Welcome Thank you for joining us! Introducing today’s speakers • Lawrence Rust, Education Services Marketing Manager • Elna Samuelsen, Director, Curriculum, Certification, Infrastructure • Jasun Rutter, Sr. Manager, Curriculum Development and Certification • GUEST SPEAKER – Ariful Huq, Product Manager, MX Series
Labs and Learning Courses • Self-paced, technical training
with hands-on labs • Benefits:
• Hands-on lab experience • Learn whenever and wherever • Control the pace • High-quality content derived from
our instructor-led materials • Available now: Introduction to the Junos
Operating System (IJOS); Junos Routing Essentials (JRE)
The ultimate blend of hands-on technical training and control over the pace you learn
Each $349 course purchase provides four weeks of access to:
Ideally suited to:
Labs and Learning Courses
Web-based recorded lectures
Lab environment
Detailed Lab Guide
• Individuals that want labs but prefer self-study • Teams that are new to Junos • Anyone preparing for the JNCIA-Junos certification
1. Visit www.juniper.net/labsandlearning 2. Select your course 3. Pay with a credit card or Juniper Training Credits!
To purchase:
New Exam: JNCDA • Juniper Networks Certified Design Associate
• Q2 release • No prerequisite certification required (highly recommend JNDF, network
design background) • Design exam track
• JNCDA is the entry-level certification to a larger certification track focused on network design
• Data center Specialist level exam coming in Q3
Watch http://www.juniper.net/us/en/training/certification/ for ongoing news with these credentials
Exam Updates: JNCIE-SEC • JNCIE-SEC
• Update to existing forms – Feb 2015 • Same objectives • Addition of new topic: AppSecure • Watch website for news and timing
• Addition of new forms – 2015 • Same objectives • Software upgrade
Watch http://www.juniper.net/us/en/training/certification/ for updates with news and timing of these updates
Ongoing Update for JNCP Exams • JNCP exams are updated on an ongoing basis
• JNCIA up to JNCIE level • Exams are updated/refreshed on a development cycle
• Sometimes visible (ex. JNCIA-Junos .. JN0-101 -> JN0-102) • Sometimes not
• Ensures freshness of item pool • Ensures security of exams
New and Updated Courseware Q4 14 • New
• Data Center Switching (DCX)
• Troubleshooting Data Center Switching (TDCX)
• Updates • Implementing Junos Secure
Analytics (IJSA) • Update and rebrand of
CSTRM • JNCIE-ENT Bootcamp
Q1 15 • New
• Juniper Networks Design Fundamentals (JNDF)
• Updates • Configuring and Monitoring QFabric Systems
(CMQS) • Troubleshooting QFabric Systems (TQS)
(JNCIS-QF exam to be updated in Q3 2015) • Introduction to the Junos OS (IJOS) • JNCIE-SEC Bootcamp • JNCIE-SP Bootcamp • Configuring and Monitoring Contrail (CMC)
Other Learning Resources JNCP Website Resources page http://www.juniper.net/us/en/training/certification/resources.html J-Net Training, Certification Career Forum http://forums.juniper.net > Training, Certification, and Career Topics Courseware: www.juniper.net/courses Labs and Learning: www.juniper.net/labsandlearning
Learning Bytes…View the Latest
Learning Bytes…expand your knowledge bit by bit.
New Learning Bytes Chassis Cluster Interface Monitoring Configuring High Availability on Juniper Virtual Chassis Configuring Multiple Junos Devices Using Junos PyEZ & Templates Configuring Transparent Mode on an SRX Series Importing FireFly Perimeter VM into VMware ESXi 5.5 Server IP Addressing and Subnetting Basics IS-IS Configuration Junos Space Log Director Installation Junos Space Security Director - Hub-and-Spoke VPNs
Learning Bytes…View the Latest New Learning Bytes Junos Space Security Director - Variable Objects Master RE Console NAT64 with DNS64 on SRX Python EZ Basics Setting the Virtual Chassis Mode SSM Features Topology-Independent In-Service Software Upgrade (TISSU) on the QFX5100 Virtual Chassis Fabric: Automatic Software Upgrades
www.juniper.net/learningbytes or www.youtube.com/junipernetworks
Branch Office
HQ Carrier Ethernet Switch
Cell Site Router
Mobile & Packet GWs
Aggregation Router/ Metro
Core
DC/CO Edge Router Service Edge
Router
Core
Enterprise Edge/Mobile Edge Aggregation/Metro/Metro core Service Provider Edge/Core and EPC
VCPE, Enterprise Router Virtual PE, Virtual BNG/LNS, Hardware Virtualization
Virtual Routing Engine, Virtual Route Reflector
MX SDN Gateway
Control Plane and OS: Virtual JUNOS, Forwarding Plane: Virtualized Trio
vBNG, vPE, vCPE
Data center/Central Office
MX Virtualization Strategy
Leverage R&D effort and JUNOS feature velocity across all physical & virtualization initiatives
Software
Applications
Key Benefit of vMX
Exact same control plane features of JUNOS & forwarding feature set of Trio, and managed same way as physical router
Same release timeline as the JunOS releases
Consistency Quick service enablement by leveraging virtualization technology
Service separation with different routers
Agility
Easy scale-out option for network platforms
Perfect choice of control plane function scaling
Scalability
VMX – A scale out router
Scale-Up (Physical MX) Scale-Out (Virtual MX)
• Optimize for density in a single instance
• Innovation in ASIC, Power & Cooling
• Density is not the optimization factor
• Each instance is a router
• More agile deployment. Innovation in orchestration and management capabilities
Virtual and Physical MX
Packet Forwarding
Engine (PFE)
Virtual Forwarding Plane (VFP)
Microcode cross-compiled
X86 instructions
CONTROL PLANE
DATA PLANE
ASIC/HARDWARE
Cross compilation creates high leverage of features between Virtual and Physical with minimal re-work
TRIO UCODE
Virtualization Techniques
Application
Virtual NICs
Physical NICs
Guest VM#1
Hypervisor: KVM, XEN,VMWare ESXi
Physical layer
VirtIO drivers
Device emulation
Para-virtualization (VirtIO, VMXNET3)
• Guest and Hypervisor work together to make emulation efficient • Offers flexibility for multi-tenancy but with lower I/O performance • NIC resource is not tied to any one application and can be
shared across multiple applications • vMotion like functionality possible
PCI-Pass through with SR-IOV
• Device drivers exist in user space • Best for I/O performance but has dependency on NIC type • Direct I/O path between NIC and user-space application
bypassing hypervisor • vMotion like functionality not possible
Application
Virtual NICs
Guest VM#2
VirtIO drivers
Application
Virtual NICs
Physical NICs
Guest VM#1
Hypervisor: KVM, XEN, VMWare ESXi
Physical layer
Device emulation
Application
Virtual NICs
Guest VM#2
Device emulation
PCI P
ass-
thro
ugh
SR
-IOV
Virtualization Techniques
Application 1
Virtual NICs
Physical NICs
Physical layer
Containers (Docker, LXC)
• No hypervisor layer. Much less memory and compute resource overhead • No need for PCI-pass through or special NIC emulation • Offers high I/O performance • Offers flexibility for multi-tenancy
Application 2
Virtual NICs
Container engine (Docker, LXC)
VMX Product
• Virtual JUNOS to be hosted on a VM • Follows standard JUNOS release cycles • SMP capable
• Hosted on a VM, Bare Metal, Linux Containers • Multi-threaded, Multi-Core • DPDK, SR-IOV, VirtIO
VCP (Virtualized Control Plane)
VFP (Virtualized Forward Plane)
SCRIPTS
VMX Overview
Virtual Control Plane (VCP) Virtual Forwarding Plane (VFP)
Physical NICs
Virtual NICs
Management traffic
Guest VM (Linux + DPDK) Guest VM (FreeBSD)
Hypervisor: KVM
Cores Memory
Bridge / vSwitch SR-IO
V
Physical layer
• vSwitch/Linux Bridge for VFP to VCP communication (internal host path)
• 1:1 mapping between VFP and VCP
• Optimized data path from physical NIC to vNIC via SR-IOV (Single Root IO Virtualization).
• OpenStack/Scripts for VM management
VMX QoS model
LEVEL-1 LEVEL-2 LEVEL-3
PORT
S I X Q U E U E S
Q0
Q1
Q2
Q3
Q4
Q5
VLAN 1
VLAN 2
VLAN n
High
Medium
Low
Port: Shaping-rate
VLAN: Shaping-rate 4k per IFD
Queues: 6 queues 3 priorities
1 High 1 medium 4 low
Priority groups scheduling follows strict priority for a given VLAN
Queues of the same priority for a given VLAN use WRR
High and medium queues are capped at transmit-rate
vMX Environment
Description Value
Sample system configuration Intel Xeon E5-2667 v2 @ 3.30GHz 25 MB Cache. NIC: Intel 82599 (for SR-IOV only)
Memory Minimum: 8 GB (2GB for vRE, 4GB for vPFE, 2GB for Host OS)
Storage Local or NAS
Sample system configuration
Sample configuration for number of CPUs
Use-cases Requirement
VMX with up to 100Mbps performance Min # of vCPUs: 4 [1 vCPU for VCP and 3 vCPUs for VFP]. Min # of Cores: 2 [ 1 core for VFP and 1 core for VCP]. Min memory 8G. VirtIO NIC only.
VMX with up 3G of performance Min # of vCPUs: 4 [1 vCPU for VCP and 3 vCPUs for VFP]. Min # of Cores: 4 [ 3 cores for VFP, 1 core for VCP]. Min memory 8G. VirtIO or SR-IOV NIC.
VMX with 10G and beyond (assuming min 2 ports of 10G) Min # of vCPUs: 5 [1 vCPU for VCP and 4 vCPUs for VFP]. Min # of Cores: 5 [ 4 cores for VFP, 1 core for VCP]. Min memory 8G. SR-IOV only NIC.
vMX Baseline Performance VMX performance in Gbps
# of cores for packet processing *
Frame size (Bytes) 3 4 6 8 10
256 2 3.8 7.2 9.3 12.6
512 3.7 7.3 13.5 18.4 19.8
1500 10.7 20 20 20 20
2 x 10G ports
4 x 10G ports
# of cores for packet processing*
Frame size (Bytes) 3 4 6 8 10
256 2.1 4.2 6.8 9.6 13.3
512 4.0 7.9 13.8 18.6 26
1500 11.3 22.5 39.1 40 40
6 x 10G ports
# of cores for packet processing*
Frame size (Bytes) 3 4 6 8 10
256 2.2 4.0 6.8 9.8
512 4.1 8.1 14 19.0 27.5
1500 11.5 22.9 40 53.2 60
*Number of cores includes cores for packet processing and associated host functionality. For each 10G port there is a dedicated core not included in this number.
8 x 10G ports
# of cores for packet processing* Frame size (Bytes) 4 6 8 10 12
64 2.1 2.8 3.5 4.2 5.3
128 3.9 5.2 6 7.3 8.7
256 5.2 8 10.4 12.6 15
512 12.7 18.3 23 27.7 32
1500 33.6 47 58.5 71.5 79
IMIX 14 20 25.4 31 37
Service Provider VMX use case – Virtual PE (vPE)
• Scale-out deployment scenarios
• Low bandwidth, high control plane scale customers
• Dedicated PE for new services and faster time-to-market
Market Requirement
• VMX is a virtual extension of a physical MX PE
• Orchestration and management capabilities inherent to any virtualized application apply
VMX Value Proposition
VMX as a Cloud VPN PE
• Virtual Private Cloud customers need a gateway router in the cloud as an easy extension of the enterprise network, provide inter-region connectivity and use it for services such as NAT.
• Cloud Service Providers can offer a virtualized router to offer this functionality
Market Requirement
• VMX can provide all the functionality enterprises utilize for an on-site MX gateway router. This functionality includes IPSec and in future NAT.
• Operational simplicity in managing another JUNOS device hosted in the cloud.
VMX Value Proposition
VMX as a DC Gateway
• Service Providers need a gateway router to connect the virtual networks to the physical network
• Gateway should be capable of supporting different DC overlay, DC Interconnect and L2 technologies in the DC such as GRE, VXLAN, VPLS and EVPN
Market Requirement
• VMX supports all the overlay, DCI and L2 technologies available on MX
• Scale-out control plane to scale up VRF instances and number of VPN routes
VMX Value Proposition
VMX to offer managed CPE/centralized CPE Service providers want to offer a managed CPE service and centralize the CPE functionality to avoid “truck rolls” Large enterprises want a centralized CPE offering to manage all their branch sites Both SPs and enterprises want the ability to offer new services without changing the CPE device
Market Requirement
VMX with service chaining can offer best of breed routing and L4-L7 functionality Service chaining offers the flexibility to add new services in a scale-out manner
VMX Value Proposition
Reflection from physical to virtual world Proof of concept lab validation or SW certification
• Perfect mirroring effect between carrier grade physical platform & virtual router
• Can provide reflection effect of an actual deployment in virtual environment
• Ideal to support • Proof of Concept lab • New service configuration/operation
preparation • SW release validation for an actual
deployment • Training lab for operational team • Troubleshoot environment for a real network
issue
• CAPEX or OPEX reduction for lab • Quick turn around when lab network
scale is required
Virtual
Physical deployment
Service Agility: Bring up a new service in a POP
SP Network for VPN service
PE
L3 CPE L3 CPE
PE
POP
1. Install a new vMX to start offering a new service without impact to existing platform
vMX
2. Scale out the service with vMX quickly if traffic profile fits the requirements
vMX 3. Add service directly to the physical MX GW or add more physical MX if service is successful and there is more demand with significant traffic growth
MX
4. Integrated the new service into existing PE when the service is mature
vMX as an application on Contrail vRouter.
Contrail controller
NFV orchestrator
Template based config
• vMX with vRouter integration enables service chaining use-cases
• VirtIO utilized for Para-virtualized drivers
• Contrail OpenStack for • VM management
• Setting up overlay network
• NFV Orchestrator (OpenStack Heat templates) utilized to easily create and replicate VMX instances
vMX Products
Characteristics Target customer
Trial
• Up to 90 day trial • No limit on capacity
• Inclusive of all features
• Potential customers who want to try-out VMX in their lab or qualify VMX
Lab simulation/Educatio
n
• No time-limit enforced • Forwarding plane limited to
50Mbps • Inclusive of all features
• Customer wants to simulate production network in lab
• New customer to gain JUNOS and MX experience
GA product • Bandwidth driven licenses
• Two modes for features: BASE or ADVANCE/PREMIUM
• Production deployment for VMX
VMX FRS product
• Official FRS target date for VMX is targeted for Q2 2015 with JUNOS release 14.1R6. • High level overview of FRS product
• DPDK integration. Min 80G throughput per VMX instance. • OpenStack integration. • 1:1 mapping between VFP and VCP • Hypervisor support: KVM, VMWare ESXi, Xen • High level feature support for FRS
• Full IP capabilities • MPLS: LDP, RSVP • MPLS applications: L3VPN, L2VPN, L2Circuit • IP and MPLS multicast • Tunneling: GRE, LT • OAM: BFD • QoS: Intel DPDK QoS feature-set
vMX Pricing philosophy
Value based pricing
Elastic pricing model
• Price as a platform and not just on cost of bandwidth • Each VMX instance is a router with its own control-plane, data-
plane and administrative domain • The value lies in the ability to instantiate routers easily
• Bandwidth based pricing • Pay as you grow model
vMX License structure
• Three application packages • BASE: Basic IP routing. No VPN capabilities • ADVANCE: Same functionality as –IR mode MPCs • PREMIUM: Same functionality as –R mode MPCs
• Capacity based licensing
• Each application package offers capacity based SKUs
• Per instance license
• Payment options • Licenses will have a perpetual and subscription option
Application package functionality mapping Application package Functionality Use cases
BASE • IP routing with 32K IP routes in FIB • Basic L2 functionality: L2 Bridging and switching • No VPN capabilities: No L2VPN, VPLS, EVPN and
L3VPN • No VXLAN
• Low end CPE or Layer3 Gateway
ADVANCE (-IR)
• Features in BASE • IP FIB (testing up to 5M v4/v6 routes), IP/MPLS
Multicast • L2 capabilities include L2VPN, VPLS, EVPN,
L2Circuit • VXLAN
• L2vPE • IP vPE • Virtual DC GW
PREMIUM (-R) • Features in ADVANCE • L3VPN for IP and Multicast
• L3VPN vPE • Virtual Private Cloud GW
Note: Application packages exclude IPSec, BNG and VRR functionality.
Bandwidth License SKUs • Bandwidth based licenses for each application package for the following processing capacity limits:
100M, 250M, 500M, 1G, 5G, 10G, 40G. Note for 100M, 250M and 500M there is a combined SKU with all applications included.
100M 250M 500M
1G BASE
1G ADV
1G PRM
5G BASE
5G ADV
5G PRM
10G BASE
10G ADV
10G PRM
40G BASE
40G ADV
40G PRM
BASE
ADVANCE
PREMIUM
• Application tiers are additive i.e ADV tier encompasses BASE functionality
Program Director – Elna Samuelsen – [email protected]
Certification Program website: www.juniper.net/certification Customer Service alias: [email protected]
@JuniperCertify Training, Certification and Career Forum
Stay Connected
Top Related