1 / 22

Layer 2 Extensions for Data Center Interconnect with Catalyst 6500

Layer 2 Extensions for Data Center Interconnect with Catalyst 6500. Belmont Chia Consulting System Engineer Data Center Network Architecture. Agenda. Problem Statement Transport Options Dark Fiber MPLS IP Encryption. Problem Statement. Why Layer 2 across Data Centers Geocluster

winola
Download Presentation

Layer 2 Extensions for Data Center Interconnect with Catalyst 6500

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Layer 2 Extensions for Data Center Interconnect with Catalyst 6500 Belmont Chia Consulting System Engineer Data Center Network Architecture

  2. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  3. Problem Statement • Why Layer 2 across Data Centers • Geocluster • Legacy applications (hard-coded IP) • Redundant configurations (HSRP/VRRP, heartbeats, etc) • Provide layer 2 connectivity between data centers with: • Redundant Paths • STP Isolation • Failover within <4 seconds • Load balancing • Scalable • Encryption (optional)

  4. DC Core Aggregation Access DC Interconnect – Transport Options Site A Site B Dark Fiber MPLS IP Site D Site C

  5. L2 Extension Transport Options • Dark Fiber • Applicable for Short Distances (< 100km) • MPLS • Applicable if Enterprise is ready to deploy MPLS in core • MPLS service can be self-deployed or as managed service from SP (directly attached L2VPN or Carrier supporting Carrier) • IP • Applicable for majority of customers with no Dark Fiber or MPLS

  6. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  7. DC Core Aggregation Access DC Interconnect – Dark Fiber Site A Site B • Assumes dark fiber between sites • Distance limitations are given by DWDM • Number of sites can be 2 or more Site D Site C

  8. DC Interconnect – Dark Fiber Site A Site B • Add 2 switches in main data centers • Switches use separate lambda to interconnect • These switches will form a VSS • Use DWDM X2 to build VSL* Site D Site C

  9. DC Interconnect – Dark Fiber Site A Site B • Repeat similar principle for all sites A B Site D Site C

  10. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  11. DC Core Aggregation Access DC Interconnect – MPLS Site A Site B EoMPLS / VPLS MPLS Site D Site C

  12. with EEM to enable the backup PW L2 extension Loop PreventionEoMPLS PW Site B Site A Backup PW into Core Local STP Local STP EoMPLS PW-redundancy Loop-free interconnexion for dual sites VLAN extension Native Port xconnect New solution under validation

  13. L2 extension Loop Prevention VPLS Per VLANVFI Site A Per VLANalternate path Only Local STP PW redundancy into PE L2 Core L2 Core Local STP Local STP

  14. Layout for multiple DCs

  15. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  16. DC Core Aggregation Access DC Interconnect – IP Site A Site B EoMPLSoGRE / VPLSoGRE GRE Tunnels IP Requires Whitney 2 SIP-400 for WAN uplinks

  17. DC Interconnect using EoMPLSoGRE 12.2(33)SXI feature Edge only functionality using SIP400 Site A IP Core SIP-400 GRE Tunnels EoMPLSLSoGRE Site B SIP-400 EoMPLSoGRE

  18. VPLSoGRE GRE Tunnels VPLSoGRE VPLSoGRE DC Interconnect using VPLSoGRE SIP-400 12.2(33)SXI feature Edge only functionality using SIP400 Site C Site A IP Core SIP-400 Site B SIP-400

  19. Agenda • Problem Statement • Transport Options • Dark Fiber • MPLS • IP • Encryption

  20. Encrypted L2 extensionusing ATOMoGRE • Nowadays IPSec is the main encryption mecanism • IPSEC requires IP packets • L2 are not IP packets • Today, no native L2oIP solution is existing • L2oGRE is acting as L2oIP and so can be encrypted • EoMPLS for point to point solution • VPLS for multipoint solution • Requires either: • Two boxes solution (one for L2VPNoGRE, one for IPSec) • One box solution with a wrap cable

  21. GRE VPLS o GRE o IPSEC in one boxwith wrap-cable Core port any Ethernet port VRFcore L3 VPN-SPA Crypto VRFedge • Wrap ports • ingres is SIP-400 • egress is any port SIP-400 VPLS PW GRE • To integrate both function in one box: • Use VRFs to isolate routing • One VRF for edge link • One VRF for Core links • Wrap cable to connect SIP-400 toward VRF

  22. Key Takeaways The Key Takeaways of this presentation are: • Catalyst 6500 offers multiple solutions for extending Layer 2 between multiple Data Centers • VSS with DWDM on Catalyst 6500 offers a 10G multipoint solution • ATOMoGRE with SIP-400 offers a 1G multipoint solution for L2 extensions over a WAN with IP or MPLS core • L2 extension options on Catalyst 6500 are redundant, scalable and secure.

More Related