BRKSPG 3002

#CLUS
Network Service
Fabric Architecture
with EVPN
Patrice Brissette, Principal Engineer
BRKSPG-3002
BRKSPG-3002
Cisco Webex Teams
Questions?
Use Cisco Webex Teams to chat
with the speaker after the session
How
1 Find this session in the Cisco Live Mobile App
2 Click “Join the Discussion”
3 Install Webex Teams or go directly to the team space
4 Enter messages/questions in the team space
Webex Teams will be moderated cs.co/ciscolivebot#BRKSPG-3002

by the speaker until June 16, 2019.
#CLUS © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Agenda
• Planet EVPN
• Network Service Fabric
• Stitched vs Integrated Fabric
• Service Unification
• EVPN Multi-homing
• EVPN FXC – NCS5500
• Access Usecases
• Legacy Network
• We believe in…
#CLUS BRKSPG-3002 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
Planet EVPN
EVPN: Value Proposition
Create New Revenue Deploy with Ease

Streams • Seamless Brownfield Integration
• Stateless SFC and NFV • Same principles and operational
• E-LAN, E-LINE, E-TREE, L3, IRB experience as IP VPNs
Services
EVPN
Increase Availability
Protect Investments • Workload Mobility
• Unified Networks on single overlay • Optimal forwarding
• Simplify protocols and operations • All-Active Redundancy with Fast
• Industry adoption and standardization Convergence
Fast, Resilient, Flexible Unified Services

SP Routing Use Case Representation
PRE-AGG DCI
5G
Mobile FH Direct
MOBILE EDGE Content
CELL SITE ROUTER METRO AGG
4G SP PEERING
BUS EDGE SPINE

Enterprise IP or MPLS CORE
Internet
LEAF
BUS ACCESS
TOR
Residential CABLE AGG RESIDENTIAL EDGE
Public Cloud
CIN CABLE EDGE
CLOUD PEERING
RPD
Access Aggregation Edge Network Fabric Core Peering
Network Service Fabric Applicability
Customer point of view
EVPN
~85% are planning

EVPN deployment by
2019
Source:
Network
Service
Fabric
Fabric Demystification
Network Service Fabric SP Metro Topology
BL BL CE A
SP SP CE A AG PE
==
L L L L
A AG PE
CE
C C C A
EVPN
*PE - Hierarchical Services
Network Service Fabric
WAN
BL BL BL BL
Network Network
Service Service
Fabric SP SP Fabric SP SP
PE PE L L L L L L
A A s.switch s.switch s.switch

vm vm vm vm vm vm
CE
Network Service Fabric Design Options
Far Edge Pre-Agg / C-RAN Hub Edge/Metro Regional Office
PE/ PE/
PE PE PE/ PE/
WAN PE WAN
PE PE WAN
PE PE WAN
PE
PE/
TOR TOR
TOR
SP SP SP SP
L L
TOR TOR TOR TOR TOR TOR

Server Server
Server Server Server
Server ACCESS ACCESS ACCESS
ACCESS ACCESS ACCESS ACCESS
Service Provider
Service Provider Network
Network
Access Pre-Agg
Pre-Agg Aggregation
Aggregation Core
A P/PE P/PE P/PE PE
CE
A P/PE P/PE P/PE PE
Far
Far Edge
Edge Edge
Edge Regional
Regional Central
Central
#CLUS BRKSPG-3002 © 2019

2019 Cisco
Cisco and/or
and/or its
its affiliates.
affiliates. All
All rights
rights reserved.
reserved. Cisco
Cisco Public
Public 13
10
Stitched
vs
Integrated
Stitched Fabric – Regional / Edge A
Access
P/PE
Pre-Agg
P/PE
Aggregation
P/PE
Core
PE
CE
A P/PE P/PE P/PE PE
RR RR
PE WAN
Edge Regional
BL DCI
 Discrete IGP domain
 Packet rebuild / regenerated at BL
Network  Host routing within fabric
Service  Summarization at BL
Fabric SP SP
 Services are always terminated at BL
 Separate orchestration
 Optimal Forwarding E-W, N-S
L L L L
VLAN
IRB
EVPN A A s.switch s.switch

vm vm vm vm
Integrated Fabric – Regional / Edge A
Access
P/PE
Pre-Agg
P/PE
Aggregation
P/PE
Core
PE
CE
A P/PE P/PE P/PE PE
RR RR
PE WAN
Edge Regional
P P
Network  Underlay IP visible outside fabric
Service  Packets are untouched
Fabric SP SP  No protocol translation
 Host routing leaked to WAN (small fabric)
 Full WAN feature set at the leaf
 Ease of End to end OAM
L L L L  End-to-end service
IRB
s.switch s.switch
EVPN A A
vm vm vm vm
Integrated – Edge / Far Edge A
Access
P/PE
Pre-Agg
P/PE
Aggregation
P/PE
Core
PE
CE
A P/PE P/PE P/PE PE
RR RR
PE WAN
Far edge Edge
PE PE
Network  Integrated by default
Service VLAN  EVPN Services enabled in WAN
Fabric  EVPN Multi-homing
s.switch
A vm vm
EVPN
Service Unification
Network Service Fabric Challenges
Co-location Full Mesh Latency Legacy Features
Convergence Virtualization Optimal Forwarding Flexible Eco-System
Service Unification A
Access
P/PE
Pre-Agg
P/PE
Aggregation
P/PE
Core
PE
CE
More… A P/PE P/PE P/PE PE
Multicast
DCI
Head-End Far Edge Edge Regional Central
ETREE
FXC
VPWS
Routing Conceptually
IRB
Bridging PE
=
BL
Network =
Service AG SP
Fabric SP SP
CE = C
PE PE L L
EVPN
s.switch
A vm vm
Access Pre-Agg Aggregation Core
EVPN – Bridging A P/PE P/PE P/PE PE
CE ELAN
L2 E-LAN E2E Service A P/PE P/PE P/PE PE
East-West In Fabric
Far Edge Edge Regional Central
MAC advertisement
Multi-homing PE BL
Legacy access protocols

ELAN
VPLS seamless interop
MAC mobility PE PE L L
On-Demand Nexthop
s.switch
A vm vm
Convergence
An Example
EVI: 1 EVI: 1
CE L1 L2 CE
Broadcast
Domain
CE L3 L4 CE
EVI: 1 EVI: 1
EVI = EVPN instance
EVPN – IRB A P/PE P/PE P/PE PE
CE Layer3
Virtualization and Compute A P/PE P/PE P/PE PE
L2 Legacy to L3VPN
Distributed Anycast Gateway
Symmetric IRB PE BL
Multi-homing
Layer3
Host Routing & Mobility L3
---
Optimal Forwarding L2
PE PE L L
Summarization
s.switch
A
L2 / L3 integration IRB vm vm
An Example
CORE Routing
Intra-subnet
Forwarding
SP SP
Inter-subnet
Forwarding L3
GW GW GW GW --
L2
L L L L
Subnet 1
Subnet 2 C C C C
VM1 VM2 VM3 VM4
EVPN – Routing A P/PE P/PE P/PE PE
CE Layer3
All-Active
L3VPN L3VPN
E2E Service
Service A P/PE P/PE P/PE PE
VSS/vPC Equivalent
Redundant Gateway
Scalability
v4 / v6 PE PE
VRF2VRF leaking
Layer3
IPVPN seamless interop
RPL PE PE PE PE
RT constraint
CE L2 or L3 C
IGMP/MLD sync L3 Interface
EVPN – VPWS A P/PE P/PE P/PE PE
CE ELINE
L2 E-LINE E2E Service A P/PE P/PE P/PE PE
Access Services to Fabric

VLAN-unaware
MPLS / SRv6 dataplane PE BL
Multi-homing
ELINE
On-Demand Nexthop
PE PE L L
s.switch
A vm vm
An example
Tunnel: 20
EVI: 1 EVI: 1
CE L1 L2 CE
CE L3 L4 CE
EVI: 3 EVI: 3
Tunnel: 10
EVI = EVPN instance
EVPN – Flexible XC Service A P/PE P/PE P/PE PE
CE ELINE
L2 E-LINE E2E Service A P/PE P/PE P/PE PE
Access Services to Fabric

Stateless SFC / NFV
VLAN-aware PE BL
Local Switching
ELINE
Multi-homing
VLAN-unaware PE PE L L
s.switch
A
A vm vm
A
Root
EVPN – ETREE A P/PE P/PE P/PE PE
CE ELAN
Residential Services A P/PE P/PE P/PE PE
BNG applications
Access Aggregator
Root/Leaf per router BL BL
Root/Leaf per Bridge Domain

ELAN
IRB (as root)
Multi-homing Leaf PE PE L L
VLAN segmentation
s.switch
A vm vm
An Example  Root to leaf
 Leaf to leaf prohibited
EVI: 1 EVI: 1
Root Leaf
CE L1 L2 CE
CE L3 L4 CE
EVI: 1 EVI: 1
Broadcast Domain
Leaf Leaf
EVI = EVPN instance
An Example  Root to leaf
 Leaf to leaf inter-subnet
ROOT  Leaf to leaf intra-subnet prohibited
CORE
Routing
SP SP
L3
L L L L --
L2
CE CE CE CE
LEAF LEAF LEAF LEAF

ETREE: Leaf-Leaf Split Horizon
CE PE1
PE7 CE
PE2
LEAFs ROOTs PE8
PE3
CE
PE4
EVPN
PE5
Two stacked ”levels” of SHG blocking labels exchanged:

PE6
• Per-ESI peering PEs: SHG label from ES/EAD
ESI-Label extcomm
• E-Tree leaf PEs: SHG label from ES-0/EAD
E-Tree extcomm with Leaf bit
CE
EVPN – Head End A P/PE P/PE P/PE PE
CE L3VPN
Hierarchical L3VPN Service A P/PE P/PE P/PE PE
Residential Service
BNG application
L3
All-Active CoreToAccess --- HE HE
L2
Single-Active AccessToCore
ELINE
Service decoupling
VLAN aware FXC PE PE L L
FXC as access service

A LAN
A
VPWS as access service A
EVPN-HE • HE Layer 3 interface
ESI support
VLAN-aware
CE Single-active, port-active from access
CE
CE FXC PW HE1 All-active from core
GARP on-demand
ESI
• FXC
CE
VLAN-aware
CE PW All-active
CE FXC HE2
AC-influence
(single tunnel)
• Access and core failures are decoupled
VLANs VRFs VPNv4/v6
EVPN
EVPN-HE – Traffic flows options
DF DF
CE CE
CE CE
CE FXC HE1 CE FXC HE1
CE CE
CE CE
CE FXC HE2 CE FXC HE2
NDF NDF
VPNv4/v6
And more options using different
EVPN
load-balancing mode.
EVPN – DCI A P/PE P/PE P/PE

MPLS
PE
CE Layer2
Layer3
Different data plane stitching A P/PE P/PE P/PE PE
Inter-DC communication
L2/L3 to L2/L3 Interconnect
EVPN enable Fabric DCI DCI
Inter-Fabric Layer2
VxLAN L2 / L3
MPLS L3
Layer3
Flood & Learn (VxLAN) L L L L
s.switch s.switch
IRB vm vm vm vm
EVPN – Multicast A P/PE P/PE P/PE
MVPN
PE
CE
PIM
Radio / Streaming Service A P/PE P/PE P/PE PE
Multicast Redundancy
Multi-homing
v4 / v6 BL BL
IGMP/MLD snooping sync

MVPN / PIM
IGMP/MLD sync
Extranet PE PE L L
“Intent-based” MVPN
26 profiles A s.switch
IRB vm vm
An Example Source
VRF(x)
PIM / MVPN
BL BL
PIM / MVPN
SP SP
Join/Leave
Sync
L3
--- L L L L
L2
PIM / MVPN C C
IRB-x
EVPN Receiver Receiver
IRB-y
EVPN – Service Unification A P/PE P/PE P/PE PE
CE
More… A P/PE P/PE P/PE PE

Multicast
DCI
Head-End
ETREE Far Edge Edge Regional Central
FXC
VPWS
Routing
IRB
Bridging
Network
Service
Fabric SP SP
PE PE L L
EVPN
s.switch
A vm vm
#CLUS © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 39
EVPN Multihoming
EVPN - load-balancing modes
All-Active Single-Active Port-Active
(per flow) (per VLAN) (per port)
PE1 PE2 PE1 PE2 PE1 PE2
V1 V1 V1 V2 V1, V2
CE CE CE
Single LAG at the CE Multiple LAGs at the CE Single/Multiple LAGs at the CE

VLAN goes to both PE VLAN active on single PE Port active on single PE
Traffic hashed per flow Traffic hashed per VLAN Traffic hashed per port
Benefits: Bandwidth, Convergence Benefits: Billing, Policing Benefits: Protocol Simplification
EVPN - load-balancing modes
Single-Flow-Active
(access L2 GW)
PE1 PE2
H1 H2
CE1 CE2 CE3
Single LAG at the CE

VLAN goes to both PE
Access takes care of L2 loop
Benefits: Legacy support for STP,
REP, G.8032
EVPN FXC –
NCS5500
(Flexible Cross
Connect Service)
EVPN – Flexible Cross-Connect Service
Challenge:
How to bring multiple access services from different sources using a single EVPN E-LINE
tunnel?
A1
CE1 CE1
A1
EVPN
CE2 PE
CE2 PE Forwarder
MUX
A2 CEn DEMUX
CEn
Normalized VLAN
VLAN translation over unique tunnel
EVPN – Flexible Cross-Connect Service
Request:
Can local switching preferred over ELINE tunnel?
A1
CE1 CE1
A1
EVPN
CE2 PE
CE2 PE Forwarder
MUX
A2 CEn DEMUX
CEn
Normalized VLAN
Local Switching is
preferred on Backup connectivity
matching VLAN over EVPN ELINE VLAN translation
Flexible Cross-Connect Service: Head-End
Purpose:
Bring multiple ELINE services into Pseudo-Wire Head-End termination
PWHE
CE1
A1 PE1
CE2
A2 PE2
CEn
PWHE
ELINE
(single tunnel)
VLANs VRFs
Flexible Cross-Connect Service: Local Switching
Purpose:
Bring access services (e.g OLT) into BNG with redundancy
VRFs
BNG
VLANs’ EVPN
A1 A2
rewrite
VLANs
OLT OLT OLT x1000
ELINE
(backup tunnel)
Flexible Cross-Connect Service: stateless SFC
Purpose:
Service Function Chain between computes and Leafs
C
L1 SP1
L2 SP2
C
EVPN-IRB
EVPN-IRB
VLANs
Access Usecases
EVPN - Anycast-PW
Access Core / Metro Fabric Access
PE PE
CE A1 EVPN A3 CE
Anycast-PW All-Active Anycast-PW
PE PE
Anycast-SID Anycast-SID
EVPN - access VPWS
A1 PE PE A3
EVPN-VPWS EVPN EVPN-VPWS
CE CE
A2 PE PE A4
EVPN - IRB with access VPWS

Anycast-IRB Anycast-IRB
A1 PE1 PE3 A3
CE CE
A2 PE2 PE4 A4
Anycast-IRB Anycast-IRB
EVPN - HE with access VPWS

HE HE
CE1
A1 PE1 PE3 A3

CE2 FXC FXC CE
A2 PE2 PE4 A4
CEx
HE HE
EVPN – Overlay Gateway CE
A1 A2
Core / Metro Fabric

VxLAN DC
PE DCI A3
EVPN access
CE VPLS / VPWS
CE
PE DCI A4
All-active MC-LAG
All-active
CE
EVPN - L3 Multi-Homing using EVLAG
CE1 PE1 PE3 CE3
L3VPN
CE2 PE2 PE4 CE4
EVLAG EVLAG
EVPN
Legacy Network
Migration
EVPN – VPLS seamless integration
VPLS VPLS
CE L1 L2 CE
CE L3 L4 CE
VPLS L3 & L4 Leafs run EVPN.

VPLS
*EVPN* VPLS pseudowire is brought down *EVPN*
MPLS
VPLS pseudowire
EVPN – VPWS seamless integration
BGP AD LDP sig
VPWS t-LDP VPWS
BGP AD BGP sig
CE L1 L2 CE
CE L3 L4 CE
VPWS VPWS
L3 & L4 Leafs run EVPN.
*EVPN-VPWS* VPWS pseudowire is brought down *EVPN-VPWS*
MPLS
VPWS pseudowire
EVPN – Access Legacy L2 to EVPN
Core / Metro Fabric Access
PE PE A1
EVPN access
CE VPLS / VPWS
CE
PE PE A2
All-active MC-LAG
EVPN – Big Bang!
Core / Metro Fabric Access
PE PE A1
access
VPLS VPWS
CE CE
(2/4 ways
redundancy)
PE PE A2
MC-LAG MC-LAG
PE PE A1
EVPN EVPN-VPWS
CE CE
PE PE A2
All-active Single-active
We believe in…
Drastic Network Protocols Reduction
Bag of existing Protocols
Next Gen.
Ethernet MP-BGP
802.1Q,
Protocols
LDP
802.1ad LDP-TE SRv6 Key enabler for
IPv4 IP OAM SR (MPLS)
PPPoE Reducing operations complexity
MPLS OAM PCEP
IPv6 Ethernet OAM  Simpler automation
ISIS
MPLS STP BGP (TE, LS)  Simpler to repair
L2TP G.8032 IP OAM  Simpler integration
PWE3 RADIUS Ethernet OAM  Foundation for service Orchestration
ISIS SNMP EVPN
OSPF Syslog NETCONF/YANG
RSVP-TE Netflow SSH
LACP SSH CLI/XML
MC-LACP HSRP/VRRP
Distributed vs. Centralized Routing
Distributed Routing Centralized Routing

Boarder L3 Centralized GW
Leaf
L2
Fabric Fabric
L3
Leaf Leaf
L2
Subnet 1 Subnet 2 VLAN 1 VLAN 2
• Optimized forwarding of east-west traffic • All east<->west routed traffic traverses to centralized gateways
• ARP/MAC state localized to Leafs • Centralized gateways have full ARP/MAC state in the DC
• Helps with horizontal scaling of DC • Scale challenge
SPG Walk-In Labs – Hosted in World of Solutions
• No reservation required, just show up and get hands-on experience
• A great way to get hands-on experience on a lot of topics covered here
Session ID Title
LABSPG-1020 MPLS Segment Routing Introduction
LABSPG-1327 Introduction to Segment Routing v6 (SRv6) with IOS-XR
Network Slicing with Segment Routing Flex-Algorithm for 5G and other
LABSPG-2000 Applications
LABSPG-2001 Intent Based Networking using Segment Routing Traffic Engineering
LABSPG-2068 Configure and Implement BGP-EVPN with Segment Routing using IOS-XR
LABSPG-2109 Ethernet VPN (EVPN) Implementation and Troubleshooting
LABRST-1015 Introduction - Segment Routing for Policy Aware Network
How to reach me?
pbrisset@cisco.com
Linked-In
http://e-vpn.io
Complete your
online session • Please complete your session survey
evaluation after each session. Your feedback
is very important.
• Complete a minimum of 4 session
surveys and the Overall Conference
survey (starting on Thursday) to
receive your Cisco Live water bottle.
• All surveys can be taken in the Cisco Live
Mobile App or by logging in to the Session
Catalog on ciscolive.cisco.com/us.
Cisco Live sessions will be available for viewing
on demand after the event at ciscolive.cisco.com.
Continue your education
Demos in the
Walk-in labs
Cisco campus
Meet the engineer

Related sessions
1:1 meetings
Thank you
#CLUS
#CLUS

BRKSPG 3002

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

BRKSPG 3002

Uploaded by

Copyright:

Available Formats

#CLUS

Patrice Brissette, Principal Engineer

Webex Teams will be moderated cs.co/ciscolivebot#BRKSPG-3002

Create New Revenue Deploy with Ease

Fast, Resilient, Flexible Unified Services

BUS EDGE SPINE

Access Aggregation Edge Network Fabric Core Peering

Network Service Fabric Applicability

~85% are planning

A A s.switch s.switch s.switch

TOR TOR TOR TOR TOR TOR

A P/PE P/PE P/PE PE

A P/PE P/PE P/PE PE

#CLUS BRKSPG-3002 © 2019

A P/PE P/PE P/PE PE

EVPN A A s.switch s.switch

A P/PE P/PE P/PE PE

A P/PE P/PE P/PE PE

Co-location Full Mesh Latency Legacy Features

Convergence Virtualization Optimal Forwarding Flexible Eco-System

More… A P/PE P/PE P/PE PE

EVPN – Bridging A P/PE P/PE P/PE PE

L2 E-LAN E2E Service A P/PE P/PE P/PE PE

Legacy access protocols

EVI = EVPN instance

EVPN – IRB A P/PE P/PE P/PE PE

Virtualization and Compute A P/PE P/PE P/PE PE

EVPN – Routing A P/PE P/PE P/PE PE

EVPN – VPWS A P/PE P/PE P/PE PE

L2 E-LINE E2E Service A P/PE P/PE P/PE PE

Access Services to Fabric

MPLS / SRv6 dataplane PE BL

EVPN – Flexible XC Service A P/PE P/PE P/PE PE

L2 E-LINE E2E Service A P/PE P/PE P/PE PE

Access Services to Fabric

Stateless SFC / NFV

EVPN – ETREE A P/PE P/PE P/PE PE

Residential Services A P/PE P/PE P/PE PE

Root/Leaf per router BL BL

Root/Leaf per Bridge Domain

LEAF LEAF LEAF LEAF

Two stacked ”levels” of SHG blocking labels exchanged:

EVPN – Head End A P/PE P/PE P/PE PE

Hierarchical L3VPN Service A P/PE P/PE P/PE PE

VLAN aware FXC PE PE L L

FXC as access service

EVPN – DCI A P/PE P/PE P/PE

L2/L3 to L2/L3 Interconnect

EVPN enable Fabric DCI DCI

Flood & Learn (VxLAN) L L L L

EVPN – Multicast A P/PE P/PE P/PE

IGMP/MLD snooping sync

EVPN – Service Unification A P/PE P/PE P/PE PE

More… A P/PE P/PE P/PE PE

PE1 PE2 PE1 PE2 PE1 PE2

Single LAG at the CE Multiple LAGs at the CE Single/Multiple LAGs at the CE

CE1 CE2 CE3

Single LAG at the CE

OLT OLT OLT x1000

Access Core / Metro Fabric Access

Access Core / Metro Fabric Access

Access Core / Metro Fabric Access

Access Core / Metro Fabric Access