04 EVC and L2 Services

2009 Cisco Systems, Inc. All rights reserved.
Cisco Public Presentation_ID 1

ASR 9000 Training
Huqpac1pyk1ypa Cisco EVC u
L2 cepnucm
2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential BRKBBA-2002 2
O ueu nope1 peuu
! Huqpacfpykfypa Cisco EVC (Ethernet Virtual Circuit)
! L2 cepeucu u ux kouqurypauun ua rapupyfusafope ASR 9000:
L2 cepeucu foka-foka
Local Connect
EoMPLS
PW Redundancy
Multi-Segment PW
Muorofoeuue L2 cepeucu
Pokanuuan korryfauun (Bridging)
VPLS u H-VPLS
E-Tree cepeuc
! Kouqurypauun L2 cepeucoe ua Cisco 7600
.
Huqpacfpykfypa
Cisco EVC
! -fo fakoe Cisco EVC
! Kouqurypauun pnn ASR 9000
! Kouqurypauun pnn Cisco 7600
Access
Edge
BRAS
SR/PE
DPI
Core Network
MPLS /IP
Identity Address
Mgmt
Portal Subscriber
Database
Monitoring Policy
Definition
Billing
Content Farm
VOD TV SIP
DSL
Residential
STB
Content Farm
VOD TV SIP
Mobile
ETTx
PON
MSPP
Cable
Business
Corporate
Residential
STB
Policy Control Plane (per subscriber)
Aggregation
Fpauuua ce1u MetroEthernet - 1peonauun
Residential
Data/Voice
Business
E-LAN
Business
L3 VPN
Residential
IPTV/VoD Business
E-LINE
Oyukuuu rpauuuuoro yc1poc1na
Bcenosuoxume uukancynnuuu Ethernet (.1Q, QinQ, .1ad)
Fukan knaccuqukauun Ethernet qpeuon
Bosuoxuoc1u uauunynuponauun VLAN 1erauu
(poanneuue, cun1ue, nepesanucu)
Muoxec1no cepnucon ua opuou nop1y
Rokanuuan suauuuoc1u uouepon VLAN
Macm1aupyeuoc1u no uucny VLAN
Hepapxuuecku H-QoS
Coo1ne1c1nue c1aupap1au (IEEE, MEF, IETF, )
Besonacuoc1u, OAM, Hapexuoc1u u 1.p.
Ethernet/IP
orauuu
aoueuf 1 data/
VoIP 101
IPTV/VoD - 10
orauuu
aoueuf N data/
VoIP 200
IPTV/VoD - 10
Eusuec-aoueuf 1
L2 P2P 11
L2 MP 12
L3VPN - 13
Eusuec-aoueuf 2
L2 P2P 11
L2 MP 12
L3VPN - 13

oaenner S-tag pnn
upeufuqukauuu
usuec-aoueufa
Aggregation PE
MSE
BNG
Fukan rpauuua ce1u: Rpuuep
Mynu1unnekcuponauue cepnucon ua opuou nop1y
Mynufunnekcupoeauue cepeucoe: L2 u L3
cepeucu ua opuor nopfy ycfpocfea
arperauuu
Fukue rexauusru euopku u rauunynnuuu c
feraru VLAN
VLAN ua aoueufa/
cepeuc
Huqpac1pyk1ypa Cisco EVC pnn ASR 9000
EFP (Ethernet
Flow Point) unu
sub-interface
Knaccuqukauun
no VLAN ferar
Repesanucu
VLAN feroe
Pasnuuue
uukancynnuuu (.
1Q, QinQ, .1ad)
Ronufuku QoS
Fukan npuenska k ycnyrar
Cepeucu L2 u L3, P2P u MP opuoepereuuo ua opuor uufepqece
(H-)VPLS
EoMPLS PW
EoMPLS PW
EoMPLS PW
L3 SubI/F
X
Bridging
Bridging
Routing
IRB
Routing and Bridging
IRB
X
EVC ua IOS-XR u ua IOS
! Oman uac1u
Oan nporparruan uuqpacfpykfypa EVC
Ou qyukuuouan e acfu knaccuqukauuu no refkar VLAN, nepesanucu
refok VLAN u npuenske k cepeucar
! 7600 IOS
Knaccuqukauun no refkar VLAN, nepesanucu VLAN refok u npuenska k
cepeucar uacfpaueaefcn ua uufepqece, kak sfo npuunfo e IOS
Cneuuanuuan koucfpykuun service instance pnn uacfpoku EFP
Roppepka switchport (ue roef cocyecfeoeafu c EFP ua opuor qusueckor
uufepqece)
! ASR 9000 IOS-XR
Kouqurypauun uufepqecoe u cepeucoe paspeneua, kak sfo npuunfo e IOS XR.
Knaccuqukauun no refkar VLAN u ux nepesanucu onpepennefcn ua
uufepqece. Rpuenska k cepeucar u uacfpoka naparefpoe cepeucoe
npouseopufcn e ofpenuuor paspene kouqurypauuu l2vpn
Ou cfunu kouqurypauuu npu norou cauufepqecoe pnn L2 u L3
cepeucoe
EFP: Kouqurypauun n IOS XR (ASR9000)
interface <type> 0/0/slot/port.<sub-int-no> [l2transport]
<match criteria commands> (VLAN tags)
<IPv4/IPv6 commands> (L3 configuration)
<rewrite commands> (VLAN tags push/pop/translate)
<feature commands> (QoS, ACL, etc)
! IPv4/IPv6 koraupu ue roryf npureunfucn pnn cauufepqecoe
funa l2transport
! IPv4/IPv6 u L2 rewrite koraupu ue roryf npureunfucn
opuoepereuuo ua opuor cauufepqece
! Rpuenska k cepeucar ocyecfennefcn e ppyror (cepeucuor)
paspene kouqurypauuu
EFP: Kouqurypauun n IOS (7600)
interface
sub-interface
service instance X service instance Y

Per Port Per EVC
Features
Per Port Per EVC
Features
Per Port
Features
Per Sub-interface
Features (L3)
Layer 2 Services
Bridging (VPLS via SVI)
xconnect (EoMPLS)
Local Connect
L3/VRF termination
interface <type><slot/port>
service instance <id> ethernet <evc-name> "ID is per interface scope
<match criteria commands> "VLAN tags (CoS, Ethertype)
<rewrite commands> " VLAN tags pop/push/translation
<forwarding commands> "bridge-domain, xconnect or local connect
<feature commands> "QoS, ACL, etc
Knaccuqukauun no VLAN 1erau
RP/0/RSP0/CPU0:PE2-asr(config)#int gig 0/0/0/4.100 l2transport
RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation ?
default Packets unmatched by other service instances
dot1ad IEEE 802.1ad VLAN-tagged packets
dot1q IEEE 802.1Q VLAN-tagged packets
untagged Packets with no explicit VLAN tag

RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation dot1q 100-200,205 ?
comma comma
exact Do not allow further inner tags

RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation dot1q 100 second-dot1q 10-20,35 ?
comma comma

RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation dot1ad 20 dot1q 10-20 ?
comma comma

Double tag
Single tag
Multiple tag
uanasou feroe
.1q u/unu .1ad
Hecfporoe unu
cfporoe
conocfaeneuue
Untagged
Default tag
! Cisco EVC ropenu no yronauuk ucnonusyef npaeuno uecfporo
knaccuqukauuu
! Knkeeoe cnoeo exact ofreunef sfo npaeuno
! encap dot1q 10 coofeefcfeyef ecer kappar, urekur
eueuuu fer 10:

! encap dot1q 10 sec 50 coofeefcfeyef ecer kappar c eueuuur
feror 10 u enoeuuur feror 50

Knaccuqukauun c uec1poruu coo1ne1c1nueu
10
50 10
50
4 50
10
10
! EFP, urekue refop uukancynnuuu no yronauuk, npuuurakf
ece kappu, ue coofeefcfeykue ppyrur EFP ua pauuor nopfy
! Ecnu ua nopfy uacfpoeu fonuko EFP no yronauuk, fo e uero
ypef nonapafu eecu fpaquk nopfa (c feraru u es feroe)
VLAN 10
VLAN 20
Ro yuonuauum
VLAN 10
VLAN 20
VLAN 50
Bes 1era
Hu1epqec EFP
Ro yuonuauum
VLAN 10
VLAN 20
VLAN 50
Bes 1era
Hu1epqec
EFP
EFP: encapsulation default
Cisco EVC ropenu ucnonusyef npaeuno knaccuqukauuu c
uauonee nonuur coofeefcfeuer:
! kappu npuensueakfcn k EFP no ycnoeuk uauonee nonuoro
coenapeuun c uaopor knaccuquuupyerux none
H
u
f
e
p
q
e
c

10
200 10
100 10
130 10
VLAN 10
S-VLAN 10
C-VLAN 100
S-VLAN 10
C-VLAN 128-133
EFP
Rpanuno Longest Match
Rpanuno Longest Match: npuopu1e1m
! encap dot1q 10 second-dot1q 15-30 exact
! encap dot1q 10 second-dot1q 15-30
! encap dot1q 10 second-dot1q any
! encap dot1q 10-20 exact
! encap dot1q 10-20
! Untagged
! Encapsulation default
Repesanucu VLAN 1eron
RP/0/RSP0/CPU0:PE2-asr(config)#int gig 0/0/0/4.100 l2transport

RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag ?
pop Remove one or more tags
push Push one or more tags
translate Replace tags with other tags

RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag pop ?
1 Remove outer tag only
2 Remove two outermost tags

RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag push ?
dot1ad Push a Dot1ad tag
dot1q Push a Dot1Q tag
RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag push dot1q 100 ?
second-dot1q Push another Dot1Q tag
symmetric All rewrites must be symmetric

RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag translate ?
1-to-1 Replace the outermost tag with another tag
1-to-2 Replace the outermost tag with two tags
2-to-1 Replace the outermost two tags with one tag
2-to-2 Replace the outermost two tags with two other tags

Cunfu 1 unu 2 fera
oaeufu 1 unu 2 fera
Tpaucnnuun feroe
1-1
1-2
2-1
2-2
.
L2 cepeucu
foka-foka
! Local Connect
! EoMPLS
! PW Redundancy
! Multi-Segment PW
Local Connect
! Ckneueaef pea EFP,
pacnonoeuuux ua
opuor rapupyfusafope
! Hef sayueauun MAC-
appecoe
! Cornacoeauue VLAN
feroe epes rewrite
koraupu

EFP configuration under interface
Including VLAN tag encapsulation, tag
rewrite, Qo/ACL features, etc

Interface gig 0/0/0/1.101 l2transport
encapsulation dot1q 101 second 10
rewrite ingress tag pop 2 Symmetric

encapsulation dot1q 101

Service configuration under l2vpn

l2vpn
xconnect group cisco
p2p service1 " local connect
interface gig 0/0/0/1.101
MPLS
Osop EoMPLS
! MPLS cefu arperauuu u e nppe; Ouuu LDP (unu RSVP-TE) pnn nocfpoeuun MPLS
LSP repy PE (Oreu fyuuenuuuru refkaru)
! Cneuuanuuue (Targeted, pocnoeuo ueneeue) LDP ceccuu ycfauaenueakfcn repy
PE rapupyfusafoparu pnn oreua VC (unu cepeucuuru) refkaru
! Tyuuenuuue refku ucnonusykfcn ua nepepau nakefoe repy PE rapupyfusafoparu
! Cepeucuue (VC) refku ucnonusykfcn pnn onpepeneuun pasnuuux EoMPLS
neeeponpoeopoe
! Attachment Circuit (AC) sfo coepuueuue c CE, kofopoe roef ufu npepcfaeneuo kak
qusueckur nopfor Ethernet, fak u subinterface/EFP
Pseudowire
PE
P
PE
Ysen
poc1yna
LDP
LDP
Targeted LDP
Attachment Circuit
Attachment Circuit
P
Tunnel
label
Customer
PDU
VC label
Customer
PDU
Customer
PDU
Ysen
poc1yna
EoMPLS: kak uac1paunae1cn
! Hef sayueauun MAC-
appecoe
! Cornacoeauue VLAN
feroe epes rewrite
koraupu




l2vpn
p2p service2 " EoMPLS
neighbor 1.1.1.1 pw-id 22
EoMPLS: acnek1m kouqurypauuu (1)
! 3uaeuue MTU curuanusupyefcn repy peyrn PE u
ponuo coenapafu pnn ooux cfopou
nceeponpoeopuoro coepuueuun
! Cr. epesky e onucauuu naopafopuo paofu no
eonpocar npaeunuuo uacfpoku suaeuun MTU
EoMPLS: acnek1m kouqurypauuu (2)
! 3uaeuue VC Type (5=Ethernet, 4=VLAN) ponuo coenapafu ua
ooux PE
! VC Type 5 ue nepepaef service-delimiting VLAN fer
! VC Type 4 nepepaef service-delimiting VLAN fer
! ASR9000 u 7600 pnn EoMPLS ucnonusykf VC Type 5 no
yronauuk, c eosrouocfuk aefocornacoeauun unu
npuuypufenuuo uacfpoku VC Type 4
! nn VC Type 5 ASR9000 ue penaef ueneuux rauunynnuu c
feraru VLAN npu nepecunke qperoe repy AC u
nceeponpoeopor (kpore neuo onpepeneuuux korauparu
rewrite)
! nn VC Type 4 ASR9000 poaennef qukfueuu VLAN fer
(nocne rauunynnuu, onpepeneuuux korauparu rewrite) npu
nepecunke qpera us AC e nceeponpoeop u cuuraef sfof fer
npu nepecunke qpera us nceeponpoeopa e AC
! 3onofoe npaeuno: ecerpa ypannfe ece service-delimiting feru
korauparu rewrite ingress tag pop

CE
! Ecnu ofkasueaef PE3 unu PE-CE uufepqec ua PE3,
nceeponpoeopuoe coepuueuue euxopuf us cfpon
! Peueuue cospafu pesepeuu PW repy PE1 u PE4. Ecnu ocuoeuo
PW ofkaef, akfueupyefcn pesepeuu PW
! Ynpaeneuue nepeknkeuuer ocyecfennef PE1
P
P
P
P
P
CE
PE1
PE3
PE4
x
PW Redundancy
PW Redundancy Ckopoc1u nepeknmueuun
! Bpern nepeknkeuun PW onpepennefcn peyrn qakfoparu:
Bpern pefekfupoeauun con Primary PW
Bpern nepeknkeuun fpaquka ua backup PW
! Cocfonuue backup PW
Cold standby: Backup PWs ue curuanusupyefcn. Curuanusauun
Backup PW npouseopufcn fonuko forpa, korpa fpeyefcn
nepeknkeuue ua uero
Warm standby
[1]
: Backup PWs curuanusupyefcn ua ypoeue control-
plane uo ua ypoeue data-plane ou nennefcn ueakfueuur. AC Fault
code-point e LDP Status Message ucnonusykfcn pnn ofopaeuun
cfafyca backup PW, e MC-LAG ucnonusykfcn PW Preferential
Forwarding Status Bits
Hot standby: standby PW curuanusupyefcn ua ypoeue control plane
u data plane fak e nennefcn akfueuur, uo fpaquk e uero ue
korryfupyefcn. Kak fonuko primary PW euxopuf us cfpon, rouo
cpasy nepecunafu fpaquk epes Backup PW
Note [1] uuorpa sfof rexauusr fake uasueakf Hot-standby PW
PW Redundancy Ckopoc1u nepeknmueuun
Peanusauun ua ASR 9000
! Curuanusauun pesepeuoro PW no LDP:
Cold Standby: noeepeuue no yronauuk
Warm Standby: ecnu eeepeua koraupa pw-status e paspene l2vpn unu
uacfpoeu MC-LAG
Hot Standby: ue npureunefcn

! efekfupoeauue con Primary PW
Heucnpaeuocfu AC (uufepqeca k CE) efekfupyefcn nokanuuur PE u
curuanusupyefcn npu norou LDP PW status
Heucnpaeuocfu PE:
o Route watch. Rpu ucesuoeeuuu appeca loopback ypaneuuoro PE us fanuuu
rapupyfusauuu npoucxopuf nepeknkeuue ua backup PW
o T-LDP hello time out caru repneuuu cnoco
o VCCV over PW ucfpo, uo nnoxo racufaupyefcn
EoMPLS PW Warm-Standby Redundancy
! Backup PW uaxopufcn e peure warm standby
Backup PW is pre-signaled, control plane is active, however, the
forwarding plane is down. So called warm standby PW
VCCV can go through backup PW to verify PW connectivity, but the
end user traffic wont pass
Upon detecting primary PW down, PW status message is sent to
bring up backup PW forwarding plane
PW status need to be enabled on ASR 9000 (it is disabled by default)
! Opafuu nepexop ua ocuoeuo PW
PW fail back to original primary PW only if the original primary PW is
ready
! PW Redundancy paofaef u c MS-PW
PW redundancy is only configured on the T-PE, not S-PE. Any PW
segment failure in the primary path will cause the T-PE switchover to
backup PW
ASR 9000 L2VPN PW Redundancy
Kako qyukuuouan noppepxunae1cn
! P2P EoMPLS PW redundancy
! H-VPLS spoke PW redundancy
! One-way PW redundancy and two-way PW redundancy (with MC-LAG)
! PW status message (warm standby PW)
! MC-LAG PW Preferential Forwarding Status Bits (warm standby PW)
! VPLS/H-VPLS: LDP MAC withdrawal
! MS-PW PW redundancy (PW redundancy is configured ONLY on the
terminate PE, not stitching PE)

PW Redundancy: kak uac1paunae1cn

Including VLAN tag encapsulation,
tag rewrite, Qo/ACL features, etc



L2vpn
pw-status " Enable PW status signalling (Warm-standby PW redundancy)
backup neighbor 2.2.2.2 pw-id 33 " PW Redundancy
Multi-Segment Pseudowire (MS-PW)
3aueu a1o uyxuo
! Oecneeuue esauropecfeun repy peyrn uesaeucururu MPLS
poreuaru
! Roppepka cyecfeykero pusaua cefu c ueckonukuru poreuaru
AS3 AS2
AS1
Subscriber1 Subscriber1
SubscriberN SubscriberN
ASBR1 ASBR2
AS 1
AS 2
PE2 PE1
Multi-Segment Pseudowire (MS-PW)
Kak a1o pao1ae1
MPLS MPLS
MPLS link
Multi-segment PW
Uenoka nceeponpoeopoe opasyef opuu MS-PW of PE1 po PE2 epes
ueckonuko aefouoruux cucfer
ASBR nennefcn S(witching)-PE
S-PE ckneueaef pea nceeponpoeopa
Take noppepueaefcn ua 7600 (kouqurypauuouuue koraupu
ofnuakfcn)
S-PE
T-PE
S-PE T-PE
l2vpn
p2p service-interas
ASR 9000 MS-PW Feature Supported
! Only LDP is supported (no BGP-AD) at S-PEs
! At T-PEs, the PWs can belong to a xconnect (VPWS) or to a bridge-domain
(VPLS)
! Each PW segment can be dynamic or static
! LSP ping and traceroute. New LDP PW Switching Point TLV (S-TLV) is
supported. S-TLV can be hidden for security
! PW redundancy is supported at T-PEs but not at S-PEs
! S-PEs relay LDP Mac Withdrawal messages from one PW segment to the
other
.
Muorofoeuue
L2 cepeucu
! Pokanuuan korryfauun (Bridging)
! VPLS u H-VPLS
VPLS (Virtual Private LAN Services)
! Attachment Circuit (AC) nopknkeuue k cefu arperauuu c norouk
Ethernet VLAN
! Virtual Circuit (Rceeponpoeop) EoMPLS fyuuenu repy PE
ycfpocfearu, opasykue nonuocensauuyk fononoruk
full mesh
! Virtual Forwarding Instance (VFI) Bupfyanuuu L2 korryfafop c
uufepqecaru AC u VC (nceeponpoeoparu);
VFI=VLAN=uupokoeeafenuuu poreu
Ysen
Arperauuu
MPLS
ce1u
arperauuu
VFI
VFI
VFI
Attachment
Circuit
Rop1 unu VLAN
Virtual Forwarding
Instance -
Bup1yanuum
kouuy1a1op
EoMPLS ncenponponop
Ysen
Arperauuu
Ysen
Arperauuu
Ysen
oc1yna
Ysen
oc1yna
VPLS Layer 2 Packet Forwarding
! Flooding/Forwarding
Korryfauun ocuoeaua ua [VLAN, Destination MAC Address]
Unknown Ucast/Mcast/Broadcast pennukauun ua ece nopfu
! MAC Learning/Aging/Limit
Dynamic learning based on Source MAC and VLAN
Refresh aging timers with incoming packet
MAC address table limit per VFI (VLAN)
MPLS
SVI
SVI
SVI
AC
PW
VPLS Pesepnuponauue u npepo1npameuue
ne1enu
! Aoueu1ckue STP BPDU nepepam1cn npospauuo unu
o1pacmnam1cn, norpauuuume uapmpy1usa1opm ue npuuuuam1
yuac1un n noc1poeuuu aoueu1ckux STP pepenuen
! B VPLS ucnonusye1cn nonuocnnsauuan 1ononorun PW +
npanuno split horizon pnn oecneueuun pesepnuponauun u
npepo1npameuun opasonauun ne1enu
! Full mesh PW uexpy nceuu PE, yuac1nymmuuu n
npepoc1anneuuu cepnuca
! Split horizon 1paquk, nonyueuum us ce1u MPLS no PW,
uukorpa ue nepepae1cn opa1uo n ce1u MPLS (no 1ouy xe unu
ppyrouy PW). Tpaquk nepepae1cn 1onuko ua AC.
Hcknmueuueu nnnnm1cn cneuuanuume PW, c nouomum ko1opmx nopknmueum Spoke
ysnm H-VPLS
MPLS
SVI
SVI
SVI
AC
PW
H1o 1akoe H-VPLS? Macm1auponauue
! Ronuocensauuu uaop PW
! Eonuuo signaling overhead
! Pennukauun nakefoe ua rpauuue
! Heoxopurocfu kouqurypauuu
kaporo PE e cefu (npu
poaeneuuu uoeoro PE)
! Ronuocensauuu uaop PW fonuko e
nppe
! Muuuranuuu signaling overhead
! Pennukauun nakefoe fonuko e nppe
! Cokpaeuue poreua
kouqurypupoeauun
Rnocku VPLS H-VPLS
H-VPLS - Rpuuep
N-PE1
MPLS
N-PE2
N-PE10
10.0.2.2 / 32
10.0.2.10 / 32
10.0.2.1 / 32
Gig 6/2
Gig 1/2
Gig 1/2
CE1 1.1.1.1
2222.2222.2221
CE2 1.1.1.2
2222.2222.2222
CE10 1.1.1.10
2222.2222.222a
MPLS
SVI
SVI
SVI
CE4 1.1.1.4
2222.2222.2224
CE3 1.1.1.3
2222.2222.2223
4peru, nonyeuuu of Split-Horizon(SH) PW, ue nocunakfcn e ppyrue SH PWs, uo
ofnpaennkfcn e No-Split-Horizon(NSH) PWs. 4peru, nonyeuuue us NSH PWs,
nepecunakfcn kak e SH fak u e NSH PWs
Hub PE npouseopuf pekancynnuuk u uukancynnuuk EoMPLS pnn korryfauuu qpera
repy PW
nn Spoke PE ueoxopuro
euknkufu npaeuno split-horizon
nn Spoke PE
oukuoeeuuu EoMPLS,
ue fpeyefcn
kouqurypauuu VPLS
L2 Multipoint cepnucm: kouqurypauun
l2vpn
bridge group cisco
bridge-domain domain1 " nokanuuan korryfauun
Interface gig 0/0/0/1.101
split-horizon group " sanpef nokanuuo korryfauuu euyfpu rpynnu (onuun)
split-horizon group

bridge-domain domain2 " vpls
vfi cisco

bridge-domain domain3 " h-vpls
neighbor 192.0.0.3 pw-id 100 " spoke PW
vfi cisco " core PWs
neighbor 192.0.0.1 pw-id 100 " core PW
MAC Learning ua ASR 9000
NP0
PHY
NP2
PHY
NP3
PHY
NP1
PHY
FIA
CPU
NP0 PHY
NP2 PHY
NP3 PHY
NP1 PHY
FIA
CPU
Switch
Fabric
MAC learning/aging/flushing ocyecfennefcn
annapafuo cefeeuru npoueccoparu
! Pacnpepeneuum annapa1um MAC Learning
MAC learning /aging/flushing ocyecfennefcn cefeeuru npoueccoparu (NP)
ua nuueuux kapfax
Ckopocfu sayueauun MAC appecoe 4-5 runnuouoe e cekyupy (annapafuo)
! Cuuxpouusauun 1anuum MAC appecon uexpy NP
Bce MAC appeca useecfuu ecer NP e cucfere
Cuuxpouusauun MAC appecoe ocyecfennefcn cneuuanuuuru MAC
notification cooeuunru, kofopue peanusoeauu e data-plane microcode

MAC Learning ua ASR 9000 (2)
! Macm1auponauue MAC appecon - Trident kap1m
MAC appeca xpaunfcn e cneuuanuuo onacfu narnfu cefeeoro
npoueccopa, kofopan ucnonusyefcn pnn xpaueuun L3 FIB/ADJ u L2
MAC fanuuu
Mouo eupafu opuu us ueckonukux npoqune ucnonusoeauun
sfo narnfu. Rpoqunu no yronauuk paef 512K MAC appecoe,
L3 npoqunu - 128K MAC, XL-L3 - 32K MAC uo npu sfor onuuoe
kon-eo L3 FIB sanuce 1.3 Mnu
! Macm1auponauue MAC appecon - Typhoon kap1m
MAC appeca xpaunfcn e ofpenuuo (of L3 FIB) onacfu narnfu
cefeeoro npoueccopa, ofcyfcfeyef kouuenuun profile
2M MAC appecoe opuoepereuuo c 4M IPv4 appecaru

RP/0/RSP0/CPU0:PE1(config)#hw-module profile scale ?
default Default scale profile
l3 L3 scale profile
l3xl Extra large L3 scale profile
Kak nocuo1pe1u MAC 1anuuy
! Heoxopuro npoufafu MAC fanuuy us NP npepe, er nokasafu ee ear epes CLI
! Hauuan c penusa 3.9, pnn npocrofpa akfyanuuo fanuuu ueoxopuro epyuyk sanycfufu
npouecc cuuxpouusauuu. Pauee (3.7.x penusu) pecuuxpouusauun ocyecfennnacu
aeforafuecku
! Hauuan c 4.0 peanusoeau pononuufenuuu qyukuuouan. Ecnu oee ucno MAC appecoe
reuuue 16K, ocyecfennefcn aeforafueckan cuuxpouusauun, uuae cucfera eepef cen
kak e penuse 3.9.
! Koraupa ofopaeuun fanuuu MAC appecoe cooaef, ckonuko epereuu npouno c
roreufa nocnepue cuuxpouusauuu
! 4opeappuur ocyecfennefcn no annapafuur fanuuar, cuuxpouusauun enunef fonuko ua
eueop CLI koraup
show l2vpn forwarding bridge-domain mac-address loc 0/7/CPU0
To Resynchronize MAC table from the Network Processors, use the command...
l2vpn resynchronize forwarding mac-address-table location

Mac Address Type Learned from/Filtered on LC learned ResyncAge Mapped to
--------------------------------------------------------------------------------
0000.5e00.0101 dynamic Te0/7/0/1.100 0/7/CPU0 0d 0h 34m 40s N/A
! After issuing the resync command, an info message will indicate when sync is
complete.
l2vpn resyn forwarding mac loc 0/7/CPU0

l2fib[189]: %L2-L2FIB-5-MAC_TABLE_RESYNC_COMPLETE : The resynchronization of
the MAC address table is complete 0/7/CPU0
.
Muorofoeuue
L2 cepeucu
! E-Tree

E-Tree cepnuc - Split-horizon
L2VPN E-Tree service configuration example

l2vpn
bridge group cisco
bridge-domain domain1
split-horizon group " optionally on AC
split-horizon group " optionally on access PW
split-horizon group " optionally on access PW
BD
Leaf

Leaf

Leaf

Root

H-VPLS
spoke PW

L2 AC

Rpaeuna pnn E-Tree:
Root roef oafucn c leaf
unu leaf roef oafucn c root
leaf ue roef oafucn c leaf
.
L2VPN Cepeucu ua 7600
! Kouqurypupoeauue L2 VPN P2P u P2MP
cepeucoe ua 7600
EFP: Kouqurypauun n IOS (7600)
interface
sub-interface
service instance X service instance Y

Per Port Per EVC
Features
Per Port Per EVC
Features
Per Port
Features
Per Sub-interface
Features (L3)
Layer 2 Services
Bridging (VPLS via SVI)
xconnect (EoMPLS)
Local Connect
L3/VRF termination
interface <type><slot/port>
service instance <id> ethernet <evc-name> "ID is per interface scope
<match criteria commands> "VLAN tags (CoS, Ethertype)
<rewrite commands> " VLAN tags pop/push/translation
<forwarding commands> "bridge-domain, xconnect or local connect
<feature commands> "QoS, ACL, etc
SVI
SVI
S
V
I

S
V
I

VPLS
Local Connect Bynanka
Bridging
EoMPLS
connect test gig1/0/0 10 gig1/0/1 20
xconnect
interface vlan 100 **
xconnect !/!"!
IP address
L3*

bridge-domain 100 [split-horizon]***

EoMPLS
EFP
EFP
EVC: Rpunnska k cepnucy
*** Heckonuko EFP oLepuunkfcn e opuu ou rnoanuuu VLAN pnn L2 korryfauuu;
onuun split-horizon pnn paspeueuun/sanpefa nokanuuo korryfauuu fpaquka repy EFP
BD
** L2/L3 cepeuc accouuupyefcn c bridge-domain (rnoanuuu VLAN)
* L3 fepruuauun eosroua ua Switched Virtual Interface (SVI) unu ua sub-interface
EVC Configuration Comparison (1) L2VPN P2P service
ASR 9000 7600
Local Connect
interface GigabitEthernet4/1/0
service instance 101 ethernet


connect eline-101 GigabitEthernet4/1/0 101
GigabitEthernet4/1/1 100
EoMPLS
encapsulation dot1q 101 second-dot1q 60-70
xconnect 10.0.0.3 101 encapsulation mpls

PW stitching
l2 vfi tac-training point-to-point
neighbor 10.0.2.3 3001 encapsulation mpls
neighbor 10.0.2.2 3000 encapsulation mpls





l2vpn
p2p service1 " local connect
p2p service3 " PW stitching

EVC Configuration Comparison (2) L2VPN MP bridging
ASR 9000 7600
Local Bridging
encapsulation dot1q 101-1000
bridge-domain 100 split-horizon

encapsulation dot1q 101-1000
(H-)VPLS &
SVI based
EoMPLS


l2 vfi vpls-20 manual " VPLS
vpn id 120
neighbor 10.0.0.1 encapsulation mpls " core PW
neighbor 10.0.0.2 encapsulation mpls no-split-
horizon " spoke PW
neighbor 10.0.0.4 encapsulation mpls

interface Vlan20 " (H-)VPLS
xconnect vfi vpls-20

interface Vlan20 " SVI EoMPLS
xconnect 10.0.0.1 101 encap mpls


Same as L2VPN P2P services


l2vpn
bridge group cisco
bridge-domain domain1 " local bridging
split-horizon group
split-horizon group

bridge-domain domain2 " SVI EoMPLS

bridge-domain domain3 " vpls & h-vpls
neighbor 192.0.0.3 pw-id 100 " spoke PW
vfi cisco " core PWs under VFI config

Category Feature Name ASR 9000 7600 ES+
EVC Flexible VLAN tag classification Y, has exact option Y
Flexible Ethertype Y, per EFP based
88a8 and 8100 from FCS
9100 and 9200 support in 3.9.1.
Y, per port based,
support 88a8, 8100, 9100 and 9200
Flexible tag rewrite Y, all Y, all
Flexible service mapping Y, all Y, all
Split-horizon on EFP Y, one group Y, one group
L2VPN Local connect Y, support hair-pinning on same port Y, support hair-pinning on same port
P2P EoMPLS Y, user configurable and auto negotiated
VC type
Y, auto negotiated VC type. User
configurable (SRE)
SVI based EoMPLS (see
previous slide for the config on
asr9k)
Y, under bridge-domain configuration. VC
type 5 only, doesnt support PW
redundancy
Y, under SVI,. User configurable
(SRE) auto negotiated VC type
BGP signaling for EoMPLS Y N
VPLS and H-VPLS (both
Ethernet and MPLS access)
Y, VC type 5 only Y, auto negotiated VC type, user
configurable (SRE)
PW redundancy, with PW status Y, user can enable/disable MAC
withdrawal by CLI
Y, MAC withdrawal always on
VPLS MAC withdrawal Y, user can enable/disable MAC
withdrawal by CLI
Y, MAC withdrawal always on
BGP signaling and auto-
discovery for VPLS
Y N
LDP signaling with BGP AD 3.9.2 Y
CE Features High Level Comparison (1)
L2VPN
Inter-AS
MS-PW (point-to-point PW only) Y, static stitching Y, static stitching
Inter-AS option A Y Y
Inter-AS option C Y Y
OAM 802.3ah Y Y
CFM Y, 802.1ag-2007
pre-standard is NOT supported
CFM over bundle in 3.9.1
CFM Exploratory Linktrace
CFM automatic linktrace
Y, pre-standard, D1.0
802.1ag-2007 support in SRE
CFM over bundle in SRE
Y.1731 Performance monitoring in 3.9,
AIS in 3.9.1
AIS in SRD, ETH LCK SRE
Performance Monitoring RLS8 or
later
E-LMI 4.1 or later Y

QoS Ingress and egress hierarchical
queueing/scheduling
Y, 4-level, support shared policy
instance; ANCP, 2 PQ
Y, 4- level with SG in SRE, 3-level.,
EVC,SG, ISG sessions, 2PQ
Ingress and egress hierarchical
policing
Y, 2-level hierarchical Y, 2-level hierarchical
classification Flexible L2-L4 classification, 2
tags aware, qos-group, discard-
class support
Flexible L2-L4, 2 tags aware
marking All, CoS/DSCP transparency All, CoS/DSCP transparency
CE Feature High Level Comparison (2)
L2
Convergence
MST access gateway Y, inter-operate with REP access SRE release
MST over special PW N/A, use MST access gateway Y
REP N EVC support in SRE
REP access gateway 3.9.1 (not true/full REP) N/A, use REP
Flexlink N Not with EVC
PVST N Not with EVC
mLAG 4.0 SRE
L2 Security Storm Contol Y, per EFP or access PW Y, (PW support?)
MAC limit Y, per EFP/PW or per BD Y, (PW support?)
MAC security 4.0.1 Y
DHCP snooping Y (with option 82), not support
over PW
Y with option 82
DAI 4.0.1 Y
IP source guard 4.0.1 Y
CE Feature High Level Comparison (3)
Feature Name ASR 9000 (3.9 release) 7600 ES+ only (SRE release)
MAC address 512K 96K global space, 1M for 802.1ah
EFP 64K 32K
Local connect 32K 16K
P2P EoMPLS 64K 32K
Bridge-domain/VFI 8K 4K
VFI PWs 32K 30K
EFPs per BD 8K 440 per LC per BD
PWs per VFI 512 110
T-LDP session 1K tested 1.7K tested
L3 interface 4K (co-exist with 8K bridge-domain) 4K
L3 VRF 4K 1K (2K SRE /w restrictions)
CFM MEP 32K, minimal CC hello 100msec,
distributed
8K at CC 10s, min CC hello 100ms
32K release RLS8 (distributed CFM)
CFM MIP 32K, distributed as above
802.1ah Please refer to 802.1ah section
CE Scales High Level Comparison
L2 Protocol Tunneling
! IEEE slow protocols (802.3ah, LACP, marker) are never forwarded; always terminated and
locally processed.
This will be enhanced in 4.0 where an option will be added to enable transparent forwarding
of these.
! All other IEEE and Cisco-proprietary protocols are forwarded transparently by default if the
incoming logical port/ EFP is in L2 mode.
! L2 control protocol packets are classified based on port and VLAN tags just like any other data
packets.
! MSTP BPDUs are processed only if received untagged and MSTP is locally configured
! If a tagged control protocol packet is received, it is treated and forwarded like a data packet.
! Cisco L2PT is the only option which can process tagged control protocol packets.
! Ethernet Filter is a option to set a port in dot1q or dot1ad mode. If set, untagged control
protocol packets are handled acc to 80.1Q and 802.1ad rules.
! Ethernet filter setting takes priority over L2PT.
! encap untagged and encap default EFPs inherit the Ethernet filter setting. Other EFPs do
not.
! Normal ACLs are only applied to switched/ forwarded packets. Never to punted packets.
! MSTP does not currently work correctly on a port that has encap untagged or encap default
EFPs configured. Needs to be fixed asap.
! Additional issues wrt OAM + untagged EFPs. Need to be fixed asap
!

04 EVC and L2 Services

Hochgeladen von

Dokumentinformationen

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

04 EVC and L2 Services

Hochgeladen von

Copyright:

Verfügbare Formate

2009 Cisco Systems, Inc. All rights reserved.

Cisco Public Presentation_ID 1

Das könnte Ihnen auch gefallen