Transcription
BGP TRAFFIC ENGINEER WITHSDN CONTROLLERBGP-LU EPE AND SEGMENT ROUTINGShaowen Ma, Director, APAC Product, Juniper, mashao@juniper.netKing He, Chief Architect, Tencent, kinghe@tencent.comFeb 24, 2016JUNIPER CONFIDENTIAL
AGENDA21Inter-Domain Traffic Engineer2EPE and SPRING End-to-End solution3Use Case and Benefits4SummaryCopyright 2016 Juniper Networks, Inc.www.juniper.net
INTER-DOMAIN CLOUD TRAFFIC ENGINEER1 Cloud Traffic engineerCDNBRANCHHOMEMOBILEHQ2Fish TopologySP DCEasy to optimize End-To-End Traffic for SP Owned Network.How to optimize VIP Customer for Internet/Cloud connection?3Copyright 2016 Juniper Networks, Inc.www.juniper.netCDN
CURRENTLY SOLUTION AND LIMITATIONS Configure BGP Communities Configure RSVP-TE tunnels Configure the ABF/OF map to tunnel Configure ABF to select next hopLink based on BGP communities Can’t setup traffic Engineer tunnelto peer ASBR12BRANCH4No Dynamic ASBR Selection2No BGP Link usage info3Static Tunnel Configured4Full Internet Table on ASBR5Lots of Policy on ASBRHOME3MOBILE1HQ5Current Solution can’t meet Cloud Traffic Engineer Requirement4Copyright 2016 Juniper Networks, Inc.www.juniper.net
CLOUD TRAFFIC ENGINEER SOLUTION COMPONENTS1No Dynamic ASBR SelectionSDN ControllerController2No BGP Peer info3Static Tunnel Configured4Full Internet Table on ASBR5Lots of Policy on ASBRBGP Label Unicast for peerSRDynamic Segment RoutingSimplified ASBR by LSR routerPolicy from Ingress, LSR on ASBREgress Peering Engineer draft-gredler-idr-bgplu-epe-04 draft-ietf-idr-bgpls-segment-routing-epe-02 GPSegment Routing draft-ietf-spring-segment-routing-0xWith Controller, Segment Routing and LSR Switch can buildCheaper andOptimized Cloud traffic EngineerCopyright 2016 Juniper Networks, Inc. www.juniper.net
BGP EPE DESIGN PHILOSOPHYHow to Select Which Peer to send Controller/RR may morning the BGP Peer LinkPeer Controller/RR find a tunnel from Ingress to ASBRController Controller/RR based on certain rules to select ASBRPeerHow ASBR identify a Peer Per Peer /32 address per labelPeerLDP Install the MPLS Label POP for every PeerSegmentRouting When ASBR received different label andsend traffic to specific PeerLU 100GREHow Ingress mapping traffic to ASBR/PeerMPLSIP Forwarding Ingress push tunnel label to ASBR Ingress push BGP-LU label6PushPushMPLS LabelBGPBGP-LU w/ Label 100LU Label100LU Label100PayloadPayloadCopyright 2016 Juniper Networks, Inc.www.juniper.netPOPPayloadPeer
BGP EGRESS PEER ENGINEERING/BGP-LU DETAILAS1BSegment Label StacksProgramingAS4AS2ControllerD50%BGP SessionA8.8.8.8/3260%CBGP LU Message Peer D: label 100 Pop and forwarding to RtrD Peer E: label 200 Pop and forwarding to RtrE 90%BGP Link States information 7AS2Link NLRI: RtrC, RtrD , 11.1.1.2, Link Attribute: TE subTLVs, Link NLRI: RtrC, RtrE , 12.1.1.2, Link Attribute: TE subTLVs, Copyright 2016 Juniper Networks, Inc.Ewww.juniper.net
BGP EGRESS PEER ENGINEERING/BGP-LU DETAILBGP-LUControllerAS1Segment Label StacksProgramingA8group Controller-RR {type internal;family inet {labeled-unicast{rib{inet.3;}}}neighbor 5.5.5.5;}group Peer-EBGP {Controllertype external;family inet {unicast;} Controllerexport exp server v4 v6 peers;neighbor 200.2.1.2 {egress-te;peer-as 2;}Node Dneighbor 200.3.1.2 {egress-te;peer-as 3;}Node E}Copyright 2016 Juniper Networks, Inc.AS4AS2BD50%8.8.8.8/3260%CE90%AS3BGP Message Label unicast Link-Statewww.juniper.net
BGP LU AND FRR BACKUPPeer ABGP LU no IP lookup on ASBR100Normally MPLS label POP and forwardingPayloadC Per Peer /32 address per labelLU 100ip-forwarding orpeer peer-ipAUse FRR in same ASBRPeer B IP-forwarding option, remove the LU label and then IP lookup Peer peer-ip, send to backup peer directlyFor remote ASBR, leverage remote-nexthop for FRRegress-te-backup-paths {peer 19.1.0.1;remote-nexthop {7.7.7.7;1001remote-nexthopWith peer peer-ip200PayloadPeer C Setup tunnel to remote ASBR Get rid of BGP-LU label and replace by the remote neighbor's BGP-LU labelLU 200BFor ASBR failure, will need Egress Protection Remote Anycast ASBR need to understand the Failure ASBR BGP-LU label Or Remote Anycast ASBR will just do IP-lookup, ignore the BGP-LU label For future implementation9Copyright 2016 Juniper Networks, Inc.www.juniper.netLU LabelPayloadPOPPayload
LSR BGP PEER DEPLOYMENT AND CONSIDERATIONAll LSROne/Two LERASBR FailurePeer APeer ALU 100LU 100ACPeer BBackupCAPeer BBackupLU 100BackupPeer CPeer BPeer CLU 200BMigrate most ASBR to LSRKeep 1 or 2 ASBR as legacy backupRedirect traffic to legacy and IPforwardingCLU 200LU 20010LU 100APeer C Peer ALU 200B BMigrate All ASBR to LSRRedirect traffic to backup alsofollow BGP-LU label forwardingCopyright 2016 Juniper Networks, Inc.www.juniper.net Migrate All ASBR to LSRIn case of ASBR failureRedirect traffic to backup whichkeep all other BGP-LU informationfollow BGP-LU label forwarding
BGP-LU EPE & MPLS KEY BENEFITSEXTEND HOLLOW CORE/LSR TO PEERING, CHEAPER PEERING SOLUTIONNetconf/YangMP-BGP EVPNBGP LU/LSSegment RoutingControllerNO IP Lookup!Can beNormal IP forwarding! 128K PrefixesBRANCHLSRCoreHOMETOR/BNG/PEMOBILEHQMPLS LERPushPushPayload11SR LabelIP ForwardingMPLS LSRSWAPSR LabelPOPLU LabelLU LabelLU LabelPayloadPayloadPayloadCopyright 2016 Juniper Networks, Inc.POPPayloadwww.juniper.net
O pen S ource:BGP-LU VS BGP-EPE FOR PEER TRAFFIC ENGINEERBGP-LU for Seamless MPLSMPLS LSPBGP-LUBGP-LU for Peer Traffic EngineerJuniperMPLS LSPBGP-LUMPLS LSPBGP-LUEgress Peering Engineer, 2 different Methods [Juniper] draft-gredler-idr-bgplu-epe-04EPEBGP-EPE for Peer Traffic EngineerOtherMPLS LSPBGP-EPErouter, peer can be IP or MPLS forwarding12Copyright 2016 Juniper Networks, Inc.www.juniper.netEPEP rovide an im plem entationFree licenses sim plify IntelN o Vendor lock-inTechnicalM eritocracy/D oOIP/MPLSBGP No New Address Family, Any tunnel can apply build in FRR method for Peer failure Existing Solution with enhance, Fast Time to Market [other] draft-ietf-idr-bgpls-segment-routing-epe-02 New Address Family, request SR tunnels Both Assign a Label for Peer, no need upgrade Peer IP/MPLSBGPh ttp ://1 2 7 .0 .0 .1 /S D N -N FV -Fo ru m /# /3
EGRESS PEER ENGINEERING (EPE) USE CASE IN DCContent ConsumersISPISPISPPeeringTransitTransitSelect egress pointto optimize quality of experienceand minimize costContentProviderDataCenter13Data CenterCopyright 2016 Juniper Networks, Inc.www.juniper.net
CONTROLLER AND EPE USE CASECustomer EgressRouterMeta-dataTunnel erverContent ProviderWANData CenterContent Provider Data Center14Customer packetMeta-dataTunnel encapsulationFloating IP for serviceSelect VMSelect ServerCopyright 2016 Juniper Networks, Inc.www.juniper.net
USE CASE, CDN PEERINGASBR Setup BGP session and pass BGP-LU and BGP-LSinformation to Controller.IP RIB500K Controller Calculate the PathMPLSForwardController Controller select which Peer A/B/C send traffic to with LU label. Controller and ASBR take part in the Segment routing domain, andCDN50%know to send traffic to ASBR adding a IGP/SR label or tunnelsRTR A Controller will send MPLS label Stack to Ingress Router or HostCDNController keep monitor path and Egress linkRTR B60% When Congestion happens, will automatically redirect traffic toanother ASBR/Peer by changing the label stackRTR C90%DCIPushWANSR LabelPushLU LabelIntelligencePeeringPOPSeparate Control/Forwarding Controller Full Internet Table, RIB, Control Plane only. ASBR only Keep LSR label switching, Forwarding Plane, No IPLU LabellookupPOPPolicy start from IngressPayload15PayloadPayloadPayloadCopyright 2016 Juniper Networks, Inc. Linux Host/Hypervisor/switch/routerwww.juniper.net
WITHOUT EPE, CURRENT SOLUTION (TENCENT)Tier 1 SPAS 240xxWeb Service22.0.0.0/16R3R2DC cloudASBR-1CE-1R1Tier 1 SPAS 48xxTencentAS450xxQQ/Wechator Video11.0.0.0/16DC cloudTier 2 SPAS 559xxTier 1 SPAS 43xxFlow 1: Source IP: 11.0.0.2 to Destination IP 200.0.0.100eBGP session:R1 tagged all recv routes from CE-1with tag “VIP1” (BGP ext-community )Results after active E-PBR on ASBR-1:Flow 1 : NHP redirect to VIP-OnlyTencent Peering SituationKey Pain Points Peering with many Tier 1 and 2 SP, around 20 peer AS. No Global BGP traffic Engineering optimization Peering from 4-5 cities across China, Static RSVP tunnel, A lot of Policies on ASBR.Beijing/Shanghai/Shenzhen/Guangzhou etc. Peering Traffic Grow so fast, how to save CAPEX on ASBR? Peering with Hongkong for international directly16200.0.0.0/16Copyright 2016 Juniper Networks, Inc.www.juniper.net
WITH EPE, PLANNING SOLUTION (TENCENT)Controller Gather network information Calculate a better Path Create PBR rules Push two labelNo PBR on ASBRNo IP-lookupControllerWeb Service22.0.0.0/16ASBR-1R1CE-1Router receive the Controller’s Instruction.1. Build the PBR rules2. Mapping traffic to specific tunnels with2 MPLS labels.PushPushPayload17O pen S ource: TTier 1 SPAS 48xxTencentAS450xxQQ/Wechator Video11.0.0.0/16DC cloudTier 1 SPAS 240xxR3R2DC cloud3 /3 /2 0 1 5SR LabelBGP LU Message Peer Adj 1: label 24,001 Pop and forwarding to Link 1 Peer Adj 2: label 24,002 Pop and forwarding to Link 2 BGP Link States information Link NLRI: RtrC, Link1 , 11.1.1.2, Link Attribute: TE subTLVs, Link NLRI: RtrC, Link 2 , 12.1.1.2, Link Attribute: TE subTLVs, POPLU LabelLU LabelPayloadPayloadPOPCopyright 2016 Juniper Networks, Inc.Payloadwww.juniper.net P rovide an im plem entation, n Free licenses sim plify Intellec200.0.0.0/16 TierN o2Vendorlock-inSP ASTechni559xxcalM eritocracy/D oO cTier 1 SPAS 43xxKey Solution Benefits Global BGP Traffic OptimizedNO IP/PBR on ASBRPotential CAPEX saving on ASBR(LSR)Tencent All-IN Segment RoutingTencent All-IN Traffic Engineer WANh ttp ://1 2 7 .0 .0 .1 /S D N -N FV -Fo ru m /# /3
APPLICATIONS DETAILSSAME TECHNOLOGY FOR DC & WANApplication is the Network Brian: BGP-LU EPE information from ASBR for peer label and internetprefix table.ApplicationsBGP-LU PCEPEPESR BGP-LS/Netflow information for all link TE TLV, and BMP for PrefixBMP BGP-LSIP RIB500K PCEP, Calculate Segment routing tunnel and apply 2 labels innetwork Traffic Steering/mapping to tunnels, and monitor tunnelsController Easier to calculate Latency based routing for network wideoptimized.Controller for Segment routing Traffic Tunnel setup/monitorSeparate Control/ForwardingDC Controller Full Internet Table, RIB, Control Plane only.MPLSForward18LC CPU ASBR only Keep LSR label switching, Forwarding Plane, No IP lookupCopyright 2016 Juniper Networks, Inc.www.juniper.net
SUMMARY1Extend Traffic Engineer to Cloud, Global Network Optimized2SDN Controller Solution, Automatic Congestion/Latency Optimized3Simplified ASBR Design, no IP, no Policy, LSR only4Controller/Application support full intelligence RIB/Traffic Telemtry5Standard Based solution, work with existing peer ASBR19Copyright 2016 Juniper Networks, Inc.www.juniper.net
THANK YOUJUNIPER CONFIDENTIAL
WAN Intelligence Peering 90% 60% 50% LU Label SR Label Payload Payload LU Label Payload Push Push POP POP RTR A RTR B RTR C MPLS Forward IP RIB 500K Controller ASBR Setup BGP session and pass BGP-LU and BGP-LS information to Controller. Controller Calculate the Path Controller select which Peer A/B/C send traffic to with LU label.
