Professional Documents
Culture Documents
Product Overview
Product Overview
Edge Router
Release 3.2.x
Published 9/01
1 If you and Unisphere Networks, Inc., have executed another license agreement for the Program
which is now in effect, then such agreement (“Negotiated Agreement”) shall supersede this Software
License Agreement and shall exclusively govern the use and license terms of the Program.
2. Unisphere's Rights. You agree that the Software, including the User Documentation, embodies
Unisphere's and its suppliers' and licensors' confidential and proprietary intellectual property
protected under U.S. copyright law and you will use your best efforts to maintain their confidentiality.
You further acknowledge and agree that Unisphere or its suppliers and licensors own all right, title,
and interest in and to the Software, including all intellectual property rights therein. You shall take no
action inconsistent with Unisphere's or its suppliers' ownership of such Software. You shall not
sublicense, assign, or otherwise disclose to any third party the Software or any information about the
operation, design, performance, or implementation of the Software and User Documentation without
prior written consent of Unisphere. You agree to implement reasonable security measures to protect
such confidential and proprietary information and copyrighted material. This License Agreement
does not convey to you an interest in or to the Program, but only the limited right of use revocable in
accordance with the terms of this License Agreement.
3. License Fees. The license fees paid by you are paid in consideration of the license granted
under this License Agreement.
4. Term. This license is effective upon opening of the package(s) or use of the hardware containing
the Software, and shall continue until terminated. You may terminate this License at any time by
returning the Software, including any User Documentation, and all copies or portions thereof to
Unisphere. This License will terminate immediately without notice from Unisphere if you breach any
term or provision of this License. Upon such termination by Unisphere, you must return the Software,
including any User Documentation, and all copies or portions thereof to Unisphere. Termination of
this License Agreement shall not prejudice Unisphere's rights to damages or other available remedy.
5. Limited Software Warranty: Unisphere warrants, for your benefit alone, that for a period of
ninety (90) days from the date of shipment from Unisphere that the Software substantially conforms
to its published specifications.
The limited warranty extends only to you as the original licensee. Your exclusive remedy and the
entire liability of Unisphere and its suppliers under this limited warranty will be, at Unisphere's option,
repair or replacement of the Software, or refund of the amounts paid by you under this License
Agreement. You agree that this is your sole and exclusive remedy for breach by Unisphere, its
suppliers or its licensors of any warranties made under this License Agreement.
In no event does Unisphere warrant that the Software is error free or that you will be able to operate
the Software without problems or interruptions. Unisphere does not warrant: 1) that the functions
contained in the software will meet your requirements; 2) that the Software will operate in the
hardware or software combination that you may select; 3) that the operation of the Software will be
uninterrupted or error free; or 4) that all defects in the operation of the Software will be corrected.
This warranty does not apply if the product: 1) has been altered, except by Unisphere; 2) has not
been installed, operated, repaired, or maintained in accordance with instruction supplied by
Unisphere; or 3) has been subjected to or damaged by improper environment, abuse, misuse,
accident, or negligence.
EXCEPT FOR THE WARRANTIES SET FORTH ABOVE, THE SOFTWARE IS LICENSED “AS IS,”
AND UNISPHERE DISCLAIMS ANY AND ALL OTHER REPRESENTATIONS, CONDITIONS, AND
WARRANTIES, WHETHER EXPRESS, IMPLIED, OR STATUTORY, INCLUDING, WITHOUT
LIMITATION, ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A
PARTICULAR PURPOSE OR ANY WARRANTIES FOR NONINFRINGEMENT OR ARISING FROM
A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. ANY AND ALL SUCH WARRANTIES
ARE HEREBY EXCLUDED TO THE EXTENT ALLOWED BY APPLICABLE LAW. UNISPHERE'S
SUPPLIERS AND LICENSORS DO NOT MAKE OR PASS ON TO YOU OR ANY THIRD PARTY
ANY EXPRESS, IMPLIED, OR STATUTORY WARRANTY OR REPRESENTATION, INCLUDING,
BUT NOT LIMITED TO, IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A
PARTICULAR PURPOSE OR ANY WARRANTIES FOR NONINFRINGEMENT.
6. Proprietary Rights Indemnification. Unisphere shall at its expense defend you against and,
subject to the limitations set forth elsewhere herein, pay all costs and damages made in settlement or
awarded against you resulting from a claim that the Program as supplied by Unisphere infringes a
United States copyright or a United States patent, or misappropriates a United States trade secret,
provided that you: (a) provide prompt written notice of any such claim, (b) allow Unisphere to direct
the defense and settlement of the claim, and (c) provide Unisphere with the authority, information,
and assistance that Unisphere reasonably deems necessary for the defense and settlement of the
claim. You shall not consent to any judgment or decree or do any other act in compromise of any
such claim without first obtaining Unisphere's written consent. In any action based on such a claim,
Unisphere may, at its sole option, either: (1) obtain for you the right to continue using the Program,
(2) replace or modify the Program to avoid the claim, or (3) if neither (1) nor (2) can reasonably be
effected by Unisphere, terminate the license granted hereunder and give you a pro rata refund of the
license fee paid for such Program, calculated on the basis of straight-line depreciation over a
five-year useful life. Notwithstanding the preceding sentence, Unisphere will have no liability for any
infringement or misappropriation claim of any kind if such claim is based on: (i) the use of other than
the current unaltered release of the Program and Unisphere has provided or offers to provide such
release to you for its then current license fee, or (ii) use or combination of the Program with programs
or data not supplied or approved by Unisphere if such use or combination caused the claim.
7. Year 2000 Warranty. The following sets forth Unisphere's warranty relating to issues surrounding
the year 2000, and the processing of data by the Software for dates between the 20th and 21st
centuries. Unless otherwise specified in writing, the Software licensed to you by Unisphere will be
Year 2000 compliant, meaning it will fully satisfy the British Standards Institution's definition of Year
2000 conformity, as set forth in BSI's document PD2000-1:1998; namely, that neither performance
nor functionality is affected by dates prior to, during, and after the year 2000 and in particular that:
(a) No value for current date will cause any interruption in operation;
(b) Date-based functionality must behave consistently for dates prior to, during, and after year
2000;
(c) In all interfaces and data storage, the century in any date must be specified either explicitly or by
unambiguous algorithms or inferencing rules; and
(d) Year 2000 must be recognized as a leap year.
The warranty set forth above does not cover the Software which is modified by anyone other than
Unisphere or which is integrated into software or products other than the Software. Moreover,
Unisphere is not responsible for whether or not other software or any equipment is Year 2000
compliant or for the consequences of other software's or equipment's lack of such Year 2000
compliance.
In the event that any Software covered by this warranty is Year 2000 noncompliant in any respect,
and provided that you: (i) have notified Unisphere in writing promptly after the occurrence of the
noncompliance; (ii) the noncompliance can be reproduced; and (iii) the noncompliance occurs in the
most recent version of the Software delivered to you, Unisphere's obligation and your exclusive
remedy for any breach of this warranty will be the following: Unisphere shall, at no cost to you,
promptly correct the Year 2000 noncompliance or provide Year 2000 compliant Software to you, as
Unisphere elects in its sole discretion. However, if neither of these alternatives is available on terms
that are reasonable in Unisphere's judgment, Unisphere will remove the noncompliant Software and
refund to you the net book value of such Software after deducting depreciation calculated on a
straight-line basis over a 2-year term beginning on its installation date. EXCEPT FOR THE REMEDY
STATED ABOVE, UNISPHERE WILL HAVE NO OBLIGATION OR LIABILITY FOR LOSSES OR
DAMAGES, INCLUDING BUT NOT LIMITED TO INDIRECT, INCIDENTAL, OR CONSEQUENTIAL
DAMAGES ARISING OUT OF OR IN CONNECTION WITH YEAR 2000 NONCOMPLIANCE, EVEN
IF UNISPHERE HAS KNOWLEDGE OF THE POSSIBILITY OF SUCH LOSSES OR DAMAGES.
EXCEPT FOR THE WARRANTY SET FORTH ABOVE, UNISPHERE MAKES NO
REPRESENTATIONS OR WARRANTIES IN CONNECTION WITH THE YEAR 2000 COMPLIANCE
OR NONCOMPLIANCE, AND UNISPHERE EXPRESSLY DISCLAIMS ANY AND ALL SUCH
WARRANTIES INCLUDING, BUT NOT LIMITED TO, ANY IMPLIED WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
8. Limitation of Liability. IN NO EVENT WILL UNISPHERE OR ITS SUPPLIERS OR LICENSORS
BE LIABLE FOR ANY COST FOR SUBSTITUTE PROCUREMENT; SPECIAL, INDIRECT,
INCIDENTAL, PUNITIVE, EXEMPLARY, OR CONSEQUENTIAL DAMAGES; OR ANY DAMAGES
RESULTING FROM INACCURATE OR LOST DATA OR LOSS OF USE OR PROFITS ARISING
OUT OF OR IN CONNECTION WITH THE PERFORMANCE OF THE SOFTWARE, EVEN IF
UNISPHERE HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. Unisphere's
cumulative liability to you or any other party for any loss or damages resulting from any claims,
demands, or actions arising out of or relating to this License Agreement shall not exceed the total
fees paid to Unisphere for the Software.
9. Export Control. Software, including technical data, is subject to U.S. export control laws,
including the U.S. Export Administration Act and its associated regulations, and may be subject to
export or import regulations in other countries. You agree to comply strictly with all such regulations
and acknowledge that you have the responsibility to obtain licenses to export, re-export, or import
Software.
10. Government Licensees: If any Software or associated documentation is acquired by or on
behalf of a unit or agency of the United States government, the government agrees that such
Software or documentation is a “commercial item” as that term is defined in 48 C.F.R. 2.101,
consisting of “commercial computer software” or “commercial computer software documentation” as
such terms are used in 48 C.F.R. 12.212 of the Federal Acquisition Regulations and its successors
and 48 C.F.R. 227.7202-1 through 227.7202-4 of the DoD FAR Supplement and its successors. The
use, duplication, or disclosure by the United States government of technical, data, computer software
and documentation is subject to the restrictions set forth in FAR section 12.212(a), FAR section
52.227-14(g)(2), FAR section 52.227-19, DFARS section 252.227-7015(b), DFARS section
227.7202-1(a), and DFARS section 227.7202-3(a), as applicable. All United States government end
users acquire the Software with only the rights set forth in this License Agreement.
11. General: This License shall be governed by and construed in accordance with the laws of the
Commonwealth of Massachusetts, United States of America, as if performed wholly within the state
and without giving effect to the principles of conflict of law. Any dispute arising out of this Agreement
shall be referred to an arbitration proceeding in Boston, Massachusetts, in accordance with the
commercial arbitration rules of the American Arbitration Association (the “AAA”). If the parties cannot
agree upon an arbitrator, arbitration shall be conducted by a neutral arbitrator selected by the AAA
who is knowledgeable in electronics equipment manufacturing and software licensing. The parties
shall share the procedural costs of arbitration equally, and each party shall pay its own attorneys'
fees and other costs and expenses associated with the arbitration, unless the arbitrator decides
otherwise. The arbitrator's award shall be in writing and shall include a statement of reasons, but the
arbitrator shall not be permitted to award punitive or indirect damages. The arbitrator's decision and
award shall be final and binding and may be entered in any court having jurisdiction. The terms of
this section shall not prevent any party from seeking injunctive relief in any court of competent
jurisdiction in order to protect its proprietary and confidential information. If any term or provision
hereof is found to be void or unenforceable by a court of competent jurisdiction, the remaining
provisions of this License Agreement shall remain in full force and effect. This License Agreement
constitutes the entire agreement between the parties with respect to the use of the Software and
User Documentation and supersedes any and all prior oral or written agreements, discussions,
negotiations, commitments, or understandings. No amendment, modification, or waiver of any
provision of this License Agreement will be valid unless in writing and signed by the authorized
representative of the party against which such amendment, modification, or waiver is sought to be
enforced. The waiver by either party of any default or breach of this License Agreement shall not
constitute a waiver of any other or subsequent default or breach. This License Agreement shall be
binding upon the parties and their respective successors and permitted assigns.
Should you have any questions about this agreement, please contact
Unisphere Networks, Inc.
10 Technology Park Drive
Westford, MA 01886-3146
Attn: Contracts Administrator
Contents
Introduction
This guide is an overview of the ERX system that describes product
features and contains helpful illustrations, presenting you with a broad
view of the system.
This document describes both current and future product functionality in
order to give you a complete overview of the product, its architecture
potential, and its development direction. All functions covered in the
manual are expected to be delivered during 2001.
However, Unisphere reserves the right to change, modify, or delete any
of the future functionality described in this guide.
Documentation
The document set contains the following books and online resources:
• Quick Start Guide – Provides the basic procedures to get the system
up and running quickly.
• Installation & User Guide – Provides the necessary procedures for
getting your system operational, including information on installing,
cabling, powering up, configuring your system for management
access, and general troubleshooting.
• System Basics Configuration Guide – Describes planning and
configuring your network, managing the system, passwords, and
security, and configuring the system clock and virtual routers.
• Physical and Link Layers Configuration Guide – Describes configuring
physical and link layer interfaces.
xiv
About This Guide
Online Information
More information about Unisphere and its ERX family of products is
available on our corporate Web site at www.unispherenetworks.com.
For our ERX system customers, a password-protected Web site is
available. Please contact Unisphere Customer Service for access
information.
Topic Page
Product Description 1-1
ERX System Models 1-2
ERX System Components 1-4
ERX System Product Strengths 1-6
Applications Overview 1-11
Standards Support 1-18
Product Description
The Unisphere ERX system is a new-generation edge router built to
address service provider challenges at the edge of the Internet. The
system is the ideal platform for service providers who need to meet
large-scale demands for IP access.
The system offers:
• Unparalleled port density to conserve scarce point-of-presence
(POP) space and power
• Sustained wire-speed routing under the most demanding traffic
patterns
• Exceptional reliability and availability to meet the requirements for
strict service level agreements (SLAs)
• Support for multiple IP service classes to provide the foundation for
virtual private networks (VPNs) and premium services deployment
1-2 CHAPTER 1
ERX System Overview
line module
redundant SRP module
SRP module
line module
SRP
SRP SRP
SRP
OC3 CT3 CT3 CT3 CT3 CT3 CT3 CT3 OC3 CT3 CT3 CT3
I/O I/O I/O I/O I/O I/O I/O I/O I/O I/O I/O I/O
I/O module
SINGLE SINGLE
MODE MODE
The 7-slot ERX-700 is for service providers who require less capacity
but still need a robust, high-density system. See Figure 1-3 and
Figure 1-4.
line module
OC3
CT3
CT3
CT3
line module
CT3
SRP Module
SRP
I/O module
OC3
SINGLE
I/O
MODE
CT3
I/O
CT3
I/O
CT3
I/O
I/O module
CT3
I/O
SRP I/O Module
xDSL
IP/PPP/ATM OC12/STM4
ATM
Service Provider Internet
Edge Network
OC3/STM1
VLAN/Ethernet POS
CLEC
Figure 1-5 The ERX System Supports a Variety of Ingress and Egress Traffic Types
Unparalleled The system offers a ten to one hundred times density improvement
Port Density over current-generation solutions, with the industry’s highest port
density in an Internet edge device. A single ERX-1400 22.75-inch
shelf supports more than 24,000 fractional T1 terminations and up to
100,000 IP interfaces, while drawing less than 25 Amps of power. Up
to three shelves may be stacked in a standard 7-foot rack, ensuring
optimal use of scarce POP space.
Sustained Internet traffic studies have shown that nearly half the packets traversing
Wire-Speed the backbone are less than 44 bytes in length. These smaller packets,
Routing generated by Web-intensive applications, necessitate more packet per
second (pps) performance to deliver wire-speed routing. Using an
average packet size of 40 bytes, an OC3/STM1 (155 Mbps) line
module running ATM must route more than 300,000 pps to keep the
trunk full, while OC-12 (622 Mbps) running ATM requires nearly 1.4
million pps of routing performance.
The ERX system implements a next-generation architecture relying on
a combination of IP-optimized ASICs and standard RISC processors to
deliver maximum wire-speed performance on all interfaces. This
wire-speed performance is maintained even with all features in use,
including statistics gathering, accounting, QoS policy enforcement, and
routing.
Scalability The system has a highly scalable design. As more line modules are
added to a chassis, more packet-processing power is added on.
The ERX-700 and ERX-1400 systems support:
• Copper T1/E1 interfaces for T1/E1 and FT1/FE1 and support for
up to 288 T1s and 6912 FT1s/FE1s per chassis
• Copper T3/E3 interfaces for unchannelized T3/E3 and support for
up to 144 T3/E3s and CT3 support for up to 24,000 FT1s per
chassis
• Channelized optical OC3/STM1 and OC12/STM4 interfaces for
up to 12 OC12/STM4s, 48 OC3/STM1s, 144T3s/E3s,
4000T1s/E1s, 24,000 DS0s
• 48 OC3/STM-1 ATM ports per chassis
• 48 OC3/STM-1 POS ports per chassis
• 12 OC12/STM1 ATM ports per chassis
• 12 OC12/STM1 POS ports per chassis
1-8 CHAPTER 1
ERX System Overview
Hardware Design
The ERX system supports full-logic and line module redundancy,
hot-swap components, an innovative distributed DC power system,
front-to-back airflow strategy, and is certified for Telcordia
Technologies NEBS Level 3 standards. These features decrease the time
and complexity of maintenance functions, while allowing service
providers to confidently deliver network reliability guarantees as part of
overall SLAs.
Software Design
Reliability is as much a function of software architecture as it is
hardware. With this in mind, Unisphere engineers have implemented a
high-performance modular, object-oriented software design. Each
program module has access to dedicated system resources, including
memory, packet buffers, and processor cycles. This approach improves
stability and reliability by ensuring that the behavior of one module
does not adversely affect others. When compared with the monolithic
operating systems of first-generation routers, this approach provides
more predictable behavior and reduces the possibility of overall system
failure.
The combination of carrier-grade hardware and innovative software
design helps decrease the time and complexity of maintenance
functions, lowering overall operations costs, and increasing subscriber
satisfaction.
The ERX system has inherent strength for IP QoS delivery that can
prevent a low-priority application from monopolizing bandwidth, or
prevent aggressive users from consuming network bandwidth and
degrading the performance of other users. This capability differentiates
premium and standard classes of Internet traffic, allowing service
providers to work toward increasing reliability for their business
subscribers, and away from the traditional “best effort” IP delivery
system.
The ERX system’s policy-based QoS allows service providers to
increase revenues and strengthen brand recognition by offering tiered
bandwidth, varied service levels, and pricing options. For example, one
service offering may include a premium-priced Gold service, midpriced
Silver service, and low-priced Bronze service. In addition, the system
gives service providers the platform redundancy they need to offer
SLAs with guaranteed performance.
The ERX system also gives service providers the capability to offer
VPN services for wholesaling applications and corporate outsourcing.
The system’s VPN capabilities can also be layered with the system’s
QoS services to support specialized VPN services with delivery
guarantees.
Comprehensive Some service providers estimate that they use more than 75 percent of
Management their operating budget for on-going network operations. Unisphere
Tools recognizes two key facts:
1 Network management is often the most important long-term product
consideration
2 Service providers need to integrate new products into existing
operational support systems (OSSs) and operational procedures that are
already in place.
Unisphere’s ERX system offers a wide range of network management
options, which include:
• Support for industry-standard command line interface
• An automated scripting language
• Full SNMP SET and GET support
• Leading-edge JAVA-based external management applications
• Integration into existing OSS
• Leading-edge support for policy management, with a standard
COPs-based management interface
Applications Overview 1-11
ERX Edge Routers
Applications Overview
The ERX system can be used for a number of edge aggregation
applications: Private line aggregation, xDSL session termination, and cable
subscriber management are described in this section. More detailed
application examples are provided in Chapter 7, Applications Overview.
Private Line Service providers that want to offer high-speed Internet connections to
Aggregation their subscribers can achieve dramatic space, power, and management
Application savings with the ERX system products. See Figure 1-6. One system can
support more than 24,000 FT1 terminations, with minimal power draw
and maximum rack space to optimize scarce and expensive POP space.
Business Users
Edge Core
Telco Service
Network Provider
Tier 2/3 Network
ISP
Network
xDSL The next-generation architecture of the ERX system makes it the ideal
Aggregation solution for aggregating Digital Subscriber Line Access Multiplexers
Application (DSLAMs) onto the Internet backbone. Deployed by carriers in the
central office or by service providers at the POP, the ERX system
aggregates data traffic from multiple DSLAMs from any vendor-specific
DSL implementation. The ERX system is ideal for service providers
who are faced with the challenge of a mass-market xDSL deployment.
Any type of DSLAM can be supported, including those that terminate
any of the following DSL types.
• Asymmetric digital subscriber line (ADSL)
• Rate-adaptive digital subscriber line (RADSL)
• Symmetric digital subscriber line (SDSL)
• ISDN digital subscriber line (IDSL)
• Very-high-bit-rate digital subscriber line (VDSL)
The DSLAM terminates the copper, and the ERX system provides the
logical termination for the IP session, as well as the interface to
authentication and accounting systems with Password Authentication
Protocol (PAP), Challenge Handshake Authentication Protocol
(CHAP), and Remote Authentication Dial-In User Service
Applications Overview 1-13
ERX Edge Routers
Consumer &
Business CLEC
Users (xDSL)
DSLAM
IP/PPPoE/ATM
VPN
DHCP RADIUS
ATM
IP/Ethernet Ethernet ERX700/1400
POS
10/100 Enet OC3/STM1 ISP
Gigabit Enet OC12/STM4
OC3 ATM
IP/ATM OC3 POS POS/ATM
Gig Eth
CMTS
IP/PPPoE
VPN
DHCP SSC
RADIUS
Figure 1-8 Cable Subscriber Management Application with the ERX System
Access
Gigabit Ethernet
IP Edge
IP Core ASP A
ERX
VLAN 1 VLAN 5
ASP B
IP/ETH VLAN 6
PPPoE
VLAN 7
Ethernet VLAN 2 ISP B
Switch
(VLAN tagged)
Policies
RADIUS
(COPS, LDAP)
DHCP
Fixed Wireless Fixed wireless applications refer to the operation of wireless devices in
Applications homes and offices, and in particular in equipment connected to the
Internet via specialized modems. Common examples of wireless
equipment in use today include cordless phones (not to be confused
with cell phones), satellite television, and wireless LANs.
The ERX product family is the first fixed-wireless local loop (WLL)
subscriber access platform to deliver the performance, density, and
scalability for comprehensive IP service delivery in large-scale fixed-
wireless deployments. The ERX platform combines subscriber-access
functions with Tier-1-class routing and innovative IP QoS to enable
service providers to offer and deliver new, competitive IP services to
their fixed-wireless subscribers.
Deployed by carriers in the central office or by service providers at a
POP, the ERX transparently aggregates data traffic from multiple base
stations (BSs) to vendor-specific fixed-wireless implementations.
Point-to-Multipoint and WLL BS implementations based on
Multi-channel Multipoint Distribution System (MMDS), Local
Multipoint Distribution System (LMDS), and wireless LAN (WLAN)
can all be terminated using industry standard remote-access protocols
such as PPP and RADIUS. Direct connection from BSs or ATM,
Frame Relay or Ethernet aggregation switches (over SDH rings) are
supported with E3/T3, OC-3/STM-1, OC-12/STM-4 and Fast
Ethernet/Gigabit Ethernet (FE/GE) links. The output (egress) of the
ERX platform is typically a high-speed link, such as OC-3/STM-1,
OC-12/STM-4 and GE, to feed a core backbone.
1-18 CHAPTER 1
ERX System Overview
Standards Support
The ERX system software set supports a large number of IETF and
IEEE standards, including the key directives for IP, BGP-4, IS-IS,
OSPF, RIP, SNMP, PPP, ATM, Frame Relay, VLAN, multicasting
(PIM, MBGP, DVMRP, IGMP) and SONET/SDH. In addition, the
system supports emerging IP QoS standards for DiffServ and
Multiprotocol Label Switching (MPLS).
Note: The individual RFCs are detailed in the specific software sections in Chapter
3.
The ERX-700 and ERX-1400 are certified NEBS and ETSI Telecom
switching gear. The system is designed to comply with the
international standards listed in Table 1-2.
Standards Support 1-19
ERX Edge Routers
Topic Page
Hardware Design Overview 2-1
ERX System Chassis 2-7
Power System 2-8
Fans/Air Flow 2-8
System Modules 2-9
connection via
passive midplane
CT3
CT3 CT3 CT3 CT3 CT3 CT3 SRP SRP OC3 CT3 CT3 CT3 CT3 OC3
Data Flow Figure 2-2 shows the data flow through the hardware of the system.
Line modules handle packet processing and forwarding. A switch fabric
performs high-speed internal packet switching. A route processor
gathers the routing table information and sends route tables and updates
to the line modules.
System Design The ERX system’s innovative design provides a fast path for IP traffic
by taking the route processor out of the forwarding path and
maintaining an entire routing table on each port. The route processor
on the switch route processor (SRP) module uses a private multicast
channel through the switch fabric to update route tables on forwarding
engines and issues updates only when changes occur. For every packet,
the system uses its powerful hardware to perform a full table search at
wire speed. This design allows the system to avoid the nondeterministic
performance of cache-based searches and the associated uncertainty in
packet latency.
The ERX system design also supports wire-speed quality of service
(QoS) handling; consequently, the system can examine, classify, and
queue packets at wire speed. A scheduling function then regulates the
packet flows onto the egress link based on the QoS policy assigned to
2-4 CHAPTER 2
Hardware Overview
each flow. All QoS policies for all flows are centrally configured and
then downloaded for execution to each line module. Because all QoS
handling is distributed to the line modules, processing speed is
maintained even when you add extra line modules. Regardless of the
number of QoS policies or the volume of traffic, the system offers
consistently high performance.
Unisphere’s The ERX system makes use of application specific integrated circuits
ASIC (ASICs) in order to speed IP packet processing. Unisphere’s custom
Technology ASICs help meet the forwarding demands of the Internet edge.
Older-generation routers cannot cope with the processor demands of
QoS functions, such as classification, queuing, and scheduling while
routing packets at wire speed. The ERX system overcomes these
limitations with its hardware-assisted architecture.
The system’s use of ASICs provides significant benefits to the service
provider. ASICs help to
• Reduce product size
• Reduce product cost, especially packet per second cost
• Increase packet-processing speeds dramatically by applying targeted
power to hard-wired tasks
Redundancy Both the ERX-700 and the ERX-1400 systems have a passive
Features midplane design. Line modules that contain active components plug
into the front of the chassis. I/O modules that contain the I/O ports
have mostly passive components and plug into the rear of the chassis.
This design provides redundancy by allowing multiple line modules to
share cables. If a line module goes down, the redundant line module
uses the same cables, requiring no manual intervention or cable
swapping from an on-site technician.
1:1 Redundancy
The SRP module uses a 1:1 redundancy scheme. When two SRPs are
installed in the ERX system, one acts as a primary and the second as a
standby. Both SRP modules share a single SRP I/O module located on
the rear of the chassis. If the primary SRP fails, the secondary SRP
assumes control.
1:N Redundancy
Most line modules support a 1:N redundancy scheme. In this process,
an extra line module in a group of identical modules provides
redundancy for all those modules. This level of redundancy is critically
important because thousands of subscribers connect via single
channelized interfaces, and because it is increasingly common for
facilities to operate in lights-out mode with no personnel on site to
swap cables.
To use this feature, you must install
• A spare line module in the lowest slot of the redundancy group
• A redundancy midplane that covers the slots in the redundancy
group
• A redundancy I/O module in the lowest slot of the redundancy
group
The special midplane can cover from two to six slots. It provides
additional connectivity that enables the spare line module to assume
control of the I/O module associated with any failed line module in the
redundancy group. The spare I/O module provides connectivity from
the spare line module to the redundancy midplane.
The process by which the ERX system switches to the spare line
module is called switchover. When switchover occurs, the system breaks
the connection between the primary I/O module and the primary line
module. Next, the system connects the primary I/O module to the
ERX System Chassis 2-7
ERX Edge Routers
spare line module via the redundancy midplane and redundancy I/O
module. Protocol processing then takes place on the spare line module.
Port Redundancy
The channelized OC12/STM-4 module optionally supports 1+1
SONET APS redundancy. This feature meets the NEBS
GR-253-CORE specification.
With this type of redundancy, there are two fiber ports on the I/O
module. Both ports receive the same SONET packets. The ERX
system examines the SONET packets to determine whether or not
there is a problem with the optical connection to either port. Based on
this information, the system chooses which port is active and which
port is redundant. If there is a problem with the connection to the
active port, the system switches data transfer to the redundant port.
The GE I/O module uses a similar scheme with its two ports; one
active Gigabit Ethernet connection is supported at a time. In the event
of a cut or loss of the fiber cable connected to the primary port, the
redundant port becomes active.
Power System
Both the ERX-700 and ERX-1400 are designed for DC power input.
Unisphere’s unique distributed power architecture distributes redundant
–48VDC feeds through the system to each line module, SRP module,
and fan assembly. Conversion of the required secondary voltages takes
place at the line module. This system design allows the addition of
faster and more powerful line modules, without the power restrictions
of a centralized architecture. If a power component fails, the design
ensures that other components will not be affected.
The ERX system offers extremely low power consumption (less than
25 Amps at –48VDC) and a correspondingly low heat dissipation (less
than 1,250 W for a fully populated system). The system’s efficient
electrical design minimizes the overall power needs in a POP, and
satisfies stringent co-location power restrictions.
If AC power is desired, a DC to AC power converter is available as part
of the system.
Fans/Air Flow
The system uses a single fan tray assembly with six fans mounted on the
tray in the ERX-1400 and four fans in the ERX-700. This assembly
provides power- and status-sensing capability. The fan tray consists of
two redundant converters that power the fans. If one converter fails, the
other takes over. In addition, the system software reports an alarm if any
of the fans overrotate or underrotate or if one of the converters fails.
Airflow in the chassis varies according to the model. The ERX-1400
uses an innovative front-to-back and bottom-to-top air flow design to
keep the unit cool even when it is mounted in a rack with multiple
System Modules 2-9
ERX Edge Routers
other devices. In the ERX-1400, the fans are located at the top of the
chassis. The ERX-700 has a conventional air flow, from right-to-left;
fans are located on the left side of the chassis.
System Modules
You can use several different line modules and I/O modules in both the
ERX-700 and ERX-1400 systems. A few architectural characteristics
are common to certain types of modules:
• The presence of an EEPROM on each module to identify the
module and its manufacturing date.
• The location of nonvolatile storage on each line and SRP module to
store its own boot image and run-time code.
• A hardware-based lookup, forwarding component, and dedicated
RISC processor on each line module. This distributed processing
power guarantees wire-speed classification and forwarding of
40-byte packets, even when the system is fully loaded.
SRP Modules An ERX system must contain at least one SRP module and its
associated SRP I/O module. See Figure 2-3. You must insert the SRP
module into the slots reserved for this purpose. In the 14-slot chassis,
the two center slots are reserved for SRP modules; in the 7-slot chassis,
the two bottom slots are reserved. You can install another SRP module
in the second slot to provide redundancy. See Redundancy Features
earlier in this chapter.
2-10 CHAPTER 2
Hardware Overview
midplane
connectors
fabric board
ejector
functional
status LEDs
redundancy
status LEDs
PCMCIA
Flash card
system processor
ejector
Feature Specification
Management ports • One RJ45 10/100 Base-T Ethernet management port
• One DB9 RS232 connector for system management
Alarm ports • One terminal block for external alarm contacts
Clock ports • Two 3-pin wire-wrap posts for US external clock
sources
• Two BNC connectors for E1 clock sources
• Two connectors support primary and secondary clock
sources
Line module front panel • Indicates board, power, fan, link, and redundancy
status
• PCMCIA slot access
Processor support • PowerPC 750 with 1 MB level 2 cache
Switch fabric • 5-, 10-, or 40-Gbps switch fabric
Memory support • Four banks of SDRAM; max of 128 MB each
• Upgradable PCMCIA Type II NVS; 220 MB card
provided, 440 MB card available
• Per flow queuing – each queue can be assigned QoS parameters and
is independently managed and scheduled, so that if congestion
conditions occur on one queue, it does not affect other queues. This
allows for fairness in QoS policy management and control.
• Dedicated CPU – provides management and control to ensure fast
response times to management requests
• Early packet discard (EPD) support – reduces retransmissions by
ensuring that only complete packets are sent
The fabric also distributes operational software images and route table
updates to the line modules.
System Start-Up
When the system is powered on, the SRP executes boot code from
NVS. The SRP module downloads a software image from NVS into
SDRAM, then executes code from SDRAM. Once it is initialized, the
SRP module downloads an executable image to each line module in
the chassis.
When each line module is active, the SRP module communicates with
the line modules through a dedicated, in-band, 150-Mbps Utopia bus
connection through the switch fabric.
Line Modules A range of line modules is available for the ERX system. See Table 2-3.
You can use any line module for access or uplink. Commonly, access line
modules receive traffic from low-speed circuits, and the system routes
the traffic onto higher-speed uplink line modules and then to the core
of the Internet. TSMs, which enable the ERX system to support
tunnels, are also available.
Name Description
E1/CT1 Modules
CE1-FULL 20-port channelized E1 for Frame, PPP, HDLC
CT1-FULL 24-port channelized T1 for Frame, PPP, HDLC
E3/T3 Modules
E3-3A 3-port unchannelized E3 for ATM
E3-3F 3-port unchannelized E3 for Frame, PPP, HDLC
E3-12-FO 12-port unchannelized E3 for Frame, PPP, HDLC
T3-3A 3-port unchannelized T3 for ATM
System Modules 2-13
ERX Edge Routers
Name Description
T3-3F 3-port unchannelized T3 for Frame Relay, PPP, HDLC
T3-12-FO 12-port unchannelized T3 for Frame Relay, PPP, HDLC
CT3-3 3-port channelized T3 for Frame Relay, PPP, HDLC
CT3/T3-FO 12-port channelized T3 for Frame Relay, PPP, HDLC
OC3/STM-1 Modules
OC3/STM1 ATM 4-port unchannelized, concatenated OC3/STM-1 for ATM
OC3/STM1 POS 4-port unchannelized, concatenated OC3/STM-1 for POS
cOC3/STM1-T3/E3 4-port OC3/STM-1 channelized to T3/E3 for Frame Relay, PPP, HDLC
cOC3/STM1-FO 4-port OC3/STM-1 channelized to DS0 for Frame Relay, PPP, HDLC
OC12/STM-4 Modules
OC12/STM4 ATM 1-port unchannelized, concatenated OC12/STM-1 for ATM
OC12/STM4 POS 1-port unchannelized, concatenated OC12/STM-1 for Frame Relay
cOC12/STM4-FRAME 1-port OC12/STM-4 channelized to HDLC
cOC12/STM4-T3/E3 1-port OC12/STM-4 channelized to T3/E3 for Frame Relay, PPP, HDLC
cOC12/STM4-FO 1-port OC12/STM-4 channelized to DS0 for Frame Relay, PPP, HDLC
Ethernet Modules
10/100 FE-2 2-port Fast Ethernet
FE-8 8-port Fast Ethernet
GE 1-port Gigabit Ethernet
HSSI Module
HSSI-3 3-port high-speed serial Interface
Tunnel Service Line Modules
(TSMs)
TUNNEL-SERVICE Supports static and dynamic tunnels for protocols such as DVMRP, GRE, and
LNS termination for L2TP
IPSec TSM Tunnel service module that encrypts packets encoded with IPSec
X.21/V.35 Module
ERX-X21-V35-MOD 16-port X.21/V.35 interface
2-14 CHAPTER 2
Hardware Overview
Feature HSSI-3
Number of ports 3
Connector type Standard HSSI connector: 2 row, 50 pin,
receptacle header with rails and latch blocks
Capability Up to 44.736 MHz data rate
DCE or DTE operation
HDLC
Performance Wire-speed throughput at 40-byte packet size
Feature ERX-X21-V35-MOD
Number of ports 16
Connector type 200-pin proprietary socket on I/O module
DB15 X.21 or DB34 V.35 at remote end
Capability Up to 10 Mbps data rate per port
Up to 50 Mbps data rate across all ports
DCE and DTE operation
HDLC
Frame Relay
PPP
Performance Wire-speed throughput at 40-byte packet size
Redundancy 1:N Support
TSMs
Unlike other line modules, TSMs do not pair with an I/O module that
contains ingress and egress ports. When the system receives a packet
that requires processing on a tunnel server module, the system forwards
the packet via the switch fabric to the tunnel server module. The
tunnel server module processes the packet and returns it to the switch
fabric. Finally, the processed packet leaves the system via an egress
module.
Two TSMs are available: the tunnel service module and the IPSec TSM
module. The tunnel service module supports IP tunnels, such as
DVMRP and GRE tunnels, and LNS termination for L2TP. The IPSec
TSM module decrypts packets encoded with the IPSec protocol.
System Modules 2-19
ERX Edge Routers
Table 2-16 Modes/Ranges for OCx/STMx and cOCx/STMx I/O Modules (continued)
Table 2-16 Modes/Ranges for OCx/STMx and cOCx/STMx I/O Modules (continued)
Future Modules
Unisphere will continue to develop new modules for the ERX system
to increase density and functionality. Additional modules will be
developed in response to customer demand as network bandwidth
needs increase or as interface requirements change.
2-22 CHAPTER 2
Hardware Overview
Software Overview
This chapter describes all the software components of the ERX system.
It includes a general overview of the software architecture and
information on software traffic flow, access protocols, routing protocols,
and the QoS mechanisms.
Topic Page
Architecture Overview 3-2
Software Summary 3-3
ERX Software Traffic Flow 3-5
IP 3-9
DS3/DS1/E3/E1 3-22
SONET 3-24
Switched Multimegabit Data Service (SMDS) 3-26
Routing 3-28
IP QoS 3-44
Policy Management 3-54
Dynamic Interfaces 3-57
B-RAS Support 3-59
Non-PPP Equal Access Support 3-64
L2TP Support 3-67
L2F Support 3-68
VLAN Support 3-69
3-2 CHAPTER 3
Software Overview
Architecture Overview
As network transport becomes more and more critical to daily business
operations, service providers need to deploy products that can
guarantee maximum uptime. In the ERX system, both the hardware
and the software are designed to be extremely robust. The system
combines a redundant carrier-class hardware design with a software
architecture that is modular, object oriented, and component based.
This software modularity increases overall system reliability, eases
software upgrades, and reduces development time to speed new feature
release by making each software component highly autonomous.
Each major software subsystem within the system (such as BGP-4, IP,
SNMP, Frame Relay, SONET) is independent and has a set of
dedicated resources, such as memory, buffers, and processing cycles.
This allows each subsystem to minimize unwanted interactions with
other subsystems and thus to minimize negative overall system impact.
Since each subsystem has dedicated system resources, no one subsystem
can consume an unfair share of memory, buffers, or processing cycles.
In addition, software subsystems can be independently loaded, shut
down, and restarted. All actions are dynamic; the loading of one
module does not affect the performance or operation of another.
The modularity of the system architecture is in direct contrast to older,
monolithic, code-based designs. The modular approach improves
stability and reliability by ensuring that the behavior of one program
module does not adversely affect others. The system modularity
provides several advantages:
• Seamless recovery – Individual software subsystems can be restarted
without affecting the rest of the system’s operation.
• Increased system uptime – Each software module interacts with the
other software modules through a defined set of interfaces,
protecting subsystem interactions.
• Predictable software behavior – System resources are protected so
that even if a software subsystem has a problem, overall system
operation will be minimally affected.
• Nondisruptive software upgrades – Individual modules can be
upgraded without affecting overall system operation.
The ERX system also implements a distributed software architecture,
where each line module is capable of making routing, QoS, and
forwarding decisions. This distribution of software functions makes the
Software Summary 3-3
ERX Edge Routers
system highly scalable. As more line modules are added to the system,
more packet processing capability is added.
The SRP module is responsible for downloading software images to
each of the line modules on system boot. In addition, the SRP is also
responsible for sending down routing table updates (see Routing, later in
this chapter). The distributed software processing allows for maximum
system performance even when the chassis is fully loaded.
Software Summary
IP has emerged as the dominant traffic type for wide area transport.
With this in mind, the ERX system has an IP-optimized software set
designed to meet the demanding needs of the service provider edge.
The ERX software set combines robust, IP routing protocol support
with next-generation IP features such as QoS, virtual private networks
(VPNs), multiple virtual routers, and detailed accounting. This software
set is backed by the wire-speed performance of the ERX hardware.
The comprehensive software set allows service providers to deploy the
system to fulfill immediate subscriber demand for high-speed Internet
access, while also enabling them to develop new, high-value IP service
plans.
Software The system supports the following software features, each of which is
Features described in more detail in the following sections:
• Robust IP protocol
• Routing protocols: BGP-4, IS-IS, OSPF, RIPv2
• PPP (including Packet over SONET), Multilink PPP, Frame Relay,
Multilink Frame Relay, and ATM
• SONET, DS3, DS1, Fractional DS1, E3, E1, Fractional E1
• MPLS (including RSVP and CR-LDP)
• Multicasting protocols: DVMRP, IGMP, MBGP, PIM
• VPNs
• Virtual routers
• IP QoS
• Policy management
• Dynamic interfaces
• Broadband RAS features: PPP, PAP, CHAP, RADIUS, DHCP
3-4 CHAPTER 3
Software Overview
Figure 3-1 shows the breadth of the ERX system software support.
Software functions are layered on top of physical (copper or optical)
interfaces. Multiple access protocols (PPP, FR, ATM) are supported to
allow service providers to offer a number of access methods and line
speeds to their subscribers. The system is optimized to handle IP
connections no matter what the access protocol.
The system also supports a number of protocols that are specific to the
B-RAS application. These are shown in Figure 3-31, and include:
• IP/PPP/ATM
• IP/PPP/Ethernet/ATM
• IP/PPP/FR
• IP/PPP/Ethernet/FR
For routing, all major IP-based routing protocols are supported. They
give the service provider flexibility in deploying routing protocols. This
allows service providers to use protocols such as IS-IS or OSPF for
ERX Software Traffic Flow 3-5
ERX Edge Routers
1 4 5
SRP
CT3 OC3
1 Packets are received by a line module. 4 Packet is forwarded to the egress destination via IP
2 Packets are classified based on ingress forwarding function. Packets could be forwarded into a
interface, MPLS label, or any field in specific traffic queue (such as Gold, Silver, or Bronze).
the packet, and a lookup is performed. 5 Line module handles packet scheduling, Layer 2
Classification could include Gold, Silver, encapsulation, and transmission of the packet on the
and Bronze traffic queues. egress network. Weighted-based scheduling could provide
3 Actions are performed on the packet relative priority between queues (such as Gold, Silver,
as a result of classification. or Bronze).
Packet The following steps describe how the ERX system processes packets:
Processing
1 Packets are received by a line module.
Any line module in the ERX chassis can act as the access line module.
For a list of available line modules, see Chapter 2, Hardware Overview. As
the packet is received on the line module, the layer 2 header is removed
from the IP packet.
2 The packet is classified and a lookup is performed. The result of the
classification and lookup is an internal egress destination address.
ERX Software Traffic Flow 3-7
ERX Edge Routers
Packet egress
Classify
Packet ingress
Encapsulate
Apply action
Schedule
Gold •Gold
Forward Silver •Silver
•Bronze
Bronze
IP
Internet access is now a business necessity for most companies, and IP is
the protocol of the Internet. With this in mind, Unisphere developed a
highly robust software set that is optimized to process IP packets at wire
speed.
RTR The Response Time Reporter (RTR) feature allows you to monitor
your network. It allows you to monitor your network’s performance
and its resources. It does this by measuring response times and the
availability of your network devices.
IP/PPP The ERX system supports IP/PPP on any module that are channelized
to fractional or full T1/E1 or T3/E3, including modules that
channelize down to T1/E1 or T3/E3 (for example, CT3,
cOCx/STMx modules) and IP/PPP/SONET on any module that
supports SONET/STM interfaces (for example, the OCx/STMx
modules). This allows service providers to accept traffic from
3-12 CHAPTER 3
Software Overview
Business Users
ERX System
IP/PPP
Uplink to core
IP/PPP/SONET
IP/PPP
Figure 3-4 The ERX System Supports IP/PPP Connections from the CPE
Figure 3-4 shows that the ERX system supports the incoming IP/PPP
traffic from the CPE. This traffic can then be routed to the uplink(s)
attached to the system or to other CPEs that are attached to the system.
PPP Features
The following PPP features are supported:
• Point-to-Point Protocol (PPP) – RFC 1661
• PPP in HDLC-like Framing – RFC 1662
• PPP over SONET/SDH – RFC 1619
• PPP Internet Protocol Control Protocol (IPCP) – RFC 1332 and
OSI Network Layer Control Protocols (OSINLCP)
• Bit-synchronous HDLC support on the E1/T3/E3 modules;
byte-synchronous support on the OC3/STM1/OC12/STM4
modules
• Link Control Protocol (LCP) support – maximum receive unit
(MRU) (RFC 1661), magic number (RFC 1661): Detection of
looped-back links recommended for SONET
• Reporting of link events (up or down) to the IP layer
IP 3-13
ERX Edge Routers
IP
PPP
ATM HDLC
SONET DSx/Ex
Multilink PPP The ERX system supports MLPPP on any modules that are
channelized to fractional or full T1/E1. MLPPP aggregates multiple
physical links into a single logical bundle. More specifically, MLPPP
bundles multiple link-layer channels into a single network-layer
channel. Peers negotiate MLPPP during the initial phase of Link
Control Protocol (LCP) option negotiation. Each system indicates that
it is multilink capable by sending the multilink option as part of its
initial LCP configuration request.
The systems joined by the multilink each assign the same unique name
to the bundle. A bundle can consist of multiple physical links of the
same type—such as multiple asynchronous lines—or can consist of
physical links of different types—such as leased synchronous lines and
dial-up asynchronous lines.
The system treats MLPPP like another PPP Network Control Protocol
(NCP). Packets received with an MLPPP header are subject to
fragmentation, reassembly, and sequencing. Packets received without
the MLPPP header cannot be sequenced and can be delivered only on a
first-come, first-served basis
IP/FR The ERX system supports IP over Frame Relay (FR) PVCs on any
module that supports fractional or full T1/E1 or T3/E3. The system
supports FR over POS interfaces on the OCx/STMx POS modules.
With this interface, the service provider can
• Take in traffic from subscribers that have CPE equipment such as
routers with FR interfaces
• Take in traffic from other network devices that send output in FR
such as DSLAMs and FR switches
• Use FR as an uplink technology on an unchannelized T3 or E3 link
IP 3-15
ERX Edge Routers
Business and
Consumer Users
ERX System
IP/FR
IP/PPP/FR
Uplink to core
DSLAM
FR
IP/PPP/FR
Figure 3-6 illustrates that the ERX system can accept a number of
access technologies and support return paths to the CPE or paths to the
core. Typical FR interfaces come from a CPE-based router, a DSLAM,
or a public network-based Frame Relay switch.
Figure 3-7 shows the structure of the ERX system Frame Relay
interface. Each Frame Relay major interface sits on top of an HDLC
interface. The FR implementation is divided into two levels: a “major”
interface and one or more “subinterfaces.” This line allows a single
physical interface to support multiple logical interfaces. Multiple IP
interfaces can also be assigned to each FR major interface via the
subinterfaces.
Frame Relay
Major Interface
Frame Relay Layer
HDLC
Figure 3-8 shows the structure of the FR protocols with the physical
layer as the foundation. For Frame Relay, this can be E1, E3, T1, T3,
or fractional amounts, as supported by the different line module ports.
The HDLC layer is on top of the physical layer and can support flexible
assignment of physical resources. For example, an HDLC channel can
support one DS0, Fractional T1s, or an entire T1. The major FR
interface sits on top of the HDLC resource, and the subinterfaces sit on
top of the major interface. The FR subinterfaces connect to the IP
interface layer.
IP 3-17
ERX Edge Routers
IP
PPP
L
Frame Relay M
I
HDLC
Physical (DSx/Ex)
Multilink Frame The ERX system supports Multilink Frame Relay (MFR) on any
Relay modules that are channelized to fractional or full T1/E1. The system
also supports MFR over POS interfaces on the OCx/STMx POS
modules.
MFR aggregates multiple physical links into a single logical bundle.
More specifically, MFR bundles multiple link-layer channels into a
single network-layer channel.
The systems joined by the multilink each assign the same unique name
to the bundle. A bundle can consist of multiple physical links of the
same type—such as multiple asynchronous lines—or can consist of
physical links of different types—such as leased synchronous lines and
dial-up asynchronous lines.
The system treats MFR like nonmultilink Frame Relay. Packets
received with an MFR header are subject to sequencing. Packets
received without the MFR header cannot be sequenced and can be
delivered only on a first-come, first-served basis.
IP/ATM The ERX system supports IP over ATM PVCs on modules that
support T3/E3 or SONET/STM interfaces (for example, T3/E3,
OC3c/STM1, and OC12c/STM4). This feature allows service
providers to take in traffic from subscribers that have CPE equipment
such as routers with ATM interfaces, to take in traffic from other
network devices that send output in ATM such as DSLAMs, and to
connect to service providers with ATM backbone structures. See
Figure 3-9.
IP 3-19
ERX Edge Routers
Business and
Consumer Users
ERX System
IP/ATM
IP/PPP/ATM
ATM
DSLAM Uplink to
ATM
IP/PPP/ATM
ATM Features
The ERX system supports the following ATM features:
• IP transport over ATM – RFC 2684, Multiprotocol Encapsulation over
ATM Adaptation Layer 5 (September 1999), which replaces RFC
1483. Both methods of RFC 2684 encapsulation are supported:
LLC encapsulation, where the LLC header is used to multiplex
multiple protocols on a single circuit; and VC multiplexing, where
no headers are used and only a single protocol may use that circuit.
• ATM Forum User-Network Interface (UNI) versions: 3.0, 3.1, 4.0
selectable per port
• ATM adaptation layer 5 (AAL5) frame format
• ATM monitoring per interface with support for ILMI. The ILMI
version is selectable and optionally enabled on a per-port basis.
ATM ILMI MIB – MIB-II System Group, Physical Port Group,
ATM Layer Group, Virtual Path Group, and Virtual Channel Group
are supported.
• ATM monitoring per circuit or path with support for operations,
administration, and maintenance (OAM). Specifically, the system
supports F4 and F5 cell flows, including ATM ping. Two types of
tests are supported to allow for test isolation: from the ERX system
to the end host and from the ERX system to the ATM switch.
3-20 CHAPTER 3
Software Overview
ATM
Interface
ATM Layer
SONET DS3/E3
Figure 3-11 shows the structure of the ATM protocols. The physical
layer (SONET and DSx/Ex) is the foundation and provider of layer 1
framing service. The ATM layer is on top and provides cell, circuit, and
OAM services. The AAL5 layer provides a frame-oriented interface to
the ATM layer. ILMI provides local management across the UNI.
IP 3-21
ERX Edge Routers
IP
PPP
AAL5
ATM
SONET DSx/Ex
The AAL5 layer also supports RFC 2684 encapsulation. The RFC
2684 data service layer defines the ERX system subinterfaces that are
used by higher-level ATM services. The ATM subinterfaces connect to
the IP interface layer.
IP/Cisco HDLC The ERX system supports IP over Cisco HDLC on any module that
supports HSSI, T1/E1, T3/E3, or SONET/STM interfaces.
Cisco HDLC monitors line status on a serial interface by exchanging
keepalive request messages with peer network devices. It also allows
routers to discover IP addresses of neighbors by exchanging SLARP
address request and address response messages with peer network
devices.
The ERX system Cisco HDLC is compatible with Cisco Systems
HDLC protocol, the default protocol for all Cisco serial interfaces.
IP
Cisco HDLC
ATM HDLC
SONET DSx/Ex
Figure 3-12 shows that the Cisco HDLC protocol can exist directly on
top of the HDLC layer or ATM or SONET interface. Both SONET
and DSx/Ex interfaces are supported at the physical layer.
Bridged IP Your ERX system supports bridged IP on the T3-ATM, E3-ATM, and
OC3 modules. You can configure a bridged IP interface on your ERX
system to manage IP packets that are encapsulated inside an Ethernet
frame running over a permanent virtual circuit (PVC).
When you configure a bridged IP interface, you can also configure the
system as a relay agent that forwards Dynamic Host Configuration
Protocol (DHCP) broadcasts.
DS3/DS1/E3/E1
The ERX system supports a number of line rates; these are listed per
line module below:
• CT3 line module supports channelized DS3 (channelized to DS1,
fractional DS1, or the DS0 level)
• T3 line module supports unchannelized DS3 and fractional T3
• CT1 line module supports T1 and fractional T1
• E3 line module supports unchannelized E3
• CE1 line module supports E1 and fractional E1
• cOCx/STMx line modules support T3, E3, T1, E1, and DS0 rates
For specifications on line modules, see Chapter 2, Hardware Overview.
A variety of protocols are supported over these interfaces, including
IP/FR, IP/ATM, IP/PPP, as well as the protocols to enable B-RAS
services (see B-RAS Support in this chapter for more information). The
ERX system DSx and E1/E3 implementations support termination,
DS3/DS1/E3/E1 3-23
ERX Edge Routers
Edge Core
Service Provider Network
Figure 3-13 The ERX System Supports Fractional T1/E1 Through T3/E3 Interfaces
As shown in Figure 3-13, the system can support fractional, full, and
channelized interfaces.
Line Module The following features are supported by the line modules listed above:
Support
• Three different clocking options: internal timing, loop timing, and
chassis timing
• DS3 and DSI bit error rate tests (BERTs)
• DS3 framing type – both M23 framing and C-bit parity
• DS1 framing type – both D4 framing mode and ESF framing mode
• DS3 loopback – for line, payload, diagnostic, and DS1 (see
Diagnostic Support in Chapter 5 for more information)
• DS1 loopback – for line, payload, and diagnostic (see Diagnostic
Support in Chapter 5 for more information)
• SONET/SDH loopback
• DS3/DS1 line status/alarm monitoring
• DS1 line coding type – both AMI line encoding and B8ZS line
encoding
• Unique IP interface support – for each PPP or Frame PVC
interface
3-24 CHAPTER 3
Software Overview
SONET
The ERX system supports:
• IP/PPP and IP/FR over SONET on the cOCx/STMx line
modules
• IP/ATM and IP/PPP over SONET on the OCx/STMx line
modules
This support allows service providers to accept incoming optical
connections or connect the system to the backbone network via optical
connections. The ERX system SONET implementation supports
termination, statistic gathering, alarm surveillance, and performance
monitoring at the section, line, and path layers of a SONET interface.
See Figure 3-14.
Edge Core
Service Provider
Network
SONET Features The ERX system supports the following SONET features:
• Telcordia Technologies GR-253-CORE common generic criteria
feature set
• Configurable SONET or SDH operational support
• SONET statistics collection
• Generation of remote defect indication (RDI) signals at the line and
path layers for loss of signal (LOS), loss of frame (LOF), loss of
pointer (LOP), and alarm indication signals at the line and path
(AIS-L and AIS-P)
• Signaling of remote error indication (REI) at the line and path
layers
• Transmit clock configuration options for recovered receive clock
(loop timing) or internal generation. The clock source can be pulled
from the internal clock on the SRP or any externally connected
clock source. A common system-wide clock is supported, as well as
configuration options for a different clock source per line module.
• Support for two loopback modes: Line Loopback to connect the
received network signal directly to the transmit network signal line
and Internal Loopback to connect the local transmitted signal to the
local received signal
SONET Statistics are gathered on the SONET section, line, and path interfaces
Statistics in 15-minute intervals:
• Errored seconds – section: SEF defect, LOS defect, or coding
violation (CV); line: seconds with AIS-L or CV; path: seconds with
AIS-P, LOP defect, or CV
• Severely errored seconds – section: errored seconds with x CV, SEF
defect, or LOS defect; line: errored seconds with x CV or AIS-L;
path: errored seconds with x CV, AIS-P, or LOP defect
• Severely errored framing seconds – section: seconds with SEF defect
• Coding Violations – section: BIP-8 errors (B1 byte); line: BIP-8*N
errors, (N=STS-N; B2 bytes); path: BIP-8 errors, (B3 byte)
• Unavailable seconds – line: 10 consecutive line SESs; path: 10
consecutive path SESs
3-26 CHAPTER 3
Software Overview
Subscribers Subscribers
Subnet A Subnet C
Central
Express Ring
Subnet B Subnet D
Subscribers Subscribers
Figure 3-15 SMDS Network with Central Express Ring and Subnets
GRE
Tunnels
Figure 3-16 ERX System with GRE Tunnels to Offload the Central Express Ring
To connect the GRE tunnels to each of the subnets, the ERX system
connects to SMDS switches using the 3-port HSSI line module.
Subnet A Subnet C
HSSI HSSI
GRE
Tunnels
HSSI HSSI
Subnet B
Subnet D
Figure 3-17 HSSI Line Modules in ERX Systems Provide Connections to SMDS
Switches
3-28 CHAPTER 3
Software Overview
CBF CBF
SMDS SMDS
Routing
The ERX system is a carrier-class router that fully supports both the
interior and exterior IP-based routing protocols used by large service
providers, including BGP-4, OSPF, RIP, and IS-IS. This routing
support allows service providers to deploy the system into existing
network architectures and delivers full interoperability with older
routing products.
Full routing is supported between all line interfaces in the system,
including U-turn routing on a single port. All routing support
integrates fully into the other features supported by the system,
including layer 2 support and QoS capabilities, allowing a service
provider to build leading-edge routing services for their subscribers.
Routing 3-29
ERX Edge Routers
Routing There are three key features of the ERX system routing
Features implementation:
• The system implements a fully distributed routing scheme that
supports wire-speed packet forwarding for small packet sizes across
all interfaces simultaneously.
• All Tier-1 ISP routing protocols are supported, including BGP-4,
OSPF, IS-IS, and RIP, and are highly scalable to address the needs of
large networks.
• The system allows multiple virtual routers to be created, with
separate route protocols and route tables supported on the different
router instances.
The following are additional features of the routing implementation:
• Scalable IP routing with standards support for routing requirements
for IPv4 – RFC 1812
• Routing protocol support for BGP-4, OSPF, RIP, and IS-IS
• Virtual router support
• IP multicast support for DVMRP, IGMP, MBGP, PIM
• Access list, route map, and distribution list support for creating and
applying routing filters
• Wire-speed performance forwarding with minimum packet sizes
• Load balancing to compute equal cost paths based on routing
protocol information
The ERX The ERX routing architecture is designed specifically to address the
Routing needs of large service provider routed networks. It has a highly scalable
Architecture design; as more line modules are added to a chassis, more packet
processing power is added. The system performs at wire speed, even
with 40-byte packets and all IP features (QoS, VPNs, statistics) enabled.
The routing architecture is distributed—each individual line module
executes route lookups and forwarding decisions based on a common
routing table. These two functions are described in detail below.
The ERX SRP module builds and stores a common IP route database
for up to 500,000 routes. The information maintained for each route
includes at least: destination IP address, prefix length, equal cost path
calculations, route redistribution information, the protocol that added
the route (static, RIP, OSPF, BGP-4), and attributes specific to that
protocol (such as layer 1 vs. layer 2 and interior vs. exterior).
3-30 CHAPTER 3
Software Overview
Figure 3-19 shows the route table creation and distribution process.
The SRP module gathers the routing information and stores it in a
centralized table. It then sends updates to each line module. Each line
module maintains a complete route table. This feature allows incoming
packets to be processed quickly and efficiently in contrast to approaches
that must rely on IP address or route caching.
The ERX route lookup and forwarding execution is completely
distributed. When a packet is received on the line module, the route
table lookup is performed entirely on that module with the routing
table that is already located on the module. If the route is not in the
route table, the destination is considered unreachable and an ICMP
unreachable packet is sent. This distributed processing architecture
eliminates the performance restrictions found in centralized
approaches.
A route tag is prepended to the packet, which indicates the ERX egress
port associated with the route, and the packet is sent to the switch
fabric for transport to the egress port.
Routing 3-31
ERX Edge Routers
1 Backbone Network
route
2 information
3 SRP 3
SRP Module
CT3 OC3
Route Control The ERX system supports a number of features that allow the service
provider to control the exchange of routing information between
virtual routers in the system, between routers in the network, and
between protocols within a router:
• Access lists – Provide filters that can be applied to route maps or
distribution lists. They allow policies to be created, such as those to
prevent forwarding of specified routes between the BGP-4 and
IS-IS route tables.
• Route maps – Modify the characteristics of a route (generally to set
its metric or to specify additional attributes) as it is transmitted or
3-32 CHAPTER 3
Software Overview
accepted by a router. Route maps may use access lists to identify the
set of routes to modify.
• Distribution lists – Control the routing information that is accepted
or transmitted to peer routers. Distribution lists always use access
lists to identify routes for distribution. For example, distribution lists
could use access lists to specify routes to advertise.
• Redistribute routes – Redistribution allows routes to be shared
between routing protocols and routing domains. For example, a
subset of BGP-4 routes could be leaked into the IS-IS route tables.
Virtual Routers
The ERX system supports multiple distinct routers within a single
system. This support allows service providers to configure multiple
separate secure routers within a single chassis. Applications for this
function include the creation of individual routers dedicated to
wholesale customers and corporate VPN users, or routers dedicated to
a specific traffic type. The system can support up to 240 virtual routers
per module or per chassis.
A network device attaching to an ERX router sees a router interface.
The attaching device has no notion of the virtual router behind the
interface. For example, a physical Frame Relay link may have circuits
that are connected to different virtual routers. The physical and
data-link layers are not aware that there are multiple router instances.
The ERX system implements the virtual routers by maintaining a
separate instance of each data structure for each virtual router and
allowing each protocol (TCP/UDP, RIP, OSPF, BGP-4, IS-IS) to be
enabled on a case by case basis. There is a table of router interfaces to
associate user connections (for example, PPP or FR) with one or more
IP interfaces within a virtual router.
As mentioned above, the ERX routing protocol suite provides full
support for BGP-4, IS-IS, OSPF, and RIP. These protocols can be
enabled or disabled for each instance of a router in the ERX system.
Each of these protocols is covered in detail in the following subsections.
In addition, each virtual router can be independently managed with
secure access between virtual routers.
Routing 3-33
ERX Edge Routers
BGP-4 Support The ERX system supports a highly scalable and robust version of the
Border Gateway Protocol (BGP-4), designed specifically for large-scale
networks. Large service providers typically use BGP-4 as the protocol
of choice for interaction with external networks, such as peer and
wholesale networks.
BGP Features
BGP-4 features include:
• BGP-4 – RFC 1771
• BGP-OSPF interaction – RFC 1745
• Communities – RFC 1997, 1998 – community attributes
• Extended communities – draft RFC
• Confederations – RFC 1965
• Route reflectors – RFC 1966
• Route flap dampening – RFC 2439
• Tier 1 ISP class route filtering, route mapping and attribute
manipulation capabilities, as well as route redistribution
• Highly scalable BGP-4 architecture to support hundreds of BGP-4
peers and hundreds of thousands of routes. Scaling will increase with
future software releases.
• BGP-4 neighbor setup
• Exterior BGP (EBGP) multihop to accept and attempt BGP-4
connections to external peers residing on networks that are not
directly connected
• Next-hop self to disable the next-hop BGP-4 update route
processing
• Soft-reconfiguration inbound to enable storing of received updates
without regard to the inbound policy
• Update source to allow interior BGP (IBGP) sessions to use any
interface for TCP connections
• Advertisement interval, which sets the interval between sending
BGP-4 routing updates
• Shutdown to stop BGP-4
• Maximum prefix to restrict the number of prefixes that can be
received from a neighbor
• MD5 authentication to support MD5 authentication on a TCP
connection between two BGP-4 peers
3-34 CHAPTER 3
Software Overview
IS-IS Support The ERX system supports a highly scalable version of the Intermediate
System–to–Intermediate System (IS-IS) protocol, designed specifically
for large-scale networks. IS-IS is a link state protocol. It is increasingly
being used by large service providers as the interior routing protocol to
share route table information between routers in the same service
provider network.
IS-IS Features
IS-IS features include:
• Integrated IS-IS – ISO 10589 standard and RFC 1195, use of OSI
IS-IS for routing in TCP/IP and dual environments, and draft
extensions to RFC 1195
• Level 1 and level 2 routing
• Internal optimization of route leaking from level 1 to level 2
• Highly scalable IS-IS architecture. The number of adjacencies and
routes will be scaled higher with future software releases.
• Subnetwork-dependent functions to enable IS-IS transport over all
media types supported by the interfaces
Routing 3-35
ERX Edge Routers
OSPF Support The ERX system fully supports the Open Shortest Path First (OSPF)
routing protocol. This protocol is used by service providers to keep
route table information updated between the routers in a service
provider network, and as a means to communicate with other
POP-based network equipment. OSPF is an interior link state based
routing protocol.
OSPF Features
The ERX system implementation supports the following key features:
• OSPF Version 2 – RFC 2328
• NSSA and Opaque LSA – RFC 1587 and RFC 2370
• Intra-area and interarea routes, with each area running as a separate
network in order to reduce the size of the link state database in large
networks
• Highly scalable OSPF architecture to support hundreds of OSPF
adjacencies and tens of thousands of routes. The adjacencies and
routes will be scaled higher with future software releases.
• Virtual link to create a logical link between two backbone area
routers that are not physically adjacent, where the logical link
tunnels through a nonbackbone area
• Nonbroadcast network, where a separate IP interface is defined for
each neighbor, creating a series of separate point-to-point links
• Three types of authentication for protocol exchanges: null
authentication, simple password authentication, and cryptographic
authentication
• Opaque LSAs that will be accepted from other routers and be
flooded accordingly
• Capability of new routes to be leaked into the routing table either
by another routing protocol or through a static route
• Equal-cost multipath to insert all equal instances of available routes
• MD5 authentication
• Type 1 and Type 2 external routes
• Load sharing to balance loads across equal cost paths
Routing 3-37
ERX Edge Routers
RIP Support The ERX system supports RIPv1 and RIPv2 routing protocols.
Service providers use RIP to communicate with other POP-based
networking equipment or, on subscriber access links, to communicate
with CPE devices that are running RIP.
RIP Features
The system supports the following features:
• Compliance with RFC 2453 – RIPv2
• Backward compatibility with RIPv1
MPLS Features
The ERX system supports the following MPLS features:
• LDP, CR-LDP, or RSVP-TE
• ATM, POS, Gigabit/Fast Ethernet
• Integration with extended IGP protocols (OSPF, IS-IS) to support
traffic engineering via constraint-based explicit routes
• Label edge routing (initiate/terminate LSP) or core LSR (forward
only based on label)
• Label stacking
• CAC for bandwidth accounting and service enforcement
• Downstream-on-demand, ordered control label distribution and
downstream-unsolicited, independent control label distribution
• Topology-driven LSPs for LDP hop-by-hop MPLS networks,
which enable the LDP to learn all IGP routes from IP and
automatically create LSPs for all routes, resulting in a fully meshed
MPLS network
• Label filtering for topology-driven mode, which determines
whether and where incoming labels are distributed
MPLS Applications
• Traffic engineering
• VPNs (including MBGP support)
• QoS/CoS
> Classifier association of traffic with LSP
> Ability of all LSPs to make use of QoS features
BGP/MPLS VPNs
The ERX system supports the BGP multiprotocol extensions, which
enable BGP to exchange routing information for different types of
address families. The VPN-IPv4 address family enables the outsourcing
of IP backbone services via the configuration of virtual private
networks across the IP backbone. BGP/MPLS VPNs are scalable and
flexible and enable service providers to offer value-added services. BGP
carries routing information for the network and MPLS labels, while
MPLS transports the data traffic. Figure 3-20 shows a typical scenario.
Routing 3-39
ERX Edge Routers
Customer
Site CE
Newport
CE
Boston
CE
PE
CE
Service
Provider
CE CE
Core
PE P
P PE
CE
P
CE
P
PE
CE
CE PE
VPN A
VPN B
VPN C
Public Internet
The backbone through the service provider core comprises two types
of routers:
• Provider edge routers (PEs) sit at the edge of the service provider
core and connect directly to customer sites. These routers must run
BGP-4, including the BGP/MPLS VPN extensions. They must also
be able to originate and terminate MPLS LSPs.
• Provider core routers (Ps) connect directly to PEs or other Ps and
do not connect directly to customer sites. These routers must be
able to switch MPLS LSPs. It is not necessary to run BGP-4 on the
P routers to be able to exchange routing information for VPNs.
The P routes do not need to possess any information about
customer sites.
PEs communicate with customer sites via a direct connection to a
customer edge (CE) device that sits at the edge of the customer site.
The CE can be a single host, a switch, or a router. If the CE is a router,
3-40 CHAPTER 3
Software Overview
Customer
Site 1 PE1
CE1
Virtual Router 1
Customer
Site 2
VRF A
CE2
VRF
forwarding VR1 global
Customer
table forwarding to another
Site 3 VRF B table PE router
CE3
VRF
forwarding
table
Customer
Site 4 VRF C
CE4 VRF
forwarding
table
Customer
Site 5 Virtual Router 2
CE5
VR2 global
forwarding
table
VPN A
VPN B
Protocol Function
Internet Group Discovers hosts that belong to multicast group.
Membership Protocol
(IGMP)
Protocol Independent Discovers other multicast routers that should receive
Multicast Protocol (PIM) multicast packets.
Distance Vector Multicast Routes multicast datagrams within autonomous systems.
Routing Protocol
(DVMRP)
BGP Multicasting Protocol Routes multicast datagrams between autonomous
systems.
IGMP
IP hosts use Internet Group Management Protocol (IGMP) to report
their multicast group memberships to neighboring routers. Similarly,
multicast routers, such as the ERX system, use IGMP to discover
which of their hosts belong to multicast groups.
The IPv4 address scheme assigns Class D addresses for IP multicasting.
IGMP is the protocol that uses these addresses, which can be in the
range 224.0.0.0 to 239.255.255.255. The following addresses have
specific functions or are unavailable:
• 224.0.0.0 is reserved and you cannot assign it to a group.
• 224.0.0.1 is the all-hosts address – a packet sent to this address
reaches all hosts on a subnet.
• 224.0.0.2 is the all-routers address – a packet sent to this address
reaches all routers on a subnet.
This implementation of IGMP complies with RFC 2236 (IGMPv2).
IGMPv2 routers support both IGMPv1 and IGMPv2 hosts.
PIM
Protocol Independent Multicast (PIM) is the protocol that allows
multicast routers to identify other multicast routers that should receive
packets. This implementation of PIM supports PIM dense mode (DM),
PIM sparse mode (SM), and PIM sparse-dense mode (S-DM).
Routing 3-43
ERX Edge Routers
DVMRP
The ERX system supports Distance Vector Multicast Routing Protocol
(DVRMP) on virtual routers to forward multicast datagrams through a
network. DVMRP is an interior gateway protocol that supports
operations within an autonomous system, but not between
autonomous systems. The multicast backbone of the Internet,
MBONE, uses DVMRP to forward multicast datagrams.
DVMRP is a dense mode multicasting protocol and therefore uses a
broadcast and prune mechanism. The protocol builds an SRT in a
similar way to PIM-DM (see Figure 3-22). DVMRP routers flood
datagrams to all interfaces except the one that provides the shortest
unicast route to the source. To prevent unnecessary sending of multicast
messages through the SRT, DVMRP uses pruning. A DVMRP router
sends prune messages to its neighbors if it discovers that:
• The network to which a host is attached has no active members of
the multicast group.
• All neighbors, except the next-hop neighbor connected to the
source, have pruned the source and the group.
When a neighbor receives a prune message from a DVMRP router, it
removes that neighbor from its source group table, which provides
information to the multicast forwarding table.
3-44 CHAPTER 3
Software Overview
BGP Multicasting
BGP multicasting is an extension of the BGP unicast routing protocol.
Many of the functions available for BGP unicasting are also available for
BGP multicasting.
The BGP multiprotocol extensions specify that BGP can exchange
information within different types of address families. The address
families available are unicast, multicast, and unicast vpn. When you
enable BGP, the ERX system employs unicast IPv4 addresses by
default. To enable BGP multicasting, you must configure commands
for the multicast address family.
IP QoS
IP Interface
Major I/F
(e.g. VLAN)
Port
n=1
(e.g. ETH)
Core
Access n=N Core
IP Interface w/
4 queues each
The ERX Support for quality of service is hardware assisted on the line modules
System by the FPGAs and ASICs. For example, hardware assists with
Implementation color-based thresholding and a single queue per subscriber and IP
of QoS interface.
Forward Packet to
Egress Line Card
Egress Line Card
Packets can be classified on the ingress and the egress line module. The
packet classification can have a rate-limit profile as the result on ingress
and egress, whereas traffic shaping is performed only on egress.
Figure 3-25 shows packet flow in the ERX system at Egress.
Packet Scheduling
Egress
The actual packet queuing and scheduling is done in the ASICs on the
line modules, including traffic shaping. Each ASIC-based line module
supports up to 32,000 queues.
Traffic Classes
The ERX system supports up to eight traffic classes including several
low-latency classes, a low-loss class, and a best-effort class. A traffic class
characterizes a specific QoS profile such as low latency in the chassis.
The class is mapped onto fabric queues in the switch fabric and IP
interface queues on the egress line module. In compliance with the
DiffServ model, the ERX system accommodates the concept of
expedited and assured forwarding. Traffic classes conforming to
expedited forwarding result in strict-priority queues. Packets in
strict-priority queues have precedence over all other packets, no matter
when they arrive.
Note that a strict-priority queue can be traffic-shaped and thus
throttled back in bandwidth, so it does not take up all the bandwidth
available on the physical port.
1 11 Mbps
2 23 Mbps
IP #1 1 34 M
bps
1 9 Mb
1
ps
VC #1 2
2
IP #2 2 69 Mbp
s 10
3M
bp
ps s
4 34 Mb
OC-3
6 Mbps
1 s
2 IP #3 1 17 M bp
11 Mbps bps
52
M Physical Port
Level
1 5 Mbps VC #2 1
ps
2 34 Mb
2 IP #4
ps
4 20 Mb
class and therefore the quality of service. If a label gets popped, then the
original EXP bits are preserved to apply the originally intended service
quality. Every LSP can have its own set of queues reflecting different
traffic classes. In case of traffic-engineered LSPs, the queue profile is
automatically set to match the TE parameters and constraints.
Feature Offered
All QoS features mentioned earlier yes
Full packet classification at wire-speed
IP QoS 3-51
ERX Edge Routers
Feature Offered
Rate-limiting at wire-speed per IP flow
Traffic shaping (per subscriber) per queue
Traffic classes (EF/AF) up to 8
Queue assignment at wire-speed per subscriber
Queue assignment per subscriber and traffic class
Hardware support through ASICs and FPGAs
Number of queues per line module 32,000
Fabric queues 1,200 (T x N2)
Hierarchical schedulers 3 levels
Scheduling WRR, WFQ
User 1
Core
Access User N Core AOL
AOL Acquires
Acquires Time
Time Warner
Warner
Set- top After
After FCC
FCC Approval
Approval
Box View
View the
11 hour
the
hour clip
clip
ERX - BRAS
Differentiated Services
Scheduler weights,
at VC level ERX
100 User 1
Core
Access User N Core AOL
AOL Acquires
Acquires Time
Time Warner
Warner
1 After
After FCC
FCC Approval
Approval
View
View the
the
11 hour
hour clip
clip
Streaming Queue
ERX
VoIP - GW
M- GW 1
VoIP - GW
Core
NB - RAS
M- GW N
NB - RAS
Policy Management
Policy management allows service providers to implement packet
forwarding and routing specifically tailored to their customers’
requirements. Using policy management, customers can implement
policies that selectively affect packets.
Policy management provides the following types of services:
• Policy routing – directs packet flow to a destination port without a
route-table lookup
• Packet filtering – marks or drops packets conforming to a classifier
control list
• Packet forwarding – forwards packets that match a policy list
• Packet logging – allows you to log a classified packet flow
• QoS classification and marking – processes packets outside the
context of the system
• Rate limiting – enforces line rates below the physical port line rate
and provides rate limiting on a packet flow conforming to a classifier
control list. Packets that do not fit the profile can be marked or
dropped.
• RADIUS policy definitions – allows you to configure a policy that
consists of Filter/Forward rules based on classified packet flows
• Traffic shaping – allows you to queue packets and transmit them at a
specified rate
Policy Management 3-55
ERX Edge Routers
Policy Lists The main tool for implementing policy management is the policy list. A
policy list is a set of rules that can affect a packet. A rule is a policy
command optionally combined with a classification.
Rules
Rules are created when a user specifies a policy command or combines
policy commands and classifier control lists, or creates a rate-limit profile.
These rules become part of a policy list that is attached to an interface
as either an input or output policy. The ERX system implements the
rules in the policy list associated with the interface.
Figure 3-30 shows how a policy list is constructed.
3-56 CHAPTER 3
Software Overview
tiered12MB
AcmeCompanyUDP
hardlimit9MB
XYZCorpIGMP
hardlimit3MB XYZCorpICMP
Database
filterForHighSecurity
Rate Limit Profiles Classifier Control Lists
routeForAcmeCompany
routeForXYZCorp
next-interface action classification
Rule 1
next-hop
Rule 2
filter Rule 3 Rule = Action + Classification
forward
action
rate-limit-profile
Rule n
mark
Policy Lists
log
Rate-Limit Profiles
Rate limiting is the process of limiting either a classified packet flow or
source interface at a configured rate that is less than the physical rate on
the port. When a policy list is created, a rule can be created that has a
rate limit for an action.
A rate-limit profile is a set of bandwidth attributes and associated
actions. Rate-limit profile attributes are:
• Committed rate – target rate for the traffic that the policy list covers
• Committed burst – amount of bandwidth allocated to
accommodate bursty traffic
• Peak rate – amount of bandwidth allocated to accommodate excess
traffic flow over the committed rate
• Peak burst – amount of bandwidth allocated to accommodate bursty
traffic in excess of the peak rate
• Committed action – policy action (drop, transmit, or mark) if traffic
flow does not exceed the committed rate
• Conformed action – policy action (drop, transmit, or mark) if traffic
flow exceeds the committed rate but remains below the peak rate
Dynamic Interfaces 3-57
ERX Edge Routers
Dynamic Interfaces
Dynamic interfaces are created through some external event, typically
through the receipt of data over a lower-layer link, such as an ATM
virtual circuit (VC). In contrast, each layer of a static interface is created
and configured through an existing configuration mechanism such as
CLI or SNMP. Dynamic interface layers are created based on the
packets received on the link and can be configured through:
• RADIUS authentication
• Profiles
• A combination of RADIUS authentication and profiles
Unlike static interfaces, dynamic interfaces are not restored through
nonvolatile storage (NVS) after a reboot.
The ERX system software currently supports the following types of
dynamic interfaces:
• IP over ATM (IPoA)
• IP over PPP over ATM
• IP over PPPoE over ATM
• IP over Bridged Ethernet over ATM
3-58 CHAPTER 3
Software Overview
Autodetection The ERX system software performs a process called autodetection, also
referred to as autosensing, to determine the layers of each dynamic
interface. Autodetection is done by conditionally constructing interface
layers based on the encapsulation type of the incoming packet.
Unlike static interfaces, which always allocate system resources upon
creation, autodetection uses system resources only on demand based on
what is detected in the incoming packet. Static interfaces always
consume system resources, even when the interface is quiescent.
Dynamic interfaces, however, are created as a result of traffic on the
interface. Dynamic interfaces may also be dynamically deleted without
your intervention, thereby allowing any consumed system resources to
be returned.
When you are configuring a large number of interfaces with the same
attributes at the higher layers, you can use a profile to apply all the
common attributes to each layer. This action comprises one or more
dynamic layers of the interface column. Once the static lower layers are
defined, a profile is assigned to the highest static layer of the interface
column.
You define profiles using CLI commands similar to the ones used to
configure static interfaces. Profiles can be configured for IP, PPP, or
PPPoE interfaces.
B-RAS Support
A separate application for the ERX system aggregates the output from
DSLAMs, provides PPP session termination, enforces QoS policies, and
routes traffic into the backbone. This application is called Broadband
Remote Access Server (B-RAS).
For service providers to deploy xDSL services economically, they reuse
OSS structures that are already in place for dial service offerings.
Therefore, the system supports a number of dial access–oriented
protocols to accommodate this application.
B-RAS Features The system features that are specifically supported for B-RAS include:
• Enhanced PPP
> RFC 1661 – The Point-to-Point Protocol (PPP) (July 1994)
> RFC 1662 – PPP in HDLC-like Framing (July 1994)
> RFC 1332 – The PPP Internet Protocol Control Protocol (IPCP)
(May 1992)
> RFC 1877 – PPP Internet Protocol Control Protocol Extensions for
Name Server Addresses (December 1995)
• Password Authentication Protocol (PAP) – RFC 1472 – The
Definitions of Managed Objects for the Security Protocols of the
Point-to-Point Protocol (June 1993)
• Challenge Handshake Authentication Protocol (CHAP) – RFC
1472 – The Definitions of Managed Objects for the Security Protocols of
the Point-to-Point Protocol (June 1993)
• Domain Parsing based on destination domain (for example,
@mu.edu, @company1, @isp1)
3-60 CHAPTER 3
Software Overview
B-RAS Protocol Figure 3-31 shows a number of protocols the system supports for
Support B-RAS applications. These include:
• IP/PPP/ATM
• IP/PPP/Ethernet/ATM
• IP/PPP/FR
• IP/PPP/Ethernet/FR
IP
L PPP L
2 2
T T
P PPPoE P
ATM FR
B-RAS Data There are several tasks that the system must accomplish for subscribers
Flow to establish their connections:
• The subscriber must be authenticated. The system can use the
RADIUS authentication with PAP and CHAP to allow the
subscriber to be verified.
• The connection must be assigned an IP address. The system
supports IP address assignment for the end-user through DHCP,
local IP pools, and RADIUS.
• The PPP session must be terminated. The system supports all
varieties of xDSL encapsulation schemes to support all types of
xDSL modems.
• Subscribers are matched to their routing and/or QoS policy. The
system can match subscribers via the ERX classification features or
via RADIUS attributes. Either of these methods can associate the
destination route and the level of service quality with the subscriber
session. For example, with RADIUS, session timeout and idle
timeout values can be associated with the subscriber session to
support oversubscription by the service provider; or, to
accommodate wholesaling applications, subscriber sessions can be
directed to a specific virtual router.
• Accounting data must be collected. The system supports RADIUS
accounting to allow the service provider to bill users based on call
duration.
The ERX system offers a contrast to current solutions that require
multiple separate network elements to provide B-RAS service. With
comprehensive support for B-RAS features combined with the
carrier-class product design and strong routing protocol support, the
system gives service providers a single network element that can
terminate large numbers of xDSL sessions, authenticate them, apply
QoS policies, and route them into the core network.
3-62 CHAPTER 3
Software Overview
Zero-Touch The system supports a unique provisioning scheme that can provision a
Provisioning subscriber connection without operator involvement. This scheme is
handled by:
• Autodetection of the incoming protocol
• Autoassignment of the service profile via the ERX system or
RADIUS
• Autocreation of the IP interfaces
All this is achieved independent of the protocol type, allowing for
streamlined operation and cost savings.
The ERX system offers two options by which servers are accessed:
• Direct – treats the first configured server as primary for all users
• Round-robin – treats the first configured server as a primary for the
first request, the second server configured as primary for the second
request, and so on. When the system reaches the end of the list of
servers, it starts again at the top of the list.
Each authentication and accounting server is capable of handling a
maximum of 255 outstanding requests. Once that number is reached,
the system submits the request to the next configured server.
The ERX system allows the service provider to specify configuration
parameters for managing RADIUS client to server interaction:
• Maximum number of times the system retransmits a RADIUS
packet to an authentication or accounting server
• Interval (in seconds) before the system retransmits a RADIUS
packet to an authentication or accounting server
• Maximum number of outstanding requests allowed to a RADIUS
server
• Amount of time (in minutes) that a RADIUS server is marked as
unavailable if a request times out for the configured retry count
• Accounting interval between updates
• Algorithm for RADIUS server access (direct or round-robin)
• Encryption of the primary, secondary, and tertiary RADIUS
authentication server secret
• Enabling of the duplicate accounting records feature to specify if
duplicate records are sent to the RADIUS accounting server for a
virtual router
• Collection of RADIUS statistics
The interaction between the ERX system and the RADIUS server is
powerful and can be used by the service provider to centralize all
subscriber profiles. For example, the RADIUS server can return all
information required to start the subscriber session, including IP
address, service profile, and authorization. This interaction streamlines
operations across multiple ERX systems.
3-64 CHAPTER 3
Software Overview
DHCP Local The system offers an embedded DHCP server, known as the DHCP
Server local server. The system does not function as an independent DHCP
server; the sole purpose of the DHCP local server is to enable non-PPP
equal access. The DHCP local server complies with RFC 2131 –
Dynamic Host Configuration Protocol (March 1997).
The DHCP local server performs the following functions:
• Assigns a temporary IP address, known as the token IP address, which
enables the subscriber to access the SSC or the HTTP local server.
• Communicates with the SSC or the HTTP local server.
• Communicates with the RADIUS server.
• Assigns an IP address with a long lease time, known as the enduring
IP address, which allows the subscriber to access services.
Non-PPP Equal Access Support 3-65
ERX Edge Routers
HTTP Local The system offers an embedded Web server, known as the HTTP local
Server server, which complies with RFC 2616 – Hypertext Transfer Protocol –
HTTP/1.1 (June 1999). You can configure one HTTP local server per
virtual router.
The sole purpose of the HTTP local server is to allow user login and
authentication without the SSC. The HTTP local server performs the
same functions as the SSC.
The Connection The following sample sequence describes how the subscriber connects
Process to the network for the first time. Figure 3-32 illustrates the process.
1 The subscriber’s computer boots and issues a DHCP request.
2 The DHCP local server on the system grants the subscriber a token IP
address—a unique, private address with a very short lease time in the
range 10–30 seconds.
Since the lease time is very short, the subscriber’s computer repeatedly
requests renewal of the token IP address, and the DHCP local server
repeatedly renews the address. This process keeps the subscriber’s
connection to the network active until the subscriber’s computer
receives an enduring IP address.
The system maintains a host route that maps the token IP address to the
system’s interface associated with the subscriber’s computer.
3 The system installs a policy that:
• Directs all traffic, with the exception of the DHCP renewal
requests, from the subscriber to the SSC.
• Specifies a host route for return traffic.
3-66 CHAPTER 3
Software Overview
4 The subscriber logs in to the SSC, which matches the user name and
password to the subscriber’s service profile.
The service profile includes information such as the selected ISP, the
QoS, and the virtual router.
5 The SSC sends the subscriber's domain and private address to the
RADIUS server via the DHCP server.
6 The RADIUS server authenticates the subscriber and returns the
authentication to the DHCP local server.
7 When the subscriber's computer next requests an IP address, the
DHCP local server revokes the token address, forcing the subscriber’s
computer to issue a DHCP broadcast.
8 After standard DHCP negotiations, the DHCP local server supplies an
enduring IP address to the subscriber’s computer from the address pool
configured for ISP Boston.
The system maintains a host route that maps the enduring IP address to
the system’s interface associated with the subscriber’s computer.
9 The subscriber’s computer retains the enduring IP address until the
subscriber switches off the computer.
10 The system modifies the subscriber’s policy to:
• Route all traffic, except that addressed to the SSC, from the new IP
address to the correct domain.
• Route traffic addressed to the SSC.
• Specify a new host route for return traffic.
This policy maintains the subscribers’ connections to the SSC so that
access to other services is available.
L2TP Support 3-67
ERX Edge Routers
RADIUS
Server
ERX System
3
Subscriber’s PC
1 4 DHCP Local 3 4
Server AAAA
2
1 1 4
2
3 3 Token
Address Local Address Pools
SSC SSC Client
Pool ISP Boston
ISP Chicago
1
ISP Cleveland
HTTP Local 3
Server
L2TP Support
L2F Support
Layer Two Forwarding (L2F) provides a method for virtual dial-up
service over the Internet. The traditional method for a remote user to
access a company’s network is through remote access equipment that is
directly attached to the corporate network. This method requires a
significant investment in equipment and support in addition to the cost
of telephone charges for remote workers calling into the access
equipment.
By employing L2F, an Internet service provider (ISP) can provide local
access for remote workers and forward their data traffic through a
tunnel to the corporate network. This method allows a company to
outsource the investment in remote access equipment to the ISP, while
retaining full control over access to the corporate network. In
particular, L2F allows leveraging multiple protocols and private
addressing across the existing Internet infrastructure.
In the Unisphere implementation of L2F, the ERX system, configured
as a Network Access Server (NAS), receives packets from a remote
client and forwards them through a tunnel to a home gateway on a
remote network.
VLAN Support 3-69
ERX Edge Routers
VLAN Support
The ERX system supports VLANs (IEEE 802.1q) on Fast Ethernet and
Gigabit Ethernet interfaces. IEEE 802.1q describes two key Ethernet
fields that have been added to the Ethernet frame to identify and
prioritize traffic: VLAN ID (virtual LAN identifier) and user priority
values (802.1p).
802.1p VLAN ID
(3 bits) (12 bits)
Ethernet frames using this standard can be tagged and viewed in the
same way that ATM VCs (VPI/VCI) are represented on an ATM
circuit. When an Ethernet frame is sent over a shared medium (for
example, a GE line), it is logically defined as belonging to a specific
virtual LAN and provisioned in the same way as a PVC on an ATM
circuit. The Tag Protocol Identifier (TPID) in the Ethernet header
indicates that this Ethernet frame contains 802.1q data. The VLAN ID
indicates the virtual LAN (virtual circuit) to which this frame belongs.
The three bits in the 802.1p field can be used to determine the priority
of this frame.
On a given physical link, Ethernet frames may be tagged or untagged.
The VLAN ID in the 802.1q tag explicitly identifies the VLAN for
tagged frames; the ID may be 0. Untagged frames are implicitly in
VLAN 0, which is considered to be the default VLAN. This
3-70 CHAPTER 3
Software Overview
Interface Modes Ethernet interfaces are configured to operate in one of the following
modes, depending on the combination of protocol and VLAN usage:
• Single protocol non-VLAN (that is, IP only)
The Ethernet interface supports only one upper-layer protocol
interface (without VLANs). Such support is backward compatible
with the initial implementation of Ethernet interfaces.
• Single protocol VLAN (that is, VLANs and IP)
The Ethernet interface supports a single upper-layer protocol on
each of one or more VLANs.
• Multiprotocol VLAN (that is, VLANs, PPPoE, and IP)
The Ethernet interface supports multiple upper-layer protocols, one
upper-layer interface per protocol, on each of one or more VLANs.
The first upper-layer interface configured on an Ethernet interface
determines the mode. Switching to a different mode requires first
removing the entire stack above the Ethernet interface. The supported
upper-layer protocols are IP and PPPoE. Figure 3-34 shows the
interface stacks for the different modes.
VLAN Support 3-71
ERX Edge Routers
PPP PPP
PPPoE
Topic Page
Network Management Overview 4-1
Managing the ERX System 4-2
SNMP Features 4-4
Command Line Interface 4-9
Collecting Bulk Statistics 4-12
Security Features 4-12
NMC-RX Overview 4-14
UMC Application Overview 4-22
dB
Applications
Command
RADIUS Bulk DHCP
Line/Scripts SNMP
SNMP COPS Stats
Traps
Sets/Gets
Access Methods
ERX-1400
ERX-700
Any IP Path
Elements
Starting at the bottom of Figure 4-1 with the ERX edge router itself,
the ERX system can be managed in several ways:
• Via standard SNMP MIB variables. This is the method by which
the NMC-RX network management application communicates
with the ERX system. SNMP traps and SNMP statistics are also
issued by the ERX system and can be sent to multiple host
destinations.
Managing the ERX System 4-3
ERX Edge Routers
SNMP Features
Each ERX system has its own SNMP agent. The agent is located on
the system’s active SRP module. UDP/IP is used for the transport.
The following SNMP features are supported:
• Trilingual support for SNMP Version 1 (v1), Version 2
Community-based (v2c), and Version 3 (v3)
• SNMP control of the system with GET and SET support
• SNMP access control
• SNMP trap management and filtering
• SNMP error statistics
• PDU size support from 484 – 8192 bytes
• 32-bit and 64-bit octet statistical SNMP counter support to handle
high-speed interfaces (such as Gigabit Ethernet and OC12/STM4)
• All SNMP control parameters can be configured through the CLI
RFCs Supported • RFC 1155 – Structure and Identification of Management Information for
TCP/IP-based Internets (May 1990)
• RFC 1157 – A Simple Network Management Protocol (SNMP) (May
1990)
• RFC 1212 – Concise MIB Definitions (March 1991)
• RFC 1215 – A Convention for Defining Traps for use with the SNMP
(March 1991)
SNMP Features 4-5
ERX Edge Routers
SNMP Traps The system fully supports SNMP traps. Traps are generated for the
following categories:
• Standard SNMP traps (for example, coldstart, authentication, link
up, link down)
• ERX system-level traps (for example, board insert, board removal,
temperature change)
• Routing protocol traps (for example, BGP-4-specific traps)
Traps issued by the system can be sent to up to eight different IP hosts
simultaneously. Several parameters can be controlled, including the:
• IP address of the host
• Community name to send in the trap message
4-6 CHAPTER 4
Element and Network Management
SNMP Support Unisphere supports the standard MIBs in the following list on the ERX
system. In addition to standard MIBs, Unisphere supports a wide array
of proprietary MIBs for your system.
ATM MIBs
• RFC 1695 – Definitions of Managed Objects for ATM Management
Version 8.0 using SMIv2 (August 1994)
• ATM Interface Configuration Group
• ATM Interface TC Group
• ATM Interface DS3 PLCP Group
• ATM VCC Termination Group
• ATM AAL5 VCC Group
BGP-4 MIB
• RFC 1657 – Definitions of Managed Objects for the Fourth Version of the
Border Gateway Protocol (BGP-4) using SMIv2 (July 1994)
Ethernet MIB
• RFC 2358 – Definitions of Managed Objects for the Ethernet-like
Interface Types (June 1998)
Interface MIBs
• RFC 1406 – Definitions of Managed Objects for the DS1 and E1
Interface Types (January 1993)
• RFC 1407 – Definitions of Managed Objects for the DS3/E3 Interface
Type (January 1993)
• RFC 2233 – The Interfaces Group MIB using SMIv2 (November
1997)
• linkUp/Down SNMP trap support – RFC 2233
IP MIBs
• MIB-II
• RFC 1213 – Management Information Base for Network Management of
TCP/IP-based Internets: MIB-II (March 1991)
• RFC 2011 – SNMPv2 Management Information Base for the Internet
Protocol using SMIv2 (November 1996)
• RFC 2012 – SNMPv2 Management Information Base for the
Transmission Control Protocol using SMIv2 (November 1996)
• RFC 2013 – SNMPv2 Management Information Base for the User
Datagram Protocol using SMIv2 (November 1996)
• RFC 2096 – IP Forwarding Table MIB (January 1997)
• RFC 2667 – IP Tunnel MIB (August 1999)
OSPF MIB
• RFC 1850 – OSPF Version 2 Management Information Base
(November 1995)
PPP MIBs
• RFC 1471 – The Definitions of Managed Objects for the Link Control
Protocol of the Point-to-Point Protocol (June 1993)
• RFC 1473 – The Definitions of Managed Objects for the IP Network
Control Protocol of the Point-to-Point Protocol (June 1993)
• RFC 2233 – The Interfaces Group MIB using SMIv2 (November
1997)
RIP MIB
• RFC 1724 – RIP Version 2 MIB Extension (November 1994)
4-8 CHAPTER 4
Element and Network Management
SNMP MIBs
• MIB-II
• RFC 1907 – Management Information Base for Version 2 of the Simple
Network Management Protocol (SNMP v2) (January 1996)
SNMP v3 MIBs
• RFC 2271 – An Architecture for Describing SNMP Management
Frameworks (January 1998)
• RFC 2272 – Message Processing and Dispatching for the Simple Network
Management Protocol (SNMP) (January 1998)
• RFC 2273 – SNMPv3 Applications (January 1998)
• RFC 2274 – User-based Security Model (USM) for version 3 of the
Simple Network Management Protocol (SNMPv3) (January 1998)
• RFC 2275 – View-based Access Control Model (VACM) for the Simple
Network Management Protocol (SNMP) (January 1998)
• SNMP Notification – SNMP-NOTIFICATION-MIB
SONET MIBs
• RFC 1595 – Definitions of Managed Objects for the SONET/SDH
Interface Type (March 1994)
• sonetMediumTable
• sonetSectionCurrentTable
• sonetSectionIntervalTable
• sonetLineCurrentTable
• sonetLineIntervalTable
• sonetPathCurrentTable
• sonetPathIntervalTable
UDP MIB
• RFC 2013 – SNMPv2 Management Information Base for the User
Datagram Protocol using SMIv2 (November 1996)
Show commands are also supported. The example below shows the
result displayed for a show atm interface command. (Refer to the
Command Reference Guide for exact command syntax for show
commands.)
Router#>show atm interface atm 3/0
ATM Interface ATM 3/0 is up line protocol is up
IP address is 158.101.112.2 subnet mask is 255.255.0.0
AAL enabled: AAL5, Maximum VCs: 50, Current VCs: 1
VCIs per VPI: 32, MTU Size: 4478
PHY Type: OC3c, Framing SONET, TX clocking: INTERNAL
Loopback: disabled, ILMI Keepalive: enabled (10 seconds)
0 packets input, 0 bytes
4-10 CHAPTER 4
Element and Network Management
Scripting Language
The system supports a powerful internal scripting language that allows
the operator to automate repetitious tasks and create miniprograms to
configure the system. Macros are loaded into the system by the operator
through the CLI and can be run on an ERX system during operation.
vcType := env.atoi(vcTypeStr);
endwhile #>
<# if vcType = 1; vcTypeStr := "aal5mux ip”; else; vcTypeStr
:= aal5snap; endif #>
encap bridged1483
<# endif #>
<# if loopbackStr != “” #>
ip unnumbered loopback <# loopbackStr;”\n" #>
<# endif #>
!
<# endwhile #>
!
<# endwhile #>
<# endtmpl #>
Security Features
Operator access to the ERX system is protected by the network
management architecture. Of course, the service provider should
implement other security means, such as physical security or logical
security via firewalls between the outside world and the operations
centers.
Security Features 4-13
ERX Edge Routers
All ERX management access methods such as, CLI, SNMP, and
NMC-RX, implement authorization checks before enabling operator
access.
SNMP Access lists are used to control operator access to the SNMP agent on
the system. Both the source IP address of the NMS and the SNMP
community name can be used to create the access list. This feature
means that an incoming SNMP request is checked against the IP
address/community name access filter list before it is fulfilled.
Unauthorized users are not allowed access. This approach allows the
service provider to control which SNMP operators or applications
access the MIBs.
SSH The ERX system supports the Secure Shell (SSH) Server protocol
version 2 as a secure alternative to Telnet for ERX system
administration. SSH supports secure remote login and other secure
network services. It allows operators to manage remotely over a secure
connection.
NMC-RX Overview
The NMC-RX application is a stand-alone network management
application that is capable of provisioning and controlling an entire
network of ERX edge routers. This software application delivers a set
of tools that enables service providers to quickly and easily provision an
ERX system and its physical interfaces, protocols, and services. In
addition, it delivers a key advantage over other applications by allowing
operators to view and manage the ERX network elements in terms of
customers and services.
The Java-based NMC-RX application provides a graphical user
interface (GUI) to augment traditional CLI and SNMP-based methods
of configuring the ERX system. With a GUI-based application,
operators are freed from learning arcane commands and have a more
intuitive window into the network operation. The NMC-RX
application also stores all configuration information in a relational
database, giving operators new levels of ability in terms of organizing
element data, synchronizing element configurations, and speeding
element configuration. In addition, the NMC-RX application is a
cost-effective client/services platform, easily able to support all
operators who need access to the software.
The NMC-RX application is one component of the UMC (Unisphere
Management Center), a comprehensive, standards-based network
management toolset that allows service providers to integrate software
components into an existing operations support system (OSS)
environment while delivering significant next-generation management
capabilities. See UMC Application Overview later in this chapter.
Relational Database
The NMC-RX architecture is based on an SQL-compliant ODBC
(Open Database Connectivity) relational database system (RDBS). This
standards-based approach allows the NMC-RX client applications to
communicate with a single centralized host. It also allows the
NMC-RX architecture to be independent of vendor databases, capable
of supporting any SQL-compliant database including Sybase, Microsoft
SQL, and Oracle. The current version of the product ships with Sybase
SQL.
This NMC-RX database architecture enforces a tight security policy,
with all function calls entered and checked by the database before they
are issued to the element. This policy provides a secure buffer between
operators and subscribers alike.
Java Technology
The NMC-RX uses a Sun Microsystems Java-based architecture. Java
allows all applications to be platform independent and capable of
running on multiple different operating systems. This capability allows
Unisphere to draw from a wide base of experienced programmers to
quickly add new features and reports for our service provider customers
and their subscribers.
Polling Service
The Polling Service is a separate application that allows the service
provider to obtain information about the health of ERX elements. The
Polling Service operates by contacting each of the designated elements
and polling them for status information. It returns the state of the
element and its interfaces and displays the information graphically.
Service provider operators can use this function as an early warning
detection of element problems or to monitor problem interfaces. The
Polling Service is also architected to support advanced, targeted polling
of elements or interfaces so that the service provider can more
accurately pinpoint element interfaces for monitoring.
ConfigSync Service
The ConfigSync Service provides device discovery services. When you
create a new device through the NMC-RX application, the
ConfigSync Service goes out to the device and obtains information
about it.
Streamlined One of the most critical functions for service providers is the ability to
Provisioning quickly provision new elements and new services. Performing this
function cost effectively becomes critical when mass market B-RAS
services are offered to subscribers. The ERX system offers a number of
ways to automate provisioning, which can be viewed in two stages:
• Initial provisioning – This stage encompasses such tasks as
configuration of the hardware, physical interfaces, and protocols.
This stage also includes mapping customers to configurations in
NMC-RX Overview 4-17
ERX Edge Routers
Network Workshop
Both physical and logical
interfaces are easily configured.
Configuration parameters
are stored in the database
and displayed graphically.
Device Workshop
Powerful
templates feature
allows for
“configure once,
replicate many
times” to speed
provisioning of
new users, new
interfaces, or new
ERX systems.
Statistics Display
As part of the configuration process, the NMC-RX application also
gives the ability to display statistics on a given element. The service
provider can then display real-time statistics that are provided by the
Polling Service on an individual element.
Customer-Driven Management
As service providers strive to offer competitive service delivery, the
network management paradigm is changing from one of element and
service management to one based on customer management. The NMC-RX
application offers advanced capabilities that allow the operator to
associate customers and customer sites with the service-delivering
NMC-RX Overview 4-21
ERX Edge Routers
OSS Integration
The NMC-RX open architecture makes it capable of easily integrating
with existing OSSs already in place inside service provider networks.
These might include HP OpenView NNM, Quallaby Proviso and
Orchestream Service Activator, or custom-developed accounting and
4-22 CHAPTER 4
Element and Network Management
Service The SSC is a key component of the UMC product portfolio. Designed
Selection to ease key steps in the service life-cycle process, the SSC integrated
Center service management offering includes service creation, subscriber
management, service activation, and accounting capabilities. The SSC
enables service providers to rapidly create and deploy new services to
hundreds of thousands of subscribers over a variety of broadband access
technologies, such as DSL, cable, Ethernet, and fixed wireless.
Working with the ERX edge router, the SSC lets users activate service
offerings as they need them and provisions the network to deliver those
services; service activation becomes a fully-automated, real-time
process.
UMC Application Overview 4-23
ERX Edge Routers
The SSC includes three integral functionalities that address the critical
phases of the service life cycle. These functionalities include:
• Intelligent Service Creation – builds innovative new services
• Intelligent Service Activation – delivers services on an on-demand
basis to subscribers
• Intelligent Service Accounting – tracks, collates, and rates service
usage to enable rich and creative tariff models
UMC Meta The UMC Meta Directory option provides the scalability required by
Directory large or rapidly growing subscriber bases. This general purpose, highly
scalable repository complies with X.500-93, X.509, and Lightweight
Directory Access Protocol (LDAP) standards. Based on Siemens’
award-winning DirX Meta Directory, its data management features
include the ability to exchange information from external repositories,
such as databases, and synchronize them bidirectionally. Such
synchronization capability is key to allowing fast integration with
existing OSS systems.
The UMC Meta Directory houses infrequently changing information
such as user profiles, service definition parameters, RADIUS
authentication and authorization information, service policies, and
service portal configurations, while providing a single point of
administration.
Extended Larger subscriber bases also require more sophisticated service and
Service and subscriber management. For this purpose, the UMC application offers
Subscriber the Extended Service and Subscriber Management (ESSM) option.
Management This options is based on our partner TeleKnowledge’s Total-e™
solution, and it includes a number of important functions. For example,
a collection of high-level GUIs guides service provider operators
through the subscriber management and provisioning process.
Easy-to-understand service templates enable operators to easily define
the characteristics of a new service. Other GUIs provide user
registration and subscription guidance. The resulting service and
subscriber profiles are stored and activated on demand.
To ensure that tariff models are followed, a powerful rating function is
integrated with the service definition and user registration functions.
Combining the ESSM option with the SSC and the UMC Meta
Directory results in a highly scalable system, capable of subscriber
management, authentication, authorization, accounting, and rating.
4-26 CHAPTER 4
Element and Network Management
Integration The UMC integration packs further extend the capabilities of the
Packs UMC application.
Topology Management
Using UMC HP OpenView Integration Pack software, the ERX
system can be managed using the HP OpenView manager-of-managers
network management solution. HP OpenView provides indepth views
of networks, automatically discovers network devices, and provides an
intuitive GUI representing the network topology. A multi-level map
indicates which devices and network segments are healthy and which
areas need attention.
When a flood of events resulting from a major device failure appears in
its Alarm Browser, HP OpenView correlates the events and presents a
summarized view of the failure, as well as offering trend analysis,
thresholding, and data warehousing features that empower proactive
network management. The HP OpenView Integration Pack also
includes the capability to automatically launch the NMC-RX Element
Manager directly from the HP OpenView GUI in a context-sensitive
manner, allowing operators to rapidly access the necessary tools for
configuration and diagnostics.
Fault Management
The UMC Micromuse Netcool Integration Pack includes probes,
rules, tools, and automation definitions that enable Unisphere
Networks network elements to work with Micromuse Netcool®, the
market-leading fault-management solution. Micromuse Netcool
provides real-time monitoring of all elements that compose the
network and of all services that are affected by element outages. Its
distributed architecture enables a network operations center to develop
customized, real-time views of services from diverse management
platforms, devices, and network elements throughout the network.
Micromuse Netcool also associates these events with services and
customers.
The Micromuse Netcool Integration Pack provides an out-of-the-box
configuration that allows Netcool to receive SNMP traps from ERX
systems, to present those events to operators in a user-friendly manner,
UMC Application Overview 4-27
ERX Edge Routers
Performance Management
Unisphere Networks has partnered with Quallaby Corporation for
performance management capabilities. Performance management is
essential to effective network management and the delivery of
measurable Service Level Agreements (SLAs). With a strong
performance management solution in place, network operations and
engineering gain meaningful insight into performance, policy,
bandwidth, and QoS. Service Providers can offer proactive service-level
management as well as access to management information needed to
run their businesses. The UMC Performance Management Application
Pack is designed to plug into Quallaby Corporation’s PROVISO®,
providing the collectors and report libraries needed for performance
management, network planning, traffic analysis, troubleshooting efforts
and SLA reporting in networks built with Unisphere Networks
equipment.
Additional Partners
Additional Unisphere Networks partners include Funk Software, for
integration with their award-winning Steel Belted Radius
authentication server, and Orchestream™ Holdings plc, a leading
provider of IP service activation and performance management
software, for VPN management.
4-28 CHAPTER 4
Element and Network Management
Statistics, Accounting,
and Diagnostics
Topic Page
Statistics and Accounting 5-1
Monitoring and Diagnostics 5-2
Product Upgrades 5-7
Module Each line module and I/O module has its own EEPROM to store and
Identifier make key information on the module accessible to management. The
information is coded onto the module during the in-circuit test phase
of the manufacturing process. This identifier allows the service provider
to accurately identify and track the ERX systems and modules after
they are installed.
Monitoring and Diagnostics 5-3
ERX Edge Routers
Event Logging The ERX system provides comprehensive information that can be
stored in event logs. This information enables service providers to
troubleshoot system-level and interface-level problems. A number of
features are supported, including filtering capabilities and destination
options.
Information stored in event logs can be filtered in a number of different
ways to help isolate the cause of the problem. Filter options include:
• Event severity level – emergency, alert, critical, error, warning,
notice, information, and debug
• Event instance – instances vary by event category
• Event verbosity level – high, medium, low
Event logs can be directed to up to four destinations and the severity
level can be designated per destination. For example, you could specify
that all severity emergency events be sent to the syslog. Event log
destinations include:
• Nonvolatile storage (NVS) on the SRP
• Console serial port on the SRP
• Syslog daemon
• Buffer on the SRP, which can be viewed with the CLI
Protocol Diagnostic tests can be run to isolate network or system anomalies for
Diagnostics each line module and each protocol. The ERX system supports a
verbose mode to capture the PPP frames of any single link, including a
timestamp that enables a user to troubleshoot the PPP link if LCP
and/or IPCP cannot successfully establish a connection. A trace
function and event log allow retrieval of this information for use
beyond the local console. The system also supports Frame Relay and
ATM diagnostic tools such as LMI and OAM F5 to isolate problems
with these protocols.
Loopback Tests The system supports a number of loopback tests for the CT3 module.
See Table 5-1.
Test Patterns To help service providers troubleshoot line problems, the system
provides powerful test pattern generation and bit error rate test (BERT)
capabilities. All of the standard test patterns (2^23+1, 2^15+1, QRSS,
511, etc.) are supported. Pseudorandom patterns and
user-programmable patterns are also supported. The patterns can be
generated and tested over any DS0 or group of DS0s. Both n x 56K and
n x 64K are supported.
Dump Capability To help Unisphere and service provider operators identify system
problems, the system supports a crash dump capability that allows the
operational software to save the stack trace, the reason for failure, and
the CPU registers. Information can be gathered from both the line
modules and the SRP module. The crash dump information is stored
in NVS on the SRP module and can be copied from the system to a
designated host.
Product Upgrades
The system is designed for ease of maintenance, including upgrades to
hardware and software. The system supports dynamic configuration
changes to the system software and hardware modules without
disrupting other system operations.
For example, all firmware can be upgraded in the background during
normal service delivery; then individual software objects, such as
routing protocols and line interface modules, can be restarted to reduce
any service disruption. The system can save previous files and images
for each of these objects and revert to those images if problems are
discovered in the new software. The older image can be enabled in two
ways:
• If the system is rebooting with an abnormal rate (as defined by the
configuration), the system automatically reverts to the previous
system image.
• If the system successfully boots, the administrator can still manually
choose to revert to the previous image at any time.
All startup, boot, diagnostic, and operational software can be remotely
upgraded through out-of-band management ports and in-band IP
interfaces to further ease upgrade operations.
System Startup The ERX system receives the operational software image from the SRP
module. This image is then downloaded to each line module as
appropriate. The SRP module can receive the operational image from
the NVS card or through a network download.
5-8 CHAPTER 5
Statistics, Accounting, and Diagnostics
Topic Page
Factory Warranty 6-1
Professional Services 6-2
Preconfiguration Services 6-2
Educational Services 6-2
Technical Assistance Center (TAC) 6-2
Hardware Services 6-3
Contacting Unisphere Networks 6-3
Factory Warranty
Unisphere Networks offers the following product warranties:
• A standard 1 year return-to-factory warranty on all ERX system
hardware components
• A standard 90-day warranty that the ERX software conforms to its
published specification.
Extended warranty options are available through Unisphere Customer
Service.
6-2 CHAPTER 6
Service and Support
Professional Services
Unisphere’s network architects can help design a network to meet
service and uptime requirements and provide optimal interoperability
with other devices in the network.
Preconfiguration Services
Unisphere offers a preshipment service that can soft-configure and test
a node to meet site requirements, dramatically reducing on-site
installation time.
Educational Services
Unisphere’s classroom services provide training for service provider
operators on the configuration, operation, maintenance, and scaling of
the ERX system.
Hardware Services
The use of hardware services ensures that hardware will be on hand in
case of failure. Unit failure is confirmed by the Unisphere TAC, and
the service provider can receive a field replaceable unit (FRU) by the
next business day.
Note: To receive the fastest response in the event of a severity 1 issue, contact
Unisphere by telephone.
This chapter details several applications that the ERX system can
support and describes the feature sets that make these applications
successful.
Topic Page
Private Line Aggregation 7-2
XDSL Session Termination 7-4
Virtual Private Networks 7-7
Cable Subscriber Management 7-9
MPLS for Traffic Control 7-12
MPLS for VPNs 7-14
SLA Support 7-16
Non-IP Protocol Applications 7-16
VoIP Transport 7-17
Wholesaling 7-18
End-to-End QoS 7-20
VLAN Implementation 7-22
Fixed Wireless Applications 7-23
7-2 CHAPTER 7
Applications Overview
Business Users
Edge Core
In this application, the service provider can use a single ERX system to
offer high-speed access (FT1/FE1 through T3/E3) to thousands of
subscribers with a single unit. The individual subscriber lines can be
multiplexed into T3 lines by the Telco provider and fed into the ERX
system. (The system can also accept unchannelized T3 or E3
connections from high-speed users and channelized E1 connections
directly into the unit.) Once the traffic is received, the system then
handles all IP packet processing, including the assignment of QoS and
routing policies. The packets are then routed into the backbone
network.
The system supports a number of access and uplink methods; the most
common pairings are listed in Table 7-1.
Private Line Aggregation 7-3
ERX Edge Routers
Access Uplink
PPP
Frame Relay ATM or POS
ATM
Remember, however, that any port on the ERX system can be used for
access or uplink. This means that both PPP and Frame Relay (FR)
ports can be used as uplink ports as well. This configuration can
accommodate subscribers who have two sites connected to the same
ERX system over FR or PPP links, or can provide an uplink for a FR
service.
By using the ERX system for private line aggregation, a service
provider can overcome a number of limitations presented by older
products, such as density constraints, performance limitations, and lack
of carrier-class reliability. In addition, by using the system, the service
provider gains the ability to offer a number of new IP services to the
subscriber base.
The ERX system offers a number of key features that deliver critical
benefits to service providers who offer private line aggregation. The
features are listed in Table 7-2.
Table 7-2 Product Features and Benefits for Private Line Aggregation
Table 7-2 Product Features and Benefits for Private Line Aggregation (continued)
Consumer &
Business CLEC
Users (xDSL)
DSLAM
IP/PPPoE/ATM
VPN
DHCP RADIUS
Table 7-3 ERX System Features and service provider Benefits for B-RAS
Table 7-3 ERX System Features and service provider Benefits for B-RAS (continued)
“Big” ISP
“Big” ISP Customer
RAS
Dial Line ERX System
“Local” ISP
“Local” ISP Customer DLSAM OC3/STM1
DS3 FR/ATM
OC12/STM4
ATM/xDSL OC3 ATM
Xconnect ATM
As shown in Figure 7-3, many subscribers are coming into the service
provider network via a variety of access methods and with a variety of
destinations. The ERX system is capable of handling all of the
7-8 CHAPTER 7
Applications Overview
protocols and line rates. For xDSL users, a DSLAM would first
terminate the copper before passing the traffic into the ERX system.
For the dial user, a RAS would first answer the modem call before
handing the data flow to the ERX system.
Subscribers entering the network via dedicated leased lines would
typically be multiplexed into T3 lines and then enter the ERX unit (or
be directly connected to the ERX system in the cases of T3, E3, and
E1).
Once the packet enters the ERX system, any combination of
classification filters can be used to identify the subscriber and the
destination, or, for PPP users, a query can be made to a deployed
RADIUS server.
There are three ways in which the ERX system can initiate the VPN to
securely send traffic to different destinations:
• The ERX system supports layer 2 virtual circuits for either Frame
Relay or ATM. Each incoming subscriber traffic flow can be
mapped to a secure FR/ATM VC for transport to the destination
address.
• The ERX system can support multiple virtual routers with separate,
secure routing tables and IP forwarding processes. These virtual
routers maintain separate routing tables for each router instance.
This keeps traffic completely segmented between subscriber groups
with different destinations.
• The ERX system can append MPLS labels to forward packets over
directed VPN paths that the service provider configures.
The ERX system supports a number of key features that benefit a
service provider who offers the VPN services detailed in Table 7-4.
Table 7-4 ERX System Features and service provider Benefits for VPNs
Table 7-4 ERX System Features and service provider Benefits for VPNs (continued)
ATM
IP/Ethernet Ethernet ERX System
POS 10/100 Enet OC3/STM1
ISP
Gigabit Enet OC12/STM4
IP/ATM OC3 ATM POS/ATM
OC3 POS Gig Eth
CMTS
IP/PPPoE
VPN
DHCP SSC
RADIUS
Table 7-5 ERX System Features and Service Provider Benefits for Cable Subscriber
Management
Table 7-5 ERX System Features and Service Provider Benefits for Cable Subscriber
Management (continued)
Table 7-6 ERX System Features and Service Provider Benefits for MPLS for Traffic
Engineering
Core Router
Corp B Service
Corp B
Network
Provider
As shown in Figure 7-6, the ERX system classifies the incoming packet
and applies the appropriate MPLS VPN label at the network’s edge,
where the subscriber packet first enters the service provider network.
The traffic between the Corp A users and the Corp B users can be
transported on separate paths through the network, guaranteeing secure
operations and predictable performance. In addition, the MPLS label
also optionally reserves bits to be used for QoS settings. These can be
used to apply QoS parameters to the VPN path.
The ERX system supports a number of key features that allow service
providers to implement MPLS in their network. See Table 7-7.
Table 7-7 ERX System Features and Service Provider Benefits for MPLS for VPNs
SLA Support
As service level agreements (SLAs) increasingly become a standard
request from subscribers, service providers must be able to offer 100
percent uptime guarantees, with money-back penalties in cases of
failure or noncompliance. In addition, the service provider must be able
to demonstrate service quality to the subscriber in terms of reports and
real-time access. The ERX system supports a number of key features
that allow service providers to confidently offer SLAs to their
subscribers. See Table 7-8.
Table 7-8 ERX System Features and Service Provider Benefits for SLAs
VoIP Transport
The ERX system supports sophisticated QoS functionality that allows
service providers to deliver tiered service levels to their subscribers.
Tiered services offer different plans for different types of subscribers
(Gold, Silver, Bronze) or plans that differentiate different traffic types
(voice vs data). Figure 7-7 shows how separate data and voice services
can be delivered with a single ERX system. The ERX system can
distinguish different applications as they enter the service provider edge
network. Voice traffic can be treated as a priority, with corporate data
and consumer data taking second and third place.
Voice call
Consumer
data
To backbone
Corporate
data
ERX System
Traffic is prioritized:
• Voice
• Corporate Data
• Consumer Data
Figure 7-7 ERX System Guarantees Voice over IP (VoIP) Traffic Delivery
As packets enter the ERX system, they can be classified by any field in
the IP header. This allows traffic to be separated by application. As
shown in Figure 7-7, the traffic that enters the network can be classified
by the ERX system, and different traffic types are given different
treatment.
Note: The ERX system can be configured to honor packet classifications based on
DS fields or MPLS labels if these are already set by CPE devices.
Table 7-9 ERX System Features and Service Provider Benefits for VoIP
Wholesaling
Many service providers lease portions of their facilities to other carriers;
this practice is known as wholesaling. Strategies vary by service
providers. Some offer “dark fiber” itself; others offer equipment; still
others offer services that can be resold. The ERX system can offer
wholesaling strategies where facilities-based service providers want to
lease POP capacity to downstream carriers. As shown in Figure 7-8, a
facilities-based service provider can use the ERX system to offer
wholesale services to carrier partners.
Wholesaling 7-19
ERX Edge Routers
ISP A
DiffServ
ERX System
MPLS Path
ISP B
ATM PVC
ISP C
Table 7-10 ERX System Features and Service Provider Benefits for Wholesaling
End-to-End QoS
For a service provider to offer differentiated service levels, the entire
network must be able to support and enforce QoS policies. End-to-end
QoS can be supported in a multivendor environment with
standards-based adherence. Figure 7-9 shows how QoS can be
implemented over an entire network.
End-to-End QoS 7-21
ERX Edge Routers
POS
ATM
ERX System ERX System
As traffic is handed back to the edge and CPE device, QoS policies can
be applied again at the subscriber and individual user levels. The
resulting coordination between the different elements allows for
end-to-end QoS to be delivered to the subscriber.
The ERX system supports a number of key features that are critical for
end-to-end QoS delivery. These features are listed in Table 7-11.
Table 7-11 ERX System Features and Service Provider Benefits for End-to-End QoS
VLAN Implementation
Ethernet frames of each customer before passing them onto the edge
router. On the downlink, the Ethernet switch directs the tagged
Ethernet frames to the port that corresponds with the VLAN ID.
Ethernet frames and broadcast packets remain in the same VLAN and
cannot be seen by other VLANs.
On the Ethernet uplink facing the core network, VLANs are
commonly used to logically segregate the traffic destined for services or
service providers. VLANs are typically deployed in a hosted service
environment. The access service provider (ASP) can maintain a single
and shared infrastructure for a variety of wholesale customers and
applications without compromising SLA.
Figure 7-10 shows the ERX system in a VLAN application.
Access
Gigabit Ethernet
IP Edge
IP Core ASP A
ERX
VLAN 1 VLAN 5
ASP B
IP/ETH VLAN 6
PPPoE
VLAN 7
Ethernet VLAN 2 ISP B
Switch
(VLAN tagged)
Policies
RADIUS
(COPS, LDAP)
DHCP
A configuration
command line interface for 4-9
AAL5 layer (ATM) 3-20 preconfiguration services 6-2
access and uplink methods 7-2 system configuration storage 5-8
access lists 3-31 CT3 modules
accounting 5-1 to 5-8 line rates supported 3-22
aggregation. See edge aggregation applications loopback tests 5-4
architecture of ERX system 2-2 customer support 6-2
ASIC technology 1-7, 2-4
chip sets 2-4
ATM interfaces 3-18 to 3-21
D
ATM MIBs 4-6 data flow 2-3
availability 1-8 dedicated system resources 3-2
density, port 1-7
B DHCP (Dynamic Host Configuration Protocol)
local server 3-64, 3-65, 3-66
bandwidth, tiered options for 1-9 diagnostics 5-2 to 5-5
BGP multicasting 3-44 DiffServ standards 1-18
BGP-4 support 3-33 dimensions of ERX chassis 2-8
Border Gateway Protocol (BGP-4) 3-33 Distance Vector Multicast Routing Protocol
B-RAS applications 3-59 to 3-61, 7-4 to 7-7 (DVRMP) 3-43
Broadband Remote Access Server. See B-RAS distributed software architecture 3-2
bundle distribution lists 3-32
MFR 3-18 documentation set, Unisphere xiii
MLPPP 3-14 CD xiv
CD, using the xiv
C comments on xv
DSLAM aggregation 1-12, 7-4 to 7-7
CD, documentation CD xiv DVRMP (Distance Vector Multicast Routing
using the xiv Protocol) 3-43
channelized E1 modules 2-14 dynamic interfaces 3-57
channelized OC12/STM4 modules 2-17
channelized OC3/STM-1 modules 2-15
channelized T1 modules 2-14 E
channelized T3 modules 2-15 E1 modules 2-14
chassis, ERX system 1-2 line rates 3-22
chip sets, ASIC 2-4 E3 modules 2-14
Cisco HDLC 3-21 line rates 3-22
classification of packets 3-7 edge aggregation applications 1-5, 1-11
CLI (command line interface) 4-9 to 4-10 private line aggregation 1-11, 7-2 to 7-4
external scripting 4-10 xDSL session termination 1-12, 7-4 to 7-7
security 4-13 EdgeControl management application
command line interface. See CLI security 4-14
components of ERX system 1-4 educational services 6-2
EEPROMs 5-2
2
Index
T V
T1 modules 2-14 virtual private networks. See VPNs
T3 modules 2-14, 2-15 virtual routers 3-32
TAC (Technical Assistance Center) 6-2 VLANs 1-16, 3-69, 7-22
Technical Assistance Center (TAC) 6-2 interface modes 3-70
technical support 6-2 voice traffic 7-17 to 7-18
telephone support 6-3 VoIP traffic 7-17 to 7-18
test patterns 5-5 VPNs (virtual private networks) 1-10, 7-7 to 7-9
tiered bandwidth and pricing options 1-9, 1-10 MPLS for 7-14 to 7-15
token IP address 3-64
traffic flow 3-5 to 3-9 W
MPLS for. See MPLS labeling
non-IP packet handling 7-16 warranty 6-1
packet classification 3-7 Web access to ERX system 3-65
prioritizing 1-9 Web site support 6-3
statistics. See statistics weights of ERX chassis 2-8
VoIP transport 7-17 to 7-18 wholesaling 7-18
transport protocols wireless 1-17, 7-23
diagnostics 5-4 wire-speed routing 2-3
ERX interface types with 1-6
xDSL, supported 1-13, 7-6
traps, SNMP 4-5
6
ERX Edge Routers
X
X.21/V.35 module 2-18
xDSL
protocols 1-13, 7-6
session termination 1-12, 7-4 to 7-7