VXLAN Capabilities of CE Series Switches

Latest reply: Oct 29, 2018 09:09:36 818 13 10 0

this post will help you learn about VXLAN Capabilities of CE Series Switches

Device Role

Item

CE12800

TOR (7850/6850HI/6850U-HI)

Access device

Number of Layer 2 broadcast domains (VNIs)

4,000 (maximum)

4,000 (maximum)

Layer 2 VXLAN access through port+VLAN, port+untag, or port

YES

YES

Transparent transmission of VLAN tags in original packets in port-based Layer 2 VXLAN access

YES

YES

The Layer 2 access device terminates ARP broadcast packets, and ARP proxy is enabled on the controller to reduce ARP broadcast flooding.

YES

YES

The Layer 2 access device converts broadcast ARP packets into unicast ARP packets and forwards the packets to the destination host to reduce ARP broadcast flooding.

YES

YES

MC-LAG dual-homing is supported to improve reliability of access devices.

YES

YES

Distributed VXLAN Layer 3 gateways can be deployed directly on the access devices.

YES

YES

Aggregation/Core

IP gateway

Supports VXLAN Layer 3 gateways (distributed and centralized multi-active gateways).

YES

YES

Number of Layer 3 gateways

4,000 (maximum)

4,000 (maximum)

The VXLAN Layer 3 gateway supports VRF to isolate tenants at Layer 3.

YES

YES

Number of VRFs

4,000 (maximum)

1,000 (maximum)

Traffic of the VXLAN Layer 3 gateway can be imported using PBR to the firewall for filtering.

YES

YES

The Layer 3 VXLAN gateway supports DHCP relay.

YES

YES

NA

Supports mapping between the original Ethernet frame and DiffServ information in the encapsulated packet header. By default, the switches provide a default mapping template.

YES

YES

Supports CSS to implement device-level reliability.

YES

YES

Maximum number of VXLAN tunnels for load balancing

64

32

Tunnel count

8,000 (maximum)

15,000 (maximum)

VXLAN Restrictions of CE Series Switches

Item

CE12800

TOR

Cisco

H3C

Remarks

Versions prior to V1R5C10 must collaborate with the SDN controller.  V1R3C10/R5C00 can collaborate with the SNC or AC1.0 controller. V1R6 can collaborate with the AC2.0 controller. V1R5C10 can work independently without a controller.

YES

YES

N

N

In versions prior to V1R5C10, the control plane is on the controller, and the VXLAN commands can only be delivered by the controller but not configured on switches.

Traffic loops back on the Layer 3 gateway.

By default, the CE12800 uses an internal loopback interface. A command is provided to change the interface to non-loopback mode. (Supported by EC and later line cards only.)

TOR switches use ports to loop back traffic (connection not required).

YES

YES

Y

Y

For modular switches: H3C uses the same chip as that of Huawei, with a later version; therefore, this problem does not occur. Cisco N7000 does not loop back traffic, while N9000 uses internal loopback.

For fixed switches: H3C is the same as Huawei. Cisco N9300 uses internal loopback.

CE switches do not support VSs when controlled by the SNC controller.

YES

NA

N9000 does not support VS.

N

The configurations to be delivered from the SDN controller to devices through OpenFlow must not conflict with existing configurations of the devices.

YES

YES

N

Y

In some H3C solutions, the control plane is on the controller. The solutions have similar problem.

MPLS and VXLAN cannot be configured simultaneously on CE switches.

YES

YES

Y

Y

Chip hardware restriction (N9000 uses the same chips as those used by Huawei fixed switches. H3C all series switches use similar chips as those of Huawei switches.)

GRE and VXLAN cannot be configured simultaneously on CE12800 switches. CE12800 supports VXLAN by default. To configure GRE on a CE12800, modify the configuration and restart all line cards.

YES

NA

N

Y

Chip hardware restriction (N9000 uses the same chips as those used by Huawei fixed switches. H3C all series switches use similar chips as those of Huawei switches.)

TRILL/FCOE and VXLAN cannot be configured simultaneously on CE switches.

YES

YES

Y

Y

Chip hardware restriction (N9000 uses the same chips as those used by Huawei fixed switches. H3C all series switches use similar chips as those of Huawei switches.)

 

Competitive Analysis

 

Item

H3C

Cisco

Huawei

Description

Traffic access mode

[port+VLAN]

[VLAN]

[VLAN]

[port+VLAN]

[VLAN]

[port]

VTEP automatic discovery (dynamically establishing VXLAN tunnels)

Supported

Supported

Not supported

For non-SDN applications of compe*****s, static configuration is not required and deployment is easy.

In SDN solutions, configuration is made on the controller; therefore, compe*****s have no distinct advantages over Huawei.

Implemented through EVPN or multicast replication

Implemented through private ENDP

The controller dynamically delivers static configurations to devices after calculation.

VNI neighbor automatic discovery (dynamically associating VNIs and tunnels)

Implemented through EVPN or multicast replication

Implemented through IS-IS extension

Same as the above.

Same as the above.

MAC address learning and synchronization

Learn by the hardware

IS-IS extension

Learn by the hardware

EVPN extension

Learn by the hardware

The number of MAC addresses in protocol-based MAC address advertisement is limited and is not stable.

In protocol-based MAC address advertisement, the switches discard unknown unicast traffic, optimizing traffic forwarding.

BUM traffic replication on a centralized point(VMware service node)

Supported

Not supported

Not supported

Implemented through software forwarding by the servers, with low efficiency. BUM traffic replication does not have a high value, and you can take service innovation into consideration.

Suppression of ARP broadcast flooding

Supported

Supported

Supported

The proxy terminates ARP packets, and hosts may fail to receive ARP packets, leading to high risks.

Local proxy

Local proxy

Local proxy/broadcast-to-unicast conversion

Dual-homing access

Stacking

VPC

Stacking

MC-LAG

Layer 3 gateway

Centralized gateway

Centralized gateway

Distributed gateway

Centralized gateway

Distributed gateway

Cisco N9000 supports distributed gateways and does not require external port loopback.

Cisco N7000 supports centralized gateway.

Service-chain

Implemented through ACL

Supported

Implemented through ACL

 

  • x
  • convention:

faysalji
Created Oct 27, 2018 17:30:30 Helpful(0) Helpful(0)

it would be good to add the link to the document for further study
  • x
  • convention:

If you think my post/reply is useful, please click the Helpful button and flag my post as a BEST ANSWER. Thanks
Mysterious.color
MVE Created Oct 28, 2018 05:02:16 Helpful(0) Helpful(0)

you got helpful VXLAN Capabilities of CE Series Switches-2788405-1
  • x
  • convention:

Core%20Engineer%2C%20Technical%20Department.%20High%20experience%20in%20Networking
Mysterious.color
MVE Created Oct 28, 2018 05:03:37 Helpful(0) Helpful(0)

and it's full of comparison thank you
  • x
  • convention:

Core%20Engineer%2C%20Technical%20Department.%20High%20experience%20in%20Networking
wissal
MVE Created Oct 29, 2018 09:09:36 Helpful(0) Helpful(0)

thanks for sharing this reference
  • x
  • convention:

Telecommunications%20engineer%2C%20currently%20senior%20project%20manager%20at%20an%20operator%2C%20partner%20of%20Huawei%2C%20in%20the%20radio%20access%20network%20department%2C%20for%2020%20years%20I%20managed%20several%20types%20of%20projects%2C%20for%20the%20different%20nodes%20of%20the%20network.
12
Back to list

Reply

Reply
You need to log in to reply to the post Login | Register

Notice Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Login and enjoy all the member benefits

Login and enjoy all the member benefits

Login