Download
layer 2 extensions for data center interconnect with catalyst 6500 n.
Skip this Video
Loading SlideShow in 5 Seconds..
Layer 2 Extensions for Data Center Interconnect with Catalyst 6500 PowerPoint Presentation
Download Presentation
Layer 2 Extensions for Data Center Interconnect with Catalyst 6500

Layer 2 Extensions for Data Center Interconnect with Catalyst 6500

511 Views Download Presentation
Download Presentation

Layer 2 Extensions for Data Center Interconnect with Catalyst 6500

- - - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript

  1. Layer 2 Extensions for Data Center Interconnect with Catalyst 6500 Belmont Chia Consulting System Engineer Data Center Network Architecture

  2. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  3. Problem Statement • Why Layer 2 across Data Centers • Geocluster • Legacy applications (hard-coded IP) • Redundant configurations (HSRP/VRRP, heartbeats, etc) • Provide layer 2 connectivity between data centers with: • Redundant Paths • STP Isolation • Failover within <4 seconds • Load balancing • Scalable • Encryption (optional)

  4. DC Core Aggregation Access DC Interconnect – Transport Options Site A Site B Dark Fiber MPLS IP Site D Site C

  5. L2 Extension Transport Options • Dark Fiber • Applicable for Short Distances (< 100km) • MPLS • Applicable if Enterprise is ready to deploy MPLS in core • MPLS service can be self-deployed or as managed service from SP (directly attached L2VPN or Carrier supporting Carrier) • IP • Applicable for majority of customers with no Dark Fiber or MPLS

  6. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  7. DC Core Aggregation Access DC Interconnect – Dark Fiber Site A Site B • Assumes dark fiber between sites • Distance limitations are given by DWDM • Number of sites can be 2 or more Site D Site C

  8. DC Interconnect – Dark Fiber Site A Site B • Add 2 switches in main data centers • Switches use separate lambda to interconnect • These switches will form a VSS • Use DWDM X2 to build VSL* Site D Site C

  9. DC Interconnect – Dark Fiber Site A Site B • Repeat similar principle for all sites A B Site D Site C

  10. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  11. DC Core Aggregation Access DC Interconnect – MPLS Site A Site B EoMPLS / VPLS MPLS Site D Site C

  12. with EEM to enable the backup PW L2 extension Loop PreventionEoMPLS PW Site B Site A Backup PW into Core Local STP Local STP EoMPLS PW-redundancy Loop-free interconnexion for dual sites VLAN extension Native Port xconnect New solution under validation

  13. L2 extension Loop Prevention VPLS Per VLANVFI Site A Per VLANalternate path Only Local STP PW redundancy into PE L2 Core L2 Core Local STP Local STP

  14. Layout for multiple DCs

  15. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  16. DC Core Aggregation Access DC Interconnect – IP Site A Site B EoMPLSoGRE / VPLSoGRE GRE Tunnels IP Requires Whitney 2 SIP-400 for WAN uplinks

  17. DC Interconnect using EoMPLSoGRE 12.2(33)SXI feature Edge only functionality using SIP400 Site A IP Core SIP-400 GRE Tunnels EoMPLSLSoGRE Site B SIP-400 EoMPLSoGRE

  18. VPLSoGRE GRE Tunnels VPLSoGRE VPLSoGRE DC Interconnect using VPLSoGRE SIP-400 12.2(33)SXI feature Edge only functionality using SIP400 Site C Site A IP Core SIP-400 Site B SIP-400

  19. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  20. Encrypted L2 extensionusing ATOMoGRE • Nowadays IPSec is the main encryption mecanism • IPSEC requires IP packets • L2 are not IP packets • Today, no native L2oIP solution is existing • L2oGRE is acting as L2oIP and so can be encrypted • EoMPLS for point to point solution • VPLS for multipoint solution • Requires either: • Two boxes solution (one for L2VPNoGRE, one for IPSec) • One box solution with a wrap cable

  21. GRE VPLS o GRE o IPSEC in one boxwith wrap-cable Core port any Ethernet port VRFcore L3 VPN-SPA Crypto VRFedge • Wrap ports • ingres is SIP-400 • egress is any port SIP-400 VPLS PW GRE • To integrate both function in one box: • Use VRFs to isolate routing • One VRF for edge link • One VRF for Core links • Wrap cable to connect SIP-400 toward VRF

  22. Key Takeaways The Key Takeaways of this presentation are: • Catalyst 6500 offers multiple solutions for extending Layer 2 between multiple Data Centers • VSS with DWDM on Catalyst 6500 offers a 10G multipoint solution • ATOMoGRE with SIP-400 offers a 1G multipoint solution for L2 extensions over a WAN with IP or MPLS core • L2 extension options on Catalyst 6500 are redundant, scalable and secure.