Download NE5000E Product Description

Document related concepts

RapidIO wikipedia , lookup

Peering wikipedia , lookup

Passive optical network wikipedia , lookup

Internet protocol suite wikipedia , lookup

Distributed firewall wikipedia , lookup

Asynchronous Transfer Mode wikipedia , lookup

IEEE 802.1aq wikipedia , lookup

Computer network wikipedia , lookup

Net bias wikipedia , lookup

Airborne Networking wikipedia , lookup

Serial digital interface wikipedia , lookup

Recursive InterNetwork Architecture (RINA) wikipedia , lookup

Deep packet inspection wikipedia , lookup

Wake-on-LAN wikipedia , lookup

IEEE 1355 wikipedia , lookup

Zero-configuration networking wikipedia , lookup

Network tap wikipedia , lookup

Cracking of wireless networks wikipedia , lookup

UniPro protocol stack wikipedia , lookup

Huawei wikipedia , lookup

Multiprotocol Label Switching wikipedia , lookup

Transcript
HUAWEI NetEngine5000E Core Router
V800R003C00
NE5000E Product Description
Issue
01
Date
2011-09-15
HUAWEI TECHNOLOGIES CO., LTD.
Copyright © Huawei Technologies Co., Ltd. 2011. All rights reserved.
No part of this document may be reproduced or transmitted in any form or by any means without prior
written consent of Huawei Technologies Co., Ltd.
Trademarks and Permissions
and other Huawei trademarks are trademarks of Huawei Technologies Co., Ltd.
All other trademarks and trade names mentioned in this document are the property of their respective
holders.
Notice
The purchased products, services and features are stipulated by the contract made between Huawei and
the customer. All or part of the products, services and features described in this document may not be
within the purchase scope or the usage scope. Unless otherwise specified in the contract, all statements,
information, and recommendations in this document are provided "AS IS" without warranties, guarantees or
representations of any kind, either express or implied.
The information in this document is subject to change without notice. Every effort has been made in the
preparation of this document to ensure accuracy of the contents, but all statements, information, and
recommendations in this document do not constitute the warranty of any kind, express or implied.
Huawei Technologies Co., Ltd.
Address:
Huawei Industrial Base
Bantian, Longgang
Shenzhen 518129
People's Republic of China
Website:
http://www.huawei.com
Email:
[email protected]
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
i
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
About This Document
About This Document
Purpose
This document describes the architecture, the hardware architecture, the link features, the
service features, the application scenarios, the operation and maintenance, the technical
specification, and the compliant standards of NE5000E.
Related Versions
The following table lists the product versions related to this document.
Product Name
Version
HUAWEI NetEngine5000E
Core Router
V800R003
Intended Audience
The intended audiences of this document are:

On-site maintenance engineer

Commissioning engineer

System maintenance engineer
Organization
This document consists of nine chapters and is organized as follows.
Chapter
Description
Introduction
This chapter introduces the product positioning and
features of the NE5000E.
Architecture
This chapter describes the physical, logical, and software
architecture of the NE5000E.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
ii
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
About This Document
Chapter
Description
Hardware Architecture
This chapter describes the hardware architecture of the
NE5000E.
Link Features
This chapter describes the link features of the NE5000E.
Service Features
This chapter describes the service features of the NE5000E.
Application Scenarios
This chapter describes the networking applications of the
NE5000E.
Operation and Maintenance
This chapter describes the operation and maintenance, and
network management of the NE5000E.
Technical Specifications
This chapter describes the technical specifications of the
NE5000E.
Compliant Standards
This chapter describes the compliant standards of the
NE5000E.
Acronyms and Abbreviations
This appendix lists the acronyms and abbreviations
mentioned in this manual.
Conventions
Symbol Conventions
The symbols that may be found in this document are defined as follows.
Symbol
Description
Indicates a hazard with a high level of risk, which if not
avoided, will result in death or serious injury.
Indicates a hazard with a medium or low level of risk, which if
not avoided, could result in minor or moderate injury.
Indicates a potentially hazardous situation, which if not
avoided, could result in equipment damage, data loss,
performance degradation, or unexpected results.
Indicates a tip that may help you solve a problem or save time.
Provides additional information to emphasize or supplement
important points of the main text.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
iii
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
About This Document
General Conventions
The general conventions that may be found in this document are defined as follows.
Convention
Description
Times New Roman
Normal paragraphs are in Times New Roman.
Boldface
Names of files, directories, folders, and users are in boldface.
For example, log in as user root.
Italic
Book titles are in italics.
Courier New
Examples of information displayed on the screen are in Courier
New.
Command Conventions
The command conventions that may be found in this document are defined as follows.
Convention
Description
Boldface
The keywords of a command line are in boldface.
Italic
Command arguments are in italics.
[]
Items (keywords or arguments) in brackets [ ] are optional.
{ x | y | ... }
Optional items are grouped in braces and separated by vertical
bars. One item is selected.
[ x | y | ... ]
Optional items are grouped in brackets and separated by
vertical bars. One item is selected or no item is selected.
{ x | y | ... }*
Optional items are grouped in braces and separated by vertical
bars. A minimum of one item or a maximum of all items can be
selected.
[ x | y | ... ]*
Optional items are grouped in brackets and separated by
vertical bars. Several items or no item can be selected.
&<1-n>
The parameter before the & sign can be repeated 1 to n times.
#
A line starting with the # sign is comments.
GUI Conventions
The GUI conventions that may be found in this document are defined as follows.
Convention
Description
Boldface
Buttons, menus, parameters, tabs, window, and dialog titles are
in boldface. For example, click OK.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
iv
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
About This Document
Convention
Description
>
Multi-level menus are in boldface and separated by the ">"
signs. For example, choose File > Create > Folder.
Keyboard Operation
The keyboard operations that may be found in this document are defined as follows.
Format
Description
Key
Press the key. For example, press Enter and press Tab.
Key 1+Key 2
Press the keys concurrently. For example, pressing
Ctrl+Alt+A means the three keys should be pressed
concurrently.
Key 1, Key 2
Press the keys in turn. For example, pressing Alt, A means the
two keys should be pressed in turn.
Mouse Operation
The mouse operations that may be found in this document are defined as follows.
Action
Description
Click
Select and release the primary mouse button without moving
the pointer.
Double-click
Press the primary mouse button twice continuously and quickly
without moving the pointer.
Drag
Press and hold the primary mouse button and move the pointer
to a certain position.
Update History
Updates between document versions are cumulative. Therefore, the latest document version
contains all updates made to previous versions.
Updates in Issue 01(2012-03-15)
First commercial release.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
v
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
Contents
Contents
About This Document .................................................................................................................... ii
1 Product Positioning and Features .............................................................................................. 1
1.1 Product Positioning .......................................................................................................................................... 1
1.2 Product Features ............................................................................................................................................... 3
2 Product Architecture ..................................................................................................................... 9
2.1 Physical Architecture........................................................................................................................................ 9
2.2 Logical Architecture ....................................................................................................................................... 14
2.3 Software Architecture ..................................................................................................................................... 17
3 Technical Specifications ............................................................................................................ 18
3.1 Physical Specifications ................................................................................................................................... 18
3.2 System configuration...................................................................................................................................... 21
4 LPU ................................................................................................................................................. 23
5 Link Features ................................................................................................................................ 27
5.1 Ethernet Link Features ................................................................................................................................... 27
5.2 POS Link Features ......................................................................................................................................... 28
6 Service Features ........................................................................................................................... 29
6.1 Ethernet Features ............................................................................................................................................ 29
6.2 IP Features ...................................................................................................................................................... 29
6.2.1 IPv4/IPv6 Dual-Stack ........................................................................................................................... 29
6.2.2 IPv4 Features ........................................................................................................................................ 30
6.2.3 IPv6 Features ........................................................................................................................................ 30
6.2.4 IPv4/IPv6 Transition Technology.......................................................................................................... 30
6.3 Routing Protocols ........................................................................................................................................... 31
6.3.1 Unicast Routing Features ...................................................................................................................... 31
6.3.2 Multicast Routing Features ................................................................................................................... 32
6.4 MPLS Features ............................................................................................................................................... 33
6.5 VPN Features ................................................................................................................................................. 34
6.5.1 Tunnel Policy ........................................................................................................................................ 34
6.5.2 VPN Tunnel .......................................................................................................................................... 35
6.5.3 BGP/MPLS L3VPN .............................................................................................................................. 35
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
vi
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
Contents
6.5.4 BGP/MPLS L2VPN .............................................................................................................................. 35
6.6 QoS Features .................................................................................................................................................. 36
6.7 Traffic Load Balancing ................................................................................................................................... 37
6.8 Traffic Statistics Collection ............................................................................................................................ 38
6.9 Security Features ............................................................................................................................................ 39
6.10 Network Reliability ...................................................................................................................................... 42
7 Application Scenarios ................................................................................................................ 47
7.1 National Backbone Network Solution ............................................................................................................ 47
7.2 Provincial Backbone Network Solution ......................................................................................................... 48
7.3 IP Bearer Network Solution ........................................................................................................................... 49
7.4 IPv6 Backbone Network Solution .................................................................................................................. 51
8 Operation and Maintenance ..................................................................................................... 52
8.1 Operation and Maintenance ........................................................................................................................... 52
8.1.1 System Configuration Management ...................................................................................................... 52
8.1.2 System Management and Maintenance ................................................................................................. 53
8.1.3 Device Operation Status Monitoring ..................................................................................................... 53
8.1.4 System Service and Status Tracking ..................................................................................................... 54
8.1.5 System Test and Diagnosis .................................................................................................................... 55
8.1.6 NQA ...................................................................................................................................................... 55
8.1.7 In-Service Debugging ........................................................................................................................... 55
8.1.8 Upgrade Features .................................................................................................................................. 56
8.1.9 License .................................................................................................................................................. 56
8.1.10 Other Features ..................................................................................................................................... 56
8.2 NMS ............................................................................................................................................................... 57
9 Abbreviation ................................................................................................................................ 58
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
vii
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
1
1 Product Positioning and Features
Product Positioning and Features
About This Chapter
1.1 Product Positioning
1.2 Product Features
1.1 Product Positioning
The Huawei NetEngine5000E (NE5000E) core router is a router with large capacities and
high performance which is developed to meet the requirement of carrier-class reliability.
Based on the powerful Versatile Routing Platform (VRP), the NE5000E provides strong
switching capabilities, dense ports, and high reliability. NE5000Es mainly serve as super-core
nodes on carriers' backbone networks, core nodes on Metropolitan Area Networks (MANs),
egress in the large-scale Internet Data Center (IDC), or core nodes on large-scale enterprise
networks.
NE5000E clusters are positioned as super-core nodes on backbone networks, supporting
Layer 3 routing and Multiprotocol Label Switching (MPLS) forwarding. In an NE5000E
cluster, a Cluster Central Chassis (CCC) functions as a level-2 switching module and routing
engine module in a three-stage switch fabric; a Cluster Line-card Chassis (CLC) functions as
a level-1 or level-3 switching module and forwarding module.
V800R003 has the following types of chassis:

Issue 01 (2011-09-15)
CCC
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
1
HUAWEI NetEngine5000E Core Router
NE5000E Product Description

1 Product Positioning and Features
NE5000E CLC
It provides 16 LPU slots, with a maximum of 100 Gbit/s for each slot.

NE5000E-X16 CLC
It provides 16 LPU slots, with a maximum of 200 Gbit/s for each slot.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
2
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
1 Product Positioning and Features
V800R003 has the following cluster models.
Cluster Model
Description
CCC-0
Consists of two Cluster Line-card Chassis (CLCs).
An NE5000E and an NE5000E-X16 can be used together.
CCC-1
Consists of one CCC and N (N <= 4) CLCs.
CLCs can be all NE5000Es, all NE5000E-X16s, or a combination of
NE5000Es and NE5000E-X16s .
CCC-2
Consists of two CCCs and N (N <= 8) CLCs.
CLCs can be all NE5000Es, all NE5000E-X16s, or a combination of
NE5000Es and NE5000E-X16s .
The NE5000E series include a single NE5000E, a single NE5000E-X16, and an NE5000E
cluster .
1.2 Product Features
Powerful Forwarding Capability
Designed with a hardware-based forwarding engine, the NE5000E series support full-duplex
forwarding of IPv4, IPv6, and MPLS packets at the line rate on all interfaces, and also support
ACL-based line rate forwarding.
The NE5000E series support multicast traffic forwarding at line rate. The hardware of the
NE5000E and NE5000E-X16 supports two-level multicast traffic replication: replication from
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
3
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
1 Product Positioning and Features
Switch and Fabric Units (SFUs) to Line Processing Units (LPUs) and replication from the
forwarding engine of an LPU to associated interfaces.
An LPU supports the packet buffer, which ensures that no packet will be lost in the case of
traffic burst.
Complete QoS
The NE5000E series provide complete Quality of Service (QoS) functions:

Rule-based traffic classification: such as Layer 2, Layer 3 rules (IPv4), Layer 3 rules
(IPv6), and MPLS rules.

Differentiated service: Differentiated services are provided for traffic with different
DSCP values, EXP values, 802.1p priorities, or IP precedence.

Traffic marking: The DSCP values, EXP values, 802.1p priorities, or IP precedence of
specific traffic can be modified based on a pre-defined policy.

Traffic policing: All traffic or specific traffic on a specified interface can be monitored
for traffic limiting.

Congestion avoidance: Tail drop or WRED is used to discard certain packets in the queue
to prevent queue overflow.

Congestion management: Priority Queuing (PQ) and Weighted Fair Queuing (WFQ) are
provided so that fair queue scheduling is guaranteed and services with a higher priority
are processed preferentially.
Complete QoS solutions guarantee different delays, jitter, bandwidth, and packet loss ratios
for different services. These solutions guarantee the launch of carrier-class services such as
Voice over IP (VoIP) and IPTV services, and meets the requirements of the development of IP
networks borne with multiple services.
Excellent Security Design
The NE5000E series provide multiple security measures to protect the data of Internet Service
Providers (ISPs) and users. The measures can protect against Denial of Service (DoS) attacks,
illegal access, and traffic overload on the control plane. The NE5000E series with a
distributed structure allow the separation between the data plane and the control plane, and
provides industry-leading security performance.
The NE5000E series provide the following security features:

Three user authentication modes: local authentication, Remote Authentication Dial In
User Service (RADIUS) authentication, and HUAWEI Terminal Access Controller
Access Control System (HWTACACS) authentication

Hardware-based packet filtering and sampling, which guarantee high performance and
high scalability

Plain-text authentication and Message Digest 5 (MD5) authentication of OSPF, IS-IS,
RIP, and BGP-4 packets

ACL based on the forwarding and control planes

Unicast Reverse Path Forwarding (URPF), which checks the source address validity and
discards invalid packets

Generalized TTL Security Mechanism (GTSM)

Lawful interception, which allows the NE5000E to receive configuration information
from the interception management center and send the intercepted traffic to the
interception management center (Intercepted information includes the content of
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
4
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
1 Product Positioning and Features
communication, such as email content and VoIP packets, and intercept related
information, such as the address, time, and network location.)

BGP Flow Specification is supported. The ACL carried in a BGP Flow Specification
route or the local policy that the route attribute matches is used to filter traffic.
Complete IPv4/IPv6 Solutions
The NE5000E series support the IPv4/IPv6 dual stack and provide complete IPv6 features and
solutions to smooth migration from IPv4 networks to IPv6 networks.

Support multiple types of IPv6 over IPv4 tunnels.

Support large-capacity routing tables and forwarding tables, which meets the
requirements of VPN Provider Edges (PEs) and future service expansion.

Support distributed forwarding of IPv4/IPv6 and Multiprotocol Label Switching (MPLS)
packets.
Good Compatibility and Scalability
The NE5000E series have good rollback compatibility and scalability:

A single chassis can be smoothly expanded to CCC-0, CCC-1 or CCC-2.

CCC-0 can be smoothly expanded to CCC-1 and CCC-2.

CCC-1 can be smoothly expanded to CCC-2.

A cluster can be rolled back to a single chassis.
Carrier-class Reliability and Manageability
The NE5000E series are of a carrier-class design and support hot swap of boards. The
NE5000E or NE5000E-X16 can be installed in an N68E cabinet or a standard 19-inch cabinet.
The NE5000E series also provide a powerful monitoring system. The Main Processing Units
(MPUs) on the NE5000E series manage and maintain the entire system. MPUs manage,
monitor, and maintain the boards, fan modules, and power modules on the NE5000E series.
The NE5000E series comply with the Electro Magnetic Compatibility (EMC) standard. The
modular design of the system achieves EMC isolation between boards.
The NE5000E series fully meet the requirements of carrier-class high-end routers for high
reliability. In terms of system design and implementation, the NE5000E series provide the
following features to ensure high reliability.
Table 1-1 Features that ensure high reliability
Item
Description
System
protection
mechanism
In a cluster, CCCs manage all CLCs in a centralized manner.
In a cluster, CCCs can debug and diagnose CLCs.
The boards, power modules, and fans are hot swappable.
In a cluster, the MPUs on each chassis work in 1:1 backup mode.
Key parts such as power modules, fan modules, clock modules, and
management buses are backed up.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
5
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
Item
1 Product Positioning and Features
Description
Protection
against faults

In CCC-0, if a serious fault occurs on the slave
chassis or a channel between the master and slave
chassis is cut off, the master chassis can work
independently.

In CCC-1 and CCC-2, if a CLC becomes faulty, the
other CLCs will not be affected.

In CCC-2, the two CCCs work in real-time hot
backup mode. If the master CCC becomes faulty, the
slave CCC switches to the master state and works
properly.
If an exception occurs, the system can restart
automatically and recover.
If an exception occurs on a board, the system will reset
and recover the board.
Protection against over-current and over-voltage is provided to protect
power modules and interfaces.
Protection against mis-insertion of boards is provided.
Alarm
monitoring
Voltage and
ambient
temperature
monitoring
Reliability
design

Alarm prompts, alarm indications, operating status,
and alarm status of power modules can be queried.

Alarms of high or low receiving optical power are
supported.

Alarms of CF card insertion and removal are
supported.
Alarm prompts, alarm indications, operating status, and
alarm status can be queried.
The ambient environment can be monitored.
Control channels are separated from service channels so that the control
channels are congestion-free.
The system supports a complete fault detection mechanism for the system
and boards, and alarm functions provided by alarm indicators and the
Network Management System (NMS).
Reliability design for the control channels between chassis in a cluster:
Handshake packets between chassis are forwarded preferentially.
Acknowledgement and retransmission mechanisms are provided for
handshake packets.
Overload check is provided for the control channels between chassis.
Alarms about exceptions in the control channels can be reported.
Reliable
upgrade
Issue 01 (2011-09-15)
In-service patching is supported.
In-Service Software Upgrade (ISSU) is supported, which shortens service
interruption.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
6
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
Item
1 Product Positioning and Features
Description
In-service upgrade of the BootROM is supported.
The error checking and correcting (ECC) of the Random Access Memory
(RAM) is supported.
Fault
tolerance
design
Data backup
Hot backup of data between the master and slave units is
supported. If the master unit fails, the slave unit
automatically replaces the master unit and transmits
data. This ensures that no data is lost.
The BootROM can be automatically upgraded and restored.
Configuration files can be backed up to the remote File Transfer Protocol
(FTP) server.
Correct configuration files can be selected and executed automatically.
System software exceptions can be monitored, automatically removed, and
recorded.
Operation
security
Passwords are used for system operations to ensure better security.
User levels and command levels can be configured to achieve hierarchical
protection of commands.
The configuration terminal can be locked by using commands so that the
terminal cannot be used by unauthorized users.
Prompts are provided to prevent improper operations. For example, if a
user runs a command that may affect system performance, the system will
prompt the user whether to continue the operation.
Operation
and
maintenance
center
The universal network management platform developed by Huawei is used.
Flexible VR Functions
As an important feature of the new-generation IP bearer devices, Virtual Router (VR) plays an
active role in operators' centralized operation and capital expenditure (CAPEX) and
operational expenditure (OPEX) reduction. By means of VR, operators divide large Physical
Routers (PRs) into multiple small separate VRs, optimizing physical resource allocation.
The following functions are supported by VR:

Reduces CAPEX and OPEX.

Flattens networks.

Multi-service network
Different services are deployed on different VRs, forming a logical multi-service
network. This isolates different types of services to improve security and reliability.

Issue 01 (2011-09-15)
Verification of new services
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
7
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
1 Product Positioning and Features
New services, such as IPv6 and video services, can be verified on VRs, which isolate
services and have no impact on the existing network applications.
Perfect L2VPN Solution
MPLS L2VPN is a technology that transparently transmits Layer 2 user data over an MPLS
network. From users' perspective, an MPLS network is a Layer 2 switching network and
Layer 2 connections can be set up between nodes on the MPLS network. MPLS L2VPN can
be classified into VPLS and VPWS. V800R003C00 supports VPWS, but not VPLS.
Virtual Private Wire Service (VPWS) is a technology that transmits Layer 2 services by
emulating basic behaviors and features of services such as Ethernet, synchronous optical
network (SONET), and synchronous digital hierarchy (SDH) services on a packet switched
network (PSN). It is a type of point-to-point L2VPN service transmitted over the public
network. In VPWS, two sites can communicate as if they were directly connected by a link;
however, more than two sites cannot communicate at the same time at the service provider.
Flexible Rollback Configuration
Rollback is an important means of configuration management, which is used in network
operation and maintenance and is significant for device maintenance on existing networks.
Configuring rollback can reduce the operator error ratio and improve device maintenance
efficiency.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
8
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
2
Product Architecture
About This Chapter
2.1 Physical Architecture
2.2 Logical Architecture
2.3 Software Architecture
2.1 Physical Architecture
Physical Architecture of a CLC
An NE5000E and NE5000E-X16 CLC consists of the following systems:

Power distribution system

Heat dissipation system

NMS

Functional host system
The functional host system is composed of a system backplane, MPUs, LPUs, and SFUs. The
functional host system processes data on CLCs, monitors, and manages the other systems,
such as power distribution system and heat dissipation system. In addition, the functional host
system uses a network management interface to connect to the NMS. Figure 2-1 shows the
functional host system of a CLC.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
9
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
Figure 2-1 Diagram of the functional host system of a CLC
Backplane
Monitoring unit
Management unit
Monitoring
bus
Management
bus
Monitoring
bus
Management
bus
(1)
POS/
Ethernet
Physical
interface unit
Forwarding
unit
Serial link
group
Monitoring
bus
Management
bus
(1)
POS/
Ethernet
Monitoring unit
Monitoring
bus
Management unit
Management
bus
Physical
interface unit
Forwarding
unit
Monitoring
bus
Management
bus
(1)
Serial link
group
System
monitoring unit
Management bus
switching unit
System
monitoring unit
MPU/
SRU
(Master)
System
monitoring unit
Management bus
switching unit
System
monitoring unit
MPU/
SRU
(Slave)
Switching network
monitoring unit
Switching network
control unit
Switching network
SFU module
(1) The link connects to the managment bus switching unit of another SRU
Physical Architecture of a CCC
A CCC consists of the following systems:

Power distribution system
Power modules work in 1+1 backup mode. Together with the power backplane and the
system backplane, the power modules supply power for boards in different areas and
provide independent -48 V power for fan modules.

Heat dissipation system
The front and rear fan modules dissipate heat for front and rear boards.

NMS

Functional host system
The functional host system consists of a system backplane, MPUs, optical flexible cards
(OFCs), Electrical Cross Units (ECUs), SFUs, and internal communication units (ICUs).
The functional host system manages and controls the other systems, and provides control and
data channels. Figure 2-2 shows the functional host system of a CCC.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
10
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
Figure 2-2 Diagram of the functional host system of a CCC
MPU
System control unit
GE
Control channel
of chassises
Management bus switching unit
10M
GE
Control channel
of chassises
Internal
Communication Unit
Serdes
Service channel
of chassises Optical Flexible
Localbus
Card
Power
10M
Serdes
Electric Cross Unit
Power
B
a
c
k
p
l
a
n
e
Serdes
.
.
.
Switching
network unit
Serdes
Physical Architecture of CCC-0
CCC-0 is the simplest cluster. In CCC-0, two CLCs (a master chassis and a slave chassis) are
connected, as shown in Figure 2-3.
In CCC-0, an NE5000E can be connected to an NE5000E-X16 .
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
11
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
Figure 2-3 Physical architecture of CCC-0
Based on the principle of centralized management, CCC-0 introduces the concepts of the
master and slave chassis.

The chassis in master mode is called a master chassis. It manages all parts in the entire
system. All parts including boards, power modules, fan modules, and the liquid crystal
display (LCD) must be registered with the master MPU on the master chassis.

The chassis in slave mode is called a slave chassis. The functions of the MPUs on the
slave chassis are simplified. In addition to providing control channels, the MPUs on the
slave chassis provides only diagnostic and debugging functions, but does not support
routing protocols, MPLS, Quality of Service (QoS), or multicast functions.
The physical architecture of CCC-0 is similar to that of a CLC, which also includes the
following systems:

Power distribution system

Functional host system

Heat dissipation system

NMS
The power distribution system, heat dissipation system, and NMS of CCC-0 are the same as
those of a CLC. Different from the functional host system of a CLC, the functional host
system of CCC-0 consists of two parts:

Issue 01 (2011-09-15)
Functional host system of the master chassis: processes data for both the master and
slave chassis. In addition, it monitors and manages the power distribution system and the
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
12
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
heat dissipation system. The functional host system of the master chassis uses a network
management interface to connect to the NMS.

Functional host system of the slave chassis: manages the slave chassis. The Routing
Process Systems (RPSs) of both the slave chassis and master chassis are similar. The
only difference is that the RPS of the slave chassis does not run any switching software
or calculate routes. The RPS of the master chassis manages the entire system. The
routing protocols are disabled on the slave chassis; static routes are not reported to the
master chassis but reserved.
Physical Architectures of CCC-1
In CCC-1, NE5000Es can be used together with NE5000E-X16s.
CCC-1 consists of one CCCs and up to eight CLCs, as shown in Figure 2-4.
Figure 2-4 Physical architecture of CCC-1
CCC-1 uses the levels 1, 2, and 3 switching fabric. A CLC in CCC-1 provides LPUs and a
stage-1 and stage-3 switch fabric. A CCC provides a routing engine and a stage-2 switch
fabric.
Physical Architectures of CCC-2
In CCC-2, NE5000Es can be used together with NE5000E-X16s.
CCC-2 consists of two CCCs and up to eight CLCs, as shown in Figure 2-5.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
13
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
Figure 2-5 Physical architecture of CCC-2
CCC-2 uses the levels 1, 2, and 3 switching fabric. A CLC in CCC-2 provides LPUs and a
stage-1 and stage-3 switch fabric. A CCC provides a routing engine and a stage-2 switch
fabric.
2.2 Logical Architecture
Logical Architectures of a CLC and CCC-0
The logical architecture of a CLC consists of three planes: a data plane, a control and
management plane, and a monitoring plane, as shown in Figure 2-6.
Figure 2-6 Logical architecture of a CLC
LPU
LPU
M o n ito rin g
u n it
M o n ito rin g
u n it
M o n ito rin g
p la n e
M o n ito rin g
u n it
C o n tro l a n d
m anagem ent
p la n e
MPU
M anagem ent
u n it
M anagem ent
u n it
S y s te m
m o n ito rin g u n it
M o n ito rin g
u n it
M anagem ent
u n it
S y s te m
m o n ito rin g u n it
S w itc h in g
n e tw o rk
c o n tro l u n it
M anagem ent
u n it
F o rw a rd in g
u n it
D a ta p la n e
F o rw a rd in g
u n it
LPU
F o rw a rd in g
u n it
S w itc h in g
n e tw o rk
交 换S网
板
FU
F o rw a rd in g
u n it
LPU
CCC-0 uses the same logical architecture which consists of a data plane, a control and
management plane, and a monitoring plane, as shown in Figure 2-7.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
14
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
Figure 2-7 Logical architecture of CCC-0
LPU
System
monitoring unit
Monitoring
unit
Management
unit
Management
unit
Data plane of the
master chassis
Monitoring
unit
Monitoring
unit
Monitoring plane
Control &
management plane
LPU
MPU
Forwarding
unit
Forwarding
unit
LPU
Forwarding
unit
Data plane of the
slave chassis
Forwarding
unit
LPU
Monitoring
unit
Management
unit
System
monitoring unit
Switching network
control unit
SFU
Switching
network
Management
unit
Forwarding
unit
Forwarding
unit
LPU
Forwarding
unit
Switching
network
SFU
Forwarding
unit
LPU

The data plane is responsible for high speed processing and congestion-free switching of
data packets. It encapsulates and decapsulates packets, forwards IPv4/IPv6/MPLS
packets, performs QoS and queue scheduling, switches data at a high speed, and collects
statistics.

The control and management plane is the core of the entire system. It controls and
manages the system. The control and management unit processes protocols and signaling,
configures and maintains the system status, and reports and controls the system status.

The monitoring plane monitors the ambient environment of the system independently. It
detects voltages and temperatures, and controls fan modules and power-on and power-off
of the system, thus ensuring system security and stability. In addition, if a unit becomes
faulty, the monitoring plane can isolate the fault immediately to guarantee the proper
operation of the other units.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
15
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
Logical Architecture of a Cluster
CCC-1 and CCC-2
The logical architectures of CCC-1 and CCC-2 are the same as that of a CLC, consisting of
the following logical functional modules:

Routing control module

Management control module

Monitoring plane

Switch fabric

Forwarding plane
The preceding modules of CCC-1 and CCC-2 have different implementations from that of a
CLC. A cluster is composed of two parts: CCCs and CLCs. A CLC can be an NE5000E or
NE5000E-X16 that supports the cluster cascading function.
A CLC consists of the following functional modules:

Monitoring plane

Management control module

Forwarding plane

Switch fabric (S1 and S3)
A CCC consists of the following functional modules:

Monitoring plane

Management control module

Switch fabric (S2)

Routing control module
All functional modules are distributed in a CCC and a CLC as shown in Figure 2-8. The CCC
and the CLC exchange data by using control and data channels.
Figure 2-8 Logical architecture of a cluster
Monitoring plane
Monitoring plane
Control and management plane
Control and management plane
Forwarding
plane
Level 1/3
switching plane
Forwarding
plane
CLC
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Level 2
switching plane
CCC
16
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
2 Product Architecture
2.3 Software Architecture
The NE5000E series provide a reliable, scalable, and flexible software architecture, which has
a large capacity, supports multi-process and full-service, and meets customers' requirements.
Figure 2-9 Software Architecture
Issue 01 (2011-09-15)
OI
I
M
R
B
P
T U
SS I RG S
G
I
C D
IP
M
PI B M D
P
M
P P
F S
P P
T
A P H V R
R P D L U
P P L A N
C N
K
SSP
SMP
BOS
DIRVER
NP
LOGIC
Forwarding
Forwarding
B V
S P
A N
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
C S
L N
I M
P
N
E
T X
C P
O L
N
F
17
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
3 Technical Specifications
3
Technical Specifications
About This Chapter
3.1 Physical Specifications
3.2 System configuration
3.1 Physical Specifications
Table 3-1 Physical specifications of an NE5000E-X16 CLC
Item
Description
Dimensions (W x D x H)
Dimensions of the chassis body: 442 mm x 650 mm
x 1420 mm (32 U) (17.40 in. x 25.59 in. x 55.91
in.)
Dimensions of the chassis body together with cable
racks and front and back attachments: 442 mm x 770
mm x 1420 mm (32 U) (17.40 in. x 30.31 in. x
55.91 in.)
Installation location
N68E cabinet or a standard 19-inch cabinet
Weight
Full configuration : 280 kg (661.5 lb)
Maximum power
10402 W
Heat dissipation
35524 BTU/hour
DC input
voltage
Rated voltage
-48 V
Maximum voltage
-72 V to -38 V
AC input
voltage
Rated voltage
110 V to 220 V
Maximum voltage
90 V to 290 V
Operating
temperature
Long-term
0°C (32°F) to 40°C (104°F)
Short-term
-5°C (23°F) to 50°C (122°F)
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
18
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
Item
3 Technical Specifications
Description
Remarks
Restriction on the temperature variation rate: 30°C
(86°F) per hour
Storage temperature
-40°C(-40°F) to 70°C(158°F)
Operating
relative
humidity
Long-term
5% RH to 85% RH, no condensing
Short-term
5% RH to 95% RH, no condensing
Storage humidity
0% RH to 95% RH, no condensing
Long-term operating altitude
Lower than 3000 meters (9842.40 ft.)
Storage altitude
Lower than 5000 meters (16404.00 ft.)
Table 3-2 Physical specifications of an NE5000E CLC
Item
Description
Dimensions (W x D x H)
442 mm x 669 mm x 1600 mm (36 U) (17.40 in. x
26.34 in. x 62.99 in.)
Installation location
N68E cabinet or a standard 19-inch cabinet
Maximum power
Full configuration: 7017 W
Heat dissipation
23906 BTU/hour
Weight
Full configuration
268 kg (590.94 lb)
DC input
voltage
Rated voltage
-48 V to -60 V
Maximum voltage
-38 V to -72 V
AC input
voltage
Rated voltage
200 V AC to 240V AC (220 V power supply)
110 V AC (110 V power supply)
Maximum voltage
180 V AC to 264 V AC (220 V power supply)
100 V AC to 120 V AC (110 V power supply)
Operating
temperature
Long-term
0°C (32°F) to 40°C (104°F)
Short-term
-5°C (23°F) to 50°C (122°F)
Storage temperature
-40°C(-40°F) to 70°C(158°F)
Operating
relative
humidity
Long-term
5% to 85%
Short-term
5% to 95%
Storage humidity
5% to 95%
Long-term operating altitude
Lower than 3000 meters (9842.40 ft.)
Storage altitude
Lower than 5000 meters (16404.00 ft.)
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
19
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
3 Technical Specifications
Table 3-3 Physical specifications of a CCC
Item
Description
Dimensions (W x D x H)
442 mm x 800 mm x 1241 mm (28 U) (17.40 in.
x 26.34 in. x 62.99 in. )
Installation location
N610E cabinet
Weight
Full configuration: 300 kg (661.50 lb)
Maximum power
CCC: 4400 W
1+4 cluster: 34000 W
2+2 cluster: 23600 W
2+4 cluster: 38400 W
2+8 cluster: 68000 W
Heat dissipation
CCC: 15026 BTU/hour
1+4 cluster: 116114 BTU/hour
2+2 cluster: 80596 BTU/hour
2+4 cluster: 131140 BTU/hour
2+8 cluster: 232228 BTU/hour
DC input
voltage
Rated voltage
-48 V
Maximum voltage
-72 V to -38 V
AC input
voltage
Rated voltage
110 V to 220 V
Maximum voltage
90 V to 290 V
Operating
temperature
Long-term
0°C (32°F) to 40°C (113°F)
Short-term
-5°C (23°F) to 50°C (131°F)
Remarks
Restriction on the temperature variation rate:
30°C (86°F) per hour
Storage temperature
-40°C(-40°F) to 70°C(158°F)
Operating
relative
humidity
Long-term
5% RH to 85% RH, no condensing
Short-term
5% RH to 95% RH, no condensing
Storage humidity
0% RH to 95% RH, no condensing
Long-term operating altitude
Lower than 3000 meters (9842.40 ft.)
Storage altitude
Lower than 5000 meters (16404.00 ft.)
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
20
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
3 Technical Specifications
3.2 System configuration
Table 3-4 System configuration of a CCC
Item
System configuration
Remarks
Processor
Dominant frequency: 1.5 GHz
-
BootROM
16 MB
-
SDRAM
4 GB
-
NVRAM
1MB
-
Flash
128 MB
-
CF card
4 GB
An MPUA (CR55C-MPUA)
has two 2 GB CF cards. The
capacity of the CF card can
be configured.
Table 3-5 System configuration of a CLC and a CCC
Item
CF
card
Mem
ory
Back
plan
e
capa
city
Swit
chin
g
capa
city
Inter
face
capa
city
Asse
mbly
cabi
net
Num
ber
of
LPU
slots
Num
ber
of
MPU
slots
Num
ber
of
SFU
slots
Maxi
mum
inter
face
rate
NE50
00EX16
CLC
1 GB
per
CF
card
4 GB
mem
ory
on
each
MPU
30
Tbit/s
(bidir
ectio
nal)
6.4
Tbit/s
(bidir
ectio
nal)
3.2
Tbit/s
(bidir
ectio
nal)
1
16
2
4
100
Gbit/
s
4 GB
mem
ory
on
each
MPU
8
Tbit/s
(bidir
ectio
nal)
2.56
Tbit/s
(bidir
ectio
nal)
1.28
Tbit/s
(bidir
ectio
nal)
1
16
2
4
100
Gbit/
s
4 GB
mem
ory
-
-
-
1
-
2
8
-
Two
CF
cards
on
each
MPU
NE50
00E
CLC
1 GB
per
CF
card
Two
CF
cards
on
each
MPU
CCC
Issue 01 (2011-09-15)
1 GB
per
CF
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
21
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
Item
CF
card
Mem
ory
card
on
each
MPU
Two
CF
cards
on
each
MPU
3 Technical Specifications
Back
plan
e
capa
city
Swit
chin
g
capa
city
Inter
face
capa
city
Asse
mbly
cabi
net
Num
ber
of
LPU
slots
Num
ber
of
MPU
slots
Num
ber
of
SFU
slots
Maxi
mum
inter
face
rate
CCC0
-
-
30
Tbit/s
x2
CLCs
6.4
Tbit/s
x2
CLCs
(bidir
ectio
nal)
3.2
Tbit/s
x2
CLCs
2
32
2x2
CLCs
4x2
CLCs
100
Gbit/
s
CCC1
-
-
30
Tbit/s
x4
CLCs
6.4
Tbit/s
x4
CLCs
(bidir
ectio
nal)
3.2
Tbit/s
x4
CLCs
5
64
MPU
s on
CLC:
2x4
CLCs
SFUs
on
CLC:
4x4
CLCs
100
Gbit/
s
MPU
s on
CCC:
2x1
CCCs
MPU
s on
CCC:
8x1
CCCs
6.4
Tbit/s
x8
CLCs
(bidir
ectio
nal)
3.2
Tbit/s
x8
CLCs
MPU
s on
CLC:
2x8
CLCs
SFUs
on
CLC:
4x8
CLCs
MPU
s on
CCC:
2x2
CCCs
MPU
s on
CCC:
8x2
CCCs
Accel
eratio
n
ratio:
2:1
Bidir
ectio
nal
-
-
CCC2
Rema
rks
Issue 01 (2011-09-15)
-
-
-
-
30
Tbit/s
x8
CLCs
Bidir
ectio
nal
10
-
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
128
-
100
Gbit/
s
-
22
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
4 LPU
4
LPU
The NE5000E series provide physical interfaces such as GE and POS interfaces. Using these
interfaces, the NE5000E series can be connected to different types of network devices to meet
different networking requirements.
Fixed Interface LPUs
Table 4-1 Fixed interface LPUs
Name
Remarks
10-Port 1000Base-SFP Optical Interface Line Processing Unit B
-
1-Port OC-48c/STM-16c POS-SFP Optical Interface Enhanced
Line Processing Unit B
-
2-Port OC-48c/STM-16c POS-SFP Optical Interface Enhanced
Line Processing Unit B
-
4-Port OC-48c/STM-16c POS-SFP Optical Interface Enhanced
Line Processing Unit B
-
8-Port OC-3c/STM-1 POS-SFP Optical Interface Line Processing
Unit B
-
4-Port OC-12c/STM-4c POS-SFP Optical Interface Line
Processing Unit B
-
8-Port OC-12c/STM-4c POS-SFP Optical Interface Line
Processing Unit B
-
1-Port OC-192c/STM-64c POS-XFP Optical Interface Line
Processing Unit B
-
1-Port 10GBase LAN-XFP Optical Interface Line Processing
Unit B
-
1-Port 10GBase WAN-XFP Optical Interface Line Processing
Unit B
-
1-Port OC-192c/STM-64c POS Single-mode 1310nm 2km-LC
Optical Interface Line Processing Unit B
-
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
23
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
4 LPU
Name
Remarks
1-Port OC-192c/STM-64c POS Single-mode 1550nm 40km-LC
Optical Interface Line Processing Unit B
-
1-Port OC-192c/STM-64c POS Single-mode 1550nm 80km-LC
Optical Interface Line Processing Unit B
-
1-Port 10GE LAN Single-mode 1310 nm 10 km-LC Optical
Interface Line Processing Unit B
-
1-Port 10GE LAN Single-mode 1550 nm 40 km-LC Optical
Interface Line Processing Unit B
-
1-Port 10GE WAN Single-mode 1310 nm 10 km-LC Optical
Interface Line Processing Unit B
-
1-Port 10GE WAN Single-mode 1550 nm 40 km-LC Optical
Interface Line Processing Unit B
-
20-Port 1000Base-SFP Optical Interface Line Processing Unit C
-
8-Port OC-48c/STM-16c POS-SFP Optical Interface Line
Processing Unit C
-
2-Port OC-192c/STM-64c POS-XFP Optical Interface Line
Processing Unit C
-
2-Port 10GBase LAN-XFP Optical Interface Line Processing
Unit C
-
2-Port 10GBase WAN-XFP Optical Interface Line Processing
Unit C
-
8-Port 10GBase LAN-XFP Line Processing Unit E
-
16-Port OC-3c/STM-1c POS-SFP Line Processing Unit E
-
8-Port OC-12c/STM-4c POS-SFP Line Processing Unit E
-
1-Port OC-192c/STM-64c POS-XFP Line Processing Unit E
-
2-Port OC-192c/STM-64c POS-XFP Line Processing Unit E
-
4-Port OC-192c/STM-64c POS-XFP Line Processing Unit E
-
1-Port OC-48c/STM-16c POS-SFP Line Processing Unit E
-
2-Port OC-48c/STM-16c POS-SFP Line Processing Unit E
-
4-Port OC-48c/STM-16c POS-SFP Line Processing Unit E
-
8-Port OC-48c/STM-16c POS-SFP Line Processing Unit E
-
1-Port 10GBase LAN-XFP Line Processing Unit E
-
1-Port 10GBase WAN-XFP Line Processing Unit E
-
2-Port 10GBase LAN-XFP Line Processing Unit E
-
2-Port 10GBase WAN-XFP Line Processing Unit E
-
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
24
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
4 LPU
Name
Remarks
4-Port 10GBase LAN-XFP Line Processing Unit E
-
4-Port 10GBase WAN-XFP Line Processing Unit E
-
10-Port 1000Base-X-SFP Line Processing Unit E
-
20-Port 1000Base-X-SFP Line Processing Unit E
-
1-Port 10GBase LAN-XFP Line Processing Unit E
-
2-Port 10GBase LAN-XFP and 4-Port OC-48c/STM-16c
POS-SFP Optical Interface Line Processing Unit
-
2-Port 10GBase WAN-XFP and 4-Port OC-48c/STM-16c
POS-SFP Optical Interface Line Processing Unit
-
4-Port OC-48c/STM-16c POS-SFP and 10-Port 1000Base-SFP
Optical Interface Line Processing Unit
-
2-Port OC-192c/STM-64c POS-SFP and 4-Port
OC-48c/STM-16c POS-SFP Optical Interface Line Processing
Unit
-
2-Port OC-192c/STM-64c POS-XFP and 10-Port 1000Base-SFP
Optical Interface Line Processing Unit
-
2-Port OC-192c/STM-64c POS-XFP and 2-Port 10GBase
LAN-XFP Optical Interface Line Processing Unit
-
2-Port OC-192c/STM-64c POS-XFP and 2-Port 10Base
WAN-XFP Optical Interface Line Processing Unit
-
4-Port 10GBase LAN-XFP Line Processing Unit E
-
4-Port 10GBase WAN-XFP Line Processing Unit E
-
4-Port OC-192c/STM-64c POS-XFP Line Processing Unit E
-
8-Port OC-48c/STM-16c POS-SFP Line Processing Unit E
-
40-port 1000Base-X-SFP Line Processing Unit
-
1-Port 40G POS Line Processing Unit M
-
1-Port 100GBase CFP Line Processing Unit (NE5000E
LPUI-100)
-
10-Port 10GBase LAN/WAN-XFP Integrated Line Processing
Unit (NE5000E LPUI-100)
-
20-Port 10GBase LAN/WAN-XFP Line Processing
Unit(NE5000E LPUI-200)
-
2-Port 100GBase Line Processing Unit (NE5000E LPUI-200)
-
1-Port 100GBase + 10-port 10GBase LAN/WAN-SFP Line
Processing Unit (NE5000E LPUI-200)
-
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
25
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
4 LPU
LPUs for FPICs
Table 4-2 LPUs for FPICs
LPU Name
Remarks
2-Port OC-192c/STM-64c POS/OTU2-XFP
Flexible Card(Dynamic switch between
POS and OTN)(CP100,1 sub-slot)
-
2-Port 10GBase LAN-XFP Flexible
Card(CP100,1 sub-slot)
-
2-Port 10GBase LAN/WAN-XFP Flexible
Card(CP100,1 sub-slot)
-
1-Port OC-768c/STM-256c POS-2KM-LC
Flexible Card(CP100,2 sub-slots)
-
24-Port 100/1000Base-SFP Flexible
Card(CP100,2 sub-slots)
-
5-Port 10GBase LAN/WAN-XFP Flexible
Card(CP100,2 sub-slots)
-
5-Port 10GBase LAN-XFP Flexible
Card(CP100,2 sub-slots)
-
1–Port 40GE Half-Width Flexible Interface
Daughter Card
-
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
26
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
5 Link Features
5
Link Features
About This Chapter
5.1 Ethernet Link Features
5.2 POS Link Features
5.1 Ethernet Link Features
The NE5000E series provide Layer 3 Ethernet interfaces, including GE electrical interfaces,
GE optical interfaces, 10GE optical interfaces, and 100GE optical interfaces, and supports
IPv4/IPv6, MPLS, QoS, and multicast services.
The Layer 3 Ethernet interfaces on the NE5000E series support the following features:

VLANIF interfaces

LACP (802.3ad)
The NE5000E series support link aggregation in static mode.

Issue 01 (2011-09-15)
Layer 3 Eth-Trunk
−
Ethernet interfaces on different CLCs can be bundled into an Eth-Trunk.
−
Ethernet interfaces on different boards in the same CLC can be bundled into an
Eth-Trunk.
−
A maximum of 32 physical Ethernet interfaces can be bundled into an Eth-Trunk. The
Eth-Trunk interface functions as the common Ethernet interface and supports various
types of services.
−
Interfaces working at different rates can be bundled into an Eth-Trunk.
−
The Eth-Trunk can work in active/standby mode, and performs the active/standby
switchover automatically based on the link status of interfaces.
−
Member interfaces of an Eth-Trunk can be manually added or deleted. The NE5000E
series can also sense the Up or Down state of the member interfaces and dynamically
adjust the bandwidth of the Eth-Trunk accordingly.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
27
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
5 Link Features
5.2 POS Link Features
The NE5000E series provide POS interfaces working at 155Mbit/s, 622Mbit/s, 2.5 Gbit/s,
10 Gbit/s, or 40 Gbit/s. POS interfaces support the following features:

SDH and SONENT encapsulation

The physical layer of the Packet Over SDH/SONET (POS) link adopts Synchronous
Optical Network (SONET) defined by the American National Standards Institute (ANSI)
or Synchronous Digital Hierarchy (SDH) defined by the International
Telecommunication Union-Telecommunication Standardization Sector (ITU-T). POS
interfaces support various types of alarms for the physical layer.

Point-to-Point Protocol (PPP)

PPP supports:
−
Link Control Protocol (LCP)
−
Internet Protocol Control Protocol (IPCP)
−
Multi-Protocol Label Switching Control Protocol (MPLSCP)
−
Password Authentication Protocol (PAP) authentication
−
Challenge Handshake Authentication Protocol (CHAP) authentication

High-level Data Link Control (HDLC) protocol

IP-Trunk
If HDLC is used as the link layer encapsulation type, multiple POS interfaces can be
bundled into a logical IP-Trunk to support IP bundling.
The NE5000E series support the following types of IP bundling:
Issue 01 (2011-09-15)
−
Inter-board IP bundling
−
IP bundling of channels working at different rates
−
Dynamic creation and deletion of IP-Trunk member interfaces
−
Addition of a POS interface to an IP-Trunk using a command
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
28
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
6
Service Features
About This Chapter
6.1 Ethernet Features
6.2 IP Features
6.3 Routing Protocols
6.4 MPLS Features
6.5 VPN Features
6.6 QoS Features
6.7 Traffic Load Balancing
6.8 Traffic Statistics Collection
6.9 Security Features
6.10 Network Reliability
6.1 Ethernet Features
The Ethernet interfaces on the NE5000E series can work in the routed mode and provide
IPv4/IPv6, MPLS, QoS, and multicast services.
6.2 IP Features
6.2.1 IPv4/IPv6 Dual-Stack
The IPv4/IPv6 dual-stack has good interoperability and is easy to implement. Figure 6-1
shows the structure of the IPv4/IPv6 dual stack.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
29
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
Figure 6-1 Structure of the IPv4/IPv6 dual stack
IPv4/IPv6 Application
TCP
UDP
IPv4
IPv6
Link Layer
6.2.2 IPv4 Features
The NE5000E series support the following IPv4 features:

TCP/IP protocol suite, including ICMP, IP, TCP, UDP, socket (TCP/UDP/Raw IP), and
ARP

FTP server/client and TFTP client

Ping, tracert, and Network Quality Analysis (NQA)

NQA can detect whether ICMP, TCP is enabled and test the response time of a service.

IP policy-based routing, which specifies the next hop based on packet attributes without
searching a routing table for routes

Flow-based next hop

Load balancing based on IP policy-based routing

Equal Cost Multiple Path (ECMP)

Unequal Cost Multiple Path (UCMP)
6.2.3 IPv6 Features
The NE5000E series support the following IPv6 features:

IPv6 Neighbor Discovery (ND)

Path MTU (PMTU) discovery

TCP6, IPv6 ping, IPv6 tracert, and IPv6 socket

IPv6 policy-based routing

6VPE, and 6VPE FRR
6.2.4 IPv4/IPv6 Transition Technology
The NE5000E series support the following functions:

IPv6 over IPv4 tunnel
The NE5000 series support the following IPv6 over IPv4 tunnels:
Issue 01 (2011-09-15)
−
IPv6 manual tunnel
−
6to4 tunnel
−
6to4 relay tunnel
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
30
HUAWEI NetEngine5000E Core Router
NE5000E Product Description

6 Service Features
6PE, and 6PE FRR
6.3 Routing Protocols
6.3.1 Unicast Routing Features
The following NE5000E series support the following unicast routing features:

IPv4 routing protocols, including Routing Information Protocol (RIP), Open Shortest
Path First (OSPF), Intermediate System-Intermediate System (IS-IS), and BGPv4

IPv6 routing protocols, including Routing Information Protocol Next Generation (RIPng),
OSPFv3, IS-ISv6, and BGP4+

Static routes that are manually configured by the administrator to simplify network
configurations and improve network performance

Large-capacity routing table that can effectively support the operation of a MAN

Routing policies that can be used to select optimal routes

Import of routing information from other routing protocols

Application of a routing policy in advertising and receiving routes, and filtration of
routes by using route attributes

Configuration of load balancing and maximum number of equal-cost routes

Password authentication and MD5 authentication to improve network security

Restart of protocol processes by using command lines

RIP version1 (classful routing protocol) and RIP version2 (classless routing protocol)

Advertisement of a default route from RIP to its peers and setting of the route metric

RIP triggered updates

Suppression of RIP packet sending and receiving on a specified interface

Association between OSPF and BGP

Association between OSPF and LDP

OSPF fast convergence, which can be achieved by the following means:
RIP
OSPF
−
Adjusting the interval of LSAs
−
OSPF NSR
−
Configuring BFD for OSPF

Non-Stop Forwarding (NSF) that ensures high reliability

Suppression of OSPF packet sending and receiving on a specified interface

OSPF I-SPF and IS-IS I-SPF (I-SPF calculates only changed routes rather than all routes
at a time)

OSPF GTSM

Two-level IS-IS in a routing domain
IS-IS
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
31
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features

IS-IS I-SPF (I-SPF calculates only changed routes rather than all routes at a time)

Association between IS-IS and LDP

IS-IS NSR

IS-IS multi-topology (MT)

IS-IS shortcut (AA) and advertise (FA)

Policy-based route selection by BGP when there are multiple routes to the same
destination

BGP rout reflector (RR), which addresses the problem of high costs of full connections
when there are many IBGP peers

Sending of BGP update packets that do not carry private AS numbers

Route dampening, which suppresses unstable routes (unstable routes are neither added to
the BGP routing table nor advertised to other BGP peers)

BGP fast convergence by means of the new route convergence mechanism and algorithm,
Including:
BGP
Indirect next hop
Recursive on-demand (ROD)

BGP NSR

BGP GTSM

Four-byte AS number

BGP indirect next hop

IPv4 unicast address family

IPv4 multicast address family

IPv4 private address family

VPNv4 address family

IPv6 unicast address family

IPv6 private address family

VPNv6 address family

BGP DUAL AS

BGP confederation
6.3.2 Multicast Routing Features
The NE5000E series provide the following multicast features:

Multicast protocols: Internet Group Management Protocol (IGMP , including IGMPv1 ,
IGMPv2 and IGMPv3), Protocol Independent Multicast-Sparse Mode (PIM-SM),
Multicast Source Discovery Protocol (MSDP), and Multi-protocol Border Gateway
Protocol (MBGP)

Reverse Path Forwarding (RPF)

PIM-SSM

Anycast Rendezvous Point (RP)

IPv6 multicast routing protocols: PIM-IPv6-SM and PIM-IPv6-SSM

Multicast Listener Discovery (MLD), which can be:
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
32
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
−
6 Service Features
MLDv1 (defined in RFC 2710)
MLDv1 is derived from IGMPv2 and supports the Any-Source Multicast (ASM)
model. With the help of SSM mapping, MLDv1 supports the Source-Specific
Multicast (SSM) model.
−
MLDv2 (defined in RFC 3810)
MLDv2 is derived from IGMPv3 and supports ASM and SSM models.

Multicast static routes

Configuration of multicast protocols on physical interfaces such as Ethernet and POS
interfaces, and IP-Trunk and Eth-Trunk interfaces

Filtering of routes based on a routing policy in receiving, importing, and advertising
multicast routes, and filtering and forwarding of multicast packets based on a routing
policy in forwarding IP multicast packets

Addition and deletion of dummy entries
6.4 MPLS Features
The NE5000E series support MPLS and dynamic Label Switched Paths (LSPs). Dynamic
LSPs are established dynamically by the Label Distribution Protocol (LDP) or Resource
Reservation Protocol (RSVP)-TE based on routing information.
Basic Features
The NE5000E series support the following MPLS functions:

Basic MPLS functions, service forwarding, and LDP (MPLS signaling distributes labels,
sets up LSPs, and transfers parameters used for LSP establishment)

LDP for IPv6

LDP supports:
−
Label distribution mode: DU
−
Independent label distribution control mode and sequential label control mode
−
Liberal label retention mode
−
Loop detection mechanisms: maximum number of hops and path vector

MPLS ping and tracert, and LSP availability check by using MPLS Echo Request and
MPLS Echo Reply packets

LSP-based traffic statistics collection

MPLS QoS, mapping of the ToS field in IP packets to the EXP field in MPLS packets,
and MPLS uniform, pipe, and short pipe modes

MPLS trap function

LDP GTSM
The NE5000E series can serve as Label Edge Routers (LERs) or Label Switch Routers
(LSRs).

An LER is an edge device on the MPLS network. It classifies services, distributes labels,
and adds or removes labels.

An LSR is a core router on the MPLS network. It switches and distributes labels.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
33
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
MPLS TE
The MPLS TE technology integrates the MPLS technology with traffic engineering. It can
reserve resources by setting up LSP tunnels for a specified path in an attempt to avoid
network congestion and balance network traffic.
In the case of resource scarcity, MPLS TE can preempt bandwidth resources of the LSPs with
low priorities. This meets the demands of the LSPs with large bandwidth or for important
services. In addition, when an LSP fails or a node is congested, MPLS TE can protect the
network communication through the backup path and the fast reroute (FRR) function.
MPLS TE provides the following functions:

Processing various types of Constrained Route-Label Switched Paths (CR-LSPs)
CR-LSPs are classified into the following types:

RSVP-TE

Auto route
Auto routing works in either of the following modes:
IGP shortcut: An LSP is not advertised to neighboring routers. Therefore, the routers
cannot use the LSP.
Forwarding adjacency: An LSP is advertised to neighboring routers. Therefore, the
routers can use the LSP.

FRR
The switching time of TE FRR can reach 50 ms. It can minimize data loss when network
failures occur.

Auto FRR
Auto FRR is an extension of MPLS TE FRR. You can create a bypass tunnel by
configuring the attributes of the bypass tunnel, global auto FRR, and interface-based auto
FRR on the primary tunnel. If the primary tunnel changes, the old bypass tunnel will be
deleted automatically and a new bypass tunnel will be set up.

CR-LSP backup

The NE5000E series support the following backup modes:

−
Hot backup: A backup CR-LSP is set up immediately after a primary CR-LSP has
been set up. If the primary CR-LSP fails, MPLS TE switches traffic to the backup
CR-LSP immediately.
−
Common backup: A backup CR-LSP is set up when the primary CR-LSP fails.
LDP over TE
On existing networks, not all devices support MPLS TE. Maybe only the core devices
support TE whereas the edge devices use LDP. In this case, LDP over TE is introduced.
LDP over TE indicates that a TE tunnel is considered as a hop of the entire LDP LSP.
6.5 VPN Features
6.5.1 Tunnel Policy
Tunnel policies are used to select tunnels based on destination IP addresses. Applications that
require tunnels select suitable tunnels based on tunnel policies. If no tunnel policy is
configured, the tunnel management module selects tunnels based on the default policy.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
34
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
The NE5000E series support the following tunnel policies:

If the tunnel policy is in select-sequence mode, you can specify the sequence based on
which tunnels are selected, and the number of tunnels for load balancing. Among all
tunnels to the same destination, the tunnels listed in the front will be selected as long as
they are Up, regardless of whether they have been selected by other services. The tunnels
listed in the back will not be selected unless load balancing is required or the tunnels in
the front are Down.

VPN tunnel binding means that the remote end of the VPN on a PE of the VPN
backbone network is bound to a specific MPLS TE tunnel. The data from the VPN to the
remote end is transmitted through the dedicated TE tunnel. The TE tunnel bound to the
remote end transmits only specified VPN services, which ensures QoS for the specified
VPN services.
6.5.2 VPN Tunnel
The NE5000E series support the following types of VPN tunnels:

LSP

TE tunnel
6.5.3 BGP/MPLS L3VPN
The NE5000E series implement MPLS/BGP L3VPN to provide operators with end-to-end
VPN solutions. In this manner, VPN services can be provided for users as a new value-added
service.

Inter-AS VPN
The NE5000E series support the following inter-AS VPN solutions defined in RFC
2547bis:
VPN Instance to VPN Instance: The sub-interface between Autonomous System
Boundary Routers (ASBRs) manages VPN routes, which is called Inter-Provider
Backbones Option A.
EBGP redistribution of labeled VPN-IPv4 routes: ASBRs advertise labeled VPN-IPv4
routes to each other through MP-EBGP, which is also called Inter-Provider Backbones
Option B.
This solution is in compliance with RFC 3107. In this solution, PEs advertise labeled
VPN-IPv4 routes to each other through Multihop MP-EBGP. This solution is also called
Inter-Provider Backbones Option C.

IPv6 VPN
Currently, the NE5000E series support the following IPv6 VPN solutions: Intranet VPN,
Extranet VPN, Hub&Spoke, and Inter-AS or Multi-AS Backbones VPN.

CEs can use Layer 3 interfaces, such as Ethernet, POS, and VLAN interfaces, to access
the L3VPN.

The route between a CE and a PE can be a static route, a BGP route, an OSPF route, or
an IS-IS route.
6.5.4 BGP/MPLS L2VPN
The NE5000E series use MPLS/BGP L2VPN to transparently transmit Layer 2 user data on
MPLS networks. From users' perspective, an MPLS network is a Layer 2 switching network
and Layer 2 connections can be set up between nodes on the MPLS network. The MPLS
L2VPN has one networking modes: VPLS.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
35
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
6.6 QoS Features
The NE5000E series support the following QoS functions:
QPPB
On the NE5000E series, QoS Policy Propagation Through the Border Gateway Protocol
(QPPB) classifies packets and defines QoS policies based on the community attribute,
IP-prefix, AS_Path, or ACL. Therefore, the workload of configuration modification subject to
frequent change in the network structure can be reduced.
Diff-Serv Model
Multiple service flows can be aggregated into a behavior aggregate (BA), and forwarded
based on the same Per Hop Behavior (PHB). Service processing and storage can thus be
simplified.
On the Diff-Serv core network, QoS is packet specific, and therefore signaling is not required
for packet processing.
Simple Traffic Classification
At present, the NE5000E series support simple traffic classification on physical interfaces and
their sub-interfaces, and logical interfaces such as trunk interfaces.
Eight Diff-Serv domains are supported. PHB on outbound interfaces can be disabled, and
eight port queues are supported.
Simple traffic classification is based on the following rules:

8021p mapping

DSCP mapping

EXP mapping
Complex Traffic Classification
Complex traffic classification is based on the following rules:

IPv4 rules: source IP address, destination IP address, IP protocol number, IP
fragmentation flag, DSCP, ToS + precedence, time-range, TCP/UDP source port number,
and TCP/UDP destination port number

Layer 2 rules: source MAC address, destination MAC address, 8021p, and Etype

IPV6 rules: source IP address, destination IP address, IP protocol number, DSCP, ToS +
precedence, next header, TCP/UDP source port number, and TCP/UDP destination port
number

MPLS rule: EXP
The NE5000E series also support complex traffic classification on logical interfaces such as
sub-interfaces and trunk interfaces.
Traffic Policing
CAR is mainly used for rate limit. In the CAR technology, a token bucket is used to measure
the data flows that pass through the interfaces on a router so that only the packets assigned
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
36
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
with tokens can go through the router in the specified time period. In this manner, the traffic
rate is limited. That is, CAR can limit the rate of both incoming traffic and outgoing traffic. In
addition, the rate of certain types of data flows can be controlled according to such
information as the IP address, port number, and precedence. Rate limit is not performed on the
data flows that do not meet the specified conditions, and such data flows are forwarded at the
original interface rate.
CAR is mainly applied to network edge devices, thus ensuring that core devices can process
data properly. The NE5000E series support CAR for both the incoming and outgoing traffic.
Queue Scheduling
The NE5000E series support First In First Out (FIFO) queuing, Priority Queuing (PQ), and
Weighted Fair Queuing (WFQ).
Traffic Shaping
When network congestion occurs, traffic policing that uses the CAR technology can restrict
traffic by dropping packets that do not match specific rules. To prevent too many packets from
being dropped, the excess packets can be buffered and then sent out evenly under the control
of token buckets. This is called traffic shaping. Traffic shaping prevents too many packets
from being dropped and also makes packets match specific rules.
Traffic shaping is mainly used to control the volume of burst outgoing traffic over a certain
link so that the packets can be transmitted at an even rate. Generic Traffic Shaping (GTS) is a
technology used in traffic shaping. It can shape traffic that does not match specific rules. GTS
allows the matching between the upstream and downstream bandwidths.
Ethernet QoS
The NE5000E series support simple traffic classification based on the 802.1p priority in
VLAN packets. On the ingress PE, the 802.1p priority in a Layer 2 packet is mapped to the
precedence in an upper layer protocol packet, such as the IP DSCP value or the MPLS EXP
value. In this manner, Diff-Serv is provided for the packets on the backbone network. On the
egress PE, the precedence of the upper layer protocol packet is mapped to the 802.1p priority.
Enhanced ACL

Detailed information about packets can be viewed if the packets are matched based on
ACLs.

After the offset, match value, or mask of a packet to be matched is specified, any field in
the packet can be matched based on ACLs.
6.7 Traffic Load Balancing
If there are multiple equal-cost routes to a same destination, the NE5000E series can carry out
load balancing of traffic among these routes. You can select either equal-cost load balancing
or unequal-cost load balancing based on customers' or network requirements.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
37
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
Equal-cost Load Balancing
The NE5000E series support equal-cost load balancing among member links of the IP-Trunk
or Eth-Trunk. When there are multiple equal-cost routes to a same destination, the NE5000E
series support equal-cost load balancing of traffic among these routes.
There are two types of load balancing: session-by-session and packet-by-packet. By default,
session-by-session load balancing is used.
Unequal-cost Load Balancing
The NE5000E series support the following unequal-cost load balancing modes:

Route-based load balancing: When the costs of different direct routes are the same, you
can configure weight for each route for load balancing.

Interface-based load balancing: On an IP-Trunk or an Eth-Trunk, you can configure
weight for each member link for load balancing.

Link bandwidth-based load balancing: Unequal-cost load balancing is performed on the
outbound interfaces of links based on link bandwidth. The proportion of traffic over each
link approximates to or equals the proportion of the link bandwidth. This mode takes the
link bandwidth into full consideration, and prevents low-bandwidth links from being
congested and high-bandwidth links from being idle.
The NE5000E series support traffic load balancing among physical interfaces or among
physical and logical interfaces. In addition, the system can detect the changes of bandwidth on
logical interfaces due to manual configuration or the status change (Up/Down) of member
links. If the bandwidth of logical interfaces changes, traffic will be automatically balanced
based on the new bandwidth proportion.
6.8 Traffic Statistics Collection
The NE5000E series provide various types of traffic statistics collection for different access
users.
Traffic statistics collection helps operators analyze the network traffic model, provides
reference data for deploying and maintaining Diff-Serv TE, and supports volume-based
accounting of non-monthly flat fee subscribers.
Traffic Statistics Collection Based on QoS Policies
The NE5000E series support traffic statistics collection based on QoS policies on interfaces,
including Ethernet interfaces and their sub-interfaces, POS interfaces, Eth-Trunk interfaces
and their sub-interfaces, and IP-Trunk interfaces.
CAR Traffic Statistics Collection
The NE5000E series provide QoS features such as traffic classification, traffic policing CAR,
and queue scheduling. QoS traffic statistics collection is provided accordingly.

In traffic classification, statistics on traffic that matches or does not match rules are
collected.

In traffic policing, traffic statistics collection is supported as follows:
−
Issue 01 (2011-09-15)
Statistics on total traffic that matches the CAR rule are collected.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
38
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
−
Statistics on traffic that is permitted or discarded based on the CAR rule are collected.
−
Traffic statistics collection based on traffic policies is supported on interfaces.
−
When the same traffic policy is applied to different interfaces, the CAR traffic
statistics in the traffic policy are based on the interface.
Interface-based Traffic Statistics Collection
The NE5000E series support traffic statistics collection on interfaces and sub-interfaces.
Traffic Statistics Collection on TE Tunnels
When functioning as PEs on the MPLS TE network, the NE5000E series can collect statistics
on the incoming and outgoing traffic in tunnels. When a VPN is statically bound to the TE
tunnel, the system can collect statistics on traffic of each Resource Reserved VPN (RRVPN)
over the TE tunnel and the total traffic over the TE tunnel.
6.9 Security Features
Security Authentication
The Point-to-Point Protocol (PPP) supports the Password Authentication Protocol (PAP) and
Challenge Handshake Authentication Protocol (CHAP).
Routing protocols, including RIPv2, OSPF, IS-IS, and BGP, support the plain text
authentication and the MD5 encrypted text authentication.
LDP and RSVP support MD5 encrypted text authentication.
SNMP supports SNMPv3 encryption and authentication.
Local or remote login by means of SSH is supported.
URPF Check
IPv4 and IPv6 support Unicast Reverse Path Forwarding (URPF).
Local Attack Defense
The NE5000E series provide a uniform local attack defense module to manage and maintain
attack defense policies of the entire system. A set of all-around operable and maintainable
attack defense solutions is provided for users.
The NE5000E supports the following functions:

Attack source tracing and attack alarms
When a router is attacked, the attack must be analyzed. For example, you can record
attack packets by using the attack source tracing function. By analyzing the attack
packets, you can locate the attack and defend against the attack. If too many packets are
discarded, the alarm function takes effect and informs users of packet discarding.

Issue 01 (2011-09-15)
Whitelist
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
39
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
A whitelist is a group of valid users or users with high priorities. By configuring the
whitelist, you can enable the system to protect existing services or user services with
high priorities.

Indicates a blacklist.
A blacklist is a group of unauthorized users. A blacklist can be self-defined based on
ACL rules, and is used to match packets.

User-defined flow

Active link protection
The NE5000E series use the whitelist to protect the TCP-based application-layer
sessions.

Uniform configuration of CAR parameters
The NE5000E series provide more convenient configuration of CAR parameters:

−
Uniform configuration of CAR parameters for different LPUs
−
Uniform configuration interface for users
−
Protocol-specific CAR parameter configuration that makes the configuration
interface more friendly
Smallest packet compensation
The NE5000E series can efficiently defend against the attacks from small packets by
using the smallest packet compensation function. After receiving the packet to be sent to
the CPU, the NE5000E series check the packet length.
−
If the packet is shorter than the preset minimum packet length, the system calculates
the rate of sending the packet based on the preset minimum length.
−
When the packet is longer than the preset minimum packet length, the system
calculates the rate of sending the packet based on the actual packet length.
Lawful Interception
After being enabled with lawful interception, the NE5000E can receive configuration
information from the interception management center and send the intercepted traffic to the
interception management center.
Lawful interception enables the NE5000E to:

Deliver the interception configuration using SNMPv3.

Deliver the intercepted object using SNMPv3

Perform heartbeat detection between lawful interception gateways (LIGs), and use
SNMPv3 to set the interval at which heartbeat messages are sent and heartbeat detection
is performed. If an NE5000E fails to detect heartbeats for a specified number of
consecutive times, the NE5000E determines that the LIGs cannot communicate with
each other.

Intercept both incoming and outgoing IPv4 traffic on the public network.

Intercept both incoming and outgoing IPv4 traffic on an L3VPN.

Intercept both incoming and outgoing IPv4 traffic on an MVPN.

Intercept both incoming and outgoing traffic on an L2VPN based on the source or
destination MAC addresses.

Intercept both incoming and outgoing IPv6 traffic on the public network.

Intercept both incoming and outgoing IPv6 traffic on an L3VPN.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
40
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
BGP Flowspec
BGP Flowspec enables the NE5000E to:

Filter BGP traffic based on the ACL policy carried in BGP packets.

Filter BGP traffic based on the route attribute carried in BGP packets.
Local Mirroring
In local mirroring, an LPU can be configured with a physical observing interface, multiple
logical observing interfaces, and multiple mirrored interfaces.
The system supports inter-board mirroring. That is, the observing and mirrored interfaces can
be configured on different boards.
The NE5000E series support upstream and downstream mirroring.

Upstream mirroring: All packets or the packets that match specific rules received by a
mirrored interface are copied to a specific observing interface.

Downstream mirroring: All packets or the packets that match specific rules to be sent by
a mirrored interface are copied to a specific observing interface.
NetStream
NetStream provides the following functions:

Accounting

Network planning and analysis

Network monitoring

Application monitoring and analysis

Detection of unusual traffic
The implementation of NetStream requires three devices: NetStream Data Exporter (NDE),
NetStream Collector (NSC), and NetStream Data Analyzer (NDA).
The NE5000E series function as NDEs which sample packets, aggregate flows, and output
flows. Based on the location of packet sampling and flow processing, NetStream on the
NE5000E series is classified into distributed NetStream and integrated NetStream. Distributed
NetStream supports load balancing among multiple NetStream boards.

Distributed NetStream: An LPU can sample packets, aggregate flows, and output flows
independently.

Integrated NetStream: Some LPUs do not support NetStream. They only sample packets
and send the sampled packets to the SPUC, LPUF-100, LPUI-100 or LPUF-200 for flow
aggregation and flow output. NetStream on these LPUs is called integrated NetStream.
The LPUF-100, LPUFI-100 or LPUF-200 sample packets, aggregate flows, and output
flows locally.
The following sampling functions are supported:

Packet sampling on inbound and outbound interfaces (some boards support packet
sampling on inbound interface only)

Interface-based sampling and traffic classifier-based sampling

Sampling of IPv4 unicast/multicast packets, fragmented packets, MPLS packets, MPLS
L3VPN packets, and IPv6 packets
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
41
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features

Fixed packet sampling, random packet sampling, fixed interval sampling, and random
interval sampling

Sampling on various physical and logical interfaces, such as POS interfaces, Ethernet
interfaces, VLANIF interfaces, and trunk interfaces
The NE5000E series provide the following functions in terms of flow aggregation and output:

IPv4 supports the following options: as, as-tos, protocol-port, protocol-port-tos,
source-prefix, source-prefix-tos, destination-prefix, destination-prefix-tos, prefix, and
prefix-tos.

The aggregation of MPLS packets is based on Layer 3 labels.

The collected statistics can be output in the V5, V8, or V9 format. The 16-bit and 32-bit
AS numbers are supported, and can be configured by using commands. When the
packets are output in the V9 format, both the 16-bit and 32-bit NetStream indexes are
supported, which can be set by using commands as required.

Each type of aggregated flow can be output to two network management servers.
6.10 Network Reliability
Backup of Key Parts
The NE5000E series can be equipped with a single MPU or dual MPUs (in backup mode).
The MPUs support hot backup. If two MPUs are equipped, the master MPU works and the
slave MPU is in the standby state. The management network interface on the slave MPU
cannot be accessed by users, and the console interfaces cannot be configured with any
command. The slave MPU exchanges information (including heartbeat messages and backup
data) only with the master MPU.
The system supports two types of master/slave switchover of MPUs: failover and switchover.
The failover is triggered by serious faults in the master MPU or the reset of the master MPU.
The switchover is triggered by commands run on the console interface. You can also forbid
the master/slave switchover of the MPUs by using commands on the console interface.
The NE5000E series support backup of management buses and 1+1 backup of power modules,
however the LPUs, power modules, and fan modules are hot swappable.
In this manner, when a critical fault occurs on the device or network, the system can quickly
recover and respond. This reduces the Mean Time between Failure (MTBF) and minimizes
the impact of unreliable factors on normal services.
High Reliability of LPUs
The NE5000E series support protocol backup on service interfaces of the same type.

Member interfaces of an Eth-Trunk or an IP-Trunk can be backed up inside a group or
outside a group.

Inter-board trunk bundling is supported.
Issue 01 (2011-09-15)
−
Users can use dual links to connect to different LPUs. The inter-board trunk bundling
ensures high reliability of services.
−
Inter-board trunk bundling is achieved by means of high-performance hardware
engines. In this manner, traffic load balancing on multiple links is carried out to
forward packets.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
42
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
−
The hash algorithm based on the source and destination IP addresses allows traffic on
each link to be balanced.
−
Seamless switchover is implemented in the case of a link failure, and services are still
normally forwarded.
With protocol extensions, the NE5000E series implement backup of key service interfaces.
This allows core routers bearing LAN, MAN or WAN services to monitor and back up the
operation status of interfaces. In this case, the status change of the interfaces does not affect
routing tables, and services on the interfaces can be restored soon.
Transmission Alarm Customization and Suppression
Transmission alarm suppression can efficiently filter and suppress alarm signals. This
prevents interfaces from frequently flapping. In addition, transmission alarm customization
enables you to control the impact of alarms on the interface status.
Transmission alarm customization and suppression provide the following functions:

Customization of alarms: specifies which alarms cause interface status change.

Suppression of alarms: filters burrs and suppresses frequent network flapping.
BFD
Bidirectional Forwarding Detection (BFD) is a uniform detection mechanism used in an entire
network. It can rapidly detect and monitor link connectivity or IP route reachability in the
network.
BFD sends detection packets at both ends of a bidirectional link to check the link status in
both directions at the millisecond level. Both single-hop BFD and multi-hop BFD are
supported.
The NE5000E series provide distributed BFD and integrated BFD.

Distributed BFD: Some LPUs can set up BFD sessions independent of other LPUs.

Integrated BFD: Some LPUs do not support BFD and must depend on the LPUF-100 and
LPUF-200. All the state machines of BFD sessions are established on the LPUF-100 and
LPUF-200.
The NE5000E series support the following BFD applications:

BFD for VRRP

BFD for FRR
BFD for LDP FRR
The checking of the protected interface by BFD can trigger LDP FRR.
BFD for IP FRR and BFD for VPN FRR
On the NE5000E series, the reporting of the faults detected by BFD can trigger IP FRR
and VPN FRR.

BFD for static route

BFD for IS-IS
On the NE5000E series, the statically configured BFD session can be used to detect an
IS-IS neighbor relationship.
BFD detects faults in the links between IS-IS neighbors and rapidly reports the faults to
IS-IS, thus triggering fast convergence of IS-IS routes.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
43
HUAWEI NetEngine5000E Core Router
NE5000E Product Description

6 Service Features
BFD for IPv6 IS-IS
On the NE5000E series, BFD sessions can be dynamically created and deleted by IPv6
IS-IS.

BFD for OSPF/BGP
On the NE5000E series, BFD sessions can be dynamically created and deleted by OSPF
and BGP.

BFD for OSPFv3/BGP4+
On the NE5000E series, BFD sessions can be dynamically created and deleted by
OSPFv3 and BGP4+.

BFD for PIM

BFD for IP-Trunk and Eth-Trunk
On the NE5000E series, BFD can detect a trunk and the member links of the trunk
separately. That is, it can detect the connectivity of a trunk and also the connectivity of
an important member link of the trunk.

BFD for LSP
BFD for LSP rapidly detects and reports faults in LSPs, TE tunnels, and PWs so that
MPLS services such as VPN FRR and TE FRR can be rapidly switched to backup links.
Ethernet OAM
The NE5000E series support Ethernet OAM that consists of fault management and
performance management.
Fault management: checks network connectivity by sending detection packets periodically or
manually. The implementation is similar to that of BFD. In addition, means similar to ping
and tracert on IP networks are provided for fault locating on Ethernet. Fault management is
used to trigger protection switchover within 50 ms.
Performance management: measures parameters such as packet loss, delay, and jitter in packet
transmission, and collects statistics on various types of traffic, such as number of sent bytes
and number of error packets.
IEEE 802.3 ah was put forward by the Ethernet in the First Mile Alliance (AFMA). It covers
capability discovery, link performance monitoring, fault detection, and alarm and loop
detection. 802.3ah is a slow-convergence protocol and the frequency of sending detection
packets is 1 second.
Complying with IEEE 802.3ah, the NE5000E series provide point-to-point fault management
for Ethernet links so that the faults in the last-mile direct Ethernet link at the user end can be
detected. Currently, the NE5000E series support auto Neighbor Discovery (ND), link fault
monitoring, remote fault notification, and remote loopback configuration.
VRRP
A Virtual Router Redundancy Protocol (VRRP) backup group that consists of a group of
routers in a LAN functions as a virtual router. Hosts in the LAN only know the IP address of
this virtual router and do not know the IP address of a specific router in the VRRP backup
group. The hosts also set their own default next-hop address to the IP address of the virtual
router. In this manner, hosts in the LAN can communicate with the hosts in other networks by
using the virtual router.
VRRP dynamically associates the virtual router with a physical router that transmits services.
When the physical router fails, another router is selected to transmit services. The switchover
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
44
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
6 Service Features
of services from the faulty router to the new router is transparent to users, which allows
non-stop communications between the hosts in different networks.
FRR
The NE5000E series provide types of FRR features, from which you can choose as required
to improve network reliability.

IP FRR
FRR can be implemented within 50 ms, which minimizes data loss caused by network
failures.
FRR supported by the NE5000E series monitor and save the LPU and interface status in
real time, and checks the interface status in packet forwarding. When faults occur on an
interface, the traffic on the interface can be rapidly switched to another route that has
been set up. In this manner, the Mean Time between Failure (MTBF) and number of lost
packets are reduced.

LDP FRR
Traffic switching by means of LDP FRR can be completed within 50 ms.

TE FRR
TE FRR is used in MPLS TE for local protection. It is supported only on interfaces
working at 100 Mbit/s. The switching time of TE FRR can reach 50 ms, which
minimizes data loss caused by network failures.
TE FRR is only a provisional protective measure. If a protected LSP recovers or a new
LSP is established, traffic will be switched back to the recovered LSP or the newly
established LSP.
After TE FRR is configured for an LSP, the traffic will be switched to the protection link
and the ingress of the LSP attempts to establish a new LSP if a link or a node becomes
faulty.
TE FRR can be classified into the following types based on different protected objects:

−
Link protection
−
Node protection
BGP auto FRR
BGP auto FRR is used to protect BGP routes. If the primary link fails, traffic can be
switched to the backup link within 200 ms. BGP auto FRR is used in the following
typical application scenarios:

−
Intra-AS FRR
−
Inter-AS FRR
−
PE-CE protection
VPN FRR
Traffic switching by means of VPN FRR can be completed within 50 ms.
NSR
The NE5000E series support the following types of Non-Stop Routing (NSR):

NSR OSPFV2

NSR OSPFV3

NSR ISIS
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
45
HUAWEI NetEngine5000E Core Router
NE5000E Product Description

NSR PIM SM

NSR PIM SSM

NSR LDPv4

NSR RSVP-TE

NSR BGP/BGP4+

NSR L3VPNV4

NSR static route

NSR direct route
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
6 Service Features
46
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
7 Application Scenarios
7
Application Scenarios
About This Chapter
7.1 National Backbone Network Solution
7.2 Provincial Backbone Network Solution
7.3 IP Bearer Network Solution
7.4 IPv6 Backbone Network Solution
7.1 National Backbone Network Solution
A national backbone network usually uses a partial full-mesh topology as shown in Figure 7-1.
It is uplinked to international egresses and downlinked to provincial backbone networks, and
is connected to other operators' networks. As core routers, NE5000Es have large capacities
and powerful routing and forwarding capabilities, meeting the requirements of the national
backbone network.
The NE5000E series support IPv6, fifth-generation-based service scalability and smooth
upgrade, carrier-class stability, and good compatibility. With high QoS and complete QoS
solutions, the NE5000E series meet the multi-service bearer requirement of the IP backbone
network.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
47
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
7 Application Scenarios
Figure 7-1 Networking diagram for the national backbone network solution
NAP
NE5000E/NE40E
International
Egress
NE5000E/NE40E
NE5000E/NE40E
NE5000E/NE40E
National
Backbone
Network
International
Egress
NE5000E/NE40E
NE5000E/NE40E
NE40E
NE40E
Provincial Backbone
Network
NE40E
NE40E
Provincial Backbone
Network
7.2 Provincial Backbone Network Solution
Figure 7-2 shows the provincial backbone network solution. NE5000Es/NE5000E-X16s are
deployed at the core layer of the provincial backbone network. NE40Es are deployed in
prefectures and municipalities to converge traffic of MANs, leased lines, narrowband access,
and IDCs.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
48
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
7 Application Scenarios
Figure 7-2 Networking diagram for the provincial backbone network solution
NE5000E
NE5000E
Provincial
backbone
POS 10G
NE5000E
POS 10G
POS 10G
NE5000E
POS 10G
City node
NE5000E
/NE40E
GE
NE40E
MAN
POS 2.5G
City node
POS 2.5G
NE5000E
/NE40E
GE
NE40E
NE40E
NE40E
Leased line
convergence
Narrowband
access
IDC
This solution is applicable to new deployment, capacity expansion, and construction of
large-scale ISP provincial backbone networks. These ISPs have advantages in transmission
resources and access services, and are of low costs. In the case where there is lack of
transmission resources, if the network topology remains unchanged, the link bandwidth can
be reduced. The devices above the convergence layer support line rate forwarding of packets.
Devices on the entire network support MPLS VPN.
7.3 IP Bearer Network Solution
Figure 7-3 shows the IP bearer network solution.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
49
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
7 Application Scenarios
Figure 7-3 IP bearer network solution
PJ1
Core layer
XA1
SY1
Convergence layer
SD1
Access layer
NJ1
SH1
WH1
GZ1
CR
NE5000E
BR
NE40E
SoftX3000
AR
NE40E
SoftX3000
UMG8900
CR: Core Router
BR (ER): Edge Router
AR: Access Router
Considering the status quo of the current bearer network, operators need to construct a new
core bearer network to bear NGN multi-services and future 3G services. Stimulated by the
new market competition environment, new service development, and new technologies, the
new bearer network will bear voice services, data services, and video services (video
conference, video phone, streaming media, enterprise interconnection, and 3G services). The
construction of the new bearer network is a key part for network convergence and
transformation.
In this solution, NE5000Es and NE5000E-X16s function as core nodes to provide high-speed
data forwarding and high reliability. NE40Es function as convergence routers to access NGN
voice services, signaling, network management services, and VIP services.
This solution has the following characteristics:

The core layer uses a dual-plane structure. Full-mesh connections are established
between NE5000E/NE5000E-X16.

NE40Es (convergence routers) are dual-homed to NE5000Es/NE5000E-X16s.

Two devices working in backup mode are deployed on important nodes.

MPLS VPN is deployed on the entire network to isolate different types of users and
services.

VPN FRR is deployed on each PE.

TE FRR and IGP fast convergence are deployed on the entire network.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
50
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
7 Application Scenarios
7.4 IPv6 Backbone Network Solution
Figure 7-4 Networking diagram for the IPv6 backbone network solution
PE
PE
N E40
E
N E40
E
PE
IP v6 In te rn e t
N E40
E
IP v6 /IP v 4
N E 5 0 0 0 E /N E 4 0 E
IP v6
C o re
PE
IP v6
PE
N E40E
N E40E
IP v4 In te rn e t
IP v6 E D G E
L3
S w itch
L3
S w itch
MA
5200
L2
S w itch
S O H O IP v 6
S O H O IP v 6
In the IPv6 backbone network solution, the original IPv4 services are not affected and IPv4
and MPLS VPN packets can still be forwarded. The following applications need to be
supported:

Communication between IPv6 islands

Communication between IPv6 and IPv4 networks
To support the preceding applications, the following solutions where several IPv6
technologies are used can be provided:

Configure all routers on the backbone network to support IPv4/IPv6 dual-stack. IPv4
routers forward IPv4 packets whereas IPv6 routers forward IPv6 packets.

Use the Layer 3 tunnel technology for the communication between IPv6 islands. Either
manually-configured tunnels or 6to4 tunnels can be configured. The core routers only
need to support IPv4 forwarding and do not need to be upgraded.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
51
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
8
8 Operation and Maintenance
Operation and Maintenance
About This Chapter
8.1 Operation and Maintenance
8.2 NMS
8.1 Operation and Maintenance
8.1.1 System Configuration Management
Configuration Mode
The NE5000E series support two configuration modes: command line configuration and NMS
configuration.

Command line configuration:

Users can log on to the device by using the console interface.

Users can log in to the device by means of Telnet.

NMS configuration: The NE5000E series are configured by means of the SNMP-based
NMS.

The NE5000E series support the configuration rollback function.
Intelligent Configuration
As increasingly new types of services emerge, higher requirements are imposed on devices.
For example, it is required that services take effect after being configured, invalid
configurations be rolled back, and impact on the existing services be minimized. The
NE5000E series support the following configurations:

Offline Configuration
After a configuration file is generated by using the offline configuration tool, the
configuration file can be saved. After the device is started, users can load the
configuration file to the device.
If a device is online but some boards or subcards on the device are not online, the offline
configuration tool can still be used for device configuration.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
52
HUAWEI NetEngine5000E Core Router
NE5000E Product Description

8 Operation and Maintenance
Configuration commitment and rollback
If the activated configuration results in performance degradation, running a related
command can roll the system back to the previous configuration. Compared with
deleting every single command, the configuration rollback function allows faster and
more convenient configuration restoration.

Configuration commitment prompt
If the configuration takes effect, the system adds it to the running database. If the same
configuration is added, the system prompts a message.
8.1.2 System Management and Maintenance
The NE5000E series provide powerful system management and maintenance functions:

Board in-position detection, hot swap detection, Watchdog, board resetting, RUN
indicator and debugging indicator control, fan and power supply control, master/slave
switchover control, and version query

Local and remote loading and upgrade of software and data, configuration rollback,
backup, saving, and clearing

Hierarchical user authority management, operation log management, command line
online help, and command comments

Multi-user operation

Multi-layer information collection, including interface, Layer 2, and Layer 3 information

Hierarchical management, alarm classification, and alarm filtering
8.1.3 Device Operation Status Monitoring
The NE5000E series use the information center to monitor the device operation status.
Syslog is a sub-function of the information center. Syslog is over UDP. It outputs information
to a log host through port 514.
The information center can receive and process the following types of information:

Log information

Debugging information

Trap information
Information has eight severity levels. The lower the level, the higher the severity.
Level
Severity
Description
0
Emergency
A fatal exception occurs on the device, which causes the
system unable to run normally unless the device is restarted.
For example, the device is restarted due to program
exceptions or memory usage errors are detected.
1
Alert
A serious exception occurs on the device, which requires
immediate actions. For example, the memory usage of the
device reaches the upper threshold.
2
Critical
A critical exception occurs on the device, which requires
actions and cause analysis. For example, the memory usage
falls below the lower threshold; the temperature falls below
the alarm threshold; Bidirectional Forwarding Detection
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
53
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
Level
Severity
8 Operation and Maintenance
Description
(BFD) detects that a device is unreachable or detects error
messages generated by the local device
3
Error
Improper operation or abnormal process occurs on the device,
which does not affect subsequent services but requires
attention and cause analysis. For example, users enter
incorrect commands or passwords; error protocol packets
received by other devices are detected.
4
Warning
An exception that may result in a fault occurs on the device,
which needs to be paid attention to. For example, users
disable a routing process; BFD detects packet loss; error
protocol packets are detected.
5
Notice
A key operation is performed to keep the device running
normally. For example, the shutdown command run by a user
on the interface, neighbor discovery, and status change of the
protocol state machine.
6
Informational
A routine operation is performed. For example, users run the
display commands.
7
Debugging
A routine operation is performed, and no action is required.
The information center supports 10 channels, of which Channel 0 to Channel 5 have their
default channel names. By default, the six channels (Channel 0 to Channel 5) correspond to
six directions at which information is output. The log information on the CF card is output to
a log file through Channel 9 by default. That is, a total of seven default output directions are
supported.
When multiple log hosts are configured, you can configure log information to be output to
different log hosts through one channel or multiple channels. For example, you can configure
some log information to be output to a log host through Channel 2 (loghost), and some log
information to a log host through Channel 6. In addition, you can change the name of Channel
6. This facilitates the management of information channels.
8.1.4 System Service and Status Tracking
The NE5000E series support system service and status tracking, including the following
functions:

Monitors the change of the state machine of routing protocols.

Monitors the change of the state machine of LDP.

Monitors the change of the state machine of VPN.

Monitors the protocol packets sent by the NP, and displays detailed information about the
packets by enabling debugging.

Detects and collects statistics on abnormal packets.

Prompts when the exception handling process takes effect.

Collects statistics on the resources used by each feature.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
54
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
8 Operation and Maintenance
8.1.5 System Test and Diagnosis
The NE5000E series provide the debugging function, which records key events, packet
processing, packet resolution, and status switch during service operation. The debugging
function provides support for users in device debugging and networking solutions. Debugging
can be enabled or disabled by using a console based on a specified service (such as a routing
protocol) and a specified interface (information about the routing protocol on the specified
interface).
Software detection and diagnosis supported on the NE5000E series provides the trace
function, which records key events such as task switching, interrupt, queue read and write,
and system exceptions. In this manner, if the device is restarted after a fault occurs, the trace
information can be accessed and used for fault location. The trace function can be enabled or
disabled by running commands on the console.
The NE5000E series can also query the CPU usage of MPUs and LPUs.
The debugging and trace function on the NE5000E series are hierarchical. Information at
different levels can be output to different destinations, such as the console, Syslog server, and
SNMP trap, based on user configurations.
The NE5000E series also provide Network Quality Analysis (NQA). NQA measures the
performance of different protocols running on the network. In that case, operators can collect
network operation indexes in real time, such as total delay of HTTP, TCP connection delay,
DNS resolution delay, file transfer delay, FTP connection delay, and DNS resolution error rate.
By monitoring these indexes, operators can provide users with network services of different
levels, and charge users differently.
8.1.6 NQA
The NE5000E series also provide Network Quality Analysis (NQA). NQA measures the
performance of different protocols running on the network. In that case, operators can collect
network operation indexes in real time, such as total delay of HTTP, TCP connection delay,
DNS resolution delay, file transfer rate, FTP connection delay, and DNS resolution error rate.
By monitoring these indexes, operators can provide users with network services of different
levels, and charge users differently. NQA is also an effective tool for diagnosing and locating
network faults.
The NE5000E supports the following NQA functions:

Multicast ping

Multicast tracert

LSP ping, LSP traceroute, and MPLS jitter

NQA-MIB (all NQA functions are managed using the NMS)
8.1.7 In-Service Debugging
The NE5000E series support interface mirroring, which maps specific traffic to a monitoring
interface. In addition, the NE5000E series support in-service debugging, which allows
maintenance personnel to debug and analyze network operation status.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
55
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
8 Operation and Maintenance
8.1.8 Upgrade Features
In-service Upgrade
The NE5000E series support in-service software upgrade and in-service patching. By means
of in-service patching, you can upgrade only the features to be modified.
System Upgrade
The upgrade process of the NE5000E series is improved. The entire upgrade process can be
completed by using only one command. This saves time for customers. The upgrade progress
can be displayed, and you can view the upgrade result after the upgrade process is complete.
Rollback Function
During system upgrade, if the new system software cannot start the system, the software in
the last successful startup can be used instead.
The rollback function provided by the NE5000E series can prevent services from being
affected by system upgrade failures.
8.1.9 License
As software functions of the NE5000E series are diversified and software costs are in a larger
proportion to the total costs, the service model currently provided cannot meet the
development requirement of customers and operators.

Common users want lower purchasing costs.

In the case of upgrade and capacity expansion, users need to effectively control the
capacity and functions of devices.
To address different user requirements, the NE5000E and NE5000-X16 need to provide
flexible authorization for service modules.
In this case, the NE5000E series provide a license authorization management platform, that is,
Global Trotter License (GTL). License authorization have the following functions:

Common users can purchase required service functional modules so that the purchasing
costs are reduced.

In the case of upgrade and capacity expansion, users can apply for new licenses so that
devices can support more functions and have larger capacity.
8.1.10 Other Features
In addition to the preceding features, the NE5000E series support the following features:

Hierarchical commands can be configured to prevent unauthorized users from logging on
to routers.

Users can type in a question mark (?) to obtain online help.

Rich and detailed debugging information can be provided to diagnose network faults.

The DosKey-like function can be configured so that a specific historical command can
be run.

The command resolver supports fuzzy match of keywords. For example, if the display
command needs to be resolved, you only need to input an exact matching string disp.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
56
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
8 Operation and Maintenance
8.2 NMS
The NE5000E series support device operation and management by the NMS based on SNMP.
The NE5000E series support SNMPv1, SNMPv2c, and SNMPv3.

SNMPv1
SNMPv1 supports community name-based access control.
SNMPv1 supports MIB view-based access control.

SNMPv2c
SNMPv2c supports community name-based access control.
SNMPv2c supports MIB view-based access control.

SNMPv3
SNMPv3 inherits the basic functions of SNMPv2c, defines a management frame, and
introduces a User-based Security Model (USM) to provide a more secure access control
mechanism for users.
SNMPv3 supports the following functions:
User group
Group-based access control
User-based access control
Authentication and encryption
The NE5000E series use Huawei iManager U2000. It supports SNMPv1/v2c/v3 and the
client/server model, can run independently in many operating systems, such as
WindowsNT/2000/XP/2003 server/2007 server, UNIX (SUN, HP, and IBM), and also
provides a multi-lingual graphical user interface.
To be oriented to the future network development trend, the U2000 combines all-IP and FMC
and manages bearer and access equipment in a centralized manner.The U2000 can perform
not only integrated management of multi-domain equipment but also integrated management
at the element and network management layers. The U2000 has revolutionized the layer-based
management mode to meet the management requirements in the transition from the existing
vertical network to the flattened horizontal network.The U2000 is a unified network
management system (NMS) of multiple domains and it aims to minimize operation and
maintenance (O&M) costs for customers and to bring more network benefits.
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
57
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
9 Abbreviation
9
Abbreviation
A
AAA
Authentication, Authorization and
Accounting
AAL5
ATM Adaptation Layer 5
AC
Alternating Current
ACL
Access Control List
AF
Assured Forwarding
ANSI
American National Standard Institute
ARP
Address Resolution Protocol
ASBR
Autonomous System Boundary Router
ASIC
Application Specific Integrated Circuit
ATM
Asynchronous Transfer Mode
B
BE
Best-Effort
BGP
Border Gateway Protocol
BGP4
BGP Version 4
C
CAR
Committed Access Rate
CBR
Constant Bit Rate
CE
Customer Edge
CHAP
Challenge Handshake Authentication
Protocol
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
58
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
CoS
Class of Service
CPU
Center Processing Unit
CR-LDP
Constrained Route - Label Distribution
Protocol
9 Abbreviation
D
DC
Direct Current
DHCP
Dynamic Host Configuration Protocol
DNS
Domain Name Server
DS
Differentiated Services
E
EACL
Enhanced Access Control List
EF
Expedited Forwarding
EMC
ElectroMagnetic Compatibility
F
FE
Fast Ethernet
FEC
Forwarding Equivalence Class
FIB
Forward Information Base
FIFO
First In First Out
FR
Frame Relay
FTP
File Transfer Protocol
G
GE
Gigabit Ethernet
GTS
Generic Traffic Shaping
H
HA
High Availability
HDLC
High level Data Link Control
HTTP
Hyper Text Transport Protocol
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
59
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
9 Abbreviation
I
ICMP
Internet Control Message Protocol
IDC
Internet Data Center
IEEE
Institute of Electrical and Electronics
Engineers
IETF
Internet Engineering Task Force
IGMP
Internet Group Management Protocol
IGP
Interior Gateway Protocol
IP
Internet Protocol
IPoA
IP Over ATM
IPTN
IP Telephony Network
IPv4
IP version 4
IPv6
IP version 6
IPX
Internet Packet Exchange
IS-IS
Intermediate System-Intermediate
System;
ISP
Interim inter-switch Signaling Protocol
ITU
International Telecommunication Union
- Telecommunication Standardization
Sector
L
L2TP
Layer 2 Tunneling Protocol
LAN
Local Area Network
LCD
Liquid Crystal Display
LCP
Link Control Protocol
LDP
Label Distribution Protocol
LER
Label switching Edge Router
LPU
Line Processing Unit
LSP
Label Switched Path
LSR
Label Switch Router
M
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
60
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
MAC
Media Access Control
MBGP
Multiprotocol Border Gateway Protocol
MD5
Message Digest 5
MIB
Management Information Base
MP
Multilink PPP
MPLS
Multi-protocol Label Switch;
MSDP
Multicast Source Discovery Protocol
MSTP
Multiple Spanning Tree Protocol
MTBF
Mean Time Between Failures
MTTR
Mean Time To Repair
MTU
Maximum Transmission Unit
9 Abbreviation
N
NAT
Network Address Translation
NLS
Network Layer Signaling
NP
Network Processor
NTP
Network Time Protocol
NVRAM
Non-Volatile Random Access Memory
O
OSPF
Open Shortest Path First
P
PAP
Password Authentication Protocol
PE
Provider Edge
PFE
Packet Forwarding Engine
PIC
Parallel Interference Cancellation
PIM-DM
Protocol Independent Multicast-Dense
Mode
PIM-SM
Protocol Independent Multicast-Sparse
Mode
POP
Point Of Presence
POS
Packet Over SDH/SONET
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
61
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
PPP
Point-to-Point Protocol
PQ
Priority Queue
PT
Protocol Transfer
PVC
Permanent Virtual Channel
9 Abbreviation
Q
QoS
Quality of Service
R
RADIUS
Remote Authentication Dial in User
Service
RAM
Random-Access Memory
RED
Random Early Detection
RFC
Requirement for Comments
RH
Relative Humidity
RIP
Routing Information Protocol
RMON
Remote Monitoring
ROM
Read Only Memory
RP
Rendezvous Point
RPR
Resilient Packet Ring
RSVP
Resource Reservation Protocol
RSVP-TE
RSVP-Traffic Engineering
S
SAP
Service Advertising Protocol
SCSR
Self-Contained Standing Routing
SDH
Synchronous Digital Hierarchy
SDRAM
Synchronous Dynamic Random Access
Memory
SFU
Switch Fabric Unit
SLA
Service Level Agreement
SNAP
SubNet Attachment Point
SNMP
Simple Network Management Protocol
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
62
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
SONET
Synchronous Optical Network
SP
Strict Priority
SPI4
SDH Physical Interface
SSH
Secure Shell
STM-16
SDH Transport Module -16
SVC
Switching Virtual Connection
9 Abbreviation
T
TCP
Transfer Control Protocol
TE
Traffic Engineering
TFTP
Trivial File Transfer Protocol
TM
Traffic Manager
ToS
Type of Service
TP
Topology and Protection packet
U
UBR
Unspecified Bit Rate
UDP
User Datagram Protocol
UNI
User Network Interface
UTP
Unshielded Twisted Pair
V
VBR-NRT
Non-Real Time Variable Bit Rate
VBR-RT
Real Time Variable Bit Rate
VC
Virtual Circuit
VCI
Virtual Channel Identifier
VDC
Variable Dispersion Compensator
VLAN
Virtual Local Area Network
VPI
Virtual Path Identifier
VPN
Virtual Private Network
VRP
Versatile Routing Platform
VRRP
Virtual Router Redundancy Protocol
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
63
HUAWEI NetEngine5000E Core Router
NE5000E Product Description
9 Abbreviation
W
WAN
Wide Area Network
WFQ
Weighted Fair Queuing
WRED
Weighted Random Early Detection
WRR
Weighted Round Robin
Issue 01 (2011-09-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
64