introducing recent cisco7600 innovations

Customer UpdateCisco Expo 2010 - Split

Introducing recent Cisco7600 Innovations

Christian SchmutzerTechnical Marketing Engineer, [email protected] 25-Mar-2010Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

1

Cisco 7600 Services Ethernet leadershipConvergence of Transport & Service capabilities Carrier Ethernet 20G Linecards > 40G Linecards Broadband Aggregation Flexible QoS Resiliency: Multichassis LAG Ethernet OAM, CFM 8.1 L2/L3 Services Flexibility and Scale EVC Infrastructure Provider Bridging

Mobility Integrated Timing, SyncE, 1588v2 IP RAN Aggregation Cell Site Backhaul over MPLS Cell Packing Enhanced Gateway Capabilities Integrated Mesh WiFi agg PDSN/GGSN

VideoCisco 7600 Series LSM: P2MP-TE RSVP Call Admission Control Inline Video Monitoring 80G infrastructure capability Multicast HA NSF/SSO WAN PHY/OTN PHY

Over 95,000 Cisco 7600 Units Deployed

Presentation_ID

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

2

Investments Through Product Phases 1588 on ES+* 7600 Journey.. MPLS-TP *Foundation Quality ExcellenceProgrammable Ethernet *

2010 SIP-200/400/600 ATM, Ethernet, Serial, CHOC, POS SPAs IPSec SPA Foundation of Converged PE 2009 2007-08

2011+

Supervisor 720 720G Fabric E-FlexWAN Lan Cards Foundation of CE

2005-06

2003-04

S-Class Chassis ES20 LC CEOPs Services Introduction Voice, MGW Services Introduction, Extending in Mobile

40G ,ES+ LC IPoDWDM ES+ Combo LC ES+ LQ LC RSP720-10G HA Enhance Svc Aware Ethernet, Solidification of Mobile & CE

* Not Eced, under planning, Presentation_ID subject to change 2006 Cisco Systems, Inc. All rights reserved.

Seed

InvestCisco Confidential

Capitalize3

The Cisco7600 Road of Success

$5B in Revenue

100,000 Chassis

500,000 slots

7 Million Carrier Ethernet PortsPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

4

Cisco 7600 Service Evolution at the EdgeLAN, WAN, and Services

EnginesSupervisor 32 Supervisor 720 Route Switch Processor 720 Route Switch Processor 720 - 10G

Ethernet Services ModulesGE and 10GE with Rich QoS, Distributed, Line-rate Performance

SPA Interface ProcessorsModular Carriers Cards for WAN and Metro Shared Port Adapters

High-Density Ethernet ModulesHigh-Density GE and 10GE with Distributed, Line-rate Performance

Chassis3, 4, 6, 9, and 13 slots 80 gig capable Carrier class

Services ModulesDistributed Security; IPSEC SPA, Firewall, IDS, DoS Protection

Enhanced FlexWANPresentation_ID 2006 Cisco Systems, Inc. All rights reserved.

7500 Parity and PA Investment Protection

Cisco Confidential

5

7600 Engines Comparison

SUP720Control Plane Ctrl Plane CPU DRAM NVRAM Bootflash Forwarding Plane MAC (CAM) Table Size (pract./theor.) IP Subscriber Termination IP Forwarding MPLS Forwarding 10 GigE Uplinks MSFC3 600Mhz MIPS 1GB 2MB 64MB PFC3B/XL 32k / 64k x 30Mpps 20Mpps N/A

RSP720-10GE RSP720MSFC4 1.2GHz PowerPC Max 4GB 4MB 512MB PFC3C/XL 80k / 96k 32k 30Mpps 20Mpps RSP720-10GE

RSP720 Benefits1. Reduced Boot Time 2. Faster Convergence time 3. Increased Scale

Presentation_ID


Cisco Confidential

6

ES+ Ethernet Services Plus FamilyHigh Performance GE & 10GE Options to 40 Gig Line-Rate L2/L3 multicast w/features EVC, CFM, VPLS, H-VPLS ANA EMS support

Dense QoS 256K queues 4-Level H-QOSBNGBROADBAND NEXT GEN.

Service Rich Subscriber Aware Ethernet BNG/ISG PPP/IP Sessions 802.1ah SyncE In-Line Video Monitoring Lawful Intercept Programmable microcode CWDM&DWDM SFPs/XFPs 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

Presentation_ID

7

Chassis Support: 7606, 7609, 7603-S, 7604, 7606-S, 7609-S, 7613 Processor Support: Sup720-3B/XL RSP720-3C/XL RSP720-10GE-3C/XL General Feature Support: Superset of ES+4x10GE 2x10GE

ES+XT Feature Highlights LAN, WAN, OTN PHY support ITU-T G.709/FEC support EFEC ITU G.975.1 I.4 mode between 7600s Performance Monitoring (OTN and WAN) CISCO-OTN-MIB support (FEC and Controller Tables) Clocking support (loop, line, internal)

BNGBROADBAND NEXT GEN.

Presentation_ID


Cisco Confidential

8

2x10GE + 20x1

1x10GE + 10x1

ES+XC Feature Highlights

BNGBROADBAND NEXT GEN.

Presentation_ID

* ES+XT parityCisco Systems,(G.709/FEC) WANPHY support, post FCS (Rls 7 target) 2006 - OTN Inc. All rights reserved. Cisco Confidential

9

Multiple Savings From ES+XCRequirements 1 Redundant Uplinks Total Cost 2 20 GigE ES+ UNI ports$8 0k $8 0k $6 0k $4 5k

$370k$4 5k

3 Redundant RSPs

7606-S Chassis

Core or Optical NetworkPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

Redundant NNI Facing Links

UNI Facing Links10

Multiple Savings From ES+XC$8 7.5 k $8 7.5 k $4 5k $4 5k

7604 Chassis

Total Cost

$285kCore or Optical NetworkRedundant NNI Facing Links UNI Facing Links

1 Reduction in power

2 Reduction in footprint

3 Reduction in cost

-30%est. - 553w*Presentation_ID 2006 Cisco Systems, Inc. All rights reserved.

-29%- 2RUCisco Confidential

-23%- $85k*

*projected estimates

11

ES20 and ES+ Feature LicensingES+ LicensesLicenses 76-ES+BASIC-LIC 76-ES+ADVIP-LIC 76-ES+OTN-LIC 76-ES+ISG-LIC Description Per Card - Base License (included), IPv6 Per Card - MPLS VPN, MVPN, 6VPE Per Card - OTN License for G.709/FEC Per Chassis ISG License, 8k subs, 8 MPLS VRFs Comments All models All models ES+XT only Not for ES+T

ES20 LicensesLicenses 76-ES20-BASIC-LIC 76-ES20-ADVIP-LIC Description Per Card - Base License (included), IPv6 Per Card MPLS VPN, MVPN, 6VPE

IPv6 is now available in the Basic License License only required for cards that use licensed features Licenses can not be transferred between ES20 & ES+Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

12

Support in SRD3 & SRE SW images

Presentation_ID


Cisco Confidential

13

L2 Shapers (4)

L3 Shapers (8)

L4 Queues (16)

ES+T1G or 10G port

Maximum of 16 queues at leaf level

Alternatives include 2/4/16 and asymmetric configurationsPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

14

ES20Number of Queues BNG Capable 10G Interface Modes OTN G.709/FEC Video Mon Capable L3VPN H-QoS L2VPN/VPLS SyncE Capable DFC Interfaces16k No LAN No No Yes Yes Yes No 3C/3CXL 2/4x10GE 20/40xGE

ES+128k (I/E) Yes LAN No Yes Yes Yes Yes Yes 3C/3CXL 2/4x10GE 20/40xGE

ES+XT ES+XC ES+T128k (I/E) Yes LAN/WAN SRD1 Yes Yes Yes Yes Yes 3C/3CXL 2x10GE 4x10GE 128k (I/E) Yes LAN/WAN Rls7 Yes Yes Yes Yes Yes 3C/3CXL 2x10+20X1 1x10+10X1 16/port Yes LAN/WAN SRD3 Yes Yes Yes Yes Yes 3CXL 2/4x10GE 20/40xGE

ES+, ES+XT, ES+XCExtended capability to support higher subscriber density applications with 128k queuesPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

ES+ T (Transport)Provides transport service capability with 16 queues per port, and price conscious scale15

12.2 SREDelivering ground breaking Mobile networking capabilitiesTiming EnhancementsSyncE Physical Layer Support on ES+2x10GE + 20x1GEBTS LTEFDD

RNC

BSC

1x10GE + 10x1GE

POC2ES+

POC1ES+ GE/10GE Ethernet

IP/ MPLS

SyncE (in)

LTE Gateway - GTPv2IP Address Allocation User Authentication/ Provisioning/ Accounting or nf tio ra ct t o ne e ge nn Re co S P e to RA PP bil ate Mo rpor Coca Coca Coca Co Cola Cola Cola VPN VPN VPN GGSN IP : 172.2.2.2 Charging tariff-times 0900, 1200 Charging record per MB of data access-point 1 name INTERNET_SERVICES No User AUTHENTICATION IP address from Radius access-point 2 name COCACOLA_CORP Authenticate User regenerate PPP VRF1 access-point 3 name PREPAID.NET Do AUTH/ACCT local IP address

PRC Cell Packing CEoPS and OC48 ATM SPAs Single Cell RelayTunnel Label 4 Bytes VC Label 4 Bytes ATM HEADER w/o HEC 4 Bytes Payload 48 Bytes

DHCP

AAA

CG

SGSN

P L2T

GGSNBEARER IP Address NETWORK configured static Mobile OR provisioned on radius/DHCP with GGSN Interfaces with SGSN/ Charging gateway/ RADIUS/ DHCPPresentation_ID

Packed Cell RelayTunnel Label 4 Bytes VC Label ATM HEADER w/o HEC 4 Bytes Payload Cells x N 52xN ATM HEADER w/o HEC 4 Byte Payload

Internet

APN1 SGSN GTP Tunnels APN2 APN3

4 Byte

48 Bytes

48 Bytes

GTP Mgmt. 2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

PACKED CELLS MAX 28 (28*52=1456 bytes)

16

Introduction to Synchronous EthernetSupported on all ES+ family membersES+, ES+T, ES+XT, ES+XC

SyncE uses physical layer to transmit clock information ESMC is not available in 12.2(33)SRE (planned for RLS7)ESMC Ethernet Synchronization Messaging Channel Used to transmit clock quality information

Up to 6 clock sources can be configured

Presentation_ID


Cisco Confidential

17

Application #1Clock Recovery from SyncE NetworkSecondary

SDH/PDH Network

Primary

T1 I/Fs

CEOP

SUP/RSPGE or 10GE I/Fs 6/1 GE or 10GE I/Fs 5/1

SyncE Network

PRC

OCx

ATM

ES+

4/0/0

SyncE Network

GE or 10GE I/Fs

ES+3/1

Backplane Clock Distribution

ES+

7600! Example: configure core-facing GigE as timing source and transfer timing to downstream SyncE or SONET/PDH links ! interface GigabitEthernet 5/1 Recover clock from GE line synchronous mode clock source line Map GE clk to primary BP clock network-clock synchronization automatic network-clock input-source 1 GigabitEthernet 5/1 Map GE clk to secondary network-clock input-source 2 GigabitEthernet 6/1 BP clock (config not shown) interface ATM 4/0/0 clock source internal interface GigabitEthernet 3/1 synchronous mode clock source Cisco Systems, Inc. All rights reserved. Presentation_ID 2006 internal

Cisco Confidential

19

Application #2Clock Recovery from External (BITS)SDH/PDH NetworkT1 I/Fs

CEOP

SUP/RSP

BITS or other PRCtraceable reference

Secondary

OCx

Primary

ATM

Other LCBITS

4/0/0

SyncE Network

GE or 10GE I/Fs

ES+3/1

Backplane Clock Distribution

ES+

5/1

GE or 10GE I/Fs

SSU

7600! Example: configure core-facing GigE as timing source and transfer timing to downstream SyncE or SONET/PDH links ! interface GigabitEthernet 5/1 synchronous mode clock source internal interface GigabitEthernet 3/1 synchronous mode clock source internal interface ATM 4/0/0 atm clock internal network-clock synchronization automatic network-clock input-source 1 external 5/0/0 t1 sfPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

Automatic mode configures ES+ TX clocking to take system clock Non-intuitive Port Ref Alert BITS port is always x/0/0 X=slotnum20

What and Why Service Groups?Deploy many services on a single port Transport aspects of a Service are typically defined per EVC or Sub-IF QoS aspects historically can only be configured onPer EVC/Sub-IF basis Per physical port basisQos per EVC Wholesale Customers

Qos per physical port

Qos per Sub-IF

1. Customer buying service made of 2x Sub-IFs

Two major applications where we needed a solution for1.multi-service customer one customer buys multiple sub-IFs/EVCs but does want an aggregate QOS SLA 2.Provider does want to separate customers buying different products i.e. residential vs. business; retail vs wholesale and does want to assign certain QOS SLA to each of the different groups

Qos per physical port

Qos per Sub-IF

Qos per EVCPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

Retail Customers21

Configuring Service GroupsStep 1: Create a Service GroupPE2(config)#service-group 1 PE2(config-service-group)#? service-group submode commands default Set a command to its defaults description Service group specific description exit Leave the service-group configuration submode no Negate a command or set its defaults service-policy Attach a policy-map to a service group

Step 2: Configure Ingress and/or Egress QoSPE2(config-service-group)#service-policy ? input Attach a policy-map to ingress of a service group output Attach a policy-map to egress of a service group

Step 3: Assign a EVC to a Service GroupPE2(config)#int gi 2/0/10 PE2(config-if)#service instance 100 ethernet PE2(config-if-srv)#group ? Service group ID number

Presentation_ID


Cisco Confidential

22

3-Level QoS ExampleService-group 2 service-policy out hqos Int gi 2/0/10 service instance 102 eth service-policy in policing service instance 103 eth service-policy in policing Policy-map flat class class-default shape average bandwidth remaining ratio Policy-map hqos class class-default shape average bandwidth remaining ratio service-policy llq Policy-map llq class pq police priority class cbwfq bandwidth percent

Service Group (egress)Parent: Rate-limited by shaper & Minimum bandwidth by BRR Child: queuing with 1x PQ and 1x CBWFQ

Policy-map policing class class-default police ...

EVC (ingress)Traffic is rate-limited and/or marked (DiffServ ingress Metering as per QoS SLA)Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

23

4-Level QoS ExampleService-group 1 service-policy out flat Int gi 2/10 service instance 100 eth group 1 service-policy out hqos service-policy in policing service instance 101 eth group 1 service-policy out hqos service-policy in policing Policy-map flat class class-default shape average bandwidth remaining ratio Policy-map hqos class class-default shape average bandwidth remaining ratio service-policy llq Policy-map llq class pq police priority class cbwfq bandwidth percent Policy-map policing class class-default police ...

Service Group (egress)Rate-limited by shaper Minimum bandwidth by BRR

EVC (egress)Child: queuing with 1x PQ and 1x CBWFQ

Parent: Rate-limited by shaper & Minimum bandwidth by BRR

EVC (ingress)Traffic is rate-limited and/or marked (DiffServ ingress Metering as per QoS SLA)Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

24

Different support on port-channel vs single-link

Policy Combinations Support MatrixPolicy combination ES+ Ingress H-QoS queuing on service only (3-level) H-QoS queuing on group only (3-level)H-QoS queuing on service and flat queuing on group (4-level)

ES20 Egress Yes Yes Yes No No Yes Yes No Ingress No No No No No Yes 2) Yes 2) No Egress Yes Yes No No No No No No

Yes 1) Yes 1) Yes 1) No No Yes Yes No

H-QoS queuing on group and flat queuing on service H-QoS queuing on service and group (5-level) Policing on service only Policing on group only Policing on service and group

1) not supported on Port-channel 2) not supported on Port-channelPresentation_ID

Planned for RLS7Cisco Confidential

Workaround: Hierarchical policing on Groups is supported!


25

12.2 SRE Delivering Advanced Carrier Ethernet Services at the EdgeResiliency EnhancementsmLACP, Hot-Standby Pseudowire, REP+EVC

Shi p Q4C ping Y09

Carrier Ethernet Convergence802.1ah + VPLS , CFM 8.1, EVC expansionEPLAN: Port Classify default EPLAN: QinQ Access Classify S-VLAN Ingress Pop SVLAN symmetric EVPLAN: 802.1q Access Classify C-VLAN Ingress Pop CVLAN symmetricISID-1 ISID-1

MPLS Access Dual Homed Access MPLS/IP Core Ring Access

802.1q or QinQ C-MACBD2

H-VPLS Transport

VFI

802.1q or QinQ 802.1q or QinQ C-MACBD2 ISID-2 ISID-2

VFIB-MAC BD

VPLS PW

802.1q or QinQ

PBB AC

Video IntegrationMulticast HA, LSM: P2MP-TE, Video Mon (Q1CY10)MDI:HubCMTS GQAM /XDQA

MDI:Headend Cisco 7600 Cisco 7600 CRS-1 DCM DCM DNCS

HubCMTS

Cisco 7600 CRS-1

GQAM /XDQAPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

27

Cisco 7600 High AvailabilityNetwork and Node ResiliencyMicrowave Access

Access Resiliency MechanismsSR/MR APS Access Circuit Redundancy PW Redundancy, MS-PW Resilient Ethernet Protocol (REP) Spanning Tree (MST, PVRSTP) SR/MR 802.3ad (mLACP) R-L2GP (SRE), MAC withdrawal

BTS Node B

Cisco 7600Microwave

TDM/ATM Access

MPLS/IP Core

Node Resiliency MechanismsFully Redundant Commons Fast Fabric Synchronization Protocol Inclusive NSF/SSO EFSU/ISSU ISIS NSR (OSPF & BGP, Planned)

BTS

Node B

Core Resiliency MechanismsMPLS Access

BTS Node B

2-way PW Redundancy (SRE) MPLS TE/FRR, HSRP Hot Standby PW (SRE) BFD, BFD VCCV (Planned) PIC Edge (SRE), PIC Core IP FRR (Planned), MoFRR (Planned)Cisco Confidential

Presentation_ID


28

BGP Prefix Independent Convergence (PIC)Detection of Link layer failure Report failure to Route Controller Generate and flood an LSP Trigger and Commute an SPFBGP PIC 10s of milliseconds milliseconds 10s of milliseconds milliseconds

Adjust FIB with single event and communicate change to linecardsImmediate (0 milliseconds)

Immediate (0 milliseconds)

Install FIB adjustment into linecard HW path

Presentation_ID


Cisco Confidential

29

BGP PIC VariantsBGP PIC CoreIGP path to BGP Next-Hop does change Examples: PE-P or P-P link failure, P node failure

BGP PIC EdgeBGP Next-hop does change Examples: Egress PE node failure, PE-CE link failure

Presentation_ID


Cisco Confidential

30

BGP PIC CORESub-Second BGP Convergence

Cisco Leadership Feature!

Intf1 CE1 VPN1 site1 PE1 PE2 CE2 N/n VPN1 Site2

Normal forwarding path from ingress to egress PE

Intf1 CE1 VPN1 site1 PE1 PE2 Intf2 VPN1 Site2 CE2 N/n

Forwarding path from ingress to egress PE upon core failureConfigurationcef table output-chain build favor convergence-speedPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

31

Core Convergence without BGP PICReaction to this failure see next slide

In case of 10,000 BGP prefixes, 10,000 output chains need to be rewritten!

Presentation_ID


Cisco Confidential

32

Core Convergence with BGP PICNew Output Chain Element (OCE) called loadinfo pointing to label OCE (IGP label) and adjacency OCE (outgoing interface)

Reaction to this failure see next slide

10,000 BGP prefixes point to loadinfo, one rewrite change in OCEs of loadinfo is enough to converge 10,000 prefixesPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

33

7600 BGP PIC Core Test Results

63,291 prefixes/sec

5,035 prefixes/sec

No PIC PIC

10,000 FIB rewrite events 10,000 new adjacencies are created, 10,000 pointers are redirected to new adjacency entries 1 FIB loadinfo inplace modification event Content of 1 adjacency is rewritten, no pointers are redirected 1)

No PIC PIC

10,000 FIB rewrite events 1 new adjacency is created, 10,000 pointers are redirected to 1 shared adjacency entry 1 FIB loadinfo inplace modification event Content of 1 adjacency is rewritten, no pointers are redirected35

1) PIC core for VPNv4 prefixes Inc. All rights reserved. Cisco ConfidentialCisco7600 Presentation_ID 2006 Cisco Systems, does use recirculation on

BGP PIC Edge Node Failure

2

No /32 IGP route to BGP Next-Hop

Recursive BGP 3 prefixes become unresolved Switchover to 4 Backup BGP Path via new NH

BGP Next-Hop 1 goes downPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

36

BGP PIC Edge - ConfigurationIngress PE

PIC Edge is a feature configured only on the local router!

cef table output-chain build favor convergencespeed router bgp 4711 modification bgp log-neighbor-changes neighbor 1.0.0.67 remote-as 4711 neighbor 1.0.0.67 update-source Loopback0 neighbor 1.0.0.68 remote-as 4711 neighbor 1.0.0.68 update-source Loopback0 neighbor 100.100.4.34 remote-as 1012 neighbor 100.100.4.34 fall-over bfd ! address-family ipv4 Install second best bgp additional-paths install BGP Path as backup bgp nexthop trigger delay 0 neighbor 1.0.0.67 route-map Lauda_v4 out neighbor 1.0.0.68 route-map Berger_v4 out neighbor 100.100.4.34 activate ! address-family vpnv4 neighbor 1.0.0.67 route-map Lauda_vpnv4 out neighbor 1.0.0.68 route-map Berger_vpnv4 out ! address-family ipv4 vrf vrf101 bgp additional-paths install bgp recursion host neighbor 100.101.4.34 fall-over bfdCisco Confidential

Enable inplace in CEF

Force BGP path resolution to /32s only for fast and reliable detection

Presentation_ID


37

BGP PIC Edge PE-CE Link Failure

Recursive BGP 3 prefixes become unresolved Switchover to 4 Backup BGP Path via new NHPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

1

Link to BGP Next-Hop goes down

38

7600 BGP PIC Edge Test ResultsDefault NHT delay is 5s

7,251 prefixes/sec

12,453 prefixes/sec

No PIC PIC

10,000 FIB rewrite events 10,000 new adjacencies are created, 10,000 pointers are redirected to new adjacency entries 1 FIB translation map rewrite event 10,000 adjacency entries pre-programmed, 10,000 HW pointers are redirected 1)Cisco Confidential

No PIC PIC

10,000 FIB rewrite events 1 new adjacency is created, 10,000 pointers are redirected to 1 shared adjacency entry 1 FIB loadinfo inplace modification event Content of 1 adjacency is rewritten, no pointers are redirected40

1) HW FIB pointer 2006 Cisco Systems,is very fast Presentation_ID re-direction Inc. All rights reserved.

SW CEF Entry for VPNv4 PrefixWith BGP PIC EdgeSoftware FIB (customer command)engine#sh ip cef vrf vrf101 65.0.1.0 de 65.0.1.0/24, epoch 4, flags rib defined all labels recursive via 1.0.0.11 label 1043 nexthop 1.1.14.32 GigabitEthernet3/0/1.114 label 27 recursive via 1.0.0.33 label 1043, repair nexthop 1.1.1.45 GigabitEthernet3/0/0.101 label 30

BGP paths are recursive via IGP

Inplace modification enabled

Backup path sent by BGP/RIB

Software FIB (internal command) CEF paths and flagsengine#sh ip cef vrf vrf101 65.0.1.0 in | i list|lock|adj|buck|choic|chain|> label|Path|Trans|Repair contains path extension list path 13342B1C, path list 1334E708, share 1/1, type recursive, for IPv4, flags must-be-labelled, neos indirection, recursive-via-host path 1A7214C4, path list 1C023BF8, share 1/1, type attached nexthop, for IPv4 nexthop 1.1.14.32 GigabitEthernet3/0/1.114 label 27, adjacency IP adj out of GigabitEthernet3/0/1.114, addr 1.1.14.32 1D312700 path 13342A2C, path list 1334E708, share 1/1, type recursive, for IPv4, flags must-be-labelled, neos indirection, repair, recursive-via-host path 13342FCC, path list 1C023E28, share 1/1, type attached nexthop, for IPv4 nexthop 1.1.1.45 GigabitEthernet3/0/0.101 label 30, adjacency IP adj out of GigabitEthernet3/0/0.101, addr 1.1.1.45 13348AA0Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

41

Redundant Access Gateway EnhancementsL3 Service Redundant Services L2 E-LINE L2 E-LAN IP Sessions

7600

1

MST Access Gateway REP or REP Access Gateway Multi-chassis Link aggregationL2 Access

L3 IP/MPLS

2

ASR 9000

3

IP/MPLS AggregationRedundant Access Gateway

Presentation_ID


Cisco Confidential

48

R-L2GPL2 NetworkRootBPDU PE11SVI VFI

New in SRE

MPLS CoreVFI

PE21SVI

L2 Switch BPDU

VFI SVI VFI

SVI

PE22

PE12VFI VFI SVI SVI

Second Best Bridge

R-L2GP simplifies the solution by removing requirement to run full MSTP on N-PE Light modification to existing MST; static BPDU are generated and sent to L2 domain L2 domain isolation Access network is in its own STP domain. Access network is isolated to each other. Easy provisioning and troubleshooting Convergence time TCN propagationPresentation_ID

as per rapid STP BPDU snooping to trigger VPLS MAC withdrawalCisco Confidential


49

mLACPDHD

New in SREStandby POA

Virtual LACP Peer

Inter-chassis Communication

EtherChannel with mLACPActive POA

mLACP with 2 sided PW redundancy integration provides a strong mechanism for multi-chassis resiliency DHD is attached to a group of Points of Attachments which look like a single node mLACP appears to DHD as a single 802.3ad LACP POA work in active/standby mode ICC exchanges redundancy information between chassis Links to standby PoA are in hot-standby state Similar enhancement applies to REP accessPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

50

mLACP with two sided VPWS/VPLS redundancyMPLS

New in SRE

Standby

L2

PE1

Standby

PW 2

Active Active Standby

L3PE2 Active

PW 1 PW 3

Standby

DHD1

L1Active

L4PE4 Standby

Active PE3 E Active

DHD2

PW 4

Standby

VPWS

Two PEs form one virtual group on each site, one PE is primary the other is backup PEs send primary/backup information during PW signaling PW with both sides status are established, others are hot standby MPLS uplinks, attachment circuits and PW status tracking Message exchange within virtual group (for mLACP it is ICC). New primary PE will send PW status message to its peer group, and bring up the PW into forwarding.VPLS

PW will be active between PEs with active access circuits only Single active path through VPLS domain between PE virtual groupPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

51

Introduction to MACinMAC (802.1ah)B-DA B-SA B-TAG TPDNRI C-DA C-SA C-TAG L2 PDU FCS

Octets 12 Ether-Type (0x88-e7) Bits

3 I-PCP Res1 Res2 I-DEI NCA

46 I-SID

712 C-SA

1318 C-DA

8 7 6 5 4 3 2 1

802.1ah Frame Format SettledPriority Code Point (I-PCP) Drop Eligible Indicator (I-DEI) No Customer Addresses (NCA) Reserved 1 (Res1) Reserved 2 (Res2) Backbone Service Instance Identifier (I-SID)Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

52

IEEE 802.1ah Control Plane ModelIB-BEBI-ComponentC-MAC Lookup Function MAC Relay

B-ComponentB-MAC Lookup Function MAC Relay

EFP(Physical) CIP

I-EFP(Virtual) PIP B-MAC Tagging/ I-SID Insertion

B-EFP(Virtual) CBP B-VLAN Re-write/ I-SID Validation

Switch Port(Physical)

PBP

Ingress EFP (802.1ah UNI) int gig1/1 service instance 15 ethernet encapsulation dot1q 9 second-dot1q 8 bridge-domain 10 c-mac

MAC Tunnel ethernet mac-tunnel virtual abc.com bridge-domain 100 service instance 31 ethernet encapsulation i-sid 10000 bridge-domain 10 c-mac

Egress switchport (NNI) int gig1/2 switchport switchport mode trunk switchport allowed vlan 100

Presentation_ID


Cisco Confidential

53

802.1ah Related Terminologies and Inter-connectionsCE

MPLS Core

PE I I B BEB B B BEB

802.1ah PBBNB B BCB (PB) B B B B PE/ BEB B BEB B B IB BEB

C

802.1ad / Q-in-Q PBNS

C PEB

CE

S

Peer 802.1ah PBBN

PB S S I BEB S S PEB PB

CE S S CE

Hierarchical B 802.1ah BEB PBBN

I BEB I B

I

C

CE

I I BEB C

802.1QC Q C

Q

C

CE

MPLS Core

M P

Q

C

CE

Legend:

C C-Tagged Interface

S S-Tagged Interface IB BEB IB type Backbone Edge Bridge

I I-Tagged Interface PE/ BEB MPLS PE and Backbone Edge Bridge

B B-Tagged Interface PB Provider Bridge (S Bridge)

M MPLS Interface PEB Provider Edge Bridge (C + S) Bridge Q 802.1Q C Bridge CE Customer Equipment 54

I BEB I type Backbone Edge Bridge

B BEB B type Backbone Edge Bridge

Presentation_ID


Cisco Confidential

Pseudo-wire Scalability of VPLSPE PE IP/MPLS PE PE

VPLS Full mesh of PWs between virtual switching instances (VSI) Mesh per VPLS customer PW scale challenges Hierarchical VPLS (H-VPLS) Core interconnects edge domains (MPLS or Ethernet) Hub-and-spoke topology in IP/MPLS edge Smaller full mesh in core Mesh per VPLS customer H-VPLS with PBB U-PE adds/removes PBB encapsulation U-PE can group multiple I-SIDs in a B-VID Multiple customers per mesh possible if using VPLS instance per B-VID

PE PE PE

PE

N-PE U-PE

IP/MPLS

N-PE U-PE

IP/MPLS N-PE

802.1ad PB N-PE

N-PE U-PE

IP/MPLS

N-PE U-PE

IP/MPLS N-PE

802.1ah N-PE PBB

Presentation_ID


Cisco Confidential

55

MAC Address Scalability in H-VPLSH-VPLSN-PE U-PE IP/MPLS N-PE U-PE U-PE

H-VPLS with PBBN-PE IP/MPLS N-PE U-PE

IP/MPLS N-PE

802.1ad PB N-PE

IP/MPLS N-PE

802.1ah N-PE PBB

c-mac c-mac : : : : : : : : : : : : : : : : : : : : : : : c-mac

c-mac c-mac : : : : : : : : : : : : : : : : : : : : : : : c-mac

c-mac c-mac : : : : : c-mac

b-mac b-mac : b-mac

b-mac b-mac : b-mac

c-mac c-mac : : : : : c-mac

No customer MAC addresses on N-PE nodes N-PEs only learn backbone MAC addresses imposed by U-PEsCisco Confidential

Presentation_ID


56

7600 MPLS + PBB IB-BEB ConfigurationVPWS + 802.1ah Service ImplementationStep 1Ingress EFP configuration (UNI)interface TenGigabitEthernet3/1 dot1q tunneling ethertype 0x88A8 service instance 100 ethernet description ** UNI EFP VPWS Service encapsulation dot1q 100 second-dot1q 1-4094 rewrite ingress tag pop 1 symmetric service-policy input vz-ingress-policer service-policy output vz-H-QoS-parent l2protocol forward bridge-domain 100 c-mac

Step 2Mac-in-Mac tunnel configurationethernet mac-tunnel virtual 1 description ** IB-BEB - Mac Tunnel 1 bridge-domain 1000 service instance 1 ethernet description ** VPWS Service - ISID encapsulation dot1ah isid 10000 bridge-domain 100 c-mac

Step 3VPWS configurationinterface Vlan1000 description ** IB-BEB VPWS Service xconnect 2.2.2.2 3000 encapsulation mpls

Presentation_ID


Cisco Confidential

57

7600 MPLS + PBB IB-BEB ConfigurationVPLS + 802.1ah Service ImplementationStep 2 Step 1Ingress EFP configuration (UNI) Mac-in-Mac tunnel configurationethernet mac-tunnel virtual 1 description ** IB-BEB - Mac Tunnel 1 bridge-domain 1000 service instance 1 ethernet description ** VPWS Service - ISID encapsulation dot1ah isid 10000 bridge-domain 100 c-mac

interface TenGigabitEthernet3/1 dot1q tunneling ethertype 0x88A8 service instance 100 ethernet description ** UNI EFP VPLS Service encapsulation dot1q 100 second-dot1q 1-4094 rewrite ingress tag pop 1 symmetric service-policy input vz-ingress-policer service-policy output vz-H-QoS-parent l2protocol forward bridge-domain 100 c-mac

Step 3VPLS configurationl2 vfi Vz-MAC-Tunnel-1 manual vpn id 3000 neighbor 2.2.2.2 encapsulation mpls neighbor 3.3.3.3 encapsulation mpls

interface TenGigabitEthernet3/2 dot1q tunneling ethertype 0x88A8 service instance 100 ethernet description ** UNI EFP - VPLS Service encapsulation dot1q 100 second-dot1q 1-4094 rewrite ingress tag pop 1 symmetric service-policy input vz-ingress-policer service-policy output vz-H-QoS-parent l2protocol forward bridge-domain 100 c-mac

interface Vlan1000 description ** IB-BEB VPLS Service xconnect vfi Vz-MAC-Tunnel-1 manual

Presentation_ID


Cisco Confidential

58

P2MP RSVP-TEHigh Bandwidth Source

Receiver PE3 Receiver PE1 P1 PE4 Receiver PE2

PE1 is the head-end Three tunnel destination: PE2, PE3 and PE4 PE1 sets up and maintains three S2L sub-LSPs via three RSVP Path messages (one per destination)Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

59

P2MP TE RSVP RSVP PATH MessagesPATH PATH

PE3

PE1PATH

PATH

P1

PATH

PE4 PE2

Head-end Router PE1 sends three path messages (one per destination) First PATH message: PE1 -> P1 -> PE3 Second PATH message: PE1 -> P1 -> PE4 Third PATH message: PE1 -> PE2Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

60

P2MP TE LSP Setup RSVP RESV MessageL=30RESVHeadend Branch pointPATH PA THRESV

Tailend1

L=50RESV

PE3

PATH

PE1RESV

RESV

L=50

P1

RESV

RESV RESV

RESV

L=40 L=20

PE4Tailend2

PE2 PE3 advertises incoming 30, PE4 advertises 40 and PE2 advertises 20 RSVP RESV from PE3 and PE4 may reach P1 at different times Upon arrival of RESV from PE3, P1 advertises incoming label 50 for the LSP destined for PE3 Upon arrival of RESV from PE4, P1 realizes that it is a branch point. Hence, P1 also advertises SAME incoming label 50 for LSP destined for PE4Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

61

P2MP TE LSP Data PlaneLabel 30 IPv4 packet Label 50 IPv4 packet IPv4 packet IPv4 packet

PE3IPv4 packet Label 40 IPv4 packet

PE1Label 20 IPv4 packet

P1 PE4

PE2

IPv4 packet

Mid-point Label Replication Advertise the same incoming label for LSP destined for PE3 and PE4 This mechanism allows upstream LSR to perform label replication Head-end Label Replication Sends one packet (outgoing label 50) for both LSP destined for PE3 and PE4

Presentation_ID


Cisco Confidential

62

P2MP-TE Deployment ConsiderationsP2MP IOS Supported Platform : 7600 Image release : 122SRE 7600 P2MP Supports Egress replication only. So cannot co-exist with MVPN. Ingress capable cards have to be powered off. TE-FRR Link protection is only supported for this release. Supports head-end scalability of 1500 TE Tunnels/sub-lsps. Midpoint scalability limit of 10,000 tunnels/sub-lsps. For line rate performance use ES+ line cards. Active and backup have to be bundled interfaces across same line cards for port-channel FRRPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

63

Cisco 7600 Subscriber Aware Ethernet For 3-Play ServicesService Service Voice over IP Voice over IPSubscriber Subscriber User User Authentication Authentication Dynamic Dynamic Provisioning // Provisioning Self-provisioning Self-provisioning

IPTV IPTV

Accounting Accounting

High BW & High BW & Multicast Multicast

High Speed High Speed Internet Internet Access AccessPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

Hierarchical QOS Hierarchical QOS68

Flexible Ethernet Services Mapping Enabling Multiservice AggregationFlexible Mapping of subscriber VLANs to services (L2, L3, MPLS, ISG) VLAN translation capabilities for single and doubled tagged VLANs Residential Subscriber Sessions with RADIUS based zero-touch provisioning Business VPN L2/L3 Bitstream wholesale services

Residential

VLAN -802.1q -QinQ

STB Business Corporate

H-QOS per Session

ISG Subscriber Session

L3/VRF

Business Corporate

H-QOS per VLAN

Residential

Flexible VLAN Translation 1:1 2:2 1:2

L2, Bridged

Security

VPLS L2, Point to Point EoMPLS

STBPresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

69

Cisco 7600 ES+ Subscriber-Aware EthernetRADIUS DHCP Portal

IP/PPP Sessions to meet tripleplay requirements with simple, flexible per-subscriber control Zero-touch provisioning and dynamic per-subscriber H-QOS with Cisco ISG Up to 40G per slot for business and residential services on same port Distribute architecture and decrease CAPEX spending with increased BW per subscriber

RADIUS / AAA push/pull Per Sub/Service AccountingISG

Self-provisioning / Selfcare L4R Internet

PPPoEoX IPoE

ISG Sessions

Presentation_ID


Cisco Confidential

70

7600 BNG Feature HighlightsPPPoEoE (802.1q, QinQ) ISG IP Sessions ISG SupportZero-touch provisioning Change of Authorization Dynamic VRF assignment

ES+ support with 40Gbps per slot bandwidth Link Aggregation for PPPoE/IP Sessions -- 1:1 (ES+ only) Multicast Co-existence with IP sessions (ES+ only) NAS port option 82 + option 60 Transparent Auto Logon DHCP Authentication

RADIUS support DHCP relay/server DHCP Radius Proxy 48K VLAN subinterfaces Session HA for ISG IPoE and PPPoE Hierarchical QoS Lawful Intercept Control Plane Policing

Presentation_ID


Cisco Confidential

71

ES+ Intelligent Services Gateway LicenseThe ES+ ISG license includes all the available features for subscriber aware sessions :IP sessions, ISG, PPPoE sessions, ISG dynamic QOS provisioning, IP session HA, radius accounting, DHCP relay, DHCP server, radius proxy, and TAL. 8 VRFs per license for internal management / operations use.

Purchase ISG licenses for the entire system, in units of 8000 sessions, for example:One 8K license for 8000 sessions on the system Two 8K licenses for 16,000 sessions on the system76-ES+ISG-LIC 76-ES+ISG-LIC= ES+ Intelligent Services Gateway (ISG) Software License ES+ Intelligent Services Gateway (ISG) Software License

Presentation_ID


Cisco Confidential

72

7600 SW Releases and Planning TimelineSRAShipped June 06

End of Sale

SRCShipped January 08 EOS announced

SRC4

SRD3

SRD4Shipped Feb 10

Rls7 15.0(1)SFCS target Jul10 CCd

Rls9 15.1(2)SFCS target Mar11 Planning

Shipped Shipped May09 Sept09 EOS announced

2006

2007

2008

2009

2010

2011

SRBShipped February 07

SRDShipped October 08

SRB6Shipped Jun09

SREShipped Nov09

SRE1FCS target Apr2010 ECd

Rls8 15.1(1)SFCS target Nov10 Planning

Rls10 15.1(3)SFCS target Jul10 Planning

End of SaleRecommended SW Releases

Future Release Information is Subject to ChangePresentation_ID 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential

73

Time Based Release -- BenefitsNew Time-Based Release Model for 7600 Starting with Rls7 in July 2010 Responsive to Business NeedsFaster Time to Market Feature release every 4 months Predictable schedule for new features and rebuilds Improved quality releases are more stable more quickly (no features in rebuilds)

Faster to Deploy

Broadened feature consistency across platforms (Shared components with ASR1000 ) Clear software deployment & migration guidelines

Easier to Manage

Proactive release support policies Consistent release numbering for new feature releases vs. maintenance rebuilds

Presentation_ID


Cisco Confidential

74

Cisco 7600 and IOS Releases2H 2009SRB6SRB

1H 2010

2H 2010

1H 2011

2H 2011

1H 2012

2H 2013

EOS (Oct. 09)SRC4

EOS (May 10) Catalyst 6500 chassis support on 7600 SW branches

SRC

End of Sale AnnouncementSRD

SRD3

SRD4 (Feb 10)

SRE

12,2SRE CCO 11/09

SRE1 (Apr 10) SRE2 15.0(1)S S1

S2

S3

S4

7600-RLS7

CCO (July 10)7600-RLS8

CCO (Nov 10)

7600-RLS9

Initial CCO Rebuild PSIRTPresentation_ID 2006 Cisco Systems, Inc. All rights reserved.

CCO (Mar 11)

*

SW Release dates subject to change without notice75

Cisco Confidential

RLS7 Feature SummaryCarrier Ethernet 802.1ad full compliance REP configurable fast timers CLASS-based-QoS-MIB for EVC Private Host on SVI for VPLS and SVI based EoMPLS EVC over Portchannel/LACP with weighted load balancing

Status: ECd FCS : July 2010

High Availability MPLS TE-FRR for VPLS Port-Channel/LACP uplinks BRE plus Sonet/SDH APS support on SIP400 & SIP 200 BFD VCCV for ATM AC BFD over Port Channel Vidmon Static PW using P2MP TE or RSVP P2MP MPLS-TE NSF/SSO mLDP for mVPN and mVPN Extranet PIC Core for IGP with ECMP

QOS ES+ Port-Channel Qos Gap completion Policing for EVC over PortChannel/LACP on ES20 Non-Agg WRED on ATM (v1) SPA COS based WRED on L3 Main Interfaces on ES+

Video / Multicast

ISG and IP edgeDHCP Radius Proxy

Mobile 1588 v2 on Metronome SPA Synchonization Messaging via SSM/ESMC (including HA)

Hardware WAN PHY/OTN on ES+XC ATM v2 SPAs Tunable DWDM XFP for ES+ GLC-GE-100FX for ES+ XFP-10G-MM-SR for ES+ ONS-SC-155-EL Electrical STM1 for v1 and v2 ATM SPAs76

Routing

Presentation_ID


Cisco Confidential

Cisco 7600 delivers on next generation requirementsServices shift any service any screenSubscriber Aware Ethernet for Next Generation BNG features L2 & L3 service control and accounting with ISG for IP and Ethernet Leading 3G/4G Mobile Gateway solutions

New Broadband ProfilesHigh BW per subscriber ES+ 40 Gig LCs High queuing density and granularity Architecture Flexibility and scale

Focus on profitabilityLeading distributed edge architecture Residential, Business, and Wholesale profiles ISG 2.0 dynamic services for Ethernet Video performance and Management leadership

Execute on Carrier Ethernet visionISG Dynamic service creation for L2/L3 IP-RAN scale and migration to Ethernet Flexibility to respond to changing user behavior77

Presentation_ID


Cisco Confidential

Presentation_ID


Cisco Confidential

78

introducing recent cisco7600 innovations

Documents