EVPN Interworking with IPVPN

Slides:

Advertisements

Similar presentations

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing the MPLS VPN Routing Model.

Advertisements

Route Optimisation RD-CSY3021.

© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP Diverse Paths draft-ietf-grow-diverse-bgp-paths-dist-02 Keyur Patel.

1 © 2000, Cisco Systems, Inc. Integrated-ISIS Route Leaking.

1 Copyright  1999, Cisco Systems, Inc. Module10.ppt10/7/1999 8:27 AM BGP — Border Gateway Protocol Routing Protocol used between AS’s Currently Version.

© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.

BGP. 2 Copyright © 2009 Juniper Networks, Inc. BGP Overview Is an inter-domain routing protocol that communicates prefix reachablility.

BGP Extensions for BIER draft-xu-idr-bier-extensions-01 Xiaohu Xu (Huawei) Mach Chen (Huawei) Keyur Patel (Cisco) IJsbrand Wijnands (Cisco)

1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.

CS Summer 2003 Lecture 14. CS Summer 2003 MPLS VPN Architecture MPLS VPN is a collection of sites interconnected over MPLS core network. MPLS.

Ietf-64 draft-kulmala-l3vpn-interas-option-d-01.txt Additional Inter AS option for BGP/MPLS IP VPN IETF-64 draft-kulmala-l3vpn-interas-option-d-01.txt.

© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP AS AN MVPN PE-CE Protocol draft-keyupate-l3vpn-mvpn-pe-ce-00 Keyur Patel,

© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network BGP Attributes and Path Selection Process.

Border Gateway Protocol (BGP) W.lilakiatsakun. BGP Basics (1) BGP is the protocol which is used to make core routing decisions on the Internet It involves.

More on Internet Routing A large portion of this lecture material comes from BGP tutorial given by Philip Smith from Cisco (ftp://ftp- eng.cisco.com/pfs/seminars/APRICOT2004.

Inter AS option D (draft-mapathak-interas-option-d-00) Manu Pathak Keyur Patel Arjun Sreekantiah November 2012.

Using BGP between PE and CE in EVPN draft-li-l2vpn-evpn-pe-ce-01 Zhenbin Li, Junlin Zhuang, Shunwan Zhuang (Huawei Technologies) IETF 90, Toronto, Canada.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 draft-sajassi-l2vpn-pbb-evpn-02.txt Ali Sajassi (Cisco), Nabil Bitar.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 draft-ietf-l2vpn-evpn-04.txt A. Sajassi (Cisco), R. Aggarwal (Arktan),

Praveen Muley (Alcatel), Susan Hares (NextHop), Keyur Patel (Cisco), Luyuan Fang (AT&T), Benson Schliesser (Savvis), Nabil Bitar (Verizon) Group Cooperative.

1 Copyright © 2009 Juniper Networks, Inc. E-VPN for NVO Use of Ethernet Virtual Private Network (E-VPN) as the carrier-grade control plane.

intra-va-01.txt -01 Draft of: “FIB Suppression with Virtual Aggregation and Default Routes” Paul.

Covering Prefixes Outbound Route Filter for BGP-4 draft-bonica-l3vpn-orf-covering-prefixes-01 H. Jeng, l. Jalil, R. Bonica, Y. Rekhter, K. Patel, L. Yong.

EVPN: Or how I learned to stop worrying and love the BGP

1 EVPN – Preference DF Election IETF95 – April 2016 draft-rabadan-bess-evpn-pref-df-00 Jorge Rabadan Senthil Sathappan Tony Przygienda Wen Lin Tapraj Singh.

Virtual Private LAN Service

MBGP and Customer Routes

MVPN/EVPN C-Multicast/SMET Route Enhancements Zhaohui Zhang, Robert Kebler Wen Lin, Eric Rosen Juniper Networks 96 th IETF, Berlin.

1 draft-rabadan-l2vpn-evpn-prefix-advertisement-03 Jorge Rabadan Wim Henderickx Florin Balus Senad Palislamovic Aldrin Isaac Ali Sajassi John Drake IP.

Global Table Multicast with BGP-MVPN Protocol

EVPN: Or how I learned to stop worrying and love the BGP Tom Dwyer, JNCIE-ENT #424 Clay Haynes, JNCIE-SEC # 69 JNCIE-ENT # 492.

MPLS Virtual Private Networks (VPNs)

Advanced Computer Networks

Border Gateway Protocol

Virtual Hub & Spoke with BGP EVPNs

L2VPN Provisioning & Signaling

Routing Jennifer Rexford.

Virtual Subnet : A L3VPN-based Subnet Extension Solution

Multicast VPN using BIER

Virtual Aggregation (VA)

Border Gateway Protocol

OSPF (Open Shortest Path First)

Hierarchical Fabric Designs

BGP supplement Abhigyan Sharma.

Interdomain Traffic Engineering with BGP

Framework for EVPN Designated Forwarder Election Extensibility

Loop Protection in EVPN Networks draft-snr-bess-evpn-loop-protect-00

PIM Proxy in EVPN Networks draft-skr-bess-evpn-pim-proxy-00

INTER-AUTONOMOUS SYSTEM MPLS VPN: CONFIGURATION AND TROUBLESHOOTING

BIER for EVPN BUM Traffic

draft-sajassi-bess-evpn-ip-aliasing- 00.txt

MVPN/EVPN Tunnel Aggregation with Common Labels Zhaohui Zhang (Juniper) Eric Rosen (Juniper) Wen Lin (Juniper) Zhenbin Li (Huawei) BESS WG 20-March-2018.

Preference-based EVPN DF Election draft-rabadan-bess-evpn-pref-df-02

draft-sajassi-bess-evpn-vpls-all-active- 00.txt

EVPN a very short introduction

draft-malhotra-bess-evpn-unequal-lb-00

COMP/ELEC 429/556 Introduction to Computer Networks

BGP-Based SPF IETF 98, Chicago

EVPN Inter-subnet Multicast Forwarding

Virtual Hub-and-Spoke in BGP EVPNs

Inter-AS MVPN: Multihoming Considerations

Multicast in L3VPN Signaled by EVPN Type-5 Routes

Applicability of EVPN to NVO3 Networks

BGP VPN service for SRv6 Plus IETF 105, Montreal

EVPN Interworking with IPVPN

Parag Jain, Samer Salam, Ali Sajassi (Cisco),

Neeraj Malhotra (Arrcus) Ali Sajassi (Cisco) Jorge Rabadan (Nokia)

draft-malhotra-bess-evpn-irb-extended-mobility-03

EVPN and L2 Access Protocols: Single-Flow-Active load-balancing mode

EVPN control plane for Geneve draft-boutros-bess-evpn-geneve-03

Presentation transcript:

EVPN Interworking with IPVPN draft-rabadan-sajassi-bess-evpn-ipvpn-interworking-00 Jorge Rabadan (Nokia) Ali Sajassi (Cisco) Eric Rosen (Juniper) John Drake (Juniper) Wen Lin (Juniper) Jim Uttaro (AT&T) Adam Simpson (Nokia) IETF100, Nov 2017 Singapore

Problem statement VPN-IPv4 A/32 RT-5 A/32 GW1 RR PE1 IP-VRF 1 Tenant Subnets IP-VRF 1 A tenant domain main span multiple domains where different Inter- Subnet-Forwarding SAFIs (ISF- SAFIs) may provide inter-subnet connectivity. EVPN domain-1 IPVPN domain IP-VRF 1 GW2 This document addresses the interworking aspects between ISF-SAFIs when one of them is EVPN: BGP route selection Loop Prevention Path Attribute Propagation

Attachment Circuit (AC) Terminology Interworking PE a PE that may advertise a given prefix in both an EVPN route (RT-2 or RT-5) and in a route of another ISF SAFI. An Interworking PE has one IP-VRF per tenant, and one or multiple MAC-VRFs per tenant. Each MAC-VRF may contain one or more BTs, where each BT may be attached to that IP-VRF via IRB. Interworking PE IRB interface IP-VRF RD2 / RT2 Attachment Circuit (AC) Broadcast Domain (BD) Eth-Tag 1 MPLS or IP tunnel (IP payload) IRB interface MAC-VRF Defined as per RFC7432 Properties: RD and RT(s) N BDs per MAC-VRF, each one different Eth-tag If N=1  Eth-tag= 0 Each BD may be linked to an IRB if it requires inter-subnet communication MPLS or IP tunnels with Ethernet payload Each BD has a MAC table populated by local MACs, MACs learned on ACs or via BGP EVPN MPLS or IP tunnel (Ethernet payload) Broadcast Domain (BD) Eth-Tag 2 AC MAC-VRF RD1 / RT1 Regular interface MPLS or IP tunnel (Ethernet payload) SAFIs 128 / 1 EVPN BGP

Terminology (2) GATEWAY PE COMPOSITE PE DOMAIN EVPN PE EVPN PE IW PE IPVPN PE EVPN IPVPN EVPN IP-VRF 1 IP-VRF 1 IP-VRF 1 IP-VRF 1 IW PE RR IP-VRF 1 GATEWAY PE Advertises a prefix to different peer IPVPN EVPN 2 1 IPVPN IP-VRF 1 COMPOSITE PE Advertises a prefix multiple times to the same peer IPVPN PE DOMAIN Set of IPVRFs with the same Domain-ID. Two PEs are in the same Domain if there are no (tenant) IP lookups in intermediate routers 3 EVPN GW PE GW PE BGP LU ASBR ASBR PE IP-VRF 1 IP-VRF 1 PE PE PE IP-VRF 1 IP-VRF 1 EVPN IPVPN EVPN IP-VRF 1 IP-VRF 1 IP-VRF 1 IP-VRF 1 GW PE GW PE ASBR ASBR DOMAIN 1 DOMAIN 2 DOMAIN 3 DOMAIN 1

Domain Path Attribute (D-PATH) A new attribute for loop protection and ISF-SAFI visibility Length field followed by a sequence of Domain segments, where each Domain segment is represented by <DOMAIN-ID:ISF_SAFI_TYPE> Length (1B) contains the number of Domain Segments DOMAIN-ID (6B) identifies the domain, 4B Global Admin field + 2 Local Admin field ISF_SAFI_TYPE (1B) identifies the SAFI (1, 70 or 128) Domain segments: The leftmost entry in the list is the <DOMAIN-ID:ISF_SAFI_TYPE> that the Gateway PE added when sending the prefix into the local DOMAIN. The rightmost entry in the list is the originating <DOMAIN-ID:ISF_SAFI_TYPE> for the prefix, that was added by the first Gateway PE propagating the update between Domains. Intermediate entries are transit <DOMAIN-ID:ISF_SAFI_TYPE> that the update has passed through on its way. The number of segments reflects the number of GW PEs, irrespective of the BGP speakers. E.g. {<6500:2:IPVPN>,<6500:1:EVPN>}  the Prefix was originally advertised in EVPN within Domain 6500:1, re- advertised by a first Gateway PE using an IPVPN route in Domain 6500:2 and re-advertised by a second Gateway PE into the local Domain. D-PATH used for Loop Prevention Any Interworking PE that imports a Prefix route MUST flag the route as "looped" if its D-PATH contains a <DOMAIN- ID:ISF_SAFI_TYPE> segment, where DOMAIN-ID matches a local DOMAIN-ID in the tenant IP-VRF.

Route Selection Between EVPN and other ISF-SAFIs Removes from consideration the routes following the rules and the order defined in [RFC4271], with the following exceptions and in the following order: After removing from consideration lowest Local Preference, any routes that do not have the shortest D-PATH are also removed from consideration. Routes with no D-PATH are considered to have a zero-length D-PATH. Then regular [RFC4271] selection criteria is followed. If at least one route still under consideration is an RT-2 route, remove from consideration any RT-5 routes. Steps 1-3 could possibly leave Equal Cost Multi-Path (ECMP) between IP and EVPN paths. By default, the EVPN path is considered If ECMP across ISF SAFIs is enabled by policy, and an "IP path" and an "EVPN path" remain at the end of step 3, both path types will be used.

BGP Path Propagation Across ISF-SAFIs Two modes of operation No Propagation mode (default) Uniform Propagation mode Uniform Propagation: AS_PATH D-PATH IBGP-only Path Attributes: LOCAL_PREF, ORIGINATOR_ID, CLUSTER_ID MED AIGP Communities, (non-EVPN) Extended Communities and Large Communities

Operational Procedures IW PE Composite PEs EVPN IPVPN IW PE IP-VRF 1 RR IP-VRF 1 IPVPN EVPN IPVPN IP-VRF 1 IPVPN PE Advertise the same IP Prefixes in each ISF SAFI to the RR. The RR does not forward EVPN routes to non-EVPN routes. On Composite PEs, upon receiving the same prefix in two separate ISF-SAFIs, the route selection follows (section 4). If the IPVPN path is selected instead of the EVPN path, the operator should be aware that the EVPN advanced forwarding features, e.g. recursive resolution to overlay indexes, will be lost for the PE. When a given route has been selected as the route for a particular packet, the transmission of the packet is done according to the rules for that route's AFI/SAFI.

Operational Procedures EVPN PE IW PE IPVPN PE EVPN IPVPN GW PEs IP-VRF 1 IP-VRF 1 IP-VRF 1 GATEWAY PE Advertises a prefix to different peer A Gateway PE that imports an ISF SAFI-x route to prefix P in an IP- VRF, MUST export P in ISF SAFI-y if: P is installed in the IP-VRF PE has a BGP peer for SAFI-y (enabled for the same IP-VRF) and Either x or y is EVPN. ISF SAFI routes advertised by a Gateway PE MUST include a D-PATH attribute for loop avoidance When a Gateway PE re-advertises an IP Prefix between EVPN and another ISF SAFI, it MUST prepend a <DOMAIN-ID:ISF_SAFI_TYPE> to the received D-PATH attribute. The DOMAIN-ID and ISF_SAFI_TYPE fields refer to the Domain over which the Gateway PE received the IP Prefix. If the received IP Prefix route did not include any D- PATH attribute, the Gateway IP MUST add the D-PATH when re-advertising.

Next steps The Authors would like to request feedback and discussion from the Working Group

Thank you