cisco 4500 architecture

Chapter 1: Architecture

Richard Licon

Catalyst 4500EArchitecture

© 2009 Cisco Systems, Inc. All rights reserved.PRS8 2All specifications subject to change without notice

Agenda

Catalyst 4500E Chassis

Power Supplies

Supervisors

Line cards

High Availability and In Service Software Upgrade


Cisco Catalyst® 4500E Series

Most Widely Deployed

Modular Ethernet Switch

in the Industry

Over 530,000 chassis shipped

Over 70 million ports shipped

www.cisco.com/go/catalyst4500

Cisco Catalyst 4500 SeriesEnterprise Footprint

Leading Campus Access Switching Platform

Medium-scale Distribution/Core Platform for Branch, Small Campus


New E Series chassis designed to support higher bandwidth per slot line

cards

WS-C4503-E

3 slot chassis

With single

Supervisor

WS-C4506-E

6 slot chassis

With Single

supervisor

WS-C4507R-E

7 slot chassis

With Redundant

Supervisors

WS-C4510R-E

10 slot chassis with

Redundant supervisors

Catalyst 4500E Series Chassis

Backward

compatible with all

line cards and

supervisors

Maximum POE

Upto 750W per line

card.

24 Gbps/slot

capacity with Sup6-E

and Sup6L-E

Capable of

48 Gbps/Slot

Up to 384

Access FE / GE

Ports

Catalyst 4500E Series Chassis


Supervisor in slot 1

Line cards in slot 2 and 3

Redundant Power supplies

7 RU

24G/slot with Supervisor6-E and

Supervisor6L-E

6G/slot with all classic supervisors

and line cards

Supervisor in slot 1

Line cards in slot 2 to 6


10 RU


Supervisor6L-E


and line cards

WS-C4503E and WS-C4506-E


Supervisor in slots 3 and 4

Line cards in slot 1-2 and 4-7


11 RU


Supervisor6L-E


and line cards

Supervisor in slot 5-6

Line cards in slot 1-4 and 7-10


14 RU

24G/slot with Supervisor6-E for

slots 1-7, 6G/slot for 8-10

6G/slot with Supervisor V and

Supervisor V-10GE and classic

line cards

WS-C4507R-E and WS-C4510R-E


Agenda


Power Supplies

Supervisors

Line cards



Data Only

Data and Voice

AC or DC

AC or DC

-12 VDC

Data

-48 VDC

PoE

-12 VDC

Data

1000W AC – Data only power supply for 3, 6,

and 7 slot chassis

1400W AC – Data only power supply for 10 slot

chassis

1400W DC – Data only triple input power

supply for Service Providers

1300W AC – Low density PoE power supply for small

IPTel or Wireless

2800W AC – Mid-range PoE power supply

4200W AC – Mid-range PoE power supply with dual

inputs

1400W DC-P – Large PoE power supply able to power

384 class 3 phones

6000W AC – High end PoE power supply with dual

inputs

Flexible Power Options : AC and DC


The 4500 can utilize two power supplies to work in either combined or redundant

mode

Redundant Mode Combined Mode

In redundant mode, each power

supply operates at 50% capacity and

provides the same total power as a

single power supply – if one fails, the

backup reverts to providing 100%

power

In combined mode, each power

supply operates at 83% - if one fails,

then the running supply provides

100% of its power capacity

Power Supply 1Power Supply 2

50% 50%

Switch

Power Supply 1 Power Supply 2

83% 83%

Switch

Understanding Power Redundancy


Actual 4200W SupplyVirtual 4200W Supply

Subunit 1 and 2

4x 220V inputs = 5500W of N+1 redundant

power (280 Class 3 PDs)

4x 110V inputs = 2728W of N+1 redundant

power (119 Class 3 PDs)

4500(config)#power redundancy-mode combined max inputs 3

N+1 Redundancy with Dual Input PS


Agenda


Power Supplies

Supervisors

Line cards



Centralized memory switch

All forwarding, queuing, security is implemented on the Supervisor

The individual line cards are considered to be ‘transparent’

No local switching on line cards

Each classic line card (WS-X41xx-WS-X45xx ) has 6 Gbps (full duplex) connections to the central forwarding engine

Each E-Series line card (WS-X46xx ) has 24 Gbps (full duplex) connection to the central forwarding engine

Centralized Architecture

Line

Card

Line

Card

Line

Card

Line

Card

Line

Card

CPU / SDRAM

Forwarding Engine

FFE /VFE

Shared Memory Fabric

PPE / IPP

Catalyst 4500E Architecture

Cisco Confidential


Supervisor II-Plus Supervisor II-Plus-TS Supervisor II-Plus-10GE

Bandwidth: 64 Gbps

Throughput: 48 Mpps

Uplinks: 2 x GbE

CPU: 266 MHz

DRAM: 256 MB

Number of Routes: 32K

QoS / Security Entries: 32K

Input / Output Policers: 512/512

Supported in 3,6,7 Slot

Chassis

Bandwidth: 64 Gbps

Throughput: 48 Mpps

Uplinks: 8 x GbE (SFP) &

12 x 10/100/1000

PoE

CPU: 266 MHz

DRAM: 256 MB

Number of Routes: 32K


Input / Output Policers:

512/512

Supported in 3 Slot Chassis

Only

Bandwidth: 108 Gbps

Throughput: 81 Mpps

Uplinks: 4 x GbE & 2 x 10GbE

CPU: 667 MHz

DRAM: 256 MB / 512 MB

Number of Routes: 32K FIB

Entries


Input / Output Policers: 512/512

Supported in 3,6,7 Slot

Chassis

Basic L2/L3/L4 Services

RIP, Static Routes, EIGRP Stub

Classic Line Cards Only

Supported in Both ―E‖ and Non ―E-Series‖ Chassis

Basic Layer 3 SupervisorsClassic


Bandwidth: 64 Gbps

Throughput: 48 Mpps

Uplinks: 2 x GbE

CPU: 333 MHz

DRAM: 512 MB

Number of Routes: 128K FIB

Entries


Input / Output Policers: 1K/1K

Optional Netflow Daughter Card

Supported in 3,6,7 Slot Chassis

Bandwidth: 96 Gbps

Throughput: 72 Mpps

Uplinks: 2 x GbE

CPU: 400 MHz

DRAM: 512 MB

Number of Routes: 128K FIB Entries



Optional Netflow Daughter Card

Supported in 3,6,7, and 10 Slot

Chassis

Bandwidth: 136 Gbps

Throughput: 102 Mpps

Uplinks: 4 x GbE & 2 x 10GbE

CPU: 800 MHz

DRAM: 512 MB

Number of Routes: 128K FIB Entries



Integrated Netflow ASIC

Supported in 3,6,7, and 10 Slot

Chassis

Full L2/L3/L4 Services

BGP, OSPF, IS-IS, EIGRP, VRF-Lite, PBR, NSF, Netflow

Classic Line Cards Only

Supported in Both ―E‖ and Non ―E-Series‖ Chassis

Supervisor V-10GE Supervisor IV Supervisor V

Enhanced Layer 3 SupervisorsClassic


Bandwidth: 320 Gbps

Throughput: 250 Mpps (IPv4)

125 Mpps (IPv6)

Uplinks: 2 x 10GbE or 4 x GbE SFPs via TwinGig

Module

CPU: 1.33 GHz

DRAM: 512 MB (Default) / 1 GB (Upgradeable)

Number of Routes: 256K FIB Entries (1 GB

SDRAM)

64K Ingress Security / QoS Entries

64K Egress Security / QoS Entries

Input / Output Policers: 16K / 16K

Supported in 3,6,7 and 10 Slot Chassis – E-

Series & Classic

E-Series & Classic line card Support

New image type: cat4500e-entservices-mz

Supports IP Base and Enterprise Services

image

WS-X45-Sup6-E

Dual Purpose Uplink Ports

Two 10 GbE or Four 1 GbE

with Twin Gig Module

Full L2/L3/L4 Services

BGP, OSPF, PBR, EIGRP, VRF-Lite, NSF

IPv6 in Hardware

24G/slot with E-Series Line cards

Supervisor6-EEnhanced L3 Supervisor


Prior to Cisco IOS Release 12.2(44)SG- Sup6-E allowed one to enable either dual

wire speed 10GbE ports or four Twin-Gigabit converter based GbE SFP uplink ports

when operating in redundancy mode

Active

Supervisor

Standby

Supervisor

Only Left-most

Ports EnabledPorts Inactive

Redundant Supervisor6-E Uplinks


Cisco IOS 12.2(46)SG- Shared-Backplane Mode* enables all front-panel ports on

both Active and Standby Supervisor Engines. Capability supported on all Catalyst 4500

and 4500E Series Chassis with Supervisor 6-E.

Standby

Supervisor

Active

Supervisor

All Ports Are Active

4500(config)#hw-module uplink mode shared-backplane

A 'redundancy reload shelf' or power-cycle of chassis is required to

apply the new configuration

4500# redundancy reload shelf

*Shared-Backplane Mode only applies to sup6-e

Redundant Supervisor6-E Uplinks


280 Gbps Switch Fabric Capacity

Centralized Forwarding - 24Gbps per Full Slot

IPv4 (225Mpps) - IPv6 (112Mpps) in HW

512 MB or 1 GB SDRAM

57K FIB entries, 32K security/QoS

2K VLAN/SVI Support

Basic Layer 3 E-Series Supervisor

IP Base and LAN Base IOS images - 12.2(52)XO

Supports full redundancy with SSO/NSF/ISSU (7R chassis)

RIP, Static Routes, EIGRP-Stub (IP Base image only)

Chassis Support

3, 6, and 7 slot - Classic and E-Series Compatible

2 active 10GE ports or 4 active SFPs in redundant mode

WS-X45-SUP6L-E

Dual Purpose

Non-Blocking

Uplink Ports

Two 10 GbE or

Four 1 GbE SFPs

with Twin Gig

ModuleLANBase Image Release Notes:

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/release/note/OL_17886.html

Supervisor6L-EBasic L3 Supervisor




IOS Features Comparison—LAN Base vs. IP Base

Features LAN Base Image IP Base Image

10G Uplink Use Yes - $4k License Yes

SPAN (# of Sessions)—Port Mirroring 2 sessions 8 sessions

Energywise No Yes

Location Services No Yes

SmartCallHome No Yes

HSRP and VRRP No Yes

GLBP No Yes

L2PT and Q-in-Q No Yes

Auto QoS No Yes

EIGRP Stub No Yes

PIM SM/DM No Yes

Flex Link No Yes

PVST+ & RPVST+ No Yes

Auto-Voice VLAN (part of Auto QoS) No Yes

EEM No Yes

Smartports (Role-Based MACRO) No Yes

TDR No Yes

Multihop SXP (CTS) No Yes


CPUPacket Memory

CPU

FPGA

STP MemoryICC

TCAM

FLC

TCAM

FWD Memory

1

FWD Memory

2

OCC

TCAM

DBL Mem RETQueue Memory

Intelligent Packet

Processor (IPP)

ASIC

Very Fast

Forwarding Engine (VFE)

ASIC

PLD

PTD

Fabric Ports

Ingress

Security / QoS

ACLs

Egress

Security / QoS

ACLs

Forwarding

Tables

Congestion Avoidance

Supervisor6-E / Supervisor6L-E Block Diagram

Cisco Confidential


CPUPacket Memory

CPU

FPGA

STP MemoryICC

TCAM

FLC

TCAM

FWD Memory

1

FWD Memory

2

OCC

TCAM

DBL Mem RETQueue Memory

IPP

(Intelligent Packet Processor)

ASIC

VFE

(Very Fast Forwarding Engine)

ASIC

PLD

PTD

2

Supervisor6-E

Supervisor6L-E

Line Card

FabricPHY

FabricPHY

5

3

4 6

7

8

10

9

1

Supervisor6-E and Supervisor6L-E Unicast Packet Walk

Cisco Confidential


1. Packet enters the PHY in the line module and travels across the backplane before

reaching the Supervisor

2. Packet enters the Supervisor; IPP performs parsing of VLAN tag / header and stores the

packet into Packet Memory

3. The stripped header is used to construct a Packet Lookup Descriptor (PLD) and

forwarded to the VFE ASIC

4. PLD goes through L2 lookup. Spanning Tree state is checked. Packet MAC source and

MAC destination coupled with the receive VLAN ID are looked up in the L2 Hash Table.

L2 Lookup also determines whether the packet is destined for Router functionality

5. Input Classification is used to store input ACL and QoS rules in TCAM4

6. Packet is sent to the Forwarding Lookup CAM for L3 lookup. FLC stores L3

forwarding and unicast RPF check rules. Contains IPv4 and IPv6 FIB entries

7. Output Classification stores output ACL and QoS rules in TCAM4

8. The Packet Transmit Descriptor (PTD) is sent to the Queue Memory

9. PTD is sent back to the IPP

10. IPP transmits the packet across the backplane to the correct egress interface

Supervisor6-E and Supervisor6L-E Unicast Packet Walk

Cisco Confidential


Packet Memory

Forwarding Engine

Packet Lookup

Descriptor (PLD)

Packet Transmit

Descriptor(PTD)

Packet ProcessorModules

1 2 3 4

56

Replication Table

Layer2 module

Layer3 module

Output Services

Input Services

Replication Module

Replication Queue

Supervisor6-E and Supervisor6L-E Multicast Packet Walk

Supervisor6-E

Supervisor6L-ELine Card

Cisco Confidential


Packet Memory

Forwarding Engine

Host A—VLAN 1

Multicast Source

Packet ProcessorModules

Replication Table

Replication Queue

7

8

Replication Module

Layer2 module

Layer3 module

Output Services

Input Services

9

Packet Lookup

Descriptor (PLD)

Packet Transmit

Descriptor(PTD)


Supervisor6-E

Supervisor6L-ELine Card

Cisco Confidential


1. Packet enters the PHY in the line module and travels across the backplane before

reaching the Supervisor

2. Packet enters the Supervisor; IPP performs parsing of VLAN tag / header and stores the

packet into Packet Memory

3. The stripped header is used to construct a Packet Lookup Descriptor (PLD) and

forwarded to the VFE ASIC . L2 lookup is performed . If the packet is a multicast packet ,

it is marked to be placed in Replication Queue.

4. PLD goes through L3 lookup. The multicast group is looked up and on a hit , RET index (

Index in the replication table ) and RPF vlan is determined.

5. The PLD are enqued into MRQ ( Multicast Replication queue ) and the dequeuing

process of MRQ created one packet per output vlan.

6. The multicast replication module ( MRM ) gets the replication information for the packet

descriptor in the MRQ from RET table ( replication table ) and replicates the packets

and sends it to the PPE with the PTD.

7. Replicated packets are recirculated through the pipeline for ACL and QOS lookup for OIL

8. Same as 7 for any additional packets

9. Packet is transmitted to the output port


Cisco Confidential


IPX

Appletalk

ARP

Routing protocol packets

L2 Control PDUs

Tunneling

MTU Failure

Adjacency Same interface

ACL logging

IGMP etc

Software Switched Packets in Cat4500

Linecard Linecard

Ingress Control Plane

Forwarding ASICs

Switch CPU

Data traffic is

switched by

Forwarding

ASICs

Control pkts,

and the pkts

destined to

CPU

Cisco Confidential


Input CAM

(32k entries)

Output CAM

(32k entries)

4500# show platform hardware acl statistics utilization brief

Entries/Total(%) Masks/Total(%)

----------------- ---------------

Input Acl(PortAndVlan) 0 / 8112 ( 0) 0 / 8112 ( 0)

Input Acl(PortOrVlan) 0 / 8112 ( 0) 0 / 8112 ( 0)

Input Qos(PortAndVlan) 0 / 8128 ( 0) 0 / 8128 ( 0)

Input Qos(PortOrVlan) 0 / 8128 ( 0) 0 / 8128 ( 0)

Output Acl(PortAndVlan) 0 / 8112 ( 0) 0 / 8112 ( 0)

Output Acl(PortOrVlan) 0 / 8112 ( 0) 0 / 8112 ( 0)

Output Qos(PortAndVlan) 0 / 8128 ( 0) 0 / 8128 ( 0)

Output Qos(PortOrVlan) 1 / 8128 ( 0) 1 / 8128 ( 0)

L4Ops: used 2 out of 128

TCAM Allocation – Classic Supervisors


Input QoS CAM

(16k entries)

Input ACL CAM

(16k entries)Output ACL CAM

(16k entries)

Output QoS CAM

(16k entries)



----------------- ---------------












Output QoS CAM

(16k entries)

Output Acl (PortAndVlan)

(8k entries)

Output Acl (PortorVlan)

(8k entries)

Output QoS (PortAndVlan)

(8k entries)

Output QoS (PortOrVlan)

(8k entries)



----------------- ---------------










Input QoS CAM

(16k entries)

Input Acl (PortAndVlan)

(8k entries)

Input QoS (PortAndVlan)

(8k entries)

Input Acl (PortorVlan)

(8k entries)

Input QoS (PortOrVlan)

(8k entries)



Number and type of traffic flow patterns increasing at the same time as the need for increased policy control

Supervisor 6E utilizes TCAM4 (fourth generation HW ASICs)

Provides for dynamic resizing

More efficient use of labels and masks provides for greatly increased optimization of scalability requirements

Provides for more granular QoS and security policies

Security

QoS

Security

QoS

Input Classification CAM—64K

Output Classification CAM—64K

Increasing TCAM Flexibility with SUP6-E




CAM Utilization Statistics

--------------------------

Used Free Total

--------------------------------

Input Security (160) 31 (1 %) 2017 (99 %) 2048

Input Security (320) 52 (2 %) 1996 (98 %) 2048

Input Unallocated (160) 0 (0 %) 61440 (100%) 61440

Output Security (160) 8 (0 %) 2040 (100%) 2048

Output Security (320) 8 (0 %) 2040 (100%) 2048

Output Unallocated (160) 0 (0 %) 61440 (100%) 61440


Optimized Space Allocation for IPv4 and IPv6 Configurations!

Hardware Support for IPv6

Dual Forwarding CAMs

provide 64 blocks to

store IPv4 and IPv6 Unicast

Multicast Routes -

256,000 IPv4 Routes

128,000 IPv6 Routes



Dedicated hardware capacity for forwarding

Dedicated hardware capacity for features

Ample headroom for future requirements

Line rate performance for security and QoS

256,000 Forwarding Entries

128,000 QoS/Security Entries

Catalyst 4500 Supervisor 6-E

Catalyst 4500E Scalable Services


Agenda


Power Supplies

Supervisors

Line cards



Functionally Transparent

Supported in E-Series Chassis

Supported with Supervisor6-E and Supervisor6L-E

24 Port SFP Pluggables:

GLC-BX-D, GLC-BX-U,

GLC-SX-MM, GLC-ZX-SM,

GLC-T, CWDM, and DWDM

Cisco IOS Release 12.2(44)SG

L2-L4 Jumbo Frame Support

Line Rate – Non-Blocking

WS-X4648-RJ45V-E10/100/1000 802.3af PoE

48-port (RJ-45) Module

WS-X4648-RJ45V+E10/100/1000 802.3af Premium PoE

48-port (RJ-45) Module

2:1 Oversubscribed

Cisco Release 12.2(40)SG

Capable of 20W Per Port

Premium Module -

Capable of 30W Per Port


(up to 9216 bytes)

IEEE 802.3af

Cisco Prestandard

802.3x flow control

Eight 6-port groups -

3 Gbps per port group (2:1)

WS-X4606-X2-E6-port 10 Gigabit Ethernet

X2 Module

WS-X4624-SFP-EGigabit Ethernet Fiber

24-port Module (SFP)

Up to 6 Ports 10GbE X2 or

12 Ports 1GbE SFP via

TwinGig Converter Module

TwinGig Modules used in

groups of three” ports

1-3 or ports 4-6

Cisco IOS 12.2(40)SG

IEEE 802.3


6 Ports 10GbE (2.5:1)

ACCESS DISTRIBUTIONE-Series Line cards


24G per Slot (2:1 Oversubscribed) – (4) XGStubs

Capable of per Port Current Monitoring

L2/L3 Jumbo Frames on All Ports

3G

bp

s

XGStub

ASIC

Octal Phy

XGStub

ASIC

Octal Phy Octal Phy

XGStub

ASIC

Octal Phy

XGStub

ASIC

Octal Phy Octal Phy

Front Panel Ports 1 - 48

24 Gbps Slot Capacity

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

31 2 4 5 6 97 8 10 11 12

Fabric Ports

48 Port E-Series Copper GE Line Card

Cisco Confidential


3G

bp

s

3G

bp

s

3G

bp

s

XGStub

ASIC

Phy Phy Phy

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

31 2 4 5 6 97 8 10 11 12

24G per Slot (Non oversubscribed ) – (2) XGStubs


Front Panel Ports 1 - 24

24 Gbps Slot CapacityFabric Ports

XGStub

ASIC

24 Port E-Series FiberGE Line Card

Cisco Confidential


3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

3G

bp

s

24G per slot (2.5 :1 oversubscribed ) – (2) XGStubs


Front Panel Ports Ten 1 – 6 or Gig 7-18

24 Gbps Slot CapacityFabric Ports

10G 10G 10G 10G 10G 10G

XGStub

ASIC

XGStub

ASIC

6 port 10GE Fiber Line Card

Cisco Confidential


4500# show hw-module module 3 port-group

Module Port-group Active Inactive

----------------------------------------------

3 1 Gi3/7-12 Te3/1-3

3 2 Te3/4-6 Gi3/13-18

1 2 3 4 5 6

109 1211 1615 1817141387

Default Changed

Using 10GE pors as 1GE ports


Supports POE up to 30W

6G/ Slot

Works with classic supervisors as well as Supervisor6-E and Supervisor6L-E

Supports POE monitoring and policing

WS-X4548-GB-RJ45V+


PoE MonitoringPoE Monitoring lets you display the true power consumption of inline powered devices connected to the switch

PoE PolicingPoE Policing protects a switch from faulty inline powered devices that may draw more current than they were designed for

These functionalities are supported on the following linecards:

WS-X4548-RJ45V+WS-X4648-RJ45V-EWS-X4648-RJ45V+E

Power Monitoring and Power Policing


C4500-E# show module

Chassis Type : WS-C4510R-E

Power consumed by backplane : 40 Watts

Mod Ports Card Type Model Serial No.---+-----+--------------------------------------+------------------+-----------3 48 10/100/1000BaseT POE E Series WS-X4648-RJ45V-E JAE1129QL9N 4 48 10/100/1000BaseT Premium POE E Series WS-X4648-RJ45V+E JAE1129QSAV 5 6 Sup 6-E 10GE (X2), 1000BaseX (SFP) WS-X45-SUP6-E JAB112200CX 6 6 Sup 6-E 10GE (X2), 1000BaseX (SFP) WS-X45-SUP6-E JAB1122009C

<SNIP>C4500-E# show power inline | include on

Gi3/2 auto on 6.8 6.3 IP Phone 7960 n/a Gi3/11 auto on 13.9 12.9 IP Phone 7961 3 Gi3/22 auto on 6.8 6.3 IP Phone 7960 n/a Gi3/23 auto on 6.8 6.3 IP Phone 7960 n/a Gi3/29 auto on 13.9 12.9 IP Phone 7961 3 Gi3/34 auto on 11.0 10.3 IP Phone 7970 3 Gi3/47 auto on 11.0 10.3 IP Phone 7970 3 Gi4/4 auto on 6.8 6.3 IP Phone 7960 n/a Gi4/39 auto on 16.6 15.4 Ieee PD 3 Gi4/40 auto on 16.6 15.4 Ieee PD 3 Gi4/41 auto on 16.6 15.4 Ieee PD 3 Gi4/42 auto on 16.6 15.4 Ieee PD 3 Gi4/48 auto on 6.8 6.3 IP Phone 7960 n/a Totals:13 on 171.4 159.4

POE Monitoring


PoE Policing threshold based on what power is allocated to the device via

Configured consumption

IEEE Class

CDP Negotiation

When device draws more power than allocated, power to device is removed

User can configure to either log a message and restart device, or put port in errdisable state.

POE Policing


PoE Policing turned off by default

Default PoE Policing action is to errdisable the port

Turn on default PoE Policing by entering the following:

C4500-E(config)# int gigabitethernet 2/1

C4500-E(config-if)# power inline police

C4500-E# show power inline police g2/1

Available:800(w) Used:32(w) Remaining:768(w)

Interface Admin Oper Admin Oper Cutoff Oper

State State Police Police Power Power

--------- ------ ---------- ---------- ---------- ------ -----

Gi2/1 auto on errdisable ok 17.2 16.7

POE Policing


24 Port – 4:1 Oversubscribed

Six 4-port groups, providing 1 Gbps

Per Port-Group

Cisco IOS 12.2(20)EW


Six 8-port groups, providing 1 Gbps

Per Port-Group


IEEE 802.3x flow control

IEEE 802.3af, Cisco PreStandard

PoE

Designed to power IP Phones,

wireless Base Stations, Video

Cameras, and other IEEE-

compliant PDs


Supported in All Chassis / Supervisors

6 Gbps Per Slot Capacity

WS-X4524-GB-RJ45V10/100/1000 PoE IEEE 802.3af

24 Ports (RJ-45) Module

WS-X4548-GB-RJ45V10/100/1000 PoE IEEE

802.3af

48 Ports (RJ-45) Module

WS-X4506-GB-T10/100/1000 PoE IEEE 802.3af

6 Ports (RJ-45) and 1000BASE-X (SFP)

Any Combination of 6 Ports active at one

time

Provides Full Line-Rate (Non-Blocking)

Cisco IOS 12.2(20)EWA


( up to 9216 bytes)

Designed to power IP Phones, Wireless

Base Stations, Video Cameras, and other

IEEE-compliant PDs

Classic Line Cards – GE Copper POE

ACCESS DISTRIBUTION


24 Port – 4:1

Oversubscribed

Six 4-port groups, providing

1 Gbps Per Port-Group

48 Port – 8:1

Oversubscribed

Six 8-port groups, providing

1 Gbps Per Port-Group

Cisco IOS 12.1(8a)EW


Designed for gigabit-to-the-

desktop applications


Supported in All Chassis / Supervisors

6 Gbps Per Slot Capacity

WS-X4424-GB-RJ4510/100/1000 Module

24 Ports (RJ-45)

WS-X4448-GB-RJ4510/100/1000 Module

48 Ports (RJ-45)

WS-X4548-GB-RJ4510/100/1000 Module

48 Ports (RJ-45)


Six 8-port groups, providing 1 Gbps Per Port-

Group



More Power Efficient & More Cost Effective

than WS-X4448-GB-RJ45

Designed for gigabit-to-the-desktop applications

Classic Line Cards – GE Copper


Agenda


Power Supplies

Supervisors

Line cards



Catalyst 4500 Hardware ResiliencyPhysical Redundancy

Hot swap capability (Online Insertion and Removal—OIR)

Redundant supervisors (1:1)NSF/SSO switchover results in sub-second recovery

Redundant supervisors are supported in Catalyst 4507R / 4507R-E, Catalyst 4510R / 4510R-E

Redundant fans (1:N)Secondary fans provide sufficient cooling to keep the system running at full capacity

Redundant power supplies (1+1)Secondary power supply kicks in instantly to provide full uninterrupted power to the system

Separation of Data and Control plane


SSO – Stateful Switchover

Supported in Cisco IOS release 12.2(46)SG with Supervisor6-E and Cisco IOS release

SSO is a default redundancy mode if the software supports it

Physical links and line cards stay up on switchover

Traffic Interruption on Catalyst 4500

typically sub-second ( <150 msec) for Classic

typically 10-30ms with E-Series Sups

SSO allows redundant supervisors to run a stateful IOS applications to

exchange state in order to minimize the outage timer in an event of

supervisor switchover


Redundancy Configuration Check – SSOCatalyst 4500

4510R-E-1#show moduleChassis Type : WS-C4510R-E

Power consumed by backplane : 40 Watts

Mod Ports Card Type Model Serial No.

---+-----+--------------------------------------+------------------+-----------

1 18 10GE (X2), 1000BaseX (SFP) WS-X4606-X2-E JAB1122023L

2 48 10/100/1000BaseT POE E Series WS-X4648-RJ45V-E JAB1122021V

3 48 10/100/1000BaseT Premium POE E Series WS-X4648-RJ45V+E JAE1129QM6P

5 6 Sup 6-E 10GE (X2), 1000BaseX (SFP) WS-X45-SUP6-E JAB112500EF

6 6 Sup 6-E 10GE (X2), 1000BaseX (SFP) WS-X45-SUP6-E JAB112500EL

9 24 10/100/1000BaseT (RJ45) WS-X4424-GB-RJ45 JAE10265HWV

M MAC addresses Hw Fw Sw Status

--+--------------------------------+---+------------+----------------+---------

1 001b.54fc.339d to 001b.54fc.33ae 0.3 Ok

2 001b.54fc.4996 to 001b.54fc.49c5 0.3 Ok

3 001c.58f8.1250 to 001c.58f8.127f 0.3 Ok

5 001b.2a68.0080 to 001b.2a68.0085 0.3 12.2(33r)SG( 12.2(44)SG Ok

6 001b.2a68.0086 to 001b.2a68.008b 0.3 12.2(33r)SG( 12.2(44)SG Ok

9 0016.c73d.7860 to 0016.c73d.7877 1.8 Ok

Mod Redundancy role Operating mode Redundancy status

----+-------------------+-------------------+----------------------------------

5 Active Supervisor SSO Active

6 Standby Supervisor SSO Standby hot


Non-Exhaustive list of SSO-Aware Features

802.3 802.1p VTP HSRP

802.3u 802.1q Dynamic ARP Inspection MST/ PVST+

802.3x 802.1X DHCP Snooping Rapid-PVST

802.3ab 802.1D IP Source Guard Spanning Tree Toolkit

802.3z 802.3af IGMP Snooping v1 /v2/v3 Voice VLAN

802.3ad PAgP DTP (802.1q and ISL) Port Security

Unicast MAC

Filtering

ACL (VACLs,

PACLs, RACLs)

Multicast/Broadcast Storm

Control

QoS

SSO Aware Features

SSO supports the stateful switchover of all L2 features . The state of the

features are preserved between active and standby Supervisor Engines


SSO-Aware Features

4510R-E-1#show redundancy clientsclientID = 0 clientSeq = 0 RF_INTERNAL_MSG

clientID = 29 clientSeq = 60 Redundancy Mode RF

clientID = 139 clientSeq = 62 IfIndex

clientID = 3300 clientSeq = 63 Persistent Variable

clientID = 25 clientSeq = 69 CHKPT RF

clientID = 77 clientSeq = 74 Event Manager

clientID = 22 clientSeq = 94 Network RF Client

clientID = 71 clientSeq = 102 XDR RRP RF Client

clientID = 24 clientSeq = 103 CEF RRP RF Client

clientID = 75 clientSeq = 116 Tableid HA

clientID = 5 clientSeq = 120 Config Sync RF clien

clientID = 501 clientSeq = 126 LAN-Switch VTP VLAN

clientID = 210 clientSeq = 127 802.1x authenticator

clientID = 502 clientSeq = 128 LAN-Switch Port Mana

clientID = 20 clientSeq = 153 IPROUTING NSF RF cli

clientID = 88 clientSeq = 157 HSRP

<snip>

4510R-E-1#show redundancy states | beg RedundancyRedundancy Mode (Operational) = Stateful Switchover

Redundancy Mode (Configured) = Stateful Switchover

Redundancy State = Stateful Switchover

Maintenance Mode = Disabled

Manual Swact = enabled

Communications = Up

client count = 46

<snip>


NSF – Non Stop Forwarding

No Route Flaps During Recovery

Following SSO recovery and activation of standby supervisor , forwarding engines continue to route the traffic based hardware FIB table

Supervisor reestablishes adjacency indicating this is NSF restart

Peer updates the newly active supervisor routing processes with its routing information

Newly active supervisor sends routing updates to the peer

RIB attaches to FIB and forwarding engine TCAMs are updated with the new FIB entries


NSF – Non Stop Forwarding

No Route Flaps During Recovery

NSF Awareness – If routing peers detect that an NSF router can still forward packets when a switchover occurs , this capability is referred to as NSF Awareness

The NSF Aware switch helps to send the routing information to NSF peer router

NSF Capable – NSF works with SSO to minimize the amount of time that an L3network is unavailable following a supervisor switchover by continuing to forward IP packets

The routing protocols recover routing information from peers and rebuild the CEFtables


4510R-E-1(config)#router eigrp 100

4510R-E-1(config-router)#nsf

4510R-E-1(config-router)#timers nsf ?

converge EIGRP time limit for convergence after switchover

route-hold EIGRP hold time for routes learned from nsf peer

signal EIGRP time limit for signaling NSF restart

4510R-E-1(config)#router ospf 100

4510R-E-1(config-router)#nsf

4510R-E-1(config-router)#nsf ?

cisco Cisco Non-stop forwarding

ietf IETF graceful restart

4510R-E-1(config-router)#nsf cisco ?

enforce Cancel NSF restart when non-NSF-aware neighbors detected

helper helper support

4510R-E-1(config-router)#nsf ietf ?

helper helper support

restart-interval Graceful restart interval

4510R-E-1(config-router)#bgp graceful-restart ?

restart-time Set the max time needed to restart and come back up

stalepath-time Set the max time to hold onto restarting peer's stale paths

Enabling NSF


12.2(46)SG

12.2(50)SG

Targets Planned Downtime

Due to Software Upgrades

Catalyst4500E In Service Software Upgrade

Active

Standby


12.2(46)SG

12.2(46)SG

12.2(46)SG

12.2(50)SG

12.2(46)SG

12.2(50)SG

12.2(46)SG

12.2(50)SG

12.2(50)SG

12.2(50)SG

Initial State Final State

RunVersion AcceptVersion CommitVersion

Catalyst 4500E – ISSU Stages

cisco 4500 architecture

Documents