EVPN a very short introduction

Slides:

Advertisements

Similar presentations

Virtual Links: VLANs and Tunneling

Advertisements

Overlay Transport Virtualization (OTV)

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal

Ethernet VPN (EVPN) - Casos de Uso e Aplicação

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Draft-li-mpls-global-label-usecases-00IETF 88 SPRING WG1 Usecases of MPLS Global Label draft-li-mpls-global-label-usecases-00 Zhenbin Li, Quintin Zhao.

CS Summer 2003 Lecture 14. CS Summer 2003 MPLS VPN Architecture MPLS VPN is a collection of sites interconnected over MPLS core network. MPLS.

CS Summer 2003 Lecture 13. CS Summer 2003 MP_REACH_NLRI Attribute The MP_REACH_NLRI attribute is encoded as shown below:

MPLS And The Data Center Adrian Farrel Old Dog Consulting / Juniper Networks

V1.1 VPLS Principle. Objectives Understand the basics of mpls layer 2 VPN Understand VPLS principle.

Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.

Virtual Subnet : A L3VPN-based Subnet Extension Solution draft-xu-virtual-subnet-10 Xiaohu Xu (Huawei) Susan Hares (Huawei) Yongbing Fan.

1/28/2010 Network Plus Network Device Review. Physical Layer Devices Repeater –Repeats all signals or bits from one port to the other –Can be used extend.

Lucy Yong Susan Hares September 20, 2012 Boston

Draft-bitar-nvo3-vpn-applicability-00.txt Page - 1 Cloud Networking: Framework and VPN Applicability draft-bitar-nvo3-vpn-applicability-00.txt Nabil Bitar.

Virtual Subnet: A Scalable Cloud Data Center Interconnect Solution draft-xu-virtual-subnet-06 Xiaohu Xu IETF82, TAIWAN.

1 © OneCloud and/or its affiliates. All rights reserved. VXLAN Overview Module 4.

Draft-boutros-l2vpn-evpn-vpws-00.txt Sami Boutros Ali Sajassi Samer Salam IETF 84, July 2012 Vancouver, Canada.

MULTI-PROTOCOL LABEL SWITCHING Brandon Wagner. Lecture Outline  Precursor to MPLS  MPLS Definitions  The Forwarding Process  MPLS VPN  MPLS Traffic.

E-VPN on UW System Network Michael Hare. Purpose of presentation A high level introduction to E-VPN A simple lab demonstration For our documentation,

Cisco Confidential © 2013 Cisco and/or its affiliates. All rights reserved. 1 Cisco Networking Training (CCENT/CCT/CCNA R&S) Rick Rowe Ron Giannetti.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 draft-sajassi-l2vpn-pbb-evpn-02.txt Ali Sajassi (Cisco), Nabil Bitar.

1 Copyright © 2009 Juniper Networks, Inc. E-VPN for NVO Use of Ethernet Virtual Private Network (E-VPN) as the carrier-grade control plane.

VS (Virtual Subnet) draft-xu-virtual-subnet-03 Xiaohu Xu IETF 79, Beijing.

Active-active access in NVO3 network draft-hao-l2vpn-evpn-nvo3-active-active-00 July 20131Active-active access in NVO3 network Weiguo Hao(Huawei) Yizhou.

XRBLOCK IETF 85 Atlanta Network Virtualization Architecture Design and Control Plane Requirements draft-fw-nvo3-server2vcenter-01 draft-wu-nvo3-nve2nve.

EVPN: Or how I learned to stop worrying and love the BGP

VXLAN DCI Using EVPN draft-boutros-l2vpn-vxlan-evpn-01.txt Sami Boutros Ali Sajassi Samer Salam Dennis Cai IETF 86, March 2013 Orlando, Florida.

Virtual Private LAN Service

MBGP and Customer Routes

Scaling the Address Resolution Protocol for Large Data Centers (SARP) draft-nachum-sarp-04 Youval NachumMarvell Linda DunbarHuawei Ilan YerushalmiMarvell.

TRILL T RANSPARENT T RANSPORT OVER MPLS draft-muks-trill-transport-over-mpls-00 Mohammad Umair, Kingston Smiler, Donald Eastlake, Lucy Yong.

EVPN: Or how I learned to stop worrying and love the BGP Tom Dwyer, JNCIE-ENT #424 Clay Haynes, JNCIE-SEC # 69 JNCIE-ENT # 492.

MPLS Virtual Private Networks (VPNs)

EVPN Unifying control plane

TRANSPORT LAYER BY, Parthasarathy.g.

IP: Addressing, ARP, Routing

TRILL DataCenter/Campus/PBB Inter-connect over IP core with BGP

Virtual Hub & Spoke with BGP EVPNs

Link Layer 5.1 Introduction and services

Routing BY, P.B.SHANMATHI.

draft-xu-isis-nvo-cp-00 Xiaohu Xu (Huawei) Saumya Dikshit (Cisco)

Virtual Subnet : A L3VPN-based Subnet Extension Solution

Revisiting Ethernet: Plug-and-play made scalable and efficient

Presenter: Jeffrey Zhang

Hierarchical Fabric Designs

Chapter 4: Network Layer

L2VPN/EVPN/L3VPN Yang IETF-96 Berlin.

DCI using TRILL Kingston Smiler, Mohammed Umair, Shaji Ravindranathan,

TRILL MPLS-Based Ethernet VPN

LAN switching and Bridges

2018/11/16 Scalable Address Resolution for Data Center and Cloud Computing Problem Statements Linda Dunbar Sue Hares

Network Virtualization

EVPN Interworking with IPVPN

LAN switching and Bridges

draft-sajassi-bess-evpn-ip-aliasing- 00.txt

draft-sajassi-bess-evpn-vpls-all-active- 00.txt

Label Switched VPNs – Scalability and Performance Analysis

COMP/ELEC 429/556 Introduction to Computer Networks

BGP-Based SPF IETF 98, Chicago

IS-IS VPLS for Data Center Network draft-xu-l2vpn-vpls-isis-02

Network Layer: Internet Inter-Domain Routing

Virtual Hub-and-Spoke in BGP EVPNs

Applicability of EVPN to NVO3 Networks

Multicasting Unicast.

BGP VPN service for SRv6 Plus IETF 105, Montreal

EVPN Interworking with IPVPN

EVPN and L2 Access Protocols: Single-Flow-Active load-balancing mode

Tim Strakh CEO, IEOFIT CCIE RS, CCIE Sec CCIE Voice, CCIE DC

Presentation transcript:

EVPN a very short introduction

Acquiring MAC tables Ethernet MAC addresses are arbitrary identifiers – not locators how does an Ethernet switch learn how to forward? 802.1D STP and learning+flooding+aging MEF switch – ignore MAC addresses and NMS configures VLAN tags TRILL (RFC 6326) – shortest-path-bridging (Dijkstra) using IS-IS SDN – centrally located God Box configures entire network using protocol such as OpenFlow or Yang EVPN (RFC 7432) – distributes MAC addresses via BGP driven by operational needs

Ethernet VPNs Ethernet VPNs connect customer sites at the Ethernet layer but not necessarily over Ethernet networks PBBN (MAC-in-MAC) uses a pure Ethernet backbone network but without learning/flooding (if NMS setup called PBB-TE) L2VPN (VPWS/VPLS) uses Ethernet PW over MPLS networks EVPN may use MPLS PWs VXLAN over UDP over IP new tunneling mechanisms, such as : Geneve = Generic Network Virtualization Encapsulation) NVGRE = Network Virtualization using GRE

DCI Use case EVPN addressed the Data Center Interconnect (DCI) use case DCI intelligently connects data centers, enabling inter-DC workload migration (AKA VM mobility) Global Server Load Balancing (AKA server clustering) business continuity across failures Servers in different DCs are not on the same IP subnet so identity continuity and basic connectivity is usually guaranteed using MAC addresses When a VM spins up it is allocated a MAC address and if migrated this address remains unchanged But there may be 100s of thousands of MAC addresses per DC! migrating huge numbers would cause massive ARP storms and necessitate colossal relearning procedures

EVPN as SDN mechanism How is EVPN different from L2VPN (VPWS, VPLS)? L2VPNs use Ethernet PWs for transport but otherwise rely on standard Ethernet techniques, e.g., 802.1D learning/flooding/aging split horizon instead of STP ARP to associate MAC and IP addresses EVPN configures MAC tables SDN-style although it happens to use BGP rather than an SDN SBI (since it was invented by Yakov Rekhter – one of the authors of BGP!) This makes EVPN ideal for DCI although it is also useful for E-LINE/E-LAN L2VPN services and is being studied for IoT applications

EVPN advantages At least for the DCI use case there are many advantages to configuring via control plane instead of learning in the data plane : faster (no aging, flooding, etc.) faster to repair after failures scales better (distribute thousands of MAC addresses) allows applying policy rules restrict how and to whom information is distributed can isolate groups of devices (hosts, servers, VMs) enables CE multi-homing (a CE can attach to multiple PEs) enables CE LAG load balancing

EVPN – PEs and CEs EVPN uses BGP between PEs PEs advertise to other PEs : MAC addresses learned from connected CEs an MPLS label Learning between PEs and CEs is done by the data plane customer network C P PE CE provider network Ethernet learning EVPN advertising

BGP BGP distributes routing information in update messages that contain Network Layer Reachability Information along with path attributes for the NLRI Originally NLRI was one or more destination IP prefixes BGP version 4 became multiprotocol (MP-BGP) by extending NLRI to additional address families, e.g., unicast IPv4 unicast IPv6 labelled unicast (i.e., MPLS labels) L3VPNs IPv4 multicast Each of these is defined by an AFI (Address Family Identifier) and SAFI (Subsequent (Next Hop) Address Family Identifier)

BGP for EVPN RFC 7432 defines a new address family for EVPN based on the previously defined L3VPN address family EVPN enables distribution of MAC addresses or pairs of MAC+IP addresses Thus, EVPN can support extending Ethernet domain across multiple DCs VM migration maintaining MAC addresses but reassigning P addresses VM migration maintaining both MAC and IP addresses without need for triangle routing

Multihoming EVPN allows multihoming using Ethernet Segment Identifiers CE over multiple links to a PE CE connecting to 2 or more PEs to maintain EVPN service in the event of : CE to PE link failure PE failure some MPLS network failures Links can be in single-active or all-active mode BUM (Broadcast, Unknown unicast and Multicast) traffic is limited to a single link To prevent traffic from a DC looping back to the same DC EVPN supports split horizon based on the ESI CE PE same ESI

Some more EVPN advantages EVPN prevents ARP storms DC edge GWs only pass known traffic DC edge GW proxy-ARPS to all known ARP requests and discards all unknown ARP requests EVPN can prevent MAC flapping after VM migration the new MAC location needs to be learned the old location forgotten the first might happen faster than the second EVPN can support multicast using replication, or P2MP or MP2MP MPLS LSPs EVPNs can support multiple VLANs while maintaining VLAN isolation