VXLAN introduction

Download Report

Transcript VXLAN introduction

VXLAN BPK-1310A
Spirent TestCenter
May 2014
PROPRIETARY AND CONFIDENTIAL
VXLAN - Virtual eXtendable LAN – BPK-1310A
Can Emulate and Scale to thousands of VTEPs
supporting thousands of segments


Multicast, PIM & Unicast learning modes

Auto UDP source port for hashing

Fully Integrated into Spirent TestCenter
inheriting all its features allowing the
emulated VMs to emulate protocols such as:
Http, FTP, DHCP, IGMP, …

Wizard to setup large networks quickly

Dynamically Start / Stop VTEPs and move VMs

Layer 2 or Layer 3 VXLAN
Test Cases for VXLAN

VTEP & Mac Learning / Scaling

Duplicate MAC / VXLAN

Multicast Latency

Flooding or miss-directed packets
‹#›
PROPRIETARY AND CONFIDENTIAL
STC Port 1
VM11
VM12
VM13
VM21
VM22
VM31
L3
Network
VTEP 1
DUT VTEP
VTEP 2
VTEP 3
STC Port n
VTEP n
Roadmap 2014 2H: OVSDB
VMn
VXLAN introduction

Virtualized Data Center challenges
• Increased MAC support as a physical server may host 100s of VMs, placing
stress on the ToR switch MAC table
• Increased segmentation support; 802.1q is limited to 4096 VLANs which is far
too little in a large scale Cloud Provider’s network
• Hosting multiple tenants over the same physical infrastructure, while
eliminating conflicts of existing MAC & IP addresses and VLAN IDs
• Spanning virtualized L2 domains over L2 or L3 physical infrastructure while
maintaining all ports forwarding (no STP) and reaching equipment in the
same or even remote Data Centers
‹#›
PROPRIETARY AND CONFIDENTIAL
VXLAN introduction

The Overlay solution
• Supports ECMP routed L3 networks and newer L2 technologies like SPB and
TRILL, or SDN technologies like OpenFlow which keep all ports forwarding by
design
• Increases “segmentation” support up to 16 million broadcast domains via 24
bit VNI (VXLAN Network Identifier) called “VXLAN Segments” opposed to
‘VXLANs’
• Solves the multi-tenant, “cross pod expansion” issue by allowing tenants to
share physical infrastructure, maintain traffic segmentation, and expand
beyond their initial pod configuration and use hardware in another rack or
even another Data Center altogether!
• Places VM MAC learning burden on VTEP
gateway opposed to ToR/EoR switch (in
the case where VTEP resides on
hypervisor host!)
• VTEP will map both MAC to VNI + VNI to
IGMP address in local tables
‹#›
PROPRIETARY AND CONFIDENTIAL
VXLAN
VNI
VXLAN introduction

VXLAN encapsulation
• Performed by VTEPs (aka VXLAN Gateways)

VTEPs will have to encapsulate + map multiple VNIs to a single IGMP
class D address (VNIs scale much higher than IGMP address space)
• Original VM MAC frame encapsulated with outer header comprised of MAC,
optional 802.1Q tag header, IP, UDP and VXLAN header

VXLAN header (32 bits) contains Flags (8 bits; bit 3 = 1 rest zero), VNI
(24 bits), and two reserved fields (24 & 8 bits) respectively
• VTEPs use two basic methods to flood, learn and forward traffic between
VMs always encapsulating the original source frame
Source:
VMware
‹#›
PROPRIETARY AND CONFIDENTIAL
VXLAN
VNI101
VNI102
VXLAN
LAN
VTEP1
VNI103
VTEP2
VNI101
VNI101
VNI102
VNI103
VNI103
P1
VNI101
VTEP3
P4
P2
VTEP4
VTEP
DUT
VNI103
P3
VTEP5
VNI103
Ethernet/IP/UDP/VXLAN-Packet
Multicast ARP per Segment
‹#›
PROPRIETARY AND CONFIDENTIAL
Traffic Port
VNI102
Packet
Spirent TestCenter VXLAN Features …

Emulates VTEPs and the VMs behind each VTEP

Ability to set VXLAN UDP source port, or use an auto
generated one for table hashing

Destination UDP Port configurable, normally set to
4789

For Multicast VXLAN, both IGMP or PIM can be
defined and used

Can create multiple VMs behind a VTEP on a unique
VNIs or on all the same VNI

Can create a block of VMs on the same VNI for high
scale testing
‹#›
PROPRIETARY AND CONFIDENTIAL
Spirent TestCenter VXLAN Segment Editor

Easy-to-use VXLAN Segment Editor

Support for Multicast / Unicast

Define both Encapsulated and
Unencapsulated end-points (VMs)

Associate VNI with Segment and type

Associate End-point (VM) with
Segment

Assocate VM with VTEP

VMs and VTEPs should already be
defined
‹#›
PROPRIETARY AND CONFIDENTIAL
Spirent TestCenter VXLAN Wizard

Wizard to create topologies with many
devices and data at any scale

Scale number ports, vlans, VTEPs,
segments, and VMs …

Quick-Easy for large-or-small
‹#›
PROPRIETARY AND CONFIDENTIAL
Spirent TestCenter VXLAN Traffic

All Traffic addresses for traffic are automatically updated

Both Inter and Outer Layer, All ARP are automatic
‹#›
PROPRIETARY AND CONFIDENTIAL
Spirent TestCenter VXLAN Results

All Stream results available for VXLAN

Sorted by VNI Segment

Per Segment Latency, Counts, Multicast Join / Leave Latency
‹#›
PROPRIETARY AND CONFIDENTIAL
Spirent TestCenter VXLAN Capture

Easy to read packet Capture via Wireshark

Filter on any Segment
‹#›
PROPRIETARY AND CONFIDENTIAL
VXLAN Topology Emulation

All Spirent TestCenter Protocols are supported over VXLAN
• HTTP
• FTP
• Video – Multicast Streams
• IGMP
• DHCP / DHCP Server
• Routing: BGP, OSFP, RIP
‹#›
PROPRIETARY AND CONFIDENTIAL
Spirent SDN Solution
The Smarter Way to Test
• OpenFlow 1.3 / 1.0
• 400+ Test Cases
• Integrated Data
Traffic
• Multi Switch
Connections
• OpenFlow 1.3 / 1.0
• Thousands of
Switches
• Canned Topologies
• Fully customizable
• Datapath
Verification
‹#›
PROPRIETARY AND CONFIDENTIAL
OpenFlow
Switch
Conformance
OpenFlow
Controller
Emulation
• OpenFlow 1.3 / 1.0
• Easy to add flows
across network
• Millions of Flows
• Master / Slave
• Metering
• Flow Capacity
OpenFlow
Switch
Emulation
SDN
End-to-End
Performance
• Flow Forwarding
• Flow Failover
• Controller Failover

Ralph Daniels

Senior Product Manger at Spirent Communications

[email protected] +1.919.306.7475