Развитие технологии Brocade VCS, новое поколение

коммутаторов VDX6740

Vasiliy Soldatov, SrSE

vsoldato@brocade.com, Russia&CIS

VCS Overview

VDX6740&VDX6740T

Licensing

Features NOS 4.0 and NOS 4.1

Agenda

Ethernet Fabrics vs Legacy NetworksAutomation, Efficiency and Scale on demand

Inflexible: Rigid architecture, optimized for legacy client/server applications

Inefficient: Spanning Tree disables links to prevent loops, limiting network utilization

Complex: Each switch managed individually

VM-ignorant: No concept of server virtualization

Flexible: Topology freedom, optimized for east/west traffic patterns and virtualized applications

Efficient: All links in the fabric are active with Layer 1/2/3 multipathing

Simple: Entire fabric behaves as logical switch

VM-aware: Facilitates VM/network interoperability

CLASSIC, HIERARCHICAL ARCHITECTUREC

ore

Agg

rega

tio

nA

cces

sETHERNET FABRIC ARCHITECTURE

Ed

ge

Co

re

Scalability

Key Value Propositions of VCS Fabric

Zero-touch provisioning, configuration, and VM mobility

Self-forming trunks

5x faster to deploy additional network

capacity

AUTOMATEDAUTOMATED

All links fully active, none on standby

Multi-pathing at all layers of the network: L1/L2/L3

2x greater network utilization

AUTOMATEDEFFICIENT

Flexible deployments

Flexible topology

Native scalable multi-tenancy

Evolve rather than replace existing networks

Built for Cloud

VDX PRODUCT 6740/6740T

VDX 6740 & 6740T: Next Generation TOR DC Switch

Leading performance Fixed 48 X1/10Gbe SFP+ /Base-T ports and 4 X 40GbE QSFP+

850ns / 3us any port to port latency ,

24MB Deep buffers with Dynamic Buffering

160K MAC, 32K ARP, 13K ACL, 1K port profiles

Advanced capabilities 32 Flex Ports(FC/Ethernet/FCOE)*

Advanced (IPv4, IPv6*) Layer 2/3 feature set

Full IP storage support with DCB capabilities

Cloud ID/Fine Grained Label/NVGRE capable

VXLAN end point(VTEP) capable . Up to 2K VTEP *

SDN Capable (Openflow support)*

ISSU capable*

Unparalleled Value Single ASIC, Non-blocking, Cut through Architecture

Linear scalability options through POD license scheme

Up to 160GbE Brocade Trunk support

Note : All the numbers mentioned on this slide are Hardware supported. For latest scale numbers check release notes

* H/W ready, some features to be enabled post-GA

Ethernet Fabrics

Data Center Access

NEW

VDX 6740 – Product Overview

Dual hot-swappable, load-sharing power supplies

System cooling fans integrated into the power supplies

Two types of FRUs supported – Exhaust and Intake

Rear View

Front View

8 Flex Ports

(FC/FCoE/

Ethernet)

48X10Gb

E SFP+

(FCOE/

Ethernet)

8 Flex

Ports

(FC/FCoE/

Ethernet)

16Flex Ports

(FC/FCoE/Et

hernet)

4X40GbE

QSFP+

1 RU

Yellow ports are FC capable (Flex Ports). Will be supported post-FCS

Ports in Trunk Group 3-3A and 4-4A can be trunked in future release

Trunk Groups

VDX 6740T – Product Overview

Rear View

Trunk Group

Dual hot-swappable, load-sharing power supplies

5 Redundant cooling fans

Two types of FRUs supported – Exhaust and Intake

1 RU

4X40GbE

QSFP+

48X10base-T

(Ethernet/FCOE

)

Trunk Group 1 Trunk Group 2

Trunk Group 3 Trunk Group 4

Trunk Group 3A

Trunk Group 4A

Front View

Yellow ports are FC capable (Flex Ports). Will be supported post-FCS

Software Licenses – VDX6740/VDX 6740T/VDX8770

Layer3 (OSPF, VRRPe, PIM, BGP1, VRF-Lite1 )

FCOE LicenseVCS License

(Logical Chassis Included1)

All inclusive license bundle:ALLSW SKU (VDX6740/VDX6740T)

Advance services License (VDX8770)

VDX 6740 & VDX 6740T SKUs : 24P, 48P, 64P , 64P-ALLSW

NOTE : For VDX 8K L3 license is sold separately . VDX 6K includes L3 license in Base version.

Two node VCS , does not require any VCS license. More than 2 nodes in a VCS fabric would require VCS license on all nodes1 – New in NOS 4.0

24P

SKU

8 Port

DPOD

license

8 Port

DPOD

license

8 Port

DPOD

license

2X40Gb

DPOD

license

2X40Gb

DPOD

license

48P(Orderable SKU)

DPOD Licensing

Applicable to VDX6740

64P(Orderable SKU)

24P(Orderable SKU)

NOS 2.1

• VCS Scale – 24

• L2 Feature & security

enhancements

• BNA Support

• Connectivity from

VCS to FC SAN

• Manageability –

SNMPv3

Hardware and Software Roadmap

2H2010

NOS 3.0

• Increased VCS

scalability

• OSPF

• Multilayer

multipathing

• IGMP Snooping

• L3 ACLs

• BUM Storm

Control

• IPv6 Management

Layer3

2H2011

Sept

2012

VDX6720VDX6710

VDX6730

VDX8770 VDX6740

VDX6740T

Top level view

Jan

2014

July

2013

Mid

2014

NOS 4.0

• Multilayer-HA

• Logical Chassis

Management

• VRFs

• 128K MACs

• PVLAN

• Metro VCS

NOS 4.1

• VirtualFabric

• VXLAN Gateway

• VM Ware NVP

Integration

• Auto NAS

• DHCP Based

FW and Config

Upload - ZTP

NOS X

• ToR ISSU

• L3 scale

• FlexPorts

• L3 HA

• VirtualFab

ric scale

• REST APIs

• OpenFlow

• IPv6

LC 6x100 CFP2, LC 27x40GE,

LC 48x10GE-T, VDX6740G

Resiliency &

Automation Multitenancy Planning… Layer2

NOS 4.0 and 4.1

NOS 4.0 Release Release Contents and Segment Alignment

Public Clouds

Managed Private Clouds

Managed Hosting

Enterprise Data Center

Flat

LAN

SAN

Target Segments

1Supported on VDX 87XX only

• Logical Chassis Management

• Single IP based NETCONFManageability

• VRF-Lite, BGP

• Private VLANMultitenancy

• Large Fabrics (32 Nodes)

• Port Profiles, MAC, ACL, ARPScalability

• In Service Software Upgrade1

• Hitless Failover1Resiliency

• UDLD, RSPAN

• VCS Mode STP, ACL Based QoSEvolutionary

NOS 4.1 OverviewRelease Overview

• GVLAN/Cloud-ID based L2 TRILL VPNsMultitenancy

• VXLAN Gateway, VM Ware NVP IntegrationNetwork

Virtualization

• NAS: NAS Traffic Prioritization Inside Fabric IP Storage

• DHCP (Option 66/67) based Firmware and Config update Automation

• Policy Based RoutingService Insertion

VCS

What is Multi-layer HA3 levels of resiliency

Fabric HA

System HA

Line Card HA

• Automatically reroutes traffic during failure

• Active – Active Resiliency with vLAG support

• ECMP based deterministic Multipathing

• Hitless Management Module Failover

• ISSU

• Virtualized Linecards for Active/Standby Images

• Reduce Linecards Restart

VCS Layered HA Architecture

New

NOS 4.0

Built-in VCS

Unique

differentiator

Resiliency Usecase: UpgradeFabric ISSU

Virtualized Line Card

Management Modules

VDX 8770

Stand ByActive

Stand ByActive

Start

ISSU

File Server

Download Firmware to

the Standby MMDownload to the Active

MM and all LC partitions

Reboot the Stand By MM

and the LC Partition so

that the Active gets

synced up with the Stand

–By MM/Partition

1 2 3

Install Sync

Sanity

Check

Virtualized Line Card

Management Modules

VDX 8770

Stand ByActive

Stand ByActiveVirtualized Line Card

Management Modules

VDX 8770

Stand ByActive

Stand ByActive

Resiliency Usecase: Upgrade contd.Fabric ISSU Old NOS New NOS

Fail Over the Line card

Partition. This causes

the current Active

Partition to Reboot.

Fail Over the MM. This

causes the current Active

MM to reboot

Firmware is committed

on the MM and LC

Partition.

4 5 6

3

Failover Commit

Virtualized Line Card

Management Modules

VDX 8770

Stand ByActive

Stand ByActiveVirtualized Line Card

Management Modules

VDX 8770

Stand ByActive

ActiveStand By

Virtualized Line Card

Management Modules

VDX 8770

ActiveStand By

ActiveStand By

Differentiator

What is Logical Chassis?Single point of Management

Third Party Orchestration Tools

Single IP Management

Single Point of Management For the Entire Fabric

Configuration

Monitoring

Troubleshooting

Extensible via Northbound APIs For Operational Simplicity

Centralized Monitoring and Troubleshooting

FEATURE

Brocade VCS Logical Chassis

Configuration Management

•Minimize Time to Repair and Diagnose

BENEFIT

•Lower Administrative _Operational Cost

•Reduce Errors/Downtime

9/15/2013 18 © 2013 Brocade Communications Systems, Inc. Proprietary Information18

Centralized Software Upgrade and Auto Provisioning

• Speed Time to Deploy

•Reduce Errors/Downtime

Single IP Management

Configuration

Management

Centralized

Software

Upgrade

Auto

Provisioning

Centralized

Monitoring

Three Components of Logical Chassis

BGP in DCBGP with Vyatta Routers

1 GbE

10 GbE

40 GbE DCB

Logical Chassis

MLX w/ MCT

Core

40G VLAG

…… VDX8770

VDX6740VDX6710

VDX8770

BGP Private AS Peer

Vyatta Router

VCS

L2 Leaf – L3 Spine

• Position as Virtual Edge (Flexibility)

• Rich Routing Functionality

• BGP Private AS for DC

• Can be achieved with or without Fabric

• Positioned where Fabric is considered

proprietary

BGP in DCBGP with Vyatta Routers

1 GbE

10 GbE

40 GbE DCB

Logical Chassis

MLX w/ MCT

Core

40G VLAG

…… VDX8770

VDX6740VDX6710

VDX8770

Shared Services

VCS

L3 Leaf – L3 Spine

• Position as Virtual Edge (Flexibility)

• Vyatta: Rich Routing Functionality

• eBGP Private AS for DC

• Can be achieved with or without

Fabric/VCS

• L3 is required at both Leaf and Spine

• Positioned where Fabric is

considered proprietary

BGP Private AS Peer

Tenant-2 Tenant-NTenant-1

eBGP Private AS Peering

VRF in DCVRF with Shared Services

1 GbE

10 GbE

40 GbE DCB

Logical Chassis

Active-Active L3 GW

Per Tenant VRF

E-W Optimized Agg.

MLX w/ MCT

Core

40G VLAG

…… VDX8770VDX8770

VDX6740

Tenant-2T2T1

TN TX

Tenant-N

Overlapping VLANS

Tenant-1

Statically Mapped

VRF to the Core

Shared Services

(VRF Route Leak)

• Multitenant DC with Overlapping

VLANs

• Tenant VRFs Mapped from VCS to

Core Router for N-S Traffic

• Tenant VRFs Mapped from VCS to

Service Router/FW for E-W shared

services (Backup/DR/DNS/AD)

• No Route Leaking or NAT needed on

VCS

• Use Case: L2 and L3 Multitenancy,

Firewall Offload

• Per VRF OSPF (instead of BGP)

Static VRF Mapping

VRF in DC for FW Offload VRF for Security Zone Separation

1 GbE

10 GbE

40 GbE DCB

Logical Chassis

Active-Active L3 GW

Per Tenant VRF

Inter VLAN Routing

MLX w/ MCT

Core

40G VLAG

…… VDX8770VDX8770

VDX6740

Tenant-2T2T1

TN TX

Tenant-N

Overlapping VLANS

Tenant-1

Statically Mapped

VRF to the Core Inter VRF Routing

• Tenant VRFs Mapped from VCS to

Core Router for N-S Traffic

• Tenant VRFs Mapped to FW

• All Inter VLAN Routing at Aggregation

without going to Firewall

• All Inter VRF routing (security zone)

inside the FW

• Use Case: Firewall Offload using VRF

at aggregation

Zone A: VRF 1: VE 10, VE 20

Zone B: VRF 2: VE 40, VE 50

Private VLAN in DCPVLAN with Shared Services

1 GbE

10 GbE

40 GbE DCB

Logical Chassis

MLX w/ MCT

Core

40G VLAG

…… VDX8770VDX8770

VDX6740

Tenant-2 Tenant-3

Isolated VLANS

Tenant-1

Shared Services on a SVI

• Multitenant DC with overlapping

VLANs

• Tenant Isolation through PVLAN

Isolated VLANs

• VE on a Primary VLAN for access to

shared services

• L2 Multitenancy with 8000 VLANs

• L3 at Spine (No VRF needed)Tenant-N

Private VLAN Mapping

VE on a Primary VLAN

Layer-3 N-S

(iBGP or OSPF)

VCS Mode Spanning TreeInteroperating with legacy deployments

Legacy

STP Root

STP Port STP Port

• Interoperable with legacy STP

deployments (Redundant Links)

• Supports STP, RSTP, PVST+, MSTP

• Entire VCS appears as a single switch

the STP topology

• No loss of bandwidth inside Fabric

• High utilization for E-W Traffic, loop

prevention for N-S traffic

NOS 4.0: Other EnhancementsOther Enhancements

Layer 3

BGP

Security, Monitoring and Troubleshooting

RSPAN

UDLD

ACL Based SPAN and Sflow and Rate Limiting

QoS

ACL based QoS Assignment and Remarking

VCS Mode xSTP

PVST+, RSTP, MSTP and STP – In VCS Mode

Distance Extension

30 KM Long Distance ISL using WDM (Vendors: ADVA and Ciena)

Encryption on Long Distance ISL using WDM (Vendors: ADVA and Ciena)

Direct Attached Storage (F-Port Connectivity on VDX 6730)

Thank You