Huawei S9700 Switch VPLS Feature Detail Analysis PDF

VPLS
Agenda
VPLS Overview
VPLS packet walk-through
VPLS features
Summary
1
Classification of VPNs
VPN
Network CPE
Based Based
Layer 2 Layer 3 Layer 3
Ethernet P2P VLL/PWE3 VPLS MPLS Virtual IPSec GRE

VPN Router
Ethernet (MP2MP)
Ethernet (P2MP)
ATM
Frame Relay
Ethernet (P2P)
ATM/Cell Relay
PPP/HDLC
Frame Relay
2
VPLS Components
Pseudo Wires within LSP
Virtual Switch Interface (VSI)
terminates PW and provides
Attachment circuits Ethernet bridge function
Port or VLAN mode
Mesh of LSP between N-PEs
N-PE N-PE
CE router CE router
CE router CE router
CE switch CE switch
MPLS
Core
Targeted LDP or BGP between PEs

to exchange VC labels for Pseudo CE router
Wires Attachment CE
can be a switch or
router
CE switch
N-PE
3
Virtual Switch Interface
 Flooding / Forwarding
 MAC table instances per customer for each PE
 VFI will participate in learning and forwarding process
 Associate ports to MAC, flood unknowns to all other ports
 Address Learning / Aging
 LDP (or BGP) enhanced with additional MAC List TLV (label withdrawal)
 MAC timers refreshed with incoming frames
 Loop Prevention
 Create full-mesh of Pseudo Wire VCs (EoMPLS)
 Unidirectional LSP carries VCs between pair of N-PE Per
 A VPLS use “split horizon” concepts to prevent loops
Each VSI is a bridge domain, VLAN to VSI mapping is flexible.
VSI VSI
VLAN VLAN VLAN
4
VPLS Flooding & Forwarding
Unknown DA? Pseudo Wire in LSP
Data SA DA?
 Flooding (Broadcast, Multicast, Unknown Unicast)

 Dynamic learning of MAC addresses on interfaces and VCs
 Forwarding
 Physical Port
 Virtual Circuit
5
MAC Address Learning and Forwarding
Send me frames Send me frames

using Label 102 Directed LDP or BGP using Label 170
MAC1 MAC2
PE1 PE2
CE Use VC CE
Label 102
E0/0 Use VC E0/1
Label 170
MAC Address Adj MAC Address Adj
MAC 2 170 MAC 2 E0/1
PE2 102 MAC1 MAC2 Data
MAC 1 E0/0 MAC 1 102
Data MAC1 MAC2 170 PE2
 Broadcast, Multicast, and Unknown Unicast are learned via

the received label associations
 Two LSPs associated with a VC (Tx & Rx)
 If inbound or outbound LSP is down
 Then the entire Pseudo Wire is considered down
6
MAC Address Withdrawal Message
Directed LDP
X
MPLS
 Message speeds up convergence process

 Otherwise PE relies on MAC Address Aging Timer
 Upon failure PE removes locally learned MAC addresses
 Send LDP Address Withdraw (RFC3036) to remote PEs in
VPLS (using the Directed LDP session)
 New MAC List TLV is used to withdraw addresses
7
Agenda
VPLS Overview
VPLS features
Summary
8
VPLS work flow brief
Eth frame Src Virtual Port Output module/port
MAC learning
+ VSI/VFI Encap MPLS
MAC dst-lookup
Encap MAC layer
Ingress lookup find the

src virtual port. Then
Rewrite & send
know which VSI/VFI.
it out.
MPLS frame
MPLS frame Src Virtual Port MAC learning

+ VSI/VFI Output module/port
MAC dst-lookup
Ingress lookup find the

Rewrite & send
src virtual port by the
it out.
VC label. Then know
which VSI/VFI. Eth frame
9
Agenda
VPLS Overview
VPLS features
Summary
10
S97’s VPLS Feature
 VPLS - kompella (BGP as signaling)

 VPLS - martini (LDP as signaling)
 H-VPLS (LDP as signaling)
 mVPLS & mVRRP
 VPLS BGP Auto-Discovery (V2R1)
11
VPLS kompella example (1)
#
sysname PE1
#
vlan batch 10 20
#
mpls lsr-id 1.1.1.9
mpls
#
mpls l2vpn
#
vsi bgp1 auto
interface GigabitEthernet1/0/0
pwsignal bgp
port hybrid pvid vlan 10
route-distinguisher 168.1.1.1:1
port hybrid tagged vlan 10
vpn-target 100:1 import-extcommunity
#
vpn-target 100:1 export-extcommunity
site 1 range 5 default-offset 0
#
port hybrid tagged vlan 20 #
mpls ldp
#
# sysname CE1
interface LoopBack1
interface Vlanif10 #
ip address 1.1.1.9 255.255.255.255
l2 binding vsi bgp1
#
vlan batch 10
#
bgp 100 #
interface Vlanif20
ip address 168.1.1.1 255.255.255.0
peer 3.3.3.9 as-number 100 interface Vlanif10
peer 3.3.3.9 connect-interface LoopBack1
mpls ip address 10.1.1.1 255.255.255.0
#
mpls ldp
vpls-family
#
#
policy vpn-target interface GigabitEthernet1/0/0
peer 3.3.3.9 enable port link-type trunk
#
port trunk allow-pass vlan 10
ospf 1
area 0.0.0.0
#
network 1.1.1.9 0.0.0.0
network 168.1.1.0 0.0.0.255
#
12
VPLS kompella example (2)
#
interface GigabitEthernet1/0/0 sysname PE2
port hybrid pvid vlan 30 #
port hybrid tagged vlan 30 vlan batch 30 40
# #
interface GigabitEthernet2/0/0 mpls lsr-id 3.3.3.9
port hybrid pvid vlan 40 mpls
# mpls l2vpn
interface LoopBack1 #
ip address 3.3.3.9 255.255.255.255 vsi bgp1 auto
# # pwsignal bgp
sysname CE2 bgp 100 route-distinguisher 169.1.1.2:1
peer 1.1.1.9 as-number 100 vpn-target 100:1 import-extcommunity
#
peer 1.1.1.9 connect-interface vpn-target 100:1 export-extcommunity
vlan batch 40 LoopBack1 site 2 range 5 default-offset 0
# # #
vpls-family mpls ldp
interface Vlanif40
policy vpn-target #
ip address 10.1.1.2 255.255.255.0 peer 1.1.1.9 enable interface Vlanif30
# # ip address 169.1.1.2 255.255.255.0
interface GigabitEthernet2/0/0 ospf 1 mpls
area 0.0.0.0 mpls ldp
port link-type trunk
network 3.3.3.9 0.0.0.0 #
port trunk allow-pass vlan 40 network 169.1.1.0 0.0.0.255 interface Vlanif40
# # l2 binding vsi bgp1
#
13
VPLS kompella example (3) #
sysname P
#
vlan batch 20 30
#
mpls lsr-id 2.2.2.9
mpls
#
mpls ldp
#
interface Vlanif20
ip address 168.1.1.2 255.255.255.0
mpls
mpls ldp
#
interface Vlanif30
ip address 169.1.1.1 255.255.255.0
mpls
<PE1> display vsi name bgp1 verbose mpls ldp
#
***VSI Name : bgp1 interface GigabitEthernet1/0/0
Administrator VSI : no port hybrid pvid vlan 20
Isolate Spoken : disable port hybrid tagged vlan 20
VSI Index :1 #
PW Signaling : bgp interface GigabitEthernet2/0/0
Member Discovery Style : auto port hybrid pvid vlan 30
PW MAC Learn Style : unqualify port hybrid tagged vlan 30
Encapsulation Type : vlan #
MTU : 1500 interface LoopBack1
Diffserv Mode : uniform ip address 2.2.2.9 255.255.255.255
Mpls Exp : -- #
DomainId : 255 ospf 1
Domain Name : area 0.0.0.0
Ignore AcState : disable network 168.1.1.0 0.0.0.255
Create Time : 0 days, 0 hours, 8 minutes, 38 seconds network 169.1.1.0 0.0.0.255
VSI State : up network 2.2.2.9 0.0.0.0
。。。 #
14

 mVPLS & mVRRP
15
VPLS martini example (1)
#
sysname PE1
#
vlan batch 10 20
#
mpls lsr-id 1.1.1.9
mpls
#
mpls l2vpn
#
vsi a2 static
pwsignal ldp
vsi-id 2
peer 3.3.3.9
#
mpls ldp
#
# #
mpls ldp remote-peer 3.3.3.9
interface GigabitEthernet2/0/0 sysname CE1
remote-ip 3.3.3.9
#
port hybrid tagged vlan 20 vlan batch 10
interface Vlanif10
# #
l2 binding vsi a2
interface LoopBack1 interface Vlanif10
#
ip address 1.1.1.9 ip address 10.1.1.1 255.255.255.0
interface Vlanif20 255.255.255.255
#
ip address 168.1.1.1 255.255.255.0 #
mpls ospf 1
mpls ldp area 0.0.0.0
# network 1.1.1.9 0.0.0.0
#
network 168.1.1.0 0.0.0.255
#
16
VPLS martini (2)
#
sysname PE2
#
vlan batch 30 40
#
mpls lsr-id 3.3.3.9
mpls
#
mpls l2vpn
#
vsi a2 static
pwsignal ldp
vsi-id 2
#
peer 1.1.1.9
#
mpls ldp
# port hybrid tagged vlan 30
#
sysname CE2 #
mpls ldp remote-peer 1.1.1.9
# interface GigabitEthernet2/0/0
remote-ip 1.1.1.9
vlan batch 40 port hybrid pvid vlan 40
#
interface Vlanif30
interface Vlanif40 #
ip address 169.1.1.2
ip address 10.1.1.2 255.255.255.0 interface LoopBack1 255.255.255.0
# ip address 3.3.3.9 mpls
interface GigabitEthernet1/0/0 255.255.255.255
mpls ldp
port link-type trunk #
#
port trunk allow-pass vlan 40 ospf 1
interface Vlanif40
# area 0.0.0.0
l2 binding vsi a2
network 3.3.3.9 0.0.0.0
network 169.1.1.0 0.0.0.255
#
17
VPLS martini example (3)
#
sysname P
#
vlan batch 20 30
#
mpls lsr-id 2.2.2.9
mpls
#
mpls ldp
#
interface Vlanif20
ip address 168.1.1.2 255.255.255.0
mpls
mpls ldp
#
interface Vlanif30
<PE1> display vsi name a2 verbose ip address 169.1.1.1 255.255.255.0
mpls
***VSI Name : a2 mpls ldp
Administrator VSI : no #
Isolate Spoken : disable interface GigabitEthernet1/0/0
VSI Index :0 port hybrid pvid vlan 20
PW Signaling : ldp port hybrid tagged vlan 20
Member Discovery Style : static #
PW MAC Learn Style : unqualify interface GigabitEthernet2/0/0
Encapsulation Type : vlan port hybrid pvid vlan 30
MTU : 1500 port hybrid tagged vlan 30
Diffserv Mode : uniform #
Mpls Exp : -- interface LoopBack1
DomainId : 255 ip address 2.2.2.9 255.255.255.255
Domain Name : #
Ignore AcState : disable ospf 1
Create Time : 0 days, 0 hours, 1 minutes, 45 seconds area 0.0.0.0
VSI State : up network 168.1.1.0 0.0.0.255
。。。 network 169.1.1.0 0.0.0.255
network 2.2.2.9 0.0.0.0
#
18

 mVPLS & mVRRP
19
H-VPLS example (1)
#
sysname UPE
#
vlan batch 10 20 30
#
mpls lsr-id 1.1.1.9
mpls
#
mpls l2vpn
#
vsi v123 static
pwsignal ldp
vsi-id 123
peer 2.2.2.9
# interface GigabitEthernet1/0/0
mpls ldp port hybrid pvid vlan 10
#
#
interface Vlanif10 interface GigabitEthernet2/0/0
#
l2 binding vsi v123 port hybrid pvid vlan 20
port hybrid tagged vlan 20 sysname CE1
#
# #
interface Vlanif20
interface GigabitEthernet3/0/0 vlan batch 10
l2 binding vsi v123 port hybrid pvid vlan 30
#
# interface Vlanif10
interface Vlanif30
interface LoopBack1 ip address 10.1.1.1 255.255.255.0
ip address 1.1.1.9 255.255.255.255 #
255.255.255.0
#
mpls interface GigabitEthernet1/0/0
ospf 1
mpls ldp area 0.0.0.0 port link-type trunk
# network 1.1.1.9 0.0.0.0 port trunk allow-pass vlan 10
network 100.1.1.0 0.0.0.255 #
#
20
H-VPLS example (2) #
sysname SPE
#
vlan batch 30 40
#
mpls lsr-id 2.2.2.9
mpls
#
mpls l2vpn
#
vsi v123 static
pwsignal ldp
vsi-id 123
peer 3.3.3.9
peer 1.1.1.9 upe
#
mpls ldp
# interface Vlanif 30
# interface GigabitEthernet2/0/0 ip address 100.1.1.2
sysname CE2 port hybrid pvid vlan 40 255.255.255.0
#
mpls
vlan batch 20
interface LoopBack1 mpls ldp
# ip address 2.2.2.9 255.255.255.255 #
interface Vlanif20 # interface Vlanif40
ip address 10.1.1.2 255.255.255.0 ospf 1
area 0.0.0.0
# 255.255.255.0
network 2.2.2.9 0.0.0.0
interface GigabitEthernet1/0/0 network 100.2.1.0 0.0.0.255 mpls
port link-type trunk network 100.1.1.0 0.0.0.255 mpls ldp
port trunk allow-pass vlan 20 #
#
#
21
H-VPLS example (3)
#
sysname PE
#
vlan batch 40 50
#
mpls lsr-id 3.3.3.9
mpls
#
mpls l2vpn
#
vsi v123 static
pwsignal ldp
vsi-id 123
peer 2.2.2.9
# #
interface GigabitEthernet1/0/0 mpls ldp
port hybrid tagged vlan 40 interface Vlanif40
# ip address 100.2.1.2
#
255.255.255.0
sysname CE3 interface GigabitEthernet2/0/0
mpls
# port hybrid pvid vlan 50
mpls ldp
vlan batch 50 port hybrid tagged vlan 50
#
# #
interface Vlanif50
interface Vlanif50 interface LoopBack1
l2 binding vsi v123
ip address 10.1.1.3 255.255.255.0 ip address 3.3.3.9 255.255.255.255
#
# #
interface GigabitEthernet1/0/0 ospf 1
port link-type trunk area 0.0.0.0
port trunk allow-pass vlan 50 network 100.2.1.0 0.0.0.255
# network 3.3.3.9 0.0.0.0
#
22
H-VPLS example (4) 。。。。。。
**PW Information:
*Peer Ip Address : 1.1.1.9

PW State : up
Local VC Label : 27649
Remote VC Label : 27648
PW Type : MEHVPLS
Tunnel ID : 0x10020
Broadcast Tunnel ID : 0x10020
Ckey : 0x6
Nkey : 0x5
Main PW Token : 0x10020
Slave PW Token : 0x0
Tnl Type : LSP
OutInterface : Vlanif30
Stp Enable : 0
<SPE> display vsi name v123 verbose Mac Flapping : 0
PW Last Up Time : 2009/02/03 00:32:43
***VSI Name : v123 PW Total Up Time : 0 days, 0 hours, 1 minutes, 14 seconds
Administrator VSI : no
Isolate Spoken : disable *Peer Ip Address : 3.3.3.9
VSI Index : 0 PW State : up
PW Signaling : ldp Local VC Label : 27648
Member Discovery Style : static Remote VC Label : 27648
PW MAC Learn Style : unqualify PW Type : label
Encapsulation Type : vlan Tunnel ID : 0x20022
MTU : 1500 Broadcast Tunnel ID : 0x20022
Diffserv Mode : uniform Ckey : 0x6
Mpls Exp : -- Nkey : 0x5
DomainId : 255 Main PW Token : 0x20022
Domain Name : Slave PW Token : 0x0
Ignore AcState : disable Tnl Type : LSP
Create Time : 1 days, 15 hours, 11 minutes, 4 seconds OutInterface : Vlanif40
VSI State : up Stp Enable : 0
…… Mac Flapping : 0
PW Last Up Time : 2009/02/03 00:31:43
PW Total Up Time : 0 days, 0 hours, 2 minutes, 14 seconds
23

 mVPLS & mVRRP
24
mVRRP over mVPLS brief (1)
mVRRP runs between NPEs
Active
mVPLS
Backup
25
mVRRP over mVPLS brief (2)
VSI MAC
Table flush
LDP withdraw
Remote Peer
OK, It’s a VRRP Active
switch over, Then
flush the VSI’s
MAC TBL.
And send a LDP
MAC-withdraaw
message to
remote.
VSI MAC
Table flush
26
mVPLS & mVRRP example (1)
# #
sysname UPE mpls ldp remote-peer 3.3.3.3
# remote-ip 3.3.3.3
vlan batch 100 200 #
# isis 1
bfd is-level level-2
# cost-style wide
mpls lsr-id 1.1.1.1 network-entity
mpls 49.0010.0010.0100.1001.00
mpls te traffic-eng level-2
mpls rsvp-te #
mpls l2vpn ip address 10.1.1.1 255.255.255.0
# isis enable 1
vsi admin-vsi1 static mpls
pwsignal ldp mpls te
vsi-id 10 mpls rsvp-te
admin-vsi #
vsi biz-vsi1 static ip address 10.1.2.1 255.255.255.0
pwsignal ldp isis enable 1
vsi-id 101 mpls
peer 2.2.2.2 mpls te
peer 3.3.3.3 mpls rsvp-te
tnl-policy policy1 #
track admin-vsi admin-vsi1 interface GigabitEthernet1/0/0.1
# control-vid 11 dot1q-termination
mpls ldp dot1q termination vid 101
# l2 binding vsi biz-vsi1
mpls ldp remote-peer 2.2.2.2 #
remote-ip 2.2.2.2 … to be continued再
#
27
mVPLS & mVRRP example (2)
… continued.
#
100
#
interface
GigabitEthernet1/0/1.1 interface Tunnel1/0/1
control-vid 1 dot1q- description TO NPE1
termination
ip address unnumbered
dot1q termination vid 10 interface LoopBack1
l2 binding vsi admin-vsi1 tunnel-protocol mpls te
# destination 2.2.2.2
interface GigabitEthernet1/0/2 mpls te tunnel-id 1
port link-type trunk mpls te commit
port trunk allow-pass vlan 10 #
200
interface Tunnel1/0/2
#
description TO NPE2
interface
ip address unnumbered
GigabitEthernet1/0/2.1
interface LoopBack1
control-vid 2 dot1q-
tunnel-protocol mpls te
termination
destination 3.3.3.3
dot1q termination vid 10
mpls te tunnel-id 2
l2 binding vsi admin-vsi1
mpls te commit
#
#
interface LoopBack1
tunnel-policy policy1
ip address 1.1.1.1
255.255.255.255 tunnel select-seq cr-lsp
load-balance-number 1
isis enable 1
#
#
28

 mVPLS & mVRRP
29
VPLS BGP Auto-Discovery: discovery phase …
Use BGP for auto-discovery & LDP other VPLS label management.
Lo: 1.1.1.1/32
VPLS-ID =
65535:100
RD = 65535:100
VSI-ID = 1.1.1.1
RT = 5:5
Next Hop = 1.1.1.1
Lo: 2.2.2.2/32 Lo: 3.3.3.3/32
BGP AD
VPLS-ID =
65535:100 VPLS-ID =
65535:100
RD = 65535:100
RD = 65535:100
VSI-ID = 2.2.2.2
VSI-ID = 3.3.3.3
RT = 5:5
RT = 5:5
Next Hop = 2.2.2.2
Next Hop = 2.2.2.2
30
VPLS BGP Auto-Discovery: LDP mapping …
After BGP AD, software trigger LDP sessions, then VPLS is up …
LDP Mapping
Next Hop = 1.1.1.1
AGI = 65535:100 (RD)
LDP Mapping
Lo: 1.1.1.1/32 SAII = 1.1.1.1
Next Hop = 1.1.1.1
TAII = 2.2.2.2
AGI = 65535:100 (RD)(from BGP
AD)
SAII = 1.1.1.1
Label = XXX
TAII = 3.3.3.3 (from BGP
AD)
Label = XXX
Lo: 3.3.3.3/32
Lo: 2.2.2.2/32
LDP exchange LDP exchange
LDP Mapping
LDP Mapping
Next Hop = 3.3.3.3
Next Hop = 3.3.3.3
AGI = 65535:100 (RD)
LDP Mapping
AGI = 65535:100 (RD)
LDP Mapping LDP exchange Next Hop SAII = 3.3.3.3
= 3.3.3.3
Next HopSAII = 3.3.3.3
= 3.3.3.3
TAII = 1.1.1.1
AGI = 65535:100 (RD) (from BGP
TAII = 1.1.1.1
AGI = 65535:100 (RD)(from BGP AD)
AD)
SAII = 3.3.3.3 SAII = 3.3.3.3
Label = ZZZ
Label =
TAII = 3.3.3.3 YYY BGP
(from TAII = 2.2.2.2 (from BGP
AD) AD)
Label =Page
ZZZ 31
Label = YYY
31
S97’s other VPLS Features
 VPLS Ping & Tracert

 VPLS graceful restart
 Traffic statistic per PW
 Broadcast-suppression per VSI
 Unknown-unicast-suppression per VSI
 Multicast-suppression per VSI
32
Agenda
VPLS Overview
VPLS features
Summary
33
Summary : Top 5 thing to remember
1. Support both kompella and martini VPLS

2. Support H-VPLS (LDP)
3. BFD for fast detection in H-VPLS
4. Fast MAC withdraw in H-VPLS
5. Easy management:
• Support VPLS ping & tracert …
• Broadcast/multicast/unknown unicast suppression
34
HUAWEI ENTERPRISE ICT SOLUTIONS A BETTER WAY
Copyright©2012 Huawei Technologies Co., Ltd. All Rights Reserved.

The information in this document may contain predictive statements including, without limitation, statements regarding the future financial and
operating results, future product portfolio, new technology, etc. There are a number of factors that could cause actual results and developments to
differ materially from those expressed or implied in the predictive statements. Therefore, such information is provided for reference purpose only and
constitutes neither an offer nor an acceptance. Huawei may change the information at any time without notice.

Huawei S9700 Switch VPLS Feature Detail Analysis PDF

Caricato da

Informazioni sul documento

Titolo originale

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

Huawei S9700 Switch VPLS Feature Detail Analysis PDF

Caricato da

Copyright:

Formati disponibili

VPLS

Layer 2 Layer 3 Layer 3

Ethernet P2P VLL/PWE3 VPLS MPLS Virtual IPSec GRE

Targeted LDP or BGP between PEs

Each VSI is a bridge domain, VLAN to VSI mapping is flexible.

VLAN VLAN VLAN

Unknown DA? Pseudo Wire in LSP

 Flooding (Broadcast, Multicast, Unknown Unicast)

Send me frames Send me frames

 Broadcast, Multicast, and Unknown Unicast are learned via

 Message speeds up convergence process

Ingress lookup find the

MPLS frame Src Virtual Port MAC learning

Ingress lookup find the

 VPLS - kompella (BGP as signaling)

 VPLS - kompella (BGP as signaling)

 VPLS - kompella (BGP as signaling)

*Peer Ip Address : 1.1.1.9

 VPLS - kompella (BGP as signaling)

mVRRP runs between NPEs

 VPLS - kompella (BGP as signaling)

 VPLS Ping & Tracert

1. Support both kompella and martini VPLS

Copyright©2012 Huawei Technologies Co., Ltd. All Rights Reserved.

Potrebbero piacerti anche