ODN 000103 Quidway MA5200G System Overview and Hardware

ODN 000103 Quidway MA5200G System Overview and Hardware
ISSUE 1.0
Fixed Network Curriculum Development Section
Objectives
Upon completion of this course, you will be able to

Grasp the system structure and basic working theory
Understand the service features of MA5200G

Describe networking solution Describe the technical specifications
Confidential Information of Huawei. No Spreading without Permission.
Security Level: Internal
Contents
System Overview Hardware Introduction Service Features Networking Application Specifications
System Overview
Huawei
MA5200G
Broadband
Access
Server
(hereafter called the MA5200G) aims to overcome the inherent deficiencies of the broadband network technology, such as poor user management capability, poor service control capability, and
unreliable network security.
System Overview
The
MA5200G
series
includes
MA5200G-8,
MA5200G-4 and MA5200G-2. The three types of products use the same kind of Service Forwarding Unit (SFU), and are consistent in functional features.
The major differences lie in the quantity of access users allowed in the system and the switching capacity.
System Overview
The MA5200G is applicable to various access networks, including Ethernet, Digital Subscriber Line (xDSL) network, Hybrid Fiber-Coaxial (HFC) network, & Wireless LAN (WLAN).
It provides the functions of user management,

accounting control, address management, service control, and security management.
Features

Powerful route forwarding function Larger capacity and high integration Flexible network interfaces Diversified access modes Flexible authentication methods Effective IP address solution Completed accounting scheme Enriched service control policies Powerful network security management
MA5200G Typical Networking
Contents
System Overview
Hardware Introduction Service Features Networking Application Specifications
AppearanceMA5200G-8
Fan Module
SFU SFU SFU SFU SMUSMU SFU SFU SFU SFU
Cabling Trough Air Intake Power Supply Module

Power Supply Module
10
AppearanceMA5200G-4
SMU SMU SFU SFU SFU SFU Power Supply Module Power Supply Module Fan
11
AppearanceMA5200G-2
SMU SFU SFU Fan
Power Supply
Power Supply
12
Hardware components
Integrated chassis
19-inch standard chassis Integrated with one high-speed passive backplane, two power modules and one fan module.
SMUService Management Unit

Includes the main control system, the switching system and the clock system.
Provides the functions of system management, equipment maintenance,
routing management, data switch, and the provisioning of clock signals.
Supports hot plugging and "1+1" hot backup.
13
Hardware components
SFUService Forwarding Unit
Provides
the
functions
of
user
access
control,
user
management and service forwarding

Provides various network interfaces It adopts a high-performance NP (network processor) to satisfy the requirements of flexibility and high performance of the services.
14
Hardware ComponentsSystem Frame
Power supply
NP Powered Service board
Fan
SMU board
(redundance)
Service board
switch
Service board
control
Clock
Service board
Service board
Service board
Service board
Service board
Passive backboardswitching capacity 256Gbps Non-blocked switch 88/44 crossbarinterface and channel capacity 8Gbps switching capacity 64Gbps
Distributing service boardhigh capability CPUNP service controlASIC

15
Hardware componentsSMU
SMU Module SMU SMUC Describe With 64Gbps switching capabilities, it can be used on all MA5200G platforms With 16Gbps switching capabilities, it can only be used on the MA5200G-2 platform.
SMU includes main control CPUswitching board and clock system SMUC includes main control CPU clock system but it has no switching board; Main control CPU provides system management route service control Non-blocked switch by switching board
16
Hardware componentsSFU
Composed of the CPU subsystem and NP subsystem.
CPU
(Control) Control channel Extermal interface Control channel
Internal interface Data channel
Data channel
NP
(Policy-based forwarding)
The CPU subsystem is responsible for the processing of routing protocols, user access control packets and user access procedures. It also manages the SFU module, and controls the user service management policies of the NP subsystem. The NP subsystem processes user data packets according to the defined policies, and queries the routing table for packet forwarding.
17
Ethernet interface
SFU
CR-EG8FE CR-EG8FS CR-EG8FM CR-EGFE CR-EGFS CR-EGFM CR-E1GC CR-E2GC CR-E4GC
Description
8 port electric FE interface card100mRJ45 8 port single mode optical FE interface card 1310nm15km LC 8 port multi-mode optical FE interface card 1310nm2km LC 16 port electric FE interface card 100mRJ45 16 port single mode optical FE interface card 1310nm 15kmLC
16 port multi-mode optical FE interface card 1310nm2km LC

1 port 1000BASE GE interface card GBIC 2 port 1000BASE GE interface card GBIC 4 port 1000BASE GE interface card GBIC
18
ATM interface
SFU
CR-A4CM
Description
4 port 155M ATM multi-mode optical interface card 1310nm2kmLC 4 port 155M ATM single mode optical interface card 1310nm15kmLC 8 port 155M ATM multi-mode optical interface card 1310nm2kmLC 8 port 155M ATM single mode optical interface card 1310nm15kmLC
CR-A4CS
CR-A8CM
CR-A8CS
19
POS interface
SFU
Description
4 port 155M POS multi-mode optical interface card 1310nm 2kmLC 4 port 155M POS single mode optical interface card 1310nm 15kmLC 2 port 622M POS multi-mode optical interface card 1310nm 500mSC 2 port 622M POS single mode optical interface card 1310nm 15kmSC 1 port 2.5G POS multi-mode optical interface card 1310nm 2kmLC 1 port 2.5G POS single mode optical interface card 1310nm 15kmLC 1 port 2.5G POS single mode optical interface card 1310nm 40kmLC 1 port 2.5G POS single mode optical interface card 1550nm 70kmLC
POS
20
Contents
System Overview
21
Service Features
Route forwarding
Address management Security management multicast management QoS VPN
User access
AAA & Radius Users accounting
Users management
22
Routing Ability
Unicast RIP OSPF BGP IS-IS
Supporting up to 256K unicast routes

Multicast IGMP PIM-DM PIM-SM MSDP
Supporting up to 10K multicast routes

Forwarding capabilities The MA5200G-2 has 6Mpps forwarding capabilities.
The MA5200G-4 has 12Mpps forwarding capabilities.

The MA5200G-8 has 24Mpps forwarding capabilities.
23
User Access--Various Access
MA5200G
FE FE FE ATM
LAN Switch
AP
CMTS
DSLAM
Ethernet
WLAN
HFC
xDSL
24
User Access--Logical Ports
MA5200G
MA5200G
PORT1
PORT2
LAN Switch
VLAN1 VLAN2 VLAN1 VLAN2 PORT1 +VLAN1 PORT1 +VLAN2 PORT2 PORT2 +VLAN1 +VLAN2
25
User AccessTypes of Users
Ordinary subscriber VLAN subscriber (support static user) ATM subscriber (support static user) Leased line subscriber VLAN leased line Layer 2 access Layer 3 access PPP leased line
26
User Authentication
Access equipment Access mode
PPPoE LAN Switch IP DSLAM DHCP
Authentication modes
PPP Binding authentication Web authentication Fast authentication Binding authentication
IPoEoA ATM DSLAM
Web authentication
Fast authentication
PPPoA PPP
PPPoEoA
PPP
27
User Authentication
The MA5200G conducts authentication for users. It supports Local authenticationRemote authentication:
Authentication policy None Local Remote Local Remote Remote Local
28
User Accounting
Accounting policy
No accounting Radius accounting Time/traffic based accounting Real-time accounting Switching of charging rates Accounting information storage (Rom 48KHard disk 256K)
Sending user's accounting information

based on ISP/physics station Accounting failure policy: 256 policies
Confidential Information of Huawei. No Spreading without Permission. Security Level: Internal
29
User Management
Based on the logical port (Physical PORTVLAN/PVC), it can greatly enhance the granularity of user .

Access user types on the logical ports Authentication modes on the logical ports
Quantity of access users using the logical ports

User access based on the logical ports Leased line access based on the logical ports Quantity of online users sharing the same account
Binding user accounts based on the logical ports

User group based access User group based mutual access Bandwidth control
30
Address Management
Allows a user to access the network with a configured static IP address or with a dynamic IP address
MA5200G supports the built-in DHCP server, DHCP relay and DHCP proxy
It can allocate an address to the user from the local address pool or remote address pool
The IP address can be allocated to the user through the

RADIUS server .
Supports up to 4K address pools, and can maximally manage
96K IP addresses in the local and remote address pools.
31
Security Management
MAC address IP address
logical ports access port +VLAN ID/PVC
+
PPPoE Session ID
binding
Resource protection
Rate limitingbased on physical ports, MAC addresses, IP addresses, and user accounts. Through rate limiting, the
MA5200G ensures that no user can maliciously occupy

bandwidth.
32
Security Management
Access control Through the standard ACL or EACL, the MA5200G implements fine control over user access authorities. Based on the user access control policies, the MA5200G classifies users into different groups for management.
Sophisticated ACL functions include:

Standard ACL Extended ACL (EACL) User-based ACL (UCL)
33
Security Management
34
Security Management
35
QoS
Supports the Differentiated Services (DiffServ) model
Supports eight levels of user priorities

Supports the mapping between Class of Service (CoS) codes and Differentiated Services Code Point (DSCP) codes
According to different user priorities, differentiated services will be carried out ,
the layer 2 access equipment based on 802.1p the layer 3 routers based on DSCP Supports complex traffic classification
36
QoSCAR
The
MA5200G supports CARs. On the MA5200G, the peak
rate, average rate and basic rate can be configured for users. According to the configured parameters, the MA5200G can limit the traffic rate for a user. The range of control is 8Kbps to 1Gbps. The bandwidth control granularity is 8Kbps.
The
MA5200G supports six levels of priority queues. It
provides differentiated services and implements traffic

shaping for the AF1AF4, EF and BE services. The MA5200G supports 802.3x-based traffic control, and the Weight Random Early Detection (WRED) algorithm. Thereby, congestion can be avoided from occurrence
37
VPN-VPDN
As a L2TP Access Concentrator (LAC) equipment MA5200G automatically negotiates with the remote L2TP Network Server (LNS) to establish a L2TP tunnel and session. LNS
MA5200GLAC
Remote terminal
IP IP IP PPP PPPoE MAC

PPP PPPoE VLAN MAC
L2TP UDP IP MAC
PPP PPPoE VLAN MAC MAC
MA5200G supports 8K tunnelseach board supports 8K sessions
38
Contents
System Overview
39
Carrier Broadband MAN

Authentication and accounting platform
NM platform
GSR
Service platform
Core network
GSR GSR GSR
Core layer
MA5200G MA5200G
Convergence layer
LAN Switch
MA5200G
LAN Switch
AP
Access layer
CMTS
DSLAM
Ethernet
WLAN
HFC
xDSL
40
Application in Enterprise Network

Headquarters
Quidview S3026 Eudemon 100 CAMS
Service server
GSR INTERNET IP Tunnel
Branch
MA5200G-8 Eudemon 100
S3026
S3026
Service server
MA5200G-8
S2026
S2026
S2026
S2026
S2026
S2026
41
Application in Campus Network
42
Application in Government Data Network
Government backbone network (MPLS VPN)
PE MA5200G
PE NE-40 CE
S6506
S6506R
MA5200G-2
CE CE R3680 Governmental department

S3026 Governmental department

43
S3026
Governmental department
S3026
Governmental department
Application in Intelligent Office Building
44
Application in Intelligent Residential Community
45
Contents
System Overview
46
Performance Parameters(1)
Performance Parameters Parameter name
MA5200G-8
Number of slots 10 slots, 2 for SMUs and 8 for SFUs.
MA5200G-4
6 slots, 2 for SMUs, and 4 for SFUs.
MA5200G-2
3 slots, 1 for SMU, and 2 for SFUs.
Switching capability of the backplane Switching capability of the whole equipment Forwarding performance
256G bit/s
256G bit/s
64G bit/s
64G bit/s
64G bit/s
16G bit/s
3Mpps per board. Up to 32K users per SFU, Up to 32K users per SFU, up to 128K users per MA5200G Up to 8K users per SFU, Up to 32K users per SFU, up to 64K users per MA5200G. Up to 8K users per SFU,
Number of configured users
up to 256K users per MA5200G. Up to 8K users per SFU,
Number of concurrent users
up to 48K users per

MA5200G.
up to 24K users per

MA5200G.
up to 12K users per

MA5200G.
47
Performance Parameters Parameter name MA5200G-8

Routing protocol and routing table
MA5200G-4
MA5200G-2
Routing protocols: static routing, RIP, OSPF, IS-IS and BGP. Routing table: 256K (A maximum of 4K static routes can be configured)
Multicast protocol and

multicast route
Multicast protocols: PIM-SM, PIM-DM, MBGP, MSDP and IGMP V1/V2

Multicast routes: 10K
4K per FE/GE port, 32K

VLAN per board, up to 256K per MA5200G.

per board, up to 128K per MA5200G.

per board, up to 64K per MA5200G.
PVC
2K per OC3 port.
2K per OC3 port.
2K per OC3 port.
48
Parameter name
ISP Address pool Leased line
Performance Parameters
MA5200G-8 MA5200G-4
1k 4K address pools, 96K addresses. 4K address pools, 48K addresses. 4k Up to 8K L2TP sessions per SFU, up to 8K L2TP tunnels and 48K L2TP sessions per MA5200G. Up to 8K L2TP sessions per SFU, up to 8K L2TP tunnels and 24K L2TP sessions per MA5200G. Up to 8K L2TP sessions per SFU, up to 8K L2TP tunnels and 12K L2TP sessions per MA5200G. 4K address pools, 24K addresses.
MA5200G-2
L2TP
49
Performance Parameters Parameter name MA5200G-8

MPLS
MA5200G-4
MA5200G-2
Each SFU supports up to 10K LSPs. The whole equipment supports up to 10K LSPs. The equipment supports 1K VRFs, and supports up to 1K routes per VRF. 5K rules. The equipment supports up to 1024 user groups, and each group supports up to 1024 rules. The range of CAR control is 8Kbps to 1Gbps. The granularity is 8Kbps. The error rate is less than 5%.
MPLS VPN
ACL
UCL
CAR
50
51

ODN 000103 Quidway MA5200G System Overview and Hardware

Hochgeladen von

Dokumentinformationen

Originalbeschreibung:

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

ODN 000103 Quidway MA5200G System Overview and Hardware

Hochgeladen von

Copyright:

Verfügbare Formate

ODN 000103 Quidway MA5200G System Overview and Hardware

Fixed Network Curriculum Development Section

Upon completion of this course, you will be able to

Grasp the system structure and basic working theory

Understand the service features of MA5200G

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

System Overview Hardware Introduction Service Features Networking Application Specifications

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

unreliable network security.

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

It provides the functions of user management,

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

MA5200G Typical Networking

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

SFU SFU SFU SFU SMUSMU SFU SFU SFU SFU

Cabling Trough Air Intake Power Supply Module

Power Supply Module

Security Level: Internal

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

SMU SFU SFU Fan

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

SMUService Management Unit

Provides the functions of system management, equipment maintenance,

routing management, data switch, and the provisioning of clock signals.

Supports hot plugging and "1+1" hot backup.

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

SFUService Forwarding Unit

management and service forwarding

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Hardware ComponentsSystem Frame

Distributing service boardhigh capability CPUNP service controlASIC

Security Level: Internal

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Internal interface Data channel

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

16 port multi-mode optical FE interface card 1310nm2km LC

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Confidential Information of Huawei. No Spreading without Permission.

Security Level: Internal

Address management Security management multicast management QoS VPN

Confidential Information of Huawei. No Spreading without Permission.