Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Networking

PPTX - Cisco LISP

Executive Panel : LISP Customers Discuss
Modern Network Solutions
PNLRST-2020
Fabio Maino, Distinguished Engineer, LISP Team
Colin Kincaid, Vice President, NOSTG Marketing & Architecture
Executive Panel : LISP Customers Discuss Modern
Network Solutions
 Introduction
Fabio Maino
 LISP Perspectives
Colin Kincaid
 Customer Use Case :: Cisco IT
Khalid Jawaid
 Customer Use Case :: IBM
Chris Williams
 Customer Use Case :: Etat du Valais
Christian Quenzer
 Customer Use Case :: AVM GmbH
Eric van Uden
 Questions/Answers
ALL
 Closing Words
Fabio Maino
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
3
LISP Introduction
Fabio Maino, Distinguished Engineer
LISP Team
Introduction
LISP Update
 LISP has come a long way since 2006 IETF…
– when a small group of Cisco engineers started the design of a protocol for
identity/location separation
 8 IETFs RFCs published during 2013 (RFC 6830-6836, RFC 7052)
– IETF LISP WG now focusing on LISP use cases
 Most importantly we have very significant customer deployments
– Enterprise and Service Provider space
– Use cases: Internet VPNs, Multi-homing, IPv6 Transition, Data Center Host
Mobility
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
5
Introduction
What have we learned so far?
 LISP is a transformative technology
– LISP adds significant new capabilities and reduces complexities!
 LISP deployments are now moving beyond ‘early adopters’
– Large number of customers deploying LISP in production
– Large scale of LISP deployments and wide diversity of LISP deployments
– Commitment to and reliance on LISP
 LISP engages a broad range of new participation in networking
– Open standard, control plane/data plane separation enables…
 Universities and researchers to experiment on new and novel designs
 Easy and effective Integration with software defined networking initiatives
 Open source code implementations and wide hardware/device support
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
6
Use Cases: Internet Based VPN
 Today’s Testimonial
 IP based, transport
independent VPN solution
– Etat du Valais: Christian Quenzer
 Support for multi-tenancy
and security
Legacy Site
 Global mobility
 Minimal infrastructure
disruption
Legacy Site
LISP Site
PxTR
Mapping
IP Network
West
DC
PNLRST-2020
Legacy Site
© 2014 Cisco and/or its affiliates. All rights reserved.
DB
East
DC
Cisco Public
7
Use Cases: BGP-free Multi-homing
 Today’s Testimonial
 Multi-provider connectivity
and policy without BGP
complexity
– AVM GmbH: Eric van Uden
 OpEx-friendly multi-homing
across different providers
 Simple Policy Management
 Ingress/Egress Traffic
Engineering
Internet
LISP
Site
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
LISP
routers
Cisco Public
8
Use Cases: IPv6 Transition
 Rapid deployment of IPv6
over IPv4
– Or IPv4 over IPv6
 Today’s Testimonial
– Cisco IT: Khalid Jawaid
– AVM GmbH: Eric van Uden
 Accelerates IPv6 adoption
 Minimal added
configurations
v6
 No core network changes
V6
IPv4 Enterprise
Core
V6
IPv4 Core
xTR
xTR
IPv4
Enterprise
Core
v4 v6
v6
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
9
Use Cases: Host Mobility
 Host mobility for Data Center
applications
 Today’s Testimonial
– IBM: Chris Williams
– DC Migration
– Disaster Recovery
– Hybrid Cloud Extension
 Integrated mobility, inbound
routing optimization, OTV
integration
Data
Center 1
Data
Center 2
Internet
LISP
routers
LISP
routers
VM move
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
VM
VM
a.b.c.1
a.b.c.1
Cisco Public
10
Executive Panel : LISP Customers Discuss Modern
Network Solutions
 Introduction
Fabio Maino
 LISP Perspectives
Colin Kincaid
 Customer Use Case :: Cisco IT
Khalid Jawaid
 Customer Use Case :: IBM
Chris Williams
 Customer Use Case :: Etat du Valais
Christian Quenzer
 Customer Use Case :: AVM GmbH
Eric van Uden
 Questions/Answers
ALL
 Closing Words
Fabio Maino
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
11
LISP Perspectives
Colin Kincaid, Vice President
NOSTG Marketing & Architecture
LISP Perspective
LISP and Cisco
 NOSTG is a central innovation engine for CISCO
– Supports the core of the LISP HIP team (engineering + marketing)
 With LISP, Cisco is innovating at the cutting edge of
technology providing
– An open, scalable architecture for network virtualization
– Easy to deploy
– Focused on simplifying network operations
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
13
LISP Perspective
Platforms supporting LISP (Cisco and Open Source)
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
14
LISP Perspective
Future Work
 Cisco is strongly committed to LISP technology
 Future work is focused on:
– Integration with SDN (OpenDayLight LISP project)
– Data Center and Hybrid Cloud Extension
– Campus Architecture
 Support to Customers with existing and new use cases
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
15
Executive Panel :
LISP Customers Discuss Modern Network Solutions
 Introduction
Fabio Maino
 LISP Perspectives
Colin Kincaid
 Customer Use Case :: Cisco IT
Khalid Jawaid
 Customer Use Case :: IBM
Chris Williams
 Customer Use Case :: Etat du Valais
Christian Quenzer
 Customer Use Case :: AVM GmbH
Eric van Uden
 Questions/Answers
ALL
 Closing Words
Fabio Maino
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
16
LISP @Cisco IT
As a Member of Technical Staff at Cisco Systems, Khalid Jawaid is
the Lead Design Engineer for IPv6 integration/deployment across
Cisco and the EON project (Cisco IT's SDN Initiative). Double CCIE
certified and experienced in routing and switching technologies and
WAN design, Khalid has been at Cisco for the last 13 years and
worked with multiple technologies across TAC, Cisco Services and
Cisco IT.
•
• Khalid Jawaid
Member of the Technical Staff, Cisco IT
Introducing Cisco
The Global Cisco Family
 369 locations in 90 countries
 450+ buildings
 51 data centers and
server rooms
 1500+ labs world wide
(500+ in San Jose)
 66,000+ Employees
 20,000 Channel Partners
 110+ Application
Service Providers
Over 180,000 people around the world
in the extended Cisco family
Estimated Numbers
 210+ Business and Support
Development Partners
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
19
Cisco IT LISP Use-case
IPv6 Transition Support
IPv6 Deployment
strategy
IPv6 deployment
challenges
Dual stack
IPv4 only WAN Backbone
L3 MPLS VPN
Business Impact
Delayed deployment of IPv6
affects product development/testing
and IPv6 adoption.
Long term plan that absorbs cost in
established lifecycle process
Overlay
Have a quick and scalable solution in
hand to relieve delivery pressure
PNLRST-2020
Financial investment required
Migration to L2 VPN
Day-1 tunneling techniques
do not scale very well
Anycast ISATAP
Manual 6in4 Tunnel
© 2014 Cisco and/or its affiliates. All rights reserved.
Next-Generation overlay architecture
Locator/ID Separation Protocol
Cisco Public
Why LISP ?
Day-1 tunneling techniques
Anycast ISATAP
Next-Generation overlay
Locator/ID Separation Protocol
End-Client centric solution
Support challenge
Configuration & Troubleshooting simplicity
Any-to-any traffic flows
IPv4 exit-strategy (IPv4 over IPv6)
New capabilities (Mobility, Virtualization)
Manual 6in4 tunnels
DMVPN
Configuration overhead
Performance impact (Hub & Spoke)
Potential routing challenges when multi-homing
Scalability concerns
Any-to-any traffic flows
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
EMEAR LISP IPv6 Deployment overview
DC
DC
Internet
Cisco Enterprise Backbone Network
London
Amsterdam
Mapping System
Proxy Tunnel Router
ASR1006
Geographically diverse
Standalone / Self-managed
Primary / Backup PxTR
Dual Stack
Tunnel Router
LISP
IPv6 in IPv4
Carrier Managed
L3VPN MPLS
ASR 1006 & ISR 3945
Internet
IPv4 Only
Dual Stack
DS3
DS3
DS3
E1
E1
BB
Liveliness features
DC
Load Sharing
Primary/Backup
Default Route / HSRPv6 to attract traffic
Load sharing defined by WAN topology
RLOC route-loss detection
RLOC probing
Locator Status Bits (LSB)
Solicited Map-Request (SMR)
Primary/Backup
Cisco Remote Offices
From an interim to permanent solution ?
Cisco Managed CE
Map-Resolver, Map-Server, Proxy Ingress/Egress Tunnel Router
Cisco Managed CE
Ingress/Egress Tunnel Router
“LISP allows us to postpone some of our WAN
migrations in locations where services are not
available or cost inefficient “
IPSEC VPN Tunnel head-end
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Deployment Status
Pilot Deployment
Accelerated Deployment
General Deployment
(Completed September 2013)
(Completed November 2013)
(Target completion May 2014)
Istanbul
(Turkey)
Internal LISP Design
Greenpark
(UK)
Munich
(Germany)
Moscow
(Russia)
80+ Remote Offices
7000+ end-users
Galway
(Ireland)
Vimercatie
(Italy)
Dubai
(UAE)
3 Engineering Data Centers
In numbers …
(Guidelines, Cut-sheet, test plan)
Resource training
(Configuration & Troubleshooting)
Implementation
(Test plan execution and monitoring)
Operational support
PNLRST-2020
Target = IPv6 configuration
automation via scripts !
1700 end-users
1300 IPv6 endpoints
LISP is the easy part !
+ 30 Mbps IPv6 peak BW
0 LISP related cases opened !!!
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Lesson learned
 Network convergence
 Minor routing architecture changes required to match IPv4 convergence SLA
 RLOC route-down detection provides fastest convergence (/32 Prefix leakage)
 RLOC Probing detects all other failures
 MTU handling
 Only stateful fragmentation (pMTU) supported as per IPv6 best practices
 Previous overlay solutions provided stateful fragmentation
 Our LISP implementation uncovered some pMTU support problems
 Feature Support
 Most exciting capabilities/enhancements included in more recent versions of code
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Cisco IT LISP Strategy
Evaluate
Potential use-cases
PNLRST-2020
Learn
Explore
Data-Center VM Mobility
Client IP Portability & Disaster Recovery
Traffic engineering (SDN/OnePK)
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Conclusion
Big wins for Cisco IT
–
–
–
–
–
Accelerated EMEAR IPv6 deployment within 6-9 months
More time to explore most cost-efficient WAN backbone replacement
Supported on existing WAN Edge platforms – no capital investment
Easy to deploy … It just works !
Relatively low risk learning experience for future use-cases
THANKS to the LISP-Support for the guidance and great customer focus !
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Executive Panel :
LISP Customers Discuss Modern Network Solutions
 Introduction
Fabio Maino
 LISP Perspectives
Colin Kincaid
 Customer Use Case :: Cisco IT
Khalid Jawaid
 Customer Use Case :: IBM
Chris Williams
 Customer Use Case :: Etat du Valais
Christian Quenzer
 Customer Use Case :: AVM GmbH
Eric van Uden
 Questions/Answers
ALL
 Closing Words
Fabio Maino
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
27
LISP @IBM
Chris enjoyed a successful career with IBM spanning 21 years. His
notable achievements include the role of chief architect for IBM on
the multi-million dollar Lloyds TSB converged IP network, and
conceiving and developing IBM’s global secure network infrastructure
connecting its outsourcing clients to IBM Global Services. Chris now
works as an independent consultant, and more recently at IBM,
working on a data centre and network migration.
•
PIC
• Chris Williams
Infrastructure Architect/Network Architect CEng (MIET), IBM
IBM and RSA
Company Overviews

International Business Machines Corporation. Founded 1911.
Headquarters in Armonk, New York. Multinational technology, consulting and
hosting corporation.

Royal and Sun Alliance, Founded 1710. Headquartered in London.
Operating in 32 countries. 17 million customers in 140 countries . Listed on the
London Stock Exchange and FTSE 100 Index.
 In 2001, IBM and RSA signed the first IT services agreement for IBM to
manage and support the IT infrastructure and provide end-to-end service
integration across all of the third party technology suppliers.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
30
Data Centre Migration Challenges for IBM
Why this is an issue
 To reduce the time it takes to migrate servers or applications from:
– a customers data centre to an IBM data centre
– an ‘inherited’ data centre to an IBM strategic data centre
– within a data centre, from a legacy to a new environment (our challenge here)
 Competitors who can perform a faster migration can offer a lower price to the
customer and have higher margins.
 Traditional migration approaches all have limitations:
– Application migration
– Physical move
– Whole DC ‘Big Bang’ migration
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
31
DC Migration without IP mobility / IP Retention
Application Migration – Complexity of Ensuring Interfaces are Maintained
 Move application to new DC
requires change of IP address
and hostname
 Takes longer to start moving
servers due to data gathering /
documentation of legacy
application interfaces
 Risk – has an interface been
overlooked?
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
32
DC Migration without IP mobility / IP Retention
Application Migration – Complexity of Ensuring Interfaces are Maintained
 Complexity of ensuring
interfaces are maintained affects even non-moved / nonmigrated systems
 DNS may not always help with
legacy hard coded applications
 Applications local and remote
may need to be amended
 Firewalls need to be amended
 Risk - Can you be sure you
have the complete picture?
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
33
DC Migration without IP mobility / IP Retention
What is the traditional approach?
Move a server (physical move or virtual migration) and keep the IP Address
and Hostname

PNLRST-2020
Should be simpler process – Is this true?
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
34
DC Migration without IP mobility / IP Retention
Affinity Groups
Move requires understanding of server VLAN cross-patching / affinity groups
if smaller units of servers to be migrated in one event
Subnet A
PNLRST-2020
Subnet B
© 2014 Cisco and/or its affiliates. All rights reserved.
Subnet C
Cisco Public
35
DC Migration without IP mobility / IP Retention
Affinity Groups
Move requires understanding of server VLAN cross-patching / affinity groups
if smaller units of servers to be migrated in one event
Subnet A
PNLRST-2020
Subnet B
© 2014 Cisco and/or its affiliates. All rights reserved.
Subnet C
Cisco Public
36
DC Migration – Server Physical Move
Physical Move of Affinity Groups – The Reality
Physically move the server and patch into new infrastructure:

Takes longer to start moving servers due to data gathering and
understanding of virtual server network interfaces.

Requires understanding of server VLAN cross-patching & affinity
groups if smaller units of servers to be migrated in one event

Conflicting VLAN numbering in switch blocks – virtual server
VLAN re-configuration required during migration event

Risk – has a server or VLAN cross connection been overlooked?

Server virtualisation / platform refresh is a follow on project
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
37
DC Migration – Big Bang
Every Server Migrated in Single Migration Event (Physical Move or Re-build)
Without a solution that enables IP mobility with IP Retention for each server
then ‘Big Bang’ approach implies:

Years in Planning - takes longer to start moving servers due to
data gathering and move planning

Longer storage migration cycle that requires keeping a large data
set in synch over WAN (or other methods)

High risk / large service outage during migration event

Cast of thousands / large workforce required
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
38
DC Migration with IP mobility / IP Retention
Using LISP
We need a way to move servers with IP mobility and removing affinity group
constraints of traditional approach:

Move a server (physical or virtual) and keep the IP Address and
Hostname

Should be simpler process – Is this true using LISP?
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
39
LISP Implementation Models
We Used Model 3
 Model 1 – To use this method, would require every location to have its site WAN routers involved in
the LISP ‘cloud’
 Model 2 – Located at a pinch point in the network
 Model 3 – The model we intend to use - Link is across the machine room floor in our case
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
40
The Migration Scope
Legacy DC to New Infrastructure – Same Location
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
41
LISP Infrastructure
Cross Machine Room Links – ASR1002 Routers
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
42
LISP Server Migration
Initial State
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
43
LISP Server Migration
Intermediate State – Some Servers Migrated
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
44
LISP Server Migration
Servers Migrated
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
45
LISP Server Migration
Servers Migrated – HSRP Cut-Over
Migration Steps:

New DC aggregation router interface enabled & added to HRSP group

HSRP priority raised - ‘active’ router becomes New DC aggregation router

Routes injected into New DC OSPF & removed from legacy

Remove HSRP configuration on the MR-MS LISP router i/f for fully migrated subnet
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
46
LISP Server Migration
End State – Servers Migrated & Cut-Over to New DC Complete
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
47
Why Choose LISP
Why not use other Layer 2 LAN extension methods?
We looked at but rejected:

IRB (Integrated Route Bridging)

VPLS (Virtual Private LAN Service) over MPLS
There are two viable candidate technologies. They are:

OTV (Overlay Transport Virtualization)

LISP (Locator Identifier Separation Protocol)
Our Preferred Method is LISP

Because it’s a safer interconnection method. It protects against broadcast
storms and spanning tree issues

Non-disruptive Layer 3 connection to existing live data centre's

Works with all server types – physical/virtual/x86/P-Series/Mainframe
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
48
Cisco Services – How They Helped Us
Cisco Professional Services
Data Centre Replica – Cisco Lab Reading UK
 Replica data centre - same
hardware & code levels
 LISP infrastructure - 4x Cisco
AS1002’s
 Comprehensive suite of LISP
function & performance tests
 129Mb test report !
 LISP configurations created
 Post implementation support
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
50
Executive Panel :
LISP Customers Discuss Modern Network Solutions
 Introduction
Fabio Maino
 LISP Perspectives
Colin Kincaid
 Customer Use Case :: Cisco IT
Khalid Jawaid
 Customer Use Case :: IBM
Chris Williams
 Customer Use Case :: Etat du Valais
Christian Quenzer
 Customer Use Case :: AVM GmbH
Eric van Uden
 Questions/Answers
ALL
 Closing Words
Fabio Maino
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
51
LISP @Etat du Valais
State of Valais
General Facts
 One of the 26 states forming
Switzerland.
 Composed of government,
administration, police and justice.
 5’000 employees.
 Serves more than 320’000
inhabitants.
 Most offices are located in seven
major cities.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
53
State of Valais
General Facts
 One of the 26 states forming
Switzerland.
 Composed of government,
administration, police and justice.
 5’000 employees.
 Serves more than 320’000
inhabitants.
 Most offices are located in seven
major cities.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
54
State of Valais
About the Network
 7 POPs, one in each of the main cities.
– 200 buildings
– 800 network devices
– 5’000 IP Phones / 1’000 TDM Phones
 Operate a dedicated MPLS backbone build on dark fiber.
 90 % of the links are build with dark fiber.
– 300 km of dark fibers
 10 % of the links are build with leased line or leased L3 services.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
55
EXISTING TOPOLOGIES
Existing Topology
Connecting the Police’s Offices
 Transport
Data
– P-to-P IPSec tunnel for
“blue” VRF.
– Juniper SSG on both
sides.
Internet
Voice
CUCM Cluster
Provider A
Leased L3 VPN
All routers are outsourced
IPv4
Voice gateway with SRST
PSTN
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
 Sites
– 12 remote locations.
– 2 VRFs.
– IP Phones register to
central CUCM.
– Voice call goes through
PSTN.
– SRST for some phones.
– Single-homed
Cisco Public
57
Existing Topology
Connecting the Administration's Offices
 Transport
Data
– DMVP.
Internet
– GRE tunnels with IPSec.
– Nothing
Multiple
leased L3 VPN
Voice
 Sites
–
–
–
–
20 remote locations.
0-1-2 VRFs.
CUCM Express
IP Phones register to
local CUCME.
– Voice call goes through
PSTN.
– Single-homed
CUCM Cluster
Provider B
Voice gateway with CUCME
IPv4
PSTN
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
58
Existing Topology
Putting All Together
Data
Internet
Voice
Leased L3 VPN
All routers are outsourced
Multiple
leased L3 VPN
CUCM Cluster
Provider A
IPv4
Provider B
Voice gateway with CUCME
IPv4
Voice gateway with SRST
PSTN
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
59
Existing Topology
Limitations
 It’s a complex solution  DMVPN, encrypted GRE tunnel
 There must be at least one voice gateway and one PSTN access on the remote
sites for telephony.
 Require lots of configuration whether to add a new site or a new VRF
 also require modification on the provider side in each case.
 Absolutely not scalable whether at site level or at VRF level.
 Lots of centrally hosted services are not available to the remote sites
– CUCM, Unity and UCCE.
– Radio network.
 Unable to deploy IPv6 to the sites.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
60
THE LISP PROJECT
Goals of the LISP Project
Provider’s network
 Should be able to replace all existing solutions.
 One leased L3 VPN will be used to interconnect all the existing sites.
 This leased L3 VPN will be put in production in parallel to the actual.
 We should be able to migrate every site independently and one after the other.
 Our networks should be totally isolated from the leased L3 VPN.
 Changes to our networks should be transparent for the provider.
 QoS should be implemented and enforced by the provider on the leased L3
VPN
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
62
Goals of the LISP Project
Ours networks
 All centrally hosted services should be available to all the remote sites.
 No more voice gateway and/or PSTN access on the sites.
 All IP Phones should register to the corporate CUCM cluster.
 All external voice calls should goes through the centralized PSTN access.
 Voice and radio traffic must be prioritized.
 Each remote site will have at least 8 VRFs implemented.
 Encryption must be possible, if needed, at VRF level.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
63
LISP Topology
Provider’s network
Headquarters
 HQ
– Multihomed, two CPE.
– One provider.
Provider A
IPv4
Site 1
 Sites
– Single-home, one CPE.
– BW between1 and 8 Mb/s.
– Same provider on every site.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
64
LISP Topology
User’s VRFs
Headquarters
Internet
Provider A
IPv4
Site 1
Site 2
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Site 3
Cisco Public
65
LISP Topology
User’s VRFs
Headquarters
Internet
Provider A
IPv4
 HQ
– Has lots of networks in each of
VRF.
– Some networks are /16.
– Gives access to the Internet .
– Hosts 3 DCs.
Site 1
Site 2
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Site 3
Cisco Public
66
LISP Topology
User’s VRFs
Headquarters
Internet
 Sites
Provider A
IPv4
– Have 1-2 networks in each VRF.
– Some networks are /24 but most
are smaller.
– Have Loopback interfaces in
each VRF.
Site 1
Site 2
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Site 3
Cisco Public
67
LISP Topology
User’s VRFs
Headquarters
Internet
Provider A
 HQ RTR acts as
IPv4
– Map Server.
– Map Resolver.
– PxTR
Site 1
Site 2
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Site 3
Cisco Public
68
LISP Topology
User’s VRFs
Headquarters
Internet
 Site RTR
– acts as xTR
– use PxTR at HQ
– useProvider
MS/MRAat HQ
IPv4
Site 1
Site 2
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Site 3
Cisco Public
69
LISP Topology
Adding GETVPN
Headquarters
Internet
Provider A
IPv4
Site 1
Site 2
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Site 3
Cisco Public
70
LISP Topology
Adding GETVPN
Headquarters
Internet
Provider A
 HQ RTR acts as
IPv4
– Map Server.
– Map Resolver.
– xTR
Site 1
Site 2
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Site 3
Cisco Public
71
LISP Topology
Adding GETVPN
Headquarters
Internet
 Site RTR
– acts as xTR
– use MS/MR at HQ
Provider A
IPv4
Site 1
Site 2
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Site 3
Cisco Public
72
LISP Topology
Adding GETVPN
 The “orange” VRF is only used to connect the LISP routers to the Key Servers.
 We defined only one Loopback per site in the “orange” VRF.
 Internet Key Exchange (IKE) Phase 1 use “Pre-shared” key for authentication.
 The “orange” VRF is not encrypted.
 Voice traffic is not encrypted by GETVPN, this has to be done directly by the
phones.
NTP can be your main concern
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
73
Conclusions
Why LISP
Key Facts
 LISP was easy to deploy and has a great supporting team.
 LISP worked out of the box.
 It’s easy to add encryption on a VRF basis (GETVPN).
 The configurations on each remote site are the same
 only the provider’s link has to be adapted.
 It’s very easy to add new sites with minimal configuration on the HQ side.
 IPv6 can be pushed to the sites with the current implementation
 no change on the provider’s side.
 We are totally isolated from the provider’s network.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
75
Next steps
CY2014
 Multiple service providers  disjoined RLOC-space.
 Using the Internet as an “SP” to deploy very small sites.
 Using LISP to solve the north-south routing optimization in the case of VMmobility between DC.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
76
Executive Panel :
LISP Customers Discuss Modern Network Solutions
 Introduction
Fabio Maino
 LISP Perspectives
Colin Kincaid
 Customer Use Case :: Cisco IT
Khalid Jawaid
 Customer Use Case :: IBM
Chris Williams
 Customer Use Case :: Etat du Valais
Christian Quenzer
 Customer Use Case :: AVM GmbH
Eric van Uden
 Questions/Answers
ALL
 Closing Words
Fabio Maino
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
77
LISP @AVM GmbH
Currently Country Manager at AVM. Experience in the data and
telecommunications sector since the early1990s. Specialized in
remote access projects with ISDN, GSM and VPN for several
international customers. At AVM, Eric is responsible for sales in the
Dutch market. He launched IPv6 with customer XS4ALL to the Dutch
consumer market and is a member of the Dutch IPv6 Taskforce.
Looking forward to commercial use of LISP with AVM products.
•
• Eric van Uden
Country Manager, AVM GmbH
About AVM
AVM is a Berlin-based communications specialist that
develops and manufactures products for your broadband
connection. The company has received numerous awards
for its innovative FRITZ!Box family.
FRITZ! offers fast Internet access, easy networking,
convenient telephony and versatile multimedia
applications.
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Overview
 Founded 1986 in Berlin
 Management formed by
shareholders
 Fiscal 2012
- EUR 250 million in revenue
- 420 employees
 Worldwide production
with focus on Germany
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
What sets AVM apart




Proximity to our core markets (EU and D)
Continuous innovations
In-house developments – made in Berlin
Speed – time to market
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
What is a FRITZ!Box?
 A router for the Smart Home or Office
 Models for DSL,LTE or Cable
 WLAN AC + N with 1300 Mbit/s (5 GHz) and 450 Mbit/s (2.4 GHz)
simultaneously
 Telephone system (ISDN, analog, IP) with DECT base station,
answering machine and faxing
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
83
Why LISP at AVM?
• Request for multiple WAN, Aggregation of multiple links
• To speed up IPv6 implementation
• Request for cooperation from CISCO LISP Team
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
84
LISP in the FRITZ!Box, IPv6
LISP: Locator / Identifier Separator Protocol
 Idea: address space of my hosts (EIDs) is independent of the address space
from my ISP (RLOC)
 Very flexible tunneling scenarios are possible: IPv4 in IPv6, IPv6 in IPv4, v6 in
v6, v4 in v4
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
LISP in the FRITZ!Box, Hybrid solutions
Aggregation of multiple links with LISP
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Example, Hybrid solution VDSL and LTE
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
87
Executive Panel : LISP Customers Discuss Modern
Network Solutions
 Introduction
Fabio Maino
 LISP Perspectives
Colin Kincaid
 Customer Use Case :: Cisco IT
Khalid Jawaid
 Customer Use Case :: IBM
Chris Williams
 Customer Use Case :: Etat du Valais
Christian Quenzer
 Customer Use Case :: AVM GmbH
Eric van Uden
 Questions/Answers
ALL
 Closing Words
Fabio Maino
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
88
Executive Panel : LISP Customers Discuss Modern
Network Solutions
 Introduction
Fabio Maino
 LISP Perspectives
Colin Kincaid
 Customer Use Case :: Cisco IT
Khalid Jawaid
 Customer Use Case :: IBM
Chris Williams
 Customer Use Case :: Etat du Valais
Christian Quenzer
 Customer Use Case :: AVM GmbH
Eric van Uden
 Questions/Answers
ALL
 Closing Words
Fabio Maino
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
89
LISP References
LISP Information
 LISP Information
Cisco LISP Site …………………….
http://lisp.cisco.com (IPv4 and IPv6)
Cisco LISP Marketing Site ………...
http://www.cisco.com/go/lisp/
LISP Beta Network Site ……………
http://www.lisp4.net or http://www.lisp6.net
LISP DDT Root ……………………...
http://www.ddt-root.org
IETF LISP Working Group ……...…
http://tools.ietf.org/wg/lisp/
 LISP Mailing Lists
Cisco LISP Questions ………………
lisp-support@cisco.com
IETF LISP Working Group …………
lisp@ietf.org
LISP Interest (public) ……………….
lisp-interest@puck.nether.net
LISPmob Questions ………………...
users@lispmob.org
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
90
Complete Your Online Session Evaluation
 Complete your session evaluation
online now through either the mobile
app or internet kiosk stations.
Maximize your Cisco Live experience with your
free Cisco Live 365 account. Download session
PDFs, view sessions on-demand and participate in
live activities throughout the year. Click the Enter
Cisco Live 365 button in your Cisco Live portal to
log in.
Note: This slide is now a Layout choice
PNLRST-2020
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
91
Related documents
WWW+Internet+networking - Edulink
WWW+Internet+networking - Edulink
CCENT 640-822 ICND1 Exam Topics Review
CCENT 640-822 ICND1 Exam Topics Review
7 Survival Skills - 21st Century Schools
7 Survival Skills - 21st Century Schools
IoT EBC Deck - Cisco Communities
IoT EBC Deck - Cisco Communities
AIR-CAP3702E-EK910
AIR-CAP3702E-EK910
SPN-5300-K9
SPN-5300-K9
if not using preferred method of corporate MPLS circuits
if not using preferred method of corporate MPLS circuits
Cisco and Qualcomm offer the latest in Carrier Grade Wi
Cisco and Qualcomm offer the latest in Carrier Grade Wi
Download