BRKMPL-2131_Deploying VPNs over Segment Routed Networks Made Easy.pdf
YudiDjohan
68 views
61 slides
Oct 04, 2024
Slide 1 of 61
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
About This Presentation
Cisco Technology - How to Deploy VPN over Segment Routed Networks
Slide Content
#CiscoLive
Krishnan Thirukonda,Principal Engineer
@KrishThirukonda
BRKMPL-2131
SDN Controller based approach
Deploying VPNs over Segment
Routed Networks Made Easy
Krishnan Thirukonda,Principal Engineer
@KrishThirukonda
BRKMPL-2131
SDN Controller based approach
Deploying VPNs over Segment
Routed Networks Made Easy
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Cisco Webex App
Questions?
Use Cisco Webex Appto chat
with the speaker after the session
Find this session in the Cisco Live Mobile App
Click “Join the Discussion”
Install the Webex App or go directly to the Webex space
Enter messages/questions in the Webex space
How
Webex spaces will be moderated
by the speaker until June 7, 2024.
1
2
3
4
https://ciscolive.ciscoevents.com/
ciscolivebot/#BRKMPL-2131
Enter your personal notes here
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKMPL-2131 2
Cisco Webex App
Questions?
Use Cisco Webex Appto chat
with the speaker after the session
Find this session in the Cisco Live Mobile App
Click “Join the Discussion”
Install the Webex App or go directly to the Webex space
Enter messages/questions in the Webex space
How
Webex spaces will be moderated
by the speaker until June 7, 2024.
1
2
3
4
https://ciscolive.ciscoevents.com/
ciscolivebot/#BRKMPL-2131
Enter your personal notes here
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco PublicBRKMPL-2131 2
Agenda
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
•Technology Review
•Automation Considerations
•Cisco Controller for
Transport SDN
•Demo
•Conclusion
BRKMPL-2131 3
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
•Technology Review
•Automation Considerations
•Cisco Controller for
Transport SDN
•Demo
•Conclusion
BRKMPL-2131 3
Technology
Review
Review
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Services provided to end customers
•L2 and L3 VPNs
•Overlay services over common IP/MPLS core or IPv6
•Provides private networks with separation
•Examples: BGP L3VPNs, EVPN or legacy
•Internet access
•Multicast Transport –Content Delivery, MVPN etc
•Private Line Emulation (PLE)
5BRKMPL-2131
Services provided to end customers
•L2 and L3 VPNs
•Overlay services over common IP/MPLS core or IPv6
•Provides private networks with separation
•Examples: BGP L3VPNs, EVPN or legacy
•Internet access
•Multicast Transport –Content Delivery, MVPN etc
•Private Line Emulation (PLE)
5BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
vrfvpn-101
address-family ipv4 unicast
import route-target
65000:101
!
export route-policy SET_COLORv4_VPN-101-
ROUTE-POLICY
export route-target
65000:101
!
router bgp65000
vrfvpn-101
rd65000:101
address-family ipv4 unicast
redistribute connected
!
neighbor 30.1.1.2
remote-as 65003
address-family ipv4 unicast
route-policy PASS_ALL in
route-policy PASS_ALL out
!
!
interface HundredGigE0/0/0/1.101
description T-SDN Interface
vrfvpn-101
ipv4 address 30.1.1.1 255.255.255.0
encapsulation dot1q 101
!
PE-CE interface (& Qos)Define VRF, RT & Policy PE-CE Routing
Refer: BRKMPL-2102
Reference
BRKMPL-2131 6
vrfvpn-101
address-family ipv4 unicast
import route-target
65000:101
!
export route-policy SET_COLORv4_VPN-101-
ROUTE-POLICY
export route-target
65000:101
!
router bgp65000
vrfvpn-101
rd65000:101
address-family ipv4 unicast
redistribute connected
!
neighbor 30.1.1.2
remote-as 65003
address-family ipv4 unicast
route-policy PASS_ALL in
route-policy PASS_ALL out
!
!
interface HundredGigE0/0/0/1.101
description T-SDN Interface
vrfvpn-101
ipv4 address 30.1.1.1 255.255.255.0
encapsulation dot1q 101
!
PE-CE interface (& Qos)Define VRF, RT & Policy PE-CE Routing
Refer: BRKMPL-2102
Reference
BRKMPL-2131 6
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Transport paths in network
•Best Effort service uses IGP routing
•Large scale networks have multiple IGP domains with BGP Labelled
Unicast (BGP-LU ) or BGP-SR.
•Traffic Engineering for granular SLAs or tactical traffic management
•RSVP-TE (MPLS Core)
•SR-TE (MPLS Core)
•SRv6 (IPv6 Core)
7BRKMPL-2131
This focus in this session is on Segment Routing
Transport paths in network
•Best Effort service uses IGP routing
•Large scale networks have multiple IGP domains with BGP Labelled
Unicast (BGP-LU ) or BGP-SR.
•Traffic Engineering for granular SLAs or tactical traffic management
•RSVP-TE (MPLS Core)
•SR-TE (MPLS Core)
•SRv6 (IPv6 Core)
7BRKMPL-2131
This focus in this session is on Segment Routing
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
•Source Routing principle => packets
carry the path information
•An ingress node steers a packet
through an ordered list of instructions,
called segments
•A segment is locally defined and
executed at a specific location in the
network
•A segment can represent ANY
function, topological or service-based
or user-defined
What is Segment Routing?
8
Segment1 Segment2 Segment3Payload
A network program expressed in the packet
BRKMPL-2131
•Source Routing principle => packets
carry the path information
•An ingress node steers a packet
through an ordered list of instructions,
called segments
•A segment is locally defined and
executed at a specific location in the
network
•A segment can represent ANY
function, topological or service-based
or user-defined
What is Segment Routing?
8
Segment1 Segment2 Segment3Payload
A network program expressed in the packet
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
One Architecture / Two Data-Plane instantiations
9
SRv6
•Instantiation of SR on the IPv6 data plane
•One or more segments are encoded with an IPv6 address
SR-MPLS
•Instantiation of SR on the MPLS data plane
•A segmentisencodedwithanMPLS label
Segment Routing
Refer: BRKSPG-2510for deep dive of segment routing
BRKMPL-2131
One Architecture / Two Data-Plane instantiations
9
SRv6
•Instantiation of SR on the IPv6 data plane
•One or more segments are encoded with an IPv6 address
SR-MPLS
•Instantiation of SR on the MPLS data plane
•A segmentisencodedwithanMPLS label
Segment Routing
Refer: BRKSPG-2510for deep dive of segment routing
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Network Evolution with SR-MPLS
LDPL2 VPN services
MP-BGPL3 VPN services
BGP-LUInter-Domain BE MPLS LSP
RSVP-TE
Intra-Domain Traffic Engineering
Fast Re-Route
LDPIntra-Domain MPLS LSP
IGPIP Routing
MP-BGP
IGP with
SR extensions
Intra-Domain Traffic Engineering
Fast Re-Route
Intra-Domain MPLS LSP
IP Routing
L2 VPN services (EVPN)
L3 VPN services
SR-PCE (SLA)
BGP-SR (BE)
Inter-Domain SLA Traffic Eng.
Inter-Domain BE MPLS LSP
MPLSLabel-based forwarding MPLS Label-based forwarding
LDP: Label Distribution Protocol, MP-BGP: Multi-protocol BGP, BGP-LU: BGP Labeled-Unicast, PCE: Path Computation Element, RSVP-TE: Reservation Protocol Traffic Engineering
Service Protocols
Transport Protocols
Data-Plane
10BRKMPL-2131
Network Evolution with SR-MPLS
LDPL2 VPN services
MP-BGPL3 VPN services
BGP-LUInter-Domain BE MPLS LSP
RSVP-TE
Intra-Domain Traffic Engineering
Fast Re-Route
LDPIntra-Domain MPLS LSP
IGPIP Routing
MP-BGP
IGP with
SR extensions
Intra-Domain Traffic Engineering
Fast Re-Route
Intra-Domain MPLS LSP
IP Routing
L2 VPN services (EVPN)
L3 VPN services
SR-PCE (SLA)
BGP-SR (BE)
Inter-Domain SLA Traffic Eng.
Inter-Domain BE MPLS LSP
MPLSLabel-based forwarding MPLS Label-based forwarding
LDP: Label Distribution Protocol, MP-BGP: Multi-protocol BGP, BGP-LU: BGP Labeled-Unicast, PCE: Path Computation Element, RSVP-TE: Reservation Protocol Traffic Engineering
Service Protocols
Transport Protocols
Data-Plane
10BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive 11BRKMPL-2131
Reference
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Programmability enabled by Segment Routing
BR1 BR4 BR6Data
SDN returns SID List=BR1 BR4 BR6
•Underlay paths can be “programmed” on SR
Networks
•Paths are SID Lists and computed based on
different intent criteria
•Intent Examples: Low Latency Path, disjoint path,
encrypted links only paths, BW available paths
•Inter-domain path calculation uses external path
computation element, routers delegate path
calculation to external path calculation engines
•External path calculation engines use BGP-Link
State to learn topologies from all IGP domains
•Bandwidth Awareness using Telemetry
•Enables Software Defined Networking for Transport
Networks to provide fine grained control
Path request
BRKMPL-2131
Programmability enabled by Segment Routing
BR1 BR4 BR6Data
SDN returns SID List=BR1 BR4 BR6
•Underlay paths can be “programmed” on SR
Networks
•Paths are SID Lists and computed based on
different intent criteria
•Intent Examples: Low Latency Path, disjoint path,
encrypted links only paths, BW available paths
•Inter-domain path calculation uses external path
computation element, routers delegate path
calculation to external path calculation engines
•External path calculation engines use BGP-Link
State to learn topologies from all IGP domains
•Bandwidth Awareness using Telemetry
•Enables Software Defined Networking for Transport
Networks to provide fine grained control
Path request
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
SR Traffic Engineering
•Simple, Automated and Scalable
•No core state: state in the packet header
•No tunnel interface: “SR Policy”
•uniquely identified by a tuple (head-end, color, end-point)
•Resolved to a SID List
•On-demand policy instantiation & automated steering
•Multi-Domain
•SR PCE for compute
•Binding-SID (BSID) for scale
13
segment-routing
traffic-eng
policy srte_pcc_node5_node4
color700 end-point ipv4 198.19.1.4
candidate-paths
preference 100
dynamic
pcep
!
metric
type te
PCE configuredpce
segment-routing
traffic-eng
peer ipv4 198.19.1.5
policy srte_pce_node5_node4
color701 end-point ipv4 198.19.1.4
candidate-paths
preference 100
dynamic mpls
metric
type te
PCE configured
PCC configured
Reference
SR Traffic Engineering
•Simple, Automated and Scalable
•No core state: state in the packet header
•No tunnel interface: “SR Policy”
•uniquely identified by a tuple (head-end, color, end-point)
•Resolved to a SID List
•On-demand policy instantiation & automated steering
•Multi-Domain
•SR PCE for compute
•Binding-SID (BSID) for scale
13
segment-routing
traffic-eng
policy srte_pcc_node5_node4
color700 end-point ipv4 198.19.1.4
candidate-paths
preference 100
dynamic
pcep
!
metric
type te
PCE configuredpce
segment-routing
traffic-eng
peer ipv4 198.19.1.5
policy srte_pce_node5_node4
color701 end-point ipv4 198.19.1.4
candidate-paths
preference 100
dynamic mpls
metric
type te
PCE configured
PCC configured
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
SR-TE vs RSVP-TE
Refer: BRKMPL-2102
BRKMPL-2131 14
Reference
SR-TE vs RSVP-TE
Refer: BRKMPL-2102
BRKMPL-2131 14
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Deploying Services with SR-TE
•L2VPN P2P with SR-TE
static
•L2VPN EVPN with SR-TE
with On-Demand
Nexthop(ODN)
•L3VPN with On-Demand
NexthopSR-TE
•L3VPN or L2VPN with
SRv6+FlexAlgo
•Internet E-PE
•Multicast with TREE-SID
•Signaling options:
•NETCONF (PCC initiated)
•PCEP (PCE initiated)
•Policy Path Options
•Explicit candidate Paths
•Dynamic, locally calculated
•Dynamic, PCE delegated
•Policy instantiation
•Static OR On demand
•Traffic Steering
•Automated
•Steering profile
•Dynamic Path
Constraints
•Metric minimization
objective: latency, TE
metric , hop count
•SR IGP Flex Algo
•Max Segment Depth
•Affinity
•Disjoint
•Protected/unprotected
•Bandwidth
BRKMPL-2131 15
Reference
Deploying Services with SR-TE
•L2VPN P2P with SR-TE
static
•L2VPN EVPN with SR-TE
with On-Demand
Nexthop(ODN)
•L3VPN with On-Demand
NexthopSR-TE
•L3VPN or L2VPN with
SRv6+FlexAlgo
•Internet E-PE
•Multicast with TREE-SID
•Signaling options:
•NETCONF (PCC initiated)
•PCEP (PCE initiated)
•Policy Path Options
•Explicit candidate Paths
•Dynamic, locally calculated
•Dynamic, PCE delegated
•Policy instantiation
•Static OR On demand
•Traffic Steering
•Automated
•Steering profile
•Dynamic Path
Constraints
•Metric minimization
objective: latency, TE
metric , hop count
•SR IGP Flex Algo
•Max Segment Depth
•Affinity
•Disjoint
•Protected/unprotected
•Bandwidth
BRKMPL-2131 15
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Service (VPN) To TE path binding & Steering
•SR-Policy: uniquely identified by a tuple (head-end, color, end-
point), resolves to a SID-List to reach end-point w SLA
•Static Binding. Works well for p2p services
•SR-Policy (headend => endpoint, color) is configured on PEs.
•L2VPN with preferred-path <sr-policy name> in IOS-XR
•Route Policy to Color VPN Prefixes,
•ODN templates to map colors to Service Level Objectives and
Constraints.
•SRv6/FlexAlgo locators as next hop –VPN configurations extended
16BRKMPL-2131
Service (VPN) To TE path binding & Steering
•SR-Policy: uniquely identified by a tuple (head-end, color, end-
point), resolves to a SID-List to reach end-point w SLA
•Static Binding. Works well for p2p services
•SR-Policy (headend => endpoint, color) is configured on PEs.
•L2VPN with preferred-path <sr-policy name> in IOS-XR
•Route Policy to Color VPN Prefixes,
•ODN templates to map colors to Service Level Objectives and
Constraints.
•SRv6/FlexAlgo locators as next hop –VPN configurations extended
16BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
SR Policy pull model:
On-Demand Nexthop(ODN)
•E1 maps color BLUE to the low-delay intent using a configured Template
•Upon receiving a service route via E2 with color BLUE, E1 automatically instantiates
the SR Policy (E2, BLUE) which is resolved to a SID-List using path calculation.
•This is called On-Demand Next-hop (ODN)
•Each PE installs only the SR Policies that it needs
•E1 steers the traffic for prefix W/w onto SR Policy (E2, BLUE)
17
E1 E2
BGP VPN
W/w via E2
Color =BLUE
W/w
New SR Policy (E2, BLUE):
Path calc result
(SID-list <S1, S2, 16002>)
2
<S1, S2, 16002>
BLUE⟶Low-delay
1
3
0
Route policy to color VPN
prefix W/w with BLUEBGP
Color community
BRKMPL-2131
Reference
SR Policy pull model:
On-Demand Nexthop(ODN)
•E1 maps color BLUE to the low-delay intent using a configured Template
•Upon receiving a service route via E2 with color BLUE, E1 automatically instantiates
the SR Policy (E2, BLUE) which is resolved to a SID-List using path calculation.
•This is called On-Demand Next-hop (ODN)
•Each PE installs only the SR Policies that it needs
•E1 steers the traffic for prefix W/w onto SR Policy (E2, BLUE)
17
E1 E2
BGP VPN
W/w via E2
Color =BLUE
W/w
New SR Policy (E2, BLUE):
Path calc result
(SID-list <S1, S2, 16002>)
2
<S1, S2, 16002>
BLUE⟶Low-delay
1
3
0
Route policy to color VPN
prefix W/w with BLUEBGP
Color community
BRKMPL-2131
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Path Calculation Options
•Explicit -Nail up paths –specify a list of hops
•Dynamic –Using CSPF* find path for specified constraints
•Headend Based/Local -Headend router does path calculation using its TE DB
•Centralized/Delegated –Headend requests path from external PCE
•TE DB is Traffic Engineering database learnt via TE extensions to ISIS and OSPF
•External PCE has TE DB from many ISIS and OSPF domains, can support multi-domain path calculation
•Path Provisioning
•Headend Configured/PCC initiated
•Configured on headend routers, headend may delegate to PCE using PCEP
•Static Policy or On-Demand NexthopTemplate
•PCE Configured/PCE Initiated
•Configured on PCE via CLI or API, PCE programs Headend using PCEP Protocol
•*CSPF : Constrained Shortest Path First
18BRKMPL-2131
Reference
Path Calculation Options
•Explicit -Nail up paths –specify a list of hops
•Dynamic –Using CSPF* find path for specified constraints
•Headend Based/Local -Headend router does path calculation using its TE DB
•Centralized/Delegated –Headend requests path from external PCE
•TE DB is Traffic Engineering database learnt via TE extensions to ISIS and OSPF
•External PCE has TE DB from many ISIS and OSPF domains, can support multi-domain path calculation
•Path Provisioning
•Headend Configured/PCC initiated
•Configured on headend routers, headend may delegate to PCE using PCEP
•Static Policy or On-Demand NexthopTemplate
•PCE Configured/PCE Initiated
•Configured on PCE via CLI or API, PCE programs Headend using PCEP Protocol
•*CSPF : Constrained Shortest Path First
18BRKMPL-2131
Reference
Automation
Considerations
Considerations
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Different areas of automation
•Planning –Mid/Long Term capacity planning, update traffic trends
•Day 0 –Zero Touch Provisioning ZTP (IETF RFC 8572 )
•Day 1 –Config and Image Compliance, commissioning, integration
•Day 2 –In Service operations
•Service Life Cycle Create, Update & Delete
•Monitor Service Health
•Monitor Network Health, Fault and Performance, Maintenance, upgrades
•Optimization –short term, avoid BW congestion, hot spots etc
•Fragmented solutions reduce efficiency, need integrated solution
20BRKMPL-2131
Different areas of automation
•Planning –Mid/Long Term capacity planning, update traffic trends
•Day 0 –Zero Touch Provisioning ZTP (IETF RFC 8572 )
•Day 1 –Config and Image Compliance, commissioning, integration
•Day 2 –In Service operations
•Service Life Cycle Create, Update & Delete
•Monitor Service Health
•Monitor Network Health, Fault and Performance, Maintenance, upgrades
•Optimization –short term, avoid BW congestion, hot spots etc
•Fragmented solutions reduce efficiency, need integrated solution
20BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Network
Orchestration
Workflow Automation
Business/Order system
Service API
Notifications
Router API (Netconf/CLI)
Service Health
Collect Telemetry
Network Health
OSS/Ticketing
Path
Calculation
Activation
Abstraction –model-based APIs
SDN Controller
21
Automation with SDN Controller
BRKMPL-2131
Apply Processes and Policies
Approvals, human in the loop
Integration with inventory, IPAM etc.
Network
Orchestration
Workflow Automation
Business/Order system
Service API
Notifications
Router API (Netconf/CLI)
Service Health
Collect Telemetry
Network Health
OSS/Ticketing
Path
Calculation
Activation
Abstraction –model-based APIs
SDN Controller
21
Automation with SDN Controller
BRKMPL-2131
Apply Processes and Policies
Approvals, human in the loop
Integration with inventory, IPAM etc.
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
PCEP
RFC5440
IP Domain SDN Controller South Interfaces
Netconf/Yang
RFC6241/7950
Routers
gNMI
Openconfig
Native Models
SDN
Controller
Programmable
Network
SR-PCE
BGP
Link State
RFC9552/7752
1.Netconf/Yang
for configuration
2.gNMI (or SNMP)
for Telemetry
3.BGP Link State
for Topology
information
4.PCE Protocol
(PCEP) for path
request/report
1 2 3 4
BRKMPL-2131
PCEP
RFC5440
IP Domain SDN Controller South Interfaces
Netconf/Yang
RFC6241/7950
Routers
gNMI
Openconfig
Native Models
SDN
Controller
Programmable
Network
SR-PCE
BGP
Link State
RFC9552/7752
1.Netconf/Yang
for configuration
2.gNMI (or SNMP)
for Telemetry
3.BGP Link State
for Topology
information
4.PCE Protocol
(PCEP) for path
request/report
1 2 3 4
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
PCEP
RFC5440
IP Domain SDN Controller –North Bound Interface
Netconf/Yang
RFC6241/7950
Routers
gNMI
L2NM
RFC9291
UI & Restconf/Yang API
RFC6040/7950
Openconfig
Native Models
SDN
Controller
Programmable
Network
Slice
draft-ietf-teas-
ietf-network-
slice-nbi-yang
L3NM
RFC9182
SAIN
RFC9417
Topology
RFC8345+
PCE
BGP
Link State
RFC9552/7752
IETF Models
L3NM
RFC 9182Restconf/Yang notifications, Kafka,
gRPC, REST, Syslog, TRAP
BRKMPL-2131
PCEP
RFC5440
IP Domain SDN Controller –North Bound Interface
Netconf/Yang
RFC6241/7950
Routers
gNMI
L2NM
RFC9291
UI & Restconf/Yang API
RFC6040/7950
Openconfig
Native Models
SDN
Controller
Programmable
Network
Slice
draft-ietf-teas-
ietf-network-
slice-nbi-yang
L3NM
RFC9182
SAIN
RFC9417
Topology
RFC8345+
PCE
BGP
Link State
RFC9552/7752
IETF Models
L3NM
RFC 9182Restconf/Yang notifications, Kafka,
gRPC, REST, Syslog, TRAP
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
SDN Standardization Efforts
24
Mandatory Use Case Requirements for SDN for
Transport (MUST)
Reference
SDN Standardization Efforts
24
Mandatory Use Case Requirements for SDN for
Transport (MUST)
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Reference to IETF Standards/Drafts for models
•RFC 8466: A YANG Data Model for Layer 2 Virtual Private Network
(L2VPN) Service Delivery
•RFC 9291: A YANG Network Data Model for Layer 2 VPNs
•RFC 8453 Framework for Abstraction and Control of TE Networks
(ACTN)
•RFC 8299 YANG Data Model for L3VPN Service Delivery
•RFC 9182 A YANG Network Data Model for Layer 3 VPNs
•IETF Draft Network Slice Service YANG Model
25BRKMPL-2131
Reference
Reference to IETF Standards/Drafts for models
•RFC 8466: A YANG Data Model for Layer 2 Virtual Private Network
(L2VPN) Service Delivery
•RFC 9291: A YANG Network Data Model for Layer 2 VPNs
•RFC 8453 Framework for Abstraction and Control of TE Networks
(ACTN)
•RFC 8299 YANG Data Model for L3VPN Service Delivery
•RFC 9182 A YANG Network Data Model for Layer 3 VPNs
•IETF Draft Network Slice Service YANG Model
25BRKMPL-2131
Reference
Crosswork
Network
Controller
SDN Controller
for Transport
networks
Network
Controller
SDN Controller
for Transport
networks
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Crosswork Network Controller (CNC)
Automation solution for deploying and operating IP transport networks
27BRKMPL-2131
Service Provisioning
(L2VPN, L3VPN)
Service-Oriented Transport Provisioning
(SR-MPLS, SRv6, RSVP-TE)
Path
Calculation
Local Congestion
Mitigation
Real-time Network
Optimization
Visualization
Service Health
Monitoring
Network
Health &
Inventory
Flexible Algorithm
Bandwidth-Aware
Path Control
Intent-based
Automated Provisioning
Dynamic Traffic
Engineering
Closed Loop
Automation
Integrated Service
Lifecycle Management
Crosswork Network Controller (CNC)
Automation solution for deploying and operating IP transport networks
27BRKMPL-2131
Service Provisioning
(L2VPN, L3VPN)
Service-Oriented Transport Provisioning
(SR-MPLS, SRv6, RSVP-TE)
Path
Calculation
Local Congestion
Mitigation
Real-time Network
Optimization
Visualization
Service Health
Monitoring
Network
Health &
Inventory
Flexible Algorithm
Bandwidth-Aware
Path Control
Intent-based
Automated Provisioning
Dynamic Traffic
Engineering
Closed Loop
Automation
Integrated Service
Lifecycle Management
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Crosswork Network Controller
Path Computation Engine
Multivendor Network Devices
Configuration EngineData Collection Layer
Crosswork Network Controller –Architecture
28BRKMPL-2131
Provisioning, Path compute, Optimization, Service Health, Visualization
Data Gateway
PCEP
BGP-LS
NSO
CLI
NETCONF
SR-PCE (XR)
SNMP
gNMI
North Bound Interface
REST/RESTCONF Model Based
Microservices Based Common Infrastructure
Ref: SR-PCE: Segment Routing Path Computation EngineNSO: Network Services Orchestrator
Crosswork Network Controller
Path Computation Engine
Multivendor Network Devices
Configuration EngineData Collection Layer
Crosswork Network Controller –Architecture
28BRKMPL-2131
Provisioning, Path compute, Optimization, Service Health, Visualization
Data Gateway
PCEP
BGP-LS
NSO
CLI
NETCONF
SR-PCE (XR)
SNMP
gNMI
North Bound Interface
REST/RESTCONF Model Based
Microservices Based Common Infrastructure
Ref: SR-PCE: Segment Routing Path Computation EngineNSO: Network Services Orchestrator
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Crosswork
Network Controller
IOS
XRv
9000 VM
Multivendor Network Devices
NSO VMCDG VM
CW Infra VM
Crosswork Network Controller –Architecture
29BRKMPL-2131
Infra
Common UI & API
Data Collection
Collectors (SNMP,
Telemetry, CLI, …)
Device & Network
Inventory
Service Inventory
Normalized Data
Optimization
PCEP
BGP-LS
Service Provisioning
L3/L2 VPN
Sample Function Pack
SR-TE
Core Function Pack
CLI
NETCONF
Service Health
SNMP
gNMI
Device Packs
SR-PCE
Path Computation
Reference
Crosswork
Network Controller
IOS
XRv
9000 VM
Multivendor Network Devices
NSO VMCDG VM
CW Infra VM
Crosswork Network Controller –Architecture
29BRKMPL-2131
Infra
Common UI & API
Data Collection
Collectors (SNMP,
Telemetry, CLI, …)
Device & Network
Inventory
Service Inventory
Normalized Data
Optimization
PCEP
BGP-LS
Service Provisioning
L3/L2 VPN
Sample Function Pack
SR-TE
Core Function Pack
CLI
NETCONF
Service Health
SNMP
gNMI
Device Packs
SR-PCE
Path Computation
Reference
Service
Provisioning
Provisioning
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
VPN Model
Transformation templates & python code –extensible layer
31
Provisioning components
BRKMPL-2131
Device Model
IOS-XR
NED
Device Model
IOS-XE
NED
Device Model
Non-Cisco
NED
Provision UI or API
Netconf or CLI to Router Device
Inventory and overlay modelProvisioning
VPN Visualization UI
Service Inventory API
Service Health
Data
Gateway
SNMP, gNMI, MDT, CLI
NSO
CNC
CAT
VPN Model
Transformation templates & python code –extensible layer
31
Provisioning components
BRKMPL-2131
Device Model
IOS-XR
NED
Device Model
IOS-XE
NED
Device Model
Non-Cisco
NED
Provision UI or API
Netconf or CLI to Router Device
Inventory and overlay modelProvisioning
VPN Visualization UI
Service Inventory API
Service Health
Data
Gateway
SNMP, gNMI, MDT, CLI
NSO
CNC
CAT
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
CNC uses NSO as provisioning engine internally
Service Manager
•Concept of an end-to-end “service”
•Full lifecycle management
•Service Models
•Service intent
•Service create code
32
NSO
Package
Manager
Service Manager
Device Manager
Device Abstraction
NED NED NED
CDB
Configuration DB
•YANG database
•Stores all device and
service configs
•In memory DB
Package Manager
•Services and Device
models and
translation code in
packages.
TSDN Function Packs
•Packages for CNC provisioning
Device Manager
•Single network-wide API
•Device models
•Syncs a local copy of all device configs
NSO is a broadly deployed, highly scalable and very flexible provisioning platform
BRKMPL-2131
Reference
CNC uses NSO as provisioning engine internally
Service Manager
•Concept of an end-to-end “service”
•Full lifecycle management
•Service Models
•Service intent
•Service create code
32
NSO
Package
Manager
Service Manager
Device Manager
Device Abstraction
NED NED NED
CDB
Configuration DB
•YANG database
•Stores all device and
service configs
•In memory DB
Package Manager
•Services and Device
models and
translation code in
packages.
TSDN Function Packs
•Packages for CNC provisioning
Device Manager
•Single network-wide API
•Device models
•Syncs a local copy of all device configs
NSO is a broadly deployed, highly scalable and very flexible provisioning platform
BRKMPL-2131
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Service Intent
Device Config
Devices
Keep in sync
Service
Model
Device
Model
What
we want
What
we’ve got
Models and Sync Tools in NSO
33BRKMPL-2131
Service Intent
Device Config
Devices
Keep in sync
Service
Model
Device
Model
What
we want
What
we’ve got
Models and Sync Tools in NSO
33BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Industry’s Broadest Multivendor Support
Over 170 Supported NEDs —Customization Available
Over 170 NEDs and growing –custom NEDs available
BRKMPL-2131 34
Industry’s Broadest Multivendor Support
Over 170 Supported NEDs —Customization Available
Over 170 NEDs and growing –custom NEDs available
BRKMPL-2131 34
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Service Provisioning: NSO based Service
1.User requests VPN service with associated SR Policy
2.NSO creates device configurations for the VPN service and pushes it to
the PE routers –IOS-XR and IOS-XE out of box.
3.Validation feedback is provided, visualization of paths
NSO
CNC UI & API
1
2
IETF L2NM L2 VPN*
•T-LDP, EVPN VPWS, EVPN ELAN and ETREE
•SR-TE Policy or RSVT-TE or SRv6 locator
•ODN + l2vpn policy option for evpn
•L2VPN EVPN VPWS over SRV6
IETF L3NM VPN*
•VPN, Interface, BGP Neighbor
•SR-TE, SRv6 via l3vpn policy & ODN
•Tree-SID Provisioning
Service Provisioning UI loads and renders Service model YANG schema
CNC ships with NSO FPs for the following:
IETF-L2NM based on RFC9291 and IETF-L3NM based on RFC 9182
SR Policy Core FP. RSVP-TE sample FP.
3
3
VPN/SR
Config model
Crosswork Active
Topology
* function packs can be customized as needed for variations and non cisco devices
VPN NSO FPs
BRKMPL-2131
Service Provisioning: NSO based Service
1.User requests VPN service with associated SR Policy
2.NSO creates device configurations for the VPN service and pushes it to
the PE routers –IOS-XR and IOS-XE out of box.
3.Validation feedback is provided, visualization of paths
NSO
CNC UI & API
1
2
IETF L2NM L2 VPN*
•T-LDP, EVPN VPWS, EVPN ELAN and ETREE
•SR-TE Policy or RSVT-TE or SRv6 locator
•ODN + l2vpn policy option for evpn
•L2VPN EVPN VPWS over SRV6
IETF L3NM VPN*
•VPN, Interface, BGP Neighbor
•SR-TE, SRv6 via l3vpn policy & ODN
•Tree-SID Provisioning
Service Provisioning UI loads and renders Service model YANG schema
CNC ships with NSO FPs for the following:
IETF-L2NM based on RFC9291 and IETF-L3NM based on RFC 9182
SR Policy Core FP. RSVP-TE sample FP.
3
3
VPN/SR
Config model
Crosswork Active
Topology
* function packs can be customized as needed for variations and non cisco devices
VPN NSO FPs
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Extensibility & Flexibility
36BRKMPL-2131
IETF Based VPN Model
Extend & implement NSO
Template and CNC UI
Pre-existing NSO VPN
Deployments
Integration with CNC
Multi-vendor support
NSO template and mapping
code
Extend as needed, starting
from Cisco XR/XE out of box
Test and validation
Presentations on extensions and multivendor support:
Adapting VPN to CNC: https://community.cisco.com/t5/nso-developer-hub-documents/automationdevdays22-cnc-nso-service-customization-nbsp/ta-p/4614587
Multi Vendor support: https://community.cisco.com/t5/nso-developer-hub-documents/automationdevdays22-cnc-multi-vendor-non-cisco-device/ta-p/4614579
Reference
Extensibility & Flexibility
36BRKMPL-2131
IETF Based VPN Model
Extend & implement NSO
Template and CNC UI
Pre-existing NSO VPN
Deployments
Integration with CNC
Multi-vendor support
NSO template and mapping
code
Extend as needed, starting
from Cisco XR/XE out of box
Test and validation
Presentations on extensions and multivendor support:
Adapting VPN to CNC: https://community.cisco.com/t5/nso-developer-hub-documents/automationdevdays22-cnc-nso-service-customization-nbsp/ta-p/4614587
Multi Vendor support: https://community.cisco.com/t5/nso-developer-hub-documents/automationdevdays22-cnc-multi-vendor-non-cisco-device/ta-p/4614579
Reference
Path Control &
Optimization
Optimization
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Traffic Engineering –Why do we need it?
Service-Level
Objective (SLO)
Link Preferences High Availability Bandwidth
Applications
Congestion
Mitigation
BRKMPL-2131 38
Reference
Traffic Engineering –Why do we need it?
Service-Level
Objective (SLO)
Link Preferences High Availability Bandwidth
Applications
Congestion
Mitigation
BRKMPL-2131 38
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
SLO: Path
Optimization
Objective
Ex: Find paths with
lowest latency
1 2 3
4 5
Total IGP cost I:20
Total Delay :30
I:10
D:15
I:30
D:10
I:10
D:10
I:10
D:8
I:10
D:15
Total IGP cost I:50
Total Delay :28
Low Latency SLA traffic
should go 1-4-5-3
BRKMPL-2131 39
Reference
SLO: Path
Optimization
Objective
Ex: Find paths with
lowest latency
1 2 3
4 5
Total IGP cost I:20
Total Delay :30
I:10
D:15
I:30
D:10
I:10
D:10
I:10
D:8
I:10
D:15
Total IGP cost I:50
Total Delay :28
Low Latency SLA traffic
should go 1-4-5-3
BRKMPL-2131 39
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
Affinity to certain
links
Example:
Encrypted links etc
1 2 3
4 5
I:10
D:15
I:30
D:10
I:10
D:10
I:10
D:8
I:10
D:15
Total IGP cost I:50
Total Delay :28
Traffic that requires
property=red goes through
1-4-2-5-3
I:10
D:10
I:10
D:10
BRKMPL-2131 40
Reference
Affinity to certain
links
Example:
Encrypted links etc
1 2 3
4 5
I:10
D:15
I:30
D:10
I:10
D:10
I:10
D:8
I:10
D:15
Total IGP cost I:50
Total Delay :28
Traffic that requires
property=red goes through
1-4-2-5-3
I:10
D:10
I:10
D:10
BRKMPL-2131 40
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
I:10
D:8
Highly Available
Traffic using
Disjoint paths
Send two copies
with separated
node/links/srlgs
1 2 3
4 5
I:10
D:15
I:30
D:10
I:10
D:10
I:10
D:15
Copy A via 1-2-3
Copy B via 1-4-5-3
I:10
D:10
I:10
D:10
BRKMPL-2131 41
Reference
I:10
D:8
Highly Available
Traffic using
Disjoint paths
Send two copies
with separated
node/links/srlgs
1 2 3
4 5
I:10
D:15
I:30
D:10
I:10
D:10
I:10
D:15
Copy A via 1-2-3
Copy B via 1-4-5-3
I:10
D:10
I:10
D:10
BRKMPL-2131 41
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
Bandwidth as
Constraint
1 2 3
4 5
70%
30%
80%
30%
70%
Link Utilization Tracked
Find and use Paths that have
BW available for this traffic
30% 30%
BRKMPL-2131 42
Reference
Bandwidth as
Constraint
1 2 3
4 5
70%
30%
80%
30%
70%
Link Utilization Tracked
Find and use Paths that have
BW available for this traffic
30% 30%
BRKMPL-2131 42
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
BW Optimization
Congestion
Mitigation
1 2 3
4 5
70%
Congested
30%
80%
30%
30%
Link Utilization Tracked
At congestion points, create policies and
bypass some traffic. Local vs Global
Congestion Mitigation options.
Automation needed
30% 30%
BRKMPL-2131 43
Reference
BW Optimization
Congestion
Mitigation
1 2 3
4 5
70%
Congested
30%
80%
30%
30%
Link Utilization Tracked
At congestion points, create policies and
bypass some traffic. Local vs Global
Congestion Mitigation options.
Automation needed
30% 30%
BRKMPL-2131 43
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
BW Optimization
Congestion
Mitigation
1 2 3
4 5
50%
Congestion
Mitigated
30%
80%
30%
30%
Local Congestion Mitigation migrates some of
the Optimizable traffic away from the
congested link and brings
30% 30%
BRKMPL-2131 44
Reference
BW Optimization
Congestion
Mitigation
1 2 3
4 5
50%
Congestion
Mitigated
30%
80%
30%
30%
Local Congestion Mitigation migrates some of
the Optimizable traffic away from the
congested link and brings
30% 30%
BRKMPL-2131 44
Reference
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Path Calculation and Control Component View
45
1.Crosswork Optimization Engine
2.SR-PCE
3.Crosswork Data Gateway
SR-PCE
Crosswork
Optimization Engine
NSO
CNC UI & API
REST
PCEP BGP-LS gNMI/SNMP
CDG
1
2 3
BRKMPL-2131
Path Calculation and Control Component View
45
1.Crosswork Optimization Engine
2.SR-PCE
3.Crosswork Data Gateway
SR-PCE
Crosswork
Optimization Engine
NSO
CNC UI & API
REST
PCEP BGP-LS gNMI/SNMP
CDG
1
2 3
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Optimization Engine (OE)
•Builds and maintains real-time network model that includes topology and traffic
•Run simulations against real-time network model
•Performs bandwidth book-keeping (Bandwidth use cases)
46
OE Real-Time
network model
Topology Interface and SR
policy utilization
BRKMPL-2131
Optimization Engine (OE)
•Builds and maintains real-time network model that includes topology and traffic
•Run simulations against real-time network model
•Performs bandwidth book-keeping (Bandwidth use cases)
46
OE Real-Time
network model
Topology Interface and SR
policy utilization
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Optimization Engine (OE)
•Crosswork collects topology and LSPs using SR-PCE via internal API
•Crosswork enriches topology with additional attributes via SNMP using CDG
•Crosswork collects interface and SR policy statistics via Telemetry (gNMI/openconfig)
or SNMP using CDG
OE Real-Time
network model
Physical Network
Collection via SR-PCE
Topology
LSPs
BRKMPL-2131
Optimization Engine (OE)
•Crosswork collects topology and LSPs using SR-PCE via internal API
•Crosswork enriches topology with additional attributes via SNMP using CDG
•Crosswork collects interface and SR policy statistics via Telemetry (gNMI/openconfig)
or SNMP using CDG
OE Real-Time
network model
Physical Network
Collection via SR-PCE
Topology
LSPs
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Segment Routing PCE (SR-PCE) on IOS-XR
•SR-PCE: IOS XR multi-domain stateful Segment
Routing Path Computation Element (PCE)
•IOS XR: Available on any physical/virtual IOS XR device,
typically IOS-XRv9000 are deployed
•Multi-domain: Real-time feed via BGP-LS/IGP from
multiple domains; computes inter-area/domain/AS paths
•Stateful: takes control of SRTE Policies, updates them
when required
•SR PCE: native SR-optimized computation algorithms
•Delegatesto OE when Bandwidth constraint is requested
using API
DeployCollect
Topo
DB
Compute
REST API
IGP
BGP-LS PCEP
BRKMPL-2131
Segment Routing PCE (SR-PCE) on IOS-XR
•SR-PCE: IOS XR multi-domain stateful Segment
Routing Path Computation Element (PCE)
•IOS XR: Available on any physical/virtual IOS XR device,
typically IOS-XRv9000 are deployed
•Multi-domain: Real-time feed via BGP-LS/IGP from
multiple domains; computes inter-area/domain/AS paths
•Stateful: takes control of SRTE Policies, updates them
when required
•SR PCE: native SR-optimized computation algorithms
•Delegatesto OE when Bandwidth constraint is requested
using API
DeployCollect
Topo
DB
Compute
REST API
IGP
BGP-LS PCEP
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Path computation -SR-PCE + Optimization
engine
49
1. User requests VPN service & associated SLA from CNC.
2. NSO provisions Service, SR policy initialized at headend
3. Headend requests path from SR-PCE
4. If request includes bandwidth, SR-PCE gets path from OE
5. SR-PCE returns path to headend
6. If bandwidth path needs to change, OE pushes path to SR-PCE
7. SR-PCE updates headend via PCEP for path changes
SR-PCE
Crosswork
Optimization Engine
NSO
CNC UI & API
1
2 3
57
4 6
SR Policy Optimization
Objective Latency/IGP/TE Metric Minimization
ConstraintsAffinities, Disjoint Paths, Bandwidth
REST
PCEP BGP-LS gNMI/SNMP
BRKMPL-2131
Path computation -SR-PCE + Optimization
engine
49
1. User requests VPN service & associated SLA from CNC.
2. NSO provisions Service, SR policy initialized at headend
3. Headend requests path from SR-PCE
4. If request includes bandwidth, SR-PCE gets path from OE
5. SR-PCE returns path to headend
6. If bandwidth path needs to change, OE pushes path to SR-PCE
7. SR-PCE updates headend via PCEP for path changes
SR-PCE
Crosswork
Optimization Engine
NSO
CNC UI & API
1
2 3
57
4 6
SR Policy Optimization
Objective Latency/IGP/TE Metric Minimization
ConstraintsAffinities, Disjoint Paths, Bandwidth
REST
PCEP BGP-LS gNMI/SNMP
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Path Computation & Optimization scenarios
50
Use case Optimization objective /
constraint
Single IGP domain Multi-IGP domain
Basic Reachability IGP Metric PCC or PCE PCE
Low Latency TE Metric PCC or PCE PCE
Low Latency Delay Metric PCC or PCE PCE
Disjointness IGP/TE/Delay + Association
Group
PCC or PCE PCE
Bandwidth on Demand
(BWoD)
Bandwidth PCE + COE PCE + COE
Circuit Style SR-TE
(CS SR-TE)
Bandwidth PCE + COE PCE + COE
Local Congestion Mitigation
(LCM)
Bandwidth PCE + COE PCE + COE
PCC: Path computation client aka Head End Router, PCE: Engine, COE, Crosswork Optimization Engine
BRKMPL-2131
Path Computation & Optimization scenarios
50
Use case Optimization objective /
constraint
Single IGP domain Multi-IGP domain
Basic Reachability IGP Metric PCC or PCE PCE
Low Latency TE Metric PCC or PCE PCE
Low Latency Delay Metric PCC or PCE PCE
Disjointness IGP/TE/Delay + Association
Group
PCC or PCE PCE
Bandwidth on Demand
(BWoD)
Bandwidth PCE + COE PCE + COE
Circuit Style SR-TE
(CS SR-TE)
Bandwidth PCE + COE PCE + COE
Local Congestion Mitigation
(LCM)
Bandwidth PCE + COE PCE + COE
PCC: Path computation client aka Head End Router, PCE: Engine, COE, Crosswork Optimization Engine
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Crosswork Network Controller transport capabilities
•Segment Routing Traffic Engineering
•Segment Routing v6 Traffic Engineering (SRv6)
•TreeSID
•Bandwidth on Demand (BWoD)
•Circuit Style SR-TE (CS SR-TE)
•Local Congestion Mitigation (LCM)
51BRKMPL-2131
Crosswork Network Controller transport capabilities
•Segment Routing Traffic Engineering
•Segment Routing v6 Traffic Engineering (SRv6)
•TreeSID
•Bandwidth on Demand (BWoD)
•Circuit Style SR-TE (CS SR-TE)
•Local Congestion Mitigation (LCM)
51BRKMPL-2131
Service Health
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
CNC Service Health Architecture
Uses Service Assurance for Intent Network concepts –IETF RFC 9417
53
CNC
Service Health cAppNSO
CNC UI/API
Data Gateways
notify
Assurance
Graph
Heuristics
Package
Routers in Network
health
User provisions
services
CRUDinventory
User views services
with health info
Netconf/CLI gNMI/SNMP Telemetry
AlertsService specific Telemetry collection
query
BRKMPL-2131
CNC Service Health Architecture
Uses Service Assurance for Intent Network concepts –IETF RFC 9417
53
CNC
Service Health cAppNSO
CNC UI/API
Data Gateways
notify
Assurance
Graph
Heuristics
Package
Routers in Network
health
User provisions
services
CRUDinventory
User views services
with health info
Netconf/CLI gNMI/SNMP Telemetry
AlertsService specific Telemetry collection
query
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Service Type and
Device Config
INTENT
From Heuristic Package to Assurance Graph
L2 VPN
Path
Reachability
Fallback
Path Heath
SR-TE/RSVP
Health
Path SLA
Y.1731
Probe Health
VPWS CtrlPlane
Health
PCEP
Session Health
VPN If
Health
EVPN Health
Device
Health
BGP Nbr
Health
BGP NextHop
Health
RULES
Assurance
Graph
NSO Service and
Device Configuration
Services
Subservices
Expressions
Metric
54BRKMPL-2131
Reference
Service Type and
Device Config
INTENT
From Heuristic Package to Assurance Graph
L2 VPN
Path
Reachability
Fallback
Path Heath
SR-TE/RSVP
Health
Path SLA
Y.1731
Probe Health
VPWS CtrlPlane
Health
PCEP
Session Health
VPN If
Health
EVPN Health
Device
Health
BGP Nbr
Health
BGP NextHop
Health
RULES
Assurance
Graph
NSO Service and
Device Configuration
Services
Subservices
Expressions
Metric
54BRKMPL-2131
Reference
Demo
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Conclusion
•SDN Controllers moves the Automation and Assurance boundaries
offering single API and assurance platform reducing the cost &
work needed in building automation.
•Extensible modules allow for flexibility in supporting variations.
•API integration to integrate with business processes
•Telemetry via controller supports collect once and consume many places
•Visualization is a big operations benefit
•Segment Routing Networks are programmable and enable delivery
of granular SLAs with simplification and scale with SDN controllers
•Innovation with SDN Controllers is faster w simplified networks
BRKMPL-2131
Conclusion
•SDN Controllers moves the Automation and Assurance boundaries
offering single API and assurance platform reducing the cost &
work needed in building automation.
•Extensible modules allow for flexibility in supporting variations.
•API integration to integrate with business processes
•Telemetry via controller supports collect once and consume many places
•Visualization is a big operations benefit
•Segment Routing Networks are programmable and enable delivery
of granular SLAs with simplification and scale with SDN controllers
•Innovation with SDN Controllers is faster w simplified networks
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
Complete Your Session Evaluations
Complete a minimum of 4 session surveys and the Overall Event Survey to be
entered in a drawing to win 1 of 5 full conference passes to Cisco Live 2025.
Earn 100 points per survey completed and compete on the Cisco Live
Challenge leaderboard.
Level up and earn exclusive prizes!
Complete your surveys in the Cisco Live mobile app.
BRKMPL-2131 57
Complete Your Session Evaluations
Complete a minimum of 4 session surveys and the Overall Event Survey to be
entered in a drawing to win 1 of 5 full conference passes to Cisco Live 2025.
Earn 100 points per survey completed and compete on the Cisco Live
Challenge leaderboard.
Level up and earn exclusive prizes!
Complete your surveys in the Cisco Live mobile app.
BRKMPL-2131 57
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
Continue
your education
•Visit the Cisco Showcase
for related demos
•Book your one-on-one
Meet the Engineer meeting
•Attend the interactive education
with DevNet, Capture the Flag,
and Walk-in Labs
•Visit the On-Demand Library
for more sessions at
www.CiscoLive.com/on-demand
Contact me at: [email protected]
BRKMPL-2131 58
Continue
your education
•Visit the Cisco Showcase
for related demos
•Book your one-on-one
Meet the Engineer meeting
•Attend the interactive education
with DevNet, Capture the Flag,
and Walk-in Labs
•Visit the On-Demand Library
for more sessions at
www.CiscoLive.com/on-demand
Contact me at: [email protected]
BRKMPL-2131 58
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
SR Learning Path
59
Session ID Title Session TypeSpeakers Schedule and location
TECSPG-1000Segment Routing Masterclass
Technical
Seminar
Jose Liste| Jakub
Horn
Jun 2 | 9:00 am -1:00 pm
L2, Breakers BH
BRKMPL-2203Introduction to SRv6 uSIDTechnology Breakout Jakub Horn
Jun 3 | 10:30 am -12:00
pm
L3, South Seas B
BRKMPL-2135
Preparing for a Successful Segment Routing
Deployment -
Breakout Jose Liste
Jun 3 |10:30 am -12:00
pm
L2, Surf EF
BRKENT-1520Segment Routing Innovations in IOS XE Breakout
Jason Yang |
SumantMali
Jun 3 | 9:30 am -10:30
am
L3, Palm D
BRKMPL-2131
Deploying VPNs over Segment Routed Networks
Made Easy
Breakout
Krishnan
Thirukonda
Jun 3 | 01:00 PM / LL,
Tradewinds DEF
BRKMPL-2177
Empower Your Network with Segment Routing and
MPLS Network Migration
Breakout Thomas Wang
Jun 3 | 9:30 am -10:30
am
LL, Tradewinds DEF
BRKMPL-2043
Simplify Your Journey to SR and SRv6 with Cisco
CrossworkAutomation
Breakout
Sujay Murthy | Eric
Ortheau
Jun 4 | 04:00 PM / LL,
Tradewinds ABC
BRKMPL-2131
SR Learning Path
59
Session ID Title Session TypeSpeakers Schedule and location
TECSPG-1000Segment Routing Masterclass
Technical
Seminar
Jose Liste| Jakub
Horn
Jun 2 | 9:00 am -1:00 pm
L2, Breakers BH
BRKMPL-2203Introduction to SRv6 uSIDTechnology Breakout Jakub Horn
Jun 3 | 10:30 am -12:00
pm
L3, South Seas B
BRKMPL-2135
Preparing for a Successful Segment Routing
Deployment -
Breakout Jose Liste
Jun 3 |10:30 am -12:00
pm
L2, Surf EF
BRKENT-1520Segment Routing Innovations in IOS XE Breakout
Jason Yang |
SumantMali
Jun 3 | 9:30 am -10:30
am
L3, Palm D
BRKMPL-2131
Deploying VPNs over Segment Routed Networks
Made Easy
Breakout
Krishnan
Thirukonda
Jun 3 | 01:00 PM / LL,
Tradewinds DEF
BRKMPL-2177
Empower Your Network with Segment Routing and
MPLS Network Migration
Breakout Thomas Wang
Jun 3 | 9:30 am -10:30
am
LL, Tradewinds DEF
BRKMPL-2043
Simplify Your Journey to SR and SRv6 with Cisco
CrossworkAutomation
Breakout
Sujay Murthy | Eric
Ortheau
Jun 4 | 04:00 PM / LL,
Tradewinds ABC
BRKMPL-2131
© 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public#CiscoLive
SR Learning Path
60TECSPG-1000
Session ID Title Session TypeSpeakers Schedule and location
BRKSPG-2474
Reduced Resolution Time with Svc-centric Approach
to Troubleshooting
Breakout Paola Arosia
Tuesday, Jun 410:30 am -
11:30 am PDT
L3, Palm A
LTRSPG-2006
Explore the Power of SRv6: Unleashing the Potential
of Next-Generation Networking -
Instructor-led
Lab
Jakub Horn |
Marius Stoica | Alex
Kiritchenko
Jun 5 | 8:00 am -12:00
pm
Luxor -L1, Lotus 3
BRKMPL-2133
Circuit-Style Segment Routing and Service Emulation
-
Breakout Thomas Wang
Jun 5 | 4:00 pm -5:00 pm
L2, Surf CD
BRKSPG-2263
Design, Deploy and Manage Transport Slices using
SDN Controller and Assurance
Breakout Sujay Murthy
Jun 6 | 09:30 AM / LL,
Tradewinds ABC
BRKSPG-2870
Automate Transport Service Provisioning,
Optimization, and Assurance with SDN Controller
Breakout Deepak Bhargava
Jun 6 | 01:00 PM / L3,
South Seas J
LABMPL-1201SRv6 Basics Walk-in LabLuc De Ghein Walk in Lab area in WoS
LABSP-3393
Implementing Segment Routing v6 (SRv6) Transport
on NCS 55xx/5xx and Cisco 8000: Advanced -
Walk-in Lab
PabanSarma |
Gautam Renjen |
Alexey Babaytsev
Walk in Lab area in WoS
LABSPG-3000
Configure and Implement BGP-EVPN with Segment
Routing using NCS 55xx/5xx Platforms
Walk-in LabTejasLad | Paban
Sarma
Walk in Lab area in WoS
BRKMPL-2131 60
SR Learning Path
60TECSPG-1000
Session ID Title Session TypeSpeakers Schedule and location
BRKSPG-2474
Reduced Resolution Time with Svc-centric Approach
to Troubleshooting
Breakout Paola Arosia
Tuesday, Jun 410:30 am -
11:30 am PDT
L3, Palm A
LTRSPG-2006
Explore the Power of SRv6: Unleashing the Potential
of Next-Generation Networking -
Instructor-led
Lab
Jakub Horn |
Marius Stoica | Alex
Kiritchenko
Jun 5 | 8:00 am -12:00
pm
Luxor -L1, Lotus 3
BRKMPL-2133
Circuit-Style Segment Routing and Service Emulation
-
Breakout Thomas Wang
Jun 5 | 4:00 pm -5:00 pm
L2, Surf CD
BRKSPG-2263
Design, Deploy and Manage Transport Slices using
SDN Controller and Assurance
Breakout Sujay Murthy
Jun 6 | 09:30 AM / LL,
Tradewinds ABC
BRKSPG-2870
Automate Transport Service Provisioning,
Optimization, and Assurance with SDN Controller
Breakout Deepak Bhargava
Jun 6 | 01:00 PM / L3,
South Seas J
LABMPL-1201SRv6 Basics Walk-in LabLuc De Ghein Walk in Lab area in WoS
LABSP-3393
Implementing Segment Routing v6 (SRv6) Transport
on NCS 55xx/5xx and Cisco 8000: Advanced -
Walk-in Lab
PabanSarma |
Gautam Renjen |
Alexey Babaytsev
Walk in Lab area in WoS
LABSPG-3000
Configure and Implement BGP-EVPN with Segment
Routing using NCS 55xx/5xx Platforms
Walk-in LabTejasLad | Paban
Sarma
Walk in Lab area in WoS
BRKMPL-2131 60
Thank you
#CiscoLive
#CiscoLive
Categories
GeneralDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 68
- Slides 61
- Age 425 days
Related Slideshows
22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
32 views
26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
35 views
31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
32 views
14
Fertility awareness methods for women in the society
Isaiah47
30 views
35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
29 views
5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
30 views