Professional Documents
Culture Documents
BRKDCT-2610
Reference Sessions
BRKDCT-2023 - Evolution of the Data Centre Access Architecture
BRKDCT-2610
Cisco Public
Agenda
Data Centre Facilities and Network Infrastructure
Challenges and Trends
Fabricpath
Data Centre Interconnect
Access Layer
BRKDCT-2610
Cisco Public
BRKDCT-2610
Cisco Public
DC Environment Trends
1.
2.
Physical Infrastructure
1.
2.
3.
Cabling
4.
Network Infrastructure
1.
Access
2.
Aggregation
3.
Core
4.
Services
5.
Unified Environments
BRKDCT-2610
Cisco Public
Virtualisation
Automation
Utility
Cloud
Cisco Public
Core
Layer 3
Layer 2
Aggregation
Services
Access
Cisco Public
L2 Access
Plug-and-play provisioning
Practically plug-n-play No user configuration is required to build
forwarding database
It makes it simple to support teaming or L2 multicast for clusters
Easy to segment traffic with VLANs
MAC Table
MAC Table
Layer 2
Domain
MAC Table
MAC Table
MAC Table
MAC Table
A
BRKDCT-2610
Cisco Public
BRKDCT-2610
Cisco Public
Primary
Root
Secondary
Root
Drawbacks of L2 Access
VLAN sprawl
MAC address consumption
BPDU generation is CPU intensive with increasing number of VLANs
VLAN sprawl causes flooding and broadcasts to propagate even
where they are not needed
MAC Table
MAC Table
Layer 2
Domain
MAC Table
MAC Table
MAC Table
MAC Table
Cisco Public
10
CONS
PROS
L3 Access
Routed Access Topologies alleviate the
consumption of L2 tables
No Spanning Tree Recalcuations
L3
IP Attached
Storage
Servers, FCoE
attached Storage
Servers
Limited VM Mobility
BRKDCT-2610
Cisco Public
11
Cisco Public
12
Coordination of VM migration
BRKDCT-2610
Cisco Public
13
BRKDCT-2610
Cisco Public
14
Core
Layer 3
Layer 2
Aggregation
Services
Access
Cisco Public
15
BRKDCT-2610
Cisco Public
16
Physical Topology
Logical Topology
L2
Si
Si
Cisco Public
vPC
Non-vPC
Increased BW with vPC
17
vPC Peers
BRKDCT-2610
Port
channel
Cisco Public
18
Primary
vPC (root)
Secondary
vPC
BPDUs
BRKDCT-2610
Cisco Public
19
vPC Peer-link
S1
Root
Root
Peer-switch
S5
S2
Root
Peer-switch
vPC2
S3
S4
Physical representation
vPC Secondary
S2
BPDU
vPC1
vPC Primary
Root
S1
vPC Secondary
S6
S5
S3
S4
Logical representation
S6
Cisco Public
20
HSRP Active
HSRP Standby
Cisco Public
21
Switch
Po2
Po2
P
7k1
L3
ECMP
7k2
Po1
P
BRKDCT-2610
Router
Router
22
ASA
vPC80
vPC40
standby
active
vPC10
vPC11
NX5K
ASA keep-alive and FO link
BRKDCT-2610
Cisco Public
23
FabricPath
BRKDCT-2610
Cisco Public
24
L2 Requires a Tree
Branches of trees never
interconnect (no loop)
5 Logical Links
11 Physical Links
S2
S1
S3
Cisco Public
25
BRKDCT-2610
Cisco Public
26
Cisco FabricPath
Scaling and Simplifying Layer 2 Ethernet Networks
Up to 16 Agg
switches
160+ Tbps
switching capacity
Up to 32
access switches
Cisco FabricPath Network
-All Links Active
BRKDCT-2610
Cisco Public
27
Active Paths
POD
Bandwidth
vPC
FabricPath
Single
Dual
16 Way
Up to 10 Tbps
Up to 20 Tbps
Up to 160 Tbps
Layer 2 Scalability
Infrastructure Virtualisation and Capacity
BRKDCT-2610
Cisco Public
28
Built-in loop-mitigation
BRKDCT-2610
Time-to-Live (TTL)
RPF Check
Cisco NX-OS
Cisco Nexus Platform
Cisco Public
29
Up to
16 Switches
Access Switches
Cisco Public
30
FabricPath
Header
FabricPath Routing
S11 S42
DATA
S11
STP
FabricPath
Domain
Ingress Switch
S42
Egress Switch
AC
C
A
DATA
BRKDCT-2610
STP Domain 1
A
C
2011 Cisco and/or its affiliates. All rights reserved.
Cisco Public
STP Domain 2
AC
L2 Bridging
31
S2
S3
S4
IF
S1
L1
S2
L2
S3
L3
S4
L4
S12
S42
BRKDCT-2610
L1
L2
S11
L3
L4
S12
Cisco Public
L2 Fabric
S42
32
Switch
IF
S42
IF
1/1
S42
L1
S2
L2
S4
L3
L4
S11
S3
S12
L2 Fabric
S42
1/1
BRKDCT-2610
Cisco Public
33
Root for
Tree #2
L2 Fabric
BRKDCT-2610
Cisco Public
34
STP Domain
S1
Root
S2
TTL=2
TTL=1
L2 Fabric
S10
TTL=3
TTL=0
35
VL30
VL10
Shared
Broadcast Tree
VLAN 10
L2 Fabric
BRKDCT-2610
VL20
VL10
VL20
VL30
L2 Fabric
VLAN 20
L2 Fabric
VLAN 30
L2 Fabric
Cisco Public
36
MAC Table
A S4
A ???
S3
S3
L2 Fabric
L2 Fabric
S3 S1 B
S3 S2 B
Payload
vPC
S1
S3 S4 B
Payload
vPC+
S2
Payload
S3 S4 B
S1
MAC Table
B S3
B S3
Payload
S2
MAC Table
Payload
S4
A
B
Payload
A
BRKDCT-2610
Cisco Public
37
6. Change VLAN from CE mode to FP mode (maybe this would be the first step
of migration)
BRKDCT-2610
Cisco Public
38
L2
L3
FHRP
L2 Fabric
Multi-pathing
L3
FHRP
Active
L2
FHRP
Active
FHRP
L2 Fabric
Multi-pathing
Layer 3 Network
39
L2 Fabric
Classical
Ethernet
(STP)
STP
Domain
2
STP
Domain 1
FabricPath Port
CE Port
Cisco Public
40
FabricPath Configuration
No L2 IS-IS configuration required
New feature-set keyword introduced to allow multiple conditional services
required by FabricPath to be enabled in one shot
L2 Fabric
BRKDCT-2610
Cisco Public
FabricPath Port
41
CE Port
Cisco Public
42
FabricPath
MAC Table on S100
MAC
MAC
IF/SID
S200 (remote)
e7/10 (local)
S300
MAC C
S100
IF/SID
e1/1 (local)
S200 (remote)
FabricPath
MAC Table on S200
FabricPath Core
S200
MAC A
MAC
IF/SID
S100 (remote)
e12/1(local)
S300 (remote)
MAC B
BRKDCT-2610
Cisco Public
43
TRILL
Yes
Yes
Inter-switch links
Point-to-point only
Point-to-point OR shared
Emulated switch
Yes
No
FHRP active/active
(AnyCast FHRP in the future)
Yes
No
Multiple topologies
Yes
No
Conversational learning
Yes
No
Frame routing
(ECMP, TTL, RPFC etc)
BRKDCT-2610
Cisco Public
44
FabricPath Summary
FabricPath is simple, keeps the attractive aspects of Layer 2
Transparent to L3 protocols
No addressing, simple configuration and deployment
FabricPath is scalable
Can extend a bridged domain without extending the risks generally associated to
Layer 2 (frame routing, TTL, RPFC)
FabricPath is efficient
High bi-sectional bandwidth (ECMP)
BRKDCT-2610
Cisco Public
45
BRKDCT-2610
Cisco Public
46
Network port
Edge or portfast port type
Normal port type
BPDUguard
BPDUfilter
Rootguard
E
-
B
F
R
DC 1
AGGR
N
-
- R
R
N
vPC domain 10
vPC domain 20
Key Recommendations
E
B
Server Cluster
E
B
ACCESS
ACCESS
BRKDCT-2610
AGGR
DC 2
vPC domain 21
Long Distance
CORE
CORE
vPC domain 11
Server Cluster
2011 Cisco and/or its affiliates. All rights reserved.
Cisco Public
47
Nexus 7010
DC-2
vPC
Nexus 7010
vPC
Nexus 7010
BRKDCT-2610
Nexus 7010
2011 Cisco and/or its affiliates. All rights reserved.
Cisco Public
48
High Resiliency
Failure domain isolation
Seamless Multi-homing
Maximises available
bandwidth
Automated multi-pathing
Optimal multicast replication
Cisco Public
49
External Interface
Overlay
Interface
Overlay Interface
L2 L3
Internal
Interfaces
BRKDCT-2610
Cisco Public
Join
Interface
Core
50
BRKDCT-2610
Cisco Public
51
Result: Still have one HSRP group with one VIP, but now have active
router at each site for optimal first-hop routing
HSRP Hellos
HSRP Hellos
HSRP Filtering
HSRP
Active
HSRP
Active
HSRP
Standby
HSRP
Standby
ARP
reply
ARP for
HSRP VIP
VLAN
20
BRKDCT-2610
Cisco Public
VLAN
10
52
LISP
1
IP_DA = 10.10.10.1
IP_DA = 10.10.10.1
ETR
IP_DA = 10.10.10.1
Ingress Tunnel
Router (ITR)
6
Encap
IP_DA = B
Prefix
(EID)
ISP A
Data Centre A
3
Decap
10.10.10.1
A,
B
Moved
10.10.10.2
A, B
10.10.10.5
C, D
10.10.10.6
C, D
Agg
IP_DA = C
IP_DA = 10.10.10.1
Route Locator
(RLOC)
ISP B
Data Centre B
to C, D
ETR
DecapIP_DA = 10.10.10.1
Agg
LAN Extension
Access
Access
4
VM= 10.10.10.1
BRKDCT-2610
2011 Cisco and/or its affiliates. All rights reserved.
Default GW = 10.10.10.100
Cisco Public
VM= 10.10.10.1
Default GW = 10.10.10.100
53
Access Layer
BRKDCT-2610
Cisco Public
54
What Is FEX
FEX is an extension of the
switch that it connects to.
Cisco Public
55
vPC Supported
with up to 2 x 8
links
Dual Homed
FCoE Adapters
supported on 10G
N2K interfaces
Local
Etherchannel
with up to 8
links
56
NIC Teaming:
TLB/ALB
Local
Etherchannel
with up to 8
links
Cisco Public
57
Nexus 5000
Future
MCEC
Etherchannel
with up to 16
links
MCEC
Etherchannel
with up to 16
links
Future release
BRKDCT-2610
58
Eth
2/12
FC
3/11
HBA
PCI-E Bus
Operating
System and
Device Drivers
SR-IOV
FCoE
BRKDCT-2610
Cisco Public
59
Traditional
App
App
App
OS
OS
OS
App
App
App
OS
OS
OS
1 Application
Transition
App
App
App
OS
OS
OS
App
App
App
OS
OS
OS
App
App
App
OS
OS
OS
Many Apps,
or VMs
...1 Server,
or Host
...1 Server
20,000,000
17,500,000
Tipping Point
15,000,000
12,500,000
10,000,000
7,500,000
5,000,000
2,500,000
0
2005
BRKDCT-2610
2006
2007
2008
2009
2010
Virtualized
Non-Virtualized
Cisco Public
2011
2012
2013
2014
60
Eth
2/12
FC
3/11
HBA
pNIC
vSwitch
VMFS (VMWare)
PCI-E Bus
Cisco Public
VMFS
SCSI
Edge of the
Fabric
VNIC
Hypervisor provides
virtualisation of PCI-E
resources
61
Unified Fabric
IEEE DCB
Developed by IEEE 802.1 Data Centre Bridging Task Group (DCB)
Standard / Feature
IEEE 802.1Qbb
Priority-based Flow Control (PFC)
IEEE 802.3bd
Frame Format for PFC
IEEE 802.1Qaz
Enhanced Transmission Selection (ETS) and
Data Centre Bridging eXchange (DCBX)
Done!
Cisco Public
62
Ethernet Link
One
One
Two
Three
BRKDCT-2610
R_RDY
Packet
B2B Credits
Receive Buffers
Two
PAUSE
STOP
Three
Four
Four
Five
Five
Six
Six
Seven
Seven
Eight
Eight
Cisco Public
Eight
Virtual
Lanes
63
When a given load doesnt fully utilise its allocated bandwidth, it is available to
other classes
Helps accommodate for classes of a burtsy nature
Offered Traffic
3G/s
BRKDCT-2610
3G/s
2G/s
3G/s
3G/s
3G/s
3G/s
4G/s
6G/s
t1
t2
t3
Cisco Public
3G/s
HPC Traffic
3G/s
2G/s
3G/s
Storage Traffic
3G/s
3G/s
3G/s
LAN Traffic
4G/s
5G/s
t1
t2
t3
64
Cisco Public
65
FCS
EOF
FC Payload
CRC
FC
Header
FCoE
Header
Ethernet
Header
Cisco Public
66
Cisco Public
67
FCF VE_Port
Switch
VE_Port
VF_Port
FCoE_
VNP_Port NPV
Switch
VF_Port
VN_Port End
Node
VF_Port
VN_Port End
Node
Cisco Public
68
FC
LAN Fabric
Fabric A
FCoE
Fabric B
FC
Nexus 5000
FCF Switch Mode
Nexus 5000
FCF NPV Mode
Cisco Public
69
Unified Edge
Converged Network Adapter (CNA) presents
two PCI address to the Operating System (OS)
Nexus 5000
FCF-B
Unified Wire
shared by both
FC and IP
topologies
Link
ETH
FC
FC Driver
bound to FC
HBA PCI
address
Nexus Unified
Edge supports
both FC and IP
topologies
10GbE
10GbE
Nexus 5000
FCF-A
Ethernet Driver
bound to
Ethernet NIC PCI
address
PCIe
Fibre Channel
Drivers
Ethernet
Drivers
Operating System
BRKDCT-2610
Cisco Public
70
SAN B
VSAN 2
VLAN 10,20
FCF
FCF
Cisco Public
71
SAN A
N5K1
N5K2
vPC Peers
VLAN 10,20
VLAN 10,30
SAN B
72
FCoE
VE
VE
Scalable Solution
Supports up to 7 hops same as FC
10,000 logins per fabric same as FC
E_Ports
with FC
FCoE
BRKDCT-2610
VE_Ports
with FCoE
2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Cisco Public
73
LAN Fabric
Fabric A
Fabric B
FCF
VE
Using FCoE
for ISL
between FC
VE
Switches
FCF
Switch Mode
VF
High Availability
Cisco Public
Extending
FCoE into a
multi-hop
Ethernet
Access
Fabric
DCB + FIP
Snooping
Bridge
74
FCF
BRKDCT-2610
Cisco Public
VF
VNP
FCoE
NPV
75
FCoE Multi-Tier
Larger Fabric Multi-Hop Topologies
N7K or MDS FCoE
enabled Fabric
Switches
VE
VF
VE
VE
VNP
Edge FCF
Switch
Mode
VE
Servers, FCoE
attached Storage
Cisco Public
Servers
FC Attached
Storage
Edge Switch
in E-NPV
Mode
76
BRKDCT-2610
Leverages NX-OS
Cisco Public
vCenter Server
77
Cisco Public
Netflow
Port Security
QoS
78
BRKDCT-2610
Cisco Public
79
VM
VM
VM
VM
VM
VM
VM
vSphere
Cisco Public
80
What is vPath ?
vPath
Cisco Public
81
VM
VM
VM
VM
VM
VM
VM
VM
VNMC
VM
VM
VM
VM
VM
VM
VM
VM
VM
VM
Nexus 1000V
vPath
Decision
Caching
1
BRKDCT-2610
Initial Packet
Flow
2
Cisco Public
VSG
3
82
VM
VM
VM
VM
VM
VM
VM
VM
VNMC
VM
VM
VM
VM
VM
VM
VM
VM
VM
VM
Nexus 1000V
vPath
ACL offloaded to
Nexus 1000V
(policy enforcement)
Remaining
packets from flow
BRKDCT-2610
Cisco Public
VSG
Log/Audit
83
VM-to-VM traffic
VLAN-agnostic Operation
Policy based
App
OS
Administrative Segregation
Server Network Security
BRKDCT-2610
Cisco Public
App
OS
App
OS
App
OS
84
Non-Disruptive Administration
Mitigate Operational errors between teams
Security team defines security policies
Networking team binds port-profile to VSG service profile
Server team Assigns VMs to Nexus 1000V port-profiles
vCenter
Nexus 1KV
Server Admin
BRKDCT-2610
Network Admin
Cisco Public
VNMC
Security Admin
85
Active
VSG
Standby
VSG
vPath
N1KV VEM
Hypervisor
vPath
N1KV VEM
Hypervisor
vPath
N1KV VEM
Hypervisor
vPath
N1KV VEM
Hypervisor
BRKDCT-2610
VNMC VSM
Cisco Public
86
Server Zones
Healthcare Portal
Records
Database
Application
Maintain compliance
while supporting IT
consumerisation
Assistant
Doctor
Guest
ASA
Network
iT Admin
Guest
Doctor
Cisco AnyConnect
BRKDCT-2610
Cisco Public
87
Summary
Discussed Current Data Centre Challenges
Reviewed solutions to accomplish active / active Layer2
forwarding paths
Reviewed solutions for active / active FHRP
Cisco Public
88
Q&A
BRKDCT-2610
Cisco Public
89
BRKDCT-2610
Cisco Public
90