VXLAN introduction
advertisement
VXLAN BPK-1310A Spirent TestCenter May 2014 PROPRIETARY AND CONFIDENTIAL VXLAN - Virtual eXtendable LAN – BPK-1310A Can Emulate and Scale to thousands of VTEPs supporting thousands of segments Multicast, PIM & Unicast learning modes Auto UDP source port for hashing Fully Integrated into Spirent TestCenter inheriting all its features allowing the emulated VMs to emulate protocols such as: Http, FTP, DHCP, IGMP, … Wizard to setup large networks quickly Dynamically Start / Stop VTEPs and move VMs Layer 2 or Layer 3 VXLAN Test Cases for VXLAN VTEP & Mac Learning / Scaling Duplicate MAC / VXLAN Multicast Latency Flooding or miss-directed packets ‹#› PROPRIETARY AND CONFIDENTIAL STC Port 1 VM11 VM12 VM13 VM21 VM22 VM31 L3 Network VTEP 1 DUT VTEP VTEP 2 VTEP 3 STC Port n VTEP n Roadmap 2014 2H: OVSDB VMn VXLAN introduction Virtualized Data Center challenges • Increased MAC support as a physical server may host 100s of VMs, placing stress on the ToR switch MAC table • Increased segmentation support; 802.1q is limited to 4096 VLANs which is far too little in a large scale Cloud Provider’s network • Hosting multiple tenants over the same physical infrastructure, while eliminating conflicts of existing MAC & IP addresses and VLAN IDs • Spanning virtualized L2 domains over L2 or L3 physical infrastructure while maintaining all ports forwarding (no STP) and reaching equipment in the same or even remote Data Centers ‹#› PROPRIETARY AND CONFIDENTIAL VXLAN introduction The Overlay solution • Supports ECMP routed L3 networks and newer L2 technologies like SPB and TRILL, or SDN technologies like OpenFlow which keep all ports forwarding by design • Increases “segmentation” support up to 16 million broadcast domains via 24 bit VNI (VXLAN Network Identifier) called “VXLAN Segments” opposed to ‘VXLANs’ • Solves the multi-tenant, “cross pod expansion” issue by allowing tenants to share physical infrastructure, maintain traffic segmentation, and expand beyond their initial pod configuration and use hardware in another rack or even another Data Center altogether! • Places VM MAC learning burden on VTEP gateway opposed to ToR/EoR switch (in the case where VTEP resides on hypervisor host!) • VTEP will map both MAC to VNI + VNI to IGMP address in local tables ‹#› PROPRIETARY AND CONFIDENTIAL VXLAN VNI VXLAN introduction VXLAN encapsulation • Performed by VTEPs (aka VXLAN Gateways) VTEPs will have to encapsulate + map multiple VNIs to a single IGMP class D address (VNIs scale much higher than IGMP address space) • Original VM MAC frame encapsulated with outer header comprised of MAC, optional 802.1Q tag header, IP, UDP and VXLAN header VXLAN header (32 bits) contains Flags (8 bits; bit 3 = 1 rest zero), VNI (24 bits), and two reserved fields (24 & 8 bits) respectively • VTEPs use two basic methods to flood, learn and forward traffic between VMs always encapsulating the original source frame Source: VMware ‹#› PROPRIETARY AND CONFIDENTIAL VXLAN VNI101 VNI102 VXLAN LAN VTEP1 VNI103 VTEP2 VNI101 VNI101 VNI102 VNI103 VNI103 P1 VNI101 VTEP3 P4 P2 VTEP4 VTEP DUT VNI103 P3 VTEP5 VNI103 Ethernet/IP/UDP/VXLAN-Packet Multicast ARP per Segment ‹#› PROPRIETARY AND CONFIDENTIAL Traffic Port VNI102 Packet Spirent TestCenter VXLAN Features … Emulates VTEPs and the VMs behind each VTEP Ability to set VXLAN UDP source port, or use an auto generated one for table hashing Destination UDP Port configurable, normally set to 4789 For Multicast VXLAN, both IGMP or PIM can be defined and used Can create multiple VMs behind a VTEP on a unique VNIs or on all the same VNI Can create a block of VMs on the same VNI for high scale testing ‹#› PROPRIETARY AND CONFIDENTIAL Spirent TestCenter VXLAN Segment Editor Easy-to-use VXLAN Segment Editor Support for Multicast / Unicast Define both Encapsulated and Unencapsulated end-points (VMs) Associate VNI with Segment and type Associate End-point (VM) with Segment Assocate VM with VTEP VMs and VTEPs should already be defined ‹#› PROPRIETARY AND CONFIDENTIAL Spirent TestCenter VXLAN Wizard Wizard to create topologies with many devices and data at any scale Scale number ports, vlans, VTEPs, segments, and VMs … Quick-Easy for large-or-small ‹#› PROPRIETARY AND CONFIDENTIAL Spirent TestCenter VXLAN Traffic All Traffic addresses for traffic are automatically updated Both Inter and Outer Layer, All ARP are automatic ‹#› PROPRIETARY AND CONFIDENTIAL Spirent TestCenter VXLAN Results All Stream results available for VXLAN Sorted by VNI Segment Per Segment Latency, Counts, Multicast Join / Leave Latency ‹#› PROPRIETARY AND CONFIDENTIAL Spirent TestCenter VXLAN Capture Easy to read packet Capture via Wireshark Filter on any Segment ‹#› PROPRIETARY AND CONFIDENTIAL VXLAN Topology Emulation All Spirent TestCenter Protocols are supported over VXLAN • HTTP • FTP • Video – Multicast Streams • IGMP • DHCP / DHCP Server • Routing: BGP, OSFP, RIP ‹#› PROPRIETARY AND CONFIDENTIAL Spirent SDN Solution The Smarter Way to Test • OpenFlow 1.3 / 1.0 • 400+ Test Cases • Integrated Data Traffic • Multi Switch Connections • OpenFlow 1.3 / 1.0 • Thousands of Switches • Canned Topologies • Fully customizable • Datapath Verification ‹#› PROPRIETARY AND CONFIDENTIAL OpenFlow Switch Conformance OpenFlow Controller Emulation • OpenFlow 1.3 / 1.0 • Easy to add flows across network • Millions of Flows • Master / Slave • Metering • Flow Capacity OpenFlow Switch Emulation SDN End-to-End Performance • Flow Forwarding • Flow Failover • Controller Failover Ralph Daniels Senior Product Manger at Spirent Communications Ralph.Daniels@spirent.com +1.919.306.7475
