Product manual

ManualsBrandsAlaxala ManualsComputer equipmentAX2400S series

[

]

Second Edition

Summary of content (42 pages)

PAGE 2
AX Series Network Partition: Solution Guide [Basic] Second Edition Introduction This AX Series Network Partition: Solution Guide [Basic] document informs system engineers of the technologies required to implement a system based on a network partition, a simple network virtualization, by using the ALAXALA Network's AX series (AX6700S, AX6600S, and AX6300S).
PAGE 3
AX Series Network Partition: Solution Guide [Basic] Second Edition Revision History Edition First Second Rev. - Date 2009.1.22 2010.2.19 Description First Edition Added: AX6600S, AX6700S, AX6300S (for Ver11.3) in the list of VRF-enabled devices Chapter 1: Introduction to Network Partition Added: Use of network partitions in a GSRP configuration Chapter 2: Required Conditions and Support Status Added: Items on the AX6600S in the requirement table Added: Ver11.
PAGE 4
AX Series Network Partition: Solution Guide [Basic] Second Edition Contents 1. INTRODUCTION TO NETWORK PARTITION .............................................................................5 1.1 VIRTUALIZATION OF NETWORKS ......................................................................................................5 1.2 VRF AND PARTITIONS .....................................................................................................................6 1.3 COMBINED L2 NETWORKS ............
PAGE 5
AX Series Network Partition: Solution Guide [Basic] Second Edition 1. Introduction to Network Partition 1.1 Virtualization of networks System virtualization is a technology for separating or integrating system resources regardless of their physical configuration. Virtualization has advantages in cost and operation due to its small physical resource requirements compared to the assumed system size. There are several network virtualization technologies already available, including MPLS-VPN.
PAGE 6
AX Series Network Partition: Solution Guide [Basic] Second Edition 1.2 VRF and partitions One of the core technologies of network partition is Virtual/VPN Routing and Forwarding (VRF), which handles multiple logically separated Layer 3 networks in a single device. VRF-ID:2 VRF-ID:3 VRF-ID:n Routing table Routing table Routing table Routing table ARP table ARP table ARP table ARP table MAC table MAC table VLAN VLAN Global network Partition Figure 1.
PAGE 7
AX Series Network Partition: Solution Guide [Basic] Second Edition 1.3 Combined L2 networks In Network Partition, high availability is required to handle multiple networks. To achieve this, various routing protocols (static, RIP OSPF, and BGP) are independently available for each partition in the Layer 3 networks. Further, Network Partition combined with link aggregation and ring protocols is available in Layer 2 networks (GSRP is also available starting with software ver.11.2.).
PAGE 8
AX Series Network Partition: Solution Guide [Basic] Second Edition L2 (FT network) Central integrated server Easy to add/change access points (ring nodes) in response to user needs AX2400S Central facilities, data center, etc. AX6300S L2 (ring) AX2400S Public terminal Figure 1.
PAGE 9
AX Series Network Partition: Solution Guide [Basic] Second Edition Divided by VLAN → Divided by Network! VLAN a → Partition a Server room Division server A Division server B VLAN b → Partition b Logical networks can be introduced while maintaining the existing redundancy of a two-device system configuration AX2400S L2 (STP → Not needed) AX6600S VRRP → GSRP L2 (STP → Not needed) AX2400S AX2400S AX1200S Floor 1 Division A Division B terminal terminal Figure 1.
PAGE 10
AX Series Network Partition: Solution Guide [Basic] Second Edition 1.4 Inter-partition communication and shared networks Network partition can be used to handle multiple logically distinguished networks. Basically, each partition has an independent network. Partitions, however, are able to communicate with each other. Communications between partitions are achieved through route-filtering setting enhanced for VRF.
PAGE 11
AX Series Network Partition: Solution Guide [Basic] Second Edition 2. Accommodating Conditions and Support Status 2.1 Accommodating conditions This section describes the conditions that are specifically related to VRF in the manual (AX6700S·AX6300S Software Manual Configuration Guide Vol.1, 3.2 Device Capacities). The other required conditions are regarded as common to any VRF.
PAGE 12
AX Series Network Partition: Solution Guide [Basic] Second Edition AX6700S AX6600S AX6300S Item BSU-LA BSU-LB CSU-1B#1 MSU-1B#1 Multicast-enabled VRF instances 127 per device 249 per device #1 Support for VRF in the AX6600S series is active only when CSU-1B or CSU-1B1 is incorporated. Support for VRF in the AX6300S is active only when MSU-1B or MSU-1B1 is incorporated. #2 When a rendezvous point is set without specifying a group, the default group is assigned.
PAGE 13
AX Series Network Partition: Solution Guide [Basic] Second Edition (32) Number of configurable VRF instances (common to the AX6700S, AX6600S, and AX6300S series) The number of VRF instances that can be configured is shown below. A global network is not included in the number of VRF instances that can be configured. Table 2.
PAGE 14
AX Series Network Partition: Solution Guide [Basic] Second Edition Item When using VRF ● U Email sending sFlow statistics Remarks Scope of the statistics covers VRF instances, although the router-type and gateway-type extended data formats collected at VRF-enabled interfaces are excluded. The collector only covers the global network.
PAGE 15
AX Series Network Partition: Solution Guide [Basic] Second Edition 3. Examples of Configuring Systems with Network Partitions As described in Chapter 1, the basic configuration of network partitions is a combination of VRF-enabled L3 core switches and L2 networks. This chapter describes how to configure a system using a detailed example. 3.
PAGE 16
AX Series Network Partition: Solution Guide [Basic] Second Edition The logical configuration of the system is illustrated below: VRF10 server VRF10 admin terminal (syslog collector) 172.16.255.10 VRF20 server 0/5-12 0/13-24 VLAN10 VLAN20 S1: AX2430S VLAN10,20 0/1-2 Administration: global network Admin terminal: VLAN2 192.168.255.0/24 System admin terminal 192.168.255.10 VRF20 admin terminal (syslog collector) 172.17.255.
PAGE 17
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.1.1 Important points in the configuration (1) Assign the VRF configuration only to the L3 core device Assign the VRF configuration only to the L3 core device. No VRF settings are needed for any peripherals consisting of L2 networks. VRF IDs, the identifiers for VRF instances, must be a number equal to or greater than 2. When L2 protocol is not used at the same time, as in this configuration, the maximum number cannot exceed 250.
PAGE 18
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.1.2 Configuration example Given below is a configuration example describing a starting point for system configuration. For the overall configuration, see the Appendix. (1) Configuration of the core node C1 (AX6708S) configuration Prohibition of spanning trees (config)# spanning-tree disable The AX series default value for PVST+ is enabled, therefore, disable PVST+.
PAGE 19
AX Series Network Partition: Solution Guide [Basic] Second Edition C1 (AX6708S) configuration (config)# interface range gigabitethernet 3/2, gigabitethernet 4/2 (config-if-range)# link debounce time 0 (config-if-range)# channel-group 12 mode on (config)# interface range gigabitethernet 3/3, gigabitethernet 4/3 (config-if-range)# link debounce time 0 (config-if-range)# channel-group 13 mode on Ports 3/2 and 4/2 form channel group 12 for connection with device A2.
PAGE 20
AX Series Network Partition: Solution Guide [Basic] Second Edition (2) Configuration of access nodes There are no VRF configuration items in the configuration of access nodes. The partition (VRF) to which an access node is related is determined by the partition to which the VLAN handled by the access node belongs. The L3 core node in which the VRF configuration is defined handles such settings.
PAGE 21
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.2 Network partitions in a ring network This section shows an example of configuring network partitions in a network where AX6300S L3 core switches are used together with a ring protocol. Server for network 1 Server for network 2 AX2430S Network 1 admin terminal Network 2 admin terminal AX6304S (L3 Core) AX2430S Ring network Network 1 terminals Partition 1: Network 1 Figure 3.
PAGE 22
AX Series Network Partition: Solution Guide [Basic] Second Edition The logical configuration of the system is illustrated below: VRF10 server VRF10 admin terminal (syslog collector) 172.16.255.10 VRF20 server 0/5-12 0/13-24 VLAN10 VLAN20 S1: AX2430S Administration: global network Admin terminal: VLAN2 192.168.255.0/24 System admin terminal 192.168.255.10 VRF20 admin terminal (syslog collector) 172.17.255.
PAGE 23
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.2.1 Important points in the configuration (1) Assign the VRF configuration only to the L3 core device Assign the VRF configuration only to the L3 core device. No VRF settings are needed for any peripherals (ring nodes, etc.) consisting of L2 networks. VRF IDs, the identifiers for VRF instances, must be a number equal to or greater than 2. The upper limit of the value is 64 if the ring protocol is used as the L2 protocol.
PAGE 24
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.2.2 Configuration example Given below is a configuration example describing a starting point for system configuration. For the overall configuration, see the Appendix. (1) Configuration of the core node C1 (AX6304S) configuration Prohibition of spanning trees (config)# spanning-tree disable The AX series default value for PVST+ is enabled, therefore, disable PVST+.
PAGE 25
AX Series Network Partition: Solution Guide [Basic] Second Edition C1 (AX6304S) configuration (config)# interface gigabitethernet 2/24 (config-if)# switchport access vlan 2 Define port 2/24 as the VLAN2 access port for system administration. (config)# interface range gigabitethernet 1/1, gigabitethernet 2/1 (config-if-range)# link debounce time 0 (config-if-range)# channel-group 1 mode on Define ports 1/1 and 2/1 to form channel group 1 for connection with device S1.
PAGE 26
AX Series Network Partition: Solution Guide [Basic] Second Edition S1 (AX2430S) configuration Prohibition of spanning trees (config)# spanning-tree disable The default value for PVST+ is enabled, therefore, disable PVST+. VLAN configuration (config)# vlan 10,20 Define the settings of the VLANs to be used.
PAGE 27
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.3 Network partition using GSRP The following shows an example of configuring a network partition system with GSRP in a network that uses the AX6300S as the L3 core switch. Server for network 1 Server for network 2 AX2430S Admin terminal for Network 1 Master Master AX2430S Network 1 terminals Partition 1: Network 1 Figure 3.
PAGE 28
AX Series Network Partition: Solution Guide [Basic] Second Edition The logical configuration in this example is as shown below. VRF10 sever VRF20 server Administration: global network VRF10 admin terminal (syslog collector) 172.16.255.10 0/5-12 VLAN10 S1: AX2430S VLAN2, 10, 20 0/1 0/2 VRF10 master Admin terminal: VLAN2 192.168.255.0/24 VRF20 admin terminal (syslog collector) 172.17.255.10 VLAN2 0/24 System admin terminal 192.168.255.
PAGE 29
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.3.1 Important points in the configuration (1) Assign the VRF configuration only to the L3 core device Assign the VRF configuration only to the L3 core device. No VRF setting is needed for any peripherals (ring nodes, etc.) consisting of L2 networks. VRF IDs must be a number equal to or greater than 2. The upper limit of the value is 125 when using GSRP.
PAGE 30
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.3.2 Configuration example Given below is a configuration example describing a starting point for system configuration. For the overall configuration, see the Appendix. (1) Configuration of the core node C1 (AX6604S) configuration Prohibition of spanning trees (config)# spanning-tree disable The AX series default value for PVST+ is enabled, therefore, disable PVST+.
PAGE 31
AX Series Network Partition: Solution Guide [Basic] Second Edition (config)# interface gigabitethernet 3/3 (config-if)# link debounce time 0 (config-if)# switchport mode trunk (config-if)# switchport trunk allowed vlan 200-201 Also define port 3/3 for the access switch connection. Define ports 200-201 as the trunk ports where communication is permitted for the VLAN.
PAGE 32
AX Series Network Partition: Solution Guide [Basic] Second Edition (2) Configuration of access nodes There is no VRF-related setting required for configuration of access nodes. A partition (VRF) to be associated with an access node is the one to which the VLAN handled by the access node belongs.The L3 core node in which the VRF configuration is defined handles such settings.
PAGE 33
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.4 Configuration method for shared networks An example for extending the system of a network partition based on an FT network as explained in section 3.1 and newly adding and configuring a shared network is described below.
PAGE 34
AX Series Network Partition: Solution Guide [Basic] Second Edition After the settings described above are complete, route filtering is used to achieve a shared network. Remote VRF is mutually specified between VRFs that permit communication. More detailed filter conditions can be also created using a prefix list. Route filtering in this example configuration is described below. route-map VRF20_IMPORT permit match vrf 5 route-map VRF10_IMPORT permit match vrf 5 Network 1: VRF10 Server: VLAN10 172.16.0.
PAGE 35
AX Series Network Partition: Solution Guide [Basic] Second Edition 3.4.2 Configuration example For the overall configuration including the description below, see the Appendix.
PAGE 36
AX Series Network Partition: Solution Guide [Basic] Second Edition 4. Network Partition Operations 4.1 System log In the device that uses a VRF function, VRF information is added to the event information on the routing protocol, such as RIP, OSPF, BGP4, or PIM-SM, to identify a VRF for which each routing protocol has been used. VRF information is also added partially in the device-related event protocol (location of event occurrence = IP) or in software (multicast-related) .
PAGE 37
AX Series Network Partition: Solution Guide [Basic] Second Edition • vrf all is specified. C1>show ip route vrf all Date 2008/12/20 12:00:00 UTC VRF: global Total:4 routes Destination Next Hop Interface 127/8 ---localhost 127.0.0.1/32 127.0.0.1 localhost 192.168.255/24 192.168.255.1 VLAN0002 192.168.255.1/32 192.168.255.1 VLAN0002 VRF: 5 Total: 14 routes Destination Next Hop Interface 10/8 10.1.2.3 VLAN0005 10.1.2.3/32 10.1.2.3 VLAN0005 127/8 ---localhost 127.0.0.1/32 127.0.0.1 localhost 172.16/16 172.16.
PAGE 38
AX Series Network Partition: Solution Guide [Basic] Second Edition C1>show VLAN 100 Date 2008/12/20 12:00:00 UTC VLAN counts:1 VLAN ID:100 Type:Port based Status:Up Learning:On Tag-Translation: BPDU Forwarding: EAPOL Forwarding: Router Interface Name:VLAN0100 VRF:10 IP Address:192.168.10.1/24 Source MAC address: 0012.e2e0.
PAGE 39
AX Series Network Partition: Solution Guide [Basic] Second Edition 5. Cautions (1) Use of the VRF function requires a separate optional license (OP-NPAR). The VRF function is indispensable when constructing a network partition system. However, an optional license (OP-NPAR) is separately required for the device that is configured for VRF. (2) MSU-1B or MSU-1B1 is required to use the VRF function in the AX6300S. CSU-1B or CSU-1B1 is required to use the VRF function in the AX6600S.
PAGE 40
AX Series Network Partition: Solution Guide [Basic] Second Edition Appendix: Configuration Files Examples of the configurations introduced in this guide are described below. Configurations for each device in each network configuration in Chapter 3 are attached to these files as text files. (Adobe Acrobat 5.0 and later or Adobe Reader 6.0 and later are required to extract the attached files.) For details on each configuration, see the attached files with the same names as the file names below. 3.
PAGE 42
Edition 2 – February 19, 2010 Network Technical Support ALAXALA Networks Corporation Shin-Kawasaki Mitsui Bldg West Tower, 890 Kashimada, Saiwai-ku, Kawasaki-shi, Kanagawa 212-0058, JAPAN http://www.alaxala.com/en/index.