Title is Verdana 36pt Bold

1
MPLS - Market, Technology, and Offers
ATT Alliance Technical Marketing June,
2008 Doug Rabren Bob Uszynski President,
BEK Data Network Consultant drabren_at_beknetwork
s.com uszynski_at_att.com
V9
2
Agenda

• BEK Networks Introduction
• MPLS Market Overview
• MPLS Technology Overview
• how it works
• benefits - COS, IP VPNs, Full mesh, disaster
  recovery
• Security
• Overview of ATT's MIS / PNT offer
• Customer examples

3

• Doug Rabren, BEK Networks
• Jackie Ramieri, BEK Networks
• Jim Swimelar, Channel Manager, ATT
• Bob Uszynski, Data Network Consultant, ATT

4
Who is BEK Networks?
5

• 2008 ATT Solution Provider Champion
• One of 40 Solution Providers in the US Recognized
  by ATT

http//www.att.com/gen/press-room?pid4800cdvnne
wsnewsarticleid24999
6
Services We Provide

• Consulting and Sales
• The New ATT
• Bellsouth
• SBC
• Legacy ATT

• Services We deliver
• Hosting
• WAN
• Local
• Long Distance
• Internet

7
MPLS Market Overview
8
MPLS Market Growth

• Multiprotocol Label Switching is becoming the
  dominant packet networking technology in the US,
  in managed and un-managed form. Gartner Group
  8/2005

9
MPLS Market Growth
Managed MPLS is the fastest growing category of
IP Services
Source Gartner Group 8/2005
10
Frame Relay and MPLS Planned Usage
MPLS is growing at the expense of Frame Relay and
other technologies
Source Webtorials.Com 5/04
11
MPLS Adoption Drivers

• Need for converged network to handle increased
  operational complexity and remote connectivity
  needs.
• Class-of-service and full-mesh connectivity to
  handle specific applications e.g. VOIP.
• Reduce total cost of ownership.

12
MPLS Technology Overview
13
Network vs. Premises Based IP-VPNs
Premises-based (IPSec, Tunnels)
Network-based (MPLS, Labels)
shared backbone
shared backbone
MPLS Enabled
VPN server
VPN server
VPN client
14
What is MPLS ?

• Multiprotocol Label Switching (MPLS)
• - Invented by Cisco in 1997 and based on their
  tag-switching technology to to improve the
  forwarding performance of ATM switches
• - Forwards packets based on labels so packets are
  switched, not routed
• - An IETF approved technology for controlling the
  flow of network traffic on Layer 2 (Frame) and
  Layer 3 (IP) networks.
• - MPLS complements, rather than replaces,
  existing network protocols.
• - Deployment of MPLS yields significant benefits
  to both the network provider and the end user.

15
Terminology

• MPLS MultiProtocol Label Switching
• Customer Edge Router (CER) Router at customer
  site that interfaces with the WAN
• Provider Edge Router (PER) - This is the router
  at the carriers edge sometimes referred to as
  the Access Router
• Access Router (AR) - Carrier Access Router
• P router - Backbone router or switch in the
  carriers network
• Label - Part of MPLS header that identifies the
  VPN
• QoS - Quality of Service an overall or
  end-to-end experience
• CoS - A methodology to affect QoS

16
How MPLS Works
Customer Site 2
Customer Site 1

• IP Backbone is MPLS enabled
• Customer Edge Router passes IP packets to
  Provider Network
• Provider Edge Router applies MPLS label to packet
• Complete path to destination address is
  determined across the core network. (LSP Label
  Switch Path)
• Individual Packets are forwarded across the
  network based on MPLS Label and Label Switch
  Path.
• Provider Edge Router (egress) strips off MPLS
  label and forwards IP packet to destination
  customer edge Router

17
MPLS A Unifying Network Architecture

• End User Benefits
• Full mesh connectivity
• Multiple Classes of Svcvoice, video, data
• IP VPNs
• Automatic Disaster recovery

• Carrier Benefits
• Provider backbone technology
• Traffic Engineering
• Scalable, Hierarchical
• Reliability Security

18
Full Mesh Connectivity
19
Full Mesh Connectivity
MPLS services offer Any-to-any connectivity
Site A
Site B
MPLS Switching
Site D
Site C
Traditional Frame PVC
20

Class of Service
21
What is Class of Service (CoS)?

• CoS is the ability to prioritize one type of
  traffic over another and to have some level of
  assurance that the traffic and service
  requirements can be satisfied.
• CoS does not create bandwidth it allows a
  customer and a carrier to more efficiently manage
  bandwidth according to application demands.
• Key CoS parameters to be managed /controlled are
  bandwidth, delay, jitter and packet loss

22
Why Class of Service is a concern
Non-Uniform Network Traffic Requires Traffic
Management
23
Why is CoS Needed?

• Application demands
• Important applications such as Voice over IP,
  video-conferencing, and mission critical ERP
  (SAP) have strict delay and guarantee
  requirements to perform properly.
• The Network is being used increasingly for
  delivery of mission-critical information that
  cannot tolerate unpredictable losses.
• Solution
• The enterprise network must be designed with the
  ability to differentiate traffic and enable
  different service levels for different users and
  applications.

24
Differentiated Classes of Service
25
Class of Service
Rules govern the inspection and handling of all
traffic flows
26
How can we achieve Quality of Service?
By applying several traffic mgmt techniques in
the customer site router and the carrier network
a quality solution is created.

• Traffic Shaping
• Queues the access traffic
• Fair Queuing
• Provides minimum bandwidth guarantee to each
  class. One queue used for each class
• Congestion mechanism
• In case of congestion, traffic of the lowest
  priority class is discarded first

• Classification
• Classification of packets into different lists is
  done in the customer router based on customer
  requirements
• Marking
• Controls the amount of traffic accepted for each
  class
• Policing
• Discards the excess traffic

27
Automatic Disaster Recovery
28
Automatic Disaster Recovery
CE
10.1.0.3
PE
PE
WEIGHT 1 Network away
DATACENTER
CE
CE
PE
10.1.0.1
10.1.0.4
PE
WEIGHT 2 Networks away
CE
CE
BACKUP DATACENTER
10.1.0.5
10.1.0.1
29
Automatic Disaster Recovery
Network Traffic is automatically redirected to
backup site
CE
10.1.0.3
PE
PE
WEIGHT unreachable
X
DATACENTER
CE
CE
PE
10.1.0.1
10.1.0.4
PE
WEIGHT 2 Networks away
CE
CE
BACKUP DATACENTER
10.1.0.5
10.1.0.1
Disaster Recovery Demo
30
Security on MPLS Networks
31
MPLS/VPN - Security Characteristics
MPLS offers Security Similar to Frame Relay

• VPN route uniqueness and segregation
• Route Distinguisher (RD) - Qualifies a VPNs IPV4
  routes
• Virtual Routing Forwarding Tables (VRF) Each
  VPNs routes stored in separate tables
• Route Targets (RT) Used to control iBGP
  distribution of a VPNs routes to its VRFs. (iBGP
  with multiprotocol and community attribute
  extensions)
• VPN traffic segregation
• IGP LSPs connect ingress/egress PEs
• MPLS label stack Inner label controls VPN
  connectivity Outer label controls switching
  packet across core ingress/egress PEs and
  eliminates need for core to carry VPN routes
• VPN membership controlled by ATT Provisioning
• Customer interfaces on PEs are assigned to that
  customers VRF
• Unique Route Distinguishers are assigned to
  customer routes
• Unique Route Targets are assigned to VRFs to
  control distribution of custs routes
• Customers are unaware of the RDs and RTs
  associated with their VPN

32
Review of Security based on RFC 4364, 2547

• Customer VPN interfaces and routes are hidden
  from all other VPNs and the Internet.
• VPN membership is determined solely by
  provisioning.
• Customers can not become a member of another VPN
  based on the type of traffic they send- VPN
  spoofing, or label spoofing are not possible
• Source address assurance (SAA) done on MIS
  connections.
• Management Access Control

33
Seven Pillars of Carrier-Grade Security in the
ATT MPLS Network

• Separation Separation of customer traffic,
  routing information, routing tables using MPLS
  Virtual Private Networks
• Automation Automated perimeter security tools
  protect MPLS core
• Monitoring traffic monitoring provides early
  warning of Internet viruses and worms
• Control 7 x 24 network operations
• Testing testing, audits and reviews to ensure
  security compliance
• Response proactive response teams trained in
  the details of MPLS
• Innovation ATT funds the most extensive MPLS
  security research in the world

34
ATT MPLS Services
- Private Network Transport (PNT)
35
ATT Private Network Transport Service
36
PNT IS
A private networking environment in a shared
infrastructure (IP Network) utilizing
Multiprotocol Label Switching (MPLS) technology
based on IETF Standard (RFC 2547) Simply stated
A network based IP VPN
37
ATT Global IP Network-US RegionYear-End 2004
Anchorage, AK
Seattle
Spokane
Portland
R
Portland
Manchester
Worcester
Minneapolis
R
St. Paul
Albany
Syracuse
Cambridge
Rochester
Glenview
R
Milwaukee
Framingham
Providence
Hartford
Madison
Grand Rapids
Wayne
Cheshire
Providence
Buffalo
Stamford
RollingMeadows
Bridgeport
Detroit
Harrisburg
Philadelphia
Des Moines
New Brunswick
NYC
White Plains
Cleveland
NYC Bdwy
Salt LakeCity
R
Pittsburgh
Plymouth
Oak Brook
Sacramento
Davenport
R
Cedar Knolls
Wash.DC
R
Akron
R
Rochelle Pk
San Francisco
South Bend
Rochelle Pk
R
Omaha
R
Secaucus
Chicago
Silver Springs
R
Columbus
Las Vegas
Newark
Denver
R
Dayton
Hamilton Square
New York City
Bohemia
Indianapolis
R
Ashburn
Freehold
Arlington
Kansas City
Baltimore
Cincinnati
Oakland
Camden, NJ
Norfolk
Florissant
R
ColoradoSprings
Richmond
Louisville
St Louis
San Jose
Redwood City
R
Raleigh
Springfield
Sherman Oaks
Nashville
Albuquerque
Greensboro
R
OklahomaCity
Charlotte
Tulsa
R
SanBernardino
Honolulu
Los Angeles
Anaheim
Little Rock
Gardena
Note Maps may not be used to predict service
provisioning. Node homing is determined at time
of order.
Memphis
Columbia
Birmingham
Phoenix
Norcross
San Diego
Dunwoody
Atlanta
Dallas
Ft. Worth
Jacksonville
New Orleans
Austin
Orlando
Houston
R
W. Palm Beach
Tampa
R
Ft. Lauderdale
Ojus
San Juan PR
Miami
38
MIS Managed Internet Service The Foundation
for MPLS PNT
Provides customers with managed, dedicated
connectivity to the public Internet, complemented
with a number of value added services. ATT
carries customers traffic to anywhere on the
Internet
LAN
Customer Premises
Customer router

• Description
• Dedicated port into ATTs OC48/OC192 Common
  Backbone - no single point of failure in the core
  backbone
• Designed with multiple rings for alternative
  routes between nodes
• Routers deployed in a redundant fashion (power,
  processors)
• Access speeds range 56kbps 2.5 Gbps (OC48)
• Access options PL, FR, ATM, T1, SONET Ring
• MIS with CPE option includes equipment lease,
  installation, monitoring, and maintenance also
  offer redundant configuration (Cold Standby
  CPE)

Local Access
ATT POP
Access router
ATT CBB (IP Backbone)
Public Internet
39
MPLS PNT Options
40
MIS Access Redundancy Options (MARO)

• Purchase multiple connections to the ATT IP
  backbone to help protect against potential
  failure in any single component of the MIS
  circuit. e.g., customers access router, IP
  backbone router, circuit link, etc.
• ATT will coordinate with the customer to
  implement their desired traffic flow over the two
  links and manage the necessary BGP4 routing
• Fast rerouting within the ATT network upon
  failure
• ATT will implement failover mechanisms to
  protect against failures of the MIS Managed
  Routers on customer premises
• ATT can provide network professional services to
  assist in traffic flow design, load sharing, BGP4
  design, etc. for MIS customers with or without
  Managed routers

Backbone Node Redundancy
Access Router Redundancy Automatic
Load Balancing
Backbone
Backbone
Backbone
Backbone
Customer site
Customer site
Customer site
41
VoIP on MPLS PNT

• Delivers convergence of Voice, Data and IP on one
  network
• Reduces cost associated with maintaining separate
  networks
• Streamlines operations and communications
• Utilizes existing access bandwidth for voice,
  data and fax
• Simplifies network management
• Delivers voice level call quality over an
  industry leading IP network
• Provides predictable voice cost for Enterprise
  wide calling

42
ATT VoIP Services

• VoPNT
• VoMIS
• BVoIP
• IP Centrex
• IP Local
• IP Toll Free

43
PNT SLAsBest-in-Class Performance
Sources Company Web Sites, Current Analysis,
Gartner, 2004
44
PNT Service Feature Summary

• Access Speeds
• Packet over SONET (POS) interface access for
  FT1,T1, T3, OC3, OC12 and OC48
• Addressing
• Allows both private (example10.x.x) and public
  addressing
• Routing protocol
• Supports both Static and BGP (depending on PNT
  model)
• Billing options
• Flat rate, Burstable, Hi-Cap Flex
• Internet Access
• MPLS PNT does not provide internet access on the
  same port Unilink Controlled Introduction
• Internet access provided by purchasing Internet
  ports. Will incur additional charges
• Management
• Supports both managed and unmanaged options
• Footprint
• Domestic US only (International coverage in 2006)

45
PNT Value Proposition

• Frame Relay / Private Line Replacement
• Any-to-any connectivity
• Class of Service Voice over IP Support
• Secure IP VPNs
• Automatic Disaster Recovery
• Cost Effective
• 10-40 cost savings vs traditional VPNs
• Merge Internet and private data and voice
  applications over one cost effective network

Guaranteed Full Port Speeds Footprint - CBB
(ATT Common Backbone) Native IP Network
Reliability - MARO (MIS Access Redundancy
Options) - Tier 1 IP network reliability and
performance Security - Same level of security
as FR/ATM (RFC2547) Scalability - Fully meshed
connectivity to all sites with single
connection into the VPN Simplicity - No tunnel
or PVC provisioning and maintenance
required Excellent Customer Support - 24X7
network support Billing options - Flat rate,
Burstable, Hi-Cap Flex
46
Customer Examples
47
Customer Example 1 Integrated Data /Voice VPN
Application Notes on next slide
48
Customer Example 1 Integrated Data /Voice VPN
Customer Business Education. This New Jersey
based Company is a leading provider of career
education and training, graduating more than
8,000 students for technical positions in a
variety of fields Original Networking Solution
The Schools were acquired either individually or
as a corporate group. In either case, each School
had its own small standalone solution for wide
area network and voice/phone services. There were
no networks or advanced technology systems.
Corporate HQ had an old Avaya Merlin Legend and
the schools had a hodgepodge of Internet access
and phone systems from various vendors. There was
a need for seamless connectivity and an advanced
voice over IP solution with CPE to support New
Solution Summary An integrated data and voice
networking solution supporting 23 company
campuses across the United States. ATT, with
Avaya and Office Solutions, Inc. (OSI) , are
providing Avaya IP Telephony over ATT MPLS-PNT
with Managed Routers and Class of Service.
Equipment will be located within an ATT Internet
Data Center (Secaucus, NJ IDC), as well on the
customers premise. The IDC is now their Data
Center, hosting all of this customers
mission-critical educational and business
applications. The ATT IDC houses an Avaya S8700
Media Server fully redundant and capable of
300,000 busy hour call completions. At Corp. HQ
and the Schools we are installing S8300 LSPs. All
are running on the S8700. Should it or the link
fail, the S8300s are Local Survivable Processors,
which become live and take over local support
until the link to the S8700 is restored. The
ATT solution also supports this customers
business continuity plan, helping to ensure
access to critical networking applications in the
event of a disaster.   ATT integrated
capabilities designed by Office Solutions Inc.,
an ATT Alliance Channel agent, will
intelligently distribute voice, data, and video
communications among this customers campuses.
This ATT Alliance Channel agent complemented and
enhanced ATT's capabilities with specialized
skills in network design and deployment. Also
included was web site design and development,
communications equipment expertise and
management, application integration, and customer
training
49
Customer Example 2 Domestic VOIP

• US Electronics Manufacturer
• 7 locations. All domestic
• Existing FR w/ another IXC
• Proposed PNT w/ COS
• MARO proposed at HQ for increased reliability
• Internet access provided via HQ

50
Customer Example 3 - Intnl WAN

• Industry leading supplier of electronic component
  designs design services

• Domestic Sites
• 25 locations
• Applications include file transfer, e-mail,
  internet access, etc
• PNT w/ COS installed service at each site
• Dual active-active connections at hub
• Internet access provided through hub locations
• Access to US domestic sites via customer hub
  location

51
Customer Example 3 - Intnl WAN

• Industry leading supplier of electronic component
  designs design services

• Intnl Sites
• 20 locations
• Applications include file transfer, e-mail,
  internet access, etc
• IPFR Intnl FR. Dual services at some sites.
• Access to US domestic sites via customer hub
  location
• Internet access provided through regional hubs

52
Customer Example 4 - Domestic WAN IPT

• Civil Engineering Firm
• 18 domestic sites
• Applications include inter-corporate voice,
  Oracle database e-mail
• PNT MIS services
• Avaya IP PBX and host and back-up sites. IP
  phones at remote sites
• Internet access provided through regional hubs

53
PNT - Summary
ATTs Private Network Transport (PNT) is an MPLS
based service that offers customers performance
and administrative improvements today as well as
setting the stage for deployment of enhanced
services (VOIP) in the future.

• Frame Relay / Private Line Replacement
• Any-to-any connectivity
• Class of Service Voice over IP Support
• Secure IP VPNs
• Automatic Disaster Recovery
• Cost Effective
• 10-40 cost savings vs FR
• Merge Internet, private data and voice
  applications over one network

54
Thank You
55
Reference Material
56

ATT Accolades
ATT ranked highest on Gartners US NSP Magic
Quadrant with best Ability to Execute and
Completeness of Vision

ATT IP backbone is the largest US IP backbone in
traffic volume
ATT IP backbone is the best performing IP
backbone in the industry
A clear leader of managed data networking
provider in large enterprise market in a
enterprise survey
Data market leader in performance and presence by
META Group
First and ONLY carrier with both a coast to coast
OC-192 AND more than 1.8M sq. ft. of hosting
capacity
Handles 2,700 trillion bytes of data on an
average business day, equivalent to the printed
contents of the Library of Congress, every 11
minutes
Operates with 99.999 percent network reliability
for ATM and Frame Relay,as well as 99.99 percent
reliability for IP services
57
ATT Enterprise Networking Scorecard

ATT is the best in the VPN business ,
demonstrating a future-proof global VPN
architecture,
IDC rates ATT top of all US IP VPN managed
carriers for market share, performance, and
leadership

ATT awarded top ratings of all IP VPN carriers
for global reach and leadership in IP VPN
functionality
ATT IP VPNs rated Best in Class by Telemark
based on survey of multi-national corporations