VMware Smart Assurance MPLS Manager Discovery Guide .

3y ago
72 Views
2 Downloads
3.33 MB
151 Pages
Last View : 3d ago
Last Download : 4m ago
Upload by : Hayden Brunner
Transcription

VMware Smart Assurance MPLSManager Discovery GuideVMware Smart Assurance 10.1.0

VMware Smart Assurance MPLS Manager Discovery GuideYou can find the most up-to-date technical documentation on the VMware website at:https://docs.vmware.com/VMware, Inc.3401 Hillview Ave.Palo Alto, CA 94304www.vmware.comCopyrightVMware, Inc. 2020 VMware, Inc. All rights reserved. Copyright and trademark information.2

Contents1 Discovery Overview 8Terminology8System and deviceDiscoveryObject999MPLS Management Suite installation directoryLSP support10TE tunnelsTE LSPs1010P2MP LSPssubLSPs1111LDP LSPs11VPN support11MPLS L2VPNs12MPLS L3VPNs12LDP adjacency and RSVP session supportDevice support1213SNMP and CLI discovery supportOverlapping IP address support1417MPLS VPN-Tagging Server supportMulti-VRF CE support1818Client route advertisement19Single-homed or multi-homed configurationMulticast VPN support1919P2MP LSPs and subLSPs19Inclusive and selective P2MP LSPsDiscovered multicast topologyBGP support9202021Discovery overview21IP Availability Manager discovery23MPLS Topology Server discovery24Imports topology from IP Availability ManagerInitiates discovery25Performs MPLS discovery25Performs L2VPN discovery27Performs L3VPN discovery29Builds a complete modelLogs discovery messagesVMware, Inc.2530303

VMware Smart Assurance MPLS Manager Discovery GuideCreates CLI log files30When discovery occurs31How discovery is conductedInitial discovery3131Subsequent discovery32Use cases for discovery322 MPLS VPN Overlapping IP Discovery 34Introducing the MPLS VPN-Tagging ServerMPLS VPN-Tagging Server purpose35MPLS VPN-Tagging Server assistanceFunctional overview343537Discovery in the Cisco environment37Discovery in the Alcatel-Lucent environmentOn-demand discovery41Adapter Configuration42Discovery assumptions and criteriaOverlapping IP naming format394243Configuring the MPLS VPN-Tagging ServerStarting the MPLS VPN-Tagging Server43443 Discovery Process 45Discovery process overviewDiscovery types4546Summary of MPLS discovery46Summary of L2VPN discovery46Summary of L3VPN discovery47Summary of BGP discoveryDiscovery process details4747Phase 1: Import initial topology49Phase 2: Probe each managed device50Phase 3: Post-process the discovery information534 Discovery of MPLS Objects 56MPLS discovery overview56More about LSPs and LSP discoveryTE tunnels and TE LSPsP2MP LSPs and subLSPsLDP LSPs57586161LSP discovery61More about LDP adjacencies and LDP adjacency discoveryVMware, Inc.614

VMware Smart Assurance MPLS Manager Discovery GuideMore about RSVP sessions and RSVP session discoveryMPLS discovery process6263SNMP and CLI discovery65Per-device discovery for MPLS66Postprocessing discovery for MPLS69Relationships between the MPLS and transport models765 Discovery of L2VPN Objects 78L2VPN discovery overview78More about L2VPNs and L2VPN discoveryL2VPN encapsulation79Virtual private wire service80Virtual private LAN service80L2VPN discovery7982More about targeted LDP adjacencies and LDP adjacency discoveryL2VPN discovery process8485SNMP and CLI discovery87Per-device discovery for L2VPN87Postprocessing discovery for L2VPN89Relationships between the L2VPN, MPLS, and transport models946 Discovery of L3VPN Objects 96L3VPN discovery overview96More about L3VPNs and L3VPN discoveryUnicast L3VPN data plane97Multicast L3VPN data planeL3VPN encapsulationL3VPN componentsL3VPN discovery9697979799L3VPN discovery process99SNMP and CLI discovery101Per-device discovery for L3VPN101Postprocessing discovery for L3VPN102Relationships between the L3VPN, MPLS, and transport models1047 Discovery of BGP Objects 106BGP discovery overview106Associating BGP sessions with MPLS L3VPNsResynchronizing BGP topologiesBGP discovery detailsVMware, Inc.1071081085

VMware Smart Assurance MPLS Manager Discovery Guide8 Preparing and Initiating Discovery 109Preparing for discovery109Prepare the Global Manager for discovery109Prepare IP Availability Manager for discoveryPrepare MPLS Manager for discoveryInitiating discovery109110110Synchronizing with IP Availability ManagerTopology synchronization111111CLI device-access object synchronization112Synchronizing with the MPLS Topology ServerMPLS Monitoring Server synchronizationMPLS Analysis Server synchronizationImported topology subsets112113113114Other synchronizations for the MPLS Monitoring ServerSpecifying a different IP Availability Manager source115116Procedure for specifying a different IP Availability Manager source1169 Understanding Discovery Results 118Discovery results118Successful discovery118Unsuccessful discovery118Discovery error resolutions119Open the Domain Manager Administration ConsoleCheck the Discovery Progress windowCheck the server log files121121Check the CLI log files122Error message formatting122Examples of error messages in CLI log filesPending Elements list119124125Information provided by the Pending Elements list126Management of individual pending element entries12610 Using Full or Pending Discovery 127Discovery methodsFull discovery127127Automatic full discoveryManual full discoveryPending discovery127128129Automatic pending discoveryManual pending discoveryVMware, Inc.1291306

VMware Smart Assurance MPLS Manager Discovery Guide11 MIBs Accessed for Discovery and Remote Ping 132SNMP versions supported132MIBs accessed for MPLS discovery132MIBs accessed for L2VPN discovery135MIBs accessed for L3VPN discovery137MIBs accessed for BGP discoveryMIBs accessed for remote ping13813912 CLI Commands Invoked for Discovery and LSP Ping 143CLI commands overview143CLI commands invoked on Cisco devicesCLI commands invoked on Huawei devices143145CLI commands invoked on Juniper M/T devices146CLI commands invoked on Juniper ERX devices148CLI commands invoked for LSP ping150Default LSP ping command line for Cisco devices150Default LSP ping command line for Juniper M/T devicesLSP ping customizationVMware, Inc.1511517

Discovery Overview1This chapter includes the following topics:nTerminologynLSP supportnVPN supportnLDP adjacency and RSVP session supportnDevice supportnSNMP and CLI discovery supportnOverlapping IP address supportnMPLS VPN-Tagging Server supportnMulti-VRF CE supportnMulticast VPN supportnBGP supportnDiscovery overviewnIP Availability Manager discoverynMPLS Topology Server discoverynWhen discovery occursnHow discovery is conductedTerminologyThe VMware Smart Assurance MPLS Manager includes the following products:nVMware Smart Assurance MPLS ManagernVMware Smart Assurance MPLS VPN-Tagging ServerVMware, Inc.8

VMware Smart Assurance MPLS Manager Discovery GuideVMware Smart Assurance MPLS Management Suite is an VMware Smart Assurance DomainManager. A Domain Manager is a service-assurance application that is associated with aparticular type of information-technology domain, such as networks, systems, applications, orapplication services. For MPLS Manager, the domain is the Multiprotocol Label Switching(MPLS) network and the MPLS virtual private network (VPN). Each Domain Manager isautonomous in the sense that it:nMaintains its own data models, repository, and problem signatures.nMonitors and analyzes the discovered objects in its own domain.System and deviceThe term “system” is a generic term that represents a computer-based network entity, such as ahost, router, or switch. The term “device” has essentially the same meaning as system exceptthat, in some cases, “device” also conveys the sense of specific model, such as a specific modelof host, router, or switch.DiscoveryVMware Smart Assurance discovery is the process of using VMware Smart Assurance objectclass models to create a representation of the managed topology within the repository, ordatabase, of a Domain Manager. For MPLS Manager, data is collected from MPLS-enableddevices in the managed network to create instances of MPLS and VPN topology objects, theirrelationships, and their logical connections.When an MPLS-enabled device is added to the managed network, MPLS Manager performsdiscovery on the device to determine the MPLS and VPN topology objects that are associatedwith the device. When an MPLS-enabled device is removed from the managed network anddeleted from the topology, MPLS Manager removes the device and all the device’s associatedMPLS and VPN topology objects from the modeled topology.ObjectThe term “object” is intended to have a dual meaning: To simultaneously represent both (1) anVMware Smart Assurance object in the modeled topology and (2) a physical or logical entity inthe real topology. An VMware Smart Assurance object corresponds to a physical or logical entityin the real topology.MPLS Management Suite installation directoryIn this document, the term BASEDIR represents the location where VMware Smart Assurancesoftware is installed:nFor UNIX, this location is: /opt/InCharge/ productsuite .VMware, Inc.9

VMware Smart Assurance MPLS Manager Discovery GuideThe productsuite represents the VMware Smart Assurance product suite to which theproduct belongs. For example, on UNIX operating systems, VMware Smart Assurance MPLSManagement Suite is, by default, installed to /opt/InCharge/MPLS/smarts.Optionally, you can specify the root of BASEDIR to be something other than /opt/InCharge(on UNIX).The VMware Smart Assurance System Administration Guide provides detailed informationabout the directory structure for VMware Smart Assurance software.LSP supportMPLS Manager discovers the following types of label switched paths (LSPs):nTraffic engineering (TE) tunnelsnTE LSPsnPoint-to-multipoint (P2MP) LSPsnsubLSPsnLabel Distribution Protocol (LDP) LSPsAn LSP is a sequence of switch hops that together form a path that is traversed by labeledpackets across an MPLS network.TE tunnelsTE tunnels are point-to-point virtual paths between headend and tailend routing devices in anMPLS network. The routing devices may be Provider Edge (PE) or Provider (P) devices. A TEtunnel is associated with one or more TE LSPs.MPLS Manager discovers the following types of TE tunnels:nLink- and node-protected TE tunnelsMPLS Manager discovers the primary and backup TE LSPs for TE tunnels that have beenconfigured for link and node protection.nPath-protected TE tunnelsMPLS Manager discovers the primary and secondary TE LSPs for TE tunnels that have beenconfigured for path protection.TE LSPsAlso known as tunnel LSPs, TE LSPs are constrained paths that are constructed by a signalingprotocol such as Resource Reservation Protocol with TE extensions (RSVP-TE). RSVP-TEdistributes and assigns labels, manages quality of service (QoS) issues, and handles errorconditions.VMware, Inc.10

VMware Smart Assurance MPLS Manager Discovery GuideP2MP LSPsAlso known as P-tunnels, P2MP LSPs are point-to-multipoint virtual paths between headend andtailend routing devices in an MPLS network. The routing devices are PE devices. A P2MP LSP isassociated with two or more subLSPs.subLSPsAlso known as source-to-leaf (S2L) sub-LSPs, subLSPs are constrained paths that areconstructed by the RSVP-TE signaling protocol.LDP LSPsAlso known as generic LSPs, LDP LSPs are paths that are constructed by standard routingprotocols and the Label Distribution Protocol. LDP is an MPLS signaling protocol that distributesand assigns labels within an MPLS network.The standard routing protocols and LDP consider only the shortest path across the networkwhen building LSPs. They do not take into account any constraints such as QoS or LSPprotection.VPN supportMPLS Manager discovers the MPLS provider-provisioned VPNs that are identified in MPLS VPNimplementations.Figure 1-1. MPLS VPN implementationsVMware, Inc.11

VMware Smart Assurance MPLS Manager Discovery GuideThe fundamental principles of MPLS LSPs are based on traffic separation and segmentation,which means that by design, MPLS lends itself well to the concept of VPNs.MPLS L2VPNsCommonly called Martini VPNs, Layer 2 VPNs (L2VPNs) extend the customer’s Layer 2connectivity through an MPLS network by emulating different types of traditional data-link layerprotocols, including Ethernet, Frame Relay, ATM, and others.MPLS Manager discovers two types of L2VPN services:nVirtual private wire service (VPWS)nVirtual private LAN service (VPLS)VPWS is an L2 service that uses a pair of Martini Tunnels to emulate a point-to-point circuitacross an MPLS network. VPLS is an L2 service that uses a full mesh of Martini Tunnels toemulate a LAN across an MPLS network.In addition, MPLS Manager discovers the following implementations of the L2VPN services:nLDP-signaled VPWS and VPLSThe signaling protocol for LDP-signaled L2VPNs is Label Distribution Protocol.nBGP-signaled VPWS and VPLSThe signaling protocol for BGP-signaled L2VPNs is Multiprotocol Border Gateway Protocol,also known as BGPv4.MPLS Manager requires a Level 2 VPN feature license for the discovery of VPWS and VPLSL2 services. The VMware Smart Assurance System Administration Guide provides informationabout licensing.MPLS L3VPNsDefined by IETF RFC-2547bis and RFC-4364, Layer 3 VPNs (L3VPNs) use extensions to theexisting Internet routing protocol BGPv4 to interconnect remote customer sites through an MPLSnetwork. L3VPN is a virtual private routed network solution for IP data traffic only.Central to an L3VPN is the VPN routing and forwarding (VRF) table, which allows for separateand private VPN forwarding decisions to co-exist within a PE device. The VRF is the fundamentalmechanism that enables the partitioning of individual customers over the shared IP routedinfrastructure.MPLS Manager requires a Level 3 VPN feature license for the discovery of L3VPNs.LDP adjacency and RSVP session supportMPLS Manager discovers the adjacencies and sessions that are identified in LDP adjacencies andRSVP sessions.VMware, Inc.12

VMware Smart Assurance MPLS Manager Discovery GuideFigure 1-2. LDP adjacencies and RSVP sessionswhere:nNon-targeted LDP adjacencies are sessions between peer LDP speakers, on directlyconnected PE or P devices, that are used to construct LDP LSPs.nTargeted LDP adjacencies are sessions between peer LDP speakers, on PE devices, that areused to construct bidirectional LSP paths for LDP-signaled L2VPNs. The bidirectional LSPpaths are known as pseudowires.nRSVP sessions are sessions between peer RSVP-TE speakers, on PE or P devices, that areused to construct TE LSPs. RSVP sessions are also sessions between peer RSVP-TE speakers,on PE devices, that are used to construct subLSPs.Device supportVMware, Inc.13

VMware Smart Assurance MPLS Manager Discovery GuideMPLS Manager supports the discovery, monitoring, and analysis of MPLS networks in any of thefollowing vendor-specific environments:nCisconHuaweinJuniperThe VMware Smart Assurance MPLS Manager Certification Matrix identifies the Cisco, Huawei,and Juniper devices that have been tested for this release of MPLS Manager.SNMP and CLI discovery supportMPLS Manager uses both Simple Network Management Protocol (SNMP) and command lineinterface (CLI) to perform discovery on the supported devices in the managed MPLS network.MPLS Manager supports IPv4 SNMP; SNMPv1, v2c, and v3; and Telnet and Secure Shell (SSH) CLI.Discovery sources for supported devices shows the discovery sources for the supporteddevices.VMware, Inc.14

VMware Smart Assurance MPLS Manager Discovery GuideTable 1-1. Discovery sources for supported devicesDevice/platformMPLS objects 1MPLS L2VPN objects 1MPLS L3VPN objects 11 SNMP-discovered objects are monitored for status, but CLI-discovered objects are not.Cisco IOSMPLS-TE-MIB, MPLS-LSR-MIB,MPLS-LDP-MIB, and CLIMPLS Manager uses:nnnSNMP discovery todiscover TE tunnel and TELSP objects on Cisco IOSdevices.CLI discovery to discovernested link/node protectedTE tunnel objects on CiscoIOS devices.SNMP discovery todiscover LDP LSP objectson Cisco IOS devices.If SNMP discovery fails oris not supported by theCisco IOS device, MPLSManager uses CLIdiscovery to discover theLDP LSP objects.Cisco IOXnSNMP discovery todiscover non-targeted LDPadjacency objects on CiscoIOS devices.nCLI discovery to discoverRSVP session objects onCisco IOS devices.MPLS-TE-STD-MIB, MPLS-LSRSTD-MIB, and CLIMPLS Manager uses:nnSNMP and CLI discovery todiscover TE tunnel and TELSP objects on Cisco IOXdevices.SNMP discovery todiscover LDP LSP objectson Cisco IOX devices.If SNMP discovery fails oris not supported by theCisco IOX device, MPLSManager uses CLIdiscovery to discover theLDP LSP objects.VMware, LS-MIB,MPLSLDP-MIB, and CLIMPLS Manager uses SNMPdiscovery to discover L3VPNobjects on Cisco IOS devices.MPLS Manager uses:nSNMP discovery todiscover LDP VPWSobjects on Cisco IOSdevices.nCLI discovery to discoverLDP VPLS objects on CiscoIOS devices.nCLI discovery to discoverVLAN objects that areassociated with the CiscoIOS VPWS and VPLSobjects.nSNMP discovery todiscover targeted LDPadjacency objects that areassociated with the CiscoIOS VPWS and B,MPLSLDP-STD-MIB, and CLIMPLS Manager uses:nSNMP discovery todiscover LDP VPWS andVPLS objects on Cisco IOXdevices.nCLI discovery to discoverVLAN objects that areIf SNMP discovery fails or is notsupported by the Cisco IOSdevice, MPLS Manager uses CLIdiscovery to discover theL3VPN objects.MPLS-L3VPN-STD-MIBMPLS Manager uses SNMPdiscovery to discover L3VPNobjects on Cisco IOX devices.associated with the CiscoIOX VPWS and VPLSobjects.nSNMP discovery todiscover targeted LDPadjacency objects that areassociated with the CiscoIOX VPWS and VPLSobjects.15

VMware Smart Assurance MPLS Manager Discovery GuideTable 1-1. Discovery sources for supported devices (continued)Device/platformMPLS objects 1MPLS L2VPN objects 1MPLS L3VPN objects 1HuaweiCLIMPLS-LDP-STD-MIB and CLIMPLS-VPN-MIBMPLS Manager uses CLIdiscovery to discover LDP LSPobjects on Huawei devices.MPLS Manager uses:VMware, Inc.nCLI discovery to discoverVPWS objects on Huaweidevices.nCLI discovery to discoverVLAN objects that areassociated with the HuaweiVPWS objects.nSNMP discovery todiscover targeted LDPadjacency objects that areassociated with the HuaweiVPWS objects.MPLS Manager uses SNMPdiscovery to discover L3VPNobjects on Huawei devices.If SNMP discovery fails or is notsupported by the Huaweidevice, MPLS Manager uses CLIdiscovery to discover theL3VPN objects.16

VMware Smart Assurance MPLS Manager Discovery GuideTable 1-1. Discovery sources for supported devices (continued)Device/platformMPLS objects 1MPLS L2VPN objects 1MPLS L3VPN objects 1Juniper M/TJUNIPER-MPLS-MIB, JUNIPERMPLS-LDP-MIB, JUNIPERRSVP-MIB, and CLIJUNIPER-VPN-MIB, JUNIPER-JUNIPER-VPN-MIB and CLIMPLS Manager uses:nnSNMP and CLI discovery todiscover TE tunnel and TELSP objects on Juniper M/Tdevices.nSNMP discovery todiscover P2MP LSP andsubLSP objects on JuniperM/T devices.MPLS Manager uses SNMPMPLS Manager uses:discovery to discover L3VPNobjects on Juniper M/T devices.nSNMP discovery todiscover BGP VPWS andVPLS objects on JuniperM/T devices.CLI discovery to discoverLDP VPLS objects onJuniper M/T devices.nCLI discovery to discoverVLAN objects that areassociated with the JuniperM/T VPLS objects.nnCLI discovery to discoverLDP LSP objects onJuniper M/T devices.nSNMP discovery todiscover non-targeted LDPadjacency objects onJuniper M/T devices.SNMP discovery todiscover targeted LDPadjacency objects that areassociated with the JuniperM/T LDP VPLS objects.If SNMP discovery fails oris not supported by theJuniper M/T device, MPLSIf SNMP discovery fails oris not supported by theJuniper M/T device, MPLSManager uses CLIdiscovery to discover thenon-targeted LDPadjacency objects.Manager uses CLIdiscovery to discover thetargeted LDP adjacencyobjects.nJuniper ERXMPLS-LDP-MIB, and CLIIf SNMP discovery fails or is notsupported by the Juniper M/Tdevice, MPLS Manager uses CLIdiscovery to discover theL3VPN objects.MPLS Manager also uses CLIdiscovery to discover multicastgroups and their relationship toP2MP LSPs.SNMP discovery todiscover RSVP sessionobjects on Junipe

BGP support 21 Discovery overview 21 IP Availability Manager discovery 23 MPLS Topology Server discovery 24 Imports topology from IP Availability Manager 25 . Relationships between the L2VPN, MPLS, and transport models 94 6 Discovery of L3VPN Objects 96 L3VPN discovery ove

Related Documents:

slide series thatdescribe the Multiprotocol Label Switching (MPLS) concept . Layer-3 VPNs Layer-2 VPNs MPLS QoS MPLS TE MPLS OAM/MIBs End-to-end Services MPLS Network Services . §MPLS label forwarding and signaling mechanisms Network Infrastructure MPLS Signaling and Forwarding Layer-3 VPNs Layer-2 VPNs

VPN Customer Connectivity—MPLS/VPN Design Choices Summary 11. Advanced MPLS/VPN Topologies Intranet and Extranet Integration Central Services Topology MPLS/VPN Hub-and-spoke Topology Summary 12. Advanced MPLS/VPN Topics MPLS/VPN: Scaling the Solution Routing Convergence Within an MPLS-enabled VPN Network Advertisement of Routes Across the .

2.7 VMware vCenter Support Assistant 22 2.8 VMware Continuent 23 2.9 VMware Hyper-Converged Infrastructure Kits 23 2.10 VMware Site Recovery Manager 23 2.11 VMware NSX 24 2.12 VMware NSX Advanced Load Balancer 28 2.13 VMware SD-WAN by VeloCloud 29 2.14 VMware Edge Network Intelligence 30 2.15 VMware NSX Firewall 30

(optional) BGP objects. Note MPLS Manager discovers BGP objects only if the MPLS-BGP cross-domain correlation feature is enabled. The VMware Smart Assurance MPLS Manager Configuration Guide provides instructions for enabling this feature. n Correlates underlying physical-transport problems with MPL

The Public IP of the overlay is derived from the tunnel information exchanged with the VMware SD-WAN Gateway. Figure 4.2: A routed interface on an VMware SD-WAN Edge with the default WAN overlay setting applied . point for multiple MPLS provider networks e.g. MPLS A and MPLS B. In this scenario, all VMware SD-WAN Edges connected to MPLS A .

MPLS-based VPN services: L3 MPLS VPN and L2 MPLS VPN. MPLS L2VPN has two modes: Virtual Private LAN Service (VPLS) and Virtual Leased Line (VLL). VLL applies to point-to-point networking scenarios, while VPLS supports point-to-multipoint and multipoint-to-multipoint networking. From users' point of view, the whole MPLS network is

the VMware Hybrid Cloud Native VMware management tools extend on-prem services across VMware Hybrid Cloud vRealize adapters allow "first class citizen" status for VMware Cloud on AWS Leverage same in-house VMware tools and processes across VMware Hybrid Cloud Support the cloud agility strategy of the organisation without disruption

ACCOUNTING 0452/22 Paper 2 May/June 2019 1 hour 45 minutes Candidates answer on the Question Paper. No Additional Materials are required. READ THESE INSTRUCTIONS FIRST Write your Centre number, candidate number and name on all the work you hand in. Write in dark blue or black pen. You may use an HB pencil for any diagrams or graphs. Do not use staples, paper clips, glue or correction fluid. DO .