1 / 56

DRO Router Introduction

DRO Router Introduction . Market positioning and demand analysis Router introductions Advantages & selling point Competition analysis Case share. Agenda. Sometimes this may happen…. CPU under attack. The router can’t be managed. Internet access is too slow. Traffic can not be monitored.

boris
Download Presentation

DRO Router Introduction

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. DRO Router Introduction

  2. Market positioning and demand analysis • Router introductions • Advantages & selling point • Competition analysis • Case share • Agenda

  3. Sometimes this may happen… CPU under attack. The router can’t be managed. Internet access is too slow. Traffic can not be monitored Financial and operational service can't be protected. The online video can’t be smoothly displayed.

  4. New demands for network Router QoS Reliability Management High performance

  5. Market positioning and demand analysis • Router introductions • Advantages & selling point • Competition analysis • Case share • Agenda

  6. Router portfolio Aggregation Router DRO-5020 DRO-3044 DRO-5040 DRO-5080 Access Router DRO-1002 DRO-2014 DRO-2024

  7. SIC modules DROsupport SIC-1HS SIC-1E1-F SIC-1CE1 SIC-1B-S/T SIC-1B-U SIC-4ESW SIC-2FXS SIC-2FXO

  8. NMX module DRO support NMX-24ESW NMX-2GEH NMX-4E1/CE1H NMX-8E1/CE1H NMX-1CPOS-STM1H

  9. DRO-50 Specification

  10. DRO-50 Hardware Design • DRO-5020has two power module slots. • DRO-5040and DRO-5080 has three power module slots.

  11. NMX NMX NMX NMX NMX NMX RAM RAM RAM RAM RAM RAM RAM RAM RAM Power Power NMX NMX Power Power Power Power Power Power NMX NMX DRO-50 Hardware Design (cont.) console aux aux console DRO-5020 DRO-5040 console aux NMX NMX NMX NMX DRO-5080

  12. BootROM FLASH Network interface Network interface Network interface Network interface Network interface Network interface Network interface Network interface Temp Detect Console AUX GE Combo GE Combo GE Combo USB USB DRO-50 Hardware Design (cont.) DDR RAM 50Gbps DDRRAM BUS UART Local BUS Dual Network Processor GE AIM Encrypt Engine 2Gbps PCI Bus GE GE 20Gbps HT 2Gbps PCI Bus 2Gbps PCI Bus HT Bridge HT Bridge 2Gbps PCI Bus 2Gbps PCI Bus Fast AIM Encrypt Engine

  13. DRO-3044 Specification

  14. DRO-3044 Hardware Design

  15. DRO-20series specification

  16. NMXslot SICslot DRO-2014 Console 2*USB • Built-in encryption engine • Capacity to 280kpps AUX 3*10/100M

  17. 4*SICslot DRO-2024 2*NMXslot Console 2*USB • Built-in encryption engine • Capacity to 300kpps AUX 2*10/100M

  18. DRO-10specification

  19. DRO-1002 2*SIC Console • Built-in encryption engine • Capacity to 260kpps 2*10/100M

  20. Market positioning and demand analysis • Router introductions • Advantages & selling point • Competition analysis • Roadmap • Case share • Agenda

  21. 1 2 3 4 • Topic High performance Multi-service High security High availability

  22. High performance---In services • With the access mode becoming more and more, the speed is faster and faster (MSTP、fiber、PON), the bandwidth requirement is growing rapidly. • With multi -services running ,DRO router can achieve 100Mwire-speed forwarding. • Nearly no interruption when using ACL、QOS、PBR、NAT. • Under 100M line,DRO router won’t be the bottleneck of network.

  23. High performance--- D-link DEFfast forwarding Complete flow path Flow create Whole ACL Whole PBR Whole NAT Packet encapsulation QOS Fast NAT Fast State processing Fast ACL Fast PBR … Header Inspection Accept packet Send packet Fast flow path Packet encapsulation FIB ADJ Extremepath • DEF-D-link Express Forwarding • DEF achieve multi-service integration, • Increase performance of ACL, PBR,NAT,FW,QOSetc.

  24. High performance--- D-link DEFfast forwarding Flow-based speeding mechanism • When ACL, PBR,NAT,FW,QOS is deployed, DEF achieves exact matching with the 1st packet, and the matching of following packets according to the flow table. No impact on performance between deploying 1 piece of ACL and 500 pieces of ACL! 500ACL/PBR 1 ACL/PBR 100 ACL/PBR

  25. High performance--- X-FLOW QOS … ACL NAT IPSec routing 1st packet, routing inquiry, record result • X-FLOWis the data processing mechanism of DEF. • Traffics with the same SIP, DIP, TCP/UDP port number, protocol number, are defined as a flow. DRO applied the flow table technology. Update flow table according to results Packet Packet Direct processing of packets Flow table Look up Following packet using flow table forwarding directly Why X-FLOW: when deployed with ACL、QOS、NAT、IPSec, the forwarding performance will not be affected.

  26. 2 1 3 4 • Topic High performance Multi-service High security High availability

  27. Multi-service--- routing, switching all-in-one • DROs can achieve different functions of switch and router by deploying the switching module. • Why All-in-one design: • Greatly save the cost of TCO。 • Decrease the maintenance cost, • Save installation space • Save one machine’s power for “green world”。

  28. Router master CPU Router master CPU Managing tunnel Data tunnel Managing tunnel Data tunnel Switching chip Switching chip Switching CPU …… …… Switching port Switching port • Multi-service --- distributed architecture Centralized architecture Sharing CPU,switching function integrated in the router OS. Distributed architecture Separate CPU,with separate OS

  29. Multi-service --- advantage and disadvantage • Advantage: • Modular design, based on the customer’s real need, easy to be extended and flexible to use. • Distributed architecture switching module with own CPU and OS, decrease the burden of CPU, promote the stability. • Switching module with separate OS, and D-link has nearly million deployment of switches with high maturity OS. • All the switch functions are included.

  30. Multi-service--- routing, switching all-in-one • One router with: • Routing+Switching+MPLS+NAT+Firewall+VOIP+VPN+3G+IPFIX

  31. Multi-service --- L2/3 VPN processing VPN A Site2 CE–A2 VPN A Site 1 VPN B Site2 CE–A1 P P PE PE CE–B2 VPN B Site 1 VPN A Site 3 P P PE CE–B1 CE–A3 • Fully support MPLS function, support standard MPLS label switching • Layer 3 VPN based on BGP/MPLS VPN • Support IPSec、L2tpmulti-instance, achieve perfect integration between IP VPNand MPLS VPN

  32. Multi-service --- QoS Classify Drop Queue Token Out port Drop Queue0 Sou. interface Dest. interface Sou. port Dest. port Protocol type TOS In port Token bucket FIFO PQ SP WRR DRR Queue1 ACL RED WRED CAR Classify Queue2 Accept packet In queue QueueN Out queue Flow shaping Continue to send Congestion detection/avoidance L2/L3/L4 Flow classifying schedule

  33. Physical Port OApackets 100K Business packets 1M Video packets 900K Multi-service --- Dedicated QoS • Meticulous management • Packet classify marking • Congestion avoidance(RED、WRED) • Flow supervision(CAR) • Flow shaping(GTS) • Congestion management(FIFO,PQ,CQ,WFQ,CBWFQ,LLQ,RTPQ) • Line efficiency(CTCP、CRTP) • QoS queuing technology

  34. Multi-service --- 3G accessing for remote places • Support WCDMA、CDMA2000、TD-SCDMA. • Flexible for remote areas to access. • Serve as backup link for enterprise network.

  35. Multi-service --- AEP application extension platform AEP: Application Extension Platform Layer 7 applications can be deeply integrated into DRO router.

  36. Multi-service --- built-in IPFIX With IPFIX, network is transparent to you. • How many applications? Network attack? Which is the key application? Where does the flow come from?

  37. 3 1 2 4 • Topic High performance Multi-service High security High availability

  38. WAN • High security--- application encryption Encryption DRO-20 Branch office UNIX Router Information center Built-in Encryption card DRO-20 Hardware encryption card Branch office

  39. 4 1 2 3 • Topic High performance Multi-service High security High availability

  40. High availability --- equipments can be managed in any time • The V-CPU technology of DRO router, can separate the CPU into two part, the management and data-forwarding. • No matter how large the attack and data flow is, the management will be always available. Why V-CPU: The equipment can be managed at any time!!!

  41. Data forwarding CPU • High availability- --- VCPU • VCPU: Virtual CPU technology,CPU resources can be virtualized into two part: data forwarding and system management, the resources can be adjusted dynamically. • Data forwarding CPU:specialized for data forwarding • System management CPU:control plane and management plane • No matter how large the attack and data flow is, the management won’t be interrupted CPUresource System Management CPU

  42. Q & A ? What is the technology helps DRO routers achieve high performance , when applying ACL, QoS, NAT…….?

  43. Market positioning and demand analysis • Router introductions • Advantages & selling point • Competition analysis • Case share • Agenda

  44. DRO router is widely deployed in the vertical market. • D-link DRO series routers,have been deployed in the finance, government, education, enterprise for more than 100,000. • The strategic partner of China Life, PICC,more than 5,000deployment. • The strategic partner of Construction Bank of China, more than 8,000 deployment. 100,000 vertical deployment with stable routers.

  45. 1 2 • Topic Financial cases Government cases

  46. Backbone network of China Life Insurance • 110cities,2*DRO-30 for uplink for each city Jiangsu Data center CNC ATM China TelecomATM CNC ATM China TelecomATM Shanghai Data center 100M 155M SDH CNC ATM Beijing Data center 2M SDH Data center ATM ATM 1000M ATM Province SDH Shandong Branch Guangdong Branch Hebei Branch …… …… ATM ATM ATM SDH SDH SDH City City City City City City DRO-30*2 DRO-30*2 DRO-30*2 DRO-30*2 DRO-30*2 DRO-30*2

  47. Network of Construction Bank of China To HQ 2007-2008,6 provincial network Neimenggu:14*branch,400*node Hebei:11*branch,1100*node Ningxia:9*branch,200*node Qinghai:9*branch,150*node Hunan:20*branch,600*node Guangxi:14*branch,400*node Others: Hubei:700*node. Jinagsu:800*node Shandong:600*node, Xinjiang:300*node Fujian:400*node, Henan:200*node ………………………… Backbone Area WAN Area Core switch WAN core 100M WAN Area 155M SDH 2M SDH 1000M ATM CPOS CPOS 2M SDH 2M SDH 2M SDH DRO-20 DRO-20 DRO-20 DRO-50 S2600 S3700 S3700 S5700/S7600/S8600 ATMnode Big node Small node Branches

  48. Network of Industrial & Commercial Bank of China Beijing:400 Xinjiang:300 Jilin:100 Gansu:200 Guizhou:300 Shandong:400 Ningxia:100 Guangdong:200 Liaoning:200 Dalian:100 Guangxi:100 ……………… 100M 155M SDH 2M SDH MSTP/2M SDH Master 2M SDH Backup 1000M Small node Branches Normal node DRO-2024 DRO-2014 Service segment Service segment SW SW SW SW DRO-1002 Office segment Office segment Terminal Service PC ATM ATM ATM Office PC ATM Terminal Service PC Office PC

  49. National VPN network of China Insurance Shanxi600Guangdong300Hunan200Hebei200Fujian200Shandong100Neimenggu100Xinjiang100Gansu100Hubei 100Tianjin100Henan50Beijing50Ningxia50Zhejiang50…… To HQ To HQ To HQ To HQ To HQ … R3642 R3740 R3642 R3642 DRO-50 Hunan Hebei Guangdong Shanxi Fujian INTERNET INTERNET ADSL ADSL ADSL ADSL ADSL SecVPN100 SecVPN100 DRO-20 SecVPN100 SecVPN100 branches branches branches branches branches

  50. Network of Agriculture Bank of China Guangdong:2000 Jiangsu:2000 Shanxi:600 Shanghai:400 Hainan:300 Guangxi:500 Heilongjiang:300 Liaoning:500 ………………………… City Branches 100M 155M SDH City Branches 2M SDH 1000M branches 2M SDH/MSTP 2M SDH/MSTP 2M SDH/MSTP DRO-20/R2700 DRO-20/R2700 DRO-20/R2700 Node Node Node SW SW SW Service Office Service Office Service Office

More Related