服務覆蓋手冊.pdf

《服務覆蓋手冊.pdf》由會員分享，可在線閱讀，更多相關《服務覆蓋手冊.pdf（70頁珍藏版）》請在三個皮匠報告上搜索。

1、#CiscoLive#CiscoLiveJiri Chaloupka-Principal Technical Marketing EngineerBRKSPG-2041Powered by EVPNService Overlay Cookbook 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex App Questions?Use Cisco Webex App to chat with the speaker

2、after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to the Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until June 9,2023.12343https:/ 2023 Cisco and/or its affiliates.

3、All rights reserved.Cisco PublicBRKSPG-20413#CiscoLive 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicAgendaWhat is Service Overlay?IntroductionUsecases/How to deploy new services overlay into existing networkBGP SignalingMPLS and IP Data PlaneAdvanced UsecasesSummaryBRKSPG-20414 2

4、023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveWhat is Service Overlay?PE1PE1PE2PE2CE1CE1CE2CE2Overlay NetworkProvider EdgeProvider EdgeCustomer EdgeCustomer EdgeDataOverlay EncapsulationDataDataBRKSPG-20415 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public

5、#CiscoLiveWhat is Service Overlay?L3VPN MPLS Data PlanePE1PE1PE2PE2CE1CE1CE2CE2Overlay NetworkProvider EdgeProvider EdgeCustomer EdgeCustomer EdgeIP HeaderApplication DataEthernet HeaderTransport LabelService LabelIP HeaderApplication DataOriginal PacketEncapsulationIP HeaderApplication DataEthernet

6、 HeaderBRKSPG-20416 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveWhat is Service Overlay?L2VPN MPLS Data PlanePE1PE1PE2PE2CE1CE1CE2CE2Overlay NetworkProvider EdgeProvider EdgeCustomer EdgeCustomer EdgeIP HeaderApplication DataEthernet HeaderIP HeaderApplication DataEthe

7、rnet HeaderTransport LabelService LabelIP HeaderApplication DataEthernet HeaderOriginal PacketEncapsulationBRKSPG-20417 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveA1WAN/CoreAccessPE1PE2DCI2DCI1SpineSpineLeafLeafLeafVMVMVMMPLS:LDP,RSVP-TEBGP:VPNv4/6LDP:VPLS,PWMPLS,L2VP

8、LSFabric-PathL2,IPFabric-Path(Trill)Service Provider NetworkData Center NetworkSegment Routing(SR:MPLS,SRv6)Segment Routing(SR:MPLS,SRv6)SR,VXLANSR,VXLANCommon BGP Control PlaneCommon BGP Control PlaneEVPN,EVPN,VPNv4/6VPNv4/6Legacy Solution:Legacy Solution:Next GenerationNext GenerationServices Over

9、lay&Services Overlay&Data PlaneData PlaneoverlapoverlapOverlayUnderlayOverlayUnderlayUnified Control Plane and Data PlaneBRKSPG-20418 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveIntegrated ServicesEVPN Advantages:All-active Multi-homing&PE load-balancing(ECMP)Fast conv

10、ergence(link,node,MAC moves)Control-Place(BGP)learning.PWs are no longer used.Optimized Broadcast,Unknown-unicast,Multicast traffic delivery Network Network EfficiencyEfficiencyChoice of MPLS,VxLAN or SRv6 data plane encapsulationSupport existing and new services types(E-LAN,E-Line,E-TREE)Peer PE au

11、to-discovery.Redundancy group auto-sensingFully support IPv4 and IPv6 in the data plane and control planeService Service FlexibilityFlexibilityInvestment Investment ProtectionProtectionOpen-Standard and Multi-vendor supportIntegrated Layer 2 and Layer 3 VPN servicesL3VPN-like principles and operatio

12、nal experience for scalability and controlBRKSPG-20419 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEVPN Standardization-IETFEVPN-VPWSP2PMultipointEVPNEVPNRFC 7432RFC 8214RFC 7432RFC 9135EVPN-IRBBRKSPG-204110 2023 Cisco and/or its affiliates.All rights reserved.Cisco Pu

13、blic#CiscoLiveNext-Generation Solutions for L2VPNSolving VPLS challenges for per-flow RedundancyExisting VPLS solutions do not offer an All-Active per-flow redundancyLooping of Traffic Flooded from PEDuplicate Frames from Floods from the CoreMAC Flip-Flopping over PseudowireE.g.Port-Channel Load-Bal

14、ancing does not produce a consistent hash-value for a frame with the same source MAC(e.g.non MAC basedHash-Schemes)CE1Echo!Echo!M1M2PE1PE2PE3PE4CE2CE1M1M2PE1PE2PE3PE4CE2Duplicate!Duplicate!CE1M1M2PE1PE2PE3PE4CE2MAC MAC FlipFlip-FlopFlopBRKSPG-204111 2023 Cisco and/or its affiliates.All rights reserv

15、ed.Cisco Public#CiscoLiveEVPN FlavorsMulti-Homed All-Active Ethernet Access Replacement of:mLACP,STP,T-LDP,BGP-AD,etc.Standards-based Multi-chassis/Cluster Control Plane Replacement of:vPC,VSS,nVCluster,etc.Replacement of:HSRP,VRRP,etc.BRKSPG-204112Cisco IOS XR EVPN EvolutionUsecases 2023 Cisco and/

16、or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCIEVPN IP(VXLAN)DCLeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeMPLSCoreASR9k L3 DCI:EVPN VXLAN DCBRKSPG-204114 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCIEVPN IP(VXLAN)DCL

17、eafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeVPLSEVPN MPLSCoreASR9k L3 DCI:EVPN VXLAN DCASR9k L2 DCI:EVPN VXLAN DC&EVPN MPLS CoreASR9k L2 EVPN(ELAN)BRKSPG-204115 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLea

18、fLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCASR9k/NCS VPLS to EVPN Seamless MigrationASR9k VPLS to EVPN InterconnectEVPN IP(VXLAN)DCVPLS-EVPN MPLSEVPN&VPLS InterconnectCoreASR9k L3 DCI:EVPN VXLAN DCASR9k L2 DCI:EVPN VXLAN DC&EVPN MPLS CoreASR9k L2 EVPN(ELAN)BRKSPG-204116 2023 Cisco and/or its affiliate

19、s.All rights reserved.Cisco Public#CiscoLiveEVPN&VPLS InterconnectMPLS CoreR37R36PE1PE2EVPNMPLS Core/AccessVPLSA2A1CE2CE1CE3LACPLACPBRKSPG-204117 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveVPLS&EVPN Seamless Integration-MigrationR37CE1R39R38CE4CE2CE3VFI1PW_RPW_R3737 U

20、PUPPW_RPW_R3838 DOWNDOWNPW_RPW_R3939 UPUPBD1BD1MPLSR36R36XBGP EVPNEVI100BRKSPG-204118 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCVPLS-EVPN MPLSEVPN&VPLS InterconnectCoreIRBIRBIRB

21、IRBEVPN IP(VXLAN)EVPN MPLSEVPN MPLSDCASR9k L3 DCI:EVPN VXLAN DCASR9k L2 DCI:EVPN VXLAN DC&EVPN MPLS CoreASR9k L2 EVPN(ELAN)ASR9k/NCS VPLS to EVPN Seamless MigrationASR9k VPLS to EVPN InterconnectASR9k/NCS L2 EVPN(ELAN)All-Active MultihomingASR9k/NCS EVPN Distributed Anycast GWBRKSPG-204119 2023 Cisc

22、o and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEVPN-Load-Balancing ModesAll-ActiveCE1PE1PE2All-Active(per flow)Single LAG at the CEVLAN goes to both PETraffic hashed per flowBenefitsBenefits:Bandwidth,ConvergenceV1V1BRKSPG-204120 2023 Cisco and/or its affiliates.All rights reserve

23、d.Cisco Public#CiscoLiveEVPN Distributed Symmetric Anycast GatewaySP1SP2C2VML1L2L3L4VMC1VMVMBVIGWBVIGWBVIGWBVIGWIdentical Anycast Gateway Virtual IP and MAC address are configured on all the LeafsDistributed Anycast Gateway serves as the gateway for connected hostsAll the BVIs perform active forward

24、ing in contrast to active/standby like First-hop routing protocolBRKSPG-204121 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCIRBIRBIRBIRBEVPN IP(VXLAN)EVPN MPLSEVPN MPLSDCPEPEPEPECP

25、ECPEPEPEPEPECPECPEVPLS-EVPN MPLSEVPN&VPLS InterconnectCoremLACP/Cluster ReplacementHSRP/VRRP Replacement Phase 1 IRBIRBIRBIRBASR9k/NCS L2 EVPN(ELAN)All-Active MultihomingASR9k/NCS EVPN Distributed Anycast GWASR9k L3 DCI:EVPN VXLAN DCASR9k L2 DCI:EVPN VXLAN DC&EVPN MPLS CoreASR9k L2 EVPN(ELAN)ASR9k/N

26、CS VPLS to EVPN Seamless MigrationASR9k VPLS to EVPN InterconnectBRKSPG-204122 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCIRBIRBIRBIRBEVPN IP(VXLAN)EVPN MPLSEVPN MPLSDCPEPEPEPECP

27、ECPEPEPEPEPECPECPEASR9k/NCS EVPN-VPWSAll-Active MultihomingVPLS-EVPN MPLSEVPN&VPLS InterconnectCoremLACP/Cluster ReplacementHSRP/VRRP Replacement Phase 1 ASR9k/NCS L2 EVPN(ELAN)All-Active MultihomingASR9k/NCS EVPN Distributed Anycast GWASR9k L3 DCI:EVPN VXLAN DCASR9k L2 DCI:EVPN VXLAN DC&EVPN MPLS C

28、oreASR9k L2 EVPN(ELAN)ASR9k/NCS VPLS to EVPN Seamless MigrationASR9k VPLS to EVPN InterconnectBRKSPG-204123 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCIRBIRBIRBIRBEVPN IP(VXLAN)E

29、VPN MPLSEVPN MPLSDCPEPEPEPECPECPEPEPEPEPECPECPEASR9k/NCS EVPN-VPWSAll-Active MultihomingVPLS-EVPN MPLSEVPN&VPLS InterconnectCoreASR9k/NCS EVPN(RT7/8)Multicast IGMP join/leave sync mLACP/Cluster ReplacementHSRP/VRRP Replacement Phase 1ASR9k/NCS L2 EVPN(ELAN)All-Active MultihomingASR9k/NCS EVPN Distri

30、buted Anycast GWASR9k/NCS VPLS to EVPN Seamless MigrationASR9k VPLS to EVPN InterconnectBRKSPG-204124 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCIRBIRBIRBIRBEVPN IP(VXLAN)EVPN MP

31、LSEVPN MPLSDCPEPEPEPECPECPEPEPEPEPEASR9k/NCS EVPN ELAN and EVPN-VPWSAll-ActiveSingle-ActivePort-ActiveVPLS-EVPN MPLSEVPN&VPLS InterconnectCoreCPECPEBRKSPG-204125 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEVPN-Load-Balancing ModesCE1PE1PE2All-Active(per flow)Single LA

32、G at the CEVLAN goes to both PETraffic hashed per flowBenefitsBenefits:Bandwidth,ConvergenceCE2PE1PE2Single-Active(per VLAN)Multiple LAGs at the CEVLAN active on single PETraffic hashed per VLANBenefitsBenefits:Billing,PolicingCE3PE1PE2Port-Active(per port)Single LAGs at the CEPort active on single

33、PETraffic hashed per portBenefitsBenefits:Protocol SimplificationV1V1V2V1V1,V2BRKSPG-204126 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCASR9k/NCS EVPN ETREE Scenario 1IRBIRBIRBIRB

34、EVPN IP(VXLAN)EVPN MPLSEVPN MPLSDCPEPEPEPECPECPEPEPEPEPERootRootCPECPEPEPEPEPECPECPEETREECPECPE CPECPE is not allowednot allowedCPECPE Root CPE Root CPE is allowedVPLS-EVPN MPLSEVPN&VPLS InterconnectCoreASR9k/NCS EVPN ELAN and EVPN-VPWSAll-ActiveSingle-ActivePort-ActiveBRKSPG-204127 2023 Cisco and/o

35、r its affiliates.All rights reserved.Cisco Public#CiscoLiveWhat is ETREE?MPLSMPLSLeaf1Leaf1Leaf2Leaf2H1H1Root1Root1Host connected to Leaf can talk Host connected to Leaf can talk ONLYONLY to device connected to Rootto device connected to RootH1,H2,H3 can talk to H4H1,H2,H3 can talk to H4H1,H2,H3 CAN

36、NOT talk to each otherH1,H2,H3 CANNOT talk to each otherLeaf3Leaf3Leaf4Leaf4H3H3H4H4H2H2BRKSPG-204128 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCASR9k/NCS EVPN ETREE Scenario 1IR

37、BIRBIRBIRBEVPN IP(VXLAN)EVPN MPLSEVPN MPLSDCPEPEPEPECPECPEPEPEPEPERootRootCPECPEPEPEPEPECPECPEETREECPECPE CPECPE is not allowednot allowedCPECPE Root CPE Root CPE is allowedSRTE ODNASR9k/NCS EVPN/EVPN-VPWS SRTE ODNSLA based forwardingVPLS-EVPN MPLSEVPN&VPLS InterconnectCoreASR9k/NCS EVPN ELAN and EV

38、PN-VPWSAll-ActiveSingle-ActivePort-ActiveBRKSPG-204129 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeDCIDCIDCIDCIEVPNDCASR9k/NCS EVPN ETREE Scenario 1IRBIRBIRBIRBEVPN IP(VXLAN)EVPN MPLSEVPN MPLSDCPEP

39、EPEPEPEPEPEPERootRootCPECPEVPLS-EVPN MPLSEVPN&VPLS InterconnectCoreASR9k/NCS EVPN ELAN and EVPN-VPWSAll-ActiveSingle-ActivePort-ActiveSRTE ODNCPECPEA AA APEPEPEPEMPLSAccessA AASR9k/NCS EVPN/EVPN-VPWS SRTE ODNSLA based forwardingASR9k/NCS EVPN/EVPN-VPWS UMMT/EPN5.0BGP-LU Inter-Domain LSPVPLS-EVPN MPL

40、SEVPN&VPLS InterconnectCoreSRTE ODNBRKSPG-204130L3VPN SignalingEVPN vs VPNv4/6 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveBGP Layer3 InterconnectControl PlaneCOREDCI1DCI2SP2SP1L2L1H1L4L3H2PE/DCI3X.X.X.H1/24X.X.X.H1/24X.X.X.H2/24X.X.X.H2/24Z.Z.Z.CE1/24Z.Z.Z.CE1/24CE1IR

41、BIRBIRBIRBIRBIRBIRBIRBBGP BGP-L3VPN VPNv4/6L3VPN VPNv4/6BGP BGP EVPN L3EVPN L3BGP BGP EVPN L3EVPN L3BGP BGP EVPN L3EVPN L3BGP BGP-L3VPN VPNv4/6L3VPN VPNv4/6BGP BGP-L3VPN VPNv4/6L3VPN VPNv4/6Option#3 Option#3 VPNv4/6&EVPNVPNv4/6&EVPNOption#2 Option#2 EVPN&EVPNEVPN&EVPNOption#1 Option#1 VPNv4/6&VPNv4/

42、6VPNv4/6&VPNv4/6COBRKSPG-204132 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveBGP Layer3 InterconnectControl Plane Options Highlight Option#1 Option#1 VPNv4/6&VPNv4/6VPNv4/6&VPNv4/6+VPNv4/6 Industry proofed solution for Layer3 VPN+VPNv4/6 Industry proofed solution for La

43、yer3 VPN+DCI doesnt need to understand BGP EVPN AF+DCI doesnt need to understand BGP EVPN AF-Leaf has to peer with Route-Reflector via both BGP EVPN and VPNv4/6 AFEVPN AF to support L2 stretch(MAC advertisement)across DC/CO between LeavesEVPN AF to sync ARP/ND for Multi-Homed All-Active-DC/CO Route-

44、Reflector has to support both BGP EVPN and VPNv4/6 AF-Leaf has to advertise VM Host-Routes via VPNv4/6 Option#2 Option#2 EVPN&EVPNEVPN&EVPN+Single BGP Address Family End+Single BGP Address Family End-ToTo-End in NetworkEnd in Network-Existing L3 VPNv4/6 services has to to migrated to L3 EVPNNo techn

45、ical benefit to migrate existing L3 VPNv4/6 to L3 EVPN Option#3 Option#3 VPNv4/6&EVPNVPNv4/6&EVPN+Recommended solution which benefits from both Options#1 and#2+Recommended solution which benefits from both Options#1 and#2+New DC/CO+New DC/CO-Leaf,RouteLeaf,Route-Reflector use single BGP AF EVPN Refl

46、ector use single BGP AF EVPN+Existing L3 VPNv4/6 services stay untouched+Existing L3 VPNv4/6 services stay untouchedBRKSPG-204133MPLS and IP Data Plane 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveTransport LabelService LabelIP HeaderApplication DataEthernet HeaderOrigi

47、nal PacketEncapsulationIP HeaderVXLAN HeaderIP HeaderEthernet HeaderUDP HeaderApplication DataOriginal PacketEncapsulationIPv6 HeaderIP HeaderEthernet HeaderApplication DataEncapsulationOriginal PacketIP Data PlaneMPLS Data PlaneVXLANSRv6L2VPN Services Overlay EncapsulationBRKSPG-204135 2023 Cisco a

48、nd/or its affiliates.All rights reserved.Cisco Public#CiscoLiveTransport LabelService LabelIP HeaderApplication DataOriginal PacketEncapsulationIP HeaderVXLAN HeaderIP HeaderEthernet HeaderUDP HeaderApplication DataOriginal PacketEncapsulationIPv6 HeaderIP HeaderApplication DataEncapsulationOriginal

49、 PacketIP Data PlaneMPLS Data PlaneVXLANSRv6L3VPN Services Overlay EncapsulationVXLAN RFC7348VXLAN RFC7348-Requires Inner Ethernet Additional overhead for L3VPN/IP ForwardingBRKSPG-204136 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveMPLS Data Plane for Service Overlay+T

50、he packet structure is always identical,regardless of BGP VPNv4/6 or L3 EVPN Control Plane+The packet structure is always identical,regardless of BGP VPNv4/6 or L3 EVPN Control Plane Less Complexity,Simple Troubleshooting+MPLS Load+MPLS Load-Balancing(ECMP)by Inner IP Header Lookup for L3VPN or Flow

51、 Label(FAT)for L2VPNBalancing(ECMP)by Inner IP Header Lookup for L3VPN or Flow Label(FAT)for L2VPN+Segment Routing provides Traffic Engineering and Fast Re+Segment Routing provides Traffic Engineering and Fast Re-Reroute(FRR)capabilityReroute(FRR)capabilityBGP L3 EVPN or VPNv4/6 signaled MPLS Packet

52、(example for L3VPN)BGP L3 EVPN or VPNv4/6 signaled MPLS Packet(example for L3VPN)Transport LabelService LabelIP HeaderApplication DataOriginal PacketEncapsulationBRKSPG-204137 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLive-EVPN Signaling only-RFC7348 requires Inner Ether

53、net header even for L3VPN/IP Forwarding=Additional overhead-Inner Ethernet Header encapsulation/decapsulation typically done by Integrated Routing and Bridging(IRB)InterfaceIRB requires Bridge-DomainDCI doesnt participate in L2 Forwarding=Bridge-Domain(BD)requires unnecessary HW resources+VXLAN draf

54、t+VXLAN draft-ietfietf-nvo3nvo3-vxlanvxlan-gpe can simplifygpe can simplifyIP HeaderVXLAN HeaderIP HeaderEthernet HeaderUDP HeaderApplication DataOriginal PacketEncapsulationIP Data Plane for Service OverlayVXLANBRKSPG-204138 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiv

55、eIP Data Plane for Service OverlaySRv6+Transport and Service is integrated in service overlay encapsulation IPv6 Header+Transport and Service is integrated in service overlay encapsulation IPv6 Header+The packet structure is always identical,regardless of BGP VPNv4/6 or L3 EVPN Control Plane+The pac

56、ket structure is always identical,regardless of BGP VPNv4/6 or L3 EVPN Control Plane Less Complexity,Simple Troubleshooting+Load+Load-Balancing(ECMP)by FlowBalancing(ECMP)by Flow-Label in service overlay IPv6 headerLabel in service overlay IPv6 header+Doesnt require additional header compared to VXL

57、AN+Doesnt require additional header compared to VXLAN+Same Principles as Segment Routing MPLS+Same Principles as Segment Routing MPLSOptional Segment Routing Header(SRH)can extend Traffic Engineering,Service Chaining and Fast Re-Reroute(FRR)capabilitiesIPv6 HeaderIP HeaderApplication DataEncapsulati

58、onOriginal PacketBRKSPG-204139Advanced Solutions 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPEPEPEPEPEMPLSCPECPEA AA AMPLSASR9k/NCS EVPN ELAN Fast Convergence

59、(FRR)CPECPEBRKSPG-204141 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveCore Failure(Link/Node)Core Failure(Link/Node)PIC CorePIC CoreTechnology:RSVP-TE/LFA/rLFA/TI-LFATransport:IGP-MPLS,SRv6Overlay Service:Service IndependentDevice:P-Router,Spine PE1PE1PE2PE2P1P1P2P2PE4P

60、E4PE3PE3X XL1L1L2L2S1S1S2S2X XFRR in Core by UnderlayBRKSPG-204142 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveL3VPN FRREdge Failure(Link)Edge Failure(Link)BGP PIC EdgeBGP PIC EdgeTechnology:BGP PIC EdgeTransport:MPLS,SRv6(Transport Independent)Overlay Service:L3VPNDev

61、ice:Access/DCPE1PE1PE2PE2P1P1P2P2CE1CE1L3VPNBGP CEBGP CE-PE is mandatory!PE is mandatory!BRKSPG-204143 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEdge Failure(Link)Edge Failure(Link)EVPN FRREVPN FRRTechnology:EVPN FRRTransport:Transport IndependentOverlay Service:EVPN

62、Device:Access/DCPE1PE1PE2PE2P1P1P2P2CE1CE1EVPNPE1PE1PE2PE2P1P1P2P2CE1CE1EVPNAllAll-ActiveActiveSingleSingle-ActiveActiveL2VPN-EVPN FRRBRKSPG-204144 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIR

63、BIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPEPEPEPEPECPECPEA AA ACPECPEL2 LegacyMST/REP/G8032A AA AA AASR9k/NCS L2 Legacy Interconnect(L2/L3 IRB)EVPN Single-Flow-Active(FRR)MPLSMPLSASR9k/NCS EVPN ELAN Fast Convergence(FRR)IRBIRBBRKSPG-204145 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#Ci

64、scoLiveEVPN Load-Balancing ModesSingle-Flow-Active(SFA)PE1PE2MPLS CoreA1EVPN-MPLSA3STP/REP/G.8032.A2Single-HomedSTP/REP/G.8032“break”L2 loop Single-Flow-ActiveMST-AG/REP-AG/G.8032“break”L2 loop PE1PE2MPLS CoreA1EVPN-MPLSA3MST/REP/G.8032.A2BRKSPG-204146 2023 Cisco and/or its affiliates.All rights res

65、erved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPEPEPEPEPECPECPEA AA AASR9k L3 EVPN-Headend CPECPEL2 LegacyMST/REP/G8032A AA AA AHEHEHEHEMPLSMPLSASR9k/NCS EVPN ELAN Fast Convergence(FRR)IRBIRBASR9k/NCS L2 Legac

66、y Interconnect(L2/L3 IRB)EVPN Single-Flow-Active(FRR)BRKSPG-204147 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveL3 EVPN-HeadendPE1PE1PE2PE2CE1CE1VPNv4/6A2A2A1A1EVPNHEHEHEHEAccess Modes(A):Access Modes(A):1.All-Active EVPN-VPWS2.Port-Active EVPN-VPWS3.Single-Active(main

67、port only)EVPN-Headend:IP terminationQOSBRKSPG-204148 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPECPECPEA AA AMPLSMPLSASR9k EVPN Centralized GWIRBIRBIRBIRBIR

68、BX XX XBRKSPG-204149 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPECPECPEA AA AMPLSMPLSASR9k EVPN Centralized GWIRBIRBIRBIRBX XX XX XX XIRBIRBX XX XBRKSPG-2041

69、50 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDistributed vs Centralized GatewayDistributed Anycast Gateway is our priority!Best Scalable solutionOptimal L2/L3 forwardingBRKSPG-204151 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCI

70、DCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPECPECPEA AA AMPLSMPLSASR9k EVPN Centralized GWASR9k/NCS EVPN RT6Selective MulticastIRBIRBIRBIRBX XX XX XX XIRBIRBX XX XBRKSPG-204152 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public

71、#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPECPECPEA AA AVPWS EVPN-VPWSMPLSASR9k EVPN Centralized GWASR9k/NCS EVPN RT6Selective MulticastIRBIRBX XX XX XX XPEPEPEPEA AMPLSAccessASR9k/NCS VPWS to EVPN-VPWS Seamless MigrationV

72、PWS EVPN-VPWSMPLSBRKSPG-204153 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEVPN-VPWS/Legacy-PW Seamless MigrationPE38PE38PE39PE39CE1CE1CE2CE2MPLSLDP based PW-DOWNEVPN-VPWS-UPBRKSPG-204154 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEVPN-V

73、PWS/Legacy-PW Seamless MigrationUsecasesPE38PE38PE39PE39CE1CE1CE2CE2LDP PWPE40PE40New Node(PE40)insertion/replacementNew Node(PE40)insertion/replacementPE38PE38PE39PE39CE1CE1CE2CE2LDP PWPE40PE40BRKSPG-204155 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEVPN-VPWS/Legacy-

74、PW Seamless MigrationUsecasesPE38PE38PE39PE39CE1CE1CE2CE2LDP PWPE40PE40Active/Backup PW Active/Backup PW MultiMulti-Homed CEHomed CEPE38PE38PE39PE39CE1CE1CE2CE2LDP PWPE40PE40BRKSPG-204156 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeCo

75、mputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPECPECPEA AA AVPWS EVPN-VPWSMPLSASR9k EVPN Centralized GWASR9k/NCS EVPN RT6Selective MulticastIRBIRBX XX XX XX XPEPEPEPEA AMPLSAccessASR9k/NCS VPWS to EVPN-VPWS Seamless MigrationVPWS EVPN-VPWSMPLSA AL2L2SwitchSwitchESI1ESI2CPE

76、CPEASR9k/NCS Virtual Ethernet Segment(vES)BRKSPG-204157 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCPEPEPEPECPECPEA AA AVPWS EVPN-VPWSMPLSASR9k EVPN Centralized GWAS

77、R9k/NCS EVPN RT6Selective MulticastIRBIRBX XX XX XX XPEPEPEPEA AMPLSAccessASR9k/NCS VPWS to EVPN-VPWS Seamless MigrationVPWS EVPN-VPWSMPLSA AL2L2SwitchSwitchESI1ESI2CPECPEASR9k/NCS Virtual Ethernet Segment(vES)PEPEPEPECPECPEPEPEPEPECPECPEETREECPECPE CPECPE is not allowednot allowedCPECPE Root CPE Ro

78、ot CPE is allowedRootRootCPECPEASR9k EVPN ETREE Scenario 2Leaf and Root are allowed in the same Bridge-Domain BRKSPG-204158 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBPEPEPEPECPECPEA A

79、A AIRBIRBPEPEPEPEA AMPLSAccessA AL2L2SwitchSwitchESI1ESI2CPECPEASBRASBRASBRASBRASBRASBRPEPEPEPECPECPEASBRASBRCPECPEPEPEPEPEMPLSL2 Loop!L2 Loop!L2 Loop!L2 Loop!L2 Loop!L2 Loop!L2 Loop!L2 Loop!ASR9k/NCS VPLS/EVPN L2 Loop DetectionBRKSPG-204159 2023 Cisco and/or its affiliates.All rights reserved.Cisco

80、 Public#CiscoLiveEVPN MAC MobilitySP1SPL1L2L3L4Host moveChallenge:How to detect the correct location of MAC after the movement of host from one Ethernet Segment to another also called“MAC move”?MACMACIPIPESIESISeq.Seq.NextNext-HopHopMAC-1IP-100Leaf-1Sequence number and Next-Hop value will be changed

81、 after the host moveC1C2VMMACMACIPIPESIESISeq.Seq.NextNext-HopHopMAC-1IP-101Leaf-3Sequence number is incremented and Next-hop is changed to Leaf-3BRKSPG-204160 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafCompute

82、ComputeIRBIRBIRBIRBPEPEPEPECPECPEA AA AIRBIRBPEPEPEPEA AMPLSAccessA AL2L2SwitchSwitchESI1ESI2CPECPEASBRASBRASBRASBRASBRASBRPEPEPEPECPECPEASBRASBRCPECPEPEPEPEPEMPLSL2 Loop!L2 Loop!L2 Loop!L2 Loop!L2 Loop!L2 Loop!L2 Loop!L2 Loop!ASR9k/NCS VPLS/EVPN L2 Loop DetectionASR9k/NCS VPLS/EVPN L2 Loop Protecti

83、onProtectionXXXXBRKSPG-204161 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCMPLSBGPBGPControllerControllerASR9k/NCS EVPN RT5 IP Gateway for BGP PeeringBRKSPG-204162 20

84、23 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDCIDCIDCIDCILeafLeafLeafLeafComputeComputeLeafLeafLeafLeafComputeComputeIRBIRBIRBIRBEVPN MPLSEVPN MPLSDCMPLSBGPBGPControllerControllerPEPEPEPECPECPEBGPBGPControllerControllereBGP peering with external BGP Controller ASR9k/NCS E

85、VPN RT5 IP Gateway for BGP PeeringBRKSPG-204163 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveDo you want to know more about EVPN in IOS XR?BRKSPG-204164 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveSummaryEVPN is an very important complemen

86、t to BGP based servicesBGP is Unified Services Control Plane across NetworkEVPN All-Active Multihomed Service with Distributed Anycast Gateway&Integration to L3VPN simplifies SPDC/NextGen-CO/WAN IntegrationEVPN is not strictly a replacement of“traditional”VPNv4/6EVPN and VPNv4/6 can coexistService L

87、ayer is Data Plane independent,but the right Data Plane(encapsulation)selection decreases complexity and provides additional capabilitiesStay up to date https:/e-vpn.io/BRKSPG-204165 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveFill out your session surveys!Attendees wh

88、o fill out a minimum of four session surveys and the overall event survey will get Cisco Live-branded socks(while supplies last)!These points help you get on the leaderboard and increase your chances of winning daily and grand prizesAttendees will also earn 100 points in theCisco Live Challenge for

89、every survey completed.BRKSPG-204166 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicContinue your educationVisit the Cisco Showcase for related demosBook your one-on-oneMeet the Engineer meetingAttend the interactive education with DevNet,Capture the Flag,and Walk-in LabsVisit the

90、On-Demand Library for more sessions at www.CiscoL you#CiscoLive 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveGamify your Cisco Live experience!Get points Get points for attending this session!for attending this session!Open the Cisco Events App.Click on Cisco Live Challenge in the side menu.Click on View Your Badges at the top.Click the+at the bottom of the screen and scan the QR code:How:123469 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKSPG-204169#CiscoLive