Showing posts with label Alcatel-Lucent. Show all posts

Sunday, May 5, 2013

MPLS LDP-IGP Synchronization

Problem:

ldp establishes mpls lsps path that determined by the IGP best route ,if the lsp not formed between the PE routers, a blackhole exists and services that depending on mpls forwading will fail,this feature will help to avoid packet lost in this situations:

1.when the IGP adjacency is up and the LDP sessions are not establishes or the lable-bindings not excheanged with the neighbor.

2.when someone remove the ldp under the interface and the LDP session not form (Configuration error)

Solution:

the solution is to discourage a link from being used as long as the LDP sessions are not established.

so when you enable the feature of IGP-LDP sync and the LDP is not fully operational on a given link,

the IGP will advertise the cost of the link to be maximum in order to avoid any traffic to flow through it,

The actual value advertised in OSPF (65535).

The actual value advertised in IS-IS regular metric (63) and in IS-IS wide-metric is (16777214).

in Cisco :

enter the command mpls ldp igp sync under the IGP (ospf or isis) the IGP waits indefinitely for LDP session to be fully operational ,To limit the length of time the IGP session must wait, enter the no mpls ldp igp sync holddown command

in ALU :

enter the command ldp-sync-timer seconds .

source:

http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fsldpsyn.html#wp1100282

http://infodoc.alcatel-lucent.com/html/0_add-h-f/93-0073-10-01/7750_SR_OS_Router_Configuration_Guide/router-CLI.html

Wednesday, May 1, 2013

MPLS Label Distribution Protocol Fast Re-route (LDP FRR) using ISIS as IGP.

Introduction:

LDP is widely deployed to signal LSP due to its simple operational model.
Since Ldp establishes LSPs along IGP routed paths,its failure recovery is gated by the IGP re-convergence.this feathers perforn FRR of LDP LSPs that reatains the simple operational model of LDP.
The goal is to provide 100% coverage for all failure with recovery charateristics (link /node failures) similar to the methods in Reservation Protocol - Traffic Engineering FRR.

When FRR is configured on a node, the node pre-computes primary NHLFEs for all FECs and in addition it will pre-compute backup NHLFEs for all FECs. The backup NHLFE corresponds to the label received for the same FEC from a Loop-Free Alternate (LFA) next-hop (see also RFC5286). Both primary NHLFEs and backup NHLFEs in ALU 7X50 are programmed in the IOM/IMM which makes it possible to converge very quickly.

ISIS LFA:

Implementation :

The 7x50 software has implemented inequality 1 (link criterion) and inequality 3 (node criterion) of RFC5286. Similar to the Shortest Path Tree (SPT) computation that is part of standard link-state routing functionality, also the LFA next-hop computation is based on the IGP metric.

The underlying LFA formulas look like this :

Inequality 1 : [SP(backup NHR, D) < {SP(backup NHR, S) + SP(S, D)}]

Inequality 3 : [SP(backup NHR, D) < {SP(backup NHR, PN) + SP(PN, D)}]

With ‘SP’ = ‘shortest IGP metric path’, ‘NHR’ = ‘next-hop router’,’D’ = ‘destination’, ‘S’ = ‘source node or upstream node doing the actual LFA next-hop computation’ and ‘PN’ = ‘protected node’. Inequality 3 rule is stricter than inequality 1 rule. if the formulas does not exist the prefix did not protected.

Configuration :

The IGP CLI configuration will look like this :

*A:7450-lab3# configure router isis loopfree-alternate

After enabling LFA inside the IGP context, FRR needs to be enabled within the LDP context :

*A:7450-lab3# configure router ldp fast-reroute

Several show commands are possible to display LFA information:

* ‘show router isis statistics’ gives you an idea on the number of LFA runs on a specific node.

*‘show router isis lfa-coverage’ will perform a mathematical calculation between the number of nodes and IPv4/IPv6 routes in the network versus present LFA next-hop protections:



*A:7450-lab3# show router isis lfa-coverage

===============================================================================

LFA Coverage

===============================================================================

Topology Level Node IPv4 IPv6

-------------------------------------------------------------------------------

IPV4 Unicast L1 0/0(0%) 9/9(100%) 0/0(0%)

IPV4 Unicast L2 4/4(100%) 9/9(100%) 0/0(0%)

===============================================================================

* ‘show router isis spf lfa detail’ gives you a reference to LFA protection type (link or node).

* ' show router isis routes alternative' give you the next hop backup

* 'show router ldp bindings active prefix 172.30.1.1/32' we can see the backup lable for the fec

Monday, July 12, 2010

QOS Multi-Service-Site

cool feature in Alcatel , limit two PW to one QOS package:

here are example of customer that have two Epipe, with limit together to 75Mbps :

A:PE-7750-LAB1# configure service customer 550 
A:PE-7750-LAB1>config>service>cust# info 
----------------------------------------------
            multi-service-site "LIMIT-75Mbps" create
                description "LIMIT-75Mbps"
                assignment port 2/2/5
                ingress
                    scheduler-policy "SLA-75Mbps"
                exit
                egress
                    scheduler-policy "SLA-75Mbps"
                exit
            exit
            description "ESP NET-60038464"
----------------------------------------------

A:PE-7750-LAB1# configure service epipe 1268 
A:PE-7750-LAB1>config>service>epipe# info 
----------------------------------------------
            description "EPIPE-NAMEXXX-7750-PE-LAB1"
            service-mtu 2014
            sap 2/2/5:1655.0 create
                description "EPIPE-NAMEXXX-GI2/2/5:1655-7001291-59.38"
                multi-service-site "LIMIT-75Mbps"
                collect-sLAB1ts
            exit
            sap lag-4:1655 create
                description "EPIPE-NAMEXXX-Lag 4:1655-NV-017"
                ingress
                    qos 90 
                exit
                egress
                    qos 84
                exit
                collect-sLAB1ts
            exit
            no shutdown
----------------------------------------------

A:PE-7750-LAB1>config>service>epipe# info 
----------------------------------------------
            description "EPIPE-ESP NET-"
            service-mtu 2014
            sap 2/2/5:1656.0 create
                multi-service-site "LIMIT-75Mbps"
                collect-sLAB1ts
            exit
            sap lag-4:1656 create
                ingress
                    qos 90 
                exit
                egress
                    qos 84
                exit
                collect-sLAB1ts
            exit
            no shutdown
----------------------------------------------


A:PE-7750-LAB1# configure qos sap-ingress 90 
A:PE-7750-LAB1>config>qos>sap-ingress# info 
----------------------------------------------
            description "Silver-75M-ONLY-FOR-EPIPE"
            queue 1 create
                parent "SLA-75Mbps"
                rate 75000
            exit
            queue 11 multipoint create
                parent "SLA-75Mbps"
                rate 75000
            exit
            fc "be" create
                queue 1
            exit
----------------------------------------------


A:PE-7750-LAB1# configure qos sap-egress 84  
A:PE-7750-LAB1>config>qos>sap-egress# info 
----------------------------------------------
            description "Silver-75M-ONLY-FOR-EPIPE"
            queue 1 create
                parent "SLA-75Mbps"
                rate 75000
            exit
            fc be create
                queue 1
            exit 
----------------------------------------------


A:PE-7750-LAB1# monitor qos scheduler-sLAB1ts customer 550 site LIMIT-75Mbps rate 

===============================================================================
Monitor Scheduler SLAB1tistics
===============================================================================
Scheduler                          Forwarded Packets      Forwarded Octets     
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
At time t = 0 sec (Base SLAB1tistics)
-------------------------------------------------------------------------------
Ingress Schedulers
SLA-75Mbps                         1866961307             937166785248         
 
Egress Schedulers
SLA-75Mbps                         2076599441             1682363329954        
 
-------------------------------------------------------------------------------
At time t = 11 sec (Mode: Rate)
-------------------------------------------------------------------------------
Ingress Schedulers
SLA-75Mbps                         4164                   2196854              
 
Egress Schedulers
SLA-75Mbps                         4333                   3531426              
 
-------------------------------------------------------------------------------
At time t = 22 sec (Mode: Rate)
-------------------------------------------------------------------------------
Ingress Schedulers
SLA-75Mbps                         3653                   1954032              
 
Egress Schedulers
SLA-75Mbps                         4067                   3216902

Thursday, January 7, 2010

Multi-chassis LAG (MC-LAG) in VPLS Service

Introduction

MC-LAG

Multi-chassis LAG (MC-LAG) is an extension
to the LAG feature to provide not only link redundancy but also node-level
redundancy. This feature is not defined in any IEEE standard, but Alcatel-Lucent
has developed a proprietary solution.

A proprietary messaging between
redundant-pair nodes supports coordinating the LAG
switchover.

Multi-chassis LAG supports LAG switchover
coordination: one node connected to two redundant-pair peer nodes with the LAG.
During the LACP negotiation, the redundant-pair peer nodes act like a single
node using active/stand-by signaling to ensure that only links of one peer nodes
is used at a time.

In this Configuration Note a setup is built
with 1 CE and 4 PEs. The CE node can be any routing/switching device that can be
configured for LACP. The PE routers can be SR, SRc or ESS. Figure 1
shows the physical topology of the setup:

Figure 1: Physical
Topology

Note the test tool Figure 1 is only used to
send/receive traffic to create MAC entries in the VPLS service. It can be
replaced by a router/switch.

Configuration

Base
Topology

This Configuration Note assumes that
following base configuration has been implemented on the PEs:

Cards, MDAs and ports configured
Interfaces configured
IGP configured and converged
MPLS configured
SDPs configured between all PE
routers

Note that you can choose between OSPF and ISIS as the IGP. Both LDP or RSVP can be used for signaling the transport MPLS labels. Alternatively, GRE can be used for the transport tunnels.

It does not matter if the SDPs are using LDP, RSVP or GRE. RSVP has the added value of offering FRR to get faster convergence in the core.

In this setup OSPF and LDP are used.

The following commands can be used to check if OSPF has converged and to make sure the SDPs are up:

*A:PE1# show router route-table

===============================================================================

Route Table (Router: Base)

===============================================================================

Dest Prefix Type Proto Age Pref

Next Hop[Interface Name] Metric

-------------------------------------------------------------------------------

10.0.0.1/32 Local Local 00h33m00s 0

system 0

10.0.0.2/32 Remote OSPF 00h27m17s 10

10.1.2.2 1000

10.0.0.3/32 Remote OSPF 00h28m37s 10

10.1.3.3 1000

10.0.0.4/32 Remote OSPF 00h25m25s 10

10.1.2.2 2000

10.1.2.0/24 Local Local 00h30m06s 0

toPE2 0

10.1.3.0/24 Local Local 00h30m00s 0

toPE3 0

10.2.4.0/24 Remote OSPF 00h25m25s 10

10.1.2.2 2000

10.3.4.0/24 Remote OSPF 00h28m37s 10

10.1.3.3 2000

-------------------------------------------------------------------------------

No. of Routes: 8

===============================================================================

*A:PE1# show service sdp

===============================================================================

Services: Service Destination Points

===============================================================================

SdpId Adm MTU Opr MTU IP address Adm Opr Deliver Signal

-------------------------------------------------------------------------------

12 0 9190 10.0.0.2 Up Up LDP TLDP

13 0 9190 10.0.0.3 Up Up LDP TLDP

14 0 9190 10.0.0.4 Up Up LDP TLDP

-------------------------------------------------------------------------------

Number of SDPs : 3

MC-LAG Configuration

LAG configuration on CEs

Auto-negotiation needs to be switched off (or configured to limited) on all ports that will be included into the LAG.

Configure LACP on the LAG. At least 1 side of the LAG needs to be configured in ‘active’ mode.

*A:CE5# configure port 1/1/[1..4] ethernet no autonegotiate

*A:CE5# configure port 1/1/[1..4] no shut

*A:CE5# configure lag 1 port 1/1/1 1/1/2 1/1/3 1/1/4

*A:CE5# configure lag 1 lacp active

*A:CE5# configure lag 1 no shutdown

LAG configuration on PEs

The PE ports facing the CEs have to be configured as access ports since they will be used in the VPLS service. The LAG also needs to be configured in mode access.

Remark: the LAG encapsulation type (null|dot1q|qinq) must match the port encapsulation type of the LAG members.

Auto-negotiation needs to be switched off (or configured to limited).

Configure LACP on the LAG. At least 1 side of the LAG needs to be configured in ‘active’ mode.

*A:PE1# configure port 1/1/[1..2] ethernet no autonegotiate

*A:PE1# configure port 1/1/[1..2] ethernet mode access

*A:PE1# configure port 1/1/[1..2] no shut

*A:PE1# configure lag 1 mode access

*A:PE1# configure lag 1 port 1/1/1 1/1/2

*A:PE1# configure lag 1 lacp active

*A:PE1# configure lag 1 no shutdown

MC-LAG configuration on PE1 and PE2

The redundant PEs must act as 1 virtual node toward the CE. They have to communicate the same LACP parameters to the CE side.

3 parameters uniquely identify a LAG instance:

lacp-key
system-id
system-priority

These 3 parameters must be configured with the same value on both redundant PEs.

Configure multi-chassis redundancy with a peering session toward the redundant PE system address and enable mc-lag redundancy.

*A:PE1# configure redundancy multi-chassis

*A:PE1>config>redundancy>multi-chassis# info

----------------------------------------------

peer 10.0.0.2 create

mc-lag

lag 1 lacp-key 1 system-id 00:00:00:00:00:01 system-priority 100

no shutdown

exit

no shutdown

exit

----------------------------------------------

*A:PE2# configure redundancy multi-chassis

*A:PE2>config>redundancy>multi-chassis# info

----------------------------------------------

peer 10.0.0.1 create

mc-lag

lag 1 lacp-key 1 system-id 00:00:00:00:00:01 system-priority 100

no shutdown

exit

no shutdown

exit

----------------------------------------------

MC-LAG Verification

Verify MC peers

*A:PE1# show redundancy multi-chassis sync

===============================================================================

Multi-chassis Peer Table

===============================================================================

Peer

-------------------------------------------------------------------------------

Peer IP Address : 10.0.0.2

Authentication : Disabled

Source IP Address : 0.0.0.0

Admin State : Enabled

===============================================================================

Note that if the source IP address is not configured explicitly the output shows ‘0.0.0.0’. In that case the system IP address will be used as source. (In future releases ‘0.0.0.0’ will be replaced by the used Source IP Address)

The source IP address can be configured with the command:

*A:PE1# configure redundancy multi-chassis

*A:PE1>config>redundancy>multi-chassis# peer 10.0.0.2 source-address 10.0.0.1

Authentication can also be configured:

*A:PE2# configure redundancy multi-chassis

*A:PE2>config>redundancy>multi-chassis# peer 10.0.0.1 authentication-key Alcatel

Remark: when configuring authentication or a source address the MC peer needs to be shutdown first.

If source IP address and authentication are configured the result looks like:

*A:PE1# show redundancy multi-chassis sync

===============================================================================

Multi-chassis Peer Table

===============================================================================

Peer

-------------------------------------------------------------------------------

Peer IP Address : 10.0.0.2

Authentication : Enabled

Source IP Address : 10.0.0.1

Admin State : Enabled

===============================================================================

Verify MC-LAG peer status and LAG parameters

*A:PE1# show redundancy multi-chassis mc-lag peer 10.0.0.2

===============================================================================

Multi-Chassis MC-Lag Peer 10.0.0.2

===============================================================================

Last Changed : 03/07/2007 17:38:53

Admin State : Up Oper State : Up

KeepAlive : 10 deci-seconds Hold On Ngbr Failure : 3

-------------------------------------------------------------------------------

Lag Id Lacp Key Remote Lag Id System Id Sys Prio Last Changed

-------------------------------------------------------------------------------

1 1 1 00:00:00:00:00:01 100 03/07/2007 17:40:17

-------------------------------------------------------------------------------

Number of LAGs : 1

===============================================================================

In this example the Lag-Id is 1 on both redundant PEs. This is not mandatory. If the Lag-Id on PE2 is eg. 2, the following should be configured on PE1:

*A:PE1# configure redundancy multi-chassis

*A:PE1>config>redundancy>multi-chassis# peer 10.0.0.2 mc-lag lag 1 remote-lag 2 lacp-key 1 system-id 00:00:00:00:00:01 system-priority 100

Verify MC-LAG status

*A:PE1# show lag 1

===============================================================================

Lag Data

===============================================================================

Lag-id Adm Opr Port-Threshold Up-Link-Count MC Act/Stdby

-------------------------------------------------------------------------------

1 up down 0 0 standby

===============================================================================

*A:PE2# show lag 1

===============================================================================

Lag Data

===============================================================================

Lag-id Adm Opr Port-Threshold Up-Link-Count MC Act/Stdby

-------------------------------------------------------------------------------

1 up up 0 2 active

===============================================================================

In this case the Lag on PE2 is Active/Operationally up whereas the Lag on PE1 is Standby/Operationally down.

The selection criteria by default is highest # of links and priority. In this example the # of links and the priority of the links is the same on both redundant PEs. Whichever PE’s LAG gets in operational up status first will be the active.

LAG ports of one PE could be preferred over the other PE by configuring port priority (e.g. the following command lowers the priority of the LAG ports on PE1, thus giving this LAG higher preference).

*A:PE1# configure lag 1 port 1/1/1 1/1/2 priority 10

Note : lower S priority is preferred

Verify detailed MC-LAG status on PE1

*A:PE1# show lag 1 detail

===============================================================================

LAG Details

===============================================================================

Description:

-------------------------------------------------------------------------------

Details

-------------------------------------------------------------------------------

Lag-id : 1 Mode : access

Adm : up Opr : up

Thres. Exceeded Cnt : 19 Port Threshold : 0

Thres. Last Cleared : 03/07/2007 19:57:18 Threshold Action : down

Dynamic Cost : false Encap Type : null

Configured Address : 1e:2f:ff:00:01:41 Lag-IfIndex : 1342177281

Hardware Address : 1e:2f:ff:00:01:41 Adapt Qos : distribute

Hold-time Down : 0.0 sec

LACP : enabled Mode : active

LACP Transmit Intvl : fast LACP xmit stdby : enabled

Selection Criteria : highest-count Slave-to-partner : disabled

Number of sub-groups: 1 Forced : -

System Id : 1e:2f:ff:00:00:00 System Priority : 32768

Admin Key : 32768 Oper Key : 1

Prtr System Id : 1e:2d:ff:00:00:00 Prtr System Priority : 32768

Prtr Oper Key : 32768

MC Peer Address : 10.0.0.2 MC Peer Lag-id : 1

MC System Id : 00:00:00:00:00:01 MC System Priority : 100

MC Admin Key : 1 MC Active/Standby : active

MC Lacp ID in use : true MC extended timeout : false

MC Selection Logic : peer decided

MC Config Mismatch : no mismatch

-------------------------------------------------------------------------------

Port-id Adm Act/Stdby Opr Primary Sub-group Forced Prio

-------------------------------------------------------------------------------

1/1/1 up active up yes 1 - 10

1/1/2 up active up 1 - 10

-------------------------------------------------------------------------------

Port-id Role Exp Def Dist Col Syn Aggr Timeout Activity

-------------------------------------------------------------------------------

1/1/1 actor No No Yes Yes Yes Yes Yes Yes

1/1/1 partner No No Yes Yes Yes Yes Yes Yes

1/1/2 actor No No Yes Yes Yes Yes Yes Yes

1/1/2 partner No No Yes Yes Yes Yes Yes Yes

===============================================================================

After changing the Lag port priorities the Lag on PE1 is in up/up state and the ports are in up/active/up status.

This show command also displays MC peer info and actor info. More information about this can be found in the MC-LAG workshop presentation.

VPLS Configuration

Configure a VPLS service on every PE and add SAPs and SDPs. In this example mesh-SDPs are used. In case of a BTV service spoke-SDPs in combination with R/MSTP can be used to avoid sending duplicate traffic.

Figure 2 shows the logical topology of Services, SAPs and SDPs

Figure 2: Logical Topology

*A:PE1>config>service>vpls# info

----------------------------------------------

stp

shutdown

exit

sap lag-1 create

exit

mesh-sdp 12:60 create

exit

mesh-sdp 13:60 create

exit

mesh-sdp 14:60 create

exit

no shutdown

----------------------------------------------

Likewise, a VPLS service, SAPs and mesh-SDPs need to be configured on the other PE routers.

VPLS Service Verification

Verify service status

*A:PE1# show service service-using

===============================================================================

Services

===============================================================================

ServiceId Type Adm Opr CustomerId Last Mgmt Change

-------------------------------------------------------------------------------

60 VPLS Up Up 1 03/09/2007 20:32:34

-------------------------------------------------------------------------------

Matching Services : 1

-------------------------------------------------------------------------------

===============================================================================

The VPLS service should be Up on all PE routers.

Verify FDB of the VPLS service.

On CE5 and on the 2 ports of the tester create ip interfaces in the same subnet.

Note that you could also create an Epipe service and connect the test tool to it.

*A:CE5>config>router>if# info

----------------------------------------------

address 192.168.1.5/24

port lag-1

----------------------------------------------

Send traffic from CE5 towards the ports of the test tool. E.g. ping the access port connected on PE3. You can check the FDB on PE3:

*A:PE3# show service id 60 fdb detail

===============================================================================

Forwarding Database, Service 60

===============================================================================

ServId MAC Source-Identifier Type/Age Last Change

-------------------------------------------------------------------------------

60 1e:2e:ff:00:01:41 sdp:31:60 L/0 03/12/2007 17:48:20

60 1e:4e:01:01:00:01 sap:1/1/1 L/0 03/12/2007 17:48:20

-------------------------------------------------------------------------------

No. of MAC Entries: 2

===============================================================================

Notice that the first entry shows MAC address of the LAG configured on CE5. The MAC address was learned via sdp:31:60. Stop sending traffic.

*A:CE5# show lag detail

===============================================================================

LAG Details

===============================================================================

-------------------------------------------------------------------------------

LAG 1

-------------------------------------------------------------------------------

Description:

-------------------------------------------------------------------------------

Details

-------------------------------------------------------------------------------

Lag-id : 1 Mode : network

Adm : up Opr : up

Thres. Exceeded Cnt : 36 Port Threshold : 0

Thres. Last Cleared : 03/04/2002 16:31:13 Threshold Action : down

Dynamic Cost : false Encap Type : null

Configured Address : 1e:2e:ff:00:01:41 Lag-IfIndex : 1342177281

Hardware Address : 1e:2e:ff:00:01:41

...

In Figure 3 the active access link between CE5 and PE1 is broken (e.g. by shutting down port 1/1/1 on PE1). The MC-Lag will switch to PE2 and PE1 will send out an LDP MAC-Flush message over all mesh-SDPs.

Figure 3: Active MC-LAG is broken and PE1 sends out LDP MAC-Flush

*A:PE3# show service id 60 fdb detail

===============================================================================

Forwarding Database, Service 60

===============================================================================

ServId MAC Source-Identifier Type/Age Last Change

-------------------------------------------------------------------------------

60 1e:4e:01:01:00:01 sap:1/1/1 L/15 03/12/2007 17:48:20

-------------------------------------------------------------------------------

No. of MAC Entries: 1

===============================================================================

Note that the MAC address was flushed from the FDB on PE3.

If the same test is done but 1/1/1 is shut on CE5 instead of PE1 the result is different:

*A:PE3# show service id 60 fdb detail

===============================================================================

Forwarding Database, Service 60

===============================================================================

ServId MAC Source-Identifier Type/Age Last Change

-------------------------------------------------------------------------------

60 1e:2e:ff:00:01:41 sdp:32:60 L/0 03/12/2007 17:48:39

60 1e:4e:01:01:00:01 sap:1/1/1 L/15 03/12/2007 17:48:20

-------------------------------------------------------------------------------

No. of MAC Entries: 2

Sunday, May 5, 2013

MPLS LDP-IGP Synchronization

Wednesday, May 1, 2013

MPLS Label Distribution Protocol Fast Re-route (LDP FRR) using ISIS as IGP.

Introduction:

Monday, July 12, 2010

QOS Multi-Service-Site

Thursday, January 7, 2010

Multi-chassis LAG (MC-LAG) in VPLS Service

Introduction

Configuration

Base Topology

MC-LAG Configuration

LAG configuration on CEs

LAG configuration on PEs

MC-LAG configuration on PE1 and PE2

MC-LAG Verification

Verify MC peers

Verify MC-LAG peer status and LAG parameters

Verify MC-LAG status

Verify detailed MC-LAG status on PE1

VPLS Configuration

VPLS Service Verification

Verify service status

Verify FDB of the VPLS service.

Base
Topology