Virtual Hub & Spoke with BGP EVPNs

Slides:

Advertisements

Similar presentations

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing the MPLS VPN Routing Model.

Advertisements

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal

Ethernet VPN (EVPN) - Casos de Uso e Aplicação

CS Summer 2003 Lecture 14. CS Summer 2003 MPLS VPN Architecture MPLS VPN is a collection of sites interconnected over MPLS core network. MPLS.

MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,

MPLS And The Data Center Adrian Farrel Old Dog Consulting / Juniper Networks

Virtual Subnet : A L3VPN-based Subnet Extension Solution draft-xu-virtual-subnet-10 Xiaohu Xu (Huawei) Susan Hares (Huawei) Yongbing Fan.

Building a massively scalable serverless VPN using Any Source Multicast Athanasios Douitsis Dimitrios Kalogeras National Technical University of Athens.

Draft-boutros-bess-evpn-vpws-service-edge-gateway-00 Sami Boutros Ali Sajassi Patrice Brissette [Cisco Systems] Daniel Voyer [Bell Canada] IETF 92,

Network Redundancy Multiple paths may exist between systems. Redundancy is not a requirement of a packet switching network. Redundancy was part of the.

Slide: 1 Neighbor Discovery. Slide: 2 Neighbor Discovery Overview Set of messages and processes that determine relationships between neighboring nodes.

Draft-bitar-nvo3-vpn-applicability-00.txt Page - 1 Cloud Networking: Framework and VPN Applicability draft-bitar-nvo3-vpn-applicability-00.txt Nabil Bitar.

Virtual Subnet: A Scalable Cloud Data Center Interconnect Solution draft-xu-virtual-subnet-06 Xiaohu Xu IETF82, TAIWAN.

1 © OneCloud and/or its affiliates. All rights reserved. VXLAN Overview Module 4.

Chapter 19 Binding Protocol Addresses (ARP) A frame transmitted across a physical network must contain the hardware address of the destination. Before.

Inter AS option D (draft-mapathak-interas-option-d-00) Manu Pathak Keyur Patel Arjun Sreekantiah November 2012.

Using BGP between PE and CE in EVPN draft-li-l2vpn-evpn-pe-ce-01 Zhenbin Li, Junlin Zhuang, Shunwan Zhuang (Huawei Technologies) IETF 90, Toronto, Canada.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 draft-sajassi-l2vpn-evpn-etree-02.txt A. Sajassi (Cisco), S. Samer.

CSIT 220 (Blum)1 ARP Based on Computer Networks and Internets (Comer)

Covering Prefixes Outbound Route Filter for BGP-4 draft-bonica-l3vpn-orf-covering-prefixes-01 H. Jeng, l. Jalil, R. Bonica, Y. Rekhter, K. Patel, L. Yong.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 draft-sajassi-l2vpn-pbb-evpn-02.txt Ali Sajassi (Cisco), Nabil Bitar.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 draft-ietf-l2vpn-evpn-04.txt A. Sajassi (Cisco), R. Aggarwal (Arktan),

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 draft-sajassi-l2vpn-evpn-inter-subnet- switching-03.txt A. Sajassi.

1 Copyright © 2009 Juniper Networks, Inc. E-VPN for NVO Use of Ethernet Virtual Private Network (E-VPN) as the carrier-grade control plane.

VS (Virtual Subnet) draft-xu-virtual-subnet-03 Xiaohu Xu IETF 79, Beijing.

Covering Prefixes Outbound Route Filter for BGP-4 draft-bonica-l3vpn-orf-covering-prefixes-01 H. Jeng, l. Jalil, R. Bonica, Y. Rekhter, K. Patel, L. Yong.

EVPN: Or how I learned to stop worrying and love the BGP

Draft-rabadan-l2vpn-evpn-prefix-advertisement-01 Jorge Rabadan Wim Hendericks Florin Balus Senad Palislamovic Aldrin Isaac IP Prefix Advertisement in EVPN.

VXLAN DCI Using EVPN draft-boutros-l2vpn-vxlan-evpn-01.txt Sami Boutros Ali Sajassi Samer Salam Dennis Cai IETF 86, March 2013 Orlando, Florida.

Virtual Private LAN Service

MBGP and Customer Routes

1 draft-rabadan-l2vpn-evpn-prefix-advertisement-03 Jorge Rabadan Wim Henderickx Florin Balus Senad Palislamovic Aldrin Isaac Ali Sajassi John Drake IP.

Global Table Multicast with BGP-MVPN Protocol

EVPN: Or how I learned to stop worrying and love the BGP Tom Dwyer, JNCIE-ENT #424 Clay Haynes, JNCIE-SEC # 69 JNCIE-ENT # 492.

MPLS Virtual Private Networks (VPNs)

draft-patel-raszuk-bgp-vector-routing-01

MPLS VPN Implementation

MAC Address Tables on Connected Switches

draft-xu-isis-nvo-cp-00 Xiaohu Xu (Huawei) Saumya Dikshit (Cisco)

Virtual Subnet : A L3VPN-based Subnet Extension Solution

Hierarchical Fabric Designs

Softwire Mesh Solution Framework

L2VPN/EVPN/L3VPN Yang IETF-96 Berlin.

Draft-boutros-bess-evpn-auto-provisioning-01 Sami Boutros Rex Fernando Ali Sajassi Kitty Pang Tapraj Singh IETF 95, April 2015 Buenos Aires.

DCI using TRILL Kingston Smiler, Mohammed Umair, Shaji Ravindranathan,

TRILL MPLS-Based Ethernet VPN

Using MPLS/VPN for Policy Routing

Net 323: NETWORK Protocols

MPLS - How does it work ?.

Virtual Hub-and-Spoke in BGP EVPNs

EVPN Interworking with IPVPN

draft-sajassi-bess-evpn-ip-aliasing- 00.txt

Preference-based EVPN DF Election draft-rabadan-bess-evpn-pref-df-02

draft-sajassi-bess-evpn-vpls-all-active- 00.txt

EVPN a very short introduction

Attilla de Groot | Sr. Systems Engineer, HCIE #3494 | Cumulus Networks

draft-malhotra-bess-evpn-unequal-lb-00

COMP/ELEC 429/556 Introduction to Computer Networks

BGP-Based SPF IETF 98, Chicago

Virtual Hub-and-Spoke in BGP EVPNs

Inter-AS MVPN: Multihoming Considerations

Multicast in L3VPN Signaled by EVPN Type-5 Routes

Applicability of EVPN to NVO3 Networks

EVPN Interworking with IPVPN

Parag Jain, Samer Salam, Ali Sajassi (Cisco),

draft-malhotra-bess-evpn-irb-extended-mobility-03

EVPN and L2 Access Protocols: Single-Flow-Active load-balancing mode

Mobile IP Neil Tang 11/12/2008 CS440 Computer Networks.

EVPN control plane for Geneve draft-boutros-bess-evpn-geneve-03

Tim Strakh CEO, IEOFIT CCIE RS, CCIE Sec CCIE Voice, CCIE DC

Presentation transcript:

Virtual Hub & Spoke with BGP EVPNs draft-keyupate-evpn-virtual-hub-00 Keyur Patel, Ali Sajassi, John Drake, Wim Henderickx IETF 94, November 2015, Yokohama, Japan 1

Motivation EVPN is becoming a pervasive technology for overlay networks in MSDCs & SPDCs EVPN route scale in DCs is typically achieved by Leaf nodes learn and store local DC routes (MAC and IP addresses) Any remote DC routes are stored on Gateway nodes Leaf nodes are installed with default route pointing towards Gateway nodes Draft further optimizes route learning such that Leaf nodes learn and store routes (MAC and IP addresses) for local sites only Leaf nodes do not store routes advertised by other Leaf nodes residing in the same DC

Solution RFC7024 defines rules for Virtual Hub & Spoke for BGP L3VPNs Draft extends RFC7024 for EVPN address family Rules for generating and processing of unknown MAC Route Modifications to Aliasing, Split Horizon and Mass Withdraws Forwarding considerations for Bridging mode and IRB mode Rules for ARP Suppression

Solution – Rules for Unknown MAC Route Unknown MAC Route is equivalent to VPN-IP default route in RFC7024 V-Hub exports Unknown MAC Route for a given EVI for set of its V-Spokes RD makes route unique per V-Hub Rules to originate the Unknown MAC Route is same as VPN-IP default route in RFC7024 Unknown MAC Route is announced using MAC/IP advertisement route V-Spoke imports the route unless route-target mismatch happens Rules to import the Unknown MAC Route is same as VPN-IP default route in RFC7024 In absence of more specific EVPN-MAC route, unknown MAC Route is used in MAC-Table/ARP/ND Cache Forces the traffic to be forwarded to V-HUB from a V-Spoke

Solution – Modifications to Aliasing, Split Horizon and Mass Withdrawals V-Spokes usually do NOT have EVPN MAC Routes from other V-Spokes Ethernet A-D routes of V-Spokes are only announced to V-HUB V-Hub only announces Ethernet A-D per EVI route when it announces atleast 1 or more specific MAC/IP route to a V-Spoke. Otherwise there is no point in propagating Ethernet A-D per EVI routes between spokes by default. Same rule applies to Ethernet A-D per ES routes

Solution – Forwarding Considerations IP Forwarding Rules of RFC7024 apply for IP only forwarding MAC only forwarding (Bridging Mode) MPLS label of Unknown MAC route identifies the MAC-VRF of V-Hub V-Hub receiving data packets for such a label pops the label and performs a lookup in MAC-VRF to determine further disposition of the packet Data packets for more specific routes are forwarded towards their nexthops IRB If the host destination address of the packet is an IRB interface then V-Spoke does an IP lookup in MAC-VRF If the IP address is not found then V-Spoke MAY forward the packet to V-HUB using Default VPN-IP Route If the host destination address of the packet is a MAC address then V-Spoke does an MAC lookup in MAC-VRF If the MAC address is not found then V-Spoke MAY forward the packet to V-HUB using unknown MAC Route

Solution – ARP Suppression RFC7432 defines procedures to terminate ARP/ND request, translate it into BGP updates and then use the information to generate ARP/ND responses (AKA ARP Suppression) ARP suppression needs to be performed by V-Hub and V-Spoke: V-Spoke terminates gratuitous ARP/ND request, stores the source MAC/IP pair in ARP/ND Cache and announce it in EVPN SAFI to V-Hubs (if created for the first time) V-Spoke responds to the received ARP/ND request if it find a match in its local ARP/ND cache. Otherwise the request is unicasted towards one of V-Hubs V-Hub receives these routes from V-Spoke and stores it in its ARP/ND Cache table. V-Hub responds to any received unicast ARP/ND requests. Optionally V-Hub MAY announce the matching route in EVPN SAFI as well (as a matter of policy)

Questions?