Shortest path bridging 802.1 aq

Shortest Path Bridging 802.1AQ

© 2011 Avaya Inc. All rights reserved. 22

Values of 802.1aq SPB

Plug&play services enabled by end-point provisioning

Operational Simplicity

Increased network uptime

Predictable network behavior

Optimal network bandwidth utilization

Maximum network design flexibility

Immune to errors introduced by end-user

2


Shortest Path Bridging – Network VirtualizationStandard Year Name Loopfree

topology by:Service ID‘s Provisioning Virtualization

of

IEEE 802.1Q

1998 Virtual Lans

(VLAN Tagging)

Spanning Tree

SMLT

4096 Edge and Core Layer 2

IEEE 802.1ad

2005 Provider Bridging

(QinQ)

Spanning Tree

SMLT

4096x4096 Edge and Core Layer 2

IEEE 802.1ah

2008 Provider Backbone Bridging (MacInMac)

Spanning Tree

SMLT

16 Mil. Edge and Core Layer 2

IEEE 802.1aq

2011 Shortest Path Bridging

(SPBm)

Link-State-Protocol (IS-IS)

16 Mil. Only Service Access Points

IEEE: Layer 2

IETF draft: Layer 3 Unicast & Multicast

802.1Qbg 2012+ Edge Virtual Bridging

VEPA & VEB QnQAttachements to ISIDs & VLANs

VDP (LLDP) discovery ofVM‘s

VM attachmentto the network

Ethernet = IEEE

Time

3


Spanning Tree IGP

Tradition

?

Which would you rather do?

GVRP PIM-SM

IGP

mLDP

Signal after convergence Compute

Disruption

Unicast FIB

Multicast FIB

IGP

Unicast & Multicast FIB

BGP


Virtualization Technology ComparisonMPLS versus VENA

e.g. PIMProtocol

Infrastructure

e.g. RIP/OSPFProtocol

Infrastructure

e.g. 802.1q/DProtocol

Infrastructure

e.g. RFC4364Protocol

Infrastructure

e.g. Draft RosenProtocol

Infrastructure

802.1Q(VLAN)

802.1D(Spanning Tree)

SONET, SDH, Ethernet, etc…

UC IGP(IS-IS or OSPF)Layer 3 Unicast

Service

Layer 3 Multicast Service

Layer 3 Virtualized Multicast Service

Physical Infrastructure

Layer 3 Virtualized Multicast Service

Top

–D

own

Verti

cal d

epen

denc

y

Layer 3 Virtualized Unicast Service

Layer 3 Virtualized

Unicast Service

Layer 3 Multicast Service

Layer 3 Unicast Service

Layer 2 Virtualized

Service

Layer 2 Virtualized

Service IP/SPB, SPBm/SPBmProtocol Infrastructure

SONET, SDH, Ethernet, etc…

Physical Infrastructure

Horizontally Independent

Connectivity Services independent from Infrastructure

5


The Benefits of Virtualization

Server VirtualizationAllows aggregation of multiple

independent virtual servers to exist on a physical server

Network VirtualizationDecouples the physical infrastructure from the connectivity services making

the network adaptive and dynamic with simple one-touch provisioning

Network Virtualization enabled via Shortest Path Bridging

ComputeAccess

Data CenterCore

CampusCore

DistributionLayer

AccessLayer


Understanding Shortest Path BridgingAn IEEE technology using MAC-in-MAC encapsulation

– Evolved from Provider Backbone Bridging (802.1ah)

– Deployed around the world providing Carrier metro service

Standards-based OA&M (802.1ag)– Configuration and Fault Management tools built-in

– Deployed around the world testing SLA of Metro Ethernet

Eliminates the need for multiple protocols in the core– Uses a single Ethernet-based link state protocol (IS-IS)

providing virtualization services at both Layer 2 and 3

SPB is an essential component for the Avaya VENA implementation7

© 2011 Avaya Inc. All rights reserved. 8 8

Shortest Path Bridging (SPB)IEEE 802.1aq & RFC 6329

SPB Shortest Path Tree from Node A

Node A802.1ah

interfaces

SPB Network

PB Network

MPLS Network

CPE

SPB/MPLS Interworking

SPB Shortest Path Tree for Green Service from Node A

SPB is a Spanning-Tree Protocol replacement for Ethernet and introduces:Network Efficiency - No blocked portsFast resiliency - Network reconvergence in 100s of millisecondsSimplicity - Well-known networking paradigm (link state)Customized Broadcast - Broadcast only to need-to-know nodesOne-touch provisioning - Dynamic auto-discovery of end-points


The Basics of How SPBm Works

ISIS

ISIS ISIS

ISISISIS

ISISISIS

ISIS ISIS

ISIS

ISIS

CREATEISID=100

1. Discover network topology• IS-IS natural L2 routing protocol• Hierarchy built in for scaling

2. IS-IS nodes automatically build trees from themselves to all nodes:

Important properties:• Shortest path tree based on link metrics• No blocked links• RPFC to eliminate loops• Symmetric datapath between any two nodes

provides closed OAM system• unicast path now exists from every node to

every other node

3. Use IS-IS to advertise newservices communities of interest

• Floods topology, MAC and ISID information to network

4. When nodes receive notice of a new service AND they are on the shortest path, update FDB

• ISID/Service specific entries ISID=100

#config vlan 20 isid 100

CLI applied to edge switch only

Vlan 20

Vlan 20

Vlan 20

100100100

100

100

100

100100

100

100

A

B

C

9



ISIS

ISIS ISIS

ISISISIS

ISISISIS

ISIS ISIS

ISIS

ISIS

CREATEISID=100




provides closed OAM system• Unicast path now exists from every node to

every other node




• ISID/Service specific entries

Vlan 20

Vlan 20

Vlan 20

ISID=100

#config vlan 20 isid 100

CLI applied to edge switch only

A

B

C

10



ISIS

ISIS ISIS

ISISISIS

ISISISIS

ISIS ISIS

ISIS

ISIS

CREATEISID=100





every other node





Vlan 20

Vlan 20

Vlan 20

A

B

C

11



ISIS

ISIS ISIS

ISISISIS

ISISISIS

ISIS ISIS

ISIS

ISIS

CREATEISID=100


2. IS-IS nodes automatically build trees from itself to all nodes:



every other node





Vlan 20

Vlan 20

Vlan 20

A

B

C

12

© 2011 Avaya Inc. All rights reserved. 1313July 18

IEEE Plenary San Francisco

13

Simulate a Large Network

<ottawa-s9300-6>d spb statusSPB Status:

mode SPBM, nodes 187, links 412, adj 6, ufib 372, mfib 45


SPBm 802.1ah Mac-in-Mac Encapsulation

DASA

Payload

VLAN ID

DASA

Payload

C-VID

B-DAB-SAB-VID

802.1Q

802.1ahProvider BackboneBridges

Legend:

SA = Source MAC addressDA = Dest. MAC addressVID = VLAN IDC-VID = Customer VIDI-SID = 24 Bit Service IDB-VID = Backbone VIDB-DA = Backbone DAB-SA = Backbone SA

I-SID

Tunnel IdentifiersService Identifiers

CustomerVLANs

DASA

Payload

CustomerwithNo VLAN Tags

or

Consolidated Service and Tunnel

Simplified and integrated forwarding like MPLS without the complexity


Transparent NetworkingTRILL & SPB Lookup Compared

Outer-Eth

Z | B

Rbridge ATRILL

Nickname TA

Router B Router C Router D Rbridge ETRILL

Nickname TE

Host X Host YMAC Z MAC B MAC C MAC D MAC N MAC F MAC H MAC I

TRILL

N | F

Host X Host Y

SPB A SPB B SPB C SPB D SPB E

A | EEth

Route Lookup

TRILL

SPB

SPB is much simpler, lower cost, OAM transparent Solution

EthMPLS

C | D H | IPayload

L2VSN

TA | TEX | Y

X

Y

Inner-Eth

Outer-EthTRILLPayload

TA | TEX | YInner-Eth





X

Y

X | Y

FCS

FCS’

FCS’’

FCS’’’

FCSEth

A | EEth

X | YFCSIP

IP/L3VSN

Only small scale L2

Full set of L2 and L3 services


Transparent NetworkingMPLS & SPB Lookup Compared

Outer-Eth

Z | B

Router A Router B Router C Router D Router E

Host X Host YMAC Z MAC B MAC C MAC D MAC N MAC F MAC H MAC I

N | F

Host X Host Y

SPB A SPB B SPB C SPB D SPB E

A | EEth

Route Lookup

MPLS – creates a LSP

SPB – creates a ESP

SPB is much simpler, lower cost, OAM transparent Solution

C | D H | IPayload

Payload

24

X

Y

Payload

Payload

Outer-EthPayload Label

X

Y

32

11

11

Outer-EthLabel

Outer-EthLabel Outer-EthLabel


SPB

The power of Service AwarenessHost->VLAN->L2VSN->L3VSN

VSI’s

VRF’s

VLAN’s

Example Configuration of Service Mapping

Simplified Troubleshooting VSN connectivity fully redundant Regardless of edge switch model Hosts mapped to VLANs VLANs mapped to VSNs Multi-pathing – symmetric flows

Simple Management


What Problems Are We Solving?Fixing the problems of STP, MSTP, MMRP, etc…

Need to improve efficiency and flexibility

Using All Paths and Bandwidth Fast Convergence MAC Explosion Simplified Change Control

Efficiency

Physical Topology Independent Service Virtualization L2/L3 Networks Where Needed Small to Large Networks

Flexibility

Private Cloud


Shortest Path Bridging – SPBmEase of Setup

Create Backbone VLAN

VLAN

VLAN

VLAN

VLAN

VLAN

VLAN VLAN

VLAN

VLAN

Place NNI ports in Backbone VLAN Enable ISIS

Create VSN i-sid end points associated with VLAN or VRF

Services are Discovered

Network is operational

Backbone is Discovered


Shortest Path Bridging – SPBmNetwork Virtualization and Operational Simplification

Enable flexible Virtual Services Networks (VSNs) at L2 or L3 quickly and easily

Define VSN end points in the network – a virtual “plug-and-play” approach

No hop-by-hop provisioning or configuration to establish end-to-end services

Elimination of Spanning Tree and its associated issues – no blocked or orphaned links as when using Spanning Tree

Fast network convergence ~ 200 milliseconds

DestMAC

SrcMAC

VLANID Data

User data

DestMAC

SrcMAC

ServiceID Yel

DestMAC

SrcMAC

VLANID Data

User data encapsulated into the backbone

DestMAC

SrcMAC

ServiceID Red

DestMAC

SrcMAC

VLANID Data

D-MAC S-MAC VLAN Data

VLAN

VLAN

VLAN

VLAN

VLAN

VLAN VLAN

VLAN

VLAN


SPB Service TypesLayer 2 Virtual Services Network

VLAN 200

VLAN 200

Non-SPB Switch

Non-SPB Switch

BEBSwitch

BEBSwitch

BCBSwitch

BCBSwitch

SPBm ISIS Domain802.1QVLAN Tagged

802.1QVLAN Tagged

VLAN 200

VLAN 200

I-SID200

I-SID200

VLAN 120

VLAN 150

VLAN 150

I-SID110

VLAN 120

I-SID110

• Transparent Layer 2 VLAN extension of services across SPB domain• Simply associate I-SID to VLAN in BEB Switches


SPB Service TypesLayer 3 Virtual Services Network

VLAN 10

VLAN 10

Non-SPB Switch

Non-SPB Switch

BEBSwitch

BEBSwitch

BCBSwitch

BCBSwitch


802.1QVLAN Tagged

VLAN 200

VLAN 200

VLAN 120

VLAN 120

• Simply associate I-SID to VRF Instance in BEB Switches• SPB IPVPN reachability TLV 184 used to advertise IPVPN reachability among ISIS

peer switches within the SPB domain

I-SID500

I-SID500


SPB Service TypesInter-VSN Routing

VLAN 10

VLAN 200

VLAN 10

VLAN 10

Non-SPB Switch

Non-SPB Switch

BEBSwitch

BEBSwitch

BEBSwitch

BCBSwitch


802.1QVLAN Tagged

VLAN 200

VLAN 200

I-SID10

I-SID10

I-SID200

I-SID200

VLAN 100

VLAN 150

I-SID110

I-SID110

• IP Route from any Layer 2 Virtual Services Network to other Layer 2 VSNs

VLAN 150

VRFVirtual Router Instance


SPB Service TypesIP Shortcuts (Route propagation into ISIS)

VLAN 10

VLAN 10

Non-SPB Switch

Non-SPB Switch

BEBSwitch

BEBSwitch

BCBSwitch

BCBSwitch


802.1QVLAN Tagged

VLAN 200

VLAN 200

VLAN 120

VLAN 120

VLAN 100

VLAN 100

Route redistributionacross ISIS

• Direct IP forwarding over IS-IS• Simply enable IS-IS Redistribution (direct – rip – ospf – static – bgp)


SPB Service TypesBGP IP-VPN over IS-IS

VLAN 10

VLAN 10

Non-SPB Switch

Non-SPB Switch

BEBSwitch

BEBSwitch

BCBSwitch

BCBSwitch


802.1QVLAN Tagged

VLAN 200

VLAN 200

VLAN 120

VLAN 120

VLAN 100

VLAN 100

• BGP-Based IP-VPNs and IP VPN Lite allow hub and spoke configuration by import and export Route Target values

GRT/NRE Over IS-IS

iBGP Peering CLIPCLIP


SPB ServicesSMLT Switch Clustering Interoperability

VLAN 200

VLAN 200

Non-SPB Switch

Non-SPB Switch

BEBSwitch

BEBSwitch

BCBSwitch

BCBSwitch


VLAN 200

I-SID200

• All L2 VSN and L3 VSN and IP VPN Services Supported• Full backwards compatibility with Avaya SMLT-Based Switch Clustering

VLAN 200

VLAN 200

I-SID200

I-SID200


SPB ServicesLayer 2 and Layer 3 QoS and Policing

VLAN 10

VLAN 10

Non-SPB Switch

Non-SPB Switch

BEBSwitch

BEBSwitch

BCBSwitch

BCBSwitch

SPBm ISIS Domain

VLAN 200

VLAN 200

VLAN 120

VLAN 120

• Map Port/VLAN/VSN markings to 802.1p Layer 2 marking used throughout SPB backbone

I-SID500

I-SID500

Port Policer

Edge port Trusted or Untrusted

Full 802.1p and IP DiffServ QoS SupportMap ingress DSCP or 802.1p markings to SPB Backbone 802.1p QoS markings

Queue based on 802.1p priority within SPB backbone


802.1ag CFM– Maintenance hierarchies– Layer 2 Ping– Layer 2 Traceroute– Layer 2 Tracetree

Network Discovery– Service (e.g., all BEBs supporting

common service instance)– Network (e.g. all devices common

to a domain)

Y.1731 Performance Monitoring– Frame Delay– Frame Delay Variation– Frame Loss

EdgeSwitch

EdgeSwitch

TransitSwitch

Adapt Adapt

NNILink

NNILink

UNILink

UNILink

Link OAMTrunk OAM

Service OAM (SID)

customer demarcs

Link OAM Link OAM

Trunk

802.1ag

802.1ag

Service

802.1ag Maintenance levels/hierarchy

Conceptually:-monitor the trunk or the service… or both

Built-in and on-switch

IEEE 802.1ag CFM – Connectivity Fault Management and ITU Y.1731 Performance Management

28


IEEE 802.1ag Overview and SupportWhy implement it?

IEEE 802.1ag provides connectivity fault management previously not available in ethernet networks:– Fault Detection (failures)– Fault Verification (misconfigurations)– Fault Isolation (troubleshooting)– Fault Notification (SNMP traps)

CFM can be provided at the Ethernet service and trunk layers:– Service layer : Client (C-VLAN)– Trunk layer : B-VLAN, Trunk, Port

29


Data Center ConnectivityCase Study: Server Deployment with VMware & VMotion

Data Center 1

Core

iSCSI Array

Data Center 2

Modular Switch

Net Mgmt

Virtualized ServerStackable Switch

Scenario• HR needs three new web servers• The traffic flowing between these servers and

other servers must be completed separated from the rest of the organization

• VMware/Vmotionrequired

• DC1 – 2 servers• DC2 – 1 server

VRF VRF

VRF

Return

SPB VPN connectivity established end-to-end

Define I-SID end point




End-to-End Provisioning for VMware SystemsAutomated End-to-End Provisioning

• VM instances are provisioned through VCenter

• UCM/Virtual Provisioning Service recognizes through API that new VMWareinstance on virtual Port Group is being configured and provisions network connectivity accordingly

Virtual SwitchPort group 106

Virtual SwitchPort Group 20

ISID 10

VLAN 10

Port Group10

ISID 20

Vlan 20

Port Group20

1/1 2/14

1/14 2/5

VCenter

VPS

NIC2NIC1

VM instances

API

Virtual SwitchPort group 106

Virtual SwitchPort Group 20

ISID 10VLAN 10

Port Group10

ISID 20Vlan 20

Port Group20

1/1 2/14

1/14 2/5

Core

NIC2NIC1

VM instances

Core

PreconfiguredRule Set for binding:Server-Type: “Production“Port: anyVLAN: 10Isid: isid=200

Learns topology

Link LevelTopology Protocol

Link LevelTopology Protocol