Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Clarence Filsfils
Distinguished Engineer
cf@cisco.com
Segment Routing
• Unified
– DC + WAN + Aggregation
– from server in the DC, through WAN and to the service edge
• Policy-aware
– DC: disjoint planes, flow-based congestion avoidance
– WAN: disjoint services, latency-sensitive traffic, scheduled bulk transfer
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
Key Concepts
Segment Routing
Source Routing: the source chooses a path and encodes it in the packet
header as an ordered list of segments.
Segment: an identifier for any type of instruction
Service
Context
Locator
IGP-based forwarding construct Segment = Instructions such as
BGP-based forwarding construct "go to node N using the shortest path"
Local value or Global Index
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
Segment Routing
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
IGP Segments
Node segment to C
Node segment to C
A B C D
Adj Segment Z
M N O P
Node segment to Z
• All remote nodes install in their FIB the node segment 16065 to Z
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
Node Segment
A B C D
M N O P
16078
• ECMP
– A node segment to 16078 distributes traffic across all ECMP paths
to O
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
Adjacency Segment
A packet injected at
A B C D
node C with segment
Pop
29003
Z 29003 is forced
M N O P through datalink CO
M N O P 16065
• Source Routing 16065 Packet to Z
– the path state is in the packet 16065 16065
Packet to Z Packet to Z
header
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
Automated 50-msec Protection for IGP Segments
Guaranteed Link/Node FRR in any topology
50msec protection
Simplicity
Entirely automated
No directed LDP session
No RSVP-TE tunnels
Incremental deployment
Applicable to LDP primary traffic
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
What is Segment Routing?
IP/MPLS architecture that seeks the right balance between distributed intelligence and centralized
optimization and programming.
simplifies operation (lower opex)
enables application-based service creation (new revenue)
allows for better utilization of the installed infrastructure (lower capex)
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
Industry Acceptance &
Standardization
Strong Operator Partnership
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
www.segment-routing.net
IETF
• Working-Group is created
• Use-Case is WG status
• Architecture is WG status
• Protocol Extension is WG status
• ~ 25 drafts maintained by SR team
Over 50% are WG status
Over 75% have a Cisco implementation
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
SR ToolBox
SR ToolBox
Impressive in < 24months
ISIS Prefix and Adjacency Segment with 50msec link-FRR IOS-XR 5.2.2
OSPF Prefix and Adjacency Segment with 50msec link-FRR IOS-XR 5.3.0
• Network Design
– Virtual PE facing Application VM’s: VPP beta available
– DCI, PE or Aggregation: IOS-XR/ASR9k beta available
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
SRTE midpoint
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
SR Policy Computation
Latency V V V
Disjoint from another service V (if both originate on the same head- V V
end)
BW - V V
Inter-Area/Inter-Domain - V V
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
The benefits of centralized TE
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
www.opennetsummit.org/archives/apr12/hoelzle-tue-openflow.pdf
The benefits of centralized TE
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23
www.opennetsummit.org/archives/apr12/hoelzle-tue-openflow.pdf
Centralized Traffic Engineering
16065
2G from A to Z please
FULL
16065
Link CD is full, I cannot use the
shortest-path 65 straight to Z
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
Centralized Traffic Engineering
Tunnel AZ onto
{16066, 16068, 16065} 16066
FULL
16068
16065
1000
times
less
tunnels
PeerNode SID’s:
16012: pop and fwd to 1.0.1.2/32
16022: pop and fwd to 1.0.2.2/32
16052: pop and fwd to 1.0.5.2/32 (ecmp!)
PeerAdj SID’s:
16032: pop and fwd to 1.0.3.2/32
16042: pop and fwd to 1.0.4.2/32
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29
BGP-LS extensions to signal Peering SID to controller
• The controller learns the BGP Peering
SID’s and the external topology of the
egress border router via BGP-LS EPE
routes
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30
BGP Prefix Segment
MSDC
• Massive Scale DC
– Built on BGP3107
• BGP Prefix Segment
– Straightforward BGP3107
extension
– BGP equivalent to IGP
Prefix SID eBGP ipv4
labeled-unicast
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32
BGP Prefix SID
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33
Use-Cases and Benefits
TI-LFA: Automated 50-msec Protection for IGP Segments
Guaranteed Link/Node FRR in any topology
50msec protection
Simplicity
Entirely automated
No directed LDP session
No RSVP-TE tunnels
Incremental deployment
Applicable to LDP primary traffic
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35
Mate Design – TILFA Simulation
• How many segments in backup chain
• Capacity analysis
during FRR transient state
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36
IPv4 MPLS Transport with FRR
Any service resolving
A B on IGP IPv4 Prefix SID
Internet
PE1 PE2
VPNv4
M N
6PE
• IPv4 over MPLS: the obvious way it should have been done
– Just the IGP to operate
– Sub50msec FRR integrated and automated
• Seamless migration
– SR/LDP interworking
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37
IPv6 MPLS Transport with FRR
Any service resolving
A B on IGP IPv6 Prefix SID
Internet v6
PE1 PE2
VPNv6
M N
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38
9101
MPLS dataplane monitoring 9105
9107
9108
9104
9107 9105
B C 9108
9101
9105 9102
A 9108 OAM
9105
9108
9102 N O
9104
draft-geib-spring-oam-usecase-02
Nanog57, Feb 2013
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39
Beta Available
Disjoint TE Service
• A to Z any plane
– IGP shortest-path
– PrefixSID of Z (65) 16065
pkt
• A to Z via blue plane
– SRTE policy pushes one additional
segment “Blue Anycast” (111)
• Benefits
– ECMP
– No hop-by-hop signalling load and delay
– No midpoint state 16111
16065
pkt
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40
Latency TE Service
• Data from Tokyo to Brussels
– IGP shortest-path via US, higher and cheaper capacity
– PrefixSID of Brussels
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41
Content producer engineers its WAN traffic to egress peers
AS1
PrefixSID(B) Payload
Payload B AS2 D
Best BGP
and IGP
Path
ISIS/SR-based WAN AS4
A 9.9.9.9/32
PrefixSID (C)
C E
TE Policy
installed by PeeringSID(E)
Controller
Payload
Engineered Path PeeringSID(E) AS3
Payload
Payload
Engineered Path
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42
SR-based MSDC
• MPLS dataplane
• BGP control-plane
– No LDP, No RSVP-TE
– Integrated/Automated FRR
> no hop-by-hop manual configuration of static routes and their FRR behaviors
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43
Distributed DC for Content Engineering to local Peers
AS1
PrefixSID(B) Payload
Payload B AS2 D
Best BGP
Path
BGP/SR-based DC Fabric AS4
9.9.9.9/32
PrefixSID (C)
C E
TE Policy
installed by PeeringSID(E)
Controller
Payload
Engineered Path PeeringSID(E) AS3
Payload
Payload
Engineered Path
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44
End-to-end policy from DC, through WAN to peer
App SR DC SR WAN BR
App
BR
Next segments
Classify implement
Top Segment
flow and WAN Policy: Last segment
provides
push SR Cost vs Latency selects egress
ECMP-path to
segment Disjointness peer
selected DCI
list Select egress
BR
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45
End-to-end policy from DC, through WAN to peer
SR DC SR WAN BR
BR
• SDN Controller programs the segment list together with service creation
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 47
Conclusion
Segment Routing
• Unified
– DC + WAN + Aggregation
– from server in the DC, through WAN and to the service edge
• Policy-aware
– DC: disjoint planes, flow-based congestion avoidance
– WAN: disjoint services, latency-sensitive traffic, scheduled bulk transfer
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 49
Get involved
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 50
Thank you.
Complete Your Online Session Evaluation
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 52
Segment Routing
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 53
Stay Informed
http://www.segment-routing.net/
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 54
End-to-end policy from DC, through WAN to peer
App SR DC SR WAN BR
App
BR
© 2013-2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 55