04 EVC and L2 Services

2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1

ASR 9000 Training

Cisco EVC L2

2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential BRKBBA-2002 2

Cisco EVC (Ethernet Virtual Circuit) L2 ASR 9000:

L2 -

Local Connect

EoMPLS

PW Redundancy

Multi-Segment PW

L2

(Bridging)

VPLS H-VPLS

E-Tree

L2 Cisco 7600


. Cisco EVC

Cisco EVC ASR 9000 Cisco 7600


Access! Edge!

BRAS

SR/PE

DPI

Core Network MPLS /IP

Identity Address Mgmt

Portal Subscriber Database

Monitoring Policy Definition

Billing

Content Farm

VOD TV SIP

DSL Residential

STB

Content Farm

VOD TV SIP

Mobile

ETTx

PON

MSPP

Cable

Business

Corporate

Residential

STB

Policy Control Plane (per subscriber)

Aggregation!

MetroEthernet -

Residential Data/Voice

Business E-LAN

Business L3 VPN

Residential IPTV/VoD Business

E-LINE

Ethernet (.1Q, QinQ, .1ad) Ethernet VLAN (, , ) VLAN VLAN H-QoS (IEEE, MEF, IETF, ) , OAM, ..


Ethernet/IP

1 data/VoIP 101 IPTV/VoD - 10

N data/VoIP 200 IPTV/VoD - 10

- 1 L2 P2P 11 L2 MP 12 L3VPN - 13

- 2 L2 P2P 11 L2 MP 12 L3VPN - 13

S-tag -

Aggregation PE

MSE

BNG

:

: L2 L3

VLAN

VLAN /


Cisco EVC ASR 9000

EFP (Ethernet Flow Point)

sub-interface

VLAN

VLAN

(.1Q, QinQ, .1ad)

QoS

L2 L3, P2P MP

(H-)VPLS

EoMPLS PW

EoMPLS PW

EoMPLS PW

L3 SubI/F

X

Bridging

Bridging

Routing

IRB Routing and Bridging

IRB

X


EVC IOS-XR IOS

EVC VLAN, VLAN

7600 IOS VLAN, VLAN , IOS service instance EFP switchport ( EFP )

ASR 9000 IOS-XR , IOS XR. VLAN . l2vpn L2 L3


EFP: IOS XR (ASR9000)

interface 0/0/slot/port. [l2transport] (VLAN tags) (L3 configuration) (VLAN tags push/pop/translate) (QoS, ACL, etc)

IPv4/IPv6 l2transport

IPv4/IPv6 L2 rewrite

()


EFP: IOS (7600)

interface

sub-interface service instance X service instance Y

Per Port Per EVC Features


Per Port Features

Per Sub-interface Features (L3)

Layer 2 Services

Bridging (VPLS via SVI) xconnect (EoMPLS) Local Connect L3/VRF termination

interface

service instance ethernet ID is per interface scope

VLAN tags (CoS, Ethertype)

VLAN tags pop/push/translation

bridge-domain, xconnect or local connect

QoS, ACL, etc


VLAN

RP/0/RSP0/CPU0:PE2-asr(config)#int gig 0/0/0/4.100 l2transport RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation ? default Packets unmatched by other service instances dot1ad IEEE 802.1ad VLAN-tagged packets dot1q IEEE 802.1Q VLAN-tagged packets untagged Packets with no explicit VLAN tag RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation dot1q 100-200,205 ? comma comma exact Do not allow further inner tags RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation dot1q 100 second-dot1q 10-20,35 ? comma comma exact Do not allow further inner tags RP/0/RSP0/CPU0:PE2-asr(config-subif)#encapsulation dot1ad 20 dot1q 10-20 ? comma comma exact Do not allow further inner tags

Double tag

Single tag

Multiple tag

.1q / .1ad

Untagged

Default tag


Cisco EVC

exact encap dot1q 10 , 10:

encap dot1q 10 sec 50 10 50

10

50 10

50

4 50

10

10


EFP, , , EFP

EFP , ( )

VLAN 10 VLAN 20

VLAN 10 VLAN 20 VLAN 50

EFP

VLAN 10 VLAN 20

VLAN 50

EFP

EFP: encapsulation default


Cisco EVC :

EFP

10

200 10

100 10

130 10

VLAN 10

S-VLAN 10 C-VLAN 100

S-VLAN 10 C-VLAN 128-133

EFP

Longest Match


Longest Match:

encap dot1q 10 second-dot1q 15-30 exact encap dot1q 10 second-dot1q 15-30 encap dot1q 10 second-dot1q any encap dot1q 10-20 exact encap dot1q 10-20 Untagged Encapsulation default


VLAN RP/0/RSP0/CPU0:PE2-asr(config)#int gig 0/0/0/4.100 l2transport RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag ? pop Remove one or more tags push Push one or more tags translate Replace tags with other tags RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag pop ? 1 Remove outer tag only 2 Remove two outermost tags RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag push ? dot1ad Push a Dot1ad tag dot1q Push a Dot1Q tag RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag push dot1q 100 ? second-dot1q Push another Dot1Q tag symmetric All rewrites must be symmetric RP/0/RSP0/CPU0:PE2-asr(config-subif)#rewrite ingress tag translate ? 1-to-1 Replace the outermost tag with another tag 1-to-2 Replace the outermost tag with two tags 2-to-1 Replace the outermost two tags with one tag 2-to-2 Replace the outermost two tags with two other tags

1 2

1 2

1-1

1-2

2-1

2-2


. L2 -

Local Connect EoMPLS

PW Redundancy Multi-Segment PW


Local Connect EFP,

MAC-

VLAN rewrite

EFP configuration under interface Including VLAN tag encapsulation, tag rewrite, Qo/ACL features, etc Interface gig 0/0/0/1.101 l2transport encapsulation dot1q 101 second 10 rewrite ingress tag pop 2 Symmetric Interface gig 0/0/0/2.101 l2transport encapsulation dot1q 101 rewrite ingress tag pop 1 Symmetric Service configuration under l2vpn l2vpn xconnect group cisco p2p service1 local connect interface gig 0/0/0/1.101 interface gig 0/0/0/2.101


MPLS

EoMPLS

MPLS ; LDP ( RSVP-TE) MPLS LSP PE ( )

(Targeted, ) LDP PE VC ( )

PE (VC) EoMPLS

Attachment Circuit (AC) CE, Ethernet, subinterface/EFP

Pseudowire

PE P PE

LDP LDP

Targeted LDP

Attachment Circuit Attachment Circuit

P

Tunnel label

Customer PDU VC label

Customer PDU

Customer PDU


EoMPLS: MAC-

VLAN rewrite

EFP configuration under interface Including VLAN tag encapsulation, tag rewrite, Qo/ACL features, etc Interface gig 0/0/0/1.101 l2transport encapsulation dot1q 101 second 10 rewrite ingress tag pop 2 Symmetric Service configuration under l2vpn l2vpn xconnect group cisco p2p service2 EoMPLS interface gig 0/0/0/1.101 neighbor 1.1.1.1 pw-id 22


EoMPLS: (1)

MTU PE

. MTU


EoMPLS: (2)

VC Type (5=Ethernet, 4=VLAN) PE

VC Type 5 service-delimiting VLAN VC Type 4 service-delimiting VLAN ASR9000 7600 EoMPLS VC Type 5 , VC Type 4

VC Type 5 ASR9000 VLAN AC ( rewrite)

VC Type 4 ASR9000 VLAN ( , rewrite) AC AC

: service-delimiting rewrite ingress tag pop


CE

PE3 PE-CE PE3,

PW PE1 PE4. PW , PW

PE1

P

P

P

P

P

CE PE1 PE3

PE4

x

PW Redundancy


PW Redundancy

PW : Primary PW backup PW

backup PW Cold standby: Backup PWs . Backup PW , Warm standby[1]: Backup PWs control-plane data-plane . AC Fault code-point LDP Status Message backup PW, MC-LAG PW Preferential Forwarding Status Bits Hot standby: standby PW control plane data plane , . primary PW , Backup PW

Note [1] Hot-standby PW


PW Redundancy ASR 9000

PW LDP: Cold Standby: Warm Standby: pw-status l2vpn MC-LAG Hot Standby:

Primary PW AC ( CE) PE LDP PW status PE: o Route watch. loopback PE backup PW o T-LDP hello time out o VCCV over PW ,


EoMPLS PW Warm-Standby Redundancy Backup PW warm standby

Backup PW is pre-signaled, control plane is active, however, the forwarding plane is down. So called warm standby PW VCCV can go through backup PW to verify PW connectivity, but the end user traffic wont pass Upon detecting primary PW down, PW status message is sent to bring up backup PW forwarding plane PW status need to be enabled on ASR 9000 (it is disabled by default)

PW PW fail back to original primary PW only if the original primary PW is ready

PW Redundancy MS-PW PW redundancy is only configured on the T-PE, not S-PE. Any PW segment failure in the primary path will cause the T-PE switchover to backup PW


ASR 9000 L2VPN PW Redundancy P2P EoMPLS PW redundancy H-VPLS spoke PW redundancy One-way PW redundancy and two-way PW redundancy (with MC-LAG) PW status message (warm standby PW) MC-LAG PW Preferential Forwarding Status Bits (warm standby PW) VPLS/H-VPLS: LDP MAC withdrawal MS-PW PW redundancy (PW redundancy is configured ONLY on the

terminate PE, not stitching PE)


PW Redundancy: EFP configuration under interface Including VLAN tag encapsulation, tag rewrite, Qo/ACL features, etc Interface gig 0/0/0/1.101 l2transport encapsulation dot1q 101 second 10 rewrite ingress tag pop 2 Symmetric Service configuration under l2vpn L2vpn pw-status Enable PW status signalling (Warm-standby PW redundancy) xconnect group cisco p2p service2 EoMPLS interface gig 0/0/0/1.101 neighbor 1.1.1.1 pw-id 22 backup neighbor 2.2.2.2 pw-id 33 PW Redundancy


Multi-Segment Pseudowire (MS-PW)

MPLS

AS3 AS2 AS1 Subscriber1 Subscriber1

SubscriberN SubscriberN


ASBR1 ASBR2

AS 1 AS 2

PE2 PE1

Multi-Segment Pseudowire (MS-PW)

MPLS MPLS

MPLS link

Multi-segment PW

MS-PW PE1 PE2

ASBR S(witching)-PE S-PE 7600 ( )

S-PE T-PE S-PE T-PE

l2vpn

xconnect group cisco p2p service-interas

neighbor 2.2.2.2 pw-id 100 neighbor 3.3.3.3 pw-id 101


ASR 9000 MS-PW Feature Supported Only LDP is supported (no BGP-AD) at S-PEs At T-PEs, the PWs can belong to a xconnect (VPWS) or to a bridge-domain

(VPLS)

Each PW segment can be dynamic or static LSP ping and traceroute. New LDP PW Switching Point TLV (S-TLV) is

supported. S-TLV can be hidden for security

PW redundancy is supported at T-PEs but not at S-PEs S-PEs relay LDP Mac Withdrawal messages from one PW segment to the

other


. L2

(Bridging) VPLS H-VPLS


VPLS (Virtual Private LAN Services)

Attachment Circuit (AC) Ethernet VLAN

Virtual Circuit () EoMPLS PE , full mesh

Virtual Forwarding Instance (VFI) L2 AC VC (); VFI=VLAN=

MPLS

VFI

VFI

VFI

Attachment Circuit

VLAN

Virtual Forwarding Instance -

EoMPLS


VPLS Layer 2 Packet Forwarding

Flooding/Forwarding [VLAN, Destination MAC Address] Unknown Ucast/Mcast/Broadcast

MAC Learning/Aging/Limit Dynamic learning based on Source MAC and VLAN Refresh aging timers with incoming packet MAC address table limit per VFI (VLAN)

MPLS

SVI

SVI SVI

AC

PW


VPLS

STP BPDU , STP

VPLS PW + split horizon

Full mesh PW PE,

Split horizon , MPLS PW, MPLS ( PW). AC. PW, Spoke H-VPLS

MPLS

SVI

SVI SVI

AC

PW


H-VPLS?

PW signaling overhead PE ( PE)

PW

signaling overhead

VPLS H-VPLS


H-VPLS - N-PE1

MPLS N-PE2

N-PE10

10.0.2.2 / 32

10.0.2.10 / 32

10.0.2.1 / 32

Gig 6/2 Gig 1/2

Gig 1/2

CE1 1.1.1.1 2222.2222.2221 CE2 1.1.1.2 2222.2222.2222

CE10 1.1.1.10 2222.2222.222a

MPLS

SVI

SVI

SVI

CE4 1.1.1.4 2222.2222.2224

CE3 1.1.1.3 2222.2222.2223

, Split-Horizon(SH) PW, SH PWs, No-Split-Horizon(NSH) PWs. , NSH PWs, SH NSH PWs

Hub PE EoMPLS PW

Spoke PE split-horizon Spoke PE

EoMPLS,

VPLS


L2 Multipoint : l2vpn bridge group cisco bridge-domain domain1 Interface gig 0/0/0/1.101 split-horizon group () Interface gig 0/0/0/2.101 split-horizon group bridge-domain domain2 vpls Interface gig 0/0/0/1.101 Interface gig 0/0/0/2.101 vfi cisco neighbor 192.0.0.1 pw-id 100 neighbor 192.0.0.2 pw-id 100 bridge-domain domain3 h-vpls Interface gig 0/0/0/1.101 neighbor 192.0.0.3 pw-id 100 spoke PW vfi cisco core PWs neighbor 192.0.0.1 pw-id 100 core PW neighbor 192.0.0.2 pw-id 100


MAC Learning ASR 9000

NP0 PHY

NP2 PHY

NP3 PHY

NP1 PHY FIA

CPU NP0 PHY

NP2 PHY

NP3 PHY

NP1 PHY FIA

CPU

Switch Fabric

MAC learning/aging/flushing

MAC Learning MAC learning /aging/flushing (NP)

MAC 4-5 () MAC NP

MAC NP MAC MAC notification , data-plane microcode


MAC Learning ASR 9000 (2) MAC - Trident

MAC , L3 FIB/ADJ L2 MAC . 512K MAC , L3 - 128K MAC, XL-L3 - 32K MAC - L3 FIB 1.3

MAC - Typhoon MAC ( L3 FIB) , profile 2M MAC 4M IPv4

RP/0/RSP0/CPU0:PE1(config)#hw-module profile scale ? default Default scale profile l3 L3 scale profile l3xl Extra large L3 scale profile


MAC MAC NP , CLI 3.9,

. (3.7. )

4.0 . MAC 16, , 3.9.

MAC ,

, CLI

show l2vpn forwarding bridge-domain mac-address loc 0/7/CPU0 To Resynchronize MAC table from the Network Processors, use the command... l2vpn resynchronize forwarding mac-address-table location Mac Address Type Learned from/Filtered on LC learned ResyncAge Mapped to -------------------------------------------------------------------------------- 0000.5e00.0101 dynamic Te0/7/0/1.100 0/7/CPU0 0d 0h 34m 40s N/A

After issuing the resync command, an info message will indicate when sync is complete.

l2vpn resyn forwarding mac loc 0/7/CPU0 l2fib[189]: %L2-L2FIB-5-MAC_TABLE_RESYNC_COMPLETE : The resynchronization of the MAC address table is complete 0/7/CPU0


. L2

E-Tree


E-Tree - Split-horizon

L2VPN E-Tree service configuration example l2vpn bridge group cisco bridge-domain domain1 Interface gig 0/0/0/1.101 split-horizon group optionally on AC Interface gig 0/0/0/2.101 neighbor 192.0.0.3 pw-id 100 split-horizon group optionally on access PW neighbor 192.0.0.4 pw-id 100 split-horizon group optionally on access PW

BD

Leaf Leaf

Leaf Root

H-VPLS spoke PW

L2 AC

E-Tree: Root leaf leaf root leaf leaf


. L2VPN 7600

L2 VPN P2P P2MP 7600


EFP: IOS (7600)

interface

sub-interface service instance X service instance Y



Per Port Features

Per Sub-interface Features (L3)

Layer 2 Services

Bridging (VPLS via SVI) xconnect (EoMPLS) Local Connect L3/VRF termination

interface

service instance ethernet ID is per interface scope

VLAN tags (CoS, Ethertype)

VLAN tags pop/push/translation

bridge-domain, xconnect or local connect

QoS, ACL, etc


SVI

SVI

SVI

SVI

VPLS

Local Connect

Bridging

EoMPLS

connect test gig1/0/0 10 gig1/0/1 20

xconnect

interface vlan 100 ** xconnect / IP address

L3*

bridge-domain 100 [split-horizon]***

EoMPLS

EFP

EFP

EVC:

*** EFP VLAN L2 ; split-horizon / EFP

BD

** L2/L3 bridge-domain ( VLAN) * L3 Switched Virtual Interface (SVI) sub-interface


EVC Configuration Comparison (1) L2VPN P2P service ASR 9000 7600

Local Connect interface GigabitEthernet4/1/0 service instance 101 ethernet encapsulation dot1q 101 second 10 rewrite ingress tag pop 2 Symmetric interface GigabitEthernet4/1/1 service instance 100 ethernet encapsulation dot1q 100 rewrite ingress tag pop 1 Symmetric connect eline-101 GigabitEthernet4/1/0 101 GigabitEthernet4/1/1 100

EoMPLS interface GigabitEthernet4/1/1 service instance 11 ethernet encapsulation dot1q 101 second-dot1q 60-70 xconnect 10.0.0.3 101 encapsulation mpls

PW stitching l2 vfi tac-training point-to-point neighbor 10.0.2.3 3001 encapsulation mpls neighbor 10.0.2.2 3000 encapsulation mpls

EFP configuration under interface Including VLAN tag encapsulation, tag rewrite, Qo/ACL features, etc Interface gig 0/0/0/1.101 l2transport encapsulation dot1q 101 second 10 rewrite ingress tag pop 2 Symmetric Interface gig 0/0/0/2.101 l2transport encapsulation dot1q 101 rewrite ingress tag pop 1 Symmetric Service configuration under l2vpn l2vpn xconnect group cisco p2p service1 local connect interface gig 0/0/0/1.101 interface gig 0/0/0/2.101 p2p service2 EoMPLS interface gig 0/0/0/3.101 neighbor 1.1.1.1 pw-id 22 p2p service3 PW stitching neighbor 2.2.2.2 pw-id 100 neighbor 3.3.3.3 pw-id 101


EVC Configuration Comparison (2) L2VPN MP bridging ASR 9000 7600

Local Bridging interface GigabitEthernet4/1/0 service instance 101 ethernet encapsulation dot1q 101-1000 bridge-domain 100 split-horizon interface GigabitEthernet4/1/1 service instance 101 ethernet encapsulation dot1q 101-1000 bridge-domain 100 split-horizon

(H-)VPLS & SVI based EoMPLS

interface GigabitEthernet4/1/0 service instance 2 ethernet encapsulation dot1q 20 bridge-domain 20 split-horizon interface GigabitEthernet4/1/1 service instance 2 ethernet encapsulation dot1q 20 bridge-domain 20 split-horizon l2 vfi vpls-20 manual VPLS vpn id 120 neighbor 10.0.0.1 encapsulation mpls core PW neighbor 10.0.0.2 encapsulation mpls no-split-horizon spoke PW neighbor 10.0.0.4 encapsulation mpls interface Vlan20 (H-)VPLS xconnect vfi vpls-20 interface Vlan20 SVI EoMPLS xconnect 10.0.0.1 101 encap mpls

EFP configuration under interface Including VLAN tag encapsulation, tag rewrite, Qo/ACL features, etc Same as L2VPN P2P services Service configuration under l2vpn l2vpn bridge group cisco bridge-domain domain1 local bridging Interface gig 0/0/0/1.101 split-horizon group Interface gig 0/0/0/2.101 split-horizon group bridge-domain domain2 SVI EoMPLS Interface gig 0/0/0/1.101 Interface gig 0/0/0/2.101 neighbor 192.0.0.1 pw-id 100 bridge-domain domain3 vpls & h-vpls Interface gig 0/0/0/1.101 neighbor 192.0.0.3 pw-id 100 spoke PW vfi cisco core PWs under VFI config neighbor 192.0.0.1 pw-id 100 neighbor 192.0.0.2 pw-id 100


Category Feature Name ASR 9000 7600 ES+

EVC Flexible VLAN tag classification Y, has exact option Y

Flexible Ethertype Y, per EFP based 88a8 and 8100 from FCS 9100 and 9200 support in 3.9.1.

Y, per port based, support 88a8, 8100, 9100 and 9200

Flexible tag rewrite Y, all Y, all

Flexible service mapping Y, all Y, all

Split-horizon on EFP Y, one group Y, one group

L2VPN Local connect Y, support hair-pinning on same port Y, support hair-pinning on same port

P2P EoMPLS Y, user configurable and auto negotiated VC type

Y, auto negotiated VC type. User configurable (SRE)

SVI based EoMPLS (see previous slide for the config on asr9k)

Y, under bridge-domain configuration. VC type 5 only, doesnt support PW redundancy

Y, under SVI,. User configurable (SRE) auto negotiated VC type

BGP signaling for EoMPLS Y N

VPLS and H-VPLS (both Ethernet and MPLS access)

Y, VC type 5 only Y, auto negotiated VC type, user configurable (SRE)

PW redundancy, with PW status Y, user can enable/disable MAC withdrawal by CLI

Y, MAC withdrawal always on

VPLS MAC withdrawal Y, user can enable/disable MAC withdrawal by CLI

Y, MAC withdrawal always on

BGP signaling and auto-discovery for VPLS

Y N

LDP signaling with BGP AD 3.9.2 Y

CE Features High Level Comparison (1)



L2VPN Inter-AS

MS-PW (point-to-point PW only) Y, static stitching Y, static stitching

Inter-AS option A Y Y

Inter-AS option C Y Y

OAM 802.3ah Y Y

CFM Y, 802.1ag-2007 pre-standard is NOT supported CFM over bundle in 3.9.1 CFM Exploratory Linktrace CFM automatic linktrace

Y, pre-standard, D1.0 802.1ag-2007 support in SRE CFM over bundle in SRE

Y.1731 Performance monitoring in 3.9, AIS in 3.9.1

AIS in SRD, ETH LCK SRE Performance Monitoring RLS8 or later

E-LMI 4.1 or later Y

QoS Ingress and egress hierarchical queueing/scheduling

Y, 4-level, support shared policy instance; ANCP, 2 PQ

Y, 4- level with SG in SRE, 3-level., EVC,SG, ISG sessions, 2PQ

Ingress and egress hierarchical policing

Y, 2-level hierarchical Y, 2-level hierarchical

classification Flexible L2-L4 classification, 2 tags aware, qos-group, discard-class support

Flexible L2-L4, 2 tags aware

marking All, CoS/DSCP transparency All, CoS/DSCP transparency

CE Feature High Level Comparison (2)



L2 Convergence

MST access gateway Y, inter-operate with REP access SRE release

MST over special PW N/A, use MST access gateway Y

REP N EVC support in SRE

REP access gateway 3.9.1 (not true/full REP) N/A, use REP

Flexlink N Not with EVC

PVST N Not with EVC

mLAG 4.0 SRE

L2 Security Storm Contol Y, per EFP or access PW Y, (PW support?)

MAC limit Y, per EFP/PW or per BD Y, (PW support?)

MAC security 4.0.1 Y

DHCP snooping Y (with option 82), not support over PW

Y with option 82

DAI 4.0.1 Y

IP source guard 4.0.1 Y

CE Feature High Level Comparison (3)


Feature Name ASR 9000 (3.9 release) 7600 ES+ only (SRE release) MAC address 512K 96K global space, 1M for 802.1ah

EFP 64K 32K

Local connect 32K 16K

P2P EoMPLS 64K 32K

Bridge-domain/VFI 8K 4K

VFI PWs 32K 30K

EFPs per BD 8K 440 per LC per BD

PWs per VFI 512 110

T-LDP session 1K tested 1.7K tested

L3 interface 4K (co-exist with 8K bridge-domain) 4K

L3 VRF 4K 1K (2K SRE /w restrictions)

CFM MEP 32K, minimal CC hello 100msec, distributed

8K at CC 10s, min CC hello 100ms 32K release RLS8 (distributed CFM)

CFM MIP 32K, distributed as above

802.1ah Please refer to 802.1ah section

CE Scales High Level Comparison


L2 Protocol Tunneling IEEE slow protocols (802.3ah, LACP, marker) are never forwarded; always terminated and

locally processed.

This will be enhanced in 4.0 where an option will be added to enable transparent forwarding of these.

All other IEEE and Cisco-proprietary protocols are forwarded transparently by default if the incoming logical port/ EFP is in L2 mode.

L2 control protocol packets are classified based on port and VLAN tags just like any other data packets.

MSTP BPDUs are processed only if received untagged and MSTP is locally configured If a tagged control protocol packet is received, it is treated and forwarded like a data packet. Cisco L2PT is the only option which can process tagged control protocol packets. Ethernet Filter is a option to set a port in dot1q or dot1ad mode. If set, untagged control

protocol packets are handled acc to 80.1Q and 802.1ad rules.

Ethernet filter setting takes priority over L2PT. encap untagged and encap default EFPs inherit the Ethernet filter setting. Other EFPs do

not.

Normal ACLs are only applied to switched/ forwarded packets. Never to punted packets. MSTP does not currently work correctly on a port that has encap untagged or encap default

EFPs configured. Needs to be fixed asap.

Additional issues wrt OAM + untagged EFPs. Need to be fixed asap

Documents

04 EVC and L2 Services