Upload
vokhuong
View
217
Download
2
Embed Size (px)
Citation preview
Nelson Figueroa
The NGN Carrier Ethernet
System:
Technologies, Architectures and
Deployment Models
Technical Leader
Agenda
• Next Generation Carrier Ethernet (NGN CE) System : Overview
• The context of Broadband Forum’s TR-101
• NGN CE Design:
Architecture Description
Service Delivery Models
High Availability
Quality of Service
Security Considerations
• Summary
• Questions and Answers
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
NGN Carrier Ethernet System:
Overview
Source: Cisco Visual Networking Index—Forecast, 2009-2014
Global IP Traffic 2009 2014
Video & Multimedia
Mobile Internet
Exponential Growth + Evolving Traffic Mix = Complexity
IT Services via Cloud
300+% Market Growth
39X Traffic Increase
90% Consumer Traffic
Dominance of Video, Mobile, and Cloud Fundamentally Different Traffic Mix
IP traffic will increase 4X
(767 exabytes by 2014)
How will NGN CE enable the transition
Optical Layer
L1/L2/L3 Services L2 Services
IPoDWDM
L2 Services
Transport Centric Model
Packet Optical Transport Network
Service Centric Model +
Flexible Service Edge
CE
Architecture
Optical Layer
L1/L2/L3 Services
IPoDWDM
Physical
L3 Services
ATM
Yesterday
SONET/SDH
NGN Carrier Ethernet System
• IP/MPLS-Based Transport/ Per Service
• Flexible Service Mapping
• Subscriber Awareness Where Needed
• Video Optimisations A
rch
itectu
ral F
ram
ew
ork
an
d F
un
cti
on
ali
ty
IP N
GN
Access Aggregation Core
BNG Billing
Location Server
NMS MSE
VoD DPI
DIST
AGG
Edge OSS/BSS
Intelligent Edge
Customer Element
Multiservice Core
Access/ Aggregation
Ap
pli
ca
tio
n
La
ye
r S
erv
ice
La
ye
r N
etw
ork
L
aye
r
Carrier Ethernet
Service Exchange
Framework for User and Application-
Based Control
Video and Gaming
Data Center
Presence-Based
Telephony
Web Services
Mobile Apps
IP Contact Center
Op
era
tio
na
l L
ay
er
IPoDWDM Optical Network
Aggregation Node
Aggregation Network MPLS/IP
Carrier Ethernet Aggregation Access Edge
Aggregation Node
Aggregation Node
Ethernet Node
STB
VoD
Content Network
TV SIP
PON Node
DSLNode
Core
VoD
Content Network
TV SIP
Multiservice Core
Core Network
IP / MPLS Distribution Node
Corporate
Business
Corporate
Business
Residential
STB
Residential
Aggregation Node
Distribution Node
Mobile
2G/3G/4G Node
RAN Access Network
MPLS/IP
Corporate
Business
BSC/RNC
BSC/RNC
NGN System Technology Overview
TR-101 Functions
MSTP/REP/G.8032
L2 Access Network
• 802.1Q NNI
Local VLAN Significance
Flexible service mapping
Ethernet virtual
connection infrastructure
Security features
ATM/TDM backhaul over MPLS
EoMPLS/VPLS/L3VPN
IP Unicast/Multicast Forwarding
Ethernet/MPLS OAM
Pseudowire Redundancy
MPLS-TP
Unified MPLS
Fast Convergence
IPoDWDM integration
IPTV Edge
Backhaul HSI to BNG
Distributed Triple Play
Edge
Interworking MPLS
with MST/REP/G.8032
Multi-Chassis Link
Aggregation
Access Aggregation Core
BNG Billing
Location Server
NMS MSE
VoD DPI
DIST
AGG
Edge OSS/BSS
Intelligent Edge
Customer Element
Multiservice Core
Access/ Aggregation
Ap
pli
ca
tio
n
La
ye
r S
erv
ice
La
ye
r N
etw
ork
L
aye
r
Carrier Ethernet
Service Exchange
Framework for User and Application-
Based Control
Video and Gaming
Data Center
Presence-Based
Telephony
Web Services
Mobile Apps
IP Contact Center
Op
era
tio
na
l L
ay
er
IP NGN Carrier Ethernet Design
• IP/MPLS-Based Transport/ Per Service
• Flexible Service Mapping
• Subscriber Awareness Where Needed
• Video Optimisations
IP N
GN
Arc
hit
ectu
ral F
ram
ew
ork
an
d F
un
cti
on
ali
ty
EoMPLS PW IP Edge
Aggregation Node
Bridge
How to Build the Ethernet Multipoint/ Multi-
Edge Architecture? VPLS or…
• VPLS = LAN emulation
• Smells like a LAN, but is not a LAN
• H-VPLS is just a scaling option, retains full mesh notion
• EoMPLS Pseudowire (PW) serving as ‘virtual’ bridge trunk into a 802.1ad Bridge Domain (BD)
• Idea ‘divorces’ Transport Protocols from Service Instance Identifier (although only 4k service instances can be multiplexed across a single PW)
• Scaling can be improved with 802.1ah, Unified MPLS, MS-PW, etc
PW
802.1ad
(Q-in-Q)
Ethernet
MST
/LAG/
REP
IP or IP-VPN
EoMPLS 802.1ad IP or IP-VPN
EoMPLS
EoMPLS H-VPLS VPLS
EoMPLS
EoMPLS H-VPLS VPLS
EoMPLS 802.1ad IP or IP-VPN
IP or IP-VPN
L2 M
PL
S
Ag
gre
gati
on
Se
rvic
e M
od
el
L2
+L
3 M
PL
S
Ag
gre
gati
on
Se
rvic
e M
od
el
Services
Residential: BTV/VoD, VoIP,
HSI
Ethernet VPN: E-Line
Ethernet VPN: E-LAN/-Tree
IP and IP-VPN
Residential: BTV/VoD, VoIP,
HSI
Ethernet VPN: E-Line
Ethernet VPN: E-LAN/-Tree
IP and IP-VPN
Core Edge Distribution Aggregation Access
Converged SP Network Architecture
Working LSP
PE PE
Protect LSP
NMS for Network
Management Control *
Client node Client node
MPLS-TP LSP (Static or Dynamic)
Pseudowire
Client Signal
with e2e and
segment OAM Section Section
*Or Dynamic
Control Plane
Connection Oriented, pre-determined working path and protect path
Transport Tunnel 1:1 protection, switching triggered by in-band OAM,
Options with NMS for static provisioning, or dynamic control plane for routing and signaling
Note: The cloud represents one MPLS-TP network, e.g., it may be in aggregation or access
Some Words about MPLS-TP
Some words about Unified MPLS
ABR A1
ABR B1
AGG A1 LSR A1
LSR B1 AGG B1
PE A1
PE B1
LSR A2
LSR B2 ABR B2 PE B2
PE A2 AGG A2
AGG B2
1.000 Nodes / Core
10.000 Nodes / Aggregation
100.000 Nodes / Access
ABR A2
LDP Downstream Ondemand
Static Routing
IP Fast Convergence
RFC3107
MPLS OAM
....
MPLS-TP
(Optional)
Cisco’s NGN CE Transport Direction
Characteristic SONET
/
SDH
Optical OTN
(ROADMs)
Electrical OTN
PBB-TE MPLS-TP IP/MPLS
Ethernet
Eline (10GE)
Eline (sub 10GE)
E-Tree
E-LAN
Legacy
F/R
ATM
TDM
IP
L3VPN
L3 Unicast
L3 Multicast
Content
General
Traffic Engineering
50ms restoration
Multiplexing Technology Time Division
Wave Division Time Division Statistical Statistical Statistical
UNI processing Limited None None Typically rich Typically rich Typically rich
Granularity VC-4 Lambda ODU Variable Variable Variable
Technology Maturity
Cisco focuses on IP/MPLS for the Carrier Ethernet Transport architecture.
Cisco targets MPLS-TP for the POTS and Access Networks while supporting already Ethernet Bridged Access
Cisco also addresses MPLS to the access with Unified MPLS
Dark Fibre / CWDM / DWDM and ROADM
Carrier Ethernet Aggregation
BNG
Business PE
Access Edge
Aggregation
Node
DSL
Ethernet
Core
VoD
Content Network
TV SIP
Multiservice Core
Core Network
IP / MPLS
Distribution
Node
STB
Corporate
STB
STB
Residential
Corporate
Corporate
Business
Business
Business
Residential
Residential
2G/3G Node
PON
Today IP/MPLS ETHERNET
Future/Vision
IP/MPLS MPLS-TP
MPLS-TP IP/MPLS
ETHERNET IP/MPLS
NGN CE System Design Evolution
Unified IP/MPLS
• IP/MPLS-Based Transport/ Per Service
• Flexible Service Mapping
• Subscriber Awareness Where Needed
• Video Optimisations A
rch
itectu
ral F
ram
ew
ork
an
d F
un
cti
on
ali
ty
IP N
GN
Access Aggregation Core
BNG Billing
Location Server
NMS MSE
VoD DPI
DIST
AGG
Edge OSS/BSS
Intelligent Edge
Customer Element
Multiservice Core
Access/ Aggregation
Ap
pli
ca
tio
n
La
ye
r S
erv
ice
La
ye
r N
etw
ork
L
aye
r
Carrier Ethernet
Service Exchange
Framework for User and Application-
Based Control
Video and Gaming
Data Center
Presence-Based
Telephony
Web Services
Mobile Apps
IP Contact Center
Op
era
tio
na
l L
ay
er
NGN Carrier Ethernet System
Ethernet Virtual Connection (EVC)
Framework
Access Edge
BRAS
SR/PE
DPI
Core Network
MPLS/IP
DSL
ETTx
PON
MSPP
Cable
Aggregation
Mobile
Content Farm
VoD TV SIP
Content Farm
VoD TV SIP
Residential
STB
Residential
STB
Business
Corporate
Untagged
Single Tagged
Double Tagged
802.1q
802.1ad
etc.
L2 P-to-P
L2 MP local bridging
L2 Multipoint
L3 routed
Transport/tunnel protocol independent
Provider Bridging over MPLS
Provider Backbone Bridging over MPLS
• IP/MPLS-Based Transport/ Per Service
• Flexible Service Mapping
• Subscriber Awareness Where Needed
• Video Optimisations A
rch
itectu
ral F
ram
ew
ork
an
d F
un
cti
on
ali
ty
IP N
GN
Access Aggregation Core
BNG Billing
Location Server
NMS MSE
VoD DPI
DIST
AGG
Edge OSS/BSS
Intelligent Edge
Customer Element
Multiservice Core
Access/ Aggregation
Ap
pli
ca
tio
n
La
ye
r S
erv
ice
La
ye
r N
etw
ork
L
aye
r
Carrier Ethernet
Service Exchange
Framework for User and Application-
Based Control
Video and Gaming
Data Center
Presence-Based
Telephony
Web Services
Mobile Apps
IP Contact Center
Op
era
tio
na
l L
ay
er
NGN Carrier Ethernet System
BSC
BRAS
From Design Principles to Implementation Centralized Edge
Core
VoD Servers
PE-AGG
High Speed Internet (HSI) L2 EoMPLS Backhaul
Per sub QoS
Central L3 and services
PPPoE and DHCP
N-PE
L3
Business VPN L2 EoMPLS backhaul
Per sub QoS
Central or distributed services (L3 VPN, L2 VPN, VPLS, FW)
MSE L2 VPN L3 VPN
RAN Backhaul L1 CES over Packet
Per Service QoS
Distribution of Clock
HSI
VoD
Broadcast TV
Business VPN
RAN Backhaul
Video and Voice
L3/MPLS edge distributed for efficient multicast and resiliency
Per service QoS
Intelligent Services Gateway Subscriber Session Handling
• Identifies sessions and service flows
Traffic classification for all access architectures
Session and flow provides per user granularity
• Dynamically assigns the session to a configured QoS policy (MQC) via Radius
• Establishes Virtual Route per Session
• Provides Policing, Access Control, Accounting, via Radius Push/Pull
Authentication
Logon
Change of Authorization (Policy Push)
L4 re-direction
Accounting details
• Fully integrated with Routing Infrastructure
e.g. mapping traffic to VRF, various routing tables
RADIUS Portal
L4R
Self- Provisioning/
Self-Care
RADIUS/AAA Push/Pull per Sub/Service Accounting
Internet
ISG Sessions
PPPoEoX
IPoE
DHCP
ISG ISG
Increased Scalability / Resiliency via
Distributed Services Drivers for More Clouds and Less Circuits
• Reduction of CAPEX and OPEX
Single provisioning point for all services (L2/L3)
Common converged infrastructure
Bandwidth Efficiency
• Scale
Integration and Distribution = Scale
• Enhanced resiliency
Automated rerouting, no need for interbox redundancy (VRRP)
Evolution to zero-loss video failover (0 ms)
• Monitoring, control, billing of future services
Video 2.0: P2P legal distribution model
Local content injection (VOD/I-frame caches)
Cloud Computing
• However, SP Org. structures will be diverse
Cisco supports circuit and cloud models
Organizational consolidation may lead to acceptance for cloud network configuration
Centralized BRAS/PE
Distributed Residential 3Play
Distributed Points of Scale
MPLS/IP
MPLS/IP
100–200K
Subs
8–24K
Subs
Single Point of Scale
Dynamic Ethernet Service Activation (DESA)
• Ethernet infrastructure with programmatic interface
• Intelligent Service Management engine
• Power of dynamic subscriber management from ISG to automate provisioning of Ethernet Services
• Automated, customized Ethernet service provisioning infrastructure that saves OPEX
Ethernet Virtual
Circuit (EVC)
Framework
Intelligent
Services
Gateway (ISG)
Dynamic Ethernet Service Activation : A Use
Case
1.Customer orders L2 service at portal
Box is shipped to customer with minimal configuration (MAC, VLAN ID)
Customer plugs in CPE
2.First L2-traffic triggers Radius request to activate services
3.L2 Service profile applied (ACLs, QOS, Psuedowire…)
4.Activates billing and inventory functions.
5.Customer can change profile dynamically at any time
Self-care
Dynamic
Service
Profile
L2-Session
L2-Session
1. 2.
DESA
3.
Dynamic
Pseudowire
Radius
Accounting
3.
4.
• IP/MPLS-Based Transport/ Per Service
• Flexible Service Mapping
• Subscriber Awareness Where Needed
• Video Optimisations A
rch
itectu
ral F
ram
ew
ork
an
d F
un
cti
on
ali
ty
IP N
GN
Access Aggregation Core
BNG Billing
Location Server
NMS MSE
VoD DPI
DIST
AGG
Edge OSS/BSS
Intelligent Edge
Customer Element
Multiservice Core
Access/ Aggregation
Ap
pli
ca
tio
n
La
ye
r S
erv
ice
La
ye
r N
etw
ork
L
aye
r
Carrier Ethernet
Service Exchange
Framework for User and Application-
Based Control
Video and Gaming
Data Center
Presence-Based
Telephony
Web Services
Mobile Apps
IP Contact Center
Op
era
tio
na
l L
ay
er
NGN Carrier Ethernet System
L3 IP Mcast
L3-Core IP Mcast
L3 IP Mcast
L3-Core IP Mcast
L3 IP Mcast
L3-Core IP Mcast
• Simplified Operations IGMP/PIM only required, no snooping necessary in Aggregation network; snooping contained in DSLAM
Single point of L3 termination for IP/TV (no VRRP required)
No overlay topology
• Optimal and Scalable Forwarding SSM multicast distribution model for optimal tree creation under all conditions
Dynamic load balancing on equal cost paths (!!)
Optimized ARP and IGMP tables through distribution
Flexible content injection, including localized content
Same topology for unicast and multicast (!!)
Scales in terms of network nodes and subscribers in any topology due to distributed L3
Allows for on-path CAC
• Resiliency Consistent convergence in all failure cases: Source-, Node-, Link-Failure.
Anycast-Source model for enhanced redundancy
SSM security and address-space efficiency proven architecture in many 3Play production networks today
• Future Ready Possibility to add/distribute video monitoring and error concealment techniques easily
IP for Video and IP/TV Service Delivery Key Characteristics and Benefits
IP: 1.1.1.1
IP: 1.1.1.1
Optimal Replication
Load-Balancing Efficient Use of Access Bandwidth
Any-Cast Sources
Characteristic Native IP Multicast
VPLS p2multipoint MPLS Traffic Engineering
Multicast LDP (mLDP)
Convergence < ~1s (link and node
failures)
~50 ms (link failures)
< 3s (node failures)
~50ms (link failures only)
< ~1s (~50ms with p2p MPLS TE FRR
LP)
Offload routing (IGP metric based traffic engineering)
(IGP metric based traffic engineering)
Path separation (MoFRR or MTR)
(MoFRR or MTR)
Admission control and bw reservation
(RSVP)
Scalable mp2mp MulticastVPN
Typical Application
Secondary Distribution (TV)
(Wholesale) Secondary
Distribution (TV)
Contribution (TV) Enterprise VPN
Other Multicast Transport Options
•MoFRR=Multicast Only Fast ReRoute, MTR = Multi Topology Routing
•Note: VPLS-LSM and E-VPN are not currently part of the system
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
Broadband Forum’s TR-101 :
An application of the NGN CE
System
• VLAN architecture
• Multicast considerations
• Use of a video-optimised Service Router (next to ‘traditional’ TR-59 type BRAS)
• Resilience in the Ethernet Aggregation Network
• QoS in the Ethernet Aggregation Network
• Ethernet OAM
• Support for PPPoA and IPoA (aka interworking between XoA and XoE)
TR-101 Scope and Content Technical Considerations
Note: TR-101 introduces the term Broadband Network Gateway (BNG) to differentiate from the
legacy ‘BRAS’ term
DSL Provider Access Domain
A VLAN per DSLAM port
Local C.O.
DSLAM
CopperLoop
U-PE
DSL
PVC VLAN 19Port 2
VLAN 19
DSL
PVC VLAN 85Port 1
VLAN 85
QinQ
Outer VLAN 102
CPE
VLAN Architecture: VLAN per User (1:1)
• VLAN use similar to ATM, i.e. connection-oriented, i.e. configuration intensive
• IEEE802.1ad—Inner Tag = Port Identifier, Outer Tag = DSLAM Identifier
• Multicast replication inside Single BNG, not inside Ethernet Aggregation Network
• Multi-homing to two BNGs is complex
• Good for p2p business services; less ideal for Triple-Play Services
VLAN Architecture:
VLAN Per Service/SP (N:1)
• Single tagged (802.1Q or 802.1ad) VLANs—double tagging not needed
• Connectionless provisioning benefit; Access Node inserts Line ID (DHCP Opt 82 , PPPoE Intermediate Agent)
• Network Elements take care of subscriber MAC isolation through ‘split horizon forwarding’
• Multiple injection points per VLAN (BRAS and Video Service Router) possible
• Multicast replication within access/aggregation
DSL Provider Access Domain
Residential Bridging
Local C.O.
DSLAM
CPECopperLoop
DSL
PVC
DSL
PVC
U-PE
DSL
PVC
GE
VLAN 18
ISP 1
VLAN 19ISP 2
VLAN 18
ISP 1
VLAN 19
ISP 2
GE
• The models considered are part of DSL Forum TR-101 section 2.5.1
Multiple VC DSL UNI
Trunk UNI—Single VC DSL or Ethernet
Non-Trunk UNI—Single VC DSL or Ethernet
• In the Multiple VC DSL UNI model, the VC is used for both service prioritization and service connectivity
• In the Single VC DSL and Ethernet UNI models, these functions are distributed in 802.1p COS and 802.1Q VLANs
• Choice of model will be dependent on Access Node and RG capability, number and type of services offered and available bandwidth on local loop
DSLAM Connectivity Models
• Per Class scheduling within Access/Aggregation Network
• Per Class scheduling is essential for Video as the Access Node is effectively a multicast insertion/replication point (replicating per subscriber line)
• Per Class scheduling essential when separate Video BNG is deployed
Ethernet Aggregate QoS Within
the Access/Aggregation Network
Video BNG
BNG (BRAS)
IP/TV/VoD CBR or VBR
2 Mbps—3.9 Mbps 100 Kbps
3 Mbps
PQ
Voice (PQ with Policing at 100 Kbps)
Internet (Shaped or Policed at 3 Mbps)
Aggregation Access
Video Traffic Uniquely Marked
and Placed on Aggregation
Network
Work preserving scheduler
Static configuration on user link
120 Kbps
4.5 Mbps
Unspecified
PQ
6 Mbps
Cisco’s TR-101 Architecture From Discrete Elements
Video BNG
BNG BRAS
Aggregation Node:
Carrier Ethernet Switch/
Service Router with
Aggregation Function
Aggregation Node:
Carrier Ethernet Switch/
Service Router with
Aggregation Function
BNG/BRAS Extremely Important for PPP Services/Migration/Legacy
ATM Support
Business
Residential
STB
IP/MPLS Core L2 Aggregation
with
IGMP Snooping
Cisco’s TR-101 Architecture To Integrated Network Elements
BNG BRAS
Carrier Ethernet Service Router (L1, L2, L3)
Video BNG (L3 IP/PIM-SSM) + L2 Aggregation
Option to Virtualize L2 Aggregation (IP Control Layer, MPLS Techniques)
BNG/BRAS Extremely Important for PPP Services/Migration/Legacy
ATM Support
Business
Residential
STB
IP/MPLS Core L2 Aggregation
+ L3 IP/PIM-SSM SiSi SiSi
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35
NGN Carrier Ethernet System:
Architecture Options
Access
Ethernet Node
Ethernet Node
DSL Node
PON Node
Access
MPLS/IP Transport
Transport Deployment: VPWS, VPLS
Service Aware Deployment: VPWS, VPLS, MPLS VPN/IP
Carrier Ethernet Aggregation
Aggregation Node
Distribution Node
Distribution Node
Aggregation Node
Core Network
IP / MPLS
VoD
Content Network
TV SIP
VoD
Content Network
TV SIP
IP Edge Multiservice Core
MPLS/IPoDWDM Optical Network
Core Node
Core Node
Aggregation Node
Aggregation Node
MPLS/IP/Ethernet
BSC/RNC
BSC/RNC
Optional Business Service Edge Node
Cell Site Gateway
Optional Video Service Edge Node
HSI Service Edge Node
STB
Corporate
Business
Corporate
Business
STB
Residential
Mobile
2G/3G/4G Node
Corporate
Business
Residential
NGN Carrier Ethernet System
c
Access
Ethernet Node
DSL Node
PON Node
Aggregation Network
MPLS/IP (+802.1ah), SyncE
Carrier Ethernet Aggregation
Integrated
Edge Node
Distribution
Node
Distribution
Node
Integrated
EdgeNode
Core Network
IP / MPLS
VoD
Content Network
TV SIP
VoD
Content Network
TV SIP
Multiservice Core
MPLS/IPoDWDM Optical Network
Integrated
Edge Node
Integrated
Edge Node Core
Core
Optional L3 VPN Edge
Business
Corporate
Business
Corporate
RBS
Residential
STB
Residential
STB
Residential
STB
Business
Corporate
2G/3G/4G Node
RAN Access Network
MPLS/IP
BSC/RNC
BSC/RNC
CO aggregated
DSLAMs
L3VPN PE
L3VPN PE
NGN Carrier Ethernet System with Triple
Play Distributed Edge
NGN Carrier Ethernet System with MPLS-TP
Aggregation
Packet Optical Transport Service Edge
CPT50/200/600
NGXP
DWDM ROADM+
MPLS TP, VPWS, VPLS LDP
Access
Ethernet Node
Ethernet Node
DSL Node
PON Node
2G/3G/4G Node
Business
Corporate
Business
Corporate
RBS
Residential
STB
Residential
STB
RAN Access Network Ethernet/MPLS Bridged
Core Network
IP / MPLS
VoD
Content Network
TV SIP
VoD
Content Network
TV SIP
Multiservice Core
Core Node, CRS-3
Core Node, CRS-3
Business, ASR9k
Service Edge Node
Video, 7600
Service Edge Node
HSI, ASR1k
Service Edge Node
Mobile, 7600
Packet Gateway
NGXP
CPT50/200/600
NGXP
CPT50/200/600
Flexible
VLAN
Tag
Matching
H-QoS
Per EFP
L3
EoMPLS
VPLS
Local Connect (P2P)
Local Bridging (MP)
Security
Flexible
VLAN
Tag
Rewrite
Service Instance (Ethernet Flow Point)
EVC
Ethernet Virtual Connection
(EVC) Overview
One EFP Can Match One or
Multiple or Range of VLANs
at a Time
Flexible L2/L3 Service Mapping,
One or Groups of EFPs Can Map to
Same EVC
Per Service Features
VLAN Local Port Significance
Two VLAN Tag Aware
Flexible VLAN Tag Matching (Combination of Up to Two Tags)
Flexible VLAN Tag Manipulation,
Pop/Push/Translate
802.1ah Bridging
EVC infrastructure
Provides flexible
classification of L2
flows on Ethernet
interfaces
Supports dot1q and Q-
in-Q, 802.1ad with local
VLAN significance
Supports VLAN list,
ranges & combinations
Coexists with routed
subinterfaces
Flexible VLAN
acrobatics (translate,
pop, push)
Full H-QOS support
EFP – Ethernet Flow Point
EVC – Ethernet Virtual Connection
VPLS
EoMPLS PW
EoMPLS PW
EoMPLS PW
L3 subI/F
EFPs: VLAN
(802.1q/802.1ad)
X
VLAN xlate
1:1, 2:2 1:2
Multipoint EVC
Pt2Pt EVC
Pt2Pt EVC
Multipoint EVC
Bridging
Bridging
Routing
EFPs: VLAN (802.1q/QinQ)
Cisco EVC Infrastructure Overview
Cisco EVC UNI Flexible Frame Matching with Ethernet Flow Points
EFPs ...
Provide classification of L2 flows on Ethernet interfaces
Are also referred to as EVC service-instances
Support dot1q and Q-in-Q
Support VLAN lists
Support VLAN ranges
Support VLAN Lists and Ranges combined
Coexist with routed subinterfaces
Both EFPs and routed Subinterfaces support H-QOS
EFPs on Interface
100
101
102
Match VLAN range:
100-102
200
203
210
Match VLAN list:
200, 203, 210
300,11 Match VLAN: 300,100
400,1
400,2
400,3
Match outer VLAN 400,
inner VLAN range: 1-3
400,11
400,17
400,34
Match outer 400,
inner VLAN list: 11,17,34
140 Match VLAN: 14
Physical Ethernet interface (GE/10GE)
SVI
SVI
SV
I
SV
I VPLS
Local Connect
EoMPLS
L3
EoMPLS
VLANs
VLANs
Local Connect
BD
EoMPLS
VLANs
interface GigabitEthernet3/0/0
description Sample Configs
!
service instance 1 ethernet
encapsulation untagged
rewrite ingress tag push dot1q 3 symmetric
xconnect 10.30.30.173 2 encapsulation mpls
service instance 10 ethernet
encapsulation dot1q 10
rewrite ingress tag pop 1 symmetric
bridge-domain 500 split-horizon
!
service instance 20 ethernet
encapsulation dot1q 20 second-dot1q 200
rewrite ingress tag pop 1 symmetric
bridge-domain 500 split-horizon
!
service instance 30 ethernet
encapsulation dot1q 20 second-dot1q any
rewrite ingress tag pop 1 symmetric
bridge-domain 500 split-horizon
* Not All Configuration Combinations Shown Here
interface GigabitEthernet3/0/1
description Sample Configs
!
service instance 1 ethernet
encapsulation default
xconnect 10.30.30.173 2 encapsulation mpls
BD
Flexible Service Mapping/Forwarding
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45
NGN Carrier Ethernet System:
Service Delivery Models
• VLAN Models in accordance with TR-101 (residential) and MEF (business services)
• Business Services make use of 1:1 VLANs
• Video (unicast and multicast) always delivered across an N:1 VLAN from Aggregation node to Access Node
Allows efficient replication
Allows RSVP based CAC
Allows multicast CAC
• Other Services can either:
Share that N:1 VLAN (non trunk UNI model at Access Node)
Use a different N:1 VLAN (trunk UNI/Multi-VC model at Access Node)
Per Service N:1 VLANs
Use a different 1:1 VLAN (trunk UNI/Multi-VC model at Access Node)
1:1 VLAN for Internet Access (and Voice), N:1 VLAN Video
• Wholesale Models make use of 1:1 and N:1 VLAN models
IP NGN Carrier Ethernet Design—
VLAN Models
Multiservice
Core Network
Aggregation Node
ASR9k, ME3800X, 7600 Video SEN, 7600
PPP, IP, MPLS MPLS 802.1ad NNI, MPLS/IP Transport DSL, PON, Ethernet
Access Node
HSI SEN, ASR1k
Distribution Node
ASR9k, 7600
Large Scale
Aggregation Network
Intelligent
Services Edge
Efficient
Access Network
Ethernet/MPLS NNI
Core Node
Residential Services Architecture
(Centralized BNG)
HSI, VoIP VLAN(s) EoMPLS Pseudowire EoMPLS PW
VoD+IPTV , VoIP VLAN
802.1Q
QinQ
N:1 VLAN
Non/Trunk UNI, N:1 or 1:1 VLAN
Service Aware or Transport
VPWS, VPLS, MPLS/IP
MPLS/IP, IP Multicast, MoFRR
MPLS/IP
MPLS VPN
ISG Sessions
Enables PPPoE to IPoE
migration, usage based
services with service and
session control, DPI and SBC
May include in future service
supporting functions; Content
Cache, FCC, RET, VoD CAC
Retail 3Play Services
HSI, VoIP VLAN(s) EoMPLS Pseudowire EoMPLS PW
VoD+IPTV VLAN
802.1Q
QinQ
N:1 VLAN
Trunk UNI, N:1 or 1:1 VLAN
MPLS/IP
MPLS VPN
ISG Sessions Wholesale 3Play Services
802.1Q
QinQ H-VPLS, IGMP snooping, CAC IP, PIM
HSI SEN
Video SEN
HSI SEN
Transport Deployment
Service Aware Deployment
Non-Trunk UNI, N:1 VLAN Residential Services Aggregation Model
• Port-significant VLAN ids removed on ingress
• Routing AND bridging in a common N:1 VLAN
• VLAN id added on egress towards BNG
802.1Q [10]
802.1Q [10]
IPoE TV, VoD
Aggregation BNG Access Distribution
20xGE 2x10GE 2x10GE 20xGE
HSI IP/PPPoE
IPoE TV, VoD
HSI IP/PPPoE
802.1Q [100]
Bridge Domain 100
Ingress
POP TAG 10 Symmetric
Ingress POP TAG 100 Symmetric
VFI
IGM
P s
noopin
g
Gateway for VoD/IP/TV
Ingress
POP TAG 10 Symmetric
Multiservice
Core Network
Integrated Edge Node
7600, future ASR9k L3 VPN PE
Distribution Node
7600, ASR9k
Large Scale
Aggregation Network
Intelligent
Services Edge
Efficient
Access Network
MPLS NNI
Core, CRS1
Residential Services Architecture
(Distributed BNG)
N:1 or 1:1 VLAN
Service Aware
VPWS, VPLS, MPLS/IP
MPLS/IP, PIM
MPLS VPNs, Multicast VPNs
Trunk or Non Trunk UNI
ISG Sessions
May include service supporting
functions: Content Cache, FCC,
RET, Vod CAC, DPI, SBC,
TV
N:1 or 1:1 VLAN
HSI, VoIP, VoD
N:1 VLAN IP Multicast or Multicast VPN
802.1ad (1ah)
SP NNI
802.1q
PPPoE/IPoE
Wholesale 3 Play Services
Retail 3Play Services
MPLS VPN based managed wholesale services,
Enables PPPoE and IPoE
coexistence, support for video
and voice services over FTTX
and future PON access
PPP, IP, MPLS MPLS 802.1ad NNI, MPLS / IP Transport DSL, PON, Ethernet
Access
Node
Non Trunk UNI, 1:1 VLAN Model Residential Services Aggregation Model, Distributed Edge
PIM-SSM
I/F
Routed CPE
STB
IP
Routed CPE
STB
IP
MVR
Non Trunk UNI
I/F (ISG)
HSI/VoD/VoIP I/F (ISG)
PPP
IP
802.1q or QinQ
802.1q
HSI/VoD/VoIP
TV
Access Distribution
Nx10xGE Nx10GE Nx10GE N x10GE
CPE
VDSL, ADSL2+ Ethernet and PON
Integrated Edge
MPLS/IP with MPLS/Multicast VPN
PPP, IP, MPLS 802.1ad NNI, MPLS / IP Transport DSL, PON, Ethernet
Business Services Architecture
Business E-LINE
Business E-LAN
H-VPLS or VPLS
EoMPLS
Port, 1q, QinQ
Port, 1Q, QinQ
Port, 1Q, QInQ
Business L3 VPN
Ethernet
QinQ
Port, 1Q, QInQ
MPLS VPN
Port, 1Q, QinQ
VPLS
MPLS VPN/Multicast VPN (GRE)
VPLS+802.1ah
H-VPLS or VPLS and VPLS+1ah
MPLS VPN
Transport Deployment
Service Aware Deployment
Multiservice
Core Network
Aggregation Node
ASR9k, ME3800X, 7600 Business SEN, ASR9k
MPLS
Access Node
Business SEN, ASR9k
Distribution Node
ASR9k, 7600
Large Scale
Aggregation Network
Intelligent
Services Edge
Efficient
Access Network
Ethernet/MPLS NNI
Core Node
Service Aware or Transport
VPWS, VPLS, MPLS/IP
PPP, IP, MPLS 802.1ad NNI, MPLS / IP Transport DSL, PON, Ethernet
Wholesale Transport Services Architecture
TV N:1 or 1:1 VLAN
HSI, VoIP, VoD,TV
N:1 VLAN w/ Access Node MVR
TV N:1 or 1:1 VLAN
HSI, VoIP, VoD
802.1ad SP NNI PIM SSM
PIM SSM
802.1ah SP NNI
VPLS+802.1ah (ISID per Retailer/Access Node
N:1 VLAN w/ Access Node MVR
VPLS+IGMP Snooping over Physical Topology
VPLS+IGMP Snooping over Physical Topology
Multiservice
Core Network
Aggregation Node
ASR9k, ME3800X, 7600
MPLS
Access Node Distribution Node
ASR9k, 7600
Large Scale
Aggregation Network
Intelligent
Services Edge
Efficient
Access Network
Ethernet/MPLS NNI
Core Node
Service Aware or Transport
VPWS, VPLS, MPLS/IP
PPP, IP, MPLS 802.1ad NNI, MPLS / IP Transport DSL, PON, Ethernet
H-VPLS Transport
IEEE 802.1ah Service Aggregation Model
VFI
Core Access Distribution
20xGE 2x10GE 2x10GE 20xGE
Aggregation
EPLAN: Port
Classify default
EPLAN: QinQ Access
Classify S-VLAN
Ingress Pop S-VLAN
symmetric
EVPLAN: 802.1q Access
Classify C-VLAN
Ingress Pop C-VLAN
symmetric
802.1q or QinQ
B-MAC
BD
802.1q or QinQ
802.1q or QinQ
C-MAC
BD2 ISID-2
VFI 802.1q or QinQ
C-MAC
BD2 ISID-1
Multiservice
Core Network
Aggregation Node
NGXP, CPT Video SEN, 7600
PPP, IP, MPLS MPLS 802.1adNNI, DWDM+MPLS TP DSL, PON, Ethernet
Access Node
HSI SEN, ASR1k
Distribution Node
NGXP, CPT
Large Scale
Aggregation Network
Intelligent
Services Edge
Efficient
Access Network
Core CRS-3
Residential Services Architecture with MPLS-TP
Aggregation
Transport Focused Deployment
VPWS, VPLS over MPLS TP
EoMPLS Pseudowire EoMPLS PW (static or LDP)
IPTV Transport
802.1Q
QinQ
N:1 VLAN
Trunk UNI, N:1 or 1:1 VLAN
MPLS/IP, IP Multicast, IP FRR, MoFRR
MPLS/IP
MPLS VPN
ISG Sessions
Retail or Wholesale 3Play Services
802.1Q
VPLS LDP, IGMP snooping per VFI
HSI SEN
Video SEN
EoMPLS PW (static or LDP) 802.1Q
QinQ
HSI, VoIP VLAN(s)
VoD, IPTV VLAN
Trunk UNI, N:1 VLAN
PIM
IP
MPLS/IP
MPLS/Multicast VPN
Video Unicast Transport
Multiservice
Core Network
Business SEN, ASR9k
MPLS, VPWS, VPLS, L3 DSL, PON, Ethernet
Access Node
Business SEN, ASR9k
Large Scale
Aggregation Network
Intelligent
Services Edge
Efficient
Access Network
MPLSNNI
CRS-3
Business Services Architecture with MPLS-TP
Aggregation
Business E-LINE
Business E-LAN
H-VPLS
EoMPLS
Port, 1Q, QinQ
Port, 1Q, QInQ
Includes all L3 VPN C-VLANs from the
Access Node represented by S-VLAN
Business L3 VPN
EoMPLS PW Ethernet
QinQ
Port, 1Q, QInQ
VPLS
MPLS VPN
Aggregation Node
NGXP, CPT
Distribution Node
NGXP, CPT
VPLS over MPLS
MS-PW PW Segment over MPLS PW Segment (static or LDP) over MPLS TP
802.1adNNI, DWDM+MPLS TP
Transport Focused Deployment
VPWS, VPLS over MPLS TP
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 56
NGN Carrier Ethernet System:
High Availability
Baseline Network Availability Mechanism • Access Mechanisms
Multiple Spanning Tree (MST) or MST Access Gateway
Resilient Ethernet Protocol (REP)
LACP, Multi-Chassis LACP
Inter Chassis Control Protocol (ICCP)
• IP Services and MPLS IGP:
IP Fast Convergence
BFD
Multicast Fast Convergence, MoFRR
NEW!
Large Scale Aggregation
Intelligent Edge
Distribution Node Cisco 7600 with ES+
BNG
MPLS PP, IP, MPLS MPLS/IP
Aggregation Node Cisco 7600 with ES+
BNG
Access Node
Efficient Access
DSL, Ethernet
Multiservice
Core
MPLS Services:
VPLS mac-address withdrawal; MST/REP and VPLS interworking
Pseudowire redundancy including pseudowire status bit support
MPLS TE-FRR Link and Node protection with IP services, PW/VPLS PW tunnel selection
• Simplicity should be the guiding rule of all Tight SLA designs
• Service Recovery = Protection (super-fast) and Restoration (fast)
• IP/MPLS fast convergence baseline has improved dramatically
IGP Fast Convergence (FC) broke the barrier of <200msec restoration time
Powerful and simple baseline tool for all L2 and L3 services, covering multiple failures
Combined with BGP PIC* ensures fast convergence for IP/IPVPN service edge
It is simple – a built-in property of the IP/MPLS network
• Protection with IP Fast ReRoute (FRR)
Tool to improve on IGP FC for some topologies (e.g. Two-plane designs)
Provides local protection with <50msec recovery
• Protection with MPLS TE FRR
Local Link and Node Protection for deterministic <50msec recovery
Seamless service restoration (make-before-break)
Applies to all transit MPLS link and node failures
Tight SLAs for CE/MPLS Infrastructure Technology Options Overview
* BGP PIC – BGP Prefix Independent Convergence
Gain
(measured in reduction of msecs)
Complexity
(always impact OPEX, may impact CAPEX)
The engineering
optimum
The theoretical,
academic optimum
• Enabled by IGP fast topology updates and distributed computation
Optimized SPF calculation
Optimized RIB and FIB calculation
Optimized FIB distribution to the forwarding plane (e.g. linecards)
• IGP FC always matters
BGP next-hop, IPTV PIM-SSM source availability, VOD services
MPLS pseudowires leverage IP FC
MPLS TE topology and resource information
Catastrophic events
• No impact on the network stability
• Works out of the box on Cisco devices
200-500 ms convergence
• Years of experience with large SP networks deployments
• Operational simplicity is achieved!
IGP Fast Convergence (IPFC) Properties and Benefits
• Leverage IP/MPLS infrastructure tight-SLA technologies
IGP Fast Convergence
MPLS TE FRR
IP FRR Loop Free Alternative (LFA)
• Optimize L3 PE forwarding plane for fast convergence
BGP Prefix Independent Convergence
IP Multicast PIM Fast Convergence
Multicast only Fast ReRoute (MoFRR)
Tight SLAs for L3 Services
IP/MPLS optical integration - IPoDWDM
Trans-ponder
SR port on
router
Optical impairments Co
rrecte
d b
its
FEC limit
Working path
Switchover lost data
Protected path
BE
R
LOF
WDM
FEC
Standard protection
WDM port on router
Optical impairments Co
rrecte
d b
its
FEC limit
Protection trigger
Working path Protect path
BE
R
Near-hitless switch
WDM
FEC
Proactive protection
pre-FEC FRR Fault Packet Loss (ms)
Highest Lowest Average
Yes Optical-switch 11.50 11.18 11.37
Yes Noise-injection 0.02 0.00 0.00
Yes Fibre-pull 11.05 0.00 3.23
Yes PMD-injection 0.08 0.00 0.02
No Optical-switch 11.47 11.54 11.37
No Noise-injection 7404.00 1193.00 4305.00
No Fibre-pull 28.81 18.52 21.86
No PMD-injection 129.62 122.51 125.90
MPLS FRR, IP FRR, IS-IS fast convergence : all achieve near zero outage for slow failures
IP / optical integration enables the capability:
To identify degraded link using optical data (per-FEC BER)
Start protection (i.e. by signaling to the IGP) before traffic starts
failing, achieving hitless protection in many cases
VFI
VFI
VFI
VFI
I’m the second-best root
I’m just in a normal STP ring
I’m the root
• Operation
Top PE sends “pre-canned” BPDUs (best root) into L2 access network
Access network runs normal MSTP, MSTP is terminated locally on the PE access ports
MSTP TCNs trigger VPLS MAC Flush + Withdraw
MST instances have per port local significance – greatly improves scalability
Only subset of functionality needed for REP Access Gateway (future)
• Benefits
Seamless integration with any L2 access network or node running MSTP, full standard compliance
Inherent scalability and faster L2 convergence due to local Rapid STP behaviour
MST Access Gateway Operation and Benefits
Ring protection protocols:
another push beyond spanning tree
• A ring topology is a cheap method of achieving redundancy, suitable for access networks
• Spanning tree is geared toward loop avoidance in a general topology and does not require configuration, but this comes at the cost of convergence time
• If a topology is known to be a ring at the outset, a loop avoidance protocol can be designed and optimized to achieve rapid 50ms convergence (but does require configuration and some hardware support)
• G.8032 and Cisco’s REP are such examples
• A new protocol designed to provide a solution for fast and predicable Layer 2 convergence for Carrier Ethernet networks
• Fast and predictable convergence
Convergence time: 50 to 250ms
Fast failure notification even in large rings
• Limit the scope of Spanning Tree
STP is deactivated on REP interfaces
STP TCN sent away from the segment if segment fails
• Allows VLAN load balancing for optimal bandwidth utilization
• Cisco proprietary (future alignment and interworking with ITU-T G.8032)
What Is Resilient Ethernet Protocol (REP) ?
• REP guarantees there is no connectivity between two edge ports on a segment
• A REP segment is a chain of ports connected to each other and configured with a segment ID
• When all interfaces in the segment are UP, the alternate port is blocking
• When a link or switch failure occurs on the segment, then blocked port goes forwarding
REP A Segment Protocol
REP Segment
Blocked Open Alternate Port
Link Failure
Edge Port Edge Port
• Enhancement to REP introduced in latest Ethernet Access Node releases
• Allows interconnection of REP segments with STP/VPLS domains
REP Edge No Neighbour
REP Segment
Blocked Open Alternate Port
Link Failure
Edge Port Edge Port
Non REP Domain
STP TCN
G.8032 Ethernet Ring Protection (ERP)
Objectives and Principles
• Protection switching on Ethernet layer
• Utilizes conventional Ethernet bridge domains as forwarding plane
• Preventing any loops by blocking mechanism
• Can protect against any single failure on the ring
• Fast convergence (50 ms)
• Support of administrative commands (e.g. to force a failure etc)
• Relies on Ethernet OAM for fault detection and as its control channel, and Y.1731 Ring-Automatic Protection Switching (R-APS) to signal a failure upstream
• Supports Closed and Open (like a REP Segment) Rings
• Functionally Equivalent to REP
Pseudowire-Redundancy Signalling the Status of A PW
• T-LDP PW Status TLV:
0x00000000 - Pseudowire forwarding (clear all failures)
0x00000001 - Pseudowire Not Forwarding
0x00000002 - Local Attachment Circuit (ingress) Receive Fault
0x00000004 - Local Attachment Circuit (egress) Transmit Fault
0x00000008 - Local PSN-facing PW (ingress) Receive Fault
0x00000010 - Local PSN-facing PW (egress) Transmit Fault
0x00000020 - PW Forwarding Standby (NEW Status Bit)
0x00000040 – Request switchover to this PW (New Status Bit)*
• Two modes of operation
Independent Mode: Each side signals it separate state (forwarding/standby)
Master/Slave Mode: One Master imposes the PW state onto slaves
• Works across single segment and multisegment PWs
See draft-ietf-pwe3-redundancy
draft-ietf-pwe3-redundancy-bit
Use Case:
* Used when N:1 PE redundancy is needed
Pseudowire Redundancy (Two-way) Leveraging ICCP and Multi-Chassis LACP
PE1
PE2b
IP/MPLS
CE2 CE1
Primary
Pseudowire
IP or MPLS
PE2a
Redundant
Pseudowires
Failures within MPLS network are protected by IP FC, IP FRR, MPLS FRR
Failures of Ethernet Attachment Circuits or PE handled by two-way PW redundancy (Note: both sides of the PW are protected)
Inter-Chassis Communication Protocol (ICCP) for synchronization of redundancy state control for LACP and PW redundancy
LACP LACP
ICCP ICCP
Inter-Chassis Control Protocol Link Aggregation Control Protocol ICCP = LACP =
Aggregation Redundancy Active/Active Aggregation Node Redundancy
• Natural” load balancing between BRASs
• Behavior can be influenced with PADI-delay
• Terminating two pseudowires into VFI/Bridge
• Learning can be disabled + Static mac-address entries + IGMP Snooping
VLAN 10
VLAN 10
Gateway for VoD/IP/TV
VFI
Aggregation BNG Access Distribution
20xGE 2x10GE 2x10GE 20xGE
PPPoE Sessions
PPPoE Sessions
Gateway for VoD/IP/TV
Gateway for VoD/IP/TV
Aggregation Redundancy Active/Backup Access Node Redundancy (FlexLink)
VLAN 10
VLAN 10
Eo
MP
LS
PW
BNG
PPPoE Load Sharing
Aggregation Node
VRRP/HSRP
Aggregation BNG Access Distribution
20xGE 2x10GE 2x10GE 20xGE
PPPoE Sessions
Pseudowire connecting the Aggregation nodes
FlexLink
Gateway for VoD/IP/TV
Aggregation Redundancy Interworking MPLS and MST for Active/Active
Gateway for VoD/IP/TV
VLAN 10
Eo
MP
LS
PW
Eo
MP
LS
PW
•Aggregation node participates with MST, PW dedicated to BPDU handling
•MST Access Gateway allows beter scaling and MST separation between access rings/links
Aggregation BNG Access Distribution
20xGE 2x10GE 2x10GE 20xGE
BNG
PPPoE Load Sharing
Aggregation Node
VRRP/HSRP VLAN 10
VLAN 10
PPPoE Sessions
MST/RST Native VLAN
STP Root
X
• “REP or G.8032 is running on Aggregation / Integrated Edge Nodes
• REP Segment or G.8032 ERP Open Ring unblocks in any failure case
• TCN sent on segment failure Triggers VPLS MAC-Withdrawal
Aggregation Redundancy End to End REP / G.8032 ERP support
Gateway for VoD/IP/TV
Gateway for VoD/IP/TV
ETTH REP Node
ETTH REP Node
ETTH REP Node
VFI
Eo
MP
LS
PW
X
Aggregation BNG Access Distribution
20xGE 2x10GE 2x10GE 20xGE
BNG
PPPoE Load Sharing
Aggregation Node
VRRP/HSRP
PPPoE Sessions
VFI
REP Edge Port
Blocked Alternate
PORT
REP Edge Port
Aggreagtion Redundancy Interworking REP and MPLS
Gateway for VoD/IP/TV
Gateway for VoD/IP/TV
ETTH REP Node
ETTH REP Node
ETTH REP Node
VFI
Eo
MP
LS
PW
X
Aggregation BNG Access Distribution
20xGE 2x10GE 2x10GE 20xGE
BNG
PPPoE Load Sharing
Aggregation Node
VRRP/HSRP PPPoE Sessions
VFI
REP Edge No Neighbor
Blocked Alternate
PORT
•“REP Edge No Neighbor” on access nodes • REP Segment unblocks in any failure case • TCN sent on segment failure Triggers VPLS MAC-Withdrawal
REP Edge No Neighbor
MST (Access Gateway)
MST (Access Gateway)
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 76
NGN Carrier Ethernet System:
Quality of Service
Ensuring QoS SLAs UNI
Ingress and Egress maximum/minimum bandwidth
Ingress hierarchical shaping/scheduling
(e.g. Port, S-VLAN, C-VLAN, Class)
ingress hierarchical policing
Ingress and Egress DiffServ queuing per shaped max Bw
4 scheduling levels
2 strict priorities
3 parameter scheduler (max, min, remaining)
Service grouping for shared policies
Classification on customer or provider marking
Traffic stats per VLAN interface and per QoS class
CE-A CE-B
Ethernet Virtual
Circuit (EVC) –
Point-to-Point
Ethernet Virtual Circuit
(EVC) – Multipoint
EVC - An association of two or more UNIs
- Connection between two or more devices
MPLS Transport
NNI/Metro-Core • DiffServ queuing
• Aggregate queuing and scheduling
• 2 strict priorities
• 8 classes
Subscriber Level
Port
PQ2
Port Level
Subscriber group Level
BW
Linecards with Scalable H-QoS 4-Level Hierarchy Example
• 4 layers H-QOS for MEF and TR-101 compliant SLA applications
• Ingress and egress H-QOS with hierarchical shaping
• Shared H-QoS policy applied across multiple EVCs – allows for bundled SLAs
• Dual Priority scheduling with priority propagation for minimum latency and jitter (Voice+Video)
• Flexible & granular classification: Full Layer 2, Full Layer 3/4 IPv4, IPv6 (even for L2 services)
BW
PQ1
Class Level
EV
C1
EV
C 2
Cu
sto
mer - e
gre
ss
EV
C1
EV
C 2
Cu
sto
mer - in
gre
ss
PQ1
BW
Subscriber Level
Subscriber group Level
Class Level
BW
BW
BW
PQ2
PQ1
PQ1
Business Critical
Internet – Best Effort
VoIP – Bearer + Control
VoIP – Bearer + Control
Telepresence
Internet – Best Effort
Business Critical
Internet – Best Effort
VoIP – Bearer + Control
VoIP – Bearer + Control
Telepresence
Internet – Best Effort
TV Broadcast CAC on the Access Node Interface
Access UNI
IP Multicast or VPLS IGMP snooping CAC options on the Access Node :
• Single Mroute state limits
• Multiple Mroute state limits
• Cost factor Mroute state limits
Multicast CAC Models
• Limits the number of multicast streams sent towards the DSL Access Node
• Applies to deployment models that have the same stream encoding and assumes the maximum bandwidth per stream is known and used to calculate the number of possible streams
Single Mroute state limits
• Limits the number of multicast streams sent towards DSLAM, per TV programs bundles
• Enables TV programs to be bundled and delivered to the DSLAM based on different CAC rules
• The streams encoding is the same and known
Multiple Mroute state limits
• Enables bandwidth CAC control
per TV bundles or content
providers
• Enables global bandwidth CAC
control per stream types
Cost factor Mroute state limits
Mullticast VPN/PIM
Multiservice Core Network
Aggregation Node Video SEN
PPP, IP, MPLS MPLS 802.1ad NNI, MPLS / IP Transport DSL, PON,Ethernet, 2G/3G
Access Node
HSI SEN
Distribution Node
Large Scale Aggregation Network
Intelligent Services Edge
Efficient Access Network
Core Node
Service or Transport VPWS, VPLS, MPLS/IP
Business SEN
Access UNI VPLS IGMP snooping
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 82
NGN Carrier Ethernet System:
Security
Access Edge
Core Network
IP/MPLS
WiMAX
Carrier Ethernet Aggregation
Content Network
VoD TV SIP
Content Network
VoD TV SIP
Residential
STB
Business
Corporate
Residential
STB
Business
Corporate
Residential
STB
Business
Corporate
Aggregation
Node
Aggregation
Node
Distribution
Node
Distribution
Node
Aggregation
Node
Aggregation
Node
Ethernet
Access Node
Ethernet
Access Node
DSL
Access Node
Aggregation Network
MPLS/IP
STP ETTX
Access
Rings
Residential
BNG
Business
MSE
Carrier Ethernet—New EVC Model
Centralized Model
IP Unicast/Multicast/VRF routing
No Network awareness for subscriber sessions
Per VLAN MAC Limiting (Per EVC in future)
VLAN-based Access Lists
DHCP Snooping/DAI/MAC Security
Storm Control
L3/4 ACLs
Split Horizon
Untrusted Mostly Trusted
Centralized Model
Subscriber session awareness for PPPoE, IP Session
Authentication: PPPoE or Web-Based
Authorization: Radius based on Username, DHCP Option 82
IP Address Management: RADIUS, DHCP
Distributed Model
IP Unicast/Multicast/VRF routing
No Network awareness for subscriber sessions
Per VLAN MAC Limiting
VLAN-based Access Lists
DHCP Snooping/DAI/Mac Security
Storm Control
L3/L4 ACLs
Split Horizon
Trusted Distributed Model
Subscriber session awareness for PPPoE, IP Session
Authentication: PPPoE or Web-Based
Authorization: RADIUS based on Username, DHCP Option 82
IP Address Management: RADIUS, DHCP
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 84
NGN Carrier Ethernet System:
Summary
• IP/MPLS-Based Transport/ Per Service
• Flexible Service Mapping
• Subscriber Awareness Where Needed
• Video Optimisations
Summary: NGN CE System
Arc
hit
ectu
ral F
ram
ew
ork
an
d F
un
cti
on
ali
ty
IP N
GN
Access Aggregation Core
BNG Billing
Location Server
NMS MSE
VoD DPI
DIST
AGG
Edge OSS/BSS
Intelligent Edge
Customer Element
Multiservice Core
Access/ Aggregation
Ap
pli
ca
tio
n
La
ye
r S
erv
ice
La
ye
r N
etw
ork
L
aye
r
Carrier Ethernet
Service Exchange
Framework for User and Application-
Based Control
Video and Gaming
Data Center
Presence-Based
Telephony
Web Services
Mobile Apps
IP Contact Center
Op
era
tio
na
l L
ay
er
IPoDWDM Optical Network
Aggregation Node
Aggregation Network MPLS/IP
Carrier Ethernet Aggregation Access Edge
Aggregation Node
Aggregation Node
Ethernet Node
STB
VoD
Content Network
TV SIP
PON Node
DSLNode
Core
VoD
Content Network
TV SIP
Multiservice Core
Core Network
IP / MPLS Distribution Node
Corporate
Business
Corporate
Business
Residential
STB
Residential
Aggregation Node
Distribution Node
Mobile
2G/3G/4G Node
RAN Access Network
MPLS/IP
Corporate
Business
BSC/RNC
BSC/RNC
NGN System Technology Overview
TR-101 Functions
MSTP/REP/G.8032
L2 Access Network
• 802.1Q NNI
Local VLAN Significance
Flexible service mapping
Ethernet virtual
connection infrastructure
Security features
ATM/TDM backhaul over MPLS
EoMPLS/VPLS/L3VPN
IP Unicast/Multicast Forwarding
Ethernet/MPLS OAM
Pseudowire Redundancy
MPLS-TP
Unified MPLS
Fast Convergence
IPoDWDM integration
IPTV Edge
Backhaul HSI to BNG
Distributed Triple Play
Edge
Interworking MPLS
with MST/REP/G.8032
Multi-Chassis Link
Aggregation
Questions?
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 88
Visit the Cisco Store for
Related Titles
http://theciscostores.com
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 89
• Receive 25 Cisco Preferred Access points for each session evaluation you complete.
• Give us your feedback and you could win fabulous prizes. Points are calculated on a daily basis. Winners will be notified by email after July 22nd.
• Complete your session evaluation online now (open a browser through our wireless network to access our portal) or visit one of the Internet stations throughout the Convention Center.
• Don’t forget to activate your Cisco Live and Networkers Virtual account for access to all session materials, communities, and on-demand and live activities throughout the year. Activate your account at any internet station or visit www.ciscolivevirtual.com.
Complete Your Online
Session Evaluation
Thank you.