Presentation is loading. Please wait.

Presentation is loading. Please wait.

BGP L3VPN Virtual PE draft-fang-l3vpn-virtual-pe-01

Published byChastity Fleming Modified over 8 years ago

Similar presentations

Presentation on theme: "BGP L3VPN Virtual PE draft-fang-l3vpn-virtual-pe-01"— Presentation transcript:

1 BGP L3VPN Virtual PE draft-fang-l3vpn-virtual-pe-01
Luyuan Fang Cisco David Ward Cisco Rex Fernando Cisco Maria Napierala AT&T Nabil Bitar Verizon Dhananjaya Rao Cisco Bruno Rijsman Juniper Ning So TATA Jim Guichard Cisco Wen Wang CenturyLink Manuel Paul DT IETF 86, Orlando, FL, 3/16/2013

2 Motivation Extend BGP IP VPNs [RFC 4364] into Cloud/DC/Mobile environment as part of the network virtualization effort. Why? Leverage the SP strength on l3vpn in building virtual private cloud L3VPN is the most deployed SP provisioned VPN It has been proven to scale Provide end-to-end native l3vpn connectivity to distinguish from Internet overlay Reality check 11/2011 IETF 82, Taipei: VPN4DC was requested/supported by many SPs with large L3VPN deployment Today: Many SPs said I’d like to have it deployed “yesterday”

3 Virtual PE Definition A virtual PE (vPE): a BGP IP VPN PE software instance which may reside in any network or computing devices. vPE-F: vPE Forwarding Plane vPE-C: vPE Control Plane vPE-C and vPE-F can be decoupled, they may reside in the same physical device, or most often in different physical devices.

4 vPE Architecture and Design Options
Notes 1. vPE-F location 1a. End device, such as a server co-resident with applications. 1b. Top of the Rack (ToR) Needed when facing bare metal servers, or if overlay-unaware physical appliances, or serving higher throughput traffic to VM 1c. Any other devices, e.g., a Gateway router vPE can be anywhere basically, DC or any networks. 2. vPE-C location 2a. Controller (centralized or distributed) Control and forwarding decoupling 2b. Same location as vPE-F, using mp-bgp for signaling In the same fashion as in physical PE, except it is virtual PE 3. Orchestration models 3a. Push model: push IP VPN provisioning from NMS or other central control provisioning systems to the IP VPN network elements. Top down approach, Common model for SP Enterprise IP VPN provisioning. 3b. Pull model: pull from network elements to network management/AAA based upon data plane or control plane activity. Bottom-up approach. Common model for broadband provisioning.

5 vPE Architecture Reference Models (1)
vPE-F in the end device, vPE-C in the controller WAN Network Gateway Service Network Fabric Compute/ Storage/ Appliance MPLS Core Virtual RR (vRR) WAN edge Gateway Controller /Orchestration Application/VM (CE) vPE-F

6 vPE Architecture Reference Models (2)
vPE in the end device, using MP-BGP for control WAN Network Gateway Service Network Fabric Compute/ Storage/ Appliance MPLS Core Virtual RR (vRR) WAN edge Gateway MP-BGP Application/VM (CE) vPE

7 vPE Architecture Reference Models (3)
vPE in the ToR, using MP-BGP for control WAN Network Gateway Service Network Fabric Compute/ Storage/ Appliance MPLS Core Virtual RR (vRR) WAN edge Gateway MP-BGP vPE Application/VM (CE)

8 vPE(-F) on a Server vPE and VM relationship -> PE-CE
- vPE – L3 SW instance on server - vPE and VM relationship: PE-CE - VRF on vPE to isolate individual tenant routing and traffic separation VM vPE(-F) CE VRF R Y G Server

9 End-to-end L3VPN Overlay from Enterprise to SP DC with vPE in End Device
Forwarding: IP, MPLS, others MP-BGP RR Controller /Orchestration RR Enterprise G Host VRF VM MP-BGP RR Host VRF VM CE Host VRF VM Host VRF VM VRF VRF vRR Host VRF VM PE PE Host VRF VM P Not VPN aware Host VRF VM vRR VM VM VM Enterprise R DC Provider Networks VRF VRF VRF DC infra – Not VPN aware vPE CE DC Gateway Server VRF VRF PE PE Gateway to vPE signaling options: 1) Through Controller 2) MP-BGP Enterprise Network/DC Provider Network Provider DC

10 Control Plane 1. SDN Controller approach
vPE control plane and data plane are physically decoupled. The control plane directing the data flow may reside elsewhere, such a centralized controller. The controller can be used for routing information distribution / directly insert the entries into FIB. 2. Distributed MP-BGP control plane vPE participates in overlay BGP IP VPN control protocol: MP-BGP [RFC4364]. 3. vPE-C can be anywhere 4. Use RR and RT Constrain [RFC4684] to scale.

11 Data Plane 1. The VPN forwarder location options:
1) within the end device where the CE (e.g., application/VMs) are. 2) in an external device which the end device connect to, for example, a Top of the Rack (ToR) in a data center. 2. Considerations in design: Device capability Overall solution economics QoS/firewall/NAT placement Optimal forwarding Latency and performance Operational impact 3. Encapsulation MPLS IP / GRE tunnel [RFC4023], [RFC4797] Other IP network overlay encapsulations e.g. VXLAN, NVGRE.

12 Management/Orchestration
The orchestration system 1) MUST support IP VPN service activation in virtualized Data Center. 2) SHOULD support automated cross provisioning accounting correlation between WAN IP VPN and Data Center for the same tenant. 3) MAY support automated cross provisioning state correlation between WAN IP VPN and Data Center for the same tenant

13 vPE Push Model Top down approach - push IP VPN provisioning from management/orchestration systems to the IP VPN network elements. Common model in SP IP VPN enterprise deployment. When extending existing WAN IP VPN solution into the a Data Center, it SHOULD support off-line accounting correlation between the WAN IP VPN and the cloud/DC IP VPN for the tenant, the systems SHOULD be able to bind interface accounting to particular tenant. It MAY requires offline state correlation as well, for example, bind interface state to tenant.

14 vPE Pull Model Bottom-up approach - pull from network elements to network management/AAA based upon data plane or control plane activity. Common model used in broadband deployment. Dynamic accounting correlation and dynamic state correlation are supported. For example, session based accounting implicitly includes tenant context state correlation, as well as session based state which implicitly includes tenant context.

15 Next Steps Address all comments on the list and in the meeting
Submit a new version Ask the WG to check interest for adopting this work as WG item

Download ppt "BGP L3VPN Virtual PE draft-fang-l3vpn-virtual-pe-01"

Similar presentations

Draft-mackie-sfc-using-virtual-networking-02 S. Mackie, B. Rijsman, Juniper Networks M. Napierala, AT&T D. Daino, Telecom Italia D.R. Lopez, Telefonica.

Draft-mackie-sfc-using-virtual-networking-02 S. Mackie, B. Rijsman, Juniper Networks M. Napierala, AT&T D. Daino, Telecom Italia D.R. Lopez, Telefonica.
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal
Deployment of MPLS VPN in Large ISP Networks

Deployment of MPLS VPN in Large ISP Networks
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP Diverse Paths draft-ietf-grow-diverse-bgp-paths-dist-02 Keyur Patel.

© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP Diverse Paths draft-ietf-grow-diverse-bgp-paths-dist-02 Keyur Patel.
Connect communicate collaborate GN3plus What the network should do for clouds? Christos Argyropoulos National Technical University of Athens (NTUA) Institute.

Connect communicate collaborate GN3plus What the network should do for clouds? Christos Argyropoulos National Technical University of Athens (NTUA) Institute.
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Oracle’s Next-Generation SDN Platform Andrew Thomas Architect Corporate Architecture.

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Oracle’s Next-Generation SDN Platform Andrew Thomas Architect Corporate Architecture.
Network Virtualization Overlay Control Protocol Requirements draft-kreeger-nvo3-overlay-cp-00 Lawrence Kreeger, Dinesh Dutt, Thomas Narten, David Black,

Network Virtualization Overlay Control Protocol Requirements draft-kreeger-nvo3-overlay-cp-00 Lawrence Kreeger, Dinesh Dutt, Thomas Narten, David Black,
Module 1: Demystifying Software Defined Networking Module 2: Realizing SDN - Microsoft’s Software Defined Networking Solutions with Windows Server 2012.

Module 1: Demystifying Software Defined Networking Module 2: Realizing SDN - Microsoft’s Software Defined Networking Solutions with Windows Server 2012.
Slide title 70 pt CAPITALS Slide subtitle minimum 30 pt Vpn service Ericsson.

Slide title 70 pt CAPITALS Slide subtitle minimum 30 pt Vpn service Ericsson.
L3vpn end-system draft Pedro Marques. Overview Defines a mechanism to associate an end- system virtual interface to an L3VPN. – Co-located forwarder:

L3vpn end-system draft Pedro Marques. Overview Defines a mechanism to associate an end- system virtual interface to an L3VPN. – Co-located forwarder:
Network Overlay Framework Draft-lasserre-nvo3-framework-01.

Network Overlay Framework Draft-lasserre-nvo3-framework-01.
MPLS over L2TPv3 for support of RFC 2547-based BGP/MPLS IP VPNs

MPLS over L2TPv3 for support of RFC 2547-based BGP/MPLS IP VPNs
MPLS / VPN Connectivity between VPNs JET 2004/03/15.

MPLS / VPN Connectivity between VPNs JET 2004/03/15.
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.

© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 4: Frame Mode MPLS Implementation.
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,

MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring Small-Scale Routing Protocols Between PE and CE Routers.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring Small-Scale Routing Protocols Between PE and CE Routers.
SMUCSE 8344 MPLS Virtual Private Networks (VPNs).

SMUCSE 8344 MPLS Virtual Private Networks (VPNs).
BGP L3VPN Virtual PE draft-fang-l3vpn-data-center-interconnect-01 L. Fang R. Fernando D. Rao S. Boutros IETF 88, Vancouver, Nov. 2013.

BGP L3VPN Virtual PE draft-fang-l3vpn-data-center-interconnect-01 L. Fang R. Fernando D. Rao S. Boutros IETF 88, Vancouver, Nov
MPLS And The Data Center Adrian Farrel Old Dog Consulting / Juniper Networks

MPLS And The Data Center Adrian Farrel Old Dog Consulting / Juniper Networks
IETF-82 draft-bitar-datacenter-vpn-applicability-01.txt Page - 1 Cloud Networking: Framework and VPN Applicability draft-bitar-datacenter-vpn-applicability-01.txt.

IETF-82 draft-bitar-datacenter-vpn-applicability-01.txt Page - 1 Cloud Networking: Framework and VPN Applicability draft-bitar-datacenter-vpn-applicability-01.txt.

Similar presentations

Ads by Google