Pfr Webinar Latest Webex

7/27/2019 Pfr Webinar Latest Webex

1/82

2012 Cisco and/or its affiliates. All rights reserved.

Enhancing Application PerformancePerformance Routing (PfR)Jean-Marc Barozet ([email protected])Sumanth Kakaraparthi ([email protected])

The Cisco TechAdvantage Webinars January 9, 2013

Network Operating Systems Technology Group


2/82


Register for a Technical Seminar with our Cisco Software SMEs:http://www.ciscolive.com/london/registration-packages/

Session Title Session Numbe

Advanced LISP Techtorial TECIPM-3191

Advanced Network Automation TECNMS-3601

Application Awareness in the Network; the Route to Application Visibility and Control TECRST-2672

Converged Access: Wired/Wireless System Architecture, Design and Operations TECCRS-2678

Enterprise QoS Design Strategy TECRST-2501

IP Mobility Deep Dive TECSPG-3668

IPv6 for Dummies: An Introduction to IPv6 TECMPL-2192

IPv6 Security TECRST-2680

Scaling the IP NGN with Unified MPLS TECNMS-3601

Software Defined Networking and Use Cases TECSPG-2667

Understanding and Deploying IP Multicast Networks TECIMP-1008


3/82


PanelistsSpeakers

Sumanth KakaraparthiProduct Manager

[email protected]

Shabaz Yousaf

Technical Marketing [email protected]

Jean-Marc BarozetTechnical Leader

[email protected]

Scott V

Distingsvande


4/82


5/82


PositioningKey Customer Challenges

PfR Benefits

Performance Routing 101 Use cases:

Internet Edge

Enterprise WAN

Reporting Tools NetFlow export, SNMP Conclusion


6/82



7/82


How Application Are Consumed

Drastic Change in Application Consumption, Delivery, Type


8/82


How Applications Are Delivered



10/82 2012 Cisco and/or its affiliates. All rights reserved.

37%50%

Percent of CIOswho say the

majority of theirapps will be inthe Cloud by

2015

Consider Cloud readyWAN to be the MostCritical Infrastructure

for Cloud28% : Virtualized DC

21% - SP SLA

* 1300+ Global IT professionals across 13 countries www.cisco.com/go/cloudsurvey

Expectation

Key FindingsCisco Global Cloud Networking Survey, April 20



37% 60% 66%50%

Percent of CIOswho say the

majority of theirapps will be inthe Cloud by

2015

Consider Cloud readyWAN to be the MostCritical Infrastructure

for Cloud28% : Virtualized DC

21% - SP SLA

CitedPerformance

as a KeyChallengefor Cloud

Cited Securityand Policy as

a Key Challengefor Cloud

* 1300+ Global IT professionals across 13 countries www.cisco.com/go/cloudsurvey

Expectation Reality: Top Network Ch

Key FindingsCisco Global Cloud Networking Survey, April 20

vs.



WAN Internet

Branch with no direct Internetaccess

Branch with direct Internetaccess

Public SaaS

Data Centers



I dont know, if I am getting my SLA I dont know,the applications running in my I dont know, howto isolate performance p I dont know, how much non-business traffi

WAN Internet



Public SaaS

Data Centers


14/82


I dont know, if I am getting my SLA I dont know,the applications running in my I dont know, howto isolate performance p I dont know, how much non-business traffi

WAN Internet



Public SaaS

Data Centers


15/82


I dont know, if I am getting my SLA I dont know,

the applications running in my

I dont know, howto isolate performance p I dont know, how much non-business traffi

WAN Internet



Public SaaS

Data Centers

I cant do, anything about poor and incons I cant do,anything about my Network out I cant do, anything about under utilization

WAN links

I cant do, anything aboutunreliability for m


16/82





WAN Internet



Public SaaS

Data Centers


WAN links



17/82





WAN Internet



Public SaaS

Data Centers


WAN links



18/82


Visibility Control Report


19/82


Save 40% operational cost by smart loadbalancing

Increase WAN reliability with out increasein $ cost

Avoid service outages

Improve application performance


20/82


21/82


SP-A

SP-B

BR

MC/BR

BR

BR

HQ

MC

NetworkOutageNetwork

Outage


22/82


SP-A

SP-B

BR

MC/BR

BR

BR

HQ

MC

NetworkOutage

NetworkOutage

Pfr enabled


23/82


ExpensiveSP-A

SP-B

BR

MC/BR

BR

BRHQ

MC

Voice and Video

Bussiness Critical

Rest of traffic


24/82


ExpensiveSP-A

SP-B

BR

MC/BR

BR

BRHQ

MC

Pfr enabledVoice and Video

Bussiness Critical

Rest of traffic


25/82


SP-A

SP-B BR

MC/BR

BR

BRHQ

MC

Voice and Video

Business Critical

Rest of traffic

SP-C

BR

BR


26/82


SP-A

SP-B BR

MC/BR

BR

BRHQ

MC


Business Critical

Rest of traffic

SP-C

BR

BR


27/82


SP-A

SP-B BR

MC/BR

BR

BRHQ

MC


Business Critical

Rest of traffic

SP-C

BR

BR


28/82


SP-A

SP-B BR

MC/BR

BR

BRHQ

MC


Business Critical

Rest of traffic

SP-C

BR

BR

Ready for BusinessCritical

Ready for Voiceand Video


29/82


SP-A

SP-B

BR

MC/BR

BR

BRHQ

MC


30/82


SP-A

SP-B

BR

MC/BR

BR

BRHQ

MC

Service outage

ServiceOutage


31/82


SP-A

SP-B

BR

MC/BR

BR

BRHQ

MC

Service outage

ServiceOutage

Pfr enabled


32/82


Maximize all ISP bandwidth by load sharing otherInternet traffic

Protect business Cloud applications from networkbrownout

Loss > 10%

Cloud Service preferred path ISP1

Cloud Service & Load Balancing Policy

ISP-1 (Primary) ISP-2 (Secondary)

Detect loss > 10%

Cloud Service

Best Effort traffic

Internet Internet Access with Multiple ISP Optimization policies based on P Egress and Ingress Optimization


33/82


Internet Access with Multiple ISP Optimization policies based on P Egress and Ingress Optimization

Protect business Cloud applications from networkbrownout

Loss > 10%

Cloud Service preferred path ISP1 Maximize all ISP bandwidth by load sharing other

Internet traffic

Cloud Service & Load Balancing Policy

ISP-1 (Primary) ISP-2 (Secondary)

Detect loss > 10%

Cloud Service

Best Effort traffic

Internet


34/82


Protect voice and video qualityLatency > 200ms; Jitter > 30ms

Protect Critical applications from brownoutsLoss > 5%

Voice & Video preferred path SP-A Critical Apps preferred path SP-A Maximize utilization by load sharing

Multimedia & Critical Data Policy

SP-A (MPLS VPN) SP-B (DMVPN)

Critical Apps

Best Effort traffic

WANDetect high jitter

Voice - Video

Enterprise WAN Optimization policies based on A Egress Optimization only


35/82


Enterprise WAN Optimization policies based on A Egress Optimization only

Protect voice and video qualityLatency > 200ms; Jitter > 30ms

Protect Critical applications from brownoutsLoss > 5%

Voice & Video preferred path SP-A Critical Apps preferred path SP-A Maximize utilization by load sharing

Multimedia & Critical Data Policy

SP-A (MPLS VPN) SP-B (DMVPN)

Critical Apps

Best Effort traffic

WAN

Voice - Video

Detect high jitter


36/82



37/82


The Decision Maker: Master Controller (MC)Apply policy, verification, reporting

No packet forwarding/ inspection required

MC

The Forwarding Path: Border Router (BR)Learn, measure, enforcement

Optimize by:Reachability, Delay, Loss, Jitter, MOS,

Throughput, Load, and/or $Cost

BR

WAN1


38/82


WAN1(IP-VPN)

WAN2(IPVPN,DMVPN)

MC/BR

MC/BR

BR

MC/BR

BR

BR

HQ

MC

BRBR

MC

Enterprise WANISP1 ISP2

Internet Edge

Branch


39/82


Multisite MC Peering Framework MC to MC Peering Framework can be used toexchange policies, services and feedback Remote Site Discovery

Automatic discovery of branch routers

Simplifies Configuration prefix and target discovery

Probing Efficiency sharing of probe data across policies

Enhance PfR remote site bandwidth discovery

BBR

HQ

MC

MC/BR MC/BR

(WAN1(IP-VPN)


40/82


Each MC announces its site name, insideprefixes, probe target address and remote

bandwidthBBR

HQ

MC

MC/BR

MC/BRSite 1

Publish

Prefix A

Responder 1

Site 2

Publish

Prefix B

Responder 2

(WAN1(IP-VPN)


41/82


Mapping table built on each siteAllows automatic jitter probe configurationAllows automatic probe generation

BBR

HQ

MC

MC/BR MC/BR

(WAN1(IP-VPN)

Prefixes Responders Sites

Prefix APrefix B

Prefix C, D, E

Responder1Responder2

Responder3, 4

Site 1Site 2

Site 3


42/82


Learning

Monitoring (Passive Active)

Choosing Your Policies

Enforcing the Path

Get the TrafficMC database

Get the TrafficPerformance

Check Delay,

Bandwidth an

Use a good pper Traffic Cla


43/82


TrafficClasses

BR

HQ

MC/BR MC/BR

MC

Voice, Video,Critical

10.1.1.0/24

10.1.2.0/24

WAN1(IP-VPN)

PfR determines the traffic classes from thetraffic flowing through the border routers

Subsets of the total traffic must beidentified, and these traffic subsets arenamed traffic classes

Dest. IP DSCP Delay Loss Jitter BW

10.2.2.0/24 - 0

Dest. IP DSCP AppID Delay Loss Jitter BW

10.2.2.0/24 EF 0

Dest. IP DSCP AppID Delay Loss Jitter BW

10.2.2.0/24 AF31 0

Global

ApplicationGroups

or


44/82


Prefixes

Prefixes + DSCP

Applications

Traffic Classes

Definition

TrafficClasses

BR

HQ

MC/BR MC/BR

MC


Check Prefixes andapplication/DSCP perbranch

This will give an idea of thenumber of Traffic Classes

Tune Aggregation Mask asneeded

Rest of the Traffic

Voice - Video

Critical Application

10.10.1.0/24

10.10.2.0/24

EXAMPLE

Critical Apps DSCP AF31

Mask 24 11 TCs Mask 16 2 TCs

WAN1(IP-VPN)


45/82


46/82


Traffic Classes

BBR

HQ

MC/BR MC/BR

MC

Destination

Prefix DSCP

App

Id Delay Loss

Ingress

BW

Egress

BW BR Exit

10.1.1.1/32 EF BR1 E0/0

20.2.1.0/24 AF31 BR2 E0/0

30.1.1.0/24 0 BR1 E0/0

NetFlowCache

BRs use their NetFlow cache Top Talkers based on throughput

BRs aggregate based on the configureddestination mask

Send the reports to the MC every minute

(WAN1(IP-VPN)


47/82


TrafficClasses

Learning



Enforcing the Path

Passive

PfR Netflow Monitoring Flows Need not be symmetrical

Delay Loss

Egress BW

Reachability

Ingress BW

Passive

PerformanceMetricsBBR

HQ

MC/BR MC/BR

MC

NetFlowCache

(WAN1(IP-VPN)


48/82


BBR

HQ

MC/BR MC/BR

MC

BR Links Ingress Egress

BR1 Gig1/1

BR2 Gig1/2

DestinationPrefix

DSCPApp

IdDelay Loss

Ingress

BW

Egress

BWBR Exit

10.1.1.1/32 0 BR1 Gi1/1

10.1.10.0/24 AF11 BR1 Gi1/2

0 BR2 Gi1/1

PfR uses NetFlow to collect and aggregatepassive monitoring statistics on a per trafficclass basis.

MC Instructs BRs to monitor the performance

(WAN1(IP-VPN)

Traffic Classes


49/82


BR Links Ingress Egress

BR1 Gig1/1 200 40

BR2 Gig1/2 130 60

DestinationPrefix

DSCPApp

IdDelay Loss

Ingress

BW

Egress

BWBR Exit

10.1.1.1/32 0 60 0 20 40 BR1 Gi1/1

10.1.10.0/24 AF11 110 0 52 60 BR1 Gi1/2

0 89 1 34 10 BR2 Gi1/1

BBR

HQ

MC/BR MC/BR

NetFlowCache

MC

Border routers collect and report passive monitoringstatistics to the master controller approximately onceper minute.

BRs gather performance measurements using Netflow BRs report Performance Metrics for Traffic Classes to

the Master Controller

(WAN1(IP-VPN)

Traffic Classes


50/82


Learning

Monitoring (Passive - Active)


Enforcing the Path

Active

PfR enables IP SLA feature Probes sourced from BR ICMP probes learned or configured TCP, UDP, JITTER need ip sla

responder

Delay Loss

Jitter

Reachability

MOSBBR

HQ

MC/BR MC/BR

MC

Active

PerformanceMetrics

TrafficClasses

WAN1(IP-VPN) (


51/82


52/82


BBR

HQ

MC/BR MC/BR

MC

DestinationPrefix DSCPApp

IdDelay Jitter Loss

Ingress

BW

Egress

BWBR Exit

10.1.1.1/32 EF BR1 Gi1/1

10.1.10.0/24 AF31 BR1 Gi1/2

0 BR2 Gi1/1

Active monitoring involves creating a stream ofsynthetic traffic (IP SLA probes) that replicatesa traffic class as closely as possible.

MC Instructs BRs to send probes and monitorthe performance

WAN1(IP-VPN) (

Traffic Classes


53/82


BBR

HQ

MC/BR MC/BR

DestinationPrefix DSCPApp

IdDelay Jitter Loss

Ingress

BW

Egress

BWBR Exit

10.1.1.1/32 EF 60 10 0 20 40 BR1 Gi1/1

10.1.10.0/24 AF31 110 15 0 52 60 BR1 Gi1/2

0 89 26 1 34 10 BR2 Gi1/1

MC

BRs gather performance measurements using IP SLAprobes

The performance metrics of the synthetic trafficare collected

BRs report Performance Metrics for TrafficClasses to the MC

The MC applies results to the traffic class entry in theMaster Controller database

WAN1(IP-VPN) (

Traffic Classes


54/82


TrafficClasses

Learning



Enforcing the Path

Link

Load balancing Max utilization Link grouping $Cost

Application Performance

Reachability Delay Loss MOS Jitter

BBR

HQ

MC/BR MC/BR

MC


(WAN1(IP-VPN)


55/82



BBR

HQ

MC/BR MC/BR

2. Loss

3. Jitter

4. Delay

Load-BalancingRest of the Traffic

Voice - Video


MC1. Link-Group

2. Loss

4. Delay

1. Link-Group

Multiple resolvers can be assigned Set of Policies per Application Group Resolver Priority

(WAN1(IP-VPN)


56/82



Learning


Enforcing the Path


Destination Prefix

BGP

- Egress: route injection orModifying the BGP LocalPreference attribute

- Ingress: BGP AS-PATH Prependor AS Community

EIGRP Route Control Static Route Injection PIRO

Application

Dynamic PBR NBAR/CCE BBR

HQ

MC/BR MC/BR

MC

(WAN1(IP-VPN)


57/82



58/82


WAN1(IP-VPN)

WAN2(IPVPN,DMVPN)

MC/BR

MC/BR

BR

MC/BR

BR

BR

HQ

MC

BRBR

MC

ISP1 ISP2

Internet Edge

Branch


59/82


Problem StatementIngress/Egress path are under/over utilized

Maximize bandwidth utilization (uplinks with different BW

Manual SolutionConsider The Traffic Patterns of the Enterprise.

Does the Enterprise Host Content?

Does the Enterprise Access Content?

Not Sure?

Graph Interface Byte Count

Use NetFlow

Even better, use Flexible NetFlow

In General, sites have a 80:20 traffic volume (inbytes) mix. Fix only the 80% Direction.

20% direction doesnt matter unless links are widelyvarying speeds.

R1 R2

Egress

Internet

ISP BISP A

1000Mbps

20Mbp


60/82


Direction Applied, works together with Route Maps

Tool/AttributeDirection of Traffic

Flow AffectedImplementation

Longest Match

Local Preference

AS_Path

Inbound and Outbound

Outbound

Static or Redistribution / Received

Direction Applied: Inbound

Direction Applied: OutboundInbound

Communities Inbound Direction Applied: Outbound


61/82


PfR used to load balance the trafficDistributes traffic based upon Link Utilization (Load)

Links can have different bandwidthsNew default policies based on load-balancing

Cisco ASR1k is typical BR/MC with BRterminating Internet connections

BGP routingBRs must be iBGP peers

Default routing or

Partial routes or

Full routes

PfR can actively manage up to 20k Prefixes concurrently (withASR1000)

12.4T/15.0.1M

IOS-XE 3.3.0

eBGP

R4

R3

ISP1

ISP4


62/82


63/82


Inside Prefixes (BGP)Learning

Monitoring Passive Global

Policies

Path Enforcement BGP

Ingress BW Utilization

Load-Balancing (range)

BGP AS-PATH Prepend

BGP Community

R4

R3

20eBGP

ISP1

ISP4


64/82



65/82


66/82

HQ


67/82


Prefixes

Prefixes + DSCP

Applications

Learning

TrafficClasses

BR

HQ

MC/BR MC/BR

MC


WAN1(IP-VPN)Rest of the Traffic

Voice - Video

Critical ApplicationClasses ofApplications


68/82

HQ


69/82


2. Loss

3. Jitter

4. Delay

Load-BalancingRestoftheTraffic

Voice - Video


1. Link-Group

2. Loss

4. Delay

1. Link-Group

Policies

BR

HQ

MC/BR MC/BR

MC


WAN1(IP-VPN)


70/82


HQ


71/82


Standard based PfR NetFlow v9 Export

The PfR NetFlow v9 Exporter resides on the PfR MasterController

Exports Passive Metrics, Active Metrics, Events, Configuration

PfR SNMP MIBTC as a row of cpfrTrafficClassTable

TC Status as a row of cpfrTrafficClassStatusTable

performance metrics as a row of cpfrTrafficClassMetricsTable

Traps

NMS application vendors engaged! Cisco Prime Assurance engaged!

BR

HQ

MC

MC/BR MC/BR

(WAN1(IP-VPN)


72/82


Matching ID numbers are the way to associate template to the data records The header follows the same format as prior NetFlow versions so collectors will be backward Each data record represents one flow If exported flows have different fields, they cannot be contained in the same template record (

cannot be combined with MPLS-aware, NetFlow records)

Data FlowSetTemplate FlowSet #0 OptionTemplateFlowSet

#1

FlowSet ID #256

Data FlowSet

FlowSet ID #257

Template

258

(Specific

Field Type

and Length

(Version,# Packets,

Sequence #,Source ID)

Flows fromInterface A

Flows fromInterface B

To Support Technologies Such asMPLS or Multicast, This Export Format Can

Be Leveraged to Easily Insert New Fields

Template Record

Template ID #257

(Specific Field

Types and Lengths)

Template Record

Template ID #254

(Specific Field

Types and Lengths)

Data Record

(Field Values)

Data Record

(Field Values)

Data Record

(Field Values)


73/82


BillingDenial of Service

Traffic Analysis

More info: http://www.cisco.com/warp/public/732/Tech/nmp/netflow/partners/commercial/


74/82


MC


75/82



76/82



77/82


78/82


79/82


Docwiki Performance Routing HomeTechnology Overview, Solution Guides, Troubleshooting Guides, FAQ

http://docwiki.cisco.com/wiki/PfR:HomePerformance Routing Technology Overview

http://docwiki.cisco.com/wiki/PfR:Technology_Overview

Performance Routing Solution Guides

http://docwiki.cisco.com/wiki/PfR:Solutions

Performance Routing Troubleshooting Guide

http://docwiki.cisco.com/wiki/PfR:Troubleshooting

ConfigurationUnderstanding Performance Routing

http://www.cisco.com/en/US/docs/ios/pfr/configuration/guide/pfr-understand.html

Basic Configurationhttp://www.cisco.com/en/US/docs/ios/pfr/configuration/guide/pfr-basic.html

Advanced Configuration

http://www.cisco.com/en/US/docs/ios/pfr/configuration/guide/pfr-advanced.html


80/82


81/82


Thank you! Please complete the post-event survey Join us February 13thfor our next webinar:

Unleash the Power of Your Network with One Platform Kit

Register: www.cisco.com/go/techadvantage

Follow us @GetYourBuildOn


82/82

Thank you.

Pfr Webinar Latest Webex

Documents