BRKSPG 2204

Building Carrier Ethernet Services Using
Cisco Ethernet Virtual Circuit (EVC) Framework

BRKSPG-2204
BRKSPG-2204 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public
Agenda
Introduction
Cisco EVC Fundamentals
Operation and Packet Flow
Dynamic Ethernet Service Activation (DESA)
Deployment Use CasesResidential / Business / DCI Services
Platform Support
Summary
BRKSPG-2204 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Introduction
What Is Cisco EVC Framework?
Cisco Ethernet Virtual Circuit (EVC) is the next-generation

cross-platform Carrier Ethernet Software Infrastructure
Addresses Flexible Ethernet Edge requirements
Supports service convergence over Ethernet
Complies with MEF, IEEE, IETF standards
Flexible Ethernet Edge
Mobile
Content Farm
Residential Access Aggregation Edge

MSPP
VOD TV SIP
Cable
STB
Untagged L2 P-to-P native
Business Single tagged L2 P-to-P over PW BRAS Core Network
ETTx tagged
Double L2 MP native bridging
Corporate 802.1q L2 MP VPLS
MPLS /IP
802.1ad L3 routed
Residential
etc
DSL
DPI
Content Farm
SR/PE
PON
STB
VOD TV SIP
Introducing Cisco EVC Framework
Functional Highlights Ethernet Flow Points
Model Ethernet Service Layer
Service Abstraction
Support mix of Layer 2 Transport agnostic
and Layer 3 services on
same physical port
Flexible
Service
Flexible definition of
Concurrent support of Multiplexed
service delimiters based
Forwarding Mapping
different flavors of Layer Services
EVC on Ethernet header
2 services: Pt-to-Pt and Framework
Technology fields
Mpt Advanced
Frame
Manipulation
Selective EVC Mapping
Advanced VLAN tag
manipulation
Alignment with
emerging standards:
Standards Alignment
MEF 6, 10.1, 11
IEEE 802.1ad
IEEE 802.1ah
Cisco EVC Building Blocks
Cisco EVC Uses the Following New Concepts:

Ethernet Flow Point (EFP)
Transport-agnostic abstraction of an Ethernet service on an interface
Ethernet Virtual Circuit (EVC)
Device local object (container) for network-wide service parameters
Bridge Domain (BD)
Ethernet Broadcast Domain local to a device
Bridge Domain Interface (BDI)
Logical Layer 3 interface associated with a BD to perform integrated routing and
bridging
Ethernet Flow Point (EFP) CE A3 EVC Blue
CE A2
CE A1
CE B2
CE B1
EFP
EVC Red
EFP
EFP
EFP Interface
Instance of a MEF EVC on a port

Also defined as Service Instance
Classify frames belonging to a particular Ethernet Service
Apply features selectively to service frames
Define forwarding actions and behavior
Ethernet Virtual Circuit
EVC
EVC
EFP Management
Plane
EFP
EFP EFP
Interface
Representation of a MEF EVC on the device

Management Plane container
Hosts global EVC attributes
One-to-many mapping from EVC to EFPs
Bridge Domain
EVC
EVC
EFP Management
Plane
EFP
EFP EFP
Interface
Bridge Domain
Broadcast Domain internal to the device

Allows decoupling broadcast domain from VLAN
Per port VLAN significance
One-to-many mapping from BD to EFPs
Bridge Domain vs. VLAN Bridge
Bridge
Domain EFP
VLAN VLAN
VLAN
VLAN Bridge EVC Bridge
VLAN bridge has 1:1 mapping between VLAN and internal Broadcast Domain
VLAN has global per-device significance
EVC bridge decouples VLAN from Broadcast Domain
VLAN treated as encapsulation on a wire
VLAN on a wire mapped to internal Bridge Domain via EFPs
Net result: per-port VLAN significance
Bridge Domain Interface
L2 Network BD BDI L3 Network
EFP
Bridge
Domain L3 Routing L3 Interface
Interface
Logical Layer 3 (routed) port associated with a Bridge Domain

Support termination of Ethernet traffic to IP / L3VPN (VRF aware)
Only a single BDI per Bridge Domain is allowed
Maintains Admin State (CLI) and Operational State (derived from BD)
If all EFPs in BD are Down or Admin-Down, then BDI operational state will be Down
Packet Flow Pipeline
Flexible Ingress
Input
Service Encapsulation
Features
Mapping Adjustment
Inbound EFP
Ingress
Interface
Forwarder Egress
Interface
Outbound EFP
Egress
Output
Encapsulation Frame Filtering
Features
Adjustment
16
Flexible Service Mapping
Flexible Service Mapping PORT
GE / 10GE
Single Tagged VLAN Matching
Un-
Untagged traffic tagged 70
Single VLAN ID value
20 21 30 40 10 11
Single VLAN ID Range (contiguous) 22 50 19 12
Single VLAN ID List
Range List Range
Single VLAN ID Range and List and List
Ethernet Flow Points
S-VLAN C-VLAN
GE / 10GE
Double Tagged VLAN Matching
Outer VLAN, Inner VLAN

Outer VLAN and Range of Inner VLANs
(contiguous) Outer Outer Outer
Outer VLAN and List of Inner VLANs Inner Inner Range Inner List
Outer VLAN and Range and List of Inner 100 200 300
VLANs 10 10 12 70 90
11 80
S-VLAN C-VLAN
GE / 10GE
Header Matching
Single VLAN, single 802.1p (COS) value

Single VLAN, COS List/Range
Outer VLAN, outer COS and Inner VLAN
Outer VLAN, Inner VLAN and inner COS
Single VLAN, Ethertype value (PPPoE, IPv4, IPv6)
Outer VLAN, Inner VLAN and Ethertype value
(PPPoE, IPv4, IPv6) COS
COS PPPoE
Range
400 500 600
COS COS
5 2-5 PPPoE
S-VLAN C-VLAN
GE / 10GE
Comprehensive Matching Capabilities
Un-
EFP construct classifies L2 flows tagged 70
on Ethernet interfaces
20 21 30 40 10 11
Single Tagged
22 50 19 12
Double Tagged
Header/Payload 100 200 300
10 10 12 70 90
11 80
Ethernet Flow 400 500 600

Pointss
COS COS
5 2-5 PPPoE
S-VLAN C-VLAN
Loose Match Classification Rule
Cisco EVC follows a Loose Match classification model

Unspecified fields are treated as wildcard
encap dot1q 10 matches any frame with outer tag equal to 10
10
10 50
encap dot1q 10 second-dot1q 50 matches any frame with outer-most tag as 10

and second tag as 50
10 50
10 50 4
Longest Match Classification Rule
Cisco EVC follows a Longest Match classification model

Frames are mapped to EFP with longest matching set of classification fields
EFP
10
VLAN 10
10 200
Interface
S-VLAN 10
10 100 C-VLAN 100
S-VLAN 10
10 130
C-VLAN 128-133
EFP with Default Encapsulation
Matches all frames unmatched by any other EFP on a port

VLAN 10
VLAN 10 VLAN 20
VLAN 20
VLAN 50
Untagged
Default
Interface EFP
If default EFP is the only one configured on a port, it matches all traffic on the
port (tagged and untagged)
VLAN 10
VLAN 20
VLAN 50 Default
Untagged EFP
Interface
Trunk EFP
Matches a range and/or list of VLANs.

Allocates each VLAN to a unique bridge-domain.
Emulates switchport mode trunk behavior.
BD
VLAN 10
VLAN 20 BD
VLAN 50 Trunk EFP
Interface BD
Advanced Frame Manipulation
PUSH Operations
Add one VLAN tag

DA SA 20 DA SA 25 20
Add two VLAN tags
DA SA DA SA 25 31
POP Operations
Remove one VLAN tag

Remove two VLAN tags
DA SA DA SA 25 31
DA SA 10 20 DA SA 20
DA SA 10 20 DA SA
Translation Operations
1:1 VLAN Translation DA SA 20 DA SA 25 20
1:2 VLAN Translation DA SA DA SA 25 31
2:1 VLAN Translation DA SA 10 20 DA SA 20
2:2 VLAN Translation

DA SA 10 20 DA SA
DA SA 10 DA SA 25
DA SA 10 20 DA SA 25 31
VLAN Tag Manipulation
PUSH operations
DA SA DA SA 25 31
POP operations
TRANSLATION operations
DA SA 10 20 DA SA
DA SA 10 DA SA 25
DA SA 10 20 DA SA 25 31
Encapsulation Adjustment Considerations
EoMPLS PW VC Type and EVC VLAN Rewrites Dummy
VLAN tag
MPLS Imposition
VLAN tags can be added, removed or
translated prior to VC label imposition PUSH 1
VLAN tag
or after disposition 4
EVC VLAN
Any VLAN tag(s), if retained, will appear Rewrite VC 5 MPLS Label
Type Imposition
as payload to the VC
AC PW
VC label imposition and service
MPLS Disposition Dummy
delimiting tag are independent from VLAN tag
EVC VLAN tag operations POP 1
VLAN tag
Dummy VLAN tag RFC 4448 (sec 4.4.1)
4 EVC VLAN
MPLS Label VC 5 Rewrite
VC service-delimiting VLAN-ID is Disposition Type
removed before passing packet to
PW AC
Attachment Circuit processing
Multiplexed Forwarding Services
Cisco EVC supports flexible access VLAN to forwarding service mapping
1-to-1 access VLAN to a service
Same port, multiple access VLANs to a service
Multiple ports, multiple access VLANs to a service
Forwarding services include:
L2 point-to-point local connect
L2 point-to-point xconnect
L2 multipoint bridging
L2 multipoint VPLS
L2 point-to-multipoint bridging
L3 termination
Local and Bridged P2P and MP Forwarding Services
Layer 2 P2P local services Local Hair-Pin

No MAC learning
Two EFPs on same interface (hair-pin) Layer 2 Point-to-Point
Two EFPs on different interfaces
Layer 2 MP bridged services BD
MAC based forwarding and learning Split
Horizon
Local VLAN significance
Bridge Domain (BD)different access
Layer 2
VLANs in the same broadcast domain Multipoint
Split-horizonprevent communication bridged
between EFPs
EFPs BD = Bridge Domain VFI = Virtual Fwd Instance
PW = Pseudowire SVI = Switch Virtual Instance
Provider Backbone Bridging (PBB) Forwarding Services
PBB Forwarding Services

MAC Tunneling per IEEE Std. 802.1ah
MAC Tunnel
C-MAC BD performs MAC learning and
forwarding based on Customer MAC
Addresses (1:1 mapping between C- C-MAC B-MAC
MAC BD & I-SID) BD BD
B-MAC BD performs MAC learning and
forwarding based on Backbone MAC
Addresses C-MAC
BD
MAC Tunnel performs PBB
encapsulation/de-capsulation (I-SID, B-
VLAN, Backbone Addresses Header)
EFPs C-MAC BD = Customer MAC Bridge Domain
B-MAC BD = Backbone MAC Bridge Domain
MPLS-Based P2P and MP Forwarding Services
Layer 2 P2P services using Ethernet PW

over MPLS BD VFI PW
EFP to EoMPLS PW
PW
Layer 2 MP services using VPLS Layer 2 Multipoint VPLS
Extends ethernet multipoint bridging
over a full mesh
of PWs
Layer 2 Point-to-Point EoMPLS
Split horizon support over attachment
circuits (configurable) and PWs
BD = Bridge Domain VFI = Virtual Fwd Instance

Rooted-Multipoint Forwarding Services (E-TREE)
BD with Split Horizon Group can be used to implement rooted-multipoint

forwarding service:
Place all Leaf EFPs in Split Horizon Group
Keep Root EFP outside the Split Horizon Group Leaf
EFP
Net effect: Root EFP Bridge Domain
Bidirectional connectivity
between Root and all BD
Leaf EFPs
Leaf EFPs cannot Leaf
EFP
communicate to
each other Leaf
Split Horizon EFP
Interface Group
Layer 3 Forwarding Services
Layer 3
Co-existence with Routed IP / L3VPN via sub-int
sub-interfaces
BD
Layer 3 termination through
SVI/BVI/BDI interface
Layer 3
IP / L3VPN via SVI, BVI or BDI
Layer 3 termination through
Routed sub-interfaces
BD SVI/BVI/BDI
BD
BD = Bridge Domain VFI = Virtual Fwd Instance

BDI = Bridge Domain Interface BVI = Bridge Virtual Interface
Putting It All Together
PW
Multiplexed Service Interface BD VFI PW
Mix of L2 and L3 services on BD PW
same port
MAC Tunnel
Different types of
B-MAC
L2 services C-MAC BD
BD
Point-to-Point
Multipoint BD SVI/BVI/BDI
EFPs BD = Bridge Domain VFI = Virtual Fwd Instance

BDI = Bridge Domain Interface BVI = Bridge Virtual Interface
C-MAC BD = Customer MAC Bridge Domai
B-MAC BD = Backbone MAC Bridge Domain
Features
Service-Instance/Bridge Domain Features
Security Features
Address Spoofing
Bridging Control Access Control
/ Masquerading
MAC Address L2 MAC ACL on IP Source Guard
Limiting on EVC EFP for EFP
Bridge Domain L3 ACL on EFP DHCP snooping
MAC Security L4 ACL on EFP with Option-82
on EFP on EFP
Storm Control Dynamic ARP
on Ports with Inspection (DAI)
EVCs
Topic covered at:
Resiliency Features BRKSPG-2207
Network Multi-
Link Redundancy Device Multi-homing
homing
EVC static Multi-Chassis MST on EVC
Etherchannel LACP (mLACP) Bridge Domain
EVC LACP ICCP Multi-chassis G.8032 Ethernet
Etherchannel VLAN Redundancy Ring Protection
EVC Etherchannel (Pseudo mLACP, (ERP)
Manual Load a.k.a mLACP Resilient Ethernet
Balancing Active/Active) Protocol (REP) on
EVC and FlexLink Pseudowire EVC
(backup interface) Redundancy MST/PVST Access
integration Gateway
OAM Features Topic covered at:
Service OAM BRKSPG-2202
Performance
Fault Management Link OAM
Management
IEEE 802.1ag (CFM) on IP SLA (IOS) / Ethernet 802.3ah Link OAM
EFP with Bridge Domain SLA (IOS-XR) UDLD on EFP
CFM on EFP with ITU-T Y.1731
Xconnect Performance
CFM on L2 VFI Management
E-LMI (MEF16)
CFM to Ethernet LMI (E-
LMI) Interworking
PW OAM to E-LMI
Interworking
Link OAM to CFM
Interworking
Miscellaneous and Instrumentation Features
Miscellaneous Instrumentation
IGMP Snooping IF-MIB (extensions to

Custom ether-type on support EFPs)
EFP CISCO-EVC-MIB
Static unicast / multicast CISCO-BRIDGE-
MAC on EFP and VFI DOMAIN-MIB
PW
SPAN on EVC
What Is DESA?
Ethernet infrastructure with

programmatic interface
Intelligent Service Management
engine Ethernet Virtual Intelligent
Power of dynamic subscriber Circuit (EVC) Services Gateway
management from ISG to Framework (ISG)
automate provisioning of
Ethernet Services
Automated, customized
Ethernet service provisioning
infrastructure that saves OPEX
What Is ISG? Cisco Intelligent Services Gateway (ISG) is a
licensed feature set on Cisco IOS that
Subscriber Policy Layer provides Session Management and Policy
AAA Policy Web DHCP Management services to a variety of access

Server Server Portal Server
networks
Open
Northbound
Interfaces Subscriber Identification
Subscriber Identity
Policy Subscriber Authentication
Management and
Management ISG Enforcement Subscriber Services Determination and
Enforcement
Dynamic Service update
ISG
So focal, that the entire device is often referred as an:

Intelligent Services Gateway router or simply The ISG
ISG Session Types
Based on Subscriber Access Protocol

Sessions Supported:
Initiation
Dynamically Created Sessions:
PPP sessions
IP sessions
IP Subnet sessions Session Termination
NEW with Authentication
DESA Ethernet sessions
Statically Created Sessions:

Service
Interface sessions (IP-based) Activation
Ethernet sessions
SMBService Activation Example
1. Customer orders L2
service at portal
CPE is shipped to customer
5.
Customer plugs in CPE
2. First L2-traffic triggers 1. 2. 5.
Self-care
RADIUS request to RADIUS
Accounting
activate services
3. L2 Service profile applied 4.
DESA
(ACLs, QOS, Pseudowire,
2.
etc.) CPE L2-Session
Dynamic 3.
4. Activates billing and L2-Session Pseudowire
inventory functions
Dynamic
5. Customer changes profile Service 3. 5.
dynamically on-demand Profile
Ethernet Accounting
Wholesale Use Case
RADIUS
EFP:
Encapsulation VLAN 1-300
rewrite ingress tag push dot1q 880
Residential
Account per Account per
VLAN (sub) * Wholesale
Wholesale EVC Pipe (EVC) Accounting Record
Features
STB VLAN 100
Acct.
reports to customers
Acct.
VLAN 200 Acct.
Residential
Acct.
VLAN 300
Acct.
Gold
Acct.
Account per CoS (or
STB Silver DSCP) per VLAN
Acct.
Bronze (subscriber flow) *
(*) Per-Flow accounting planned for future phases
Deployment Use Cases
Residential Access Model Implementation
Trunk UNI, N:1 Service VLAN
Residential Service Connectivity Overview
Split Horizon Forwarding, locally significant VLAN ids combined into a per
service Bridge Domains (N:1)
Video routed (unnumbered) in Aggregation, other transported to Distribution
Ethernet, WiMAX, PON or DSL Access Node
Aggregation Node
Routed RG N:1 Service VLAN
Voice Service Router Function
Video Service Router Function
BNG
Trunk or Multi VC UNI Internet Service
Router
802.1Q Bridge Domain Emulated Bridge Domain
Bridged RG Function
N:1 Service VLAN
Default Gateway for the Routed CPEs or

Appliances Connected in the Bridged RGs
Gateways for the Specific PPPoE Server
ADSL, ADSL2+, 802.3 802.1Q Video/Voice Application Subnets DHCP Relay
Multi VC or Trunk UNI
IP Unnumbered Interface
DHCP Relay
Residential Service Use Case
Trunk UNI, N:1 Data Service VLAN (PW Per AGG Node)
Access Node (AN) Aggregation Distribution BNG
EoMPLS PW
10
10 BD
310
10 310
10 310
310
Access Node assigns a DATA EFP Single EoMPLS PW carries DATA EFP
single VLAN for Data Ingress direction: traffic from all ANs in a Egress direction:
service (e.g. 10). This vlan Match traffic from AN based on given AGG node PUSH vlan representing AGG node
is shared for all single VID (e.g. 10) (e.g. 310) on traffic received from PW
subscribers (N:1) POP the service vlan
Send traffic to DATA bridge domain Ingress direction:
(BD) Match traffic from BNG based on
Egress direction: AGG VID (e.g. 310)
PUSH service vlan (e.g. 10) on POP AGG vlan
traffic received from DATA BD Send traffic to PW
Trunk UNI - Single Attached Access Node
Aggregation Node EVC/SVI Configuration Distribution
Aggregation
BNG
Aggregation EVC Aggregation SVI
vlan 310
One common bridge interface GigabitEthernet4/0/4
service instance 1 ethernet vlan 311
domain for HSI (VLAN encapsulation dot1q 10 vlan 312
!
310) rewrite ingress tag pop 1 symmetric
interface Loopback1
bridge-domain 310 split-horizon
! ip address 130.173.1.1 255.255.255.255
Per Access Node SVI for service instance 2 ethernet !
video (VLAN 311 and encapsulation dot1q 11 interface Vlan310
rewrite ingress tag pop 1 symmetric xconnect vfi v310
VLAN 312) bridge-domain 311 split-horizon !
! interface Vlan311
Active/Active example interface GigabitEthernet4/0/5 ip dhcp relay information trusted
ip unnumbered Loopback1
using VPLS service instance 1 ethernet
ip helper-address 10.20.61.3
encapsulation dot1q 10
rewrite ingress tag pop 1 symmetric ip pim sparse-mode
bridge-domain 310 split-horizon !
! interface Vlan312
service instance 2 ethernet ip dhcp relay information trusted
encapsulation dot1q 11 ip unnumbered Loopback1
rewrite ingress tag pop 1 symmetric ip helper-address 10.20.61.3
bridge-domain 312 split-horizon ip pim sparse-mode
Trunk UNI - Single Attached Access Node
Distribution Node/VPLS Configuration
Distribution
Aggregation
BNG
Aggregation Distribution #1
vlan 310
! interface Loopback0
pseudowire-class F1701 ip address 10.30.30.16 255.255.255.255
encapsulation mpls !
preferred-path interface Tunnel1 interface GigabitEthernet3/0/3
! service instance 310 ethernet
pseudowire-class F1601 encapsulation dot1q 310
encapsulation mpls rewrite ingress tag pop 1 symmetric
preferred-path interface Tunnel3 xconnect 10.30.30.173 310 pw-class F1703
! Distribution #2
l2 vfi v310 manual
vpn id 310 interface Loopback0
neighbor 10.30.30.16 pw-class F1601 no-split-horizon ip address 10.30.30.17 255.255.255.255
neighbor 10.30.30.17 pw-class F1701 no-split-horizon !
! interface GigabitEthernet3/0/3
interface Loopback0 service instance 310 ethernet
ip address 10.30.30.172 255.255.255.255 encapsulation dot1q 310
! rewrite ingress tag pop 1 symmetric
interface Vlan310 xconnect 10.30.30.173 310 pw-class F1703
xconnect vfi v310
(*) These configurations reflect only the VPLS CLI required for HSI transport toward the redundant BNGs on the
Aggregation Node; for complete Aggregation Node configuration, please refer to the previous slide
Residential Service Use Case
Trunk UNI, N:1 Data Service VLAN (PW Per Access Node)
Access Node (AN) Aggregation Distribution BNG
EoMPLS PW
10
10
310
10 310
10 410
410
AN assigns a single VLAN DATA EFP Single EoMPLS PW carries DATA EFP
for Data service (e.g. 10). Ingress direction: traffic from all subscribers Egress direction:
This vlan is shared for all Match traffic from AN based on in a given AN PUSH vlan representing AN (e.g. 310,
subscribers (N:1) single VID (e.g. 10) 410) on traffic received from PW
POP the service vlan
Send traffic to PW Ingress direction:
Match traffic from BNG based on AN
Egress direction:
VID (e.g. 310, 410)
PUSH service vlan (e.g. 10) on
POP AN vlan
traffic received from PW
Send traffic to PW
Business Services Implementation
Carrier Ethernet Business Services
MEF Service Visualization
E-LINE: Ethernet Private Line (EPL) E-LAN: Ethernet Private LAN (EP-LAN)
E-LINE: Ethernet Virtual Private Line (EVPL) E-LAN: Ethernet Virtual Private LAN (EVP-LAN)
Business use cases presented in the section:
Service Type Service
E-LINE Ethernet Virtual Private Line
E-LINE Ethernet Private Line
E-LAN Ethernet Virtual Private LAN
E-LAN Ethernet Private LAN
Point-To-Point (EVPL and EPL)
Ethernet Virtual Private Line (EVPL)
Logical View
C-VLAN popped on Port-Level C-VLAN

ingress significance
New C-VLAN pushed on
egress Local Connect for
Aggregation services on same Distribution
node
Local
connect No MAC learning
No global VLAN used
Core
VPWS EoMPLS for

services to remote
nodes
Ethernet Virtual Private Line (EVPL)
Sample Configurations
Aggregation Distribution Core
1 GE 10GE 10 GE
EVPL Service on Same Aggregation

EVPL Service Between Aggregations *
interface GigabitEthernet3/0/15
mls qos trust cos
no cdp enable
no cdp enable
service instance 100 ethernet
rewrite ingress tag pop 1 symmetric
xconnect 10.40.40.26 11111 pw-class AS40
mls qos trust cos
pseudowire-class AS40
no cdp enable
encapsulation mpls
preferred-path interface Tunnel1040
connect EVPL_local GigabitEthernet3/0/15 100

GigabitEthernet3/0/16 200
(*) Configuration sample for remote EVPL reflects only one end of the connection
Ethernet Private Line (EPL)
Logical View
Catch-all encapsulation
One service per default used for port-based
Port service
Local Connect for

Aggregation services on same Distribution
node
Local
connect No MAC learning
No global VLAN used
Core
VPWS EoMPLS for

services to remote
nodes
Ethernet Private Line (EPL)
Sample Configurations
Aggregation Distribution Core
1 GE 10GE 10 GE
EPL Service Between Aggregations * EPL Service on Same Aggregation
interface GigabitEthernet3/0/4 interface GigabitEthernet3/0/11

description Sample EPL mtu 9216
mtu 9216 no cdp enable
no cdp enable service instance 100 ethernet
service instance 30 ethernet encapsulation default
encapsulation default
xconnect 10.40.40.26 1111 pw-class AS40 interface GigabitEthernet3/0/12
mtu 9216
pseudowire-class AS40 no cdp enable
encapsulation mpls service instance 200 ethernet
preferred-path interface Tunnel1040 encapsulation default
connect EPL-sample GigabitEthernet3/0/11 100

GigabitEthernet3/0/12 200
(*) Configuration sample for remote EPL reflects only one end of the connection
Multipoint (EVP-LAN and EP-LAN)
Ethernet Virtual Private LAN (EVP-LAN)
Logical View
Spoke PW (split-horizon OFF) Distribution Node implements

EFPs tied to a common BD between Aggregation and full-mesh VPLS (split-
(opt.) C-VLAN POP at ingress Distribution Nodes horizon ON) towards Core
Aggregation Distribution
VFI
Bridge Domain Bridge Domain
BD tied to an SVI with

Xconnect to distribution BD = Bridge Domain
VFI = Virtual Forwarding Instance
Ethernet Virtual Private LAN (EVP-LAN)
Sample ConfigurationsAggregation Distribution Core
1 GE 10GE 10 GE
Aggregation Node
interface GigabitEthernet3/0/15 Distribution Node *
mtu 9216 l2 vfi EVPLAN-sample manual
service instance 100 ethernet vpn id 1111
encapsulation dot1q 2504 !Neighbor aggregation node
rewrite ingress tag pop 1 symmetric neighbor 10.10.10.26 pw-class F2601 no-split-
bridge-domain 2511 horizon
!Neighbor Distribution node
interface GigabitEthernet3/0/16 neighbor 10.10.10.24 pw-class F2401
mtu 9216 !Remote Distribution node
service instance 200 ethernet neighbor 10.40.40.63 encapsulation mpls
rewrite ingress tag pop 1 symmetric interface Vlan2511
bridge-domain 2511 mtu 9216
xconnect vfi EVPLAN-sample
interface Vlan2511
mtu 9216 pseudowire-class F2401
xconnect 10.10.10.25 1111 pw-class F2501 encapsulation mpls
pseudowire-class F2501 pseudowire-class F2601
encapsulation mpls encapsulation mpls
preferred-path interface Tunnel11 preferred-path interface Tunnel13
(*) Distribution SVI will stay up even

BRKSPG-2204
if not associated to a EFP
2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 67
Ethernet Private LAN (EP-LAN)
Logical View
Single EFP on Ingress Interfaces with Spoke PW (split-horizon OFF) Distribution Node implements
encapsulation default to match all untagged between Aggregation and full-mesh VPLS (split-
and tagged traffic Distribution Nodes horizon ON) towards Core
VFI
Bridge Domain Bridge Domain
EFPs tied to a common BD

BD tied to an SVI with
L2-protocol forward enabled for L2PDU BD = Bridge Domain
Xconnect to distribution
forwarding in the BD VFI = Virtual Forwarding Instance
(opt.) S-VLAN PUSH at ingress
Ethernet Private LAN (EP-LAN)
Sample Configurations Core
1 GE 10GE 10 GE
Distribution Node *
Aggregation Node l2 vfi EPLAN-sample manual

vpn id 1111
interface GigabitEthernet4/0/2 !Neighbor aggregation node
mtu 9216 neighbor 10.10.10.26 pw-class F2601 no-split-
no cdp enable horizon
service instance 200 ethernet !Neighbor Distribution node
encapsulation default neighbor 10.10.10.24 pw-class F2401
l2protocol forward !Remote Distribution node
bridge-domain 2711 neighbor 10.40.40.63 encapsulation mpls
interface Vlan2711 interface Vlan2711

mtu 9216 mtu 9216
xconnect 10.10.10.25 1111 pw-class F2501 xconnect vfi EPLAN-sample
pseudowire-class F2501 pseudowire-class F2401

encapsulation mpls encapsulation mpls
preferred-path interface Tunnel11 preferred-path interface Tunnel11
pseudowire-class F2601
encapsulation mpls
(*) Distribution SVI will stay up even if not associated to a EFP
Data Center Interconnect
Data Center Interconnect with MC-LAG + vPC and VPLS
VPLS full mesh or EoMPLS if two DC sites
DCm DCn
VFI VFI
Simplified dual-homing with
MC-LAG + vPC (no STP between
site and PE)
~ second convergence time
VFI VFI VFI VFI
ICCP
ICCP
Active
link vPC Standby
link DC aggregation
vPC Si Si
VSS
DC Access
Note, PW between two PEs in the same DC site may or may not be required, depends
on the intra-DC design
Data Center Interconnect with MC-LAG + vPC and VPLS
Logical View EFP tied to a BD
(opt.) C-VLAN Translation or POP at ingress
BD tied to Active VFI with
WAN Edge 1 neighbors to remote DC site
Red vPC (MC-LAG)
WAN Edge 1 is primary VFI
BD
Per-VLAN load balancing:

For better load balancing
VFI over two PE WAN links,
BD configure 2 MC-LAG
bundles and evenly
distribute the VLANs
Blue vPC (MC-LAG) across two bundles (static
WAN Edge 2 is primary
configuration).
VFI
BD
BD tied to Standby VFI with

VFI neighbors to remote DC site
BD BD = Bridge Domain
VFI = Virtual Forwarding Instance
WAN Edge 2
Data Center Interconnect with VPLS
WAN Edge Node
Sample Configuration
DC1 DC2
DC 1 WAN Edge Node WAN Edge Node
interface bundle-ethernet1.1 l2transport VLAN range 1
encapsulation dot1q 1-250 VLAN Bundling
interface bundle-ethernet2.2 l2transport VLAN range 2

encapsulation dot1q 251-500 VLAN Bundling
L2vpn One VFI to aggregate multiple VLANs.

bridge group DCI Enhanced VPLS VFI scale.
bridge-domain DCI1
interface bundle-ethernet1.1 Reduced Configuration.
vfi DCI1
neighbor 2.2.2.2 pw-id 1
neighbor 3.3.3.3 pw-id 1 Note: Only EVC specific configuration shown.
bridge-domain DCI2
interface bundle-ethernet2.2
vfi DCI2
Platform Support
Cisco EVC Framework
Platform Support
Aggregation
Access
Cisco ASR 9000

Cisco 7600 Nexus 7000
SIP-400
Cisco ASR 1000 ES-20 and
Cisco ME3600X CPT 600 ES+ linecards
Cisco ME3800X CPT 50 Catalyst 6500
ASR 901 Cisco ONS 15454 Supervisor 2T
ML-MR linecard
ASR 903
Summary
Cisco EVC Framework
Introduction
Deployment Use CasesResidential / Business / DCI Services
Platform Support
Summary
Cisco EVC Framework
Key Takeaways
Next-generation cross-platform Carrier Ethernet Software
Infrastructure
Addresses Flexible Ethernet Edge requirements
Service Multiplexing
For More Information
Cisco 7600 Ethernet Services + (ES+) Configuration GuideLayer 2

Features
Cisco 7600 Ethernet Services (ES) Configuration GuideLayer 2
Features
Cisco 7600 SPA Interface Processor-400 (SIP-400) Configuration
Guide
Cisco ASR 9000 Series Aggregation Services Router L2VPN and
Ethernet Services Configuration Guide
Cisco ME 3600X / ME 3800X Configuring Ethernet Virtual
Connections (EVCs)
For More Information (Cont.)
Cisco ASR 1000 Carrier Ethernet Configuration Guide, Cisco IOS

XE Release 3S
Cisco ONS 15454 Configuring Ethernet Virtual Circuits and QoS on
the ML-MR-10 Card
Dynamic Ethernet Service Activation Configuration Guide
Cisco Carrier Packet Transport
Cisco ASR 903 Aggregation Services Router Configuration Guide
Cisco ASR 901 Aggregation Services Router Configuration Guide
Acronyms
Acronym Acronym
ACL Access Control List IPoETV TV on IP over Ethernet
AN Access Node IPTV Television over IP
BD Bridge Domain MEF Metro Ethernet Forum
BRAS Broadband Access Server MEN Metro Ethernet Network
CE Customer Equipment (Edge) MPLS Multi-protocol Label Switching
C-VLAN / CE-
Customer VLAN OAM Operations, Administration and Maintenance
VLAN
CoS Class of Service PBB Provider Backbone Bridging
E-LAN Ethernet LAN service (multipoint) PE Provider Edge device
E-Line Ethernet Line service (point-to-point) PW Pseudowire
E-Tree Ethernet Tree service (rooted multipoint) Q-in-Q VLAN tunneling using two 802.1Q tags
EFP Ethernet Flow Point QoS Quality of Service
EoMPLS Ethernet over MPLS SVI Switch Virtual Interface (interface vlan)
EPL Ethernet Private Line S-VLAN Service VLAN (Provider VLAN)
EVC Ethernet Virtual Connection UNI User to Network Interface

VLAN Virtual LAN
EVPL Ethernet Virtual Private Line
VoD Video on Demand
IEEE Institute of Electrical and Electronics Engineers VoIP Voice over IP
IETF Internet Engineering Task Force VPLS Virtual Private LAN Service
Complete Your Online
Session Evaluation
Give us your feedback and you
could win fabulous prizes.
Winners announced daily.
Receive 20 Passport points for each
session evaluation you complete.
Complete your session evaluation
online now (open a browser through
our wireless network to access our Dont forget to activate your
portal) or visit one of the Internet Cisco Live Virtual account for access to
all session material, communities, and
stations throughout the Convention on-demand and live activities throughout
Center. the year. Activate your account at the
Cisco booth in the World of Solutions or visit
www.ciscolive.com.
Final Thoughts
Get hands-on experience with the Walk-in Labs located in World of

Solutions, booth 1042
Come see demos of many key solutions and products in the main Cisco
booth 2924
Visit www.ciscoLive365.com after the event for updated PDFs, on-
demand session videos, networking, and more!
Follow Cisco Live! using social media:
Facebook: https://www.facebook.com/ciscoliveus
Twitter: https://twitter.com/#!/CiscoLive
LinkedIn Group: http://linkd.in/CiscoLI

BRKSPG 2204

Caricato da

Informazioni sul documento

Titolo originale

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

BRKSPG 2204

Caricato da

Copyright:

Formati disponibili

Building Carrier Ethernet Services Using

Cisco Ethernet Virtual Circuit (EVC) Framework

Cisco Ethernet Virtual Circuit (EVC) is the next-generation

Residential Access Aggregation Edge

Cisco EVC Uses the Following New Concepts:

Instance of a MEF EVC on a port

Representation of a MEF EVC on the device

Broadcast Domain internal to the device

VLAN Bridge EVC Bridge

L2 Network BD BDI L3 Network

Logical Layer 3 (routed) port associated with a Bridge Domain

Ethernet Flow Points

Outer VLAN, Inner VLAN

Single VLAN, single 802.1p (COS) value

Ethernet Flow 400 500 600

Cisco EVC follows a Loose Match classification model

encap dot1q 10 second-dot1q 50 matches any frame with outer-most tag as 10

Cisco EVC follows a Longest Match classification model

Matches all frames unmatched by any other EFP on a port

Matches a range and/or list of VLANs.

Add one VLAN tag

Remove one VLAN tag

1:1 VLAN Translation DA SA 20 DA SA 25 20

1:2 VLAN Translation DA SA DA SA 25 31

2:1 VLAN Translation DA SA 10 20 DA SA 20

2:2 VLAN Translation

Layer 2 P2P local services Local Hair-Pin

PBB Forwarding Services

Layer 2 P2P services using Ethernet PW

BD = Bridge Domain VFI = Virtual Fwd Instance

BD with Split Horizon Group can be used to implement rooted-multipoint

BD = Bridge Domain VFI = Virtual Fwd Instance

EFPs BD = Bridge Domain VFI = Virtual Fwd Instance

IGMP Snooping IF-MIB (extensions to

Ethernet infrastructure with

So focal, that the entire device is often referred as an:

Based on Subscriber Access Protocol

DESA Ethernet sessions

Statically Created Sessions:

dynamically on-demand Profile

(*) Per-Flow accounting planned for future phases

Default Gateway for the Routed CPEs or

Service Type Service

E-LINE Ethernet Virtual Private Line

E-LINE Ethernet Private Line

E-LAN Ethernet Virtual Private LAN

E-LAN Ethernet Private LAN

C-VLAN popped on Port-Level C-VLAN

VPWS EoMPLS for

EVPL Service on Same Aggregation

connect EVPL_local GigabitEthernet3/0/15 100

Local Connect for

VPWS EoMPLS for

Aggregation Distribution Core

EPL Service Between Aggregations * EPL Service on Same Aggregation

interface GigabitEthernet3/0/4 interface GigabitEthernet3/0/11

connect EPL-sample GigabitEthernet3/0/11 100

Spoke PW (split-horizon OFF) Distribution Node implements

Bridge Domain Bridge Domain

BD tied to an SVI with

(*) Distribution SVI will stay up even

Bridge Domain Bridge Domain

EFPs tied to a common BD