deep dive ex4300 and ex4600 - westcon-comstormedia.gswi.westcon.com/media/2.ex4600_feb_2014.pdf ·...
TRANSCRIPT
1 Copyright © 2012 Juniper Networks, Inc. www.juniper.net
Deep Dive EX4300 and EX4600
Washid Lootfun Sr. System Engineer [email protected]
FIXED
MODULAR
EX SERIES PRODUCT FAMILY
EX2200 EX2200-C
EX3300 EX4200 EX4300
EX6210
EX8208 EX8216
EX9204 EX9208 EX9214 One
JUNOS
Network Director
Entry Level Access
Switches Proven Access Switch
Versatile Access Switch
Powerful Aggregation
Switch
Dense Access/ Aggregation
Switch
Core/ Aggregation
Switch
Programmable Core/Distribution
Switch
ACCESS
AGGREGATION/ CORE
Powerful Aggregation/C
ore Switch
New
EX4300 product overview
EX4300 COPPER SKUS: FRONT & REAR VIEW
Front View
Rear View
LCD
Uplink module
1GbE Management Port
Console port
4x40GbE ports AC power supply USB
Fan
1GbE network ports, PoE+ capable
Fan
USB console
Fixed configuration 1 RU height
Front facing modular slot 4xGbE/10GbE uplink module
Rear-facing Virtual Chassis ports 4x40GbE QSFP+ 40GbE ports cannot be broken into 10GbE
Redundant hot-swappable PSU Environmental ranges
Operating Temp: 0 to 45° C Operating Altitude: up to 10K ft Low acoustics: 40-45dB
Management interfaces LCD for easy bring up USB & RJ-45 consoles Out-of-band Ethernet (RJ-45) USB
EX4300 Fiber SKUs: Front & Rear View
Roadmap
10-member Virtual chassis platform 32x100M/1000M SFP ports 2x40GE fixed QSFP+ ports 4x10GbE Fixed uplink ports
1 modular slot with options 2x40GbE ports 8x10GbE ports
License EX-32F-EFL EX-32F-AFL
SKU GE ports In-built 10GbE In –built 40GbE ports Total 10/40GbE ports Cooling Power supply
EX4300-32F 32 4 2 12/4 AFO AC EX4300-32F-DC 32 4 2 12/4 AFO DC
4x10GbaseX Modular slot with Uplink Module
Power supplies 2x40GbaseX fans
2x40GbaseX 8x10GbaseX
32xGbaseX
EX4300 Series switches
SKU # Ports PoE/PoE+ Ports PoE power budget
EX4300-24P 24 24 550 W
EX4300-24T 24 - -
EX4300-48P 48 48 900 W
EX4300-48T 48 - -
EX4300-48T-AFI 48 - -
EX4300-48T-DC 48 - -
EX4300-48T-DC-AFI 48 - - EX4300-32F 32
EX4300-32F-DC 32
AFI AFO 1U 24/48 Port 1GbE Switch Wire-rate performance on all ports
4 x 10GbE uplink module
4x40GbE QSFP+ fixed ports (EX4300-T)
2x40GbE QSFP+ fixed ports (EX4300-F)
2x40GbX and 8x10GbX ports module option
MacSec and EEE capable
Front-back and back-front airflow
Extensive Layer 3 (requires license)
Virtual Chassis Technology Enhanced 320 Gbps backplane
Manage up to 10 as a single device
Standard 10GbE/40GbE cables
Mix 1GbE and 10GbE with QFX3500 and QFX5100
Industry-only cross-platform Virtual Chassis
Geographically distributed
Automation & Orchestration Automation with Puppet and Chef
Openstack integration
Openflow support
EX4300 Power over Ethernet Plus capability All ports capable of PoE+ (30W) with two power supplies
With N+0 redundancy Hot failover supported
PoE+ capable Ports
24
48
PoE+ Power (1 PSU)
565W
925W
PoE+ Ports (1 PSU)
18
31
PoE+ power (2 PSUs)
1208W
1915W
PoE+ Ports (2 PSU)
24
48
SKU
EX4300-24P EX4300-48P
PoE+ Power (1 PSU) 175W 175W 540W 925W 375 375
PoE+ Ports (1 PSU)
6 6
18 31 12 12
PoE+ Power (2 PSU) 490W 490W
1183W 1915W 870W 870W
PoE+ Ports (2 PSU)
13 13 37 48 25 25
SKU*
JPSU-350-AC-AFO JPSU-350-AC-AFI JPSU-715-AC-AFO
JPSU-1100-AC-AFO JPSU-550-DC-AFO JPSU-550-DC-AFI
Power supplies can be changed on 24P/48P for greater flexibility DC with PoE/PoE+ supported
Software features and licensing Features
Advanced Layer 3: BGP v4/v6, IS-IS, MPLS
Layer 3: IPv4/v6 routing – OSPFv4/v6, IGMP v1/v2/v3, PIM-SM/SSM/DM, VRF-Lite, QinQ, OAM (802.1ag)
L2 and Basic Layer 3: STP, VLAN, LAG, LLDP/MED, RIP, IPv4/IPv6 Static routes, IGMP snooping, sFlow, PVLAN, 802.1x,802.3ah, Virtual Chassis, Network Director, J-Web
EX4200/EX4550
Advanced License
EX3300
Advanced License
Enhanced License
Base (no License)
EX4300
Advanced License
Enhanced License
Base (no License)
Base (no License)
Roadmap
On EX4300-32F, EFL is a $0 upgrade
Comparison with EX2200, EX3300,EX4200 and EX4300 EX2200 EX3300 EX4200 EX4300
Target Market (Dominant)
Branch; small campus access Campus access Campus access;
data center TOR Campus access; data center TOR
Marketing Name Virtual Chassis-Lite Virtual Chassis Virtual Chassis Virtual Chassis
Uplinks Up to 4x1GbE Up to 4x10GbE 128G or 2x10GbE 4x40G or 4x10GbE
Backplane Speed Up to 8 Gbps Up to 80 Gbps 128 Gbps Up to 320 Gbps
HA Capability No Yes Yes Yes
License for Virtual Chassis Base Base Base Base
LCD No Yes Yes Yes
Virtual Chassis Members Up to 4 Up to 10 Up to 10 mixed Virtual
Chassis with EX45xx Up to 10
EX4300 Packet Flow
Mini USB
MGMT
USB Port 0 - 48
EX4300 ARCHITECTURE
Single PFE system
P S U
2
4x 10GbE
Boot
Flash
6 x Octal 1GbE PHY
48GbE
Main Mem
2G
Flash
CPU
P S U
1 Rear 4x40GbE Stacking ports
Front Uplink Module 4x10GbE
LCD
4x 40GbE
Packet Forwarding Engine 1GbE
USB CON MGT
EX4300 PACKET WALK—KNOWN PACKET
10 x Dual 10GbE PHY
10 x Dual 10GbE PHY
1 Packet enters a port and its attached PFE
PFE performs MAC lookup; If source MAC is known, performs destination MAC lookup
Based on the destination MAC lookup result, the PFE forwards the packet out an egress port
8 x Quad 10GbE PHY
P S U
2
4x 10GbE
Boot
Flash
6 x Octal 1GbE PHY
48GbE
Main Mem
2G
Flash
CPU
P S U
1 Rear 4x40GbE Stacking ports
Front Uplink Module 4x10GbE
LCD
4x 40GbE
Packet Forwarding Engine
1GbE
USB CON MGT
2
3
1
2
3
EX4300 PACKET WALK—UNKNOWN PACKET
10 x Dual 10GbE PHY
10 x Dual 10GbE PHY
1 Packet enters a port and its attached PFE
PFE performs source MAC lookup
8 x Quad 10GbE PHY
P S U
2
4x 10GbE
Boot
Flash
6 x Octal 1GbE PHY
48GbE
Main Mem
2G
Flash
CPU
P S U
1
Rear 4x40GbE Stacking ports
Front Uplink Module 4x10GbE
LCD
4x 40GBE
Packet Forwarding Engine
1GbE
USB CON MGT
2
5
If source MAC is unknown, PFE sends packet to CPU for learning 3 CPU learns the source MAC and programs the PFE
The PFE performs destination MAC lookup and forwards the packet to an egress port; If destination MAC is not found, packet is replicated to all ports in the VLAN
4
VLAN X
VLAN X
1
2 3
4
5
Data center Top-of-rack deployment
• Data center 1/10/40GbE top-of-rack switch
• Mixed EX4300 copper and EX4300 fiber virtual chassis
• 1/10/40GbE uplink ports
• AFO and AFI airflow support
EX4600 product overview
Compact Distribution SWITCH
Compact & High Performance 1/10/40G density in 1 RU
Non-Stop Operations In-service software upgrades (ISSU)
Smart Analytics Insight Technology
Network Segmentation MPLS (L3VPN)
EX4600
EX4600 overview 10GbaseX platform for Distribution 24x10GbaseX SFP+ ports 4x40GE fixed QSFP+ ports Two slots for uplink modules 8x10GbE 4x40GbE
4x40GbaseX Modular slots 8x10GbE Or 4x40GbE
24xGbaseX
EX4600 supporting SKU’s Description
EX4600-EM-8F EX4600 8 port SFP+/SFP expansion module
EX-EM-4Q EX4600 4 port QSFP expansion module
EX4600-AFL EX4600, Advanced Feature License for IS-IS, BGP, MPLS
EX4600 SKUs* 10GbaseX ports 40 Gbase-X ports Total 10GbaseX ports Total 40GbaseX ports Cooling AC/DC
EX4600-40F-AFO 24 4 Up to 40 Up to 12 AFO AC
EX4600-40F-AFI 24 4 Up to 40 Up to 12 AFI AC
EX4600-40F-DC-AFO 24 4 Up to 40 Up to 12 AFO DC
EX4600-40F-DC-AFI 24 4 Up to 40 Up to 12 AFI DC
EX4600 platform
720Gbps switching performance (1.44Tbps Full Duplex)
1.5GHz Dual Core x86 CPU 8GB Memory, 2x16GB flash disks
24 x 10GbE and 4 x 40GbE fixed configuration
2 x FRU expansion modules supported 4 x 40GbE (P0 and P1 are channelized) 8 x 10 GbE
MACsec support on all 10G ports and EM-8F Module Breakout cable supported on fixed 40G ports
EX4600 platform
Field Replaceable and Hot Swappable Fan Trays 5 x Fan Trays AFI (FRU to port side) or AFO (Port to FRU side) airflow n + 1 redundancy
Field Replaceable and Hot Swappable Power Supply Units 2 x PSU 1 + 1 redundancy AC PSU – 650W AFI/AFO DC PSU – 650W AFI/AFO
Air Flow Through EX4600
Air In Airflow Through EX4600 Air Out Airflow Through EX4600
Do Not Install Components with Different Airflow or Wattage in the Switch
Advanced JUNOS SOFTWARE ARCHITECTURE Provides the foundation for advanced functions • ISSU (In-Service Software Upgrade). ENABLE HITLESS UPGRADE • Other Juniper applications for additional service in a single switch • Third-party application • Can bring up the system much faster
Linux Kernel (Centos)
Host NW Bridge KVM
JunOS VM
(Active)
JunOS VM
(Standby)
3rd Party Application Juniper Apps
Junos VM (Master) Junos VM (Master) Junos VM (Backup) Junos VM (Master)
EX4600 Hitless operations Dramatically Reduces Maintenance Windows
Network Resiliency
Net
wor
k P
erfo
rman
ce EX4600 Topology-
Independent ISSU
Competitive ISSU Approaches
Core or Distribution Efficiency During Switch Software Upgrade
High-Level EX4600 Architecture
x86 Hardware Broadcom Trident II
Kernal Based Virtual Machines
Broadcom Trident II
PFE PFE
Linux Kernel
EX4600 Packet Flow
Architecture & PFE pipeline
Tunnel Termination
L2/L3/MPLS Lookup Ingress ACL Metering
counting Parse
Packet modification Egress ACL
Metering counting
MAC MMU (Flexible Queuing Scheduling
Ingress pipeline
Egress pipeline
PFE 1/10/40GbE
Interfaces
Packet Management: buffering, rate-limiting, queue scheduling, broadcast/multicast replication (including mirroring)
Egress Pipeline: Parsing Packet modification – rewrite headers, CoS, etc Egress ACL – firewall
Ingress Pipeline: Ingress Parsing – Ethertype, VRF etc L2/L3 Lookup – L2/L3 forwarding, etc Ingress ACL – firewall, policing
Signal receive/transmit Encoding/Decoding Add/check FCS Enforce inter-frame gap
CPU Boot Flash Main Mem
Flash
L2 unicast unknown Packet flow
QIC
PFE
QIC Quad 10G
Quad 10G
Quad 10G
Quad 10G
Quad 10G
Quad 10G
1. Packet enters port and the PFE
2. PFE performs source MAC lookup
3. If source MAC is unknown, MAC is learnt in hardware and notification is sent to the CPU
4. If MAC limit is enabled, then learning notification is sent to the CPU and the CPU learns the MAC
5. Destination MAC lookup is performed
1
2
3
6 5
6. If Destination MAC is unknown, packet is forwarded to all ports in the VLAN
QSFP+
4
L2 unicast known packet flow
1. Packet enters port and the PFE
2. PFE performs source MAC lookup
3. If source MAC is known, Destination MAC lookup is performed
4. If Destination MAC is known, packet is forwarded to the destination port
CPU Boot Flash Main Mem
Flash
QIC
PFE
QIC Quad 10G
Quad 10G
Quad 10G
Quad 10G
Quad 10G
Quad 10G
QSFP+
4
1
2 3
L2 unknown packet in Virtual chassis
1. Packet enters port and the PFE on the linecard
2. PFE performs source MAC lookup and the source MAC is unknown
3. A notification is sent to the local CPU
4. LC CPU encapsulates the packet header info (mac, vlan, port#) in an IPC msg to send to the Master’s CPU for learning
5. The IPC msg is routed to the Master’s CPU via the shortest path, first via the PCI-e to the 1st PFE en-route, then via the VC backplane arriving at the Master’s CPU through its PCI-e connection
RE Backup RE Linecard
CPU
PFE CPU
PFE CPU
PFE
1
2
3
5
4
L2 unknown packet in Virtual chassis
6. Master’s CPU decides whether to learn the MAC address or discard it based on configuration (e.g. mac-limiting)
7. If Master’s CPU learns the MAC address, It will send IPC msgs to all other CPUs instructing them to program the new MAC address in each PFE’s TCAM. Similar to step 5, these IPC messages will traverse both the PCI-e connections and the VC backplane to reach CPUs on each of the switches in the VC
RE Backup RE Linecard
CPU
PFE CPU
PFE CPU
PFE 6
7
8
8. Each CPU programs the new learned MAC address in their respective PFEs’ MAC table
9
9. The ingress CPU (LC CPU), re-injects the stored original packet back out to the ingress PFE 10. The ingress PFE forwards the packet to the egress PFE based on the lookup result of the packet’s destination MAC address
10
11
11. The egress PFE forwards the packet to the egress port based on the same lookup result, no additional lookup needed
L3 Unicast packet flow
RE Backup RE Linecard
CPU
PFE CPU
PFE CPU
PFE
1. Packets enters a port on the “LC” switch and its attached ingress EXPFE 2. Ingress PFE performs MAC address lookup, finds source MAC known, thus subsequently performs lookup on the destination MAC address 3. Destination MAC address matches that of the switch itself which triggers L3 lookup 4. Ingress PFE forwards packet based on L3 lookup result – if no entry found in L3 TCAM or if next-hop missing then packet is dropped in hardware 5. The egress PFE forwards the packet to the egress port based on the same L3 lookup result, no additional lookup needed
1
2 3 4
5
Software features and licensing
Features
Advanced Layer 3 features: BGP v4/v6, ISIS, MPLS
Layer 3 features: IPv4/v6 routing – OSPFv2/v3, IGMP v1/v2, PIM, vrf-lite,
L2 and Basic Layer 3 features: STP, VLAN, LAG, LLDP, LLDP-MED, RIP, IPv4/IPv6 Static routes,
IGMP snooping, Managed by Junos Space, Network Director, sFlow, 802.1x,
Virtual Chassis
EX4200/ EX4550
Advanced License
Base (no license)
EX4300
Advanced License
Enhanced License
Base (no License)
Roadmap
EX4300 Fiber/ EX4600
Advanced License
Base (no License)
Only two licenses required per Virtual Chassis on all EX Series platforms
Simple Network Architecture
Zero-touch provisioning Ops/event scripts Python Network Director API
Network Automation
VMware Puppet, Chef OpenStack CloudStack
Data Center Automation
*Not all features will be available at FRS
AUTOMATION*
Virtual Chassis
Up to 10 Switches
EX4600 - virtual chassis Technology
VC across closets and buildings
Virtual Chassis using any port
Add VC ports for more capacity when needed
Mixed Virtual Chassis with EX4300, QFX5100 & QFX3500
Virtual Chassis support Virtual Chassis Features EX4600 VC Support
NSSU Yes
GRES Yes
NSR Yes
NSB Yes
ISSU on Virtual Chassis No*
VCP Links auto lag Yes
Dedicated queue for VCCP traffic Yes
QOS on VCP Yes
Local Link bias Yes
VCP Fast Failover No
VC topology (Ring) Yes
* In roadmap
Deployment Options
EX4600 – Aggregation Layer Deployment
40G Link 10G Link
4x10G
EX9200 Virtual Chassis
or MC-LAG
EX4600 Virtual Chassis
or MC-LAG
EX4300 VC EX4300 VC EX4300 VC EX4300 VC
4x40G
4x10G 4x10G 4x10G
EX4600 EX4600
Single point of management for the entire building
10G Link 40G Link
• 320G Full Duplex Backplane • Up to 80 10G ports • 384 Copper ports
Virtual Chassis
Closet 2 Closet 1
EX4300 Switches
EX4300 Switches
EX4600 EX4600
Building 1
EX4600 – Core Layer Deployment
Mixed Virtual Chassis Single point of management for the entire building
* Some of the EX4300 features like PoE, LLDP-MED, 802.1X, etc. not supported in Mixed Virtual Chassis. These features are in roadmap 10G Link
40G Link
• 320G Full Duplex Backplane • Up to 80 10G ports • 384 Copper ports
Mixed Virtual Chassis*
Closet 2 Closet 1
EX4300 Switches
EX4300 Switches
EX4600 EX4600
Building 1
Simple Network Architecture
Zero-touch provisioning Ops/event scripts Python Network Director API
Network Automation
VMware Puppet, Chef OpenStack CloudStack
Data Center Automation
AUTOMATION
Product positioning
Feature Enhancements
Clarify Positioning
EX4550
Features
Perf
orm
ance
EX4600
40GbE scale: 4x40GBE in-built
Multi Chassis LAG
ISSU (Standalone)
ISSU (Virtual Chassis)
Insight Technology
MACsec Current EX4550 Deployments
EX4200/EX4550 Virtual Chassis
Certifications
Higher Performance
Higher Scale
Roadmap Committed FRS
Comparison with EX4550 Features EX4550 EX4600
Throughput 480Gbps 720Gbps
10GbE Ports Up to 48 Up to 40
40GbE Ports 4 Up to 12
Packet Buffer 4MB 12MB
CPU PowerPC 1.2Ghz X86 1.5GHz Dual-Core
DRAM 2GB 8GB
SSD No 2x16GB
L2 MAC 32K 288K max (shared)
L3 Host 10K (L3+LPM) 208K max (shared)
LPM 10K (L3+LPM) 128K max (shared)
Multicast Routes 2K 104K max
*Actual number may vary depending on deployment scenarios and test results
Comparison with EX4550 Features EX4550 EX4600*
ARP 8K 48K
ACL (Ingress/Egress) 1.5K 4K/1K
ECMP 8 way 64 way
AE Port Group 8 members 448/64
VRF 254 1K
MPLS Labels 125 16K
*Actual number may vary depending on deployment scenarios and test results
44 Copyright © 2012 Juniper Networks, Inc. www.juniper.net
Thank you