VPLS (Virtual Private LAN Service)

Presentation for NCA VPLS(Virtual Private LAN Service) July 2003 Jangwoo Son Netmanias(㈜넷레퍼런스) (Tel: 556-9273, Fax: 556-9274) http://www.netmanias.com, son@netmanias.com

Contents • Metro Ethernet Service의 출현 • Metro Ethernet Service 현황 • Classifying Metro Ethernet Services • Multipoint Services • VLAN-based • EoMPLS (PTP) • VPLS

개요 • Network Segmentation: LAN/CPN, Access, Metro Core, WAN • User Segmentation: Enterprise, Residential User • Trend 1: Metro Optical Ethernet • Internet Access service • TLS (Transparent LAN Service) • 2000년초 태동->2001년(911테러, 국내 검토시작) -> 2002년 (서비스도입) ->2003년 (기업용 서비스, vdsl) • Cannibalization • 게임방, 사이버 아파트 • 차별화 상품(드림라인, HiG,…), 경쟁관계 (KT<->하나로) • Trend 2: IP와 방송의 융합 • 북미의 History: 위성방송<->MSO<->Telco: 무한 경쟁화 • 국내의 경우: 거의 유사한 경로를 따라가고 있음 • Cable operator: CATV + Internet (+VoIP) -> 서비스 번들화 • Telco: IP 기반 방송 (다채널 B-TV, VoD) 서비스 진입중, 문제점(KT, 하나로) • 2001년(검토시작)->2002년, 2003년(시험 서비스, 필드테스트중)->2004 ?

CP Access Metro Distribution Core BB Network Segmentation Network Segmentation Edge Core SER (MPLS, IPsec) SER Enterprise (Large, SME) (Single, MTU) 1. STU 2. MTU Edge Router Optical Ethernet (EoDF) Core Router Optical Ethernet (EoDF) NG-SONET(EOS) ATM NG-SONET(EOS) RPR(EORPR) Long-haul DWDM MTU: Multi-Tenant Unit MDU: Multi-Dwelling Unit (Apart) MPLS: Multi-Protocol Label Switching NG-SONET: Next-Generation SONET EoS: Ethernet over SONET/SDH PON: Passive Optical Network TDM: Time-Division Multiplexing DSL: Digital Subscriber Line EoDF: Ethernet over Dark Fiber RPR: Resilient Packet Ring ATM: Asynchronous Transfer Mode DWDM: Dense Wavelength Division Multiplexing RPR(EORPR) E-PON ATM SONET TDM/SONET ATM xDSL Metro DWDM(EODL) Cable Modem Residential 1. Home 2. MDU Optical Ethernet E-PON xDSL Cable Modem

Before Metro Ethernet: Legacy Networks Access Metro Home POP(주노드국) CO(수용국) ADSL (1.5M~8Mbps) DSLAM 2.5Gbps (POS) GES GSR B-RAS Internet 수용국 Edge Router (7500) LAN A DS3/ OC3 MTU DS3/ OC3 T1 ADM OC3/ OC12 LAN B FLC ADM FLC STM-4 (2.5G) STU T1 SONET/SDH T1 OC3 LAN C DSC (D/MUX) ADM 동선 DSC (D/MUX) ADM CSU T1 수용국 LAN D CSU 동 POP 8M CO MDF MDU ATM SW B-RAS Core Router ATM SW DSLAM ADM OC48 ADM FLC (RT) FLC (COT) Internet OC3/12 SONET/SDH ADSL (8Mbps) ATM/STM

Enterprise MAN: Before Metro Ethernet Access Metro Home POP(주노드국) CO(수용국) ADSL (1.5M~8Mbps) DSLAM 2.5Gbps (POS) GES GSR B-RAS Internet 수용국 Edge Router (7500) LAN A DS3/ OC3 MTU DS3/ OC3 T1 ADM OC3/ OC12 LAN B FLC ADM FLC STM-4 (2.5G) STU T1 SONET/SDH T1 OC3 LAN C DSC (D/MUX) ADM 동선 DSC (D/MUX) ADM CSU T1 수용국 LAN D CSU 동 POP 8M CO MDF MDU ATM SW B-RAS Core Router ATM SW DSLAM ADM OC48 ADM FLC (RT) FLC (COT) Internet OC3/12 SONET/SDH ADSL (8Mbps) ATM/STM

Enterprise MAN service Access Metro Home POP(주노드국) CO(수용국) ADSL (1.5M~8Mbps) DSLAM 2.5Gbps (POS) GES GSR B-RAS Internet 수용국 Edge Router (7500) LAN A Internet Access DS3/ OC3 MTU DS3/ OC3 T1 ADM OC3/ OC12 LAN B T1 (1.544Mbps) FLC ADM FLC STM-4 (2.5G) STU T1 256Kbps SONET/SDH OC3 LAN C DSC (D/MUX) ADM 동선 DSC (D/MUX) 256Kbps ADM CSU 수용국 LAN D Private Line CSU 동 POP 8M CO MDF MDU ATM SW B-RAS Core Router ATM SW DSLAM ADM OC48 ADM FLC (RT) FLC (COT) Internet OC3/12 SONET/SDH ADSL (8Mbps) ATM/STM

Enterprise MAN service: Low-Speed Access Metro Home POP(주노드국) CO(수용국) ADSL (1.5M~8Mbps) DSLAM 2.5Gbps (POS) GES GSR B-RAS Internet Gbps 수용국 Edge Router (7500) LAN A DS3/ OC3 MTU DS3/ OC3 T1 ADM Bottleneck OC3/ OC12 LAN B T1 (1.544Mbps) FLC ADM FLC STM-4 (2.5G) STU T1 256Kbps SONET/SDH Gbps OC3 LAN C DSC (D/MUX) ADM 동선 DSC (D/MUX) Gbps 256Kbps ADM CSU 수용국 LAN D CSU 동 POP 8M CO MDF MDU ATM SW B-RAS Core Router ATM SW DSLAM ADM OC48 ADM FLC (RT) FLC (COT) Internet OC3/12 SONET/SDH ADSL (8Mbps) ATM/STM

Enterprise MAN service: High-Cost Access Metro Home POP(주노드국) CO(수용국) ADSL (1.5M~8Mbps) DSLAM 2.5Gbps (POS) GES GSR B-RAS Internet 수용국 Edge Router (7500) LAN A DS3/ OC3 MTU DS3/ OC3 T1 ADM OC3/ OC12 LAN B T1 (1.544Mbps) FLC ADM FLC STM-4 (2.5G) STU T1 T1 1.544 Mbps SONET/SDH OC3 LAN C DSC (D/MUX) ADM 동선 DSC (D/MUX) T1 1.544 Mbps ADM CSU 수용국 LAN D CSU TDM multiplexing/Circuit switching No Statistical multiplexing 64Kbps 64Kbps 1.544Mbps 1.544Mbps 1 1 High-Cost 1 1 … … STS-1 (45M) STS-1 24 24 … … STS-N STS-N OC-N … … 28 28 T1 1.544 Mbps T1 1.544 Mbps STS-1 STS-1

MTU MTU MTU GbE MTU New ESP (Ethernet Service Provider)출현 Access Metro POP(주노드국) 2.5Gbps (POS) GES GSR 수용국 Edge Router (7500) LAN A MTU CO(수용국) Internet T1 ADM OC3/ OC12 LAN B FLC ADM FLC STM-4 (2.5G) STU T1 SONET/SDH T1 OC3 LAN C DSC (D/MUX) ADM 동선 DSC (D/MUX) ADM CSU T1 수용국 LAN D CSU MTU MTU MTU Telseon Yipes Cogent MTU GbE CO CO MTU CO POP GSR Internet GbE CO

Ethernet Evolution Access Metro Distribution Metro Core Home Residential MDU ATM ADSL T1/E1 FR ATM ATM SONET/SDH ATM SONET/SDH Global Internet STU Enterprise MTU Optical Ethernet EoMPLS VPLS EoRPR NG-SONET(EoS) Metro DWDM Optical Ethernet EoMPLS VPLS RPR NG-SONET(EoS) Metro DWDM IP ADSL IP VDSL Optical Ethernet EoRPR NG-SONET(EoS) Global Internet

MPLS/VPLS RPR Dark fiber NG-SONET DWDM Internet access service Ethernet Private Line Service Transparent LAN Service Trend,… Ethernet over … Legacy Metro T1, E1 가입자 Ethernet Metro 가입자

국내의 경우 • 원래 Metro Ethernet은 Enterprise의 BW bottleneck을 해소해주기 위한 기술로서 미국에서 시장에 처음 출현 (Telseon, Yipes, Cogent) • 국내에서는 Residential Broadband Solution과 게임방으로 Metro Ethernet이 먼저 도입됨. • 2003년부터 기업용 Metro Ethernet 서비스가 도입되기 시작하고 있음.

Residential: Before Metro Ethernet Access Metro Residential Home ADSL (1.5M~8Mbps) DSLAM POP(주노드국) CO CO(수용국) ATM ADSL (1.5M~8Mbps) B-RAS Ethernet 2.5Gbps (POS) DSLAM GES GSR Ethernet Internet Edge Router (7500) LAN A DS3/ OC3 MTU DS3/ OC3 T1 ADM OC3/ OC12 LAN B FLC ADM FLC STM-4 (2.5G) STU T1 SONET/SDH T1 OC3 LAN C DSC (D/MUX) ADM 동선 DSC (D/MUX) ADM CSU T1 수용국 LAN D CSU 동 CO POP 8M MDF ATM SW MDU ATM SW B-RAS Core Router DSLAM ADM OC48 ADM FLC (RT) FLC (COT) Internet OC3/12 SONET/SDH ADSL (8Mbps) ATM/STM

竹の塚 西新井赤羽営業別館成増梅島志村十条千住東京綾瀬金町田端尾久王子東京大泉北町板橋東京荒川石神井西練馬亀有練馬白鬚南板橋別館巣鴨駒込第二葛飾小岩吉原関町向島池袋落合別館東京大塚浅草小石川高円寺東京上野東京野方江戸川蔵前墨田新宿井草東京大久保牛込本所東京城東荻窪東江戸川駿河台東京浜町久我山杉並神田中野九段四谷茅場兜西新宿大手町ＦＳ上北沢葛西丸の内淀橋東京烏山東京赤坂松沢ﾋﾞﾙ2 東京青山江東霞ケ関東渋谷代々木芝成城東京深川渋谷東京三田狛江世田谷弦巻白金目黒本館砧品川東京瀬田唐ヶ崎大崎別棟東京玉川自由が丘大田支店埠頭大崎荏原雪ケ谷田園調布馬込大森池上矢口羽田蒲田 Residential: After Metro Ethernet CO IP DSLAM ADSL Ethernet Main_ring … 1G Existing telephone line L3 switch Ethernet POP CO 1G 1G Dark fiber (from NTT) Internet 1G ADSL Ethernet GSR … 100M Existing telephone line L3 switch 1G IP DSLAM Last-mile Sub_ring Yahoo!BB

PC PC Modem Modem IP STB IP STB Hub Hub TV TV Residential: After Metro Ethernet PC Modem IP STB [Samsung] Hub TV CH1 IP 방송(19 channels) (2Mbps MPEG2) 암호화 CH1 CH2 Ch3 Ethernet Switch MPEG2 Encoders [Harmonic] CH1 IP multicast (All channels) 암호화 GbE IP DSLAM Metro Core L3 Switch [Cisco] VoD Servers [sgi] (IGMP) [Utstarcom] CH2 BBcableTV (HE) VoD (2Mbps MPEG2) Yahoo!BB

Delivering Video Services Over Ethernet OmniSwitch Ethernet Network Local content DSL OmniSwitch 7300 / 7301FENT & GELIM IP orL2TP Tunnel OmniSwitch DSL 7300 / 7301 FENT & GELIM Layer 2 ATM Network IP/MPLS Backbone DSL 7670 RSP or BAS/IP Services or ATM PVC 7300 / 7301 FENT & GELIM ISP DSL > Use an Ethernet Network to deliver video services > Reuses deployed equipment > Takes advantage of FE and GigE uplinks on DSLAM > OmniSwitch provides traffic classification, QoS and policy enforcement 7300 / 7301FENT & GELIM

Residential: After Metro Ethernet 동 VDSL (20Mbps) 20M Curb 2003 (64% adsl, Ethernet/vdsl 33%) VDSL IP DSLAM VDSL (20Mbps) IP DSLAM 100TX 동 L3 IP DSLAM 10/100 Ethernet CO ADSL (8Mbps) … 100FX 1GbE L2 L3 L3 SW MDU 동 10/100 Ethernet POP CO 1GbE … 100FX Subscriber Aggregation L3 L2 1GbE 동 RS38K GES GSR L3 SW 1GbE 1GbE 20M Kornet Core IP DSLAM VDSL 2.5Gbps (POS) VDSL (20Mbps) 1GbE 100TX VoD server L3 DSLAM ADSL (1.5M~8Mbps) B-RAS • Legacy Service • Home: ADSL Home Edge Router (7500) DS3/ OC3 ADM DSLAM ADSL (1.5M~8Mbps) ADM 2002 (85% adsl, Ethernet/vdsl 5%) OC3/12 STM-4 (2.5G) DS3/ OC3 DSC (D/MUX) ADM

(이중화) Enterprise MAN : After Metro Ethernet MTU L2 CPE L2 L3 CO 100FX L2 L3 CPE L2 1GbE POP(주노드국) CO L2 Internet cafe RS38K 1GbE 1GbE CPE L3 L2 100FX 2.5Gbps (POS) GES GSR Internet 수용국 Edge Router (7500) LAN A MTU T1 ADM OC3/ OC12 LAN B ADM FLC FLC STM-4 (2.5G) STU T1 SONET/SDH T1 OC3 LAN C DSC (D/MUX) ADM 동선 DSC (D/MUX) ADM CSU T1 수용국 LAN D CSU

Enterprise MAN : After Metro Ethernet CPE (L2 SW) Internet Cafe (PBR) 100FX RS38K 210.10.1.0/24 L3 M/C RS38K Dacom IP Convergence (Not STP/RSTP) 210.10.2.0/24 RS3000 RS38K PBR Enterprise HiG CPE (L3 SW) IP Convergence (Not STP/RSTP) RS38K RS1000 Onse Dacom 가입자 100FX M/C IP Convergence (Not STP/RSTP) HiG 가입자 PBR (Policy-Based Routing) Policy = Source IP

국내의 경우 현재는 여기까지 도입됨.

Current MAN/WAN

PTP Multipoint EVC E-Line E-LAN EPL ERS LAN Extension VPWS PW VPLS TLS EWS ERS EMS ERMS Internet Retail Wholesale Transport Optical Ethernet EoMPLS VPLS RPR EoS DWDM SONET EFM E-PON Fiber UTP Copper line Classifying Metro Ethernet Services Services Technology

Classifying Metro Ethernet Services CE Metro Ethernet Service L2/3 UNI CE EPL 서비스 (EWS) UNI EVC1 CE UNI Connectivity within MEN UNI CE EVC2 Private Line Service에 해당 CE UNI EVC3 UNI L2/3 PtP EVC (VPWS, PW, ELS, VLL) VLAN 1 CE VLAN 2 UNI ERS 서비스 (ERS) L3 VLAN 3 CE EVC1 CE UNI EVC2 A EVC FR서비스에 해당 Multiplexed UNI EVC3 ISP POP Router UNI CE Service Interface CE LAN Extension 서비스 (EMS) UNI UNI Physical port/ Logical port (VLAN) L2/3 CE MPtMP EVC (VPLS, E-LAN Service, TLS) EVC1 CE CE UNI UNI ISP POP Router CE CE ERMS서비스 (ERMS) UNI UNI A EVC CE L3 EVC1 CE CE UNI EVC2 Service Multiplexed UNI

Multipoint Services • VLAN-based • EoMPLS • VPLS

Multipoint Service based on VLAN CE2 Metro Access Customer 1 Site 2 Metro Core Customer 1 Site 1 CE1 VLAN 10 CE Customer 2 Site 2 1 Customer 2 Site 1 CE VLAN 20 Customer 1 Site 3 CE3 VLAN 10 VPN #10 Traffic VPN #10 Virtual Bridge Ethernet VPN #20 Traffic VPN #20 Virtual Bridge VLAN 20 Physical Connection

Multipoint Service based on VLAN Lookup Table Lookup Table Lookup Table MAC VLAN ID VLAN type Port - 10 tagged 1 - 10 tagged 2 - 10 tagged 3 - 20 tagged 1 - 20 tagged 3 MAC VLAN ID VLAN type Port - 10 port-based 4 - 10 tagged 6 - 20 port-based 5 - 20 tagged 6 MAC VLAN ID VLAN type Port - 10 port-based 1 - 10 tagged 3 - 20 port-based 2 - 20 tagged 3 CE2 Metro Access Customer 1 Site 2 Metro Core 4 6 Customer 1 Site 1 CE1 VLAN 10 CE 2 Customer 2 Site 2 5 1 1 3 1 3 Customer 2 Site 1 CE VLAN 20 2 2 Customer 1 Site 3 1 CE3 VLAN 10 Lookup Table MAC VLAN ID VLAN type Port - 10 port-based 2 - 10 tagged 1 Ethernet VLAN 20

10 10 10 Operation Lookup Table Lookup Table Lookup Table MAC VLAN ID VLAN type Port - 10 port-based 4 A 10 tagged 6 - 20 port-based 5 - 20 tagged 6 MAC VLAN ID VLAN type Port A 10 tagged 1 - 10 tagged 2 - 10 tagged 3 - 20 tagged 1 - 20 tagged 3 MAC VLAN ID VLAN type Port A 10 port-based 1 - 10 tagged 3 - 20 port-based 2 - 20 tagged 3 192.168.10.2 ARP CE2 Customer 1 Site 2 192.168.10.1 ARP 192.168.10.2 ARP ARP 4 B Customer 1 Site 1 CE1 6 CE 5 Customer 2 Site 2 2 1 ARP A 3 1 ARP 2 3 192.168.10.3 Customer 2 Site 1 CE 2 Customer 1 Site 3 1 CE3 C MAC VLAN ID VLAN type Port - 10 port-based 2 A 10 tagged 1 Lookup Table

10 10 Operation Lookup Table Lookup Table Lookup Table MAC VLAN ID VLAN type Port B 10 port-based 4 A 10 tagged 6 - 20 port-based 5 - 20 tagged 6 MAC VLAN ID VLAN type Port A 10 tagged 1 B 10 tagged 2 - 10 tagged 3 - 20 tagged 1 - 20 tagged 2 MAC VLAN ID VLAN type Port A 10 port-based 1 B 10 tagged 3 - 20 port-based 2 - 20 tagged 3 Reply DA=A SA=B 192.168.10.2 Reply DA=A SA=B Reply DA=A SA=B CE2 Reply DA=A SA=B Customer 1 Site 2 192.168.10.1 4 B Customer 1 Site 1 CE1 6 CE 5 Customer 2 Site 2 2 1 A 3 1 2 3 192.168.10.3 Customer 2 Site 1 CE 2 Customer 1 Site 3 1 CE3 Lookup Table MAC VLAN ID VLAN type Port - 10 port-based 2 A 10 tagged 1

Operation Lookup Table Lookup Table Lookup Table MAC VLAN ID VLAN type Port B 10 port-based 4 A, C 10 tagged 6 - 20 port-based 5 - 20 tagged 6 MAC VLAN ID VLAN type Port A 10 tagged 1 B 10 tagged 2 C 10 tagged 3 - 20 tagged 1 - 20 tagged 2 MAC VLAN ID VLAN type Port A 10 port-based 1 B,C 10 tagged 3 - 20 port-based 2 - 20 tagged 3 192.168.10.2 CE2 Customer 1 Site 2 192.168.10.1 4 B 6 Customer 1 Site 1 CE1 5 CE 2 Customer 2 Site 2 1 3 1 A 2 3 192.168.10.3 Customer 2 Site 1 CE 2 Customer 1 Site 3 1 C CE3 Lookup Table 이후는 Unicast (모든 MAC이 학습됨) Multicast: Dest MAC을 보고 그대로 포워딩 MAC VLAN ID VLAN type Port C 10 port-based 2 A,B 10 tagged 1

MAC VLAN ID Port A 10 1 B 10 2 C 10 3 D 20 4 E 20 5 L2 Switch Lookup Table VLAN-based Multipoint service: VPLS/TLS Lookup Table Lookup Table Lookup Table MAC VLAN ID VLAN type Port B 10 port-based 4 A, C 10 tagged 6 - 20 port-based 5 - 20 tagged 6 MAC VLAN ID VLAN type Port A 10 tagged 1 B 10 tagged 2 C 10 tagged 3 - 20 tagged 1 - 20 tagged 3 MAC VLAN ID VLAN type Port A 10 port-based 1 B,C 10 tagged 3 - 20 port-based 2 - 20 tagged 3 192.168.10.2 CE2 Customer 1 Site 2 192.168.10.1 4 B 6 Customer 1 Site 1 CE1 5 CE 2 Customer 2 Site 2 1 3 1 E A 2 3 192.168.10.3 Customer 2 Site 1 CE 2 Customer 1 Site 3 1 D C CE3 Lookup Table MAC VLAN ID VLAN type Port C 10 port-based 2 A,B 10 tagged 1

802.1p CoS 제공 = Classification, Marking, Priority queueing and scheduling Ingress Rate Limiting/Shaping CPE 100 100 100 100 100 100 ESP network 802.1q tagged VLAN 설정 A Broadcast Domain over Metro Ethernet Network = Secure Tunnel 제공 Problem of VLAN-based VPLS MAC B MAC C • VLAN space limitation: 4096 VLANs (VLAN ID=12bits) • MAC address limitation • No Bandwidth reservation in metro core (end-to-end) • No traffic engineering in metro core (STP Path) • Slow restoration time (STP, RSTP, EAPS) MAC A MAC G MAC F MAC H MAC M MAC N MAC VLAN type VLAN ID Port - tagged 100 1, 2 - tagged 200 1, 3 ………. A 2 B 1 C 2 ……….

CE2 Customer 1 Site 2 B Customer 1 Site 1 CE1 CE Customer 2 Site 2 E A Customer 2 Site 1 CE Customer 1 Site 3 D C CE3 EoMPLS (martini-draft) • VLAN의 확장성 한계, MAC learning 한계, QoS, BW 예약, 망복구 능력 등의 문제에 대한 대안으로써 Metro Ethernet에 MPLS를 도입함. • Ingress LER (PE)과 Egress LER (PE)간에 두 개의 LSP (Label Switched Path)를 설정 • Tunnel LSP: 두 PEs간에 MPLS frame을 forwarding. Customer 구분없이 MPLS망상에서 경로만 제공. ATM의 VP (Virtual Path)개념. Tunnel LSP내에 여러 개의 VC(Virtual Circuit)들이 전달됨. • VC LSP: Egress LER에서 Tunnel LSP로 들어오는 패킷들이 어느 가입자의 패킷이며, 또 어떻게 처리(어느 outgoing interface로 포워딩해주어야 하는 가, 등)해주어야 하는 가를 결정하기 위해서 Tunnel LSP내에 VC LSP가 정의된다. ATM의 VC개념. (for de-multiplexing senders.). VC label은 LSR에서는 안 보이고 Egress LER에서만 보인다. Tunnel LSP Ethernet Or VLAN VC LSP PE Ethernet Or VLAN P P PE PE P • Metro Ethernet Network의 Edge (LER)에서 Ethernet frame을 MPLS lsp로 mapping (not Routing)

Eth Eth Eth 10 10 10 35 17 25 CE2 Customer 1 Site 2 B Customer 1 Site 1 CE1 CE Customer 2 Site 2 E A Customer 2 Site 1 CE Customer 1 Site 3 D C CE3 Eth Eth Eth 20 20 20 17 35 25 EoMPLS Operation Forwarding table Forwarding table Incoming port VC Label outgoing port 1 10 5 1 20 6 Incoming port Tunnel Label outgoing port Tunnel Label 3 25 4 35 Eth PE 5 P Eth Eth P 1 PE 6 4 3 1 Eth 2 PE L2 P Forwarding table Port VLAN ID outgoing port Tunnel Label VC Label 1 - 3 25 10 2 100 3 25 20

Eth Eth Eth 10 10 10 17 25 35 Eth Eth Eth 20 20 20 17 35 25 EoMPLS의 장점 Forwarding table Forwarding table Incoming port VC Label outgoing port 1 10 5 1 20 6 Incoming port Tunnel Label outgoing port Tunnel Label 3 25 4 35 Egress LER은 VC label값만을 이용하여 포워딩 결정을 내린다. 따라서, 가입자측의 MAC address를 학습하지 않아도 된다. Metro (또는 WAN) core의 LSR들은 단지 Tunnel Label값만 보고 MPLS frame을 포워딩한다. 따라서 Metro core에서는 가입자측의 MAC address를 학습할 필요가 없다. CE2 Customer 1 Site 2 Eth PE 5 B P Customer 1 Site 1 CE1 Eth Eth P 1 CE PE 6 Customer 2 Site 2 4 E A 3 1 Eth 2 Customer 2 Site 1 CE PE L2 Customer 1 Site 3 D P Ingress LER은 Ethernet망에서 들어오는 Frame을 {Physical port and 802.1q VLAN ID}값만 참조하여 어느 VC-LSP로 포워딩할 것인지를 판단한다. 따라서, Egress LER쪽의 가입자의 MAC address를 학습하지 않는다. C CE3 Forwarding table Port VLAN ID outgoing port Tunnel Label VC label Label 1 - 3 25 10 2 100 3 25 20

Label mapping msg (DU-LDP) VC FEC TLV VC Type = Ethernet VC ID = 3001 VC label TLV VC label = 4000 CE1 CE2 PW = VLL vc2000 VLAN/100 Eth/10 VLAN/200 Eth/20 vc4000 EoMPLS: Martini Signaling 10.0.0.1 10.0.0.2 Tunnel LSP Site 1 Site 2 VLAN/100 VLAN/200 PE2 Eth/10 PE1 Eth/20 Site 2가 PE2의 Ethernet port 20에 VLAN ID 200의 Ethernet circuit에 붙어있다. Site 2로 보내려면 Label 2000을 붙여서 보내라 Configuration Interface: Eth/10 VLAN/100 VC ID (=L2-FEC): 3001 Map Eth/10 VLAN/100 VCID 3001 VC label: 4000 Peer Router: 10.0.0.2 Configuration Interface: Eth/20 VLAN/200 VC ID (=L2-FEC): 3001 Map Eth/20 VLAN/200 VCID 3001 VC label: 2000 Peer Router: 10.0.0.1 Targeted LDP Label mapping msg (DU-LDP) VC FEC TLV VC Type = Ethernet VC ID = 3001 VC label TLV VC label = 2000 A PW (2 VC lsps) setup ! Eth-Frame Eth-Frame 2000 100 L2H Eth-Frame

ERS service using EoMPLS Subnet 1 (192.182.10/24) HQ site Router One subnet for each remote site CE (L2 SW) PE P CE Tagged VLAN 100 P PE Subnet 2 (192.182.20/24) Tagged VLAN 101 PE CE (L2 SW) PE는 port #와 VLAN ID만을 가지고 어느 VC-LSP로 포워딩할 것인지를 결정하기 떄문에 VLAN Tag를 달고 들어오지 않으면 Site 2로 포워딩할 지 Site 3으로 포워딩할 지를 판단할 수 없다. 따라서, Site 1의 CE가 Site별로 구분된 VLAN Tag를 달아서 보내야 한다. Site 2와 Site 3간의 통신을 위해서는 CE가 반드시 라우터이어야 한다.

VPLS • What is VPLS ? • VPLS (Virtual Private LAN Service) is a class of VPN that allows the connection of multiple sites in a single bridged domain over a provider managed MPLS network • How it works ? • Bridging capable PE routers are connected with a full mesh of MPLS LSP tunnels • Per-Service VC labels are negotiated using draft-Martini • Replicates unknown/broadcast traffic in a service domain • MAC learning over tunnel & access ports • Separate FIB per VPLS • IETF draft-lasserre-vkompella-vpls-ppvpn-04.txt • Vendors: Cisco, Cosine, Force10, Foundry, Juniper, Laurel, Nortel, Riverstone, Timetra (Alcatel)

P VPLS Operation Site 1 Eth10 M1 PE5 CE1 PE1 Site 2 Eth20 M2 PE2 CE2 PE4 P Site 3 M3 M4 Eth30 CE3 PE3

VPLS: Control Plane (1) 1. Operator는 Site 1, 2, 3이 연결되어 있는 PE1, PE2, PE3간에 full-mesh로 VPLS instance를 하나 생성한다. 이 VPLS instance에는 하나의 unique VCID가 할당된다.1.1 각 PE는 Targeted LDP session을 통해 downstream-unsolicited mode로 vc-label을 배포한다. 즉, VPLS에 관한 label값을 egress LER이 할당하여 이를 ingress LER에게 바로 배포한다. Martini-signaling (Targeted LDP/DU mode) Use vc-label 102 for VCID 1000 when sending to me (나한테 보낼 때, vc-label 102를 써서 보내!) Site 1 CE1 Eth10 PE1 VCID 1000 vc label 102 Site 2 VCID 1000 vc label 103 PE2 CE2 Eth20 Site 3 CE3 PE3 Eth30 Use vc-label 103 for VCID 1000 when sending to me (나한테 보낼 때, vc-label 103를 써서 보내!)

CE1 CE3 CE2 CE2 CE1 CE3 VPLS: Control Plane (2) 1.1 VPLS 1000을 위한 vc-lsp 102와 vc-lsp 103 생성됨. Site 1 Eth10 PE1 VCID 1000 vc label 102 Site 2 VCID 1000 vc label 103 PE2 Eth20 Site 3 PE3 Eth30 VC-lsp setup (created) Site 1 Eth10 vc label 102 PE1 Site 2 vc label 103 PE2 Eth20 Site 3 PE3 Eth/30

Site 1 Martini-signaling (Targeted LDP/DU mode) VCID 1000 vc label 201 Eth10 PE1 Site 2 VCID 1000 vc label 203 VCID 1000 vc label 301 PE2 Eth20 Site 3 VCID 1000 vc label 302 PE3 Eth30 A VPLS (VCID=1000) is setup A VPLS for Customer A is setup between PE1, PE2 and PE3 CE3 CE1 CE3 CE1 CE2 CE2 VCID 1000 Eth10, p3/vc-lsp201, p4/vc-lsp301 Site 1 VCID 1000 Eth20, p1/vc-lsp102, p2/vc-lsp302 p3 Eth10 vc label 102 PE1 p4 Site 2 p1 vc label 201 vc label 103 vc label 301 PE2 Eth20 vc label 302 Site 3 p2 p5 vc label 203 PE3 p6 Eth30 VCID 1000 Eth30, p5/vc-lsp103, p6/vc-lsp203 VPLS: Control Plane (3)

CE3 CE2 CE1 VPLS: Data Plane (1) Data Plane 1. PE2에 Port 20을 통해 Ethernet frame이 들어오면, PE2는 frame이 들어온 물리적인 Port (또는 Port + VLAN ID)를 통해 이 frame이 VPLS 1000에 속한 프레임을 알아낸다. : Port or (Port + VLAN ID)  VPLS ID/FIB Site 1 p3 M1 SA DA Eth10 vc label 102 PE1 IP M2 M1 p4 Site 2 p1 vc label 201 vc label 301 M2 vc label 103 PE2 Eth20 PE4 vc label 302 Site 3 p2 p5 vc label 203 M3 PE3 FIB for VPLS 1000 p6 Eth30 Source MAC address Destination MAC address IP M2 M1 Ethernet frame

M1 M2 CE3 CE2 CE1 M3 VPLS: Data Plane (2) 1.1 Source MAC learning: PE2는 도착한 프레임의 source MAC address를 학습하여 SA=M2를 VPLS 1000의 FIB(Forwarding Information Base)의 Eth20에 등록한다. Site 1 p3 Eth10 vc label 102 PE1 IP M2 M1 p4 Site 2 p1 vc label 201 vc label 301 vc label 103 PE2 Eth20 PE4 vc label 302 Site 3 p2 p5 vc label 203 PE3 FIB for VPLS 1000 p6 Eth30

M1 M2 CE3 CE2 CE1 M3 VPLS: Data Plane (3) 1.2 Destination MAC lookup: VPLS 1000의 FIB를 lookup한다. Destination MAC = M1이 FIB entry에 없으면 (즉, 학습이 되어 있지 않으면-Unknown frame이면), VPLS 1000에 속한 모든 PE로 프레임을 flooding한다. 즉, 도착한 프레임을 복제(replication)하여 p1/vc-lsp102를 통해 PE1으로, p2/vc-lsp 302를 통해 PE3로 전달한다. (물론 PE4로는 전달하지 않는다.) 이때 vc-label과 tunnel label을 부착하여 전달한다. Site 1 IP M2 M1 102 Tunnel Label L2H p3 Eth10 vc label 102 PE1 IP M2 M1 p4 Site 2 p1 vc label 201 vc label 301 vc label 103 PE2 Eth20 PE4 vc label 302 Site 3 p2 p5 vc label 203 IP M2 M1 302 Tunnel Label L2H PE3 p6 Eth30 FIB for VPLS 1000 VC Label (Demultiplexor) Tunnel Label Transport Header IP M2 M1 102 Tunnel Label L2H MPLS frame

M1 M2 CE3 CE2 CE1 M3 VPLS: Data Plane (4) 2. Core LSRs (P Routers): PW상의 모든 LSR들은 Outer label (Tunnel label)값만 참조하여 해당 PE까지 프레임을 전달한다(label swapping). LSR들은 Tunnel label값만 참조하여 포워딩하기 때문에 현재 자기가 포워딩하고 있는 프레임들이 어느 VPLS에 속한 프레임인지는 모른다. Site 1 IP M2 M1 102 Tunnel Label L2H p3 Eth10 vc label 102 PE1 p4 Site 2 p1 vc label 201 vc label 301 vc label 103 PE2 Eth20 PE4 vc label 302 Site 3 p2 p5 vc label 203 IP M2 M1 302 Tunnel Label L2H PE3 p6 Eth30 FIB for VPLS 1000

M1 M2 CE3 CE2 CE1 M3 VPLS: Data Plane (5) 3. PE1 (Egress LER): PE1는 도착한 프레임의 vc-label값을 참조하여 이 프레임이 어느 VPLS에 속한 프레임인지를 알아낸다(이 예에서는 VPLS 1000에 속한 프레임임을 알게 된다). : vc-label lookup  VPLS ID/FIB FIB for VPLS 1000 IP M2 M1 102 Tunnel Label L2H Site 1 p3 Eth10 vc label 102 PE1 p4 Site 2 p1 vc label 201 vc label 301 vc label 103 PE2 Eth20 PE4 vc label 302 Site 3 p2 p5 vc label 203 IP M2 M1 302 Tunnel Label L2H PE3 p6 Eth30

M1 M2 CE3 CE2 CE1 M3 VPLS: Data Plane (6) 3.1 Source MAC learning: 도착한 MPLS 프레임의 label를 제거(POP)하고 이더넷 프레임의 source MAC address를 학습한다. PE1은 M2가 vc-label 102를 통해서 왔으므로 M2가 PE2뒤에 있음을 알게 된다. 따라서, M2를 vc-label201 인터페이스에 학습시킨다. PE3도 동일한 동작을 수행한다. FIB for VPLS 1000 Site 1 IP M2 M1 102 Tunnel Label L2H p3 Eth10 vc label 102 PE1 p4 Site 2 p1 vc label 201 vc label 301 vc label 103 PE2 Eth20 PE4 vc label 302 Site 3 p2 p5 vc label 203 IP M2 M1 302 Tunnel Label L2H PE3 p6 Eth30 FIB for VPLS 1000

M1 M2 CE3 CE2 CE1 M3 VPLS: Data Plane (7) 3.2 Destination MAC lookup: DA=M1이 VPLS 1000의 FIB에 학습이 되어 있지 않으므로 VPLS 1000에 속한 모든 Port로 이더넷 프레임을 flooding한다 (이 예에서는 Eth10으로만 전달된다). 이 때 loop 방지를 위해 vc-lsp에서온 프레임은 VPLS에 속한 다른 vc-lsp로 flooding하지 않는다. (split-horizon rule). 즉, P4/vc-lsp301로는 flooding하지 않는다. FIB for VPLS 1000 Site 1 IP M2 M1 p3 Eth10 vc label 102 PE1 p4 Site 2 p1 vc label 201 vc label 301 vc label 103 PE2 Eth20 PE4 vc label 302 Site 3 p2 IP p5 M2 p6 M1 vc label 203 PE3 Eth30 FIB for VPLS 1000

VPLS (Virtual Private LAN Service)