss (ms)
Upstream Loss (ms)
Downstream Loss (ms)
Hub and Spoke MCLAG
59 250 59 547
G.8032 Ring 340 360 525 569
Active/Standby EoMPLS
270 355 330 327
(*) remote link failure carries a 20-30% penalty over local failure results (shown here)
Failure Triggers:
H&S MCLAG: local (BNG) and remote (OLT side) link failure (port shut)
G.8032 Ring: local (BNG) and remote (OLT side) link failure (port shut) (*)
A/S EoMPLS: local (BNG) link failure (port shut), manual pseudowire switchover (Access PE)
38
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Geo-Redundancy Roadmap
FCS in 5.2.2 for IPoE DHCPv4/v6 L2 connected subscribers. RP subscribers.
Access topologies: MCLAG and Dual homed/rings with MST and CCM
In 5.3.X plan is to add PPPoE/LAC support and LC based subscribers.
On access side also add PWHE, G8032 and pseudo MCLAG access support
39
BNG Innovations vBNG/vBRAS
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Legacy PPPOE Offload to Cloud
Unified MPLS Network
IP
IP
Legacy PPPoE DSL Homes
PPPoE Sessions over
EoMPLS PW
DCG
L2 VXLAN
Gateway
IP
IP
L2 Vxlan Gateway (Nexus1kv)
Vlan
Vlan
Openstack
FMC Policy
AAA (QPS)
Access PE
• BRAS PPPoE functionality from physical to Service provider Cloud as vBRAS
• Capable to scale over a million subscribers in same Data Center • Assists interim migration of legacy PPPoE customers for future upgrade
• Released compute resources can be reutilized for other tasks. • CSR1000v based vBRAS, N1kv based VxLAN Gateway; OpenStack Orchestration
• VxLAN based PPPoE traffic tunneling • Achieves transparency of Subscriber MAC addresses through out DC Fabric
• Consumes less mac-address-table resources of DC switches • For Internet and QPS connectivity, vBNG NNI (dot1q) to DC gateway through DC fabric Path; IGP adjacency over NNI
DSLAM
DSLAM
IGW
DC Fabric Path
(VMDC)
vBRAS (CSR1Kv)
Access PE
VxLAN
VxLA
N
VLAN
VLAN
41
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
What is NfV?
(From ETSI)… NFV decouples the network functions such as NAT, IPS, DNS, RR etc. from proprietary hardware appliances, so they can run in software. ….. It utilizes standard IT virtualization technologies that run on high-volume service, switch and storage hardware to virtualize network functions..
42
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Virtualizing Network Functions X86 versus Custom Network Processing Unit (NPU)
Network Forwarding (L0-3) Network Services (L4+)
BGP Route reflector, Firewall, BNG, DPI
Low to Med Throughput
Stateful functions
Unpredictable traffic
IPv6/v4, MPLS, VPNs, Optical
High throughput / BW
Stateless functions
Mostly predictable traffic
Better fit for NPU
Compute
Bandwidth
Better fit for x86
Compute
Bandwidth
43
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Cisco Cloud Services Router (CSR) 1000V
Cisco IOS-XE Software in Virtual Form-Factor
• Selected features of IOS XE based on targeted use cases
Not tied to any server or vSwitch, supports ESXi, KVM, Xen,
AMI
Delivers 10Mbps to 20 Gbps throughput, consumes 1 to 8
vCPU
• Term, Perpetual
• RESTful APIs (leverages OnePK) for automated management
Server
Hypervisor
Virtual Switch
OS
App
OS
App
CSR 1000V
Virtualized Networking with Rapid Deployment and Flexibility 44
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
VMs
SP Aggregation
CSR 1000v as vPTA / vLNS
Industry’s first full featured virtual BNG (PTA/LNS) solution with scale and performance
CSR 1000v leverages IOS XE code-base from ASR 1000
– PTA / LNS features are part of the code base
Targets smaller scale deployments less than 4K sessions per virtual instance
– Up to 1Gbps throughput (phase 1)
– Setup rate between 50-100CPS
Targeted for selective PTA (PPPoE) and LNS deployment profiles
Customer
Premise
SP Core
Data Center v PTA
v LNS
45
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
VMs
CSR 1000v as vISG
Virtual Intelligent Services Gateway (vISG) that can be deployed as access gateway for hospitality environments, providing the same subscriber management functionality (IPoE) currently offered by ASR1000
Targets smaller scale deployments less than 4K sessions per virtual instance
– Up to 1Gbps throughput (phase 1)
– Setup rate between 50-100CPS
vISG session creation FSOL –Unclassified MAC, DHCP.
Data Center
v ISG
Indoor Hotspot
Residential / Community Wi-Fi
Metro W i-Fi
Wi-Fi Access
46
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
CSR1000v vBNG supported Profiles
Profile vPTA vLNS vISG
Session Type PPPoEoVLAN PPPoVLANoL2TP IPoEoVLAN
Features* Input/output ACL, ingress QoS
(policing) / egress QoS (shaping), vrf-awareness,
IPv4/IPv6 dual-stack, AAA, ANCP
IPv4/IPv6, HQoS, Input/output
ACL, dual-stack service and TC accounting, CoA Service Push
DHCP, Unclassified MAC,
HQoS, Input/output ACL, ISG TC, L4R, PBHK,
Unauthenticated timeout
vCPU 2 vCPU
Memory 8GB
Sessions 4k 4k 4k
Max Throughput tested 1Gbps 1Gbps 1Gbps
47
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
4000 sessions tested with each profile
0
500
1000
1500
2000
2500
3000
3500
4000
4500
5000
CEF vIPoEIPoEoVLAN
vBRASPPPoEoVLAN
vLACPPPoEoVLAN
vLNSPPPoEoVLAN
Throughput in Mbits
CEF profile used as base performance IPoE sessions have a lighter memory footprint compared to PPPoE sessions (similar to the ASR1000) hence the difference in today’s performance Maximum throughput was achieved using 1450-byte packets (similar to Cisco’s competitor) Each profile was tested with 4000 active sessions with traffic distributed across.
CEF vs vBNG Performance
48
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
vBNG Orchestration
VMs Data Center
Indoor Hotspot
Residential / Community Wi-Fi
Metro W i-Fi
Wi-Fi Access
NFV Orchestrator
VM and Service Lifecycle Manager
VM & Storage
Orchestrator
Network Services Orchestrator (NSO) (Based on Tail-f NCS)
Netc
onf/Yang
Or
CL
I
REST API /
JCloud (Future)
OpenStack APIs
OVS VNF
VNF
x86 Server
REST/NETCONF
YANG
OpenStack
Elastic Services Controller (ESC)
49
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
physical CPE(s)
virtual CPE(s) 1:1 mapping over L2 connectivity
Virtual RG
M ultiservice Core Network
Large Scale Aggregation Network
Core Node CRS-3
Fiber, PON
Efficient Access Network
IP/MPLS Transport
Pre-Aggregation Node
DWDM, Fiber Rings, H&S, Hierarchical Topology
Aggregation Node
DWDM, Mesh Topology
IP/MPLS Transport
Aggregation Node CO Access Node OLT, FTTH: ME-4600
Ethernet Ring
H&S
Reduce home CPE to simple NID
Eliminate truck rolls for new
services
Introduce new services via software
upload
50
BNG Innovations PWHE access for BNG
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
EMSE ASR9K
Transport
Network
Residential
STB
Business
Corporate
Mobile 2G/3G / LTE
ASR9000 PE
L2/L3 VPN, BNG PW PW-
HE
IP/
MPLS Core VRF
BNG
VPLS/EVPN
1. Decoupling of service models from transport
2. Simplify transport models – Unified MPLS
3. Sonet/SDH like OAM and resiliency with MPLS-TP/MPLS-TE
4. Collapse Metro-PE and MSE
1. Leased transport or Multiple management domains
2. Multi-technology access/aggregation
3. SLA management
4. Capex optimizations
PW-HE – any service anywhere
PW
-HE
PW-HE - Flexible Service Deployment
52
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
• Support for PPPoE and IPoE
• QOS support at session including SPI,
PWHE subint and port level.
• Features such as http-r, ACLs, Accounting, CoA and LFI
• 64K dual stack and 128K IPv4 subscribers
• 8K PWHE
• Ambiguous VLANs on PWHE sub-interfaces
• Subscribers on VC type-4
and VC type-11 pseudowires
• Multicast replicated in PPPoE
• SPAN is not supported
• NV edge nor LAC/L3 connected
• LC Based subscribers
• Nv Satellite
Supported and Unsupported Features
53
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
LC type Access PW-HE hosting LCs Core facing LC support for PW-HE
traffic
Typhoon –SE LCs Supported Supported
Typhoon –TR LCs Not supported Supported
SIP-700 Not supported
(Limited coexistence only)
Not supported
(Limited coexistence only)
Trident based LCs
(-E/-B/-L versions)
Not supported
(Limited coexistence only)
Not supported
(Limited coexistence only)
RSP type Support
RSP-2 Not supported
RSP-440-SE Supported
RSP-440-TR Not supported
ASR 9000 PWHE + BNG Hardware Support
54
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
PW-HE-BNG - Hierarchical Egress QoS
Four levels of H-QoS at the BNG – Classification and queuing of traffic
at subscriber level – Subscriber level scheduling of traffic
across subscribers on same PW and VLAN Allows operators to offer different levels of
service to different subscribers
– Scheduling of traffic across VLANs on same physical ports Enables controlled partitioning of interface
bandwidth among residential and business services
Per subscriber:
1x Strict Priority Q – lev el 1
1x Strict Priority Q – lev el 2
1x Strict Priority Q – lev el 3
5x WFQs
L1=Port L2=PW L3=PPP/IP Session L4=Class
Per
subscriber:
Shaper, BW,
BRR
Per PW-HE
Interface:
Shaper, BW
BRR
RADIUS provisioned CLI provisioned
Access
Node
PPPoE/IPoE Session
Pseudowire
Subscriber Traffic
(H-QOS)
IP
BNG
55
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
PW-HE access for BNG (Use case)
MPLS
CORE
BNG Central Cluster
Geo Redundancy
AGG BNG
FULL Scale
10s of AGGR
Networks
MPLS
AGGR
PW
CAPEX SAVINGS
56
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Residential Services Session Redundancy, Virtualization, New Access
Pre-Aggregation Node
ASR-903, ASR-9001
DWDM, Fiber Rings, Mesh Topology DWDM, Fiber Rings, H&S, Hierarchical Topology Fixed and Mobile Access
Core Node
CRS-3
IP/MPLS Transport
IP/MPLS or Ethernet
Transport
Core Node
CRS-3
IP/MPLS Transport
Aggregation Node
ASR-9000
Aggregation Node
ASR-9001, 9006
Unified MPLS Network
IP
IP
Residential Community WIFI
IP
IP
Residential PON Homes
IP
IP
v CPE
Ethernet G.8032
Residential DSL Homes
IP
IP
RADIUS, Diameter
PGW
BRAS VNFs
EoMPLS PWE3
VXLAN VNFs
FMC Policy System Open Stack Orchestration
Legacy PPPoE DSL Homes
IP
IP IP
BNG PWHE+SRG, WAG
BNG SRG, mCLAG, G.832
Data Center Gateway
VXLAN
57
Cisco and/or its affiliates. All rights reserved. TECH-SP-4 Cisco Public
Key Points
MEF and Enterprise Services
– Highly flexible and optimal Access for nV
– Rapid Deployment, management simplicity, OPEX savings for MEF Services with ZTD NID
Residential Services
– Better Reliability for Access Models
– Cost effective migration of Services to Cloud
Cisco is a player in BNG
– Cisco BNG Innovations bring competitive advantages
Any virtualization attempt needs to be done knowing the tradeoffs and tweaks.
58
Take the opportunity to connect with us during 20 sessions and to find out more about: • Technical insights on the Internet of Things (IoT) • Routing: iWAN (Intelligent WAN) • SDN: APIC-EM for Enterprise and ACI for DC • Service Provider Innovations around SDN, Routing and Security • Latest Switching Innovations
University of Economics
Prague, Czech Republic 15.-16. July, 2015
59