BGP L3VPN Virtual PE Framework



Similar documents
SDN CONTROLLER. Emil Gągała. PLNOG, , Kraków

Data Center Network Virtualisation Standards. Matthew Bocci, Director of Technology & Standards, IP Division IETF NVO3 Co-chair

OVERLAYING VIRTUALIZED LAYER 2 NETWORKS OVER LAYER 3 NETWORKS

SOFTWARE DEFINED NETWORKING: INDUSTRY INVOLVEMENT

NVO3: Network Virtualization Problem Statement. Thomas Narten IETF 83 Paris March, 2012

CLOUD NETWORKING THE NEXT CHAPTER FLORIN BALUS

Cloud Networking: Framework and VPN Applicability. draft-bitar-datacenter-vpn-applicability-01.txt

Evolution of Software Defined Networking within Cisco s VMDC

SDN PARTNER INTEGRATION: SANDVINE

SOFTWARE DEFINED NETWORKING

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

Software Defined Network (SDN)

Virtualization, SDN and NFV

Transform Your Business and Protect Your Cisco Nexus Investment While Adopting Cisco Application Centric Infrastructure

Extending Networking to Fit the Cloud

Data Center Infrastructure of the future. Alexei Agueev, Systems Engineer

Enabling Solutions in Cloud Infrastructure and for Network Functions Virtualization

Datacenter Network Virtualization in Multi-Tenant Environments

Data Center Migration Lift and Shift Use Case Scenario

What is SDN all about?

WHITEPAPER. Bringing MPLS to Data Center Fabrics with Labeled BGP

Roman Hochuli - nexellent ag / Mathias Seiler - MiroNet AG

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

White Paper. Juniper Networks. Enabling Businesses to Deploy Virtualized Data Center Environments. Copyright 2013, Juniper Networks, Inc.

CloudNet: Enterprise. AT&T Labs Research, Joint work with: Timothy Wood, Jacobus van der Merwe, and Prashant Shenoy

MPLS-based Virtual Private Network (MPLS VPN) The VPN usually belongs to one company and has several sites interconnected across the common service

WAN Topologies MPLS. 2006, Cisco Systems, Inc. All rights reserved. Presentation_ID.scr Cisco Systems, Inc. All rights reserved.

Cisco Prime Network Services Controller. Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems

VXLAN Bridging & Routing

WHITE PAPER. Network Virtualization: A Data Plane Perspective

THE ON-DEMAND DATA CENTER NETWORK TRANSFORMATION IN A CHANGING INDUSTRY. Ken Cheng, CTO, Brocade October, 2013

5 Key Reasons to Migrate from Cisco ACE to F5 BIG-IP

BRINGING NETWORKS TO THE CLOUD ERA

Stretched Active- Active Application Centric Infrastructure (ACI) Fabric

Simplify Your Data Center Network to Improve Performance and Decrease Costs

VPN Technologies: Definitions and Requirements

A Resilient Path Management for BGP/MPLS VPN

MP PLS VPN MPLS VPN. Prepared by Eng. Hussein M. Harb

SDN and Data Center Networks

Network Virtualization for Large-Scale Data Centers

MPLS over IP-Tunnels. Mark Townsley Distinguished Engineer. 21 February 2005

Data Center Use Cases and Trends

What is SDN? And Why Should I Care? Jim Metzler Vice President Ashton Metzler & Associates

Network Virtualization Network Admission Control Deployment Guide

Demonstrating the high performance and feature richness of the compact MX Series

Dell Networking ARGOS 24/03/2016. Nicolas Roughol. Networking Sales Engineer. Tel : nicolas_roughol@dell.com

SwiftStack Global Cluster Deployment Guide

Scalable Approaches for Multitenant Cloud Data Centers

Next Gen Data Center. KwaiSeng Consulting Systems Engineer

VMware and Brocade Network Virtualization Reference Whitepaper

Testing Network Virtualization For Data Center and Cloud VERYX TECHNOLOGIES

Palo Alto Networks. Security Models in the Software Defined Data Center

Group Encrypted Transport VPN

MPLS over Various IP Tunnels. W. Mark Townsley

the Data Center Connecting Islands of Resources Within and Across Locations with MX Series Routers White Paper

Transforming Evolved Programmable Networks

Using LISP for Secure Hybrid Cloud Extension

Network Virtualization

Data Center Virtualization and Cloud QA Expertise

DREAMER and GN4-JRA2 on GTS

CoIP (Cloud over IP): The Future of Hybrid Networking

Testing Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES

Scalable DDoS mitigation using BGP Flowspec

CGN Deployment with MPLS/VPNs

wipro.com 10 Things to Look for in Software Defined WAN With SD WAN solutions coming of age, the year 2016 is expected to be its break out year

MPLS Layer 3 and Layer 2 VPNs over an IP only Core. Rahul Aggarwal Juniper Networks. rahul@juniper.net

CORD Fabric, Overlay Virtualization, and Service Composition

Networking in the Era of Virtualization

Verizon Managed SD WAN with Cisco IWAN. October 28, 2015

RIDE THE SDN AND CLOUD WAVE WITH CONTRAIL

Virtual Subnet: A Scalable Cloud Data Center Interconnect Solution

Cisco Which VPN Solution is Right for You?

VPN taxonomy. János Mohácsi NIIF/HUNGARNET tf-ngn meeting April 2005

ICTTEN6172A Design and configure an IP- MPLS network with virtual private network tunnelling

Using OSPF in an MPLS VPN Environment

Lecture 02b Cloud Computing II

PRASAD ATHUKURI Sreekavitha engineering info technology,kammam

CLOUD NETWORKING FOR ENTERPRISE CAMPUS APPLICATION NOTE

Virtual Network Overlays Product / RFI Requirements

Software Defined Networking and Network Virtualization

Using SouthBound APIs to build an SDN Solution. Dan Mihai Dumitriu Midokura Feb 5 th, 2014

Cisco and Citrix Solution

AT&T Managed IP Network Service (MIPNS) MPLS Private Network Transport Technical Configuration Guide Version 1.0

Multitenancy Options in Brocade VCS Fabrics

Definition of a White Box. Benefits of White Boxes

Cloud Fabric. Huawei Cloud Fabric-Cloud Connect Data Center Solution HUAWEI TECHNOLOGIES CO.,LTD.

NETWORKING FOR DATA CENTER CONVERGENCE, VIRTUALIZATION & CLOUD. Debbie Montano, Chief Architect dmontano@juniper.net

(R)Evolution im Software Defined Datacenter Hyper-Converged Infrastructure

Sikkerhet Network Protector SDN app Geir Åge Leirvik HP Networking

Hyper-V Network Virtualization Gateways - Fundamental Building Blocks of the Private Cloud

Analysis of Network Segmentation Techniques in Cloud Data Centers

Simplify IT. With Cisco Application Centric Infrastructure. Barry Huang Nov 13, 2014

Why Software Defined Networking (SDN)? Boyan Sotirov

Transcription:

BGP L3VPN Virtual PE Framework dra7- fang- l3vpn- virtual- pe- framework- 01 L. Fang, D. Ward, R. Fernando, D. Rao (Cisco) M. Napierala (AT&T) N. Bitar (Verizon) 11/09/2012 IETF 85, Atlanta

MoUvaUon Service Providers and large enterprises want to build virtual Private Clouds (vpcs) by leveraging exisung BGP IP VPNs [RFC 4364], and extending it deep into the Service networks. Why IP VPN? Is most deployed, extend to service network to complete vpc Supports rouung isolauon and traffic separauon at the edge Is mature technology with 14 yrs wide deployment and large customer bases Is proven to Scale (e.g. 7+ Million vpn routes in some network) Support end- to- end vpc, especially applicauons are mostly IP Rich policies for value added service creauon beyond simple connecuvity

Virtual PE DefiniUon Virtual PE (vpe) A PE so7ware instance which can reside in any network or compute devices. A common place for vpe can be a service network end device, e.g., a server which supports muluple client/applicauon Virtual Machines (s), or a Top- of- Rack switch (ToR) in the Data Center. Another example can be a service node in a 3GPP network. The control and forwarding components of the vpe are decoupled, they may reside in the same physical device or in different physical devices.

vpe Architecture Example of IP VPN vpe at the End Device Virtual RR (vrr) WAN edge Gateway MPLS Core WAN Network Gateway Service Network Fabric vpe ApplicaUon/ () Compute/ Storage/ Appliance 4

vpe on a Server Example - vpe L3 SW instance on server - vpe and relauonship: PE- - on vpe to isolate individual tenant rouung and traffic separauon vpe R Y G Server

End- to- end L3VPN Overlay from Enterprise to SP DC with vpe in End Device Enterprise G Enterprise R DC Enterprise Network/DC PE Provider Networks PE RR P Not VPN aware MP- BGP RR PE PE Provider Network MP- BGP RR vrr vrr DC Gateway Controller / Orchestra8on DC infra Not VPN aware Gateway to vpe signaling opuons: 1) MP- BGP 2) Extensible messaging protocol 3) Controller Forwarding: IP, MPLS, others Provider DC Host Host Host Host Host Host Host vpe Server

Control Plane Route Server 1. Distributed IP VPN control plane vpe parucipates in overlay BGP IP VPN control protocol: MP- BGP [RFC4364]. using extensible signaling messaging protocols can be alternauve, such technologies, e.g. XMPP, [I- D.iek- l3vpn- end- system]. 2. Centralized rouung controller vpe control plane and data plane are physically decoupled. The control plane direcung the data flow may reside elsewhere, such a centralized controller. The controller can be used for rouung informauon distribuuon, or directly insert the entries into FIB (details will be in next revision). 3. Route server can be anywhere 4. Use RR and RT Constrain [RFC4684] to scale.

Data Plane VPN Forwarder 1. The VPN forwarder locauon opuons: 1) within the end device where the (e.g., applicauon/s) are. 2) in an external device which the end device connect to, for example, a Top of the Rack (ToR) in a data center. 2. ConsideraUons in design: Device capability Overall soluuon economics QoS/firewall/NAT placement OpUmal forwarding Latency and performance OperaUonal impact 3. EncapsulaUon 1) MPLS 2) IP / GRE tunnel [RFC4023] 3) Other IP network overlay encapsulauons eg. VXLAN, NVGRE.

Inter- connecuon considerauons Must support connecuons with non- IP VPN soluuons. A clear demarcauon should be preserved at the inter- connecung points. Problems encountered in one domain should not impact other domains. Consider this scenario: Legacy layer 2 connecuvity must be supported in certain sites/s/s (which is a small percentage of total sites), and the rest sites/s/s need only L3 connecuvity. One may consider to use combined vpe and /virtual soluuon to solved the problem. Use L3VPN vpe for all sites with IP connecuvity, and use a physical or virtual (v, may reside on the end device) to aggregate the L2 sites which, for example, may be a single container in a data center. The /v can be considered as inter- connecung point, where the L2 network are terminated and the corresponding routes for connecuvity of the L2 network are inserted into L3VPN. The L2 aspect is transparent to the L3VPN in this case.

Next Steps Address all comments on the list and in the meeung Issuing next revision soon a7er the IETF 85 Ask the WG if folks are interested to have this work as WG item

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information