Extreme Extended Edge, or IEEE 802.1BR based switching
The Extreme Extended Edge solution (also known as Virtual Port Extender - VPEX) is a new technology that has been supported for the first time in the EXOS operating system since release 22.5. The solution itself is based on the IEEE 802.1BR standard (Bridge Port Extension), and as part of the EXOS 22.5 release, support for the ExtremeSwitching V400 hardware line has been added
“VPEX Bridge” is a virtual switch consisting of such components as the Controlling Bridge (CB) and the Bridge Port Extender (BPE). To ensure fault tolerance, it is possible to connect to two CBs within one virtual switchboard using MLAG technology. Directly the design of such a virtual switch resembles a classic chassis switch or stack of switches. And if in the logic of the "Control Plane" this is more or less true, then the work of "Data Plane" differs quite dramatically. After all, the purpose of 802.1br is to connect a remote port to a local MAC (Media Access Control) service, while isolating the traffic of remote ports.
For work as BPE the new hardware ExtremeSwitching V400 platform is presented. It includes port extenders for 24/48 10/100/1000 Base-T ports with or without a PoE sub-lug. In models for 24 ports there are two 10G ports, in 48 ports there are four 10G ports.
Topologies are supported with one or two CBs and up to four cascaded connected VRE chains. Cascaded ports can be combined into LAGs (up to 4 ports for V400-48t / p models). Endpoints can connect to different BPE slots using LAG.
Detection and operation of BPE is based on protocols such as:
If you use a fault-tolerant design with two CBs and MLAGs, when one CB is reloaded, the BPE will continue to send traffic through the remaining Controlling Bridge. If the only CB reloads, then BPE will administratively disable its “extended” ports.
For the convenience of configuring the topology with 2 SV, the ability to configure the MLAG ports of both peers from any of the SV has been added. The mode is called “mlag orchestration”, while the peers synchronize a part of the config related to the MLAG port settings. The configuration resembles the configuration of user virtual-router.
The Controlling Bridge functionality is available after installing the free EXOS module, which has the extension .xmod. The same module will contain the update images for BPE. Actually, when CB and BPE detect each other, CB checks the firmware version installed on the BPE and, if necessary, automatically updates it.
The above features of operation allow you to quickly and easily replace the BPE slot if necessary. Since the BPE slots do not store the config and are not tied to the system in any way, immediately after replacing the device and turning on the power, the BPE will be detected by the SV and the already existing config will be applied, and if the firmware will be updated.
This solution is well suited for networks with a predominant direction of North / South traffic, such as campus networks, enterprise networks in logistics, education, business centers, and others. And once again we will repeat that the advantages of networks built on the Extreme Extended Edge solution will be:
“VPEX Bridge” is a virtual switch consisting of such components as the Controlling Bridge (CB) and the Bridge Port Extender (BPE). To ensure fault tolerance, it is possible to connect to two CBs within one virtual switchboard using MLAG technology. Directly the design of such a virtual switch resembles a classic chassis switch or stack of switches. And if in the logic of the "Control Plane" this is more or less true, then the work of "Data Plane" differs quite dramatically. After all, the purpose of 802.1br is to connect a remote port to a local MAC (Media Access Control) service, while isolating the traffic of remote ports.
Controlling bridge
- One and only point of control
- All configuration occurs locally on CB
- VPEX support must be activated, a reboot is required to change the operation mode
- CB is always slot number 1
- In the current release, CB supports simultaneous connection up to 48 BPE
- CB mode is supported on certain hardware platforms (currently X670G2 and X690, other platforms will be added as they are released)
- EXOS licenses apply only to CB
- VPEX does not require additional licenses
- Responsible for data-plane processing and filtering traffic.
- Contains a virtual view of each “extended” port
Bridge port extender
- BPE devices are managed as chassis switch slots.
- BPE slots are numbered from 100 to 162
Slot-1 VPEX X690-48x-2q-4c.3 # show slot
Slots Type Configured State Ports Flags
-------------------------------------------------------------------------------
Slot-1 X690-48x-2q-4c X690-48x-2q-4c Operational 72 M
Slot-100 V400-48t-10GE4 V400-48t-10GE4 Operational 52 M
Slot-101 V400-48t-10GE4 V400-48t-10GE4 Operational 52 M
Slot-102 V400-48t-10GE4 V400-48t-10GE4 Operational 52 M
Slot-103 V400-48t-10GE4 V400-48t-10GE4 Operational 52 M
- No need for console or Out-of-Band IP connectivity to BPE
- All configuration, monitoring, troubleshooting, diagnostics is done through the CB interface.
Slot-1 VPEX X670G2-48x-4q.8 # config vlan v100 add port 100:1,100:3
*Slot-1 VPEX X670G2-48x-4q.9 # show port 100:1-3statisticsno-refresh
Port Link Tx Pkt Tx Byte Rx Pkt Rx Byte Rx Pkt Tx Pkt
State Count Count Count Count Mcast Mcast
====== ===== ========== =========== ========== =========== ======= ========
100:1 A 2126523437 >999999999900014383100:2 R 000000100:3 A 2182447598042126738453 >9999999999014383
====== ===== ========== =========== ========== =========== ======= ========
- BPEs do not perform local switching. As a result, all traffic is tunneling to CB and, if necessary, forwarding to the neighboring port of the same BPE slot, is returned. (BPE accepts the packet, adds the E-TAG header and sends it to the upstream port)
For work as BPE the new hardware ExtremeSwitching V400 platform is presented. It includes port extenders for 24/48 10/100/1000 Base-T ports with or without a PoE sub-lug. In models for 24 ports there are two 10G ports, in 48 ports there are four 10G ports.
Features of work
Topologies are supported with one or two CBs and up to four cascaded connected VRE chains. Cascaded ports can be combined into LAGs (up to 4 ports for V400-48t / p models). Endpoints can connect to different BPE slots using LAG.
Detection and operation of BPE is based on protocols such as:
- LLDP - initial detection and determination of the type and capabilities of the connected device
- ECP - Edge Control Protocol Transport for PE-CSP
- PE-CSP - “Port Extender Control and Status Protocol” configuring BPE control with Controlling Bridge
- LACP - LAG installation between "cascade" <-> "upstream" ports
If you use a fault-tolerant design with two CBs and MLAGs, when one CB is reloaded, the BPE will continue to send traffic through the remaining Controlling Bridge. If the only CB reloads, then BPE will administratively disable its “extended” ports.
For the convenience of configuring the topology with 2 SV, the ability to configure the MLAG ports of both peers from any of the SV has been added. The mode is called “mlag orchestration”, while the peers synchronize a part of the config related to the MLAG port settings. The configuration resembles the configuration of user virtual-router.
Slot-1 VPEX X670G2-48x-4q.11# start orchestration mlag "bottom"
(orchestration bottom) Slot-1 VPEX X670G2-48x-4q.12# exit
Slot-1 VPEX X670G2-48x-4q.13#The Controlling Bridge functionality is available after installing the free EXOS module, which has the extension .xmod. The same module will contain the update images for BPE. Actually, when CB and BPE detect each other, CB checks the firmware version installed on the BPE and, if necessary, automatically updates it.
The above features of operation allow you to quickly and easily replace the BPE slot if necessary. Since the BPE slots do not store the config and are not tied to the system in any way, immediately after replacing the device and turning on the power, the BPE will be detected by the SV and the already existing config will be applied, and if the firmware will be updated.
This solution is well suited for networks with a predominant direction of North / South traffic, such as campus networks, enterprise networks in logistics, education, business centers, and others. And once again we will repeat that the advantages of networks built on the Extreme Extended Edge solution will be:
- Reducing the number of layers of traditional network architecture in terms of configuration and management
- Easy to scale and deploy
- It is not necessary to have dedicated console or GDT Mgmt connections to BPE slots
- Reduced licensing (if necessary, apply only to CB)
- Single point of configuration, monitoring and troubleshooting
- Mapping to NMS as a single switch
- No need for additional training and staffing