700 likes | 1.72k Views
MXK Training Module 7a GPON: From unwrapping the box to running triple-play. From unwrapping the box to running triple-play. This modules covers The practical steps to set up a triple play system using both CLI and WebUI Setting up management Downloading and creating SmartOMCI profiles
E N D
MXK TrainingModule 7aGPON: From unwrapping the boxto running triple-play
From unwrapping the box to running triple-play This modules covers The practical steps to set up a triple play system using both CLI and WebUI Setting up management Downloading and creating SmartOMCI profiles Setting up bridges Connecting ONTs Verifying operation
Example network Scenario One residential GPON customer with 3Play services, HSIA, IPTV and VOIP One business customer Two physical locations, both connected to the same MXK sharing an uplink to a HQ further up in the core
Example network, cont’d HSIA vlan 500 Active ethernet VOIP vlan 700 IPTV vlan 900 GPON MGMT vlan 10 Lan2Lan vlan 300 & 400
Example network, cont’d VLANs used in this example Management VLAN 10, terminates at the MXK Residential VLAN 500 – HSIA (Asymmetric) VLAN 700 – VOIP (Asymmetric) VLAN 900 – IPTV (Asymmetric) Business VLAN 300 and 400 (TLS)
Example network, cont’d Traffic profiles used in this example Bridge rules Rule #1 – Limit traffic to 200M Rule #2 – Limit traffic to 10M Rule #3 – Limit traffic to 0.5M GPON traffic profiles (applies to ingress GPON only) Rule #1 – Limit traffic to 10M – guarantee 5M (UBR) Rule #2 – Limit traffic to 0.5M – guarantee 0.5M (CBR)
Example network, cont’d Interfaces used in this example Interface towards core network 1-a-4-0/eth Business user on AE, 1-2-1-0/eth Residential user on GPON ONU 1/1/1 Translates into GEM ports 1-1-1-501/gponport for HSIA, 1-1-1-701/gponport for VOIP and 1-1-1-901/gponport for IPTV.
Example network, cont’d Business users (delivered on a physical 1G connection) Primary office-to-office connection; 200M symmetric service Create a bridge rule: ratelimitdiscard @ 200M, apply to both ingress and egress Office-to-internet connection; 10M symmetric service Create a bridge rule: ratelimitdiscard @ 10M, apply to both ingress and egress Residential users HSIA; 10M symmetric service Create a GPON traffic profile: 5/10M for ingress and reuse bridge rule @ 10M VOIP; 0.5M symmetric service Create a GPON traffic profile: 0.5M/0.5M for ingress and create a bridge rule @ 0.5M IPTV; 0.5M/unlimited (U/D) service Reuse GTP @ 0.5Ms
CLI Example 1: Configuration using CLI
Tasks Installing the MXK unit Set up management Set up additional services Provision cards Creating traffic rules Creating bridges Download and create SmartOMCI profiles (GPON) Assigning ONTs (GPON) Verifying the setup
Step 1 – Installing the MXK unit Please refer to the MXK Hardware Installation Guide for installation instructions
Step 2 – Set up management Set the unit to factory default and reboot zSH> set2default Create a management IP address in our management VLAN, number 100 and set our default route zSH> interface add 1-a-4-0/eth vlan 10 10.0.0.42/24 zSH> route add default 10.0.0.1 1
Step 3 – Set up additional services Set the user prompt – allows us to easily see which system we have logged on zSH> setprompt user mxk# Add a syslog server – logs will be sent here mxk# new syslog-destination address = 10.0.0.1 1 Make sure we have a correct time on our box mxk# update ntp-client-config primary-ntp-server-ip-address = 10.0.0.1 local-timezone = centraleuropean 0 Add support for DNS, enables us to use names instead of addresses in commands like “ping server.company.com” mxk# new resolver query-order = dns-first domain = "int.zhone.se" first-nameserver = 10.0.0.1 1
Step 3 – Set up additional services Add a RADIUS server to query for authentication attempts – enables us to have a centralized user database mxk# new radius-client server-name = "ns.int.zhone.se" shared-secret = "verysecret" 1/1 Switch from local user authentication to the use the RADIUS just configured, note that we are not using only RADIUS, but “radiusthenlocal”. In case the RADIUS fails, local authentication will be used mxk# update system userauthmode = radiusthenlocal radiusauthindex = 1 0
Step 4 – Provision cards Which cards do we have installed (but not provisioned)? mxk# slots Uplinks a:*MXK TWO TENGIGE EIGHT GIGE (RUNNING) Cards 1: MXK 4 PORT GPON (NOT_PROV) 2: MXK 20 ACT ETH (NOT_PROV) Add the cards zSH> card add 1 new card-profile 1/1/10205 added, sw-file-name "mxlc4gp.bin" zSH> card add 2 new card-profile 1/2/10200 added, sw-file-name "mxlc20ae.bin"
Step 4 – Provision cards Wait for both cards to load. When they are in RUNNING state, proceed to the next step. Monitor loading progress using “bootstate <n>” where n is the slot number. mxk# slots Uplinks a:*MXK TWO TENGIGE EIGHT GIGE (RUNNING) Cards 1: MXK 4 PORT GPON (LOADING) 2: MXK 20 ACT ETH (LOADING)
Step 4 – Provision cards Both cards are now in RUNNING mode, proceed to the next step mxk# slots Uplinks a:*MXK TWO TENGIGE EIGHT GIGE (RUNNING) Cards 1: MXK 4 PORT GPON (RUNNING) 2: MXK 20 ACT ETH (RUNNING)
Step 5 – Creating traffic rules For our example we need five different rules; two for the GPON connection and three for the bridge interfaces The rules can be applied either when creating the bridge or afterwards on an already existing bridge Create bridge rule #1 (200M), #2 (10M) and #3 (0.5M) mxk# rule add ratelimitdiscard 1/1 rate 200000 mxk# rule add ratelimitdiscard 2/1 rate 10000 mxk# rule add ratelimitdiscard 3/1 rate 500 Create GTP rule #1 (5/10M) and #2 (0.5M) zSH> new gpon-traffic-profile dba-enabled = true dba-fixed-us-ubr-bw = 5120 dba-max-us-bw = 10240 1 zSH> new gpon-traffic-profile dba-enabled = true dba-fixed-us-cbr-bw = 512 dba-max-us-bw = 512 2
Step 6 – Creating bridges In our example, we are using six different VLANs; 100 for management, 300 and 400 for our business user and 500, 700 and 900 for our residential user. VLAN 100 is already configured by setting our management interface to VLAN 100. VLAN 100 is terminated at the MXK and will not reach any end user. The business user needs to use TLS bridges since they need to communicate directly user-to-user over the MXK. The residential user will be using the asymmetric bridge using uplinks and downlinks. This will enforce user isolation.
Step 6 – Creating bridges Create the bridges for the residential user. This step is only done once per MXK system (and service) First we create the uplink bridge mxk# bridge add 1-a-4-0/eth uplink vlan 500 mxk# bridge add 1-a-4-0/eth uplink vlan 700 mxk# bridge add 1-a-4-0/eth uplink vlan 900 Then we create the bridge-paths. The bridge-path will act as a route for layer two traffic. Note that VLAN 900 will be used for IGMP. mxk# bridge-path add ethernet4-500/bridge vlan 500 default mxk# bridge-path add ethernet4-700/bridge vlan 700 default mxk# bridge-path add ethernet4-900/bridge vlan 900 default igmpsnooping enable igmptimer 30
Step 6 – Creating bridges Create the downlink bridges. This step is done once per added user. bridge add 1-1-1-501/gponport gtp 1 downlink vlan 500 tagged epktrule 2 bridge add 1-1-1-701/gponport gtp 2 downlink vlan 700 tagged epktrule 3 bridge add 1-1-1-901/gponport gtp 2 downlink vlan 900 tagged video 0/2 Line one adds the HSIA bridge, vlan 500. GTP 1 specifies 10M upstream, epktrule 2 specifies 10M downstream. Line two adds the VOIP bridge, vlan 700. GTP 2 specifies 0.5M upstream, epktrule 3 specifies 0.5M downstream. Line three adds the IPTV bridge, vlan 900. GTP 2 specifies 0.5M upstream. “video 0/2” specifies no multicast ACL and two simultaneous IPTV streams.
Step 6 – Creating bridges Create the business bridges. These will be set up using TLS. Note that there is no up- or downlink side of the bridge. bridge add 1-a-4-0/eth tls vlan 300 tagged bridge add 1-2-1-0/eth tls vlan 300 tagged epktrule 1 ipktrule 1 bridge add 1-a-4-0/eth tls vlan 400 tagged bridge add 1-2-1-0/eth tls vlan 400 tagged epktrule 2 ipktrule 2 These commands add the interfaces for VLAN 300 and 400. The bridge packet rules are applied on the user facing interfaces. ipktrule 1 specifies a 200M limit, epktrule 2 specifies a 10M limit.
Step 7 – Download and create SmartOMCI profiles (GPON) With your favorite browser, open http://www.zhone.com Under Services & Support, click Downloads Click Smart OMCI Configuration Utility In Select device select your ONT, e.g. ZNID-GPON-2510 In the next page, enter the parameters suitable for your service profile. In our example network, we have one Ethernet port (Eth#1) for HSIA and one Ethernet port for IPTV (Eth #2) Select which GEM port to connect to each LAN port Select the GEM port for the VOIP connection and which POTS port you would like to have enabled
Step 7 – Download and create SmartOMCI profiles (GPON) Create and download your Smart OMCI file Using your favorite TFTP server software, transfer the file from your PC to the MXK mxk# file download 192.168.240.1 2510.txt 2510.txt
Step 7 – Download and create SmartOMCI profiles (GPON) Create the ME profile mxk# gpononu profiles create me me2510-3p 2510.txt Create the GENERIC profile mxk# gpononu profiles create gen gen2510-3p me2510-3p Update the GENERIC profile with your settings mxk# gpononu profiles update gen gen2510-3p Using the built-in editor, change the following parameters as specified on the next slide, then save the profile
Step 7 – Download and create SmartOMCI profiles (GPON) Create the SPECIFIC profile mxk# gpononu profiles create spec 1/1/1 me2510-3p gen2510-3p Update the SPECIFIC profile mxk# gpononu profiles update spec 1/1/1 Using the built-in editor, change the following parameters as specified, then save the profile
Step 8 – Assigning ONTs (GPON) Connect your ONTs to the GPON fiber When the ONT ranges and is discovered by the MXK, an alarm will be raised. alert : Minor Unassigned ONU serial number 1 for OLT1 found If more than one ONT is added, use the serial number to distinguish between different ONTs (the serial number is printed on the ONT) mxk# gpononu show <output omitted> Discovered serial numbers for slot 1 olt 1: sernoID Vendor Serial Number 1 ZNTS 138543922
Step 8 – Assigning ONTs (GPON) Assign your ONT to a logical ONU number by using the “gpononu set” command mxk# gpononu set 1/1/1 1 meprof me2510-3p genprof gen2510-3p Onu 1 successfully enabled with serial number ZNTS 138543922 The console will log the following output Minor Unassigned ONU serial number 1 for OLT1 no longer present Minor ONU Up Line 1/1/1/1/gpononu CAUSE: active gponomci: OMCI operation succeeded, ONU(1/1/1) Look for “OMCI operation succeeded”. This indicates that the parameters were accepted by the ONT
Step 9 – Verifying the setup mxk# bridge show Type VLAN Bridge St Table Data --------------------------------------------------------------------------- upl Tagged 500 ethernet4-500/bridge UP S VLAN 500 default upl Tagged 700 ethernet4-700/bridge UP S VLAN 700 default upl Tagged 900 ethernet4-900/bridge UP S VLAN 900 default dwn Tagged 500 1-1-1-501-gponport-500/bridge UP dwn Tagged 700 1-1-1-701-gponport-700/bridge UP D 00:19:c7:02:9d:4b dwn Tagged 900 1-1-1-901-gponport-900/bridge UP VLAN 700 is now showing the MAC address of the ONT – this means that the ONT is requesting a DHCP address.
Tasks – Configuration via WEBUI Installing the MXK unit Set up management Set up additional services Provision cards Creating traffic rules Creating bridges Download and create SmartOMCI profiles (GPON) Assigning ONTs (GPON) Verifying the setup
Step 1 – Installing the MXK unit Please refer to the MXK Hardware Installation Guide for installation instructions
Step 2 – Set up management Set the unit to factory default and reboot zSH> set2default Create a management IP address in our management VLAN, number 100 and set our default route zSH> interface add 1-a-4-0/eth vlan 10 10.0.0.42/24 zSH> route add default 10.0.0.1 1
Step 3 – Set up additional services With your favorite browser, open the management address of the MXK. Make sure we have a correct time on our box System, Device, Information, Network time protocol: Add the server Add support for DNS, enables us to use names instead of addresses in commands like “ping server.company.com” Configuration, Advanced, DNS Resolver, Set Query order = dnsfirst First name server = 10.0.0.1
Step 3 – Set up additional services Add a RADIUS server to query for authentication attempts – enables us to have a centralized user database System, Management, RADIUS, Clients, Create: Add your server Switch from local user authentication to the use the RADIUS just configured, note that we are not using only RADIUS, but “radiusthenlocal”. In case the RADIUS fails, local authentication will be used System, Management, RADIUS, General, Edit: Change to RadiusThenLocal Enable SSH instead of TELNET System, Information, General, Edit: Set secure to enabled
Step 4 – Provision cards To add the cards – for each card, do Configuration, Cards, Select the card, Add and apply
Step 5 – Creating traffic rules For our example we need five different rules; two for the GPON connection and three for the bridge interfaces The rules can be applied either when creating the bridge or afterwards on an already existing bridge Create bridge rule #1 (200M), #2 (10M) and #3 (0.5M) For each rule, do: Configuration, Advanced, Bridge packet rule, Create: Group I, Member 1, Type RateLimitDiscard, Set Rule value and Create Create GTP rule #1 (10M) and #2 (0.5M) For each rule, do: Configuration, Advanced, GPON traffic profile, Create: Index I, Set bandwidth and Create
Step 6 – Creating bridges In our example, we are using six different VLANs; 100 for management, 300 and 400 for our business user and 500, 700 and 900 for our residential user. VLAN 100 is already configured by setting our management interface to VLAN 100. VLAN 100 is terminated at the MXK and will not reach any end user. The business user needs to use TLS bridges since they need to communicate directly user-to-user over the MXK. The residential user will be using the asymmetric bridge using uplinks and downlinks. This will enforce user isolation.
Step 6 – Creating bridges Create the bridges for the residential user. This step is only done once per MXK system (and service) First we create the uplink bridges For each bridge, do: Configuration, Data bridged, Uplink Bridge, Create Type = Uplink, VLAN type = Single tagged, set VLAN ID and apply For each video/IGMP bridge, do: Configuration, Video bridged, Uplink Bridge, Create Type = Uplink, VLAN type = Single tagged, set VLAN ID and apply The bridge-paths are created automatically.
Step 6 – Creating bridges Create the downlink bridges. This step is done once per added user. For each bridge, do: Configuration, Data Bridged, Connections, Create Set GEM port, ONU port, GPON Traffic profile, Type = Downlink, VLAN type = Single tagged, set VLAN ID, Egress Group Index and Apply For each video/IGMP bridge, do: Configuration, Video Bridged, Connections, Create Set GEM port, ONU port, GPON Traffic profile, Type = Downlink, VLAN type = Single tagged, set VLAN ID and Apply
Step 6 – Creating bridges Create the business bridges. These will be set up using TLS. For each bridge on the “network” side, do: Configuration, Data Bridged, Uplink Bridge, Create Select card and interface, Type = Transparent Lan Service, VLAN type = Single tagged, set VLAN ID, Ingress and Egress Group Index and Apply For each bridge on the “user” side, do: Configuration, Data Bridged, Connection, Create Select card and interface, Type = Transparent Lan Service, VLAN type = Single tagged, set VLAN ID, Ingress and Egress Group Index and Apply
Step 7 – Download and create SmartOMCI profiles (GPON) With your favorite browser, open http://www.zhone.com Under Services & Support, click Downloads Click Smart OMCI Configuration Utility In Select device select your ONT, e.g. ZNID-GPON-2510 In the next page, enter the parameters suitable for your service profile. In our example network, we have one Ethernet port (Eth#1) for HSIA and one Ethernet port for IPTV (Eth #2) Select which GEM port to connect to each LAN port Select the GEM port for the VOIP connection and which POTS port you would like to have enabled
Step 7 – Download and create SmartOMCI profiles (GPON) Create and download your Smart OMCI file Using your favorite TFTP server software, transfer the file from your PC to the MXK System, File, Download, Set IP and the From and To filenames then click Apply
Step 7 – Download and create SmartOMCI profiles (GPON) Create the ME profile Configuration, Port, GPON, Profiles, ME, Select Filename and set the ME profile name Create the GENERIC profile Configuration, Port, GPON, Profiles, Generic, Specify the parent ME profile, then click Create Change the following parameters as specified on the next slide, then click Apply. Enter the name of the profile in the first textbox (“Generic Profile”)
Step 7 – Download and create SmartOMCI profiles (GPON) Create the SPECIFIC profile Configuration, Port, GPON, Profiles, Specific, Select the ME and Generic profiles then click Create Change the following parameters as specified, then save the profile. Note that a specific profile might be applied to multiple ports
Step 8 – Assigning ONTs (GPON) Connect your ONTs to the GPON fiber Assign your ONT to a logical ONU number Configuration, Port, GPON, Port, ONU, Provision, Select ONU port, check Vendor ID, Vendor Specific ID and ONU Added. Use the Vendor Specific ID list to select the correct ONT. Click Apply
Step 9 – Verifying the setup Verify the setup by viewing the learnt MAC addresses in the forwarding table Status, Service, Bridging, Address Status