network field day 10 - juniper networks part 6: vmx overview, use-cases, and demo

Copyright © 2015 Juniper Networks, Inc. 1

vMX Overview, Use-cases & Demo

Ariful Huq (Sr Product Manager) @ arifulhuq Surya Nimmagadda (Distinguished Engineer) Paul Abbott (Solutions Architect)

#NFD10


MX Platform

MX 960 MX 480 vMX MX 240

N x 10Gbps

MX 2010 MX 2020

CONSISTENT CONTROL, FORWARDING AND MANAGEMENT PLANE

1 Tbps 2.5 Tbps

5 Tbps

16 Tbps

32 Tbps One Architecture MulAple ApplicaAons

MX 104

80 Gbps


vMX Market and Use-case

Branch Office

HQ Carrier Ethernet Switch

Cell Site Router

Mobile & Packet GWs

AggregaHon Router/ Metro

Core

DC/CO Edge Router Service Edge

Router

Core

Enterprise Edge AggregaAon/Metro Service Provider Edge/Core

CPE, Enterprise WAN Router Virtual PE, Virtual BNG/LNS

Virtual Route Reflector

Data Center/Cloud GW

vBNG, vPE

Data Center/Central Office

Leverage R&D effort and JUNOS feature velocity across all physical & virtualization initiatives

vMX applicaHons


vMX Product Overview

VCP VFP

Physical NICs Management traffic

Guest VM (Linux) Guest VM (FreeBSD)

Hypervisor: KVM, ESXi

Cores Memory

Bridge / vSwitch

Physical layer PCI P

ass

thro

ugh

SR-IO

V

Virt

IO

Virtual Control Plane (VCP)

•  JUNOS hosted in a VM. Offers all the capabilities available in JUNOS

•  Management remains the same as physical MX

•  SMP capable

Virtual Forwarding Plane (VFP)

•  Virtualized Trio software forwarding plane. Feature parity with physical MX. Utilizes Intel DPDK libraries

•  Multi-threaded SMP implementation allows for elasticity

•  SR-IOV capable for high throughput

•  Can be hosted in VM or bare-metal

Orchestration

•  vMX instance can be orchestrated through OpenStack Kilo HEAT templates

•  Package comes with scripts to launch vMX instance


vMX Software Forwarding Plane

WORKER

RX

HOST IF

RX WORKERWORKER TX

TX

Poll mode RXPre classificationFlow hashing Packet Processing powered

by TRIO Microcode

Burst Mode TXQoS scheduling

Microcode downloadControl packet handling


vMX Performance

CPU Socket 0 CPU Socket 1

Memory Memory

Memory Controller Memory Controller

PCI C

ontroller PCI C

ontr

olle

r

NIC

s NIC

s

Core Core Core Core

Core Core Core Core

Core Core Core Core

Core Core Core Core

Core Core Core Core

Core Core Core Core

256

2468

101214161820

Gbps

Packet Size512 1024 1518

Core

Core

Core

Core used by VFP

Core used by VCP

Core used by Hypervisor

Core Unused for VMX

Resource Requirement

CPU Intel Xeon IvyBridge 2.7GHz •  4 cores for VFP •  1 core for VCP •  1 for Hypervisor

Memory 12 GB •  4 GB for vCP •  8 GB for vFP

Host Ubuntu 14.04 LTS Linux 3.13.0-‐32-‐generic

NICs 2x10G NIC (82599)

With 4 cores for packet processing we can achieve 20G bi-directional performance @ 256 bytes on a single instance of vMX.


vMX Performance

CPU Socket 0 CPU Socket 1

Memory Memory

Memory Controller Memory Controller

PCI C

ontroller PCI C

ontr

olle

r

NIC

s N

ICs

Core Core Core Core

Core Core Core Core

Core Core Core Core

Core Core Core Core

Core Core Core Core

Core Core Core Core

256

481216202428323640

Gbps

Packet Size512 1024 1518

Core

Core

Core

Core used by VFP

Core used by VCP

Core used by Hypervisor

Core Unused for VMX

With 8 cores for packet processing we can achieve 40G bi-directional performance @ 256 bytes on a single instance of vMX. 2 instances of vMX can be hosted, one per socket, to achieve 80G @ 256 bytes


vMX Use-Case: Virtual PE

Central Office, Hub Site

L3 VPN/IPSec VPN

L2VPN/VPLS/L2Circuit

•  Scale-out deployment scenarios •  Low bandwidth, high control plane scale customers •  Dedicated PE per customer •  Small PE in a new market segment or geography with

ability to support secure transport

•  vMX is a virtual extension of a physical MX PE with all the capabilities of a carrier class PE router

•  vMX offers IPSec and IPSec VPN capability •  Orchestration and management capabilities inherent to

any virtualized application apply

vMX value proposition Metro Network

vMX National/Regional

Data Centers vMX

Provider MPLS Network

L2 switch L2 switch

CPE

CPE

CO Gateway CO Gateway

L3 PE L3 PE

CPE

Enterprise Enterprise

Enterprise

Use-case


vMX Use-Case: Data Center Gateway

•  Service Providers need a gateway router to connect the virtual networks to the physical network

•  Small hosting providers need a gateway route to connect to the internet

•  Gateway should be capable of supporting different DC overlay, DC Interconnect and L2 technologies in the DC such as GRE, VXLAN, VPLS and EVPN

•  VMX supports all the overlay, DCI and L2 technologies available on MX

•  Scale-out control plane to scale up VRF instances and number of VPN routes

vMX value proposition

Use-case

vMX

VTEP

VM VM VM

Virtualized Server

Non Virtualized Servers MPLS Cloud

VPN Cust A VPN Cust B

Internet

VXLAN GW (VTEP), L3VPN GW, Internet GW

ToR

ToR

Virtual Network A

Virtual Network B


vMX Use-Case: Enterprise WAN Router

•  Large Enterprises and Government institutions want to build their own overlay network over a Service Providers MPLS or Layer 2 network

•  Transport for overlay network can be using encapsulation technologies such as MPLSoGRE, VXLAN and IPSec for secure transport

•  vMX will offer IPSec VPNs using Group VPN technology for secure overlay transport

•  All existing routing functionality available on vMX makes it a robust Enterprise WAN router


Use-case

Provider MPLS network

Overlay: Group VPN, MPLSoGRE, VXLAN

vMX CPE

Enterprise

Enterprise

vMX CPE

vMX CPE

Enterprise


vMX Use-Case: Virtual Private Cloud Gateway

•  Virtual Private Cloud (VPC) customers need a gateway router in the cloud to

i.  Route between subnets in a VPC instance ii.  Route between VPC instances across

geographies iii.  Secure transport from a public or private network

without scaling restrictions imposed by CSP •  Cloud Service Providers don’t want to create specialized

product offerings to meet these needs

•  vMX as a VPC GW router can offer i.  Ability for VPC customers to terminate IPSec

tunnels with the scale & capacity they need ii.  Create overlay topologies using IPSec and MPLS

VPN technologies for Hybrid Cloud integration into the enterprise


Use-case

Provider MPLS Network

HQ with local Data Center

AWS Region

Internet

VPC instance

Amazon Direct Connect

vMX VPC GW

VPC instance

vMX VPC GW

AWS Region

Enterprise Enterprise HQ with local Data Center

PE

PE PE

CE CE


vMX License Structure •  Three applicaAon packages

•  BASE •  ADVANCE •  PREMIUM

•  Capacity based licensing •  Each applicaHon package offers capacity based SKUs

•  Per instance license

•  Payment opAons •  Licenses will have a perpetual and subscripHon opHon


vMX License Structure ApplicaAon package FuncAonality Use cases

BASE •  IP rouHng with 32K IP routes in FIB •  Basic L2 funcHonality: L2 Bridging and switching

•  No VPN capabiliHes: No L2VPN, VPLS, EVPN and L3VPN

•  Low end CPE or Layer3 Gateway

ADVANCE

•  IP FIB (Up to 5M routes) •  L2 capabiliHes includes L2VPN, VPLS, L2Circuit

•  VXLAN •  EVPN •  IP MulHcast

•  L2vPE •  Full IP vPE •  Virtual DC GW

PREMIUM •  Includes BASE & ADVANCE •  L3VPN for IP and MulHcast

•  L3VPN vPE •  Virtual Private Cloud GW

Note: Application packages exclude IPSec, BNG and VRR functionality.


vMX License Structure

•  Bandwidth based licenses for each applicaHon package for the following processing capacity limits: 100M, 250M, 500M, 1G, 5G, 10G, 40G. Note for 100M, 250M and 500M there is a combined SKU with all applicaHons included.

100M 250M 500M

1G BASE

1G ADV

1G PRM

5G BASE

5G ADV

5G PRM

10G BASE

10G ADV

10G PRM

40G BASE

40G ADV

40G PRM

BASE

ADVANCE

PREMIUM

•  ApplicaHon Hers are addiHve i.e ADV Her encompasses BASE funcHonality


Try out vMX •  vMX comes with 1Mbps of forwarding capability for 30 days. Anybody is welcome to download. Goto:

hfp://www.juniper.net/support/downloads/

network field day 10 - juniper networks part 6: vmx overview, use-cases, and demo

Technology