Cisco Next-Gen Cell Site Backhaul Unified MPLS for Mobile ... · PDF fileBackhaul Unified MPLS...
Transcript of Cisco Next-Gen Cell Site Backhaul Unified MPLS for Mobile ... · PDF fileBackhaul Unified MPLS...
Cisco Confidential © 2012 Cisco and/or its affiliates. All rights reserved. 1
Cisco Next-Gen Cell Site Backhaul Unified MPLS for Mobile Transport
Marcelo Rosa Network Consulting Engineer – Service Providers
May, 2013
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
• Unified MPLS for Mobile Transport (UMMT) System Overview
• UMMT System Architecture
• LTE Backhaul Alternatives
• UMMT Functional Considerations
QoS
Resiliency
OAM and PM
Synchronization Distribution
Security
Management
• Summary and Key Takeaways
UMMT System Overview
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
• Unified MPLS transport simplifies the end-to-end architecture, eliminating the control and management plane translations inherent in legacy designs
Provides seamless MPLS LSPs across Access, Aggregation & Core
Provisioning of services requires configuration of edge devices only.
• Flexible placement of L3 and L2 transport to support retail and wholesale backhaul for 2G, 3G, and 4G services
Different deployment options optimized for different topologies
• Delivers a new level of scale for MPLS transport with RFC-3107 hierarchical labeled BGP LSPs
• Simplified carrier-class operations with end-to-end OAM, performance monitoring, and LFA FRR fast convergence protection for any topology
• Extensible to wireline residential, business L2 and L3 VPNs, and IP services in both retail and wholesale service models.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
• Introduction of Unified MPLS Concept for Mobile Transport
Scale to 60K nodes.
Focus on LTE Service Transport
End-to-end MPLS deployment for single control plane and operational model
• ASR 901, ME 3800X, ASR 9000
• End-to-end OAM and Performance Management
Single control plane enables seamless fault and performance monitoring
• Synchronous Ethernet
Stable, scalable frequency distribution for LTE services
• Comprehensive QoS Model
Enables DiffServe Queuing, Hierarchical QoS, coexistence with Wireline services
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
• BGP PIC Edge & Core on ASR9K for Labeled Unicast
Improved convergence over release 1.0. Scale to 100K nodes.
Only architecture to provide L2 and L3VPN support in a single architecture
• IEEE 1588v2 Boundary Clock in Aggregation
Greater scalability for packet-based timing
• TDM transport in Access and Aggregation
Provides BSC connectivity. On par with competitors
• Microwave partnerships with NEC and NSN
NSN validation includes 1588 interop testing.
• ASR 903 Platform
Small, modular aggregation platform with growth for future BW requirements
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
• New Unified MPLS Models
Labeled BGP Access. Provides highest scalability, plus wireline coexistence.
v6VPN for LTE transport.
• IEEE 1588v2 Boundary Clock and SyncE/1588v2 Hybrid models
Greater scalability & resiliency for packet-based timing in Access and Aggregation
• ATM/TDM transport end-to-end
ATM provides transport for legacy 3G services
PW Redundancy with MR-APS (Multi-Router Automated Protection System)
• New Network Availability Models:
Remote LFA FRR, labeled BGP PIC Core and Edge, MPLS VPN BGP PIC Edge. Most comprehensive resiliency functionality.
• ME3600X-24CX Platform
2RU fixed-configuration 40Gb/s platform supporting Ethernet and TDM
• Network Management, Service Management and Assurance with Prime
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
200+ Operators in 75+ Countries
UMMT System Architecture
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
MPLS MPLS MPLS
• In general transport platforms, a service has to be configured on every network element via operational points. The management system has to know the topology.
• Goal is to minimize the number of operational points
• With the introduction of MPLS within the aggregation, some static configuration is avoided.
• Only with the integration of all MPLS islands, the minimum number of operational points is possible.
MPLS Access AGG AGG
LER LSR LER
AGG AGG Access
Operational Touch Points
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
Core Domain
MPLS/IP
IGP Area
Aggregation Node
Aggregation Node
Aggregation Node
Aggregation Domain MPLS/IP
IGP Area/Process
Aggregation Node
Aggregation Node
Aggregation Node
Aggregation Domain MPLS/IP
IGP Area/Process
RAN MPLS/IP
IGP Area/Process
RAN MPLS/IP
IGP Area/Process
Core
Core
Core
Core
Node Access Domain Aggregation Domain Network Wide
Cell Site Gateways 20 2,400 60,000
Pre-Aggregation Nodes 2 240 6,000
Aggregation Nodes NA 12 300
Core ABRs NA 2 50
Mobile transport Gateways NA NA 20
~ 67,000
IGP Routes!
~45
IGP
Routes
~45
IGP
Routes
~ 2,500
IGP Routes!
~ 2,500
IGP Routes!
LDP LSP LDP LSP LDP LSP
~254 IGP Routes
~ 6,020 BGP Routes
~45
IGP
Routes
~70 IGP Routes
~ 67,000 BGP Routes
~254 IGP Routes
~ 6,020 BGP Routes
~45
IGP
Routes
LDP LSP LDP LSP LDP LSP LDP LSP LDP LSP
iBGP Hierarchical LSP
Reduction in BGP routes towards Access
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
TDM/ATM
Pre-Aggregation Node
3800X, 3600X-24CX, ASR-903
DWDM, Fiber Rings, Mesh Topology DWDM, Fiber Rings, H&S, Hierarchical Topology Fiber or uWave Link, Ring
Core Network Mobile Access Network Aggregation Network
Core Node
CRS-3, ASR-9000
IP/MPLS Transport
BSC
ATM RNC
V4 or v6 MPLS VPN
SGW
TDM BTS/ATM NodeB
IP/MPLS Transport
Core Node
CRS-3, ASR-9000
Cell Site Gateway (CSG)
ASR-901
IP/MPLS Transport
SGW
MME
X2-C, X2-U
S1-U
S1-C
eNodeB
Mobile Transport Gateway (MTG) ASR-9000
MTG
MTG
MTG
MTG
Aggregation Node
ASR-9000
CSG
CSG
ETH RNC
3G NodeB
MTG CSG
V4 or v6 MPLS VPN
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
• The network is organized in distinct IGP/LDP domains
Domains defined via multi-area IGP, different autonomous systems or different IGP processes.
No redistribution between domains
Intra-domain communication based on IGP/LDP LSPs.
• The network is integrated with a hierarchical MPLS control and data plane based on RFC-3107: BGP IPv4 unicast +label (AFI/SAFI=1/4)
Inter-domain communication based on labeled BGP LSPs initiated/terminated by the Unified MPLS PEs.
LSPs are switched by Unified MPLS ABRs or ASBRs interconnecting the domains, configured as labeled iBGP RRs with Next Hop Self
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
LDP LSP LDP LSP LDP LSP LDP LSP LDP LSP
iBGP (eBGP across ASes) Hierarchical LSP
• The Mobile Core, Aggregation, Access Network enable Unified MPLS Transport
• The Core, Aggregation, Access are organized as independent IGP/LDP domains
• Core and Aggregation Networks may be in different Autonomous Systems, in which case the inter-
domain LSP is enabled by labeled eBGP in between ASes
• The network domains are interconnected with hierarchical LSPs based on RFC 3107, BGP
IPv4+labels. Intra domain connectivity is based on LDP LSPs
• The Access Network Nodes learn only the required labelled BGP FECs, with selective distribution of
the MPC and RAN neighbouring labelled BGP communities
RAN IP/MPLS domain
Core Network
IP/MPLS Domain
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Aggregation Node
Aggregation Node
Core Node
Core Node
Core Node
Mobile Transport GW
Mobile Transport GW
CSG
CSG
CSG CSG
CSG
CSG
Validated in
UMMT 3.0
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
• Only the MPC community is distributed to RAN access
• The RAN Common Community is only distributed to MTGs
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
• Unified MPLS transport with a common MPLS VPN for LTE S1 from all CSGs and X2 per LTE region.
• Mobile Transport GWs import all RAN & MPC Route Targets, and export prefixes with MPC Route Target
• CSGs (and/or Pre-Aggregation Node) in a RAN region import the MPC and regional RAN Route Targets:
Enables S1 control and user plane with any MPC locations in the core
Enables X2 across CSGs in the RAN region
• MPLS VPN availability based on BGP PIC Edge and infrastructure LSP based LFA FRR
• Pre-Aggregation Nodes and Core POP Nodes form inline RR hierarchy for the MPLS VPN service
Core ABRs perform BGP community based Egress filtering to drop unwanted remote RAN VPNv4 prefixes
Pre-Aggregation Nodes implement RT Constrained Route Distribution towards CSR VPNv4 clients
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
BGP Inbound Route Filter 1) Accept MTG community 1001:1001
2) Accept remote loopbacks for configured wireline services
3) Drop
BGP Inbound Route Filter: 1) Accept MTG community 1001:1001
2) Accept remote loopbacks for configured wireline services
3) Drop
CSG
CSG
CN-RR RR
iBGP
IPv4 + label
Core Network
IS-IS L2
Access Network
OPSF 0 / IS-IS L2
Aggregation Network
IS-IS L1
Aggregation Network
IS-IS L1
Mobile Access Network
OPSF 0 / IS-IS L2
iBGP
IPv4 + label
iBGP
IPv4 + label
iBGP
IPv4 + label iBGP
IPv4 + label
CN-ABR
Inline RR
CN-ABR
Inline RR
BGP Egress filter towards CSGs: 1) Allow MTG community 1001:1001
2) Allow common wireline community 20:20
3) Drop
BGP Egress filter towards CSGs: 1) Allow MTG community 1001:1001
2) Allow common wireline community 20:20
3) Drop
CSG CSG
CSG
CSG
PAN
Inline RR
PAN
Inline RR
MTG
MTG
EoMPLS Pseudowire
Advertise loopback in iBGP with
Local RAN community 10:0201,
Common RAN community 10:10,
and Common Wireline Community
20:20
Advertise loopback in iBGP with
Local RAN community 10:0101,
Common RAN community 10:10,
and Common Wireline Community
20:20
• MTG and Common wireline communities distributed to RAN access
• Common RAN Community is only distributed to MTGs
• CSG accepts MTG & remote loopbacks for configured wireline services
LTE Backhaul Alternatives
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
MME Pool
S-GW
S1-C (Control Plane)
S1-U (Data Plane)
X2 (Control & Data Plane)
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
Source: NGMN LTE Backhauling Deployment Scenarios Whitepaper
U
C
M
T
User Plane
Control Plane
Transport (User+Control)
S
Management
Synchronization
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23
X2 Applications1
• Mobility Support
• Load Management
• Inter-cell Interference Coord.
• Management
• Application Data Exchange
• Trace Functions
• Self Optimization
1: 3GPP TS 36.420
2: NGMN Guidelines for LTE Backhaul Traffic Estimation
3: NGMN Optimized Backhaul Requirements
4: Qualcomm - Centralized Scheduling for Joint Transmission Coordinated Multi-Point in LTE-Advanced
Interconnects
Neighbor eNodeBs
Bandwidth is a
percentage of S1 –
typically up to 5%2 With CoMP, latency of 5ms
equals 20% throughput
reduction; recommended 1ms4
Recommended
Latency: 10ms3
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
1: 3GPP TS 36.420
2: NGMN Guidelines for LTE Backhaul Traffic Estimation
3: NGMN Optimized Backhaul Requirements
4: Qualcomm - Centralized Scheduling for Joint Transmission Coordinated Multi-Point in LTE-Advanced
With CoMP, latency of 5ms
equals 20% throughput
reduction; recommended 1ms4
4G LTE Advanced CoMP, coordinated multipoint is
used to send and receive data to and from a UE
from several points to ensure the optimum
performance is achieved even at cell edges.
• Joint simultaneous transmission of user data
from multiple eNBs to a single UE
• Dynamic cell selection with data transmission
from one eNB
One of the key requirements for LTE is
that it should be able to provide a very low
level of latency
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
Data forwarding over X2 interface only during the handover
Fully eNB controlled, the EPC network is notified at the end
Better performance than S1 based handover, but requires additional connectivity in the RAN
eNB eNB
MME SGW
Measurement
Reports
HO Request
HO Request Ack.
HO Command Data forwarding
HO
Confirm
Path Switch Req.
Update Bearer
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
• MPLS-TP favors a circuit-oriented approach
• MPLS IP VPN favors a mesh oriented approach
• Both will work, but with major operational differences
• Cisco can implement both simultaneously in the same network
MPLS-TP
MPLS IP VPN
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
• At least one TP tunnel for each eNodeB (likely 2 with mgmt VLAN)
• X2 traffic switched at the MTG
• During handoff: latency = 3 x S1 latency
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
CSG
CSG
CSG
* Backup Tunnels not shown for simplicity
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28
• Number of TP tunnels proportional to the number of eNodeBs
Management tunnels not shown – one more per eNodeB
• Requires separate IP subnets / VLAN for X2 traffic on eNodeB
Large layer 2 domain on RAN region: security and broadcast/loop control very hard
• Inter RAN Area X2 still flows through the Core
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
CSG
CSG
CSG
* Backup Tunnels not shown for simplicity
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29
• VRFs provisioned on each CSG (Transport VRF, MGMT VRF, etc)
• MPLS control plane and IGP scale with UMMT solution
• Optimal routing for X2 traffic: minimum latency possible
• Wholesale made easy by creating additional VRFs
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
CSG
CSG
CSG VR
F
VR
F
VR
F
VR
F
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30
1. New MTG and EPC gateways provisioned
2. Current TP tunnels torn down
3. New TP tunnels provisioned
4. eNodeBs reconfigured (synchronized with TP tunnels)
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
Mobile Transport GW
CSG
CSG
CSG
* Backup Tunnels not shown for simplicity
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31
1. New MTG and EPC gateways provisioned
2. eNodeBs reconfigured
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
Mobile Transport GW
CSG
CSG
CSG VR
F
VR
F
VR
F
VR
F
VR
F
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32
1. New MTG and EPC gateways provisioned closer to the agg
2. Current TP tunnels torn down
3. More and more TP tunnels provisioned due to EPC distribution
4. eNodeBs reconfigured (synchronized with TP tunnels)
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
Mobile Transport GW
CSG
CSG
CSG
* Backup Tunnels not shown for simplicity
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33
1. New MTG and EPC gateways provisioned closer to the agg
2. eNodeBs reconfigured
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
Mobile Transport GW
CSG
CSG
CSG
* Backup Tunnels not shown for simplicity
VR
F
VR
F
VR
F
VR
F
VR
F
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
• Peering Router connects to the Partner SP
• S1 Tunnels provisioned to the Peering Point (no traffic separation)
• X2 Tunnels provisioned between Partner SP Cell Sites (duplicated on shared Cell Sites)
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
Mobile Transport GW
CSG
CSG
CSG
Peering Point
* Backup Tunnels not shown for simplicity
Partner SP
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35
• Peering Router connects to Partner SP
• Partner VRF configured on Cell Site Gateways
• Additional VRFs can be configured as needed, where needed (i.e.: Cell Site Security Cameras)
RAN IP/MPLS domain
Core Node
Core Node
Core Node
Core Node
Core Network
IP/MPLS Domain
Aggregation Node
Pre-Aggregation Node
Aggregation Network
IP/MPLS
Domain
Core Node
Aggregation Node
Core Node
Mobile Transport GW
Mobile Transport GW
CSG
CSG
CSG VR
F
VR
F
VR
F
VR
F
VR
F
Peering Point
Partner SP
VR
F
VR
F
VR
F
VR
F
UMMT Functional Aspects QoS
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37
• QoS Class Identifier (QCI): Scalar that controls bearer level QoS treatment, LTE QoS parameters are enforced at EPS Bearer level
• GBR Bearer: Guaranteed Bit Rate (GBR): Bit rate that a GBR bearer is expected to provide
Maximum Bit Rate (MBR): Limits the bit rate a GBR bearer is expected to provide
• Non-GBR Bearer: Aggregate Maximum Bit Rate (AMBR): Limits the bit rate a set of Non-GBR bearers is expected to provide on a per UE or per APN basis
• Allocation and Retention Policy (ARP): Controls how a bearer establishment or modification request can be accepted when resources are constrained.
• IP pkts mapped to same EPS bearer receive same treatment. User IP packets are filtered onto appropriate bearer by TFTs.
• Default bearer always established with QoS values assigned by MME from data retrieved from HSS.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38
QCI
Value
Resource
Type
Priority Delay
Budget (1)
Error Loss
Rate (2)
Example Services
1 (3) 2 100 ms 10-2 Conversational Voice
2 (3)
GBR
4 150 ms 10-3 Conversational Video (Live Streaming)
3 (3) 3 50 ms 10-3 Real Time Gaming
4 (3) 5 300 ms 10-6 Non-Conversational Video (Buffered
Streaming)
5 (3) 1 100 ms 10-6 IMS Signalling
6 (4)
6
300 ms
10-6
Video (Buffered Streaming)
TCP-based (e.g., www, e-mail, chat, ftp, p2p
file sharing, progressive video, etc.)
7 (3) Non-GBR 7 100 ms
10-3
Voice, Video (Live Streaming), Interactive
Gaming
8 (5)
8
300 ms
10-6
Video (Buffered Streaming)
TCP-based (e.g., www, e-mail, chat, ftp, p2p
sharing, progressive download, etc.)
9 (6) 9
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39
• Core, Aggregation, Access
Differentiated Services QoS, MPLS EXP classification, diffserv queuing
• Microwave Access Networks
Hierarchical QOS with parent aggregate PIR/shape to the microwave speed, child differentiated services QoS, MPLS EXP classification, diffserv queuing
• UNI Class Mappings:
Ethernet UNI classification based on IP DSCP or Ethernet CoS. Values are mapped to corresponding MPLS EXP values for proper queuing.
Generally the diffserv mapping is done in base stations, radio controllers and gateways, and honored by the transport network.
TDM UNI is mapped to MPLS EXP 5 for proper EF PHB treatment.
ATM UNI has ATM CoS mapped to corresponding MPLS EXP values per-VC or per-VC bundle at ingress interface for proper PHB treatment.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40
Traffic Class LTE
QCI Resource
DiffServ
PHB
Core, Aggregation,
Access Network
Mobile Access
UNI
MPLS/IP IP NodeB, eNodeB
ATM NodeB
MPLS EXP DSCP ATM
Network Management 7 Non-GBR AF 7 56 VBR-nrt
Network Control Protocols 6 Non-GBR AF 6 48 VBR-nrt
Network Sync (1588 PTP , ACR)
Mobile Conversation (Voice & Video)
Signaling (GSM Abis, UMTS Iub control, LTE S1c, X2c)
1
2
3
GBR EF 5 46 CBR
Reserved 4 - AF 4 32 VBR-nrt
Hosted Video 5 Non-GBR AF 3 24 VBR-nrt
Reserved 8 - AF 2
1
16
8 VBR-nrt
Internet
Best Effort 9 Non-GBR BE 0 0 UBR
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41
Core Network Mobile Access Network Aggregation Network
IP/MPLS Transport
IP/MPLS Transport IP/MPLS Transport
Mobile Transport Gateway
(MTG) ASR-9000
RT
AF
BE
RT
AF
BE
RT
AF
BE
RT
AF
BE
RT
AF
BE
RT
AF
BE
Downstream Traffic
CSG Pre-Aggregation Aggregation Core ABR MTG
RT
AF
BE
CSG
RT
AF
BE
RT
AF
BE
Microwave Access
Fiber Access
Shape 400 Mbps
UNI
UNI
NNI
NNI
Queuing
Policing
Shaping
Legend
eNodeB
Pre-Aggregation Node
ME-3800X, 3600-X, ASR-903
DWDM, Fiber Rings, Mesh Topology DWDM, Fiber Rings, H&S, Hierarchical Topology Fiber or uWave Link, Ring
Core ABR
CRS-3, ASR-9000
Core ABR
CRS-3, ASR-9000
Cell Site Gateway (CSG)
ASR-901
Aggregation Node
ASR-9000
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42
DWDM, Fiber Rings, Mesh Topology DWDM, Fiber Rings, H&S, Hierarchical Topology Fiber or uWave Link, Ring
Core Network Mobile Access Network Aggregation Network
IP/MPLS Transport
IP/MPLS Transport IP/MPLS Transport
Mobile Transport Gateway
(MTG) ASR-9000
CSG Pre-Aggregation Aggregation Core ABR MTG CSG
Microwave Access
Fiber Access
Shape 400 Mbps
RT
AF
BE
RT
AF
BE
RT
AF
BE
RT
AF
BE
RT
AF
BE
RT
AF
BE
NNI NNI UNI
RT
AF
BE
RT
AF
BE
UNI NNI
Upstream Traffic
Queuing
Policing
Shaping
Legend
Marking
eNodeB
Pre-Aggregation Node
ME-3800X, 3600-X, ASR-903
Core ABR
CRS-3, ASR-9000
Core ABR
CRS-3, ASR-9000
Cell Site Gateway (CSG)
ASR-901
Aggregation Node
ASR-9000
UMMT Functional Aspects Resiliency
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44
• Unified MPLS Transport:
• Core, Aggregation, Pre-Aggregation baseline using BGP PIC Core/Edge
• Can benefit from LFA FRR in Core and Aggregation if topology is LFA
• LDP IP/MPLS Access uses remote LFA FRR
• Labeled BGP Access uses labeled BGP control plane protection
• MPLS VPN Service (ASR-901, ASR-9000):
• eNB UNI: Static Routes
• MPC UNI: PE-CE dynamic routing with BFD keep-alive
• Transport: BGP VPNv4/v6 convergence, BGP VPN PIC, VRRP on MTG
• VPWS Service:
• UNI: mLACP for Ethernet, MR-APS for TDM/ATM
• Transport: PW redundancy, two-way PW redundancy
• Synchronization Distribution:
• ESMC for SyncE, SSM for ring distribution.
• 1588 BC with active/standby PTP streams from multiple 1588 OC masters
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45
Aggregation Node
Aggregation Node
Aggregation Node
Aggregation Node
Aggregation Node
Aggregation Node
RAN IGP Process OSPF/ ISIS
Core
Core
Core
Core
LDP LSP LDP LSP LDP LSP LDP LSP LDP LSP
iBGP Hierarchical LSP
Aggregation Domain (OSPFx/ISIS1)
RAN Access
Core Domain
OSPF0/ISIS2
iBGP
Aggregation
BGP Community
iBGP
Aggregation
BGP Community
iBGP
iBGP
IPv4+Label
RR
Aggregation Domain (OSPFx/ISIS1)
RAN IGP Process OSPF/ ISIS
RAN Access
Core
Redistribute MPC
iBGP community
into RAN Access IGP
Redistribute
CSN Loopbacks
into 3107 iBGP
MPC PE
LFA L3 convergence < 50ms
BGP PIC Core L3 convergence < 100ms
BGP PIC Edge L3 convergence < 100ms
UMMT Functional Aspects OAM and PM
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 47
• OAM benchmarks
Set by TDM and existing WAN technologies
• Operational efficiency
Reduce OPEX, avoid truck-rolls
Downtime cost
• Management complexity
Large Span Networks
Multiple constituent networks belong to disparate organizations/companies
• Performance management
Provides monitoring capabilities to ensure SLA compliance
Enables proactive troubleshooting of network issues
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 48
RNC/BSC/SAE CSG Mobile Transport GW Aggregation
MPLS VRF OAM
IPSLA
Probe
NodeB
IPSLA
Probe
IPSLA PM
IP OAM over inter domain LSP – RFC 6371,6374 & 6375
MPLS VCCV PW OAM
IPSLA
Probe
IPSLA
Probe IPSLA PM
VRF VRF
LTE,
3G IP UMTS,
Transport
3G ATM UMTS,
2G TDM,
Transport
End-to-end LSP
With unified MPLS RFC6427, 6428 & 6435
CC / RDI (BFD)
Fault OAM (LDI / AIS / LKR)
On-demand CV and tracing (LSP
Ping / Trace)
Performance management (DM, LM)
Tra
nsp
ort
OA
M
Se
rvic
e O
AM
UMMT Functional Aspects Synchronization Distribution
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 50
• UMMT provides a single architecture for concurrent transport of different mobile backhaul technologies
• 2G TDM, 3G ATM/Ethernet, and 4G IP/Ethernet have different Synchronization requirements
CDMA, UMTS-TDD, LTE TDD require frequency and phase
GSM and UMTS-FDD require frequency only
• To accommodate, UMMT implements a combination of synchronization distribution methods:
TDM-based
Synchronous Ethernet
IEEE 1588v2 PTP
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 51
Pre-Aggregation Node
ASR-903, ME 3600X-24CX
DWDM, Fiber Rings, Mesh Topology DWDM, Fiber Rings, H&S, Hierarchical Topology Fiber or uWave Link, Ring
Core Network Mobile Access Network Aggregation Network
Core Node
CRS-3, ASR-9000
IP/MPLS Transport
IP/MPLS Transport
Core Node
CRS-3, ASR-9000
Cell Site Gateway (CSG)
ASR-901
IP/MPLS Transport
Mobile Transport Gateway (MTG) ASR-9000
Aggregation Node
ASR-9000
Mobile Packet Core Network Mobile Aggregation Network
IP/MPLS Transport Network
Ethernet Fiber
Microwave
SyncE, ESMC
1588 BC (Optional)
PRC/PRS
External Synchronization Interface (Frequency)
Global Navigation Satellite System (e.g. GPS, GLONASS, GALILEO)- PRTC, Primary Reference Time Clock
1588 PMC Packet Master Clock
External Synchronization Interface (ToD and Phase)
1588 Phase (+ Frequency)
1588 BC+OC Client+SyncE Hybrid Mode
1588 BC+OC Client
TDM(SDH) SyncE
1588 PTP No Physical
Synchronization
1588 BC
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 52
• Provides Frequency, Phase, and Time of Day (ToD) synchronization for TDD services
• IEEE 1588v2 PTP used in conjunction with SyncE provides then hybrid synchronization solution
SyncE provides frequency distribution
1588v2 provides phase and/or ToD distribution
• 1588v2 PTP stream is carried in the synchronization MPLS VPN from MTG to NodeBs.
• 1588v2 Boundary Clock (BC) at Aggregation, Pre-Aggregation, and Cell-site Gateway nodes improves scalability and resiliency
• Resynchronizing 1588v2 PTP stream from SyncE frequency input at BC nodes improves Phase alignment.
UMMT Functional Aspects Security
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 54
• IPSec encryption of S1-C can be offloaded to security gateways
S1-U encryption is optional depending on underlying transport
• uRPF stops source spoofing.
• Firewalls stop radio “DoS” pings from internet.
• MPLS VPNs provide segregation of services across transport network for FMC.
• Identifiable trails based on IP address – better LI visibility.
• iACLs and ABP (future) protect core from DDoS.
• Bogon filters protect BGP control plane.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 55
Aggregation Node
Aggregation Node
Aggregation Node
Aggregation Node
Aggregation Node
Aggregation Node
Core
Core
Core
Core
RAN Access iBGP
Aggregation
BGP Community
iBGP
Aggregation
BGP Community
iBGP
iBGP
IPv4+Label
RR
RAN Access
Core
iACLs protects from
DDoS destined to
infrastructure
MPC PE
SGW MME
UE
3107 Label Distribution
S1 Control Plane
S1 Data Plane
uRPF protects from spoofing
VPNs segregate from effects
of other services
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 56
Access
Layer
Aggregation
Layer
Pre-Aggregation
Layer
SGW
PDN GW
MME GW
MME GW
SGW
Core
Layer
Pre-aggregation site
i.e. CO or Radio agg.
Aggregation site
i.e. RNC site
Core site
i.e. MSC site
S1-u
S11
X2
S1-c SGW to PGW
Cell site
i.e. Cell-site device
IPSec Gateway Placement requirements (WSG)
Part of Aggregation network, securing untrusted links with no
extra vulnerability, low latency, optimised resiliency and
manageable
Located too close to eNB then not protecting untrusted access
links, CapEx and OpEx issues
Security vulnerability as direct route to network core, scalability of
solution, extra latency, backhaul inefficiency, bad resiliency
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 57
UE
UTRAN Internet/
Enterprise
SP’s IP
Services
NB PDN-GW/
GGSN
3GPP
AAA
HSS
Gn
Iu
S6b
SGi
IPSec/IKEv2
E-UTRAN
eNB
S5 S1
SWx
PCRF
SGi
Gx
BS
SGSN
MME/SGW
S3/S4
SeGW/WSG
SeGW/WSG
IPSec/IKEv2
Untrusted Network Trusted Network
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 58
12.1 IPSec Tunnel Establishment 12.1.1 IPSec Tunnel Establishment between eNodeB and WSG 12.1.2 IPSec Tunnel Re-Establishment after eNodeB Reboot 12.1.3 IPSec Tunnel Re-Establishment after Tunnel Deletion by WSG 12.1.4 eNodeB De-Registration – Initiated by eNodeB 12.1.5 IPSec Tunnel Establishment between eNodeB and WSG with a NAT/Firewall between two peers 12.1.6 IPSec Tunnel Establishment between WSG and eNodeB with Multiple Child SA 12.1.7 Multiple IPSec Tunnels between eNodeB and WSG. 12.1.8 IKEv1 12.2.1 Unique eNodeB identifier for eNodeB authorization 12.2.2 IPSec DPD (Dead Peer Detection) Functionality test 12.2.3 IPSec Phase1 (Isakmp) Rekeying Functionality test 12.2.4 IPSec Phase2 (IKE) Rekeying Functionality test 12.3.1 IPSec Data Packet Verification: Send large data packet size in both direction 12.3.2 IPSec Data Packet Verification: Verify fragmented Packets handling 12.3.3 IPSec Data Packet Verification: Verify Pre-Tunnel fragmentation handling 12.3.4 IPSec Data Packet Verification: UDP transport and ESP encapsulation 12.3.5 IPSec Data Packet Verification: DSCP on ESP 12.3.6 IPSec Data Packet Verification: X2 Traffic with Multiple Tunnels 12.3.7 IPSec Data Packet Verification: X2 Traffic with Multi-Child SAs 12.4.1 Key Management/Key Generation on the WSG 12.4.2 Symmetric / Private Key storage on the WSG 12.4.3 Automatic certificate enrollment via CMPv2 12.5.1 Active/Standby Switchover with IPSec Traffic 12.5.2 Revertive Switchover 12.5.3 PKI and HA
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 59
Vendor Network IPSec Feature WSG Release
NSN LTE IKEv1 R2.1
Ericsson LTE IKEv2 R2
Huawei LTE IKEv2 R3
Kineto Wireless 3G/4G IKEv2 R2
CA Vendor Feature Protocols WSG Release
Insta Certifier X.509 CRL, CMPv2 R2
RSA Security X.509 CRL, CMPv2 R2
UMMT Summary
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 61
Unified MPLS simplifies the transport and service architecture
• Seamless MPLS LSPs across network layers to any location in the network
• Flexible placement of L2 and L3 transport to concurrently support 2G,3G, and 4G services, as well as wholesale and wireline services.
• Service provisioning only required at the edge of the network
• Divide-and-conquer strategy of small IGP domains and labeled BGP LSPs helps scale the network to hundred of thousands of LTE cell sites
• Simplified carrier-class operations with end-to-end OAM, performance monitoring, and LFA FRR fast convergence protection
• Cisco PRIME provides comprehensive management suite for entire network.
Thank you.