Survey
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Download NE5000E Product Description
Document related concepts
Passive optical network wikipedia , lookup
Internet protocol suite wikipedia , lookup
Distributed firewall wikipedia , lookup
Asynchronous Transfer Mode wikipedia , lookup
IEEE 802.1aq wikipedia , lookup
Computer network wikipedia , lookup
Airborne Networking wikipedia , lookup
Serial digital interface wikipedia , lookup
Recursive InterNetwork Architecture (RINA) wikipedia , lookup
Deep packet inspection wikipedia , lookup
Wake-on-LAN wikipedia , lookup
Zero-configuration networking wikipedia , lookup
Network tap wikipedia , lookup
Cracking of wireless networks wikipedia , lookup
Transcript
HUAWEI NetEngine5000E Core Router V800R003C00 NE5000E Product Description Issue 01 Date 2011-09-15 HUAWEI TECHNOLOGIES CO., LTD. Copyright © Huawei Technologies Co., Ltd. 2011. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any means without prior written consent of Huawei Technologies Co., Ltd. Trademarks and Permissions and other Huawei trademarks are trademarks of Huawei Technologies Co., Ltd. All other trademarks and trade names mentioned in this document are the property of their respective holders. Notice The purchased products, services and features are stipulated by the contract made between Huawei and the customer. All or part of the products, services and features described in this document may not be within the purchase scope or the usage scope. Unless otherwise specified in the contract, all statements, information, and recommendations in this document are provided "AS IS" without warranties, guarantees or representations of any kind, either express or implied. The information in this document is subject to change without notice. Every effort has been made in the preparation of this document to ensure accuracy of the contents, but all statements, information, and recommendations in this document do not constitute the warranty of any kind, express or implied. Huawei Technologies Co., Ltd. Address: Huawei Industrial Base Bantian, Longgang Shenzhen 518129 People's Republic of China Website: http://www.huawei.com Email: [email protected] Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. i HUAWEI NetEngine5000E Core Router NE5000E Product Description About This Document About This Document Purpose This document describes the architecture, the hardware architecture, the link features, the service features, the application scenarios, the operation and maintenance, the technical specification, and the compliant standards of NE5000E. Related Versions The following table lists the product versions related to this document. Product Name Version HUAWEI NetEngine5000E Core Router V800R003 Intended Audience The intended audiences of this document are: On-site maintenance engineer Commissioning engineer System maintenance engineer Organization This document consists of nine chapters and is organized as follows. Chapter Description Introduction This chapter introduces the product positioning and features of the NE5000E. Architecture This chapter describes the physical, logical, and software architecture of the NE5000E. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. ii HUAWEI NetEngine5000E Core Router NE5000E Product Description About This Document Chapter Description Hardware Architecture This chapter describes the hardware architecture of the NE5000E. Link Features This chapter describes the link features of the NE5000E. Service Features This chapter describes the service features of the NE5000E. Application Scenarios This chapter describes the networking applications of the NE5000E. Operation and Maintenance This chapter describes the operation and maintenance, and network management of the NE5000E. Technical Specifications This chapter describes the technical specifications of the NE5000E. Compliant Standards This chapter describes the compliant standards of the NE5000E. Acronyms and Abbreviations This appendix lists the acronyms and abbreviations mentioned in this manual. Conventions Symbol Conventions The symbols that may be found in this document are defined as follows. Symbol Description Indicates a hazard with a high level of risk, which if not avoided, will result in death or serious injury. Indicates a hazard with a medium or low level of risk, which if not avoided, could result in minor or moderate injury. Indicates a potentially hazardous situation, which if not avoided, could result in equipment damage, data loss, performance degradation, or unexpected results. Indicates a tip that may help you solve a problem or save time. Provides additional information to emphasize or supplement important points of the main text. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. iii HUAWEI NetEngine5000E Core Router NE5000E Product Description About This Document General Conventions The general conventions that may be found in this document are defined as follows. Convention Description Times New Roman Normal paragraphs are in Times New Roman. Boldface Names of files, directories, folders, and users are in boldface. For example, log in as user root. Italic Book titles are in italics. Courier New Examples of information displayed on the screen are in Courier New. Command Conventions The command conventions that may be found in this document are defined as follows. Convention Description Boldface The keywords of a command line are in boldface. Italic Command arguments are in italics. [] Items (keywords or arguments) in brackets [ ] are optional. { x | y | ... } Optional items are grouped in braces and separated by vertical bars. One item is selected. [ x | y | ... ] Optional items are grouped in brackets and separated by vertical bars. One item is selected or no item is selected. { x | y | ... }* Optional items are grouped in braces and separated by vertical bars. A minimum of one item or a maximum of all items can be selected. [ x | y | ... ]* Optional items are grouped in brackets and separated by vertical bars. Several items or no item can be selected. &<1-n> The parameter before the & sign can be repeated 1 to n times. # A line starting with the # sign is comments. GUI Conventions The GUI conventions that may be found in this document are defined as follows. Convention Description Boldface Buttons, menus, parameters, tabs, window, and dialog titles are in boldface. For example, click OK. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. iv HUAWEI NetEngine5000E Core Router NE5000E Product Description About This Document Convention Description > Multi-level menus are in boldface and separated by the ">" signs. For example, choose File > Create > Folder. Keyboard Operation The keyboard operations that may be found in this document are defined as follows. Format Description Key Press the key. For example, press Enter and press Tab. Key 1+Key 2 Press the keys concurrently. For example, pressing Ctrl+Alt+A means the three keys should be pressed concurrently. Key 1, Key 2 Press the keys in turn. For example, pressing Alt, A means the two keys should be pressed in turn. Mouse Operation The mouse operations that may be found in this document are defined as follows. Action Description Click Select and release the primary mouse button without moving the pointer. Double-click Press the primary mouse button twice continuously and quickly without moving the pointer. Drag Press and hold the primary mouse button and move the pointer to a certain position. Update History Updates between document versions are cumulative. Therefore, the latest document version contains all updates made to previous versions. Updates in Issue 01(2012-03-15) First commercial release. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. v HUAWEI NetEngine5000E Core Router NE5000E Product Description Contents Contents About This Document .................................................................................................................... ii 1 Product Positioning and Features .............................................................................................. 1 1.1 Product Positioning .......................................................................................................................................... 1 1.2 Product Features ............................................................................................................................................... 3 2 Product Architecture ..................................................................................................................... 9 2.1 Physical Architecture........................................................................................................................................ 9 2.2 Logical Architecture ....................................................................................................................................... 14 2.3 Software Architecture ..................................................................................................................................... 17 3 Technical Specifications ............................................................................................................ 18 3.1 Physical Specifications ................................................................................................................................... 18 3.2 System configuration...................................................................................................................................... 21 4 LPU ................................................................................................................................................. 23 5 Link Features ................................................................................................................................ 27 5.1 Ethernet Link Features ................................................................................................................................... 27 5.2 POS Link Features ......................................................................................................................................... 28 6 Service Features ........................................................................................................................... 29 6.1 Ethernet Features ............................................................................................................................................ 29 6.2 IP Features ...................................................................................................................................................... 29 6.2.1 IPv4/IPv6 Dual-Stack ........................................................................................................................... 29 6.2.2 IPv4 Features ........................................................................................................................................ 30 6.2.3 IPv6 Features ........................................................................................................................................ 30 6.2.4 IPv4/IPv6 Transition Technology.......................................................................................................... 30 6.3 Routing Protocols ........................................................................................................................................... 31 6.3.1 Unicast Routing Features ...................................................................................................................... 31 6.3.2 Multicast Routing Features ................................................................................................................... 32 6.4 MPLS Features ............................................................................................................................................... 33 6.5 VPN Features ................................................................................................................................................. 34 6.5.1 Tunnel Policy ........................................................................................................................................ 34 6.5.2 VPN Tunnel .......................................................................................................................................... 35 6.5.3 BGP/MPLS L3VPN .............................................................................................................................. 35 Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. vi HUAWEI NetEngine5000E Core Router NE5000E Product Description Contents 6.5.4 BGP/MPLS L2VPN .............................................................................................................................. 35 6.6 QoS Features .................................................................................................................................................. 36 6.7 Traffic Load Balancing ................................................................................................................................... 37 6.8 Traffic Statistics Collection ............................................................................................................................ 38 6.9 Security Features ............................................................................................................................................ 39 6.10 Network Reliability ...................................................................................................................................... 42 7 Application Scenarios ................................................................................................................ 47 7.1 National Backbone Network Solution ............................................................................................................ 47 7.2 Provincial Backbone Network Solution ......................................................................................................... 48 7.3 IP Bearer Network Solution ........................................................................................................................... 49 7.4 IPv6 Backbone Network Solution .................................................................................................................. 51 8 Operation and Maintenance ..................................................................................................... 52 8.1 Operation and Maintenance ........................................................................................................................... 52 8.1.1 System Configuration Management ...................................................................................................... 52 8.1.2 System Management and Maintenance ................................................................................................. 53 8.1.3 Device Operation Status Monitoring ..................................................................................................... 53 8.1.4 System Service and Status Tracking ..................................................................................................... 54 8.1.5 System Test and Diagnosis .................................................................................................................... 55 8.1.6 NQA ...................................................................................................................................................... 55 8.1.7 In-Service Debugging ........................................................................................................................... 55 8.1.8 Upgrade Features .................................................................................................................................. 56 8.1.9 License .................................................................................................................................................. 56 8.1.10 Other Features ..................................................................................................................................... 56 8.2 NMS ............................................................................................................................................................... 57 9 Abbreviation ................................................................................................................................ 58 Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. vii HUAWEI NetEngine5000E Core Router NE5000E Product Description 1 1 Product Positioning and Features Product Positioning and Features About This Chapter 1.1 Product Positioning 1.2 Product Features 1.1 Product Positioning The Huawei NetEngine5000E (NE5000E) core router is a router with large capacities and high performance which is developed to meet the requirement of carrier-class reliability. Based on the powerful Versatile Routing Platform (VRP), the NE5000E provides strong switching capabilities, dense ports, and high reliability. NE5000Es mainly serve as super-core nodes on carriers' backbone networks, core nodes on Metropolitan Area Networks (MANs), egress in the large-scale Internet Data Center (IDC), or core nodes on large-scale enterprise networks. NE5000E clusters are positioned as super-core nodes on backbone networks, supporting Layer 3 routing and Multiprotocol Label Switching (MPLS) forwarding. In an NE5000E cluster, a Cluster Central Chassis (CCC) functions as a level-2 switching module and routing engine module in a three-stage switch fabric; a Cluster Line-card Chassis (CLC) functions as a level-1 or level-3 switching module and forwarding module. V800R003 has the following types of chassis: Issue 01 (2011-09-15) CCC Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 1 HUAWEI NetEngine5000E Core Router NE5000E Product Description 1 Product Positioning and Features NE5000E CLC It provides 16 LPU slots, with a maximum of 100 Gbit/s for each slot. NE5000E-X16 CLC It provides 16 LPU slots, with a maximum of 200 Gbit/s for each slot. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 2 HUAWEI NetEngine5000E Core Router NE5000E Product Description 1 Product Positioning and Features V800R003 has the following cluster models. Cluster Model Description CCC-0 Consists of two Cluster Line-card Chassis (CLCs). An NE5000E and an NE5000E-X16 can be used together. CCC-1 Consists of one CCC and N (N <= 4) CLCs. CLCs can be all NE5000Es, all NE5000E-X16s, or a combination of NE5000Es and NE5000E-X16s . CCC-2 Consists of two CCCs and N (N <= 8) CLCs. CLCs can be all NE5000Es, all NE5000E-X16s, or a combination of NE5000Es and NE5000E-X16s . The NE5000E series include a single NE5000E, a single NE5000E-X16, and an NE5000E cluster . 1.2 Product Features Powerful Forwarding Capability Designed with a hardware-based forwarding engine, the NE5000E series support full-duplex forwarding of IPv4, IPv6, and MPLS packets at the line rate on all interfaces, and also support ACL-based line rate forwarding. The NE5000E series support multicast traffic forwarding at line rate. The hardware of the NE5000E and NE5000E-X16 supports two-level multicast traffic replication: replication from Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 3 HUAWEI NetEngine5000E Core Router NE5000E Product Description 1 Product Positioning and Features Switch and Fabric Units (SFUs) to Line Processing Units (LPUs) and replication from the forwarding engine of an LPU to associated interfaces. An LPU supports the packet buffer, which ensures that no packet will be lost in the case of traffic burst. Complete QoS The NE5000E series provide complete Quality of Service (QoS) functions: Rule-based traffic classification: such as Layer 2, Layer 3 rules (IPv4), Layer 3 rules (IPv6), and MPLS rules. Differentiated service: Differentiated services are provided for traffic with different DSCP values, EXP values, 802.1p priorities, or IP precedence. Traffic marking: The DSCP values, EXP values, 802.1p priorities, or IP precedence of specific traffic can be modified based on a pre-defined policy. Traffic policing: All traffic or specific traffic on a specified interface can be monitored for traffic limiting. Congestion avoidance: Tail drop or WRED is used to discard certain packets in the queue to prevent queue overflow. Congestion management: Priority Queuing (PQ) and Weighted Fair Queuing (WFQ) are provided so that fair queue scheduling is guaranteed and services with a higher priority are processed preferentially. Complete QoS solutions guarantee different delays, jitter, bandwidth, and packet loss ratios for different services. These solutions guarantee the launch of carrier-class services such as Voice over IP (VoIP) and IPTV services, and meets the requirements of the development of IP networks borne with multiple services. Excellent Security Design The NE5000E series provide multiple security measures to protect the data of Internet Service Providers (ISPs) and users. The measures can protect against Denial of Service (DoS) attacks, illegal access, and traffic overload on the control plane. The NE5000E series with a distributed structure allow the separation between the data plane and the control plane, and provides industry-leading security performance. The NE5000E series provide the following security features: Three user authentication modes: local authentication, Remote Authentication Dial In User Service (RADIUS) authentication, and HUAWEI Terminal Access Controller Access Control System (HWTACACS) authentication Hardware-based packet filtering and sampling, which guarantee high performance and high scalability Plain-text authentication and Message Digest 5 (MD5) authentication of OSPF, IS-IS, RIP, and BGP-4 packets ACL based on the forwarding and control planes Unicast Reverse Path Forwarding (URPF), which checks the source address validity and discards invalid packets Generalized TTL Security Mechanism (GTSM) Lawful interception, which allows the NE5000E to receive configuration information from the interception management center and send the intercepted traffic to the interception management center (Intercepted information includes the content of Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 4 HUAWEI NetEngine5000E Core Router NE5000E Product Description 1 Product Positioning and Features communication, such as email content and VoIP packets, and intercept related information, such as the address, time, and network location.) BGP Flow Specification is supported. The ACL carried in a BGP Flow Specification route or the local policy that the route attribute matches is used to filter traffic. Complete IPv4/IPv6 Solutions The NE5000E series support the IPv4/IPv6 dual stack and provide complete IPv6 features and solutions to smooth migration from IPv4 networks to IPv6 networks. Support multiple types of IPv6 over IPv4 tunnels. Support large-capacity routing tables and forwarding tables, which meets the requirements of VPN Provider Edges (PEs) and future service expansion. Support distributed forwarding of IPv4/IPv6 and Multiprotocol Label Switching (MPLS) packets. Good Compatibility and Scalability The NE5000E series have good rollback compatibility and scalability: A single chassis can be smoothly expanded to CCC-0, CCC-1 or CCC-2. CCC-0 can be smoothly expanded to CCC-1 and CCC-2. CCC-1 can be smoothly expanded to CCC-2. A cluster can be rolled back to a single chassis. Carrier-class Reliability and Manageability The NE5000E series are of a carrier-class design and support hot swap of boards. The NE5000E or NE5000E-X16 can be installed in an N68E cabinet or a standard 19-inch cabinet. The NE5000E series also provide a powerful monitoring system. The Main Processing Units (MPUs) on the NE5000E series manage and maintain the entire system. MPUs manage, monitor, and maintain the boards, fan modules, and power modules on the NE5000E series. The NE5000E series comply with the Electro Magnetic Compatibility (EMC) standard. The modular design of the system achieves EMC isolation between boards. The NE5000E series fully meet the requirements of carrier-class high-end routers for high reliability. In terms of system design and implementation, the NE5000E series provide the following features to ensure high reliability. Table 1-1 Features that ensure high reliability Item Description System protection mechanism In a cluster, CCCs manage all CLCs in a centralized manner. In a cluster, CCCs can debug and diagnose CLCs. The boards, power modules, and fans are hot swappable. In a cluster, the MPUs on each chassis work in 1:1 backup mode. Key parts such as power modules, fan modules, clock modules, and management buses are backed up. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 5 HUAWEI NetEngine5000E Core Router NE5000E Product Description Item 1 Product Positioning and Features Description Protection against faults In CCC-0, if a serious fault occurs on the slave chassis or a channel between the master and slave chassis is cut off, the master chassis can work independently. In CCC-1 and CCC-2, if a CLC becomes faulty, the other CLCs will not be affected. In CCC-2, the two CCCs work in real-time hot backup mode. If the master CCC becomes faulty, the slave CCC switches to the master state and works properly. If an exception occurs, the system can restart automatically and recover. If an exception occurs on a board, the system will reset and recover the board. Protection against over-current and over-voltage is provided to protect power modules and interfaces. Protection against mis-insertion of boards is provided. Alarm monitoring Voltage and ambient temperature monitoring Reliability design Alarm prompts, alarm indications, operating status, and alarm status of power modules can be queried. Alarms of high or low receiving optical power are supported. Alarms of CF card insertion and removal are supported. Alarm prompts, alarm indications, operating status, and alarm status can be queried. The ambient environment can be monitored. Control channels are separated from service channels so that the control channels are congestion-free. The system supports a complete fault detection mechanism for the system and boards, and alarm functions provided by alarm indicators and the Network Management System (NMS). Reliability design for the control channels between chassis in a cluster: Handshake packets between chassis are forwarded preferentially. Acknowledgement and retransmission mechanisms are provided for handshake packets. Overload check is provided for the control channels between chassis. Alarms about exceptions in the control channels can be reported. Reliable upgrade Issue 01 (2011-09-15) In-service patching is supported. In-Service Software Upgrade (ISSU) is supported, which shortens service interruption. Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 6 HUAWEI NetEngine5000E Core Router NE5000E Product Description Item 1 Product Positioning and Features Description In-service upgrade of the BootROM is supported. The error checking and correcting (ECC) of the Random Access Memory (RAM) is supported. Fault tolerance design Data backup Hot backup of data between the master and slave units is supported. If the master unit fails, the slave unit automatically replaces the master unit and transmits data. This ensures that no data is lost. The BootROM can be automatically upgraded and restored. Configuration files can be backed up to the remote File Transfer Protocol (FTP) server. Correct configuration files can be selected and executed automatically. System software exceptions can be monitored, automatically removed, and recorded. Operation security Passwords are used for system operations to ensure better security. User levels and command levels can be configured to achieve hierarchical protection of commands. The configuration terminal can be locked by using commands so that the terminal cannot be used by unauthorized users. Prompts are provided to prevent improper operations. For example, if a user runs a command that may affect system performance, the system will prompt the user whether to continue the operation. Operation and maintenance center The universal network management platform developed by Huawei is used. Flexible VR Functions As an important feature of the new-generation IP bearer devices, Virtual Router (VR) plays an active role in operators' centralized operation and capital expenditure (CAPEX) and operational expenditure (OPEX) reduction. By means of VR, operators divide large Physical Routers (PRs) into multiple small separate VRs, optimizing physical resource allocation. The following functions are supported by VR: Reduces CAPEX and OPEX. Flattens networks. Multi-service network Different services are deployed on different VRs, forming a logical multi-service network. This isolates different types of services to improve security and reliability. Issue 01 (2011-09-15) Verification of new services Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 7 HUAWEI NetEngine5000E Core Router NE5000E Product Description 1 Product Positioning and Features New services, such as IPv6 and video services, can be verified on VRs, which isolate services and have no impact on the existing network applications. Perfect L2VPN Solution MPLS L2VPN is a technology that transparently transmits Layer 2 user data over an MPLS network. From users' perspective, an MPLS network is a Layer 2 switching network and Layer 2 connections can be set up between nodes on the MPLS network. MPLS L2VPN can be classified into VPLS and VPWS. V800R003C00 supports VPWS, but not VPLS. Virtual Private Wire Service (VPWS) is a technology that transmits Layer 2 services by emulating basic behaviors and features of services such as Ethernet, synchronous optical network (SONET), and synchronous digital hierarchy (SDH) services on a packet switched network (PSN). It is a type of point-to-point L2VPN service transmitted over the public network. In VPWS, two sites can communicate as if they were directly connected by a link; however, more than two sites cannot communicate at the same time at the service provider. Flexible Rollback Configuration Rollback is an important means of configuration management, which is used in network operation and maintenance and is significant for device maintenance on existing networks. Configuring rollback can reduce the operator error ratio and improve device maintenance efficiency. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 8 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture 2 Product Architecture About This Chapter 2.1 Physical Architecture 2.2 Logical Architecture 2.3 Software Architecture 2.1 Physical Architecture Physical Architecture of a CLC An NE5000E and NE5000E-X16 CLC consists of the following systems: Power distribution system Heat dissipation system NMS Functional host system The functional host system is composed of a system backplane, MPUs, LPUs, and SFUs. The functional host system processes data on CLCs, monitors, and manages the other systems, such as power distribution system and heat dissipation system. In addition, the functional host system uses a network management interface to connect to the NMS. Figure 2-1 shows the functional host system of a CLC. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 9 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture Figure 2-1 Diagram of the functional host system of a CLC Backplane Monitoring unit Management unit Monitoring bus Management bus Monitoring bus Management bus (1) POS/ Ethernet Physical interface unit Forwarding unit Serial link group Monitoring bus Management bus (1) POS/ Ethernet Monitoring unit Monitoring bus Management unit Management bus Physical interface unit Forwarding unit Monitoring bus Management bus (1) Serial link group System monitoring unit Management bus switching unit System monitoring unit MPU/ SRU (Master) System monitoring unit Management bus switching unit System monitoring unit MPU/ SRU (Slave) Switching network monitoring unit Switching network control unit Switching network SFU module (1) The link connects to the managment bus switching unit of another SRU Physical Architecture of a CCC A CCC consists of the following systems: Power distribution system Power modules work in 1+1 backup mode. Together with the power backplane and the system backplane, the power modules supply power for boards in different areas and provide independent -48 V power for fan modules. Heat dissipation system The front and rear fan modules dissipate heat for front and rear boards. NMS Functional host system The functional host system consists of a system backplane, MPUs, optical flexible cards (OFCs), Electrical Cross Units (ECUs), SFUs, and internal communication units (ICUs). The functional host system manages and controls the other systems, and provides control and data channels. Figure 2-2 shows the functional host system of a CCC. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 10 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture Figure 2-2 Diagram of the functional host system of a CCC MPU System control unit GE Control channel of chassises Management bus switching unit 10M GE Control channel of chassises Internal Communication Unit Serdes Service channel of chassises Optical Flexible Localbus Card Power 10M Serdes Electric Cross Unit Power B a c k p l a n e Serdes . . . Switching network unit Serdes Physical Architecture of CCC-0 CCC-0 is the simplest cluster. In CCC-0, two CLCs (a master chassis and a slave chassis) are connected, as shown in Figure 2-3. In CCC-0, an NE5000E can be connected to an NE5000E-X16 . Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 11 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture Figure 2-3 Physical architecture of CCC-0 Based on the principle of centralized management, CCC-0 introduces the concepts of the master and slave chassis. The chassis in master mode is called a master chassis. It manages all parts in the entire system. All parts including boards, power modules, fan modules, and the liquid crystal display (LCD) must be registered with the master MPU on the master chassis. The chassis in slave mode is called a slave chassis. The functions of the MPUs on the slave chassis are simplified. In addition to providing control channels, the MPUs on the slave chassis provides only diagnostic and debugging functions, but does not support routing protocols, MPLS, Quality of Service (QoS), or multicast functions. The physical architecture of CCC-0 is similar to that of a CLC, which also includes the following systems: Power distribution system Functional host system Heat dissipation system NMS The power distribution system, heat dissipation system, and NMS of CCC-0 are the same as those of a CLC. Different from the functional host system of a CLC, the functional host system of CCC-0 consists of two parts: Issue 01 (2011-09-15) Functional host system of the master chassis: processes data for both the master and slave chassis. In addition, it monitors and manages the power distribution system and the Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 12 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture heat dissipation system. The functional host system of the master chassis uses a network management interface to connect to the NMS. Functional host system of the slave chassis: manages the slave chassis. The Routing Process Systems (RPSs) of both the slave chassis and master chassis are similar. The only difference is that the RPS of the slave chassis does not run any switching software or calculate routes. The RPS of the master chassis manages the entire system. The routing protocols are disabled on the slave chassis; static routes are not reported to the master chassis but reserved. Physical Architectures of CCC-1 In CCC-1, NE5000Es can be used together with NE5000E-X16s. CCC-1 consists of one CCCs and up to eight CLCs, as shown in Figure 2-4. Figure 2-4 Physical architecture of CCC-1 CCC-1 uses the levels 1, 2, and 3 switching fabric. A CLC in CCC-1 provides LPUs and a stage-1 and stage-3 switch fabric. A CCC provides a routing engine and a stage-2 switch fabric. Physical Architectures of CCC-2 In CCC-2, NE5000Es can be used together with NE5000E-X16s. CCC-2 consists of two CCCs and up to eight CLCs, as shown in Figure 2-5. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 13 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture Figure 2-5 Physical architecture of CCC-2 CCC-2 uses the levels 1, 2, and 3 switching fabric. A CLC in CCC-2 provides LPUs and a stage-1 and stage-3 switch fabric. A CCC provides a routing engine and a stage-2 switch fabric. 2.2 Logical Architecture Logical Architectures of a CLC and CCC-0 The logical architecture of a CLC consists of three planes: a data plane, a control and management plane, and a monitoring plane, as shown in Figure 2-6. Figure 2-6 Logical architecture of a CLC LPU LPU M o n ito rin g u n it M o n ito rin g u n it M o n ito rin g p la n e M o n ito rin g u n it C o n tro l a n d m anagem ent p la n e MPU M anagem ent u n it M anagem ent u n it S y s te m m o n ito rin g u n it M o n ito rin g u n it M anagem ent u n it S y s te m m o n ito rin g u n it S w itc h in g n e tw o rk c o n tro l u n it M anagem ent u n it F o rw a rd in g u n it D a ta p la n e F o rw a rd in g u n it LPU F o rw a rd in g u n it S w itc h in g n e tw o rk 交 换S网 板 FU F o rw a rd in g u n it LPU CCC-0 uses the same logical architecture which consists of a data plane, a control and management plane, and a monitoring plane, as shown in Figure 2-7. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 14 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture Figure 2-7 Logical architecture of CCC-0 LPU System monitoring unit Monitoring unit Management unit Management unit Data plane of the master chassis Monitoring unit Monitoring unit Monitoring plane Control & management plane LPU MPU Forwarding unit Forwarding unit LPU Forwarding unit Data plane of the slave chassis Forwarding unit LPU Monitoring unit Management unit System monitoring unit Switching network control unit SFU Switching network Management unit Forwarding unit Forwarding unit LPU Forwarding unit Switching network SFU Forwarding unit LPU The data plane is responsible for high speed processing and congestion-free switching of data packets. It encapsulates and decapsulates packets, forwards IPv4/IPv6/MPLS packets, performs QoS and queue scheduling, switches data at a high speed, and collects statistics. The control and management plane is the core of the entire system. It controls and manages the system. The control and management unit processes protocols and signaling, configures and maintains the system status, and reports and controls the system status. The monitoring plane monitors the ambient environment of the system independently. It detects voltages and temperatures, and controls fan modules and power-on and power-off of the system, thus ensuring system security and stability. In addition, if a unit becomes faulty, the monitoring plane can isolate the fault immediately to guarantee the proper operation of the other units. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 15 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture Logical Architecture of a Cluster CCC-1 and CCC-2 The logical architectures of CCC-1 and CCC-2 are the same as that of a CLC, consisting of the following logical functional modules: Routing control module Management control module Monitoring plane Switch fabric Forwarding plane The preceding modules of CCC-1 and CCC-2 have different implementations from that of a CLC. A cluster is composed of two parts: CCCs and CLCs. A CLC can be an NE5000E or NE5000E-X16 that supports the cluster cascading function. A CLC consists of the following functional modules: Monitoring plane Management control module Forwarding plane Switch fabric (S1 and S3) A CCC consists of the following functional modules: Monitoring plane Management control module Switch fabric (S2) Routing control module All functional modules are distributed in a CCC and a CLC as shown in Figure 2-8. The CCC and the CLC exchange data by using control and data channels. Figure 2-8 Logical architecture of a cluster Monitoring plane Monitoring plane Control and management plane Control and management plane Forwarding plane Level 1/3 switching plane Forwarding plane CLC Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. Level 2 switching plane CCC 16 HUAWEI NetEngine5000E Core Router NE5000E Product Description 2 Product Architecture 2.3 Software Architecture The NE5000E series provide a reliable, scalable, and flexible software architecture, which has a large capacity, supports multi-process and full-service, and meets customers' requirements. Figure 2-9 Software Architecture Issue 01 (2011-09-15) OI I M R B P T U SS I RG S G I C D IP M PI B M D P M P P F S P P T A P H V R R P D L U P P L A N C N K SSP SMP BOS DIRVER NP LOGIC Forwarding Forwarding B V S P A N Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. C S L N I M P N E T X C P O L N F 17 HUAWEI NetEngine5000E Core Router NE5000E Product Description 3 Technical Specifications 3 Technical Specifications About This Chapter 3.1 Physical Specifications 3.2 System configuration 3.1 Physical Specifications Table 3-1 Physical specifications of an NE5000E-X16 CLC Item Description Dimensions (W x D x H) Dimensions of the chassis body: 442 mm x 650 mm x 1420 mm (32 U) (17.40 in. x 25.59 in. x 55.91 in.) Dimensions of the chassis body together with cable racks and front and back attachments: 442 mm x 770 mm x 1420 mm (32 U) (17.40 in. x 30.31 in. x 55.91 in.) Installation location N68E cabinet or a standard 19-inch cabinet Weight Full configuration : 280 kg (661.5 lb) Maximum power 10402 W Heat dissipation 35524 BTU/hour DC input voltage Rated voltage -48 V Maximum voltage -72 V to -38 V AC input voltage Rated voltage 110 V to 220 V Maximum voltage 90 V to 290 V Operating temperature Long-term 0°C (32°F) to 40°C (104°F) Short-term -5°C (23°F) to 50°C (122°F) Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 18 HUAWEI NetEngine5000E Core Router NE5000E Product Description Item 3 Technical Specifications Description Remarks Restriction on the temperature variation rate: 30°C (86°F) per hour Storage temperature -40°C(-40°F) to 70°C(158°F) Operating relative humidity Long-term 5% RH to 85% RH, no condensing Short-term 5% RH to 95% RH, no condensing Storage humidity 0% RH to 95% RH, no condensing Long-term operating altitude Lower than 3000 meters (9842.40 ft.) Storage altitude Lower than 5000 meters (16404.00 ft.) Table 3-2 Physical specifications of an NE5000E CLC Item Description Dimensions (W x D x H) 442 mm x 669 mm x 1600 mm (36 U) (17.40 in. x 26.34 in. x 62.99 in.) Installation location N68E cabinet or a standard 19-inch cabinet Maximum power Full configuration: 7017 W Heat dissipation 23906 BTU/hour Weight Full configuration 268 kg (590.94 lb) DC input voltage Rated voltage -48 V to -60 V Maximum voltage -38 V to -72 V AC input voltage Rated voltage 200 V AC to 240V AC (220 V power supply) 110 V AC (110 V power supply) Maximum voltage 180 V AC to 264 V AC (220 V power supply) 100 V AC to 120 V AC (110 V power supply) Operating temperature Long-term 0°C (32°F) to 40°C (104°F) Short-term -5°C (23°F) to 50°C (122°F) Storage temperature -40°C(-40°F) to 70°C(158°F) Operating relative humidity Long-term 5% to 85% Short-term 5% to 95% Storage humidity 5% to 95% Long-term operating altitude Lower than 3000 meters (9842.40 ft.) Storage altitude Lower than 5000 meters (16404.00 ft.) Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 19 HUAWEI NetEngine5000E Core Router NE5000E Product Description 3 Technical Specifications Table 3-3 Physical specifications of a CCC Item Description Dimensions (W x D x H) 442 mm x 800 mm x 1241 mm (28 U) (17.40 in. x 26.34 in. x 62.99 in. ) Installation location N610E cabinet Weight Full configuration: 300 kg (661.50 lb) Maximum power CCC: 4400 W 1+4 cluster: 34000 W 2+2 cluster: 23600 W 2+4 cluster: 38400 W 2+8 cluster: 68000 W Heat dissipation CCC: 15026 BTU/hour 1+4 cluster: 116114 BTU/hour 2+2 cluster: 80596 BTU/hour 2+4 cluster: 131140 BTU/hour 2+8 cluster: 232228 BTU/hour DC input voltage Rated voltage -48 V Maximum voltage -72 V to -38 V AC input voltage Rated voltage 110 V to 220 V Maximum voltage 90 V to 290 V Operating temperature Long-term 0°C (32°F) to 40°C (113°F) Short-term -5°C (23°F) to 50°C (131°F) Remarks Restriction on the temperature variation rate: 30°C (86°F) per hour Storage temperature -40°C(-40°F) to 70°C(158°F) Operating relative humidity Long-term 5% RH to 85% RH, no condensing Short-term 5% RH to 95% RH, no condensing Storage humidity 0% RH to 95% RH, no condensing Long-term operating altitude Lower than 3000 meters (9842.40 ft.) Storage altitude Lower than 5000 meters (16404.00 ft.) Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 20 HUAWEI NetEngine5000E Core Router NE5000E Product Description 3 Technical Specifications 3.2 System configuration Table 3-4 System configuration of a CCC Item System configuration Remarks Processor Dominant frequency: 1.5 GHz - BootROM 16 MB - SDRAM 4 GB - NVRAM 1MB - Flash 128 MB - CF card 4 GB An MPUA (CR55C-MPUA) has two 2 GB CF cards. The capacity of the CF card can be configured. Table 3-5 System configuration of a CLC and a CCC Item CF card Mem ory Back plan e capa city Swit chin g capa city Inter face capa city Asse mbly cabi net Num ber of LPU slots Num ber of MPU slots Num ber of SFU slots Maxi mum inter face rate NE50 00EX16 CLC 1 GB per CF card 4 GB mem ory on each MPU 30 Tbit/s (bidir ectio nal) 6.4 Tbit/s (bidir ectio nal) 3.2 Tbit/s (bidir ectio nal) 1 16 2 4 100 Gbit/ s 4 GB mem ory on each MPU 8 Tbit/s (bidir ectio nal) 2.56 Tbit/s (bidir ectio nal) 1.28 Tbit/s (bidir ectio nal) 1 16 2 4 100 Gbit/ s 4 GB mem ory - - - 1 - 2 8 - Two CF cards on each MPU NE50 00E CLC 1 GB per CF card Two CF cards on each MPU CCC Issue 01 (2011-09-15) 1 GB per CF Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 21 HUAWEI NetEngine5000E Core Router NE5000E Product Description Item CF card Mem ory card on each MPU Two CF cards on each MPU 3 Technical Specifications Back plan e capa city Swit chin g capa city Inter face capa city Asse mbly cabi net Num ber of LPU slots Num ber of MPU slots Num ber of SFU slots Maxi mum inter face rate CCC0 - - 30 Tbit/s x2 CLCs 6.4 Tbit/s x2 CLCs (bidir ectio nal) 3.2 Tbit/s x2 CLCs 2 32 2x2 CLCs 4x2 CLCs 100 Gbit/ s CCC1 - - 30 Tbit/s x4 CLCs 6.4 Tbit/s x4 CLCs (bidir ectio nal) 3.2 Tbit/s x4 CLCs 5 64 MPU s on CLC: 2x4 CLCs SFUs on CLC: 4x4 CLCs 100 Gbit/ s MPU s on CCC: 2x1 CCCs MPU s on CCC: 8x1 CCCs 6.4 Tbit/s x8 CLCs (bidir ectio nal) 3.2 Tbit/s x8 CLCs MPU s on CLC: 2x8 CLCs SFUs on CLC: 4x8 CLCs MPU s on CCC: 2x2 CCCs MPU s on CCC: 8x2 CCCs Accel eratio n ratio: 2:1 Bidir ectio nal - - CCC2 Rema rks Issue 01 (2011-09-15) - - - - 30 Tbit/s x8 CLCs Bidir ectio nal 10 - Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 128 - 100 Gbit/ s - 22 HUAWEI NetEngine5000E Core Router NE5000E Product Description 4 LPU 4 LPU The NE5000E series provide physical interfaces such as GE and POS interfaces. Using these interfaces, the NE5000E series can be connected to different types of network devices to meet different networking requirements. Fixed Interface LPUs Table 4-1 Fixed interface LPUs Name Remarks 10-Port 1000Base-SFP Optical Interface Line Processing Unit B - 1-Port OC-48c/STM-16c POS-SFP Optical Interface Enhanced Line Processing Unit B - 2-Port OC-48c/STM-16c POS-SFP Optical Interface Enhanced Line Processing Unit B - 4-Port OC-48c/STM-16c POS-SFP Optical Interface Enhanced Line Processing Unit B - 8-Port OC-3c/STM-1 POS-SFP Optical Interface Line Processing Unit B - 4-Port OC-12c/STM-4c POS-SFP Optical Interface Line Processing Unit B - 8-Port OC-12c/STM-4c POS-SFP Optical Interface Line Processing Unit B - 1-Port OC-192c/STM-64c POS-XFP Optical Interface Line Processing Unit B - 1-Port 10GBase LAN-XFP Optical Interface Line Processing Unit B - 1-Port 10GBase WAN-XFP Optical Interface Line Processing Unit B - 1-Port OC-192c/STM-64c POS Single-mode 1310nm 2km-LC Optical Interface Line Processing Unit B - Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 23 HUAWEI NetEngine5000E Core Router NE5000E Product Description 4 LPU Name Remarks 1-Port OC-192c/STM-64c POS Single-mode 1550nm 40km-LC Optical Interface Line Processing Unit B - 1-Port OC-192c/STM-64c POS Single-mode 1550nm 80km-LC Optical Interface Line Processing Unit B - 1-Port 10GE LAN Single-mode 1310 nm 10 km-LC Optical Interface Line Processing Unit B - 1-Port 10GE LAN Single-mode 1550 nm 40 km-LC Optical Interface Line Processing Unit B - 1-Port 10GE WAN Single-mode 1310 nm 10 km-LC Optical Interface Line Processing Unit B - 1-Port 10GE WAN Single-mode 1550 nm 40 km-LC Optical Interface Line Processing Unit B - 20-Port 1000Base-SFP Optical Interface Line Processing Unit C - 8-Port OC-48c/STM-16c POS-SFP Optical Interface Line Processing Unit C - 2-Port OC-192c/STM-64c POS-XFP Optical Interface Line Processing Unit C - 2-Port 10GBase LAN-XFP Optical Interface Line Processing Unit C - 2-Port 10GBase WAN-XFP Optical Interface Line Processing Unit C - 8-Port 10GBase LAN-XFP Line Processing Unit E - 16-Port OC-3c/STM-1c POS-SFP Line Processing Unit E - 8-Port OC-12c/STM-4c POS-SFP Line Processing Unit E - 1-Port OC-192c/STM-64c POS-XFP Line Processing Unit E - 2-Port OC-192c/STM-64c POS-XFP Line Processing Unit E - 4-Port OC-192c/STM-64c POS-XFP Line Processing Unit E - 1-Port OC-48c/STM-16c POS-SFP Line Processing Unit E - 2-Port OC-48c/STM-16c POS-SFP Line Processing Unit E - 4-Port OC-48c/STM-16c POS-SFP Line Processing Unit E - 8-Port OC-48c/STM-16c POS-SFP Line Processing Unit E - 1-Port 10GBase LAN-XFP Line Processing Unit E - 1-Port 10GBase WAN-XFP Line Processing Unit E - 2-Port 10GBase LAN-XFP Line Processing Unit E - 2-Port 10GBase WAN-XFP Line Processing Unit E - Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 24 HUAWEI NetEngine5000E Core Router NE5000E Product Description 4 LPU Name Remarks 4-Port 10GBase LAN-XFP Line Processing Unit E - 4-Port 10GBase WAN-XFP Line Processing Unit E - 10-Port 1000Base-X-SFP Line Processing Unit E - 20-Port 1000Base-X-SFP Line Processing Unit E - 1-Port 10GBase LAN-XFP Line Processing Unit E - 2-Port 10GBase LAN-XFP and 4-Port OC-48c/STM-16c POS-SFP Optical Interface Line Processing Unit - 2-Port 10GBase WAN-XFP and 4-Port OC-48c/STM-16c POS-SFP Optical Interface Line Processing Unit - 4-Port OC-48c/STM-16c POS-SFP and 10-Port 1000Base-SFP Optical Interface Line Processing Unit - 2-Port OC-192c/STM-64c POS-SFP and 4-Port OC-48c/STM-16c POS-SFP Optical Interface Line Processing Unit - 2-Port OC-192c/STM-64c POS-XFP and 10-Port 1000Base-SFP Optical Interface Line Processing Unit - 2-Port OC-192c/STM-64c POS-XFP and 2-Port 10GBase LAN-XFP Optical Interface Line Processing Unit - 2-Port OC-192c/STM-64c POS-XFP and 2-Port 10Base WAN-XFP Optical Interface Line Processing Unit - 4-Port 10GBase LAN-XFP Line Processing Unit E - 4-Port 10GBase WAN-XFP Line Processing Unit E - 4-Port OC-192c/STM-64c POS-XFP Line Processing Unit E - 8-Port OC-48c/STM-16c POS-SFP Line Processing Unit E - 40-port 1000Base-X-SFP Line Processing Unit - 1-Port 40G POS Line Processing Unit M - 1-Port 100GBase CFP Line Processing Unit (NE5000E LPUI-100) - 10-Port 10GBase LAN/WAN-XFP Integrated Line Processing Unit (NE5000E LPUI-100) - 20-Port 10GBase LAN/WAN-XFP Line Processing Unit(NE5000E LPUI-200) - 2-Port 100GBase Line Processing Unit (NE5000E LPUI-200) - 1-Port 100GBase + 10-port 10GBase LAN/WAN-SFP Line Processing Unit (NE5000E LPUI-200) - Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 25 HUAWEI NetEngine5000E Core Router NE5000E Product Description 4 LPU LPUs for FPICs Table 4-2 LPUs for FPICs LPU Name Remarks 2-Port OC-192c/STM-64c POS/OTU2-XFP Flexible Card(Dynamic switch between POS and OTN)(CP100,1 sub-slot) - 2-Port 10GBase LAN-XFP Flexible Card(CP100,1 sub-slot) - 2-Port 10GBase LAN/WAN-XFP Flexible Card(CP100,1 sub-slot) - 1-Port OC-768c/STM-256c POS-2KM-LC Flexible Card(CP100,2 sub-slots) - 24-Port 100/1000Base-SFP Flexible Card(CP100,2 sub-slots) - 5-Port 10GBase LAN/WAN-XFP Flexible Card(CP100,2 sub-slots) - 5-Port 10GBase LAN-XFP Flexible Card(CP100,2 sub-slots) - 1–Port 40GE Half-Width Flexible Interface Daughter Card - Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 26 HUAWEI NetEngine5000E Core Router NE5000E Product Description 5 Link Features 5 Link Features About This Chapter 5.1 Ethernet Link Features 5.2 POS Link Features 5.1 Ethernet Link Features The NE5000E series provide Layer 3 Ethernet interfaces, including GE electrical interfaces, GE optical interfaces, 10GE optical interfaces, and 100GE optical interfaces, and supports IPv4/IPv6, MPLS, QoS, and multicast services. The Layer 3 Ethernet interfaces on the NE5000E series support the following features: VLANIF interfaces LACP (802.3ad) The NE5000E series support link aggregation in static mode. Issue 01 (2011-09-15) Layer 3 Eth-Trunk − Ethernet interfaces on different CLCs can be bundled into an Eth-Trunk. − Ethernet interfaces on different boards in the same CLC can be bundled into an Eth-Trunk. − A maximum of 32 physical Ethernet interfaces can be bundled into an Eth-Trunk. The Eth-Trunk interface functions as the common Ethernet interface and supports various types of services. − Interfaces working at different rates can be bundled into an Eth-Trunk. − The Eth-Trunk can work in active/standby mode, and performs the active/standby switchover automatically based on the link status of interfaces. − Member interfaces of an Eth-Trunk can be manually added or deleted. The NE5000E series can also sense the Up or Down state of the member interfaces and dynamically adjust the bandwidth of the Eth-Trunk accordingly. Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 27 HUAWEI NetEngine5000E Core Router NE5000E Product Description 5 Link Features 5.2 POS Link Features The NE5000E series provide POS interfaces working at 155Mbit/s, 622Mbit/s, 2.5 Gbit/s, 10 Gbit/s, or 40 Gbit/s. POS interfaces support the following features: SDH and SONENT encapsulation The physical layer of the Packet Over SDH/SONET (POS) link adopts Synchronous Optical Network (SONET) defined by the American National Standards Institute (ANSI) or Synchronous Digital Hierarchy (SDH) defined by the International Telecommunication Union-Telecommunication Standardization Sector (ITU-T). POS interfaces support various types of alarms for the physical layer. Point-to-Point Protocol (PPP) PPP supports: − Link Control Protocol (LCP) − Internet Protocol Control Protocol (IPCP) − Multi-Protocol Label Switching Control Protocol (MPLSCP) − Password Authentication Protocol (PAP) authentication − Challenge Handshake Authentication Protocol (CHAP) authentication High-level Data Link Control (HDLC) protocol IP-Trunk If HDLC is used as the link layer encapsulation type, multiple POS interfaces can be bundled into a logical IP-Trunk to support IP bundling. The NE5000E series support the following types of IP bundling: Issue 01 (2011-09-15) − Inter-board IP bundling − IP bundling of channels working at different rates − Dynamic creation and deletion of IP-Trunk member interfaces − Addition of a POS interface to an IP-Trunk using a command Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 28 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features 6 Service Features About This Chapter 6.1 Ethernet Features 6.2 IP Features 6.3 Routing Protocols 6.4 MPLS Features 6.5 VPN Features 6.6 QoS Features 6.7 Traffic Load Balancing 6.8 Traffic Statistics Collection 6.9 Security Features 6.10 Network Reliability 6.1 Ethernet Features The Ethernet interfaces on the NE5000E series can work in the routed mode and provide IPv4/IPv6, MPLS, QoS, and multicast services. 6.2 IP Features 6.2.1 IPv4/IPv6 Dual-Stack The IPv4/IPv6 dual-stack has good interoperability and is easy to implement. Figure 6-1 shows the structure of the IPv4/IPv6 dual stack. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 29 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features Figure 6-1 Structure of the IPv4/IPv6 dual stack IPv4/IPv6 Application TCP UDP IPv4 IPv6 Link Layer 6.2.2 IPv4 Features The NE5000E series support the following IPv4 features: TCP/IP protocol suite, including ICMP, IP, TCP, UDP, socket (TCP/UDP/Raw IP), and ARP FTP server/client and TFTP client Ping, tracert, and Network Quality Analysis (NQA) NQA can detect whether ICMP, TCP is enabled and test the response time of a service. IP policy-based routing, which specifies the next hop based on packet attributes without searching a routing table for routes Flow-based next hop Load balancing based on IP policy-based routing Equal Cost Multiple Path (ECMP) Unequal Cost Multiple Path (UCMP) 6.2.3 IPv6 Features The NE5000E series support the following IPv6 features: IPv6 Neighbor Discovery (ND) Path MTU (PMTU) discovery TCP6, IPv6 ping, IPv6 tracert, and IPv6 socket IPv6 policy-based routing 6VPE, and 6VPE FRR 6.2.4 IPv4/IPv6 Transition Technology The NE5000E series support the following functions: IPv6 over IPv4 tunnel The NE5000 series support the following IPv6 over IPv4 tunnels: Issue 01 (2011-09-15) − IPv6 manual tunnel − 6to4 tunnel − 6to4 relay tunnel Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 30 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features 6PE, and 6PE FRR 6.3 Routing Protocols 6.3.1 Unicast Routing Features The following NE5000E series support the following unicast routing features: IPv4 routing protocols, including Routing Information Protocol (RIP), Open Shortest Path First (OSPF), Intermediate System-Intermediate System (IS-IS), and BGPv4 IPv6 routing protocols, including Routing Information Protocol Next Generation (RIPng), OSPFv3, IS-ISv6, and BGP4+ Static routes that are manually configured by the administrator to simplify network configurations and improve network performance Large-capacity routing table that can effectively support the operation of a MAN Routing policies that can be used to select optimal routes Import of routing information from other routing protocols Application of a routing policy in advertising and receiving routes, and filtration of routes by using route attributes Configuration of load balancing and maximum number of equal-cost routes Password authentication and MD5 authentication to improve network security Restart of protocol processes by using command lines RIP version1 (classful routing protocol) and RIP version2 (classless routing protocol) Advertisement of a default route from RIP to its peers and setting of the route metric RIP triggered updates Suppression of RIP packet sending and receiving on a specified interface Association between OSPF and BGP Association between OSPF and LDP OSPF fast convergence, which can be achieved by the following means: RIP OSPF − Adjusting the interval of LSAs − OSPF NSR − Configuring BFD for OSPF Non-Stop Forwarding (NSF) that ensures high reliability Suppression of OSPF packet sending and receiving on a specified interface OSPF I-SPF and IS-IS I-SPF (I-SPF calculates only changed routes rather than all routes at a time) OSPF GTSM Two-level IS-IS in a routing domain IS-IS Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 31 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features IS-IS I-SPF (I-SPF calculates only changed routes rather than all routes at a time) Association between IS-IS and LDP IS-IS NSR IS-IS multi-topology (MT) IS-IS shortcut (AA) and advertise (FA) Policy-based route selection by BGP when there are multiple routes to the same destination BGP rout reflector (RR), which addresses the problem of high costs of full connections when there are many IBGP peers Sending of BGP update packets that do not carry private AS numbers Route dampening, which suppresses unstable routes (unstable routes are neither added to the BGP routing table nor advertised to other BGP peers) BGP fast convergence by means of the new route convergence mechanism and algorithm, Including: BGP Indirect next hop Recursive on-demand (ROD) BGP NSR BGP GTSM Four-byte AS number BGP indirect next hop IPv4 unicast address family IPv4 multicast address family IPv4 private address family VPNv4 address family IPv6 unicast address family IPv6 private address family VPNv6 address family BGP DUAL AS BGP confederation 6.3.2 Multicast Routing Features The NE5000E series provide the following multicast features: Multicast protocols: Internet Group Management Protocol (IGMP , including IGMPv1 , IGMPv2 and IGMPv3), Protocol Independent Multicast-Sparse Mode (PIM-SM), Multicast Source Discovery Protocol (MSDP), and Multi-protocol Border Gateway Protocol (MBGP) Reverse Path Forwarding (RPF) PIM-SSM Anycast Rendezvous Point (RP) IPv6 multicast routing protocols: PIM-IPv6-SM and PIM-IPv6-SSM Multicast Listener Discovery (MLD), which can be: Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 32 HUAWEI NetEngine5000E Core Router NE5000E Product Description − 6 Service Features MLDv1 (defined in RFC 2710) MLDv1 is derived from IGMPv2 and supports the Any-Source Multicast (ASM) model. With the help of SSM mapping, MLDv1 supports the Source-Specific Multicast (SSM) model. − MLDv2 (defined in RFC 3810) MLDv2 is derived from IGMPv3 and supports ASM and SSM models. Multicast static routes Configuration of multicast protocols on physical interfaces such as Ethernet and POS interfaces, and IP-Trunk and Eth-Trunk interfaces Filtering of routes based on a routing policy in receiving, importing, and advertising multicast routes, and filtering and forwarding of multicast packets based on a routing policy in forwarding IP multicast packets Addition and deletion of dummy entries 6.4 MPLS Features The NE5000E series support MPLS and dynamic Label Switched Paths (LSPs). Dynamic LSPs are established dynamically by the Label Distribution Protocol (LDP) or Resource Reservation Protocol (RSVP)-TE based on routing information. Basic Features The NE5000E series support the following MPLS functions: Basic MPLS functions, service forwarding, and LDP (MPLS signaling distributes labels, sets up LSPs, and transfers parameters used for LSP establishment) LDP for IPv6 LDP supports: − Label distribution mode: DU − Independent label distribution control mode and sequential label control mode − Liberal label retention mode − Loop detection mechanisms: maximum number of hops and path vector MPLS ping and tracert, and LSP availability check by using MPLS Echo Request and MPLS Echo Reply packets LSP-based traffic statistics collection MPLS QoS, mapping of the ToS field in IP packets to the EXP field in MPLS packets, and MPLS uniform, pipe, and short pipe modes MPLS trap function LDP GTSM The NE5000E series can serve as Label Edge Routers (LERs) or Label Switch Routers (LSRs). An LER is an edge device on the MPLS network. It classifies services, distributes labels, and adds or removes labels. An LSR is a core router on the MPLS network. It switches and distributes labels. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 33 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features MPLS TE The MPLS TE technology integrates the MPLS technology with traffic engineering. It can reserve resources by setting up LSP tunnels for a specified path in an attempt to avoid network congestion and balance network traffic. In the case of resource scarcity, MPLS TE can preempt bandwidth resources of the LSPs with low priorities. This meets the demands of the LSPs with large bandwidth or for important services. In addition, when an LSP fails or a node is congested, MPLS TE can protect the network communication through the backup path and the fast reroute (FRR) function. MPLS TE provides the following functions: Processing various types of Constrained Route-Label Switched Paths (CR-LSPs) CR-LSPs are classified into the following types: RSVP-TE Auto route Auto routing works in either of the following modes: IGP shortcut: An LSP is not advertised to neighboring routers. Therefore, the routers cannot use the LSP. Forwarding adjacency: An LSP is advertised to neighboring routers. Therefore, the routers can use the LSP. FRR The switching time of TE FRR can reach 50 ms. It can minimize data loss when network failures occur. Auto FRR Auto FRR is an extension of MPLS TE FRR. You can create a bypass tunnel by configuring the attributes of the bypass tunnel, global auto FRR, and interface-based auto FRR on the primary tunnel. If the primary tunnel changes, the old bypass tunnel will be deleted automatically and a new bypass tunnel will be set up. CR-LSP backup The NE5000E series support the following backup modes: − Hot backup: A backup CR-LSP is set up immediately after a primary CR-LSP has been set up. If the primary CR-LSP fails, MPLS TE switches traffic to the backup CR-LSP immediately. − Common backup: A backup CR-LSP is set up when the primary CR-LSP fails. LDP over TE On existing networks, not all devices support MPLS TE. Maybe only the core devices support TE whereas the edge devices use LDP. In this case, LDP over TE is introduced. LDP over TE indicates that a TE tunnel is considered as a hop of the entire LDP LSP. 6.5 VPN Features 6.5.1 Tunnel Policy Tunnel policies are used to select tunnels based on destination IP addresses. Applications that require tunnels select suitable tunnels based on tunnel policies. If no tunnel policy is configured, the tunnel management module selects tunnels based on the default policy. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 34 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features The NE5000E series support the following tunnel policies: If the tunnel policy is in select-sequence mode, you can specify the sequence based on which tunnels are selected, and the number of tunnels for load balancing. Among all tunnels to the same destination, the tunnels listed in the front will be selected as long as they are Up, regardless of whether they have been selected by other services. The tunnels listed in the back will not be selected unless load balancing is required or the tunnels in the front are Down. VPN tunnel binding means that the remote end of the VPN on a PE of the VPN backbone network is bound to a specific MPLS TE tunnel. The data from the VPN to the remote end is transmitted through the dedicated TE tunnel. The TE tunnel bound to the remote end transmits only specified VPN services, which ensures QoS for the specified VPN services. 6.5.2 VPN Tunnel The NE5000E series support the following types of VPN tunnels: LSP TE tunnel 6.5.3 BGP/MPLS L3VPN The NE5000E series implement MPLS/BGP L3VPN to provide operators with end-to-end VPN solutions. In this manner, VPN services can be provided for users as a new value-added service. Inter-AS VPN The NE5000E series support the following inter-AS VPN solutions defined in RFC 2547bis: VPN Instance to VPN Instance: The sub-interface between Autonomous System Boundary Routers (ASBRs) manages VPN routes, which is called Inter-Provider Backbones Option A. EBGP redistribution of labeled VPN-IPv4 routes: ASBRs advertise labeled VPN-IPv4 routes to each other through MP-EBGP, which is also called Inter-Provider Backbones Option B. This solution is in compliance with RFC 3107. In this solution, PEs advertise labeled VPN-IPv4 routes to each other through Multihop MP-EBGP. This solution is also called Inter-Provider Backbones Option C. IPv6 VPN Currently, the NE5000E series support the following IPv6 VPN solutions: Intranet VPN, Extranet VPN, Hub&Spoke, and Inter-AS or Multi-AS Backbones VPN. CEs can use Layer 3 interfaces, such as Ethernet, POS, and VLAN interfaces, to access the L3VPN. The route between a CE and a PE can be a static route, a BGP route, an OSPF route, or an IS-IS route. 6.5.4 BGP/MPLS L2VPN The NE5000E series use MPLS/BGP L2VPN to transparently transmit Layer 2 user data on MPLS networks. From users' perspective, an MPLS network is a Layer 2 switching network and Layer 2 connections can be set up between nodes on the MPLS network. The MPLS L2VPN has one networking modes: VPLS. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 35 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features 6.6 QoS Features The NE5000E series support the following QoS functions: QPPB On the NE5000E series, QoS Policy Propagation Through the Border Gateway Protocol (QPPB) classifies packets and defines QoS policies based on the community attribute, IP-prefix, AS_Path, or ACL. Therefore, the workload of configuration modification subject to frequent change in the network structure can be reduced. Diff-Serv Model Multiple service flows can be aggregated into a behavior aggregate (BA), and forwarded based on the same Per Hop Behavior (PHB). Service processing and storage can thus be simplified. On the Diff-Serv core network, QoS is packet specific, and therefore signaling is not required for packet processing. Simple Traffic Classification At present, the NE5000E series support simple traffic classification on physical interfaces and their sub-interfaces, and logical interfaces such as trunk interfaces. Eight Diff-Serv domains are supported. PHB on outbound interfaces can be disabled, and eight port queues are supported. Simple traffic classification is based on the following rules: 8021p mapping DSCP mapping EXP mapping Complex Traffic Classification Complex traffic classification is based on the following rules: IPv4 rules: source IP address, destination IP address, IP protocol number, IP fragmentation flag, DSCP, ToS + precedence, time-range, TCP/UDP source port number, and TCP/UDP destination port number Layer 2 rules: source MAC address, destination MAC address, 8021p, and Etype IPV6 rules: source IP address, destination IP address, IP protocol number, DSCP, ToS + precedence, next header, TCP/UDP source port number, and TCP/UDP destination port number MPLS rule: EXP The NE5000E series also support complex traffic classification on logical interfaces such as sub-interfaces and trunk interfaces. Traffic Policing CAR is mainly used for rate limit. In the CAR technology, a token bucket is used to measure the data flows that pass through the interfaces on a router so that only the packets assigned Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 36 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features with tokens can go through the router in the specified time period. In this manner, the traffic rate is limited. That is, CAR can limit the rate of both incoming traffic and outgoing traffic. In addition, the rate of certain types of data flows can be controlled according to such information as the IP address, port number, and precedence. Rate limit is not performed on the data flows that do not meet the specified conditions, and such data flows are forwarded at the original interface rate. CAR is mainly applied to network edge devices, thus ensuring that core devices can process data properly. The NE5000E series support CAR for both the incoming and outgoing traffic. Queue Scheduling The NE5000E series support First In First Out (FIFO) queuing, Priority Queuing (PQ), and Weighted Fair Queuing (WFQ). Traffic Shaping When network congestion occurs, traffic policing that uses the CAR technology can restrict traffic by dropping packets that do not match specific rules. To prevent too many packets from being dropped, the excess packets can be buffered and then sent out evenly under the control of token buckets. This is called traffic shaping. Traffic shaping prevents too many packets from being dropped and also makes packets match specific rules. Traffic shaping is mainly used to control the volume of burst outgoing traffic over a certain link so that the packets can be transmitted at an even rate. Generic Traffic Shaping (GTS) is a technology used in traffic shaping. It can shape traffic that does not match specific rules. GTS allows the matching between the upstream and downstream bandwidths. Ethernet QoS The NE5000E series support simple traffic classification based on the 802.1p priority in VLAN packets. On the ingress PE, the 802.1p priority in a Layer 2 packet is mapped to the precedence in an upper layer protocol packet, such as the IP DSCP value or the MPLS EXP value. In this manner, Diff-Serv is provided for the packets on the backbone network. On the egress PE, the precedence of the upper layer protocol packet is mapped to the 802.1p priority. Enhanced ACL Detailed information about packets can be viewed if the packets are matched based on ACLs. After the offset, match value, or mask of a packet to be matched is specified, any field in the packet can be matched based on ACLs. 6.7 Traffic Load Balancing If there are multiple equal-cost routes to a same destination, the NE5000E series can carry out load balancing of traffic among these routes. You can select either equal-cost load balancing or unequal-cost load balancing based on customers' or network requirements. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 37 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features Equal-cost Load Balancing The NE5000E series support equal-cost load balancing among member links of the IP-Trunk or Eth-Trunk. When there are multiple equal-cost routes to a same destination, the NE5000E series support equal-cost load balancing of traffic among these routes. There are two types of load balancing: session-by-session and packet-by-packet. By default, session-by-session load balancing is used. Unequal-cost Load Balancing The NE5000E series support the following unequal-cost load balancing modes: Route-based load balancing: When the costs of different direct routes are the same, you can configure weight for each route for load balancing. Interface-based load balancing: On an IP-Trunk or an Eth-Trunk, you can configure weight for each member link for load balancing. Link bandwidth-based load balancing: Unequal-cost load balancing is performed on the outbound interfaces of links based on link bandwidth. The proportion of traffic over each link approximates to or equals the proportion of the link bandwidth. This mode takes the link bandwidth into full consideration, and prevents low-bandwidth links from being congested and high-bandwidth links from being idle. The NE5000E series support traffic load balancing among physical interfaces or among physical and logical interfaces. In addition, the system can detect the changes of bandwidth on logical interfaces due to manual configuration or the status change (Up/Down) of member links. If the bandwidth of logical interfaces changes, traffic will be automatically balanced based on the new bandwidth proportion. 6.8 Traffic Statistics Collection The NE5000E series provide various types of traffic statistics collection for different access users. Traffic statistics collection helps operators analyze the network traffic model, provides reference data for deploying and maintaining Diff-Serv TE, and supports volume-based accounting of non-monthly flat fee subscribers. Traffic Statistics Collection Based on QoS Policies The NE5000E series support traffic statistics collection based on QoS policies on interfaces, including Ethernet interfaces and their sub-interfaces, POS interfaces, Eth-Trunk interfaces and their sub-interfaces, and IP-Trunk interfaces. CAR Traffic Statistics Collection The NE5000E series provide QoS features such as traffic classification, traffic policing CAR, and queue scheduling. QoS traffic statistics collection is provided accordingly. In traffic classification, statistics on traffic that matches or does not match rules are collected. In traffic policing, traffic statistics collection is supported as follows: − Issue 01 (2011-09-15) Statistics on total traffic that matches the CAR rule are collected. Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 38 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features − Statistics on traffic that is permitted or discarded based on the CAR rule are collected. − Traffic statistics collection based on traffic policies is supported on interfaces. − When the same traffic policy is applied to different interfaces, the CAR traffic statistics in the traffic policy are based on the interface. Interface-based Traffic Statistics Collection The NE5000E series support traffic statistics collection on interfaces and sub-interfaces. Traffic Statistics Collection on TE Tunnels When functioning as PEs on the MPLS TE network, the NE5000E series can collect statistics on the incoming and outgoing traffic in tunnels. When a VPN is statically bound to the TE tunnel, the system can collect statistics on traffic of each Resource Reserved VPN (RRVPN) over the TE tunnel and the total traffic over the TE tunnel. 6.9 Security Features Security Authentication The Point-to-Point Protocol (PPP) supports the Password Authentication Protocol (PAP) and Challenge Handshake Authentication Protocol (CHAP). Routing protocols, including RIPv2, OSPF, IS-IS, and BGP, support the plain text authentication and the MD5 encrypted text authentication. LDP and RSVP support MD5 encrypted text authentication. SNMP supports SNMPv3 encryption and authentication. Local or remote login by means of SSH is supported. URPF Check IPv4 and IPv6 support Unicast Reverse Path Forwarding (URPF). Local Attack Defense The NE5000E series provide a uniform local attack defense module to manage and maintain attack defense policies of the entire system. A set of all-around operable and maintainable attack defense solutions is provided for users. The NE5000E supports the following functions: Attack source tracing and attack alarms When a router is attacked, the attack must be analyzed. For example, you can record attack packets by using the attack source tracing function. By analyzing the attack packets, you can locate the attack and defend against the attack. If too many packets are discarded, the alarm function takes effect and informs users of packet discarding. Issue 01 (2011-09-15) Whitelist Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 39 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features A whitelist is a group of valid users or users with high priorities. By configuring the whitelist, you can enable the system to protect existing services or user services with high priorities. Indicates a blacklist. A blacklist is a group of unauthorized users. A blacklist can be self-defined based on ACL rules, and is used to match packets. User-defined flow Active link protection The NE5000E series use the whitelist to protect the TCP-based application-layer sessions. Uniform configuration of CAR parameters The NE5000E series provide more convenient configuration of CAR parameters: − Uniform configuration of CAR parameters for different LPUs − Uniform configuration interface for users − Protocol-specific CAR parameter configuration that makes the configuration interface more friendly Smallest packet compensation The NE5000E series can efficiently defend against the attacks from small packets by using the smallest packet compensation function. After receiving the packet to be sent to the CPU, the NE5000E series check the packet length. − If the packet is shorter than the preset minimum packet length, the system calculates the rate of sending the packet based on the preset minimum length. − When the packet is longer than the preset minimum packet length, the system calculates the rate of sending the packet based on the actual packet length. Lawful Interception After being enabled with lawful interception, the NE5000E can receive configuration information from the interception management center and send the intercepted traffic to the interception management center. Lawful interception enables the NE5000E to: Deliver the interception configuration using SNMPv3. Deliver the intercepted object using SNMPv3 Perform heartbeat detection between lawful interception gateways (LIGs), and use SNMPv3 to set the interval at which heartbeat messages are sent and heartbeat detection is performed. If an NE5000E fails to detect heartbeats for a specified number of consecutive times, the NE5000E determines that the LIGs cannot communicate with each other. Intercept both incoming and outgoing IPv4 traffic on the public network. Intercept both incoming and outgoing IPv4 traffic on an L3VPN. Intercept both incoming and outgoing IPv4 traffic on an MVPN. Intercept both incoming and outgoing traffic on an L2VPN based on the source or destination MAC addresses. Intercept both incoming and outgoing IPv6 traffic on the public network. Intercept both incoming and outgoing IPv6 traffic on an L3VPN. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 40 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features BGP Flowspec BGP Flowspec enables the NE5000E to: Filter BGP traffic based on the ACL policy carried in BGP packets. Filter BGP traffic based on the route attribute carried in BGP packets. Local Mirroring In local mirroring, an LPU can be configured with a physical observing interface, multiple logical observing interfaces, and multiple mirrored interfaces. The system supports inter-board mirroring. That is, the observing and mirrored interfaces can be configured on different boards. The NE5000E series support upstream and downstream mirroring. Upstream mirroring: All packets or the packets that match specific rules received by a mirrored interface are copied to a specific observing interface. Downstream mirroring: All packets or the packets that match specific rules to be sent by a mirrored interface are copied to a specific observing interface. NetStream NetStream provides the following functions: Accounting Network planning and analysis Network monitoring Application monitoring and analysis Detection of unusual traffic The implementation of NetStream requires three devices: NetStream Data Exporter (NDE), NetStream Collector (NSC), and NetStream Data Analyzer (NDA). The NE5000E series function as NDEs which sample packets, aggregate flows, and output flows. Based on the location of packet sampling and flow processing, NetStream on the NE5000E series is classified into distributed NetStream and integrated NetStream. Distributed NetStream supports load balancing among multiple NetStream boards. Distributed NetStream: An LPU can sample packets, aggregate flows, and output flows independently. Integrated NetStream: Some LPUs do not support NetStream. They only sample packets and send the sampled packets to the SPUC, LPUF-100, LPUI-100 or LPUF-200 for flow aggregation and flow output. NetStream on these LPUs is called integrated NetStream. The LPUF-100, LPUFI-100 or LPUF-200 sample packets, aggregate flows, and output flows locally. The following sampling functions are supported: Packet sampling on inbound and outbound interfaces (some boards support packet sampling on inbound interface only) Interface-based sampling and traffic classifier-based sampling Sampling of IPv4 unicast/multicast packets, fragmented packets, MPLS packets, MPLS L3VPN packets, and IPv6 packets Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 41 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features Fixed packet sampling, random packet sampling, fixed interval sampling, and random interval sampling Sampling on various physical and logical interfaces, such as POS interfaces, Ethernet interfaces, VLANIF interfaces, and trunk interfaces The NE5000E series provide the following functions in terms of flow aggregation and output: IPv4 supports the following options: as, as-tos, protocol-port, protocol-port-tos, source-prefix, source-prefix-tos, destination-prefix, destination-prefix-tos, prefix, and prefix-tos. The aggregation of MPLS packets is based on Layer 3 labels. The collected statistics can be output in the V5, V8, or V9 format. The 16-bit and 32-bit AS numbers are supported, and can be configured by using commands. When the packets are output in the V9 format, both the 16-bit and 32-bit NetStream indexes are supported, which can be set by using commands as required. Each type of aggregated flow can be output to two network management servers. 6.10 Network Reliability Backup of Key Parts The NE5000E series can be equipped with a single MPU or dual MPUs (in backup mode). The MPUs support hot backup. If two MPUs are equipped, the master MPU works and the slave MPU is in the standby state. The management network interface on the slave MPU cannot be accessed by users, and the console interfaces cannot be configured with any command. The slave MPU exchanges information (including heartbeat messages and backup data) only with the master MPU. The system supports two types of master/slave switchover of MPUs: failover and switchover. The failover is triggered by serious faults in the master MPU or the reset of the master MPU. The switchover is triggered by commands run on the console interface. You can also forbid the master/slave switchover of the MPUs by using commands on the console interface. The NE5000E series support backup of management buses and 1+1 backup of power modules, however the LPUs, power modules, and fan modules are hot swappable. In this manner, when a critical fault occurs on the device or network, the system can quickly recover and respond. This reduces the Mean Time between Failure (MTBF) and minimizes the impact of unreliable factors on normal services. High Reliability of LPUs The NE5000E series support protocol backup on service interfaces of the same type. Member interfaces of an Eth-Trunk or an IP-Trunk can be backed up inside a group or outside a group. Inter-board trunk bundling is supported. Issue 01 (2011-09-15) − Users can use dual links to connect to different LPUs. The inter-board trunk bundling ensures high reliability of services. − Inter-board trunk bundling is achieved by means of high-performance hardware engines. In this manner, traffic load balancing on multiple links is carried out to forward packets. Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 42 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features − The hash algorithm based on the source and destination IP addresses allows traffic on each link to be balanced. − Seamless switchover is implemented in the case of a link failure, and services are still normally forwarded. With protocol extensions, the NE5000E series implement backup of key service interfaces. This allows core routers bearing LAN, MAN or WAN services to monitor and back up the operation status of interfaces. In this case, the status change of the interfaces does not affect routing tables, and services on the interfaces can be restored soon. Transmission Alarm Customization and Suppression Transmission alarm suppression can efficiently filter and suppress alarm signals. This prevents interfaces from frequently flapping. In addition, transmission alarm customization enables you to control the impact of alarms on the interface status. Transmission alarm customization and suppression provide the following functions: Customization of alarms: specifies which alarms cause interface status change. Suppression of alarms: filters burrs and suppresses frequent network flapping. BFD Bidirectional Forwarding Detection (BFD) is a uniform detection mechanism used in an entire network. It can rapidly detect and monitor link connectivity or IP route reachability in the network. BFD sends detection packets at both ends of a bidirectional link to check the link status in both directions at the millisecond level. Both single-hop BFD and multi-hop BFD are supported. The NE5000E series provide distributed BFD and integrated BFD. Distributed BFD: Some LPUs can set up BFD sessions independent of other LPUs. Integrated BFD: Some LPUs do not support BFD and must depend on the LPUF-100 and LPUF-200. All the state machines of BFD sessions are established on the LPUF-100 and LPUF-200. The NE5000E series support the following BFD applications: BFD for VRRP BFD for FRR BFD for LDP FRR The checking of the protected interface by BFD can trigger LDP FRR. BFD for IP FRR and BFD for VPN FRR On the NE5000E series, the reporting of the faults detected by BFD can trigger IP FRR and VPN FRR. BFD for static route BFD for IS-IS On the NE5000E series, the statically configured BFD session can be used to detect an IS-IS neighbor relationship. BFD detects faults in the links between IS-IS neighbors and rapidly reports the faults to IS-IS, thus triggering fast convergence of IS-IS routes. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 43 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features BFD for IPv6 IS-IS On the NE5000E series, BFD sessions can be dynamically created and deleted by IPv6 IS-IS. BFD for OSPF/BGP On the NE5000E series, BFD sessions can be dynamically created and deleted by OSPF and BGP. BFD for OSPFv3/BGP4+ On the NE5000E series, BFD sessions can be dynamically created and deleted by OSPFv3 and BGP4+. BFD for PIM BFD for IP-Trunk and Eth-Trunk On the NE5000E series, BFD can detect a trunk and the member links of the trunk separately. That is, it can detect the connectivity of a trunk and also the connectivity of an important member link of the trunk. BFD for LSP BFD for LSP rapidly detects and reports faults in LSPs, TE tunnels, and PWs so that MPLS services such as VPN FRR and TE FRR can be rapidly switched to backup links. Ethernet OAM The NE5000E series support Ethernet OAM that consists of fault management and performance management. Fault management: checks network connectivity by sending detection packets periodically or manually. The implementation is similar to that of BFD. In addition, means similar to ping and tracert on IP networks are provided for fault locating on Ethernet. Fault management is used to trigger protection switchover within 50 ms. Performance management: measures parameters such as packet loss, delay, and jitter in packet transmission, and collects statistics on various types of traffic, such as number of sent bytes and number of error packets. IEEE 802.3 ah was put forward by the Ethernet in the First Mile Alliance (AFMA). It covers capability discovery, link performance monitoring, fault detection, and alarm and loop detection. 802.3ah is a slow-convergence protocol and the frequency of sending detection packets is 1 second. Complying with IEEE 802.3ah, the NE5000E series provide point-to-point fault management for Ethernet links so that the faults in the last-mile direct Ethernet link at the user end can be detected. Currently, the NE5000E series support auto Neighbor Discovery (ND), link fault monitoring, remote fault notification, and remote loopback configuration. VRRP A Virtual Router Redundancy Protocol (VRRP) backup group that consists of a group of routers in a LAN functions as a virtual router. Hosts in the LAN only know the IP address of this virtual router and do not know the IP address of a specific router in the VRRP backup group. The hosts also set their own default next-hop address to the IP address of the virtual router. In this manner, hosts in the LAN can communicate with the hosts in other networks by using the virtual router. VRRP dynamically associates the virtual router with a physical router that transmits services. When the physical router fails, another router is selected to transmit services. The switchover Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 44 HUAWEI NetEngine5000E Core Router NE5000E Product Description 6 Service Features of services from the faulty router to the new router is transparent to users, which allows non-stop communications between the hosts in different networks. FRR The NE5000E series provide types of FRR features, from which you can choose as required to improve network reliability. IP FRR FRR can be implemented within 50 ms, which minimizes data loss caused by network failures. FRR supported by the NE5000E series monitor and save the LPU and interface status in real time, and checks the interface status in packet forwarding. When faults occur on an interface, the traffic on the interface can be rapidly switched to another route that has been set up. In this manner, the Mean Time between Failure (MTBF) and number of lost packets are reduced. LDP FRR Traffic switching by means of LDP FRR can be completed within 50 ms. TE FRR TE FRR is used in MPLS TE for local protection. It is supported only on interfaces working at 100 Mbit/s. The switching time of TE FRR can reach 50 ms, which minimizes data loss caused by network failures. TE FRR is only a provisional protective measure. If a protected LSP recovers or a new LSP is established, traffic will be switched back to the recovered LSP or the newly established LSP. After TE FRR is configured for an LSP, the traffic will be switched to the protection link and the ingress of the LSP attempts to establish a new LSP if a link or a node becomes faulty. TE FRR can be classified into the following types based on different protected objects: − Link protection − Node protection BGP auto FRR BGP auto FRR is used to protect BGP routes. If the primary link fails, traffic can be switched to the backup link within 200 ms. BGP auto FRR is used in the following typical application scenarios: − Intra-AS FRR − Inter-AS FRR − PE-CE protection VPN FRR Traffic switching by means of VPN FRR can be completed within 50 ms. NSR The NE5000E series support the following types of Non-Stop Routing (NSR): NSR OSPFV2 NSR OSPFV3 NSR ISIS Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 45 HUAWEI NetEngine5000E Core Router NE5000E Product Description NSR PIM SM NSR PIM SSM NSR LDPv4 NSR RSVP-TE NSR BGP/BGP4+ NSR L3VPNV4 NSR static route NSR direct route Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 6 Service Features 46 HUAWEI NetEngine5000E Core Router NE5000E Product Description 7 Application Scenarios 7 Application Scenarios About This Chapter 7.1 National Backbone Network Solution 7.2 Provincial Backbone Network Solution 7.3 IP Bearer Network Solution 7.4 IPv6 Backbone Network Solution 7.1 National Backbone Network Solution A national backbone network usually uses a partial full-mesh topology as shown in Figure 7-1. It is uplinked to international egresses and downlinked to provincial backbone networks, and is connected to other operators' networks. As core routers, NE5000Es have large capacities and powerful routing and forwarding capabilities, meeting the requirements of the national backbone network. The NE5000E series support IPv6, fifth-generation-based service scalability and smooth upgrade, carrier-class stability, and good compatibility. With high QoS and complete QoS solutions, the NE5000E series meet the multi-service bearer requirement of the IP backbone network. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 47 HUAWEI NetEngine5000E Core Router NE5000E Product Description 7 Application Scenarios Figure 7-1 Networking diagram for the national backbone network solution NAP NE5000E/NE40E International Egress NE5000E/NE40E NE5000E/NE40E NE5000E/NE40E National Backbone Network International Egress NE5000E/NE40E NE5000E/NE40E NE40E NE40E Provincial Backbone Network NE40E NE40E Provincial Backbone Network 7.2 Provincial Backbone Network Solution Figure 7-2 shows the provincial backbone network solution. NE5000Es/NE5000E-X16s are deployed at the core layer of the provincial backbone network. NE40Es are deployed in prefectures and municipalities to converge traffic of MANs, leased lines, narrowband access, and IDCs. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 48 HUAWEI NetEngine5000E Core Router NE5000E Product Description 7 Application Scenarios Figure 7-2 Networking diagram for the provincial backbone network solution NE5000E NE5000E Provincial backbone POS 10G NE5000E POS 10G POS 10G NE5000E POS 10G City node NE5000E /NE40E GE NE40E MAN POS 2.5G City node POS 2.5G NE5000E /NE40E GE NE40E NE40E NE40E Leased line convergence Narrowband access IDC This solution is applicable to new deployment, capacity expansion, and construction of large-scale ISP provincial backbone networks. These ISPs have advantages in transmission resources and access services, and are of low costs. In the case where there is lack of transmission resources, if the network topology remains unchanged, the link bandwidth can be reduced. The devices above the convergence layer support line rate forwarding of packets. Devices on the entire network support MPLS VPN. 7.3 IP Bearer Network Solution Figure 7-3 shows the IP bearer network solution. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 49 HUAWEI NetEngine5000E Core Router NE5000E Product Description 7 Application Scenarios Figure 7-3 IP bearer network solution PJ1 Core layer XA1 SY1 Convergence layer SD1 Access layer NJ1 SH1 WH1 GZ1 CR NE5000E BR NE40E SoftX3000 AR NE40E SoftX3000 UMG8900 CR: Core Router BR (ER): Edge Router AR: Access Router Considering the status quo of the current bearer network, operators need to construct a new core bearer network to bear NGN multi-services and future 3G services. Stimulated by the new market competition environment, new service development, and new technologies, the new bearer network will bear voice services, data services, and video services (video conference, video phone, streaming media, enterprise interconnection, and 3G services). The construction of the new bearer network is a key part for network convergence and transformation. In this solution, NE5000Es and NE5000E-X16s function as core nodes to provide high-speed data forwarding and high reliability. NE40Es function as convergence routers to access NGN voice services, signaling, network management services, and VIP services. This solution has the following characteristics: The core layer uses a dual-plane structure. Full-mesh connections are established between NE5000E/NE5000E-X16. NE40Es (convergence routers) are dual-homed to NE5000Es/NE5000E-X16s. Two devices working in backup mode are deployed on important nodes. MPLS VPN is deployed on the entire network to isolate different types of users and services. VPN FRR is deployed on each PE. TE FRR and IGP fast convergence are deployed on the entire network. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 50 HUAWEI NetEngine5000E Core Router NE5000E Product Description 7 Application Scenarios 7.4 IPv6 Backbone Network Solution Figure 7-4 Networking diagram for the IPv6 backbone network solution PE PE N E40 E N E40 E PE IP v6 In te rn e t N E40 E IP v6 /IP v 4 N E 5 0 0 0 E /N E 4 0 E IP v6 C o re PE IP v6 PE N E40E N E40E IP v4 In te rn e t IP v6 E D G E L3 S w itch L3 S w itch MA 5200 L2 S w itch S O H O IP v 6 S O H O IP v 6 In the IPv6 backbone network solution, the original IPv4 services are not affected and IPv4 and MPLS VPN packets can still be forwarded. The following applications need to be supported: Communication between IPv6 islands Communication between IPv6 and IPv4 networks To support the preceding applications, the following solutions where several IPv6 technologies are used can be provided: Configure all routers on the backbone network to support IPv4/IPv6 dual-stack. IPv4 routers forward IPv4 packets whereas IPv6 routers forward IPv6 packets. Use the Layer 3 tunnel technology for the communication between IPv6 islands. Either manually-configured tunnels or 6to4 tunnels can be configured. The core routers only need to support IPv4 forwarding and do not need to be upgraded. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 51 HUAWEI NetEngine5000E Core Router NE5000E Product Description 8 8 Operation and Maintenance Operation and Maintenance About This Chapter 8.1 Operation and Maintenance 8.2 NMS 8.1 Operation and Maintenance 8.1.1 System Configuration Management Configuration Mode The NE5000E series support two configuration modes: command line configuration and NMS configuration. Command line configuration: Users can log on to the device by using the console interface. Users can log in to the device by means of Telnet. NMS configuration: The NE5000E series are configured by means of the SNMP-based NMS. The NE5000E series support the configuration rollback function. Intelligent Configuration As increasingly new types of services emerge, higher requirements are imposed on devices. For example, it is required that services take effect after being configured, invalid configurations be rolled back, and impact on the existing services be minimized. The NE5000E series support the following configurations: Offline Configuration After a configuration file is generated by using the offline configuration tool, the configuration file can be saved. After the device is started, users can load the configuration file to the device. If a device is online but some boards or subcards on the device are not online, the offline configuration tool can still be used for device configuration. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 52 HUAWEI NetEngine5000E Core Router NE5000E Product Description 8 Operation and Maintenance Configuration commitment and rollback If the activated configuration results in performance degradation, running a related command can roll the system back to the previous configuration. Compared with deleting every single command, the configuration rollback function allows faster and more convenient configuration restoration. Configuration commitment prompt If the configuration takes effect, the system adds it to the running database. If the same configuration is added, the system prompts a message. 8.1.2 System Management and Maintenance The NE5000E series provide powerful system management and maintenance functions: Board in-position detection, hot swap detection, Watchdog, board resetting, RUN indicator and debugging indicator control, fan and power supply control, master/slave switchover control, and version query Local and remote loading and upgrade of software and data, configuration rollback, backup, saving, and clearing Hierarchical user authority management, operation log management, command line online help, and command comments Multi-user operation Multi-layer information collection, including interface, Layer 2, and Layer 3 information Hierarchical management, alarm classification, and alarm filtering 8.1.3 Device Operation Status Monitoring The NE5000E series use the information center to monitor the device operation status. Syslog is a sub-function of the information center. Syslog is over UDP. It outputs information to a log host through port 514. The information center can receive and process the following types of information: Log information Debugging information Trap information Information has eight severity levels. The lower the level, the higher the severity. Level Severity Description 0 Emergency A fatal exception occurs on the device, which causes the system unable to run normally unless the device is restarted. For example, the device is restarted due to program exceptions or memory usage errors are detected. 1 Alert A serious exception occurs on the device, which requires immediate actions. For example, the memory usage of the device reaches the upper threshold. 2 Critical A critical exception occurs on the device, which requires actions and cause analysis. For example, the memory usage falls below the lower threshold; the temperature falls below the alarm threshold; Bidirectional Forwarding Detection Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 53 HUAWEI NetEngine5000E Core Router NE5000E Product Description Level Severity 8 Operation and Maintenance Description (BFD) detects that a device is unreachable or detects error messages generated by the local device 3 Error Improper operation or abnormal process occurs on the device, which does not affect subsequent services but requires attention and cause analysis. For example, users enter incorrect commands or passwords; error protocol packets received by other devices are detected. 4 Warning An exception that may result in a fault occurs on the device, which needs to be paid attention to. For example, users disable a routing process; BFD detects packet loss; error protocol packets are detected. 5 Notice A key operation is performed to keep the device running normally. For example, the shutdown command run by a user on the interface, neighbor discovery, and status change of the protocol state machine. 6 Informational A routine operation is performed. For example, users run the display commands. 7 Debugging A routine operation is performed, and no action is required. The information center supports 10 channels, of which Channel 0 to Channel 5 have their default channel names. By default, the six channels (Channel 0 to Channel 5) correspond to six directions at which information is output. The log information on the CF card is output to a log file through Channel 9 by default. That is, a total of seven default output directions are supported. When multiple log hosts are configured, you can configure log information to be output to different log hosts through one channel or multiple channels. For example, you can configure some log information to be output to a log host through Channel 2 (loghost), and some log information to a log host through Channel 6. In addition, you can change the name of Channel 6. This facilitates the management of information channels. 8.1.4 System Service and Status Tracking The NE5000E series support system service and status tracking, including the following functions: Monitors the change of the state machine of routing protocols. Monitors the change of the state machine of LDP. Monitors the change of the state machine of VPN. Monitors the protocol packets sent by the NP, and displays detailed information about the packets by enabling debugging. Detects and collects statistics on abnormal packets. Prompts when the exception handling process takes effect. Collects statistics on the resources used by each feature. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 54 HUAWEI NetEngine5000E Core Router NE5000E Product Description 8 Operation and Maintenance 8.1.5 System Test and Diagnosis The NE5000E series provide the debugging function, which records key events, packet processing, packet resolution, and status switch during service operation. The debugging function provides support for users in device debugging and networking solutions. Debugging can be enabled or disabled by using a console based on a specified service (such as a routing protocol) and a specified interface (information about the routing protocol on the specified interface). Software detection and diagnosis supported on the NE5000E series provides the trace function, which records key events such as task switching, interrupt, queue read and write, and system exceptions. In this manner, if the device is restarted after a fault occurs, the trace information can be accessed and used for fault location. The trace function can be enabled or disabled by running commands on the console. The NE5000E series can also query the CPU usage of MPUs and LPUs. The debugging and trace function on the NE5000E series are hierarchical. Information at different levels can be output to different destinations, such as the console, Syslog server, and SNMP trap, based on user configurations. The NE5000E series also provide Network Quality Analysis (NQA). NQA measures the performance of different protocols running on the network. In that case, operators can collect network operation indexes in real time, such as total delay of HTTP, TCP connection delay, DNS resolution delay, file transfer delay, FTP connection delay, and DNS resolution error rate. By monitoring these indexes, operators can provide users with network services of different levels, and charge users differently. 8.1.6 NQA The NE5000E series also provide Network Quality Analysis (NQA). NQA measures the performance of different protocols running on the network. In that case, operators can collect network operation indexes in real time, such as total delay of HTTP, TCP connection delay, DNS resolution delay, file transfer rate, FTP connection delay, and DNS resolution error rate. By monitoring these indexes, operators can provide users with network services of different levels, and charge users differently. NQA is also an effective tool for diagnosing and locating network faults. The NE5000E supports the following NQA functions: Multicast ping Multicast tracert LSP ping, LSP traceroute, and MPLS jitter NQA-MIB (all NQA functions are managed using the NMS) 8.1.7 In-Service Debugging The NE5000E series support interface mirroring, which maps specific traffic to a monitoring interface. In addition, the NE5000E series support in-service debugging, which allows maintenance personnel to debug and analyze network operation status. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 55 HUAWEI NetEngine5000E Core Router NE5000E Product Description 8 Operation and Maintenance 8.1.8 Upgrade Features In-service Upgrade The NE5000E series support in-service software upgrade and in-service patching. By means of in-service patching, you can upgrade only the features to be modified. System Upgrade The upgrade process of the NE5000E series is improved. The entire upgrade process can be completed by using only one command. This saves time for customers. The upgrade progress can be displayed, and you can view the upgrade result after the upgrade process is complete. Rollback Function During system upgrade, if the new system software cannot start the system, the software in the last successful startup can be used instead. The rollback function provided by the NE5000E series can prevent services from being affected by system upgrade failures. 8.1.9 License As software functions of the NE5000E series are diversified and software costs are in a larger proportion to the total costs, the service model currently provided cannot meet the development requirement of customers and operators. Common users want lower purchasing costs. In the case of upgrade and capacity expansion, users need to effectively control the capacity and functions of devices. To address different user requirements, the NE5000E and NE5000-X16 need to provide flexible authorization for service modules. In this case, the NE5000E series provide a license authorization management platform, that is, Global Trotter License (GTL). License authorization have the following functions: Common users can purchase required service functional modules so that the purchasing costs are reduced. In the case of upgrade and capacity expansion, users can apply for new licenses so that devices can support more functions and have larger capacity. 8.1.10 Other Features In addition to the preceding features, the NE5000E series support the following features: Hierarchical commands can be configured to prevent unauthorized users from logging on to routers. Users can type in a question mark (?) to obtain online help. Rich and detailed debugging information can be provided to diagnose network faults. The DosKey-like function can be configured so that a specific historical command can be run. The command resolver supports fuzzy match of keywords. For example, if the display command needs to be resolved, you only need to input an exact matching string disp. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 56 HUAWEI NetEngine5000E Core Router NE5000E Product Description 8 Operation and Maintenance 8.2 NMS The NE5000E series support device operation and management by the NMS based on SNMP. The NE5000E series support SNMPv1, SNMPv2c, and SNMPv3. SNMPv1 SNMPv1 supports community name-based access control. SNMPv1 supports MIB view-based access control. SNMPv2c SNMPv2c supports community name-based access control. SNMPv2c supports MIB view-based access control. SNMPv3 SNMPv3 inherits the basic functions of SNMPv2c, defines a management frame, and introduces a User-based Security Model (USM) to provide a more secure access control mechanism for users. SNMPv3 supports the following functions: User group Group-based access control User-based access control Authentication and encryption The NE5000E series use Huawei iManager U2000. It supports SNMPv1/v2c/v3 and the client/server model, can run independently in many operating systems, such as WindowsNT/2000/XP/2003 server/2007 server, UNIX (SUN, HP, and IBM), and also provides a multi-lingual graphical user interface. To be oriented to the future network development trend, the U2000 combines all-IP and FMC and manages bearer and access equipment in a centralized manner.The U2000 can perform not only integrated management of multi-domain equipment but also integrated management at the element and network management layers. The U2000 has revolutionized the layer-based management mode to meet the management requirements in the transition from the existing vertical network to the flattened horizontal network.The U2000 is a unified network management system (NMS) of multiple domains and it aims to minimize operation and maintenance (O&M) costs for customers and to bring more network benefits. Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 57 HUAWEI NetEngine5000E Core Router NE5000E Product Description 9 Abbreviation 9 Abbreviation A AAA Authentication, Authorization and Accounting AAL5 ATM Adaptation Layer 5 AC Alternating Current ACL Access Control List AF Assured Forwarding ANSI American National Standard Institute ARP Address Resolution Protocol ASBR Autonomous System Boundary Router ASIC Application Specific Integrated Circuit ATM Asynchronous Transfer Mode B BE Best-Effort BGP Border Gateway Protocol BGP4 BGP Version 4 C CAR Committed Access Rate CBR Constant Bit Rate CE Customer Edge CHAP Challenge Handshake Authentication Protocol Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 58 HUAWEI NetEngine5000E Core Router NE5000E Product Description CoS Class of Service CPU Center Processing Unit CR-LDP Constrained Route - Label Distribution Protocol 9 Abbreviation D DC Direct Current DHCP Dynamic Host Configuration Protocol DNS Domain Name Server DS Differentiated Services E EACL Enhanced Access Control List EF Expedited Forwarding EMC ElectroMagnetic Compatibility F FE Fast Ethernet FEC Forwarding Equivalence Class FIB Forward Information Base FIFO First In First Out FR Frame Relay FTP File Transfer Protocol G GE Gigabit Ethernet GTS Generic Traffic Shaping H HA High Availability HDLC High level Data Link Control HTTP Hyper Text Transport Protocol Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 59 HUAWEI NetEngine5000E Core Router NE5000E Product Description 9 Abbreviation I ICMP Internet Control Message Protocol IDC Internet Data Center IEEE Institute of Electrical and Electronics Engineers IETF Internet Engineering Task Force IGMP Internet Group Management Protocol IGP Interior Gateway Protocol IP Internet Protocol IPoA IP Over ATM IPTN IP Telephony Network IPv4 IP version 4 IPv6 IP version 6 IPX Internet Packet Exchange IS-IS Intermediate System-Intermediate System; ISP Interim inter-switch Signaling Protocol ITU International Telecommunication Union - Telecommunication Standardization Sector L L2TP Layer 2 Tunneling Protocol LAN Local Area Network LCD Liquid Crystal Display LCP Link Control Protocol LDP Label Distribution Protocol LER Label switching Edge Router LPU Line Processing Unit LSP Label Switched Path LSR Label Switch Router M Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 60 HUAWEI NetEngine5000E Core Router NE5000E Product Description MAC Media Access Control MBGP Multiprotocol Border Gateway Protocol MD5 Message Digest 5 MIB Management Information Base MP Multilink PPP MPLS Multi-protocol Label Switch; MSDP Multicast Source Discovery Protocol MSTP Multiple Spanning Tree Protocol MTBF Mean Time Between Failures MTTR Mean Time To Repair MTU Maximum Transmission Unit 9 Abbreviation N NAT Network Address Translation NLS Network Layer Signaling NP Network Processor NTP Network Time Protocol NVRAM Non-Volatile Random Access Memory O OSPF Open Shortest Path First P PAP Password Authentication Protocol PE Provider Edge PFE Packet Forwarding Engine PIC Parallel Interference Cancellation PIM-DM Protocol Independent Multicast-Dense Mode PIM-SM Protocol Independent Multicast-Sparse Mode POP Point Of Presence POS Packet Over SDH/SONET Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 61 HUAWEI NetEngine5000E Core Router NE5000E Product Description PPP Point-to-Point Protocol PQ Priority Queue PT Protocol Transfer PVC Permanent Virtual Channel 9 Abbreviation Q QoS Quality of Service R RADIUS Remote Authentication Dial in User Service RAM Random-Access Memory RED Random Early Detection RFC Requirement for Comments RH Relative Humidity RIP Routing Information Protocol RMON Remote Monitoring ROM Read Only Memory RP Rendezvous Point RPR Resilient Packet Ring RSVP Resource Reservation Protocol RSVP-TE RSVP-Traffic Engineering S SAP Service Advertising Protocol SCSR Self-Contained Standing Routing SDH Synchronous Digital Hierarchy SDRAM Synchronous Dynamic Random Access Memory SFU Switch Fabric Unit SLA Service Level Agreement SNAP SubNet Attachment Point SNMP Simple Network Management Protocol Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 62 HUAWEI NetEngine5000E Core Router NE5000E Product Description SONET Synchronous Optical Network SP Strict Priority SPI4 SDH Physical Interface SSH Secure Shell STM-16 SDH Transport Module -16 SVC Switching Virtual Connection 9 Abbreviation T TCP Transfer Control Protocol TE Traffic Engineering TFTP Trivial File Transfer Protocol TM Traffic Manager ToS Type of Service TP Topology and Protection packet U UBR Unspecified Bit Rate UDP User Datagram Protocol UNI User Network Interface UTP Unshielded Twisted Pair V VBR-NRT Non-Real Time Variable Bit Rate VBR-RT Real Time Variable Bit Rate VC Virtual Circuit VCI Virtual Channel Identifier VDC Variable Dispersion Compensator VLAN Virtual Local Area Network VPI Virtual Path Identifier VPN Virtual Private Network VRP Versatile Routing Platform VRRP Virtual Router Redundancy Protocol Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 63 HUAWEI NetEngine5000E Core Router NE5000E Product Description 9 Abbreviation W WAN Wide Area Network WFQ Weighted Fair Queuing WRED Weighted Random Early Detection WRR Weighted Round Robin Issue 01 (2011-09-15) Huawei Proprietary and Confidential Copyright © Huawei Technologies Co., Ltd. 64
