Data Center Interconnect using MPLS/VPLS

We are deploying a backup data center and need to extend couple of Vlans over the backup data center.These two DC's which are interconnected by a fibre link which we manage and terminates on the ODC2MAN and ODCXMAN.We run  MPLS on these devices ODC2MAN and ODCXMAN(Cisco 6880) as PE routers. I configured  OSPF between these devices and advertised their loopbacks.
I need configuration assistance on my PE (odcxman and odc2man) to run the VFI and the VPLS instances.The vlans on the ODCXAGG need to extend to the ODC2AGG. 
 Also, I am looking for the  configuration assistance such that each core devices should have 3 eigrp neighbors. 
For example:
ODC2COR1 should have Eigrp neighbors with ODCXCOR1, ODCXCOR2 and ODC2COR2 and my  VPLS Cloud should be emulated as a transparent bridge to my core devices such that it appears that ODC2COR1 is directly connected to ODCXCOR1 and ODCXCOR2 and have cdp neighbor relation. I have attached the diagram.Please let me know your inputs.

Hello.
If you are running Active/Backup DC scenario, I would suggest to make network design and configuration exactly the same. This includes platforms, interconnectivity types and etc.
Do you know what is the latency on the fiber between these two DCs?
Another question: why do you run 6880 in VSS, do you really need this?
Q about the diagram: are you going to utilize 4 fibers for DC interconnection?
PS: did you think about OTV+LISP instead of MPLS?

Similar Messages

  • Data Center Interconnect - Layer 2 Extension using vPC

    Hi, I wanna if possible try to validate the design to connect 4 nexus 7010 to permit data center interconnect and layer 2 extension using the same vpc and the same port channel number and only 2 links between them as showed in the attach ppt
      Is anybody using a design like that ??

    this will work if it is *only* layer2 between the two pairs of N7K. You cannot create a L3 SVI and attempt to route it via the vpc port channel. It won't work.  If you need both L3 and L2, one option will be to use OTV.  Rgds Eng Wee

  • Data Center InterConnect with Dark Fibre

    Dear all,
    We are designing a Data Center InterConnection for our two Data Centers on top of a 10G Dark Fibre.
    Our primary goal is to:-
    extend a few vlans between the two DCs;
    Support VMware vMotion betwen the two DCs;
    asymmetric SAN synchronization;
    FCoE for SAN connectivity between the two DCs;
    So may I ask if we could run both LAN and SAN connections on this DF connection? We have NX5K on one DC and NX7K on the other, are there specific devices required to enable both LAN and SAN connections?
    It would be really appreciated if anyone could shed any lights on this. Any suggestions are welcome!
    Best Regards,
    James Ren

    Hello.
    If you are running Active/Backup DC scenario, I would suggest to make network design and configuration exactly the same. This includes platforms, interconnectivity types and etc.
    Do you know what is the latency on the fiber between these two DCs?
    Another question: why do you run 6880 in VSS, do you really need this?
    Q about the diagram: are you going to utilize 4 fibers for DC interconnection?
    PS: did you think about OTV+LISP instead of MPLS?

  • Data Center Connection using ONS 15530

    Hi!
    1. I am connecting 2 Data Center using DWDM on ONS 15530. The client is GE and planning on running Gigabit Etherchannel.
    2. My question is, whish one is better? Using the multirate transponder or GE aggregation card to connect to GE client?
    3. Either way, how does client and ONS component interconnect?
    - If transponder is used, how does the OADM, OSC, trunk card and transponder connect to each other?
    - If muxponder is used, what component is needed ad how does it connect?
    4. FYI, I come from ONS 15540 ESPx background where everything connect externally. Apreciate you guys expert response. Thanks.
    Rgds
    Helme

    You have three options:
    1/ Use 8 port aggregation card (15530-FCGE-8P) together with 10G ITU card (4 port aggregation card is not cost effective if you are carrying only GE traffic). 10G ITU is the expensive part.
    This 8 port aggregation module is connected to 10G ITU module via ONS15530 electrical backplane (not optical); 10G ITU and 8 port module both have 4x 2,5G backplane connections. 10G ITU is connected OADM using external MU-MU optical patch cords.
    You can also use 2,5G ITU card but then you can only use 2 ports of the 8 port module card.
    2/ Use 8 port multiservice muxponder (15530-MSMP-xxxx), this card has 2,5G capacity and card is SDH/SONET based. DWDM laser is embedded in the card, so this card is connected directly to OADM using external MU-MU optical patch cords (no backplane connections). Remember that this card is 2,5G so if you plan to use only GE you can utilize only 2 ports from the module.
    3/ Use Transponders (15530-TSP1-XXX2) as you do in ONS15540. One Transponder - one client signal - one lambda. Transponder is connected directly to OADM using external MU-MU optical patch cords (no backplane connections).
    What solution fits best for you depends on how many GE connections you need, what are future needs for more ports, what is your optical power budget, do you need high availability (no single point of failure) etc. Cheapest way to run only 2x GE is using option 2 above.
    rgds,
    Jp

  • Simplest Data Center Interconnect?

    Hi all,
    What's a simple way to implement a L2 network across 2 L3 DCs connected by 2x1Gig links using a 6504-E with SUP720-3C?! The DCs are only a few kilometres apart and our local service provider can only provide 1Gig fiber links between DCs (which I can then configure as L2 or L3). I do not want to simply configure flat L2 across both DCs - I would like to keep each DC as a separate L3 site and run OSPF for fast convergence and therefore avoid spanning-tree altogether.
    At the moment each DC uses 3750 switches connected by L3 links and runs EIGRP. We then use separate hardware (7200) and L2TPv3 to create some shared L2 networks across that. We're moving to the 6500 platform and so it's a good opportunity to redesign things - and hopefully I can minimise the amount of hardware needed and consolidate using only the 6500 platform in each DC.
    I also have a Cisco ACE appliance to fit at each site and to have redundancy for these they need to live in a shared network! That's what happens when the design process starts after the kit has already been brought (not my choice btw!).
    Any ideas?

    Howdy,
    The 2x1Gig links are to connect the 2 DCs together - but the question is what's the best way to do this? For example, best practice dictates that sites should be L3 only. However, I also need some kind of L2 connectivity for certain clustered services which require L2.
    What I've ended up doing is a bit of both L2 and L3. Basically I created a L2 etherchannel which only allows 2 things - a VLAN which is used to provide a small /30 link so that I can create SVIs on each end and run L3 on top; and VLANs which are used as pure L2 which run HSRP. Here's the config:
    DC1 switch
    interface Port-channel1
    description Link to DC2 - Po1
    switchport
    switchport trunk encapsulation dot1q
    switchport trunk native vlan 2
    switchport trunk allowed vlan 2,120
    switchport mode trunk
    interface Vlan2
    ip address 10.x.x.9 255.255.255.252
    ip ospf network point-to-point
    interface Vlan120
    description Shared VLAN
    ip address 10.120.0.253 255.255.255.0
    standby 120 ip 10.120.0.254
    standby 120 priority 150
    standby 120 preempt
    DC2 switch
    interface Port-channel1
    description Link to DC1 - Po1
    switchport
    switchport trunk encapsulation dot1q
    switchport trunk native vlan 2
    switchport trunk allowed vlan 2,120
    switchport mode trunk
    interface Vlan2
    ip address 10.x.x.10 255.255.255.252
    ip ospf network point-to-point
    ip ospf priority 0
    interface Vlan120
    description Shared VLAN
    ip address 10.120.0.252 255.255.255.0
    standby 120 ip 10.120.0.254
    standby 120 preempt
    It does seem to work ok - for example I have different networks at each DC which I can reach independently and I have a couple of VLANs which stretch across sites. The only problem that I can see is that there would be serious problems if the 2 Gig links went down between the 2 switches - each would then be HSRP master. Also there's a trombone effect with traffic from DC2 using DC1 as its default gateway but there's no way around this unless we use OTV or similar!
    Any thoughts are very welcome! Thank you.

  • Data Center to Data Center Layer 2 connectivity

    What would be the best way
    to provide layer 2 connectivity between 2 data centers? Sample router configs?
    Thanks!!
    Gary

    What would be the best way
    to provide layer 2 connectivity between 2 data centers? Sample router configs?
    Thanks!!
    Gary
    Hi Gary,
    Data Center to Data Center can be conencted in diffterent ways like point to point link,over the MPLS or some other means and cofniguration all depend on the connectivity what exactly is with your current network setup.
    Check out the below link on Data Center interconnect consideration.
    http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps708/white_paper_c11_493718.html
    Hope to Help !!
    Remember to rate the helpful post
    Ganesh.H

  • URGENT: QoS Design on Data Center MPLS - MediaNet Question...

    Hello,
    I am posting this in hopes I can get some guidance from anyone who has done this in the field.  We have a large enterprise customer with 21 sites all around the world, they have Verizon MPLS and are experiencing QoS related issues on their WAN regarding Video/Voice.  We have proposed remediating their network acccording to the Enterprise QoS SRND 3.3 and the new MediaNet SRND to account for Video and TP QoS (     
    http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSCampus_40.html )
    Here is the problem/question that was proposed in our presales meeting and I honestly don't know where to look for an answer... I am not asking for anyone to design a solution for me, just merely point me in the right direction:
    The Data Center has a ~40MB MPLS Connection ( full mesh ) into the cloud ( Verizon )
    Site A has a 8MB connection
    Site B has a 4MB connection
    I know on the Service policy and the interfaces at SiteA and SiteB I can assign "Bandwidth xxxx" and use ~95% of the bandwidth to do queuing and shaping/policing ect.  I am not concerned with SiteA and SiteB, that I think I can handle...
    Question was posed from the customer, "How can we ensure at the DataCenter level the 40MB MPLS is "chopped" up so that only 8MB of the total speed goes to SiteA ALONG with an attached QoS policy designed for that specific site, as well as ensure only 4MB goes to SiteB with an attached QoS policy.
    So I am looking for a way to allocate bandwith per site on the DC 40MB connection going into the cloud ( so that SiteB cannot use more than 4MB ) and attach a MediaNet specific QoS Service policy to that site.  The customer does not have seperate MPLS circuits for each site, they all come into the DC on 40MB shared ethernet connection ( no VC, or dedicated circuits to other sites ). 
    Any thoughts on if this is possible? 
    Thanks!
    Alex

    This is an example I have seen and I hope that is useful to you.
    Site A
    Subnet: 172.16.1.0/24
    Site B
    Subnet:172.16.2.0/24
    HeadOffice:
    ip access-list extended Site_A
    permit ip any 172.16.1.0 0.0.0.255
    ip access-list extended Site_B
    permit ip any 172.16.2.0 0.0.0.255
    class-map match-any Site_A
    match access-group name Site_A
    class-map match-any Site_B
    match access-group name Site_B
    policy-map To_Spokes
    class Site_A
    shape average 8000000
    service-policy Sub_Policy(Optional)
    class Site_B
      shape average 4000000
      service-policy Sub_Policy(Optional)
    class class-default
      shape average 28000000
      service-policy Sub_Policy(Optional)
    Interface G0/0
    Description To MPLS cloud
    bandwidth 40000000
    service-policy output To_Spokes
    interface G0/1
      Description To HeadOffice
    bandwidth 40000000
    service-policy output To_Spokes
    It would be greatly appreciated if someone can correct this or improve it as I am still learning.
    Please see the netflow graph from one of our routers using a similar policy as above.

  • Can i access internet, if I am connected to MPLS Network in my Data Center

    I am planning a connectivity to MPLS network of a Service Provider. Do I need a separate internet connectivity or the MPLS connection it self will provide me the access to internet.
    The main idea is to provide access to applications hosted in Data center to all the remote users who are working using their laptops and wireless broadband.
    Kindl suggest.
    Thanks for the support, in advance. 

    I am planning a connectivity to
    MPLS network of a Service Provider. Do I need a separate internet
    connectivity or the MPLS connection it self will provide me the access
    to internet.
    The
    main idea is to provide access to applications hosted in Data center to
    all the remote users who are working using their laptops and wireless
    broadband.
    Kindl suggest.
    Thanks for the support, in advance. 
    Hi,
    MPLS service provider can do the same check out the below link for more information
    https://www.cisco.com/en/US/tech/tk436/tk428/technologies_white_paper09186a00801281f1.shtml
    Hope to Help !!
    Ganesh.H
    If helpful do rate the post

  • I Want to use DVD-ROM (Desktop Data Center DVDs). Where can I ....

    Hi. Oracle Helper.
    I want to use below the DVD-ROM.
    Where can I download this material.
    Please notify me.
    Oracle Database 10g Release 2
    To get your Free Desktop Data Center DVDs, please verify the shipping address in your Oracle profile.
    Take the following three simple steps to verify and update your profile.
    Step 1: Click the "Register Now" button on the right.
    Step 2: Enter your user name and password. If you do not remember your password, click the "Lost password?" link.
    Step 3: Review your profile, particularly your shipping address. While you are in your profile, take a few moments to review your other information, so we can personalize services and information for you.
    Offer is valid in United States and Canada only. Offer expires October 20, 2006.
    ----------------------------------------------------------------------------------------------------------------------------------------------------------------------

    Charles from Kingsey Falls wrote:
    Do youmknow if it's possible to get the sim card by mail before the trip or we have the by in a store when we're there?
    You'll have to contact the carriers or their authorized outlets and ask.
    Regards.

  • Why use transparent firewall in data center?

    I've seen Cisco documentation recommendation transparent mode for firewall deployment in the data center, e.g. 5585X. I understand the key reasons for this are:
    - easy "insertion" of firewall in pre-existing network
    - speed (since there is no "hair-pinning")
    Assume that the above two are not a major concern (i.e. you can redesign your network to have the firewall hold default gateways and your firewall is much more powerful than your needs). Then from a financial perspective, it doesn't seem to make sense to do transparent firewall deployment of the 5585X for the following reasons:
    - you are limited to a maximum of 8 bridge-groups
    If you really want to follow best practices and implement fine segmentation of your network, you'll need to create 10s or 100s of VLANs and perform access-control on them. This limit of 8 BVIs means that you basically can have only 8 "segments" per context. After that, you have to resort to adding contexts as your grow (contexts introduce their own cost AND complexity).
    Am I missing something? Why would Cisco recommend transparent firewall for data center if cost is remotely a concern? I can't seem to find any good documentation justifying this. Thanks in advance for your experiences/insight.

    Hello Fouzan,
    I think you already covered it
    good job with the analisys, basically as you said is the hability to place the Transparent mode into the network enviroment , no routing stuff complications, etc , BUT as you said there are limitations,
    I would still use the routed mode due to the requirements you set but there will be scenarios when this will not be the case and a bridge-group or 2 will take care of everything so I transparent mode firewall would do it,
    Regards

  • Problem in setting oracle cloud into netbeans using US- commercial-1 data center

    Iam unable to connect oracle cloud into netbeans using the credentials sent by US-commercial-1 data center.The thing is that each time when i tried to connect oracle cloud into netbeans ,a message is displayed like  Cannot connect to Oracle Cloud using provided credentials.How to solve this issue?

    Hi,
    Request you to please go through the link https://netbeans.org/kb/docs/web/oracle-cloud.html which gives you step-by-step instruction on how to connect NetBeans to Oracle Java cloud service.
    Please make sure that you are using Oracle cloud supported NetBeans version which is 7.2.1, 7.3, 7.4, Java EE Version
    For more details please visit “NetBeans” section at http://docs.oracle.com/cloud/latest/javacs_common/CSJSU/java-intro.htm#CHDJFAEB
    In case if you still get any error then request you to please elaborate which step you are failing.
    Regards,
    Rituraj Jain

  • I accidentally restored my iPhone to factory settings. All apps deleted. When I log into Game Center ios7 using Apple ID, it loses all my data and my nickname says that it is already in use when I am the one using it. How do I get my old progress back?

    If I could log in to Game Center ios7 using my nickname then it would be fine but I am unable to figure out any way of doing it this way

    Restore the device from the most recent backup (prior to restoring as new) to put everything back the way it was.

  • Is there support for a data center Multi-Master using SunONE "Bandwidth Manager" over a WAN ?

     

    I'm not sure what you mean by "data center M-M". There is currently only support for 2 masters. Do you mean
    "Is there support for having a managed WAN connection between the two masters?"
    This scenario has been tested, but I don't know if it is fully supported by iPlanet. In other words, it should work, but probably not as well as two masters sitting next to each other in a data center, which is the recommended deployment strategy.

  • Deploying Cisco Overlay Transport Virtualization (OTV) in Data Center Networks

    Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about how to plan, design, and implement Cisco Overlay Transport Virtualization (OTV) in your Data Center Network with Cisco experts Anees Mohamed Abdulla and Pranav Doshi.
    Anees Mohamed Abdulla is a network consulting engineer for Cisco Advanced Services, where he has been delivering plan, design, and implementation services for enterprise-class data center networks with leading technologies such as vPC, FabricPath, and OTV. He has 10 years of experience in the enterprise data center networking area and has carried various roles within Cisco such as LAN switching content engineer and LAN switching TAC engineer. He holds a bachelor's degree in electronics and communications and has a CCIE certification 18764 in routing and switching. 
    Pranav Doshi is a network consulting engineer for Cisco Advanced Services, where he has been delivering plan, design, and implementation services for enterprise-class data center networks with leading technologies such as vPC, FabricPath, and OTV. Pranav has experience in the enterprise data center networking area and has carried various roles within Cisco such as LAN switching TAC engineer and now network consulting engineer. He holds a bachelor's degree in electronics and communications and a master's degree in electrical engineering from the University of Southern California.
    Remember to use the rating system to let Anees and Pranav know if you have received an adequate response.  
    Because of the volume expected during this event, Anees and Pranav might not be able to answer each question. Remember that you can continue the conversation on the Data Center, sub-community forum shortly after the event. This event lasts through August 23, 2013. Visit this forum often to view responses to your questions and the questions of other Cisco Support Community members.

    Hi Dennis,
        All those Layer 2 extension technologies require STP to be extended between Data Centers if you need to have multiple paths between Data Centers. OTV does not extend STP rather it has its own mechanism (AED election) to avoid loop when multiple paths are enabled. It means any STP control plane issue, we don't carry to the other Data Center.
        OTV natively suppresses Unknown Unicast Flooding across the OTV overlay. Unknown unicast flooding is a painful problem in layer 2 network and difficult to troubleshoot to identify the root cause if you don't have proper network monitoring tool.
       It has ARP optimization which eliminates flooding ARP packets across Data Center by responding locally with cached ARP messages. One of the common issues I have seen in Data Center is some server or device in the network sends continuous ARP packets which hits Control plane in the Aggregation layer which in turn causes network connectivity issue.
    The above three points proves the Layer 2 domain isolation between data centers. If you have redundant Data Centers with Layer 2 extended without OTV, the above explained layer 2 issue which happens in one Data Center carries the same failure to the second data center which creates the question of what is the point of having two different Data Centers if we can not isolate the failure domain.
      OTV natively supports HSRP localization with few command lines. This is a very important requirement in building Active/Active Data Center.
    Even though your question is related to L2TP, OTV deserves the comparison with VPLS and those comparison will also be applicable for L2TP. The below link explains in detail...
    http://www.cisco.com/en/US/prod/collateral/switches/ps9441/ps9402/white_paper_c11-574984.html
    Thanks,
    Anees.

  • Data Center Redundancy

    Hi, dear experts!
    I) My  Input data is (read please, or see attach):
    - I have one active data center (main office), one backup data center (backup office), and several branch offices and many corporate internet users
    - Each of the offices has redundant internet connection: Main office via ISP1 and ISP2, backup office via ISP3 and ISP4.
    - Standby data center duplicates corporates services (such as Exchange, Sharepoint, FileStorage).
    - Main office and backup office are long-distanced from each other (about 800 km), and interconnected via 1Gb fiberoptic.
    II) My tasks are:
    1. Provide redundant network  connection for local ofiice users to corporate services.
    2. Provide redundant network connection for branch offices and internet users to corporate services.
    III) My ideas are:
    1. Accordingly to the 1-st task. Here I suppose to use load balancers in redundant configuration.
    2. Accordingly to the 2-nd task. To my mind there are two scenarios.
    2.1 First scenario. To built a DMVPN topology using main and backup offices as a hubs, and branch offices as a spokes.
    2.2 Second scenario. To by provider independet IPv4-adress block and ASN, to advertise main and backup office networks in internet.
    IV) My questions are:
    -What scenario according to the 2-nd task is better: using a DMVPN-topology or using an ASN-redundancy?
    -Is it possible to avoid assymetric routing problems in case of using a an ASN-redundancy?
    Thank you!

    I think Global loadblancer device will solve your both issue or there is an other solution for 2nd question,
    to use BGP confedration, that means use two private ASN internaly one in each DC, and put them both DC in one confedration, use one public ASN with all your  ISP's.
    Regards,

Maybe you are looking for