Scribd
Upload
113 views71 pages

VXLAN Benefits in Data Centers

VXLAN allows for Layer 2 connectivity across Layer 3 boundaries by encapsulating Layer 2 frames in UDP/IP packets. This allows virtual networks to span physical networks and eliminates the need for STP. VXLAN gateways encapsulate and decapsulate frames and maintain MAC address tables and tunnels to connect virtual networks.

Uploaded by

sofyankp mtm
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
113 views71 pages

VXLAN Benefits in Data Centers

VXLAN allows for Layer 2 connectivity across Layer 3 boundaries by encapsulating Layer 2 frames in UDP/IP packets. This allows virtual networks to span physical networks and eliminates the need for STP. VXLAN gateways encapsulate and decapsulate frames and maintain MAC address tables and tunnels to connect virtual networks.

Uploaded by

sofyankp mtm
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 71

Why VXLAN ?

About Me
Nama Lengkap : Muhammad Danu Wiyoto
Alamat : Karawaci, Tangerang, Banten
Pendidikan : S.Kom – Binus University, Jakarta ( 2000 – 2005 )
E-mail : [email protected]
[email protected]
Blog : danuwi.wordpress.com
Title : S.Kom, CCNA, CCNP EI, CCDP, CCIE RS #48413, MTCNA, MTCRE, MTA, HCNA RS, H3CNE,H3CSE
ACSA

Ig.me/danu.wiyoto.5 t.me/Danu48413 fb.com/danu.wiyoto.5 linkedin.com/in/mwiyoto

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Overview

1 Evolution of Data Center Networking and Management


2 Hierarchy Topology
3 Spine & Leaf Topology
4 What is VXLAN?
5 VXLAN Terminologi
6 VXLAN Type
7 Topology Lab

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


1
Evolution of Data Center Networking and
Management
What A Datacenter Needs To Offer

1. Availability
2. Scalability
3. Flexibility
4. Eficiency
5. Predictability
6. Reliability

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Evolution DESTROY STP
Type-1
F
H ➢ LAG
R ➢ Bonding Ether
P ➢ LACP
➢ PAgP

Type-2
F
H
R
P

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Evolution DESTROY STP
Type-1 ➢ M-LAG
➢ Stacking
F
H ➢ VSS
R ➢ VPC
P

Type-2
F
H
R
P

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Evolution DESTROY STP

1. Underlay Overlay
- Shortest Path Bridging (SPB)
- Transparent Inter-Connection of Lots of Links ( TRILL )
- Fabricpath
- Locator ID Separation Protocol ( LISP )
- VXLAN

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Traditional Applications
• Many traditional applications in a data center strictly
require Layer 2 connectivity between devices
Switched Network

.1 10.1.1.0/24 10.1.1.0/24 .2
VLAN 100
VLAN 100 L2 Switch L2 Switch VLAN 100
Host A Host B

• What happens when you have traditional applications in


the data center is built around an IP Fabric?
IP Fabric

.1 10.1.1.0/24 172.16.0/24 10.1.1.0/24 .2


VLAN 100 Router Router VLAN 100
Routed Traffic Host B
Host A

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Possible Solution: A Layer 2 VPN
• Implement TOR routers with Layer 2 VPN capabilities
• Tunnel layer 2 frames inside IP Packets between VPN
gateways
• Routers that can perform encapsulation and decapsulation of VPN data are generally
called gateways
• Preserves original layer 2 frame as it transits the transport network (IP Fabric)
Data Forwarding Direction Encapsulate for
transmission over fabric Decapsulate

ETH IP – DA 10.1.1.2 IP – DA 17.16.0.2 ETH IP – DA 10.1.1.2 ETH IP – DA 10.1.1.2

Original Ethernet
Frame

IP Fabric

.1 10.1.1.0/24 .1 172.16.0/24 .2 10.1.1.0/24 .2


ge-0/0/0 Router Router ge-0/0/0
Host A Host B

TOR Routers
With Layer 2 VPN Capabilities

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VPN Terminology—Data Plane
• The data plane of a VPN describes the process of encapsulation
and decapsulation performed by the VPN Gateways
• Including the end-to-end routing/MAC table lookups,
packet/frame formatting, and sometimes MAC learning
Data Forwarding Direction Encapsulate for
transmission over fabric Decapsulate

ETH IP – DA 10.1.1.2 IP – DA 17.16.0.2 ETH IP – DA 10.1.1.2 ETH IP – DA 10.1.1.2

Original Ethernet
Frame

IP Fabric

.1 10.1.1.0/24 .1 172.16.0/24 .2 10.1.1.0/24 .2


ge-0/0/0 Router/GW Router/GW ge-0/0/0
Host A Host B

HostA MAC >ge-0/0/0 HostB MAC >ge-0/0/0


HostB MAC > tunnel HostA MAC > tunnel

MAC Table MAC Table

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VPN Terminology—Control Plane
• The control plane of a VPN describes the process of
learning performed by the VPN Gateways
• Including the IP address of remote VPN gateways, VPN establishment, and
sometimes MAC addresses of remote hosts
• Remote VPN gateways can be statically configured or dynamically
discovered

IP Fabric

.1 10.1.1.0/24 .1 172.16.0/24 .2 10.1.1.0/24 .2


ge-0/0/0 Router/GW Router/GW ge-0/0/0
Remote Host A Host B
MACs are
sometimes HostA MAC >ge-0/0/0 HostB MAC >ge-0/0/0
learned HostB MAC > tunnel HostA MAC > tunnel
from the MAC Table
VPN Signaling MAC Table
signaling
protocol

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


DC Network Evolution #Spanning Tree

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


DC Network Evolution #vPCs

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


DC Network Evolution #FabricPath

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


DC Network Evolution #VXLAN

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


DC Network Evolution #EVPN

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN BGP-EVPN
CONTROL PLANE

BGP - EVPN

DATA PLANE

MPLS VXLAN PBB

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Data Center Topology

There are 2 types of topology that commonly use In Data Center :

• Hierarchy Topology
• Spine and Leaf Topology

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


2
Hierarchy Topology
Hierarchy Topology

• CORE CORE
• DISTRIBUTION
• ACCESS

DISTRIBUTION

ACCESS

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


3
Spine & Leaf Topology
Spine & Leaf Topology

SPINE

LEAF

End Node

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Topologies Evolution

L3 FHRP

L2

• Single Switch • Single Switch • Single Switch


• Single Router • Single Router • Single Router
• High Risk • Medium Risk • Medium Risk
• Low MGMT Effort • Medium MGMT Effort • Low MGMT Effort

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Topologies Evolution

IGP
( OSPF, EIGRP )
L3 FHRP FHRP

L2

L3

L2 FHRP
FHRP

• Add Redudancy
• 50 % Un-Used • Add Redudancy • Add Redudancy
• Add port-capacity • Add port-capacity
• 50 % Un-Used • 50 % Un-Used
• Big Layer 2 domain ( ALERT ) • Reduces Mobility

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Traditional vs VXLAN network design

HSRP
Layer-3

Layer-2
HSRP

Spanning-Tree

Layer-2 Layer-2 Layer-2

Layer-2 Layer-2
Layer-2 Layer-2

pervisor Baremet al Baremet al Hypervisor Hypervisor

Baremet al Hypervisor Hypervisor Hypervisor Baremet al Hy

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


The Benefit of Spine and Leaf

1. Improved Redudancy
2. Increased Bandwidth
3. Improved Scalability
4. Low Latency and Congestion Avoidence

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


4
What is VXLAN?
What is VXLAN?

1. VXLAN is a network overlay technology


2. VXLAN builds Layer-2 & Layer-3 overlay network on top of an IP routed network
3. VXLAN uses MAC in UDP encapsulation (UDP destination port 4789)
4. VXLAN is one of the Tunneling Protocol
5. VXLAN is an extension to Vlan that provide 16 Million VNI number to use 16 million
6. Reduces MAC Address Table Consumption
7. Anycast Gateway
8. Leverages Layer-3 ECMP – all links forwarding
9. Segmentation and Multi-Tenancy
10. CLOS Topology

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Two Modes of VXLAN

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


The Benefit of VXLAN

1. Flexible placement of multitenant segment throughout the data center


2. Better utilization of available network path in the underlying infrastructure
3. Higher Scalability to address more Layer 2 segment

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


5
VXLAN Terminologi
VXLAN TERMINOLOGY

1. VXLAN Underlay
2. VXLAN Overlay
3. VXLAN Tunnel End Point (VTEP)
4. VNI/VNID
5. VXLAN Gateway ( Anycast Gateway )
6. Network virtualization Edge (NVE)
7. BUM Traffic Tunnel End Point (VTEP)

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Why VXLAN Overlay

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Overlay Taxonomy

• Identifier = VN Identifier (VNID)


Overlay Control Plane
• NVE = Network Virtualisation Edge VTEPs
• VTEP = VXLAN Tunnel End-Point
Encapsulation

Edge Devices (NVE)


Edge Device (NVE)

Hosts
(end- points,
Underlay Network physical or
virtual)

Underlay Control Plane

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Virtual Tunnel End Point (VTEP)

Transport Ip
Network

VTEP
IP Interface IP Interface

Local LAN Local LAN


Segment Segment

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN Underlay

Edge Device
Edge Device

Local LAN
Local LAN Segment
IP Interface
Segment

Physical Host
Edge Device Physical Host
Local LAN
Segment

Virtual Switch

Virtual Hosts

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN Overlay

VTEP
VTEP

V V
Local LAN
Local LAN Segment
Segment Encapsulation

Physical Host
VTEP
V Physical Host
Local LAN
Segment

Virtual Switch

VTEP – VXLAN Tunnel End-Point


VNI/VNID – VXLAN Network Identifier Virtual Hosts

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Overlay Network Evolution: Edge Devices
Network Overlays Host Overlays Hybrid Overlays
Protocols Flooding Network DB

V V
V V M A A
M M p p
M O O p
O p
O S S O O
S S
S S

Physical Physical Virtual Virtual Virtual Physical

• Router/switch end-points Virtual end-points only • Physical and Virtual


• Protocols for Single admin domain • Resiliency + Scale
resiliency/loops
VXLAN, NVGRE, STT • x-organisations/federation
• Traditional VPNs
Tunnel End-points • Open Standards
• OTV, VPLS, LISP, FP

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VTEP (1 of 3)
A VTEP is the endpoint of a VXLAN tunnel
It takes Layer 2 frames from VMs and encapsulates them using
VXLAN encapsulation
Based on preconfigured mapping of VLAN to VNI

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VTEP (2 of 3)
A VTEP is the endpoint of a VXLAN tunnel (contd.)
Forwards VXLAN packets to remote VTEP over the L3 network
Based on MAC to remote VTEP mapping

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VTEP (3 of 3)
A VTEP is the endpoint of a VXLAN tunnel (contd.)
Takes Layer 3 packets received from the remote VTEP and strips the outer
MAC, outer IP header, and VXLAN header
Forwards resulting Layer 2 frames to the destination based on VNI-to-interface
mapping

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


MAC Address Learning

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Multicast MAC Learning (Controller-less)

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Building the Multicast Tree

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Multicast Tree Forwarding

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


6
VXLAN Type
VXLAN Type

• VXLAN Unicast/Static VXLAN


• VXLAN Multicast/ Flood & Learn
• VXLAN EVPN
• VXLAN LISP (Locator ID Separation Protocol)

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN Unicast/Static VXLAN

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN Multicast/Flood & Learn

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN EVPN (L2)

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN EVPN (L3)

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN Data Plane
Original VLAN tag is usually removed
during encapsulation

F
OUTER OUTER OUTER VXLAN
Original L2 Frame C
MAC IP UDP Header S

48 DEST MAC
IP HDR SOURCE
72 16
DATA PORT FLAGS
48 SRC MAC 8
PROTO: VXLAN RRRR1RRR
8 16
VLAN UDP PORT
32
(OPTIONAL) UDP RESERVED 24 VXLAN Network Identifier – On a
16 CKSUM 16
16
ETH TYPE LENGTH VXLAN gateway, the 24-bit VNI is
0X0800 SRC IP: CHKSUM VNI 24
32
MY VTEP
16
0X0000
mapped statically through
DST IP: RESERVED 8 configuration to a host/server facing
32
DEST VTEP VLAN allowing for ~16 million
broadcast domains in a data center

VXLAN Port = 4789

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VXLAN Packet

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork
VXLAN Packet

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


Difference VLAN & VXLAN

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


7
Topology Lab
VxLAN Unicast

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VxLAN Unicast Cont.

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VxLAN Unicast cont.

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VxLAN Unicast cont.

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VxLAN Unicast Cont.

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VxLAN Multicast

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VxLAN Multicast Cont.

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VxLAN Multicast Cont.

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


VxLAN Multicast Cont.

BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork


BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork
BestPath-Network Best-Path Network www.bestpath-network.com [email protected] @bestpathnetwork
TERIMAKASIH ATAS PARTISIPASI
ANDA
Salam Pantang Pulang Sebelum Reply!!!
---
Dan Selamat Menunaikan Ibadah Puasa

You might also like