Professional Documents
Culture Documents
ALFOplus2 FW 1.1.0
Ethernet Specifications
Document History
Revised
Version Notes Date
Paragraphs
02
03
04
05
06
07
1 Scope ............................................................................................................................................................................. 4
3.1 Encryption.......................................................................................................................................................... 15
4 Control Plane............................................................................................................................................................... 17
The new generation of SIAE equipment is based on the same SIAE Microelettronica Operating System (SM-OS), that is
installed on all the products and covers different Ethernet features in his several versions.
For this reason a detailed explanation of each main concept is contained in the document related to the SIAE SM-OS FW
1.5.0, i.e. “INR3301-01_SM-OS FW 1.5.0 Ethernet Specifications”, while here, after a brief presentation of the product
architecture, possible particular features characteristics and examples are represented to clarify the use of this SIAE
equipment in the telecommunication networks.
ALFOplus2 is a dual channel Full Outdoor microwave radio system for Ethernet transport that houses, within a unique
unit, two complete Tx/Rx radio modules to double up the radio capacity with respect to a normal single channel system.
The mechanical structure of the ODU is composed of a main body, a cover and an additional antenna-interface module.
The main body is common to all applications and it presents two antenna ports through a cover that can be specialized
depending on frequency band.
Assembling of main body and antenna-interface module is performed after the manufacturing process. The antenna
interface module can be replaced on field, when required.
The internal mechanics of this product is constituted of the following partially overlapped sub-units:
1 Line Interface Card (LIC): that houses the Ethernet and auxiliary connectors directly exposed on the external
case
1 Base Band Processor (BBP): that contains the power suppliers, FPGA board, CPU, clock, two modem units,
two Tx and Rx transceivers
2 IF and RF transceivers (TRX): that contain the two Tx and Rx radio modules
2 duplexer filters
The followings are the different physical interfaces available on this SIAE device.
Ethernet radio interfaces:
1
ETH1 and ETH2: they are two optical LAN interfaces 2.5Gbps /1000BaseX, with the requirement of SFP
module, SyncE
1
SIAE proprietary solution to be used only with new generation aggregation units (e.g AGS-20)
Additionally, the ALFOplus2 can be connected to SIAE aggregation equipment through all the available LAN interfaces,
implementing a node configuration with the management of multiple radio directions.
Considering that ALFOplus2 microwave links can be implemented in complex Ethernet networks, the choice of the
proper radio configuration depends on several factors of the overall network architecture, like network topology (e.g.
chain, ring, etc…), traffic protection or redundancy provided by external links (e.g. fiber links), priority of the Ethernet
traffic (high priority, low priority), etc..
Note: this configuration is available using the dual flange branching module, in which just one opening is connected to
the antenna flange.
Note: in this configuration a single Ethernet logical channel with double capacity is available on the radio. This is
obtained by means of the Layer 1 link aggregation of the 2 physical radio channels. The radio channels can be designed
in the different configurations previously described and showed in the below picture:
Note: in this configuration a single Ethernet logical channel with double capacity is available on the radio. This is
obtained by means of the Layer 1 link aggregation of the 2 physical radio channels. The radio channel is designed on
both the polarizations as showed in the below picture:
From the Ethernet point of view, the ALFOplus2 hardware layout is a single motherboard connected to a single Internal
Ethernet Switch, used to route data traffic and protocols’ traffic of the control plane and for DCN connectivity.
Address Learning capacity 16000 MAC entries Up to 1000 MAC address per VLAN
802.1q VLANs Up to 256 (with VLAN ID: 0-4094) VLANs Stacking 802.1ad supported
Packet Buffer Total Size 96Mbytes Reserved/Shared between ports and queues
1
Not working at the moment, just for future use
SIAE ALFOplus2 encryption is based on the block cipher AES128 or AES256, i.e. a deterministic algorithm operating on
fixed-length groups of bits, in counter (CTR) mode of operation, that describes how to repeatedly apply a the cipher's
single-block operation to securely encrypt amounts of data larger than a block.
The encryption activation is based on a configuration file (“feature key”) stored inside the equipment, visible but not
accessible to the user. “Radio payload encryption” is the equipment feature key activating the AES payload
cryptography. This enabled feature caused ALFOplus80HD to be subjected to “dual use” export control normative.
After the Customer communication of the equipment serial number to SIAE, a unique certificate in charge to SIAE is
generated, as a protected software license that enables AES cryptography on a single unit. This feature key certification
file contains a MD5 encrypted key accepted by a unique serial number. This file is downloaded inside the equipment
and the certificate is decrypted to recover the “feature key” that has to be applied. If this operation is successful, with
the certificate matching the equipment serial number, the equipment “feature key” map will be updated and the
“Radio payload encryption” enabled. This certificate is subjected to “dual use” export control normative.
Of course, equipment serial number cannot be altered by Customers in order to re-use different certificates.
It is important that the WEB LCT session is opened through the HTTPS protocol and that the security protocols HTTPS
and SNMPv3 associated to that specific user are enabled.
During the configuration is possible to enable or disable the radio encryption function in the programmable logic
module, previously allocating the required resources. Additionally, the user can specify the ciphering algorithm used for
the coding process and, eventually, the encryption key.
The following picture represents the SIAE ALFOplus2 Synchronous Equipment Timing Source (SETS), with candidates
sync sources and the block diagram of the SETS.
The interfaces that are available to provide synchronization to other SIAE or external equipment are:
Radio Interface: this interface is passing the synchronism automatically to the remote full outdoor equipment.
No configuration is needed
GbE Interfaces: the Tx CK of the GbE lines is locked to the SETS. When the GbE interfaces are electrical ports, the
port role must be set as “Master”. Through the LAN ports (electrical or optical), the CK signal can be forwarded
to other equipment, provided that they support Synchronous Ethernet. Once the synchronization is enabled in
the ALFOplus2, automatically all the LAN interfaces are locked to the SETS. This implies that the synchronization
signal is automatically provided onto all the LAN interfaces
The choices of the interface used to pass the clock signal depend strictly on the external equipment and more in
particular on the equipment at the other end.
FEATURE LIST
BRIDGE MODE
Customer Bridge
Provider Edge Bridge
Provider Core Bridge
PORT TYPE
Customer Bridge
Provider Network Port (802.1ad)
Customer Network Port (802.1ad)
Customer Edge Port (MEF)
Prop Provider Nework Port
PORT SPEED
10-100-1000 electrical
1G optical
2.5G optical
VLAN
Up to 256 VLAN
ISOLATION
Port isolation
FILTERING
Acceptable Frame Type
Ingress filter
TPID MANAGEMENT
Port EtherType
MTU
Port MTU up to 12266 byte
System MTU up to 12266 byte
L2CP MANAGEMENT
L2CP tunnel on CB
L2CP tunnel on CEP
L2CP tunnel on CNP
L2CP tunnel for LLDP frames
Transparent tunnel
PORT MIRRORING
Ingress monitor session
Egress monitor session
PRIORITY MAP
C-PCP for CB classification
S-PCP for PB classification
DSCP classification
L2 ACL CLASSIFICATION
Multiple L2 ACL priority management
Port Based
C-VLAN on CB
C-VLAN + C-PCP on CB
C-VLAN on PB
C-VLAN + C-PCP on PB
S-VLAN on PB
S-VLAN + S-PCP on PB
C-VLAN + S-VLAN on PB
DSCP for IPoverMPLS 2labels w/o CW
EXP pbit
CLASSIFICATION
Regen priority output queue based on L2 ACL CLASSIFICATION
POLICING
Outer PCP change for yellow frames
Drop yellow frames
Drop red frames
CONGESTION AVOIDANCE
Tail
RED
WRED
SCHEDULING
Strict
WRR
Strict + WRR
SHAPING
Port rate-limit output
Queue shaping
QUEUE MANAGEMENT
Configurable queues depth
DCN MANAGEMENT
L2 in band
L2 in band C-Tag on CEP and CNP
L2 emulated out of band
L2 emulated out of band C-Tagged on PPNP
L3 ACL management
Configurable PCP and DSCP for management frames
ETHERNET STATISTICS
LAN statistics RFC1213 - RFC1234
RMON RFC2819 port based statistics
Service port based + C-VLAN statistics on CB
Service port based + S-VLAN statistics on PB
Service port based + C-PCP statistics on CB
802.1D RSTP
RSTP compatibility
STP compatibility
802.1w compatibility per port (for legacy IOT)
Hello time, max age, forward time
Port priority
Port path cost
Port path cost dynamic
Port path cost dynamic for LAG ports
802.1ag ECFM
Up to 32 MA
MAB
Extension type 0 - Old MAB
Extension type 1 - Extended MAB Link ID
Extension type 2 - G.8013 ETH-BN Standard MAB
AES Encryption
Table 2 - Ethernet Features List