UNIS S5600-EI 系列以太网交换机 · 前言本配置指导主要介绍UNIS...

UNIS S5600-EI

OpenFlow

http://www.unis-hy.com 6W100-20160315 Release 1120

Copyright 2016

UNIS

UNIS S5600-EI OpenFlow

1.

[ ] [ ]

{ x | y | ... }

[ x | y | ... ]

{ x | y | ... } *

[ x | y | ... ] *

& &1n

# #

2.

< > < >

[ ] [ ][]

/ /[//][][][]

3.

4.

Mesh

UTM

NetStreamSSL VPNIPSACG

TT

TT

5.

[email protected]

400-910-9998

http://www.unis-hy.com

[email protected]

mailto:[email protected]://www.unis-hy.com/mailto:[email protected]

i

1 OpenFlow 1-1

1.1 OpenFlow 1-1

1.1.1 OpenFlow 1-1

1.1.2 OpenFlow 1-1

1.1.3 OpenFlow Switch 1-1

1.1.4 OpenFlow 1-2

1.1.5 OpenFlow 1-2

1.1.6 OpenFlow 1-3

1.1.7 Group Table 1-5

1.1.8 Meter Table 1-5

1.1.9 OpenFlow channel 1-6

1.1.10 1-7

1.2 OpenFlow 1-7

1.3 OpenFlow 1-8

1.3.1 OpenFlow 1-8

1.3.2 OpenFlow 1-8

1.3.3 OpenFlow 1-12

1.4 1-13

1.4.1 1-13

1.4.2 1-13

1.5 OpenFlow 1-14

1.6 MAC 1-14

1.7 OpenFlow 1-15

1.8 QINQ 1-15

1.9 1-15

1.10 OpenFlowMAC-IP 1-16

1.11 OpenFlow 1-16

1.12 OpenFlow 1-17

1.13 A 1-18

1.13.1 1-18

1.13.2 Action ListAction Set 1-19

1.13.3 Packet Out 1-20

1.13.4 Packet in 1-20

ii

1.13.5 LLDP 1-20

1.13.6 Flow Mod 1-21

1.14 B MAC-IP 1-21

1.14.1 MAC-IP 1-21

1.14.2 MAC-IP 1-22

1.14.3 MAC-IPTable Miss 1-23

1.14.4 Dynamic aware 1-23

1.14.5 MAC-IP TableExtensibility Table 1-23

1-1

1 OpenFlow 1.1 OpenFlow

1.1.1 OpenFlow

SDNSoftware Defined Network

1.1.2 OpenFlow

OpenFlow SDNSoftware Defined NetworkOpenFlow

OpenFlow

OpenFlowOpenFlowSwitchControllerOpenFlow channel 1-1 SwitchControllerTLSTCPOpenFlowOpenFlow

1-1 OpenFlow

1.1.3 OpenFlow Switch

OpenFlow Switch

1-2

OpenFlow-Only Switch OpenFlow

OpenFlow-Hybrid Switch OpenFlow OpenFlow-Hybrid Switch

1.1.4 OpenFlow

OpenFlow

LoopBack

OpenFlowAnyControllerLocal 1-1

1-1

ALL

Controller

Local CPU

Normal

Flood

1.1.5 OpenFlow

OpenFlow OpenFlow OpenFlow OpenFlow

1.

OpenFlow VLAN

2.

OpenFlow

OpenFlow

OpenFlow

1-3

3.

OpenFlow OpenFlow Local

VLAN OpenFlow VLAN OpenFlow VLAN OpenFlow loosen VLAN VLAN OpenFlow

1.1.6 OpenFlow

1.

OpenFlow Flow Table

MAC-IP MAC FIB MAC VLAN IP MAC MAC VLAN

Extensibility TCAMTernary Content Addressable Memory MAC MAC IP IPTCP TCP

1-2

1-2

Match Fields

Priority

Counters

Instructions

Action Set 1-2

Action List

1-2

Meter

Apply-Actions

Clear-Actions

1-4

Write-Actions

Write-Metadata

Goto-Table Extensibility

1-3

1-3 1.3.1

/

Output OpenFlowOpenFlow

Drop DropOutput

Group GroupGroup

Set-Queue Set-QueueIDIDQoS

Set-Field Set-FieldVLAN tagVLAN Tag

Timeouts Idle time Hard time

Idle time Idle time

Hard time hard time

Cookie

(2)

1-3

1-5

1-3 OpenFlow

2. Table Miss

Table Miss 0

1.1.7 Group Table

Group Table Group Group

1-4 Group

Group IdentifierGroup ID Group32bits

Group TypeGroup All

Counters Group

Action Buckets

1.1.8 Meter Table

Meter Table Meter Meter Meter

1-5 Meter

Meter IdentifierMeter ID Meter32bits

Meter Bands Meter Meter Bands Meter Band Meter Band Meter Band

Counters Meter

1-6 Meter Bands

1-6

Band TypeBand drop DSCPdscp remark

RateMeter Band Band

Counters Band

Type Specific arguments Band

1.1.9 OpenFlow channel

TLS TCP Channel OpenFlow

OpenFlow Controller to Switch

1. Controller to Switch

Controller to Switch

1-4 Controller to Switch 1.3.1

Controller to Switch

Features OpenFlow

Configuration

Modify-State /Group

Multipart

Packet-Out

Packet-InPacket-OutPacket-Inbuffer IDPacket-OutPacket-Out

Barrier BarrierBarrier

Role-Request OpenFlow channel

Asynchronous-Configuration

2. Asynchronous

Asynchronous

1-7

1-5 1.3.1

Packet-In

Table MissControllerPacket-inTTLPacket-InBufferBuffer IDPacket-InBuffer IDPacket-out

Flow-Removed

Port-Status

Error

3. Symmetric

Symmetric

1-6 1.3.1

Hello Hello

Echo Echo request/replyEcho requestEcho reply

Experimenter

1.1.10

OpenFlow Switch Specification Version1.3.1

1.2 OpenFlow

1-7 OpenFlow

OpenFlow

OpenFlow 1.3.1

OpenFlow

OpenFlow 1.3.2 1.

ID 1.3.2 2.

OpenFlow 1.3.2 3.

Extensibility 1.3.2 4.

1-8

VLAN 1.3.2 5.

OpenFlowVLANMAC

1.3.2 6.

OpenFlowController

1.3.2 7.

Table Miss 1.3.2 8.

OpenFlowDatapath ID 1.3.2 9.

OpenFlow 1.3.3

1.4.1

1.4.2

OpenFlow 1.5

MAC 1.6

OpenFlow 1.7

QINQ 1.8

1.9

OpenFlowMAC-IP 1.10

1.3 OpenFlow

1.3.1 OpenFlow

1-8 OpenFlow

system-view -

OpenFlowOpenFlow openflow instance instance-id OpenFlow

OpenFlow description text

OpenFlow

1.3.2 OpenFlow

OpenFlow

1-9

1. OpenFlow

VLAN VLAN OpenFlow VLAN

VLAN

OpenFlow VLAN VLAN OpenFlow VLAN

VLAN VLAN BFD MAD IRF IRF

1-9 OpenFlow

system-view -

OpenFlow openflow instance instance-id -

OpenFlowVLAN classification vlan vlan-id [ mask vlan-mask ] [ loosen ] OpenFlowVLAN

2. ID

1-10 ID

system-view -


OpenFlowID

flow-table { [ ingress-vlan ingress-table-id ] [ extensibility extensibility-table-id | mac-ip mac-ip-table-id ] * [ egress-vlan egress-table-id ] }

ExtensibilityID0MAC-IPID

OpenFlowMAC-IPExtensibility

MAC-IPIDExtensibilityID

QINQStandaloneingress-vlanegress-vlan

3. OpenFlow

OpenFlow

Single OpenFlow OpenFlow

1-10

Multiple OpenFlow

Single Controller ID

1-11 OpenFlow

system-view -


OpenFlow controller mode { multiple | single }

OpenFlowmultiple

4. Extensibility

OpenFlow Extensibility

1-12 Extensibility

system-view -


Extensibility flow-entry max-limit limit-value

Extensibility65535

5. VLAN

VLAN OpenFlow VLAN VLAN OpenFlow

VLAN VLAN OpenFlow VLAN OpenFlow

VLAN OpenFlow VLAN

1-11

1-13 VLAN

system-view -


VLAN in-band management vlan vlan-list VLAN

6. OpenFlowVLANMAC

OpenFlow VLAN MAC

VLAN

1-14 OpenFlow VLAN MAC

system-view -


OpenFlowVLANMAC mac-learning forbidden

OpenFlowVLANMAC

7. OpenFlowController

1-15 OpenFlow Controller

system-view -


OpenFlowController

forbidden port { vlan-interface | vsi-interface } *

OpenFlowController

8. Table Miss

active instance OpenFlow Controller Table Miss Table Miss

1-12

1-16 Table Miss

system-view -


Table Miss default table-miss permit

Table Miss

9. OpenFlowDatapath ID

OpenFlow OpenFlow Datapath ID OpenFlow Datapath ID ID MAC Datapath ID

1-17 OpenFlow Datapath ID

system-view -


OpenFlowDatapath ID datapath-id datapath-id

OpenFlowDatapath IDIDMAC16ID48MAC

1.3.3 OpenFlow

OpenFlow OpenFlow OpenFlow OpenFlow

OpenFlow

1-18 OpenFlow

system-view -


OpenFlow active instance OpenFlow

1-13

1.4

OpenFlowControllerControllerControllerOpenFlowController 1-19

1-19 Controller

Master Controller Controller Controller Master

Equal Controller Master Controller Equal

Slave

Controller Controller to switch Group Meter Packet Out Flow Remove Packet In Controller

1.4.1

OpenFlow TCP/SSL

1-20

system-view -


controller id address { ip ip-address | ipv6 ipv6-address } [ port port-number ] [ local address { ip ip-address | ipv6 ipv6-address } [ port port-number ] ] [ ssl ssl-policy-name ] [ vrf vrf-name ]

64

1.4.2

OpenFlow OpenFlow

Secure

Standalone

OpenFlow

1-14

1-21

system-view -


fail-open mode { secure | standalone } Secure

1.5 OpenFlow

Echo request/reply

Echo request Echo request Echo reply OpenFlow

OpenFlow OpenFlow

1-22 OpenFlow

system-view -


Echo request

controller echo-request interval interval-value

Echo request5

CPUEcho request

OpenFlow controller connect interval interval-value

OpenFlow60

1.6 MAC

MAC-IP MAC

1-23 MAC

system-view -


MAC mac-ip dynamic-mac aware MAC

1-15

1.7 OpenFlow

OpenFlow OpenFlow

OpenFlow OpenFlow Controller OpenFlow OpenFlow OpenFlow IPv6

1-24 OpenFlow

system-view -

OpenFlow openflow lossless enable OpenFlow

1.8 QINQ

VLAN Tag Extensibility VLAN Tag

1-25 QINQ

system-view -


QINQ qinq-network enable

QINQVLAN TagExtensibilityVLAN Tag

1.9

1-16

1-26

system-view -


flow-log disable

1.10 OpenFlowMAC-IP

MAC-IP MAC-IP

1-27 OpenFlow MAC-IP

system-view -


OpenFlowMAC-IP refresh ip-flow -

1.11 OpenFlow

display OpenFlow

1-28 OpenFlow

OpenFlow display openflow instance [ instance-id ]

OpenFlow display openflow instance instance-id flow-table [ table-id ]

OpenFlow display openflow instance instance-id controller

OpenFlowGroup display openflow instance instance-id group [ group-id ]

OpenFlowMeter display openflow instance instance-id meter [ meter-id ]

OpenFlow display openflow summary

1-17

1.12 OpenFlow

1.

OpenFlow 1 VLAN 4092 4094 OpenFlow 1

VLAN 1 OpenFlow 1 VLAN

OpenFlow 1 OpenFlow 1

2.

1-7 OpenFlow

3.

(1) VLAN

# VLAN 4092 4094 system-view

[Switch] vlan 4092

[Switch-vlan4092] port gigabitethernet 1/0/1

[Switch-vlan4092] quit

[Switch] vlan 4094

[Switch-vlan4094] port gigabitethernet 1/0/2

[Switch-vlan4094] quit

(2) VLAN [Switch] openflow instance 1

[Switch-of-inst-1] classification vlan 4092 mask 4093 loosen

(3) 1 IP 192.168.49.49 [Switch-of-inst-1] controller 1 address ip 192.168.49.49

[Switch-of-inst-1] active instance

(4)

# [Switch-of-inst-1] display openflow instance 1

Instance 1 information:

Configuration information:

Description : --

Active status : Active

Inactive configuration:

1-18

None

Active configuration:

Classification VLAN, loosen mode, total VLANs(2)

4092, 4094

In-band management VLAN, total VLANs(0)

Empty VLAN

Connect mode: Multiple

Mac address learning: Enabled

Flow table:

Table ID(type): 0(Extensibility), count: 0

Flow-entry max-limit: 65535

Datapath ID: 0x00010cda415e232e

Default table-miss: Drop

Forbidden port: None

Port information:

GigabitEthernet1/0/1

GigabitEthernet1/0/2

Active channel information:

Controller 1 IP address: 192.168.49.49 port: 6633

1.13 A

1.13.1

1.

(1) VLAN

OpenFlow VLAN VLAN

1-29 VLAN

VLAN MASK

- - OpenFlowVLAN

0 - VLAN tagPVIDOpenFlowVLAN

0

VLAN -/

0x1000 -/0x1000

0x1000 0x1000 VLAN tagVLAN tagOpenFlow

VLAN | 0x1000

-/ VLAN+MASKVLAN+MASKOpenFlow

(2)

1-19

OpenFlowLLDP 1.13.5 LLDP

(3) MetaData

MetaData MetaData Controller MetaData

2. Instruction

(1) Clear actions

Clear actions

Clear actions instruction Clear Actions

(2) Apply actions

Action ListOutputOutput 1.13.2 Action ListAction Set

(3) Write MetaData

Write MetaData

(4) Go To Table

Go To Table

1.13.2 Action ListAction Set

OpenFlow Switch Action Set Action List Action Set

1. Output Action

Action List Action Set Action Output Group Action Set Action Set Action List Action List Action Set

2. Output Action

Action List Action Set Output Action Action List Output Action Set Ouput Action List Action Set

Action List Action Set Output Action Output Action Set

Action List Output ActionAction Set Group ActionOutput Action Action List Output Group Action Set

1-20

1.13.3 Packet Out

1.

Packet out Output NormalLocalIn port Controller OpenFlow

2. ID

Packet Out ID ID

3. VLAN Tag

Packet Out VLAN tag PVID VLAN

Output PVID

OutputFloodAll 4.

4.

Packet Out Output Flood All

(1) Flood

Packet Out VLAN tag VLAN

Packet Out VLAN tag OpenFlow Swtich PVID

Packet Out VLAN tag Controller OpenFlow

(2) All

Packet Out VLAN tag VLAN

Packet Out VLAN tag OpenFlow

1.13.4 Packet in

1. VLAN tag

Packet in

VLAN tag PVID VLAN tag

VLAN tag PVID VLAN tag

2.

No Match 1K

Cookie F

1.13.5 LLDP

OpenFlow LLDP LLDP

LLDP

1-21

OpenFlow LLDP

LLDP Controller LLDP OpenFlow LLDP Controller LLDP Controller

1.13.6 Flow Mod

1. Table Miss

OpenFlow Table Miss DropController Modify Controller Mulipart Controller Add Table Miss

Table Miss Table Miss

Table Miss Table Miss Drop

2.

match

1.14 B MAC-IP

1.14.1 MAC-IP

1-30 MAC-IP

VLAN MAC

Go to table Controller

Write Meta Controller MAC MetaData

1-31 MAC-IP

VLAN MAC VLAN MAC IP

1-22

VLAN

MAC

MAC MAC VLAN MAC

TTL 1 Go to table Controller Swtich

Write Meta Controller Switch IP MetaData

1.14.2 MAC-IP

MAC-IP Controller

1-32 MAC-IP

MAC MAC

VLAN

1-33

1-33 MAC-IP

VLAN VLAN UP MAC VLAN MAC

IP IP

VLAN MAC MAC MAC MAC VLAN MAC

VLAN VLAN UP VLAN OpenFlow VLAN MAC VLAN

Controller Controller Controller Switch

1-23

1.14.3 MAC-IPTable Miss

MAC-IP Table Miss Output Action

Go To Table

Drop

Controller Controller

Normal

1.14.4 Dynamic aware

MAC-IP Controller MAC

Controller VLAN MAC MAC VLAN MAC

1.14.5 MAC-IP TableExtensibility Table

1. MetaData/Mask

MAC-IP Table Extensibility Table MetaData

MAC-IP Table Write MetaDataExtensibility Match MetaData

MetaData MaskBitMetaDataBit 1-34

1-34 MetaData Mask

MetaData Mask Bit MetaData

Bit 0 MAC 1 MAC

0 MAC

Bit 1 MAC 1 MAC

0 MAC

Bit 2 IP 1 IP

0 IP

2.

Extensibility MAC-IP

Extensibility Output Normal MAC-IP Extensibility

Extensibility Output Normal Output MAC-IP Extensibility

00-1. 2. 3. 4. 5.

01-OpenFlow1 OpenFlow1.1 OpenFlow1.1.1 OpenFlow1.1.2 OpenFlow1.1.3 OpenFlow Switch1.1.4 OpenFlow1.1.5 OpenFlow1. 2. 3.

1.1.6 OpenFlow1. 2. Table Miss

1.1.7 Group Table1.1.8 Meter Table1.1.9 OpenFlow channel1. Controller to Switch2. Asynchronous3. Symmetric

1.1.10

1.2 OpenFlow1.3 OpenFlow1.3.1 OpenFlow1.3.2 OpenFlow1. OpenFlow2. ID3. OpenFlow4. Extensibility5. VLAN6. OpenFlowVLANMAC7. OpenFlowController8. Table Miss9. OpenFlowDatapath ID

1.3.3 OpenFlow

1.4 1.4.1 1.4.2

1.5 OpenFlow1.6 MAC1.7 OpenFlow1.8 QINQ1.9 1.10 OpenFlowMAC-IP1.11 OpenFlow1.12 OpenFlow1. 2. 3.

1.13 A 1.13.1 1. 2. Instruction

1.13.2 Action ListAction Set1. Output Action2. Output Action

1.13.3 Packet Out1. 2. ID3. VLAN Tag4.

1.13.4 Packet in1. VLAN tag2.

1.13.5 LLDP1.13.6 Flow Mod1. Table Miss2.

1.14 B MAC-IP1.14.1 MAC-IP1.14.2 MAC-IP1.14.3 MAC-IPTable Miss1.14.4 Dynamic aware1.14.5 MAC-IP TableExtensibility Table1. MetaData/Mask2.

UNIS S5600-EI 系列以太网交换机 · 前言本配置指导主要介绍UNIS...

Documents

Transcript of UNIS S5600-EI 系列以太网交换机 · 前言本配置指导主要介绍UNIS...

UNIS S5600-EI 系列以太网交换机 · 前 言 本配置指导主要介绍UNIS...

Documents

Transcript of UNIS S5600-EI 系列以太网交换机 · 前 言 本配置指导主要介绍UNIS...

UNIS S5600-EI 系列以太网交换机 · 前言本配置指导主要介绍UNIS...

Transcript of UNIS S5600-EI 系列以太网交换机 · 前言本配置指导主要介绍UNIS...