nortel networks confidential passport 8600 routing switch release 3.3
TRANSCRIPT
NORTEL NETWORKS CONFIDENTIAL
Passport 8600 Routing Switch
Release 3.3
Presentation Name - 3NORTEL NETWORKS CONFIDENTIAL
CIO’s Priorities• Do more with less
• Drive employee productivity with IT
• Use IT to grow revenues
• Use IT to anticipate customer requirements
Tactical Strategic
Presentation Name - 4NORTEL NETWORKS CONFIDENTIAL
Needs of the future enterprise network
IP telephony succeedstraditional telephony
Business connectivityvia the internet
Internet
Consistent customer experience everywhere
Security for allapplicationsand services
Storage and networkingat light speed
Presentation Name - 5NORTEL NETWORKS CONFIDENTIAL
Key Requirements
• High Availability– 99999s Reliability means uptime all the time. Bandwidth,
Security and Quality of Service ensuring application delivery with fail-over schemes that preserve application integrity.
• Operational Simplicity– Simple to install, Simple to maintain, Simple to manage.
Reduced complexity through a ‘leaner’ more integrated intelligent infrastructure design.
• Low Cost of Ownership– Reduced purchase, installation and maintenance costs
through reduced complexity, the ability to consolidate resources and a lower box count.
Presentation Name - 6NORTEL NETWORKS CONFIDENTIAL
Applications Drive Infrastructure
• Streaming Video– Constant stream of data – no pauses or interruptions– Unidirectional – server to client– Low bandwidth – 2-4Mbps
• VOIP (IP Telephony) – Constant stream of data – no pauses or interruptions– Bi-directional – client to client or peer-to-peer– Very low bandwidth – 8kbps-64kbps
• Email– Sporadic bursts of traffic – varying size (attachments)– Bi-directional – client to server to client– Varying bandwidth - greedy, will take all available
Presentation Name - 7NORTEL NETWORKS CONFIDENTIAL
Two Tier Infrastructure design
EdgeHigh density 10/100 Ethernet ports for user connections and Gigabit Ethernet for riser connections. Access security controls and QoS mapping.
CoreHigh Density Gigabit Ethernet for riser connections. ATM, SONET and Optical connections for MAN/WAN access and L4-7 Applications switching for Data Center integration.
Presentation Name - 8NORTEL NETWORKS CONFIDENTIAL
What is required in a core switch ?
• Connectivity– Campus – Gig/10 Gig LAN
– Metro –XD Gig, WDM, Optical
– WAN – ATM,SONET, 10 Gig WAN
• Features– QoS enforcement and Queuing
– Redundancy with Hot Swap
– Application Switching (L2-7)
• Performance– Cross connect bandwidth
– Low Latency & Jitter
– Consistent throughput
Everywhere Else
Presentation Name - 9NORTEL NETWORKS CONFIDENTIAL
Passport 8600 Routing Switch
• Modular Platform– Passport 8000 family
– Layer 2 Switching
– Layer 3 IP, IPMC and IPX Routing
– Layer 4-7 Application Switching
• Ethernet– 10/100TX, 100FX
– Gigabit SX, LX, ZX, XD & CWDM
– 10 Gigabit LR & LW
• ATM and SONET– DS3, OC-3 and OC-12
– Gateway functions
– Switching/Routing done in Ethernet
Presentation Name - 10NORTEL NETWORKS CONFIDENTIAL
It fits in the wiring closet delivering high density (384) 10/100 Ethernet ports for user connections
It fits in the data center delivering high density L4-7 application switching for server selection & load balancing
It fits in the network center delivering high density (128) Gigabit Ethernet ports for aggregation, riser and MAN connections
It fits in MAN/WAN delivering Gigabit Ethernet, 10 Gig E, CWDM , ATM and SONET connections
Flexible Platform
Presentation Name - 11NORTEL NETWORKS CONFIDENTIAL
Resilient Platform
Power is Supplied here by up to 3 hot swappable AC or DC load sharing P.S.U.s
Heat is removed here by 2 hot swappable cooling modules
Packets are transported to the egress port here through 2 load sharing CPU/Switch Fabric modules
Connections are made and packets are processed in hardware here by up to 8 I/O modules
Presentation Name - 12NORTEL NETWORKS CONFIDENTIAL
Scalable Platform
Power
NEBS
CPU/Switch Fabric
Sparing Option 3 Slot 6 Slot 10 Slot 10 Slot CO
Cooling
10/100 96 192 384 384
Gigabit 32 64 128 128
Presentation Name - 13NORTEL NETWORKS CONFIDENTIAL
Passport Architecture
CPU/Switching Fabric Modules
CPUForwarding Table Processing
FABRICI/O Module Cross Connect
CPU/Switching Fabric Modules
CPUForwarding Table Processing
FABRICI/O Module Cross Connect
I/O Module
ASICLookup & Packet Processing
MEMORYForwarding & Filtering Tables
I/O Module
ASICLookup & Packet Processing
MEMORYForwarding & Filtering Tables
All Packet Processing occurs on the I/O Modules with lookup from in memory ensuring scalability and wire rate performance
Custom ASICs (RAPTARU) per port perform Packet filtering, forwarding, routing, security & QoS functions
All Packets take same path through shared memory switching fabrics to the egress port ensuring consistent low latency and jitter and unmatched multicast scaling
Presentation Name - 14NORTEL NETWORKS CONFIDENTIAL
Passport L2 Switching
• HA Mode– CPU mirroring ensures zero
impact failure
• Distributed MLT– Link aggregation over multiple
modules removes single point of failure.
• Split-MLT– Link aggregation used for network
resiliency
– Two switches act as one
– All links active and passing traffic
– No need for the additional complexity of multiple VLANs
Outer Switches dual-homed using standard link aggregation protocols.
Two Passport 8600s share forwarding tables and act as one through the IST.
“Split-MLT is the only mechanism that will protect sensitive applications like VOIP from network outages.”
Presentation Name - 15NORTEL NETWORKS CONFIDENTIAL
Passport L3 Routing
• Routing Protocol Support– RIP1,2, OSPF and BGP4
• VRRP Backup-Master– Simplifies network configuration
– Better network utilization
• VRRP fast interval timers– Faster VRRP fail-over
– Sub-second to match Split-MLT
• IP and IPX routing policies– Improved control of routes
– Increase security and control.
Backup-Master allows an 8600 that is in backup mode to route traffic
A Single Gateway address is now balanced across both Passport 8600s.
“Backup-Master simplifies network design by balancing traffic and reducing the number of subnets/DHCP scopes.”
Presentation Name - 16NORTEL NETWORKS CONFIDENTIAL
Passport L4-7 Application Switching
• Improved Network Utilization– Load balancing of IP applications
– Server selection with Health-checking
– Metering and controlling bandwidth usage
• Improved Performance– Appliance (Cache,SSL) redirection
– Streaming media (Language splicing)
– Providing fault tolerance
• Tighter Security– Network Address Translation
– DoS Attack buffer
– Processing traffic filters“The Alteon Web Switching module brings Alteon’s market leading L4-7 capabilities to the Passport 8600.”
Presentation Name - 17NORTEL NETWORKS CONFIDENTIAL
Passport Multicast
• Passport 8600 shared memory architecture is the basis of unequalled Multicast scaling and performance.
• PIM-SSM allows source specific multicast trees to be created, essential in mass multimedia (TV) applications.
• Fast join and leave capability improves stream setup time and reduces bandwidth.
PIM-SSM acts like a static route for multicast.
Fast join and leave allows selection of multicast stream just like TV channel hopping
Shared memory architecture delivers superior multicast performance
Presentation Name - 18NORTEL NETWORKS CONFIDENTIAL
Passport QoS• ASIC Based Flow Filters
– Security
– Wire Speed QoS
• Multi-level capabilities– Layer 2,3,4 and 7
– 802.1p (L2)
• Granular Queuing– 8 Hardware queues ensure
application delivery
• Multi-media filters– Pre-set VOIP and Multi-
media filters simplify QoS deployment.
FCSIP-SA TCP-PortDA SA DATAIP-DA
XCXC
“Passport Xpress Classification performs wire-speed lookup and packet classification on a per port basis.”
“With 8 hardware queues per port the Passport 8600 has QoS granularity for the most demanding environment.”
Presentation Name - 19NORTEL NETWORKS CONFIDENTIAL
Passport Configuration 1 2 3
1. Pick any starter pack.• 3, 6 or 10 slot chassis
2. Add redundancy options• Add additional power supplies
• Add a second switching fabric
3. Choose the I/O modules• ‘E’ or ‘M’ Modules
• Ethernet 10/100, Gigabit and 10Gigabit
• ATM/SONET DS3, OC3 and OC12
• Application Switching
Presentation Name - 20NORTEL NETWORKS CONFIDENTIAL
Passport Advantage
• High Availability– Industry leading reliability features deliver the only
networking solution capable of protecting sensitive applications like VOIP form network outages.
• Operational Simplicity– The simplistic approach to network design and deployment
with embedded intelligence further enhances reliability and at the same time reduces costs.
• Low Cost of Ownership– High Availability and Operational Simplicity combine to
deliver the best platform for One Network and increased ROI for the business.
Presentation Name - 21NORTEL NETWORKS CONFIDENTIAL
NORTEL NETWORKS CONFIDENTIAL
Campus LAN Solution
Presentation Name - 23NORTEL NETWORKS CONFIDENTIAL
Campus Architecture
Access LayerPCs, Printers, etc.
High Density 10/100L2 Ethernet switching
Aggregation LayerConsolidation point
Mixture 10/100 & GigabitL2/L3 Ethernet switching
CoreNucleus, Servers, Metro
High Density GigabitL3 Routing
Floor 1…………..Floor x
Building
Campus
Design IssuesAt layer 2 these extra links need to be blocked to prevent network loops. This is usually implemented using a protocol called spanning tree (802.1d)
Spanning tree protocol prevents these loops by deciding the best links to use and blocking all the rest.
Basically you’re paying for stuff you can’t use !
Presentation Name - 24NORTEL NETWORKS CONFIDENTIAL
Spanning Tree Features• Spanning Tree Protocol (STP)
– Provides redundant paths and detects loops in L2 networks– Redundant links are activated after failure– Redundant links are not utilized for data traffic– Slow network convergence - minimum of 30 seconds– Fast L3 redundant protocols like VRRP and OSPF depend on slow STP
convergence• Spanning Tree Protocol - Proprietary Hacks and Fixes
– Uplink Fast, Port Fast, Fast Start– Improves convergence time by 15-30 seconds– Bandwidth is still wasted by blocked ports
• 802.1w Rapid Spanning Tree Protocol– Faster convergence, 5 seconds on failure – Same re-convergence, 30 seconds plus on repair– Same restriction on redundant links
Spanning Tree will not protect applications
Presentation Name - 25NORTEL NETWORKS CONFIDENTIAL
S-MLT Link Aggregation
• Description– Split MLT makes the two core switches act
as one at Layer 2– Standard Link aggregation protocols used for
network resiliency as well as bandwidth– Both Links are active, appear as one, with
traffic balanced across all available links.• Advantages
– Less complex than spanning tree – Better bandwidth utilization– Faster Fail-over and recovery– Protects applications from outages– In service hitless upgrades
Our Fresh approach to the spanning tree problem
“Maintains state of voice and video sessions through fail-over”
“Extends reliability benefits to attached 3rd party switches through 802.3AD link aggregation”
Presentation Name - 26NORTEL NETWORKS CONFIDENTIAL
Passport 8600 Campus
10 Slot chassis with 10/100 blades, configured as an L2 edge device with QoS enforced through Diffserv marking and hardware queuing
3 Slot chassis with SX Gig blades, configured as an L2 aggregator device with QoS enforced through Diffserv interrogation and hardware queuing
6 Slot chassis with mixture of SX Gig and 10/100 Gig blades, configured as an L2 edge device in the server farm. Intelligent content switching through WSM blade.
10 Slot chassis with mixture of SX and LX Gig blades, configured as an L3 core routing device with IP routing and QoS enforced through Diffserv interrogation and hardware queuing
10 Slot CO chassis with mixture of SX, LX and XD Gig, configured as on ramp to Service provider OE network.
NORTEL NETWORKS CONFIDENTIAL
Low Cost Optical Metro Solution
Presentation Name - 28NORTEL NETWORKS CONFIDENTIAL
Metro Bandwidth Challenge
• New multimedia applications require more bandwidth– Multi channel Gigabit metro solution is the answer, but…– Normally this would require
• Multiple expensive leased fiber runs for resilience or• Expensive and complex DWDM equipment to reduce fibers
• Challenge is to provide High bandwidth services, while….
• Keeping leased fiber costs to a minimum• Without wasting fibers (dead sparing)• Maintaining reliability (Application state)
Presentation Name - 29NORTEL NETWORKS CONFIDENTIAL
3 Part Metro Optical Solution
1. Colored GBICs in Switches– Standard interface
– 8 ‘flavors’ Long reach (90km)
1. Optical MUX– Fiber Saver
– Distributed 10 Gig Solution
1. Optical Add/Drop MUX– Splits Wavelength in two
– Doubles the bandwidth
8 Gigs in One fiber Out
Breakout one, pass the rest
16 Gigs On a Single
Fiber
Presentation Name - 30NORTEL NETWORKS CONFIDENTIAL
CWDM Metro Design
OADMOADM
OADM
OMUX OMUX
8600 8600
Switch
Switch
Switch
‘RED’ channel used for additional IST link to increase bandwidth and redundancy in a distributed POP environment.
Gigabit channel bonded together with MLT for high bandwidth and faster fail-over
1 Gigabit East and 1 Gigabit West deliver resiliency
Simple plug and play operation reduces deployment costs
Presentation Name - 31NORTEL NETWORKS CONFIDENTIAL
NORTEL NETWORKS CONFIDENTIAL
Backup Information
Presentation Name - 33NORTEL NETWORKS CONFIDENTIAL
Ethernet Modules
• Hot swappable• Wire speed routing• Gigabit connectivity with copper and fiber
Module Ports Type Density8648TXE 48 10/100 BaseTX (RJ45) 384
8624FXE 24 100 BaseFX (MT-RJ) 192
8608SXE 8 1000 BaseSX (SC) 64
8608GBE 8 1000 Base GBIC (GBIC) 64
8608GTE 8 1000 BaseTX (RJ-45) 64
8616SXE 16 1000 BaseSX (MTRJ) 128
8632TXE 32+2 10/100 BaseTX (RJ-45)+GBIC 256+16
Presentation Name - 34NORTEL NETWORKS CONFIDENTIAL
ATM and SONET Modules
• Hot Swappable• RFC 1483 routed and bridged PVCs• 512 PVCs per Module
Module Ports Type Density
8672 ATME 2 MDAs4 port OC-3 1 port OC-12
16 OC-3s4 OC-12s
8683 PoSE 3 MDAs2 port OC-3 1 port OC-12
24 OC-3s12 OC-12s
Presentation Name - 35NORTEL NETWORKS CONFIDENTIAL
Forwarding
1. Packet arrives
SwitchFabric
XC
Me
mo
ry
To
I/O
ca
rd
To CPU
I/OInterface
PowerPCCPU
To
I/O
ca
rd
To
I/O
ca
rd
To I/O card
To I/O card
I/O Module
Switch Fabric/CPU Module
1
3
5
64
QueueManager
2. Queue Manager sends packet header to XC
3. XC implements packet policy, sends packet to Queue Manager
4. Queue Manager sends packet to Switch Fabric
5. Switch fabric schedules packet forwarding into one of eight queues based on priority
6. Packet is sent to outbound I/O card and buffered if necessary
2
7
7. Packet is transmitted on outbound interface
This Entire Process Always Takes Less than 10uS
Presentation Name - 36NORTEL NETWORKS CONFIDENTIAL
Learning
1. Policy downloaded by CPU to all XCs at startup Switch
Fabric
XC
Me
mo
ry
To
I/O
ca
rd
To CPU
I/OInterface
PowerPCCPU
To
I/O
ca
rd
To
I/O
ca
rd
To I/O card
To I/O card
I/O Module
Switch Fabric/CPU Module
1
3
All updates performedout of band
QueueManager
2. Route/SPT updates and unknown addresses passed to CPU
3. CPU copies new information to all XCs simultaneously
2