Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Chng 5 -

Thc thi Inter-VLAN Routing

Mt Switch vi nhiu VLAN i hi mt phng php vn chuyn lu lng lp 3 gia cc VLAN. Module ny m t qu trnh v phng php nh tuyn giao thng t VLAN ti VLAN. VLAN c th cung cp linter-VLAN routing. Khi nh tuyn xy ra vi mt switch Catalyst a lp, Cisco Express Forwarding (CEF) c trin khai to iu kin cho lp 3 chuyn tip thng qua bng da trn phn cng, cung cp mt qu trnh chuyn tip gi d liu ti u. Trn mt switch a lp, nh tuyn c kch hot gia cc VLAN thng qua cu hnh ca giao din chuyn i o (SVIs) lin kt vi cc VLAN khc nhau trn switch a lp. 5.1 M t Routing gia cc VLAN Inter-VLAN Routing s dng Router ngoi

5.1.1

Nu mt switch h tr nhiu VLAN nhng khng c kh nng Layer 3 nh tuyn cc gi tin gia cc VLAN , switch phi c kt ni vi mt router bn ngoi chuyn i. Cu hnh ny c thit lp c hiu qu nht bng cch cung cp mt lin kt trunk duy nht gia switch v router m c th mang lu lng truy cp ca nhiu VLAN v trong , cc lu lng y ln lt c th c nh tuyn bi router. Lin kt vt l n ny phi l Fast Ethernet hoc cao hn h tr Inter-Switch Link (ISL), nhng 802.1Q c h tr trn cng 10Mbps Ethernet router.

Hnh 5.1.1-1: ng trunk gia switch v router

Trong hnh 5. 1. 1-1, nhng client cn thit lp nhng phin lm vic vi mt server thuc VLAn 20, cn nhng lu lng c nh tuyn gia cc VLAN. Bng bn di s ch r nhng hnh ng cn thit cho lu lng c nh tuyn gia cc VLAN s dng mng bn trong Router.
102

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Bc 1 2 3 4

Hnh ng Router nhn nhng gi tin t VLAN 10 trn subinterface thuc VLAN tng ng ca n. Router thc hin tin trnh Lp 3 da trn a ch mng ch. Do mng ch c kt hp vi VLAN c truy nhp qua ng trunk, router t nh danh VLAN tng ng vo tiu lp 2. Sau router chuyn gi tin ra subinterface thuc VLAN 20 tng ng.
routing

Bng 5.1.1-1: Cc bc qu trnh chuyn tip gi tin trn router vi inter-vlan

Vi inter-VLAN routing, router nhn frame t switch vi gi tin sut pht t mt VLAN c tag (v d VLAN10). N lin kt cc frame vi cc subinterface thch hp v sau gii m ni dung ca frame (phn IP packet). Router sau thc hin chc nng ca Layer 3 da trn a ch mng ch c trong gi tin IP xc nh subinterface cn chuyn tip gi IP. Cc IP packet by gi c ng gi thnh frame theo chun dot-1Q (hoc ISL) nhn dng VLAN (v d VLAN20) ca subinterface chuyn tip v truyn i trn ng trunk vo switch. Hnh 5. 1. 1-1, Router c th nhn gi tin trn mt VLAN v chuyn n cc VLAN khc. thc hin chc nng inter-VLAN routing, router phi bit lm th no kt ni ti c tt c cc VLAN ang c kt ni. Router phi c mt kt ni logical ring bit (subinterface) cho mi VLAN v ISL hoc 802.1Q trunking phi c kch hot trn giao din vt l gia router v switch. Bng nh tuyn lit k tt c cc mng con lin kt vi cc VLAN c cu hnh trn subinterface ca router l kt ni trc tip. Router phi hc cc tuyn ng n cc mng m khng phi l cu hnh trn giao din kt ni trc tip thng qua cc giao thc nh tuyn ng hoc cc ng nh tuyn tnh. C nhng u im v nhc im ca inter-VLAN routing trn mt router bn ngoi. Nhng li th nh sau: Thc hin rt n gin. Chc nng Layer 3 khng cn thit trn switch. Router cung cp thng tin lin lc gia cc VLAN. Nhng kh khn nh sau:

103

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Router l mt im duy nht rt d xy ra li. Cc ng lu lng gia cc switch v router c th b tc nghn. tr cao hn trn mt switch Layer 3. 5.1.2 Gii thch Multilayer Switching

Theo cch truyn thng, mt switch quyt nh chuyn tip bng cch nhn vo header lp 2, trong khi router quyt nh chuyn tip bng cch nhn vo header lp 3. Mt multilayer switch kt hp cc chc nng ca switch v router thnh mt thit b, m khi cho php thit b s chuyn lu lng khi ngun v ch n l trong cng mt VLAN v nh tuyn lu lng khi ngun v ch n nm trong cc VLAN khc nhau (c ngha l, khc nhau mng con).

Hnh 5.1.2-1: M hnh m t Multilayer Switching

Hnh trn cho thy, d liu gia PC A v PC B c chuyn tip da trn Lp 2, cn d liu gia PC B v PC C c chuyn tip da trn Lp 3. Cc thit b Multilayer switch chuyn tip cc frame v cc gi tin tc dy bng cch s dng phn cng application-specific integrated circuit (ASIC). C th l cc thnh phn lp 2 v lp 3 nh bng nh tuyn hoc Access control lists (ACL), c lu tr vo phn cng. Cc bng c lu trong contentaddressable memory (CAM) v ternary content-addressable memory (TCAM).

104

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Hnh 5.1.2-2: Hnh m t c ch chuyn tip Lp 2

Nhn vo hnh trn ta thy,Lp 2 chuyn tip trong phn cng da trn a ch MAC ch. Cc Layer 2 switch hc v ghi li a ch MAC ngun t tt c cc frame m n nhn c. Bng a ch MAC lit k cc a ch MAC kt hp vi cc VLAN lin quan v cc cng giao din. Khi mt frame c nhn vo mt cn giao din, switch xc nh cc frame ngun xut pht t VLAN no, tm kim tt c cc cng giao din thuc v VLAN m gn trong MAC ch, v sau chuyn tip frame ra cng giao din thch hp. Bng di y s gii thch r hn Switch lp 2 s chuyn tip gi tin nh th no Bc 1 2 3 4 5 6 Hnh ng C cu lp 2 nhn mt frame. C cu lp 2 thc hin tra cu ACL u vo. C cu tm lp 2 tm a ch MAC ch v quyt nh frame c chuyn tip lp 2 hay lp 3. Nu frame c chuyn tip lp 2, c cu chuyn tip lp 2 thc hin tra cu ACL bo v u ra. C cu chuyn tip lp 2 thc hin tra cu QoS u ra. C cu chuyn tip lp 2 chuyn tip gi tin ra ngoi.

Bng 5.1.2-1 : Gii thch r hn Switch lp 2 s chuyn tip gi tin nh th no

105

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Hnh 5.1.2-3: Hnh m t c ch chuyn tip Lp 3

Sau y l c ch chuyn tip gi tin Lp 3 Lp 3 thc hin chuyn tip l da trn a ch IP ch. Layer 3 chuyn tip ch xy ra khi mt gi tin c chuyn t mt ngun trong mt mng con n mt ch n trong mng con khc. Khi mt multilayer switch (MLS) thy a ch ca MAC ca chnh n trong tiu 2 lp, n nhn ra rng gi tin l gi cho chnh n hoc l c nh tuyn. Nu gi d liu khng gi cho MLS, a ch IP ch c so snh vi bng nh tuyn Layer 3 v s nh tuyn theo ng nh tuyn no c s bit trng di nht. Ngoi ra, router ACL dng kim tra s c thc hin. Trong trng hp ny, tiu frame cn phi c vit li vi a ch MAC ngun v a ch MAC ch mi. V bng sau y s gii thch r hn c ch chuyn tip gi tin Lp 3: Bc 1 2 3 4 5 6 7 8 9 Hnh ng C cu lp 2 nhn mt frame. C cu lp 2 thc hin tra cu ACL u vo. C cu tra cu Lp 2 nhn din a ch MAC ca MLS v t quyt nh frame s c chuyn tip Lp 3. Nu cn, vic kim tra ACL u vo trn router c thc hin. a ch IP ch c so snh vi bng chuyn tip Lp 3 c trng khp nhiu nht. Nu cn, vic kim tra ACL u ra thc hin. C cu chuyn tip Lp 2 thc hin kim tra QoS u ra. Tiu Lp 2 v 3 c ghi li. C cu chuyn tip Lp 2 chuyn tip gi tin ra ngoi
Bng 5.1.2-2 : gii thch r hn c ch chuyn tip gi tin Lp 3

106

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

5.1.3

Frame Rewrite

Hnh 5.1.3-1: IP Unicast Frame and Packet rewrite

Hnh trn cho thy cch frame v tiu gi tin s c thay i nu CEF c s dng chuyn frame i. Khi frame c nhn v trn cng giao din, checksum trailer s c tnh ton u tin xc nhn frame c chuyn n chnh xc. Frame b loi b nu tnh ton khng chnh xc. Tip theo l ni dung frame (phn IP Packet) c ly ra. Trng Checksum trong IP header s c kim tra xc minh rng n chnh xc. Mt khi gi tin c x l, cc gi tin IP unicast c vit li trn cng giao din u ra nh sau: a ch MAC ngun thay i t a ch MAC gi n thnh a ch MAC ca router. a ch MAC ch thay i t a ch MAC ca router thnh a ch MAC ca next-hop. TTL gim i mt v kt qu l trng checksum trong tiu IP c tnh ton li. Trng checksum trong frame c tnh ton li. Cc bng: Routing, Switching, ACL, v QoS c lu tr trong bng b nh tc cao v th cc quyt nh trong vic chuyn tip v nhng hn ch c th c thc hin trong phn cng vi tc cao. Cisco Catalyst switch to ra v s dng hai kin trc bng chnh sau y: CAM table: bng chnh c s dng ra quyt nh cho chuyn tip trong Layer 2. Bng ny c xy dng bng cch ghi a ch ngun v

107

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

cng vo ca tt c cc frame. Khi mt frame chuyn n m c mt a ch MAC ch trng vi 1 a ch trong bng CAM, frame ch chuyn tip ra cng lin kt vi a ch MAC c th . TCAM table: lu tr ACL, QoS, v cc thng tin khc gn lin vi c ch x l ca lp trn.

Hnh 5.1.3-2: C ch tra cu bng CAM

Tra cu trong bng c thc hin vi thut ton tm kim hiu qu. Mt "kha" c to ra so snh frame vi ni dung bng. V d, a ch ch MAC v VLAN ID (VID) ca mt frame thit lp mt kha cho vic tra cu trong bng Layer 2. Kha ny l da vo mt thut ton bm, khi s to ra mt con tr vo bng. H thng s dng con tr truy cp vo mt khu vc c th nh hn ca bng m khng cn tm kim trn ton b bng. Trong mt bng 2 lp, tt c cc bit ca thng tin l quan trng chuyn tip frame (v d, VLAN, a ch MAC ch, v cc loi giao thc im n). . V d, mt ACL c th yu cu phi trng trn 24 bit u tin ca mt a ch IP, nhng c th 8 bit cui l thng tin khng ng quan tm. C th bn trong switch dng cao, TCAM l mt phn ca b nh c thit k tc cao, tra cu thng tin ca lp 3 v lp 4. Trong TCAM, n cung cp tt c thng tin chuyn tip ca lp 2 v lp 3 cho frame, bao gm c CAM v cc thng tin ACL.

108

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Hnh 5.1.3-3: Hin th thng tin ACL lu tr trong bng TCAM

Cc mc trong bng TCAM bao gm cc loi sau y ca khu vc: Longest match region: Mi khu vc ph hp nht bao gm cc nhm cc entry a ch Lp 3 ("buckets") t chc sp xp gim dn theo chiu di mt n. Tt c cc entry trong mt bucket chia s gi tr cng mt mt n v kch thc chnh. Cc bucket c th thay i kch thc ca chng t ng bng cch mn entry a ch t bucket ln cn. Mc d kch thc ca ton b vng giao thc l c nh, bn c th cu hnh li n. Cc cu hnh li kch thc ca vng giao thc c hiu lc ch sau khi khi ng li h thng. First-match region(vng ph hp u tin): Khu vc ph hp u tin bao gm cc entry ACL. Dng tra cu sau khi khp vi entry u tin. Kim tra bit trung ca bng TCAM kt hp da trn ba gi tr: 0, 1, hoc X (trong X l bt k trong hai s trn). Cu trc b nh c chia thnh mt lot cc m hnh v mt n. Mt n c chia s gia mt s lng c th ca m hnh v c s dng nh l cc k hiu trong mt s lnh vc ni dung. Hai mc sau y ACL c tham chiu trong hnh, trong cho thy lm th no gi tr ca chng c lu tr trong TCAM: access-list 101 permit ip host 10. 1. 1. 1 any access-list 101 deny ip 10. 1. 1. 0 0. 0. 0. 255 any

109

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

5.2

Thit lp Routing gia cc VLAN M t Layer 3 SVI

5.2.1

Hnh 5.2.1-1: Cc SVI

Mt SVI (Switch Virtual Interface) l mt cng giao din o thuc Layer 3 c th c cu hnh cho bt k VLAN m tn ti trn mt switch Layer 3. Khi m khng c giao din vt l cho cc VLAN, nhng n c th chp nhn cc thng s cu hnh c p dng cho cc cng giao din lp 3 ca router. SVI cho mt VLAN cung cp cc x l thuc lp 3 cho cc gi d liu t tt c cc cng switch lin kt vi VLAN . Ch c mt SVI c lin kt vi mt VLAN. Cu hnh mt SVI cho mt VLAN v nhng l do sau y: Cung cp mt default gateway cho mt VLAN sao cho lu lng c th c nh tuyn gia cc VLAN. Cung cp d phng nu b yu cu non-routable protocols (Cc giao thc khng h tr cho routing). Cung cp kt ni n switch thng qua Layer 3 IP. H tr giao thc nh tuyn v bridging configurations (kt ni 2 protocol lp 2 khc nhau). Theo mc nh, mt SVI c to ra cho cc VLAN mc nh (VLAN1) cho php qun l switch t xa. Cc SVI c to ra ln u tin trong ch cu hnh interface VLAN c nhp vo cho mt VLA SVI ring. VLAN tng ng vi tag VLAN kt hp

110

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

vi khung d liu trn mt ng trunk Ethernet hoc VLAN ID (VID) c cu hnh cho mt access port. Mt a ch IP c phn cng trong ch cu hnh interface cho mi SVI VLAN l ng i ca v trn l local VLAN. 5.2.2 M t Routed Ports trn mt Multilayer Switch

Hnh 5.2.2-1: Hnh cho thy Route Port

Mt routed switch port l mt cng vt l trn mt multilayer switch c kh nng x l cc packet lp 3. Mt routed port khng phi l lin kt vi mt VLAN c th, tng phn vi mt cng truy cp hoc SVI. Cc chc nng switch port b loi b khi cng giao din. Mt routed port hot ng nh mt cng giao din ca router thng thng, ngoi tr vic n khng h tr subinterfaces VLAN. Routed switch port c th c cu hnh bng cch s dng hu ht cc lnh p dng cho mt cng giao din vt l trn router, bao gm c vic gn mt a ch IP v cu hnh giao thc nh tuyn ca lp 3. Mt routed switch port l standalone port (port c lp) m khng lin kt vi bt k mt VLAN no, trong khi mt SVI l mt cng o c lin kt vi mt VLAN. SVIs thng cung cp cc dch v Layer 3 cho cc thit b kt ni vi cc cng ca switch ni SVI c cu hnh. Routed switch port cung cp mt ng dn lp 3 vo switch cho mt s thit b trn mt subnet c th, tt c u c truy cp t mt cng vt l ca switch. S lng cc routed port v SVIs c th c cu hnh trn switch l khng gii hn bi phn mm. Tuy nhin, mi tng quan gia cc cng giao din v tnh nng khc cu hnh trn switch c th qu ti CPU v hn ch v phn cng.

111

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

5.2.3

Cu hnh ca Routed Ports trn mt Multilayer Switch

Routed port thng c cu hnh bng cch loi b kh nng Layer 2 switch ca port switch. Trn hu ht cc switch, mc nh cc cng l cng hot ng lp 2. Trn mt vi loi switch, th mc nh cc cng l hot ng lp 3. Lp hot ng m ti cc chc nng cng xc nh bi cc lnh c cu hnh trn cng.

Hnh 5.2.3-1: Cu lnh cu hnh routed port

Mt routed port c nhng c im v chc nng sau y: Cng vt l ca switch c kh nng hot ng lp 3. Khng lin kt vi bt k VLAN. Phc v nh l default gateway cho cc thit b c u ra l switch port. Chc nng Layer 2 port phi c loi b trc khi n c th c cu hnh 5.3 Trin khai CEF-Based Multilayer Switching Explaining Layer 3 Switch Processing

5.3.1

Switch Layer 3 l loi thit b nh tuyn vi hiu sut hot ng cao c ti u ha cho mng campus v mng intranet, cung cp c hai dng: wire-speed Ethernet routing v chuyn mch. Mt switch layer 3 switch thc hin ba chc nng chnh sau y: Chuyn gi tin. X l nh tuyn. Dch v mng thng minh.

112

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

So vi cc router khc, switch layer 3 thc hin qu trnh nh tuyn cc gi d liu nhanh hn bng cch s dng phn cng ASIC (application-specific integrated circuit) thay v s dng c ch microprocessor-based. Switch layer 3 cng ci thin hiu sut mng vi hai chc nng: route processing v intelligent network services. Switch layer 3 s dng kin trc phn tn trong phn iu khin v phn d liu tng i c lp vi nhau. Phn iu khin, chng hn nh cc giao thc nh tuyn, chy trn route processing, trong khi hu ht phn d liu c chuyn tip bi cc module giao din Ethernet v cp quang.

Hnh 5.3.1-1 : M hnh phn iu khin v d liu trong routing

Mi module giao din bao gm mt b x l m thc hin vic x l tt c chuyn tip gi tin. Chc nng ca phn iu khin gia cc giao thc nh tuyn v phn d liu vi nhim v chnh sau y: Qun l d liu bn trong v cc mch iu khin cho vic vn chuyn tip gi packet v kim sot cc chc nng. Tch thng tin nh tuyn v thng tin lin quan n iu khin chuyn tip gi tin ra t lp 2 v lp 3 v cc giao thc nh tuyn v d liu cu hnh, v sau chuyn thng tin cc module giao din ti iu khin ng d liu. Thu thp thng tin ng d liu, chng hn nh s liu thng k lu lng truy cp, t module giao din vi b x l nh tuyn Nm gi cc gi d liu nht nh c gi t cng Ethernet cho cc b x l nh tuyn. Switch layer 3 c th hot ng ti hai b phn khc nhau trn switch:

113

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Centralized (phn mch trung tm): Cc quyt nh switching c thc hin trn b x l nh tuyn bi mt bng chuyn tip trung tm, thng thng iu khin bi mt ASIC. Distributed (phn module gn thm): Cc quyt nh chuyn mch c thc hin trn mt cng hay line-card level (module gn thm). Bng cached c phn phi v ng b cc thnh phn phn cng khc nhau v th vic x l c phn phi trn ton b switch layer 3. Switch layer 3 s dng mt trong hai phng thc ny, ty thuc vo phn cng: Route caching: Cn c bit n nh l flow-based hay l demand-based switching, mt Layer 3 route cache c xy dng trong phn cng, k t khi switch nhn bit lu lng i vo switch. Topology-based: Thng tin t bng nh tuyn c s dng c chuyn n route cache. The populated route cache c gi l forwarding information base (FIB). CEF xy dng cc FIB. 5.3.2 Gii thch CEF-Multilayer Switch

C ch CEF lu gi thng tin nh tuyn trong bng FIB v a ch next-hop Lp 2 trong bng Adjacency.
Vng iu khin To bng FIB v Adiacency bng phn mm Vng d liu Chuyn tip lung d liu IP-unicast bng phn cng

Hnh 5.3.2-1: M hnh CEF

Thit b Cisco Layer 3 c th s dng nhiu phng php chuyn i cc gi tin t cng ny sang cng khc. Phng php c bn nht ca chuyn

114

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

mch gi gia cc cng giao din c gi l process switching. Process switching di chuyn cc gi tin gia cc cng giao din trn scheduled basis, da trn thng tin trong bng nh tuyn v Address Resolution Protocol (ARP) cache. Khi gi tin n, chng c t trong mt hng i ch x l tip. Khi b lp lch khi ng , cng giao din u ra c xc nh, v cc gi tin c chuyn qua. Ch xc nh thi gian tr. i vi tc ca qu trnh switching, chin lc tn ti chuyn gi tin theo yu cu khi chn ng n v c lu gi li cc thng tin cn thit a ra quyt nh chuyn tip gi tin. CEF s dng nhng chin lc ny chuyn tip cc gi d liu n ch mt cch thun li nht. N lu tr thng tin c to ra bi routing engine trn lp 3. CEF lu gi thng tin nh tuyn trong mt bng (FIB), v lu gi a ch k tip thuc lp 2 cho tt c cc mc trong bng FIB trong bng Adjacency. Bi v CEF duy tr nhiu bng phc v cho thng tin chuyn tip, v cc ng truyn song song c th tn ti v cho php CEF s dng cn bng ti cho mi gi tin. CEF hot ng mt trong hai ch : Central CEF (B x l trung tm): Bng FIB v bng adjacency c tr trn b x l nh tuyn, v b x l nh tuyn thc hin thao tc chuyn mch nhanh (express forwarding). S dng ch ny khi cc line card (module gn thm) khng c sn cho cc chuyn mch CEF, hoc khi cc tnh nng khng tng thch vi phn Disributed CEF (phn bo mch module). Distributed CEF (dCEF): ch h tr trn thit b switch Cisco Catalyst 6500. Line card duy tr cc bn sao ging ht ca bng FIB v bng adjacency. Line cards t c th thc hin chuyn tip nhanh, lm gim cc hot ng switching ca b vi x l chnh. Distributed CEF s dng c ch interprocess communicationa (IPC) m bo rng cc bng FIB v bng adjacency c ng b trn b x l nh tuyn v cc line card. C mt s loi Cisco multilayer switch h tr CEF: Catalyst 2970 Catalyst 3550 Catalyst 3. 560

115

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Catalyst 3750 Catalyst 4. 500 Catalyst 4. 948 Catalyst 6. 500 Cisco Catalyst 6. 500 l mt dng modular switch trong Multilayer Switch Feature Card (MSFC) chu trch nhim cho cc hot ng iu khin, v Policy Feature Card (PFC) chu trch nhim v hot ng d liu. 5.3.3 nh ngha tin trnh chuyn tip gi tin trong Multilayer

Switch CEF chia mc iu khin phn cng, t mc s phn cng i vi d liu v switching. ASIC chia mc iu khin v mc d liu thnh 2 phn ring bit,qua t c mc thng lng d liu cao hn. Mc iu khin c trch nhim xy dng bng FIB v bng adjacency bng phn mm. Mc d liu c trch nhim chuyn tip lu lng unicast IP bng vic s dng phn cng. Khi lu lng khng th c x l trong phn cng, th chng phi c x l trong phn mm ca Layer 3 Engine, do s khng c li ch ca vic chuyn tip gi tin da trn phn cng. Mt s loi gi tin khc nhau c th buc phi s dng Layer 3 Engine x l chng. Mt s v d ca cc gi tin IP l ngoi l sau y:

116

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Mt vi gi tin IP khng th thc hin phn cng Nu mt gi tin IP khng thc hin phn cng, n s c thc hin bi c cu Lp 3.

Hnh 5.3.3-1: Qu trnh hot ng CEF

Gi tin IP s dng trng option trong IP header. (Cc gi tin s dng trng option trong TCP header c switched trong phn cng bi v chng khng nh hng n quyt nh chuyn tip. ) Cc gi tin ht hn bin m Time To Live (TTL). Cc gi tin c chuyn tip n mt tunnel interface. Gi tin n vi cc loi ng gi khng c h tr. Cc gi tin c nh tuyn n mt giao din vi cc loi ng gi khng c h tr. Cc gi tin vt qu n v Maximum Transmission Unit (MTU) ca mt giao din u ra v phi c phn mnh. Bng CEF c thit lp v s dng nh sau:

117

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

1. Gi tin Lp 3 bt u tra cu bng TCAM 2. Ci chnh xc nht tr v cho Adjacency vi thng tin c sa li. 3. Gi tin c sa li cho mi thng tin Adjacency v chuyn i.

Hnh 5.3.3-2: Thit lp v s dng bng CEF

FIB c ngun gc t bng nh tuyn v c b tr sao cho thng lng ln mc ti a phc v cho vic tra cu thng tin. Bng adjacency c ngun gc t bng ARP, v n cha thng tin lp 2 cn vit li (MAC) cho ch n tip theo. CEF IP destination prefixe c lu tr trong bng TCAM, t c th nht n t nht c th nht cho cc mc bn trong. Khi bng CEF TCAM y, a wildcard entry redirects frames to the Layer 3 engine. Khi bng k y, a CEF TCAM table entry points to the Layer 3 engine to redirect the adjacency. Vic tra cu FIB c da trn a ch ch lp 3 (c bit trng di nht). Bng FIB c cp nht khi sau xy ra: Cc mc ARP ca a ch ch k tip b thay i, ht thi gian, hoc b loi b.

118

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Bng nh tuyn thay i cc subnet. Bng nh tuyn n cc ch k tip b thay i. y l nhng bc c bn cho thit lp bng adjacency: Bc 1: Thit b lp 3 truy vn mt a ch MAC vt l. Bc 2: Switch la chn mt a ch MAC t mt chui a ch MAC thuc chassis v gn n vo thit b lp 3. a ch MAC ny c gn bi cc c ch lp 3 v c nh vo a ch cho tt c VLAN v c s dng bi switch khi to gi tin lp 3 cho vic tra cu. Bc 3: Switch to mt dng CEF wildcard, loi b cc adiacency(dng cho vic iu khin tra cu bng CEF) Bc 4: Thit b lp 3 thng bo cng giao din no ca n c tham gia trong MLS (a ch MAC v lin kt VLAN). Switch to ra (MAC, VLAN) ni dung trong bng CAM lp 2 cho thit b lp 3. Bc 5: Thit b lp 3 thng bo switch v cc tnh nng cho cng giao din khi tham gia MLS. Bc 6: Thit b lp 3 thng bo chuyn v tt c cc mc CEF lin quan n giao din ca n v mng kt ni trc tip. Switch khi to cc mc CEF v tr chng n thit b lp 3 chuyn hng n bng adjacencies. Ch c vi gi tin u tin cc gi tin cho mt kt ni s dng cc c cu Lp 3 v th cc c cu Lp 3 c th s dng ARP xc nh v tr host. Mt b lc adjacency c ci t cc gi tin tip theo n host c chuyn vo phn cng cho n khi nhn c tr li ARP. Cc b lc Adjacency c loi b khi mt p ng ARP c nhn (v mt Adjacency hon ton khc c ci t cho host). Switch loi b cc b lc Adjacency nu khng c p ng ARP c nhn trong vng 2 giy cho php thm cc gi tin qua vic thit lp li ARP. iu ny p ng c cu Lp 3 t nhng tin trnh ARP tha hoc t cc ARP loi b tn cng dch v. Mt v d v ARP throttling, bao gm cc bc sau:

119

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Hnh 5.3.3-3: M t ARP throttling

Bc 1: Host A gi mt gi tin n host B. Bc 2: Switch chuyn gi tin n c ch lp 3 da trn cc entry glean trong FIB. Cc entry glean ln cn ch ra next hop c th phi c kt ni trc tip, nhng khng c header MAC vit li thng tin c th. Bc 3: Thit b lp 3 gi mt yu cu ARP cho B v ci t cho B l drop adjacency. At this point, subsequent frames destined for host B from host A are dropped (ARP throttling). Bc 4: Host B tr li yu cu ARP. Thit b lp 3 ci t mt adjacency cho B v loi b drop adjacency. Bng adjacency c to ra khi cc bng trao i thng tin. Mi ln mt ni dung trong bng adjacency c to ra (bng cc s dng giao thc ARP) mt giao thc lp data link cho im gn k c tnh ton trc v c lu tr trong bng adjacency. Sau khi mt ng nh tuyn c xc nh, n ch n im n tip theo v dng tng ng trong bng adjacency. ng nh tuyn ny sau c s dng ng gi trong CEF chuyn i cc gi tin. Mt ng nh tuyn c th c nhiu ng n mt ch, ging nh khi mt router c cu hnh cho cn bng ti ng thi v d phng. i vi mi ng, mt con tr c thm vo trong adjacency tng ng vi cng giao din tip theo cho ng . C ch ny c s dng cn bng ti trn mt vi ng.

120

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Ngoi ra, cc bng adjacency lin kt vi cng giao din k tip (host-route adjacencies), mt s loi bng adjacency khc c s dng gii quyt vic switching. Khi ng mng c xc nh, cc ng mng i hi phi c x l ngoi l c lu tr vi mt trong cc bng adjacency c bit sau y: Null adjacency: Cc gi tin c gi n cng giao din null0 s b loi b. iu ny c th c s dng nh dng qun l truy cp hiu qu. Glean adjacency: Khi mt b nh tuyn c kt ni trc tip n mt s my, bng FIB trn router duy tr mt ng mng cho cc mng con hn l cho cc a ch my con ring l. ng mng con tr ti mt bng glean adjacency. Khi cc gi tin cn phi c chuyn tip n mt my ch c th, c s d liu ca bng adjacency c gn vo ng mng c th. Punt adjacency: Tnh nng yu cu x l c bit, hoc cc tnh nng m cha c h tr kt hp vi CEF switching ng i, c chuyn tip n cc lp switching tip theo x l. V d, gi tin c th yu cu CPU x l. Cc tnh nng khng c h tr c chuyn tip n cp switching tip theo cao hn. Discard adjacency: Cc gi tin b b i. Drop adjacency: Cc gi tin b loi b, nhng ng mng c kim tra. Khi mt header ca lp data link c gn vo cc gi tin, FIB yu cu header c gn vo tr n mt bng adjacency tng ng vi a ch ch tip theo. Nu mt bng adjacency c to ra bi FIB v khng pht hin thng qua mt c ch ARP, thng tin a ch lp 2 l khng bit, v bng adjacency l cha y . Gi tin ny c chuyn tip n b x l nh tuyn, ni mt yu cu ARP s c s dng tm thng tin lp 2 v hon tt bng adjacency. y l nhng bc m s xy ra khi bn s dng CEF chuyn tip frame gia cc my A v my B trn VLAN khc nhau:

121

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Hnh 5.3.3-4: Chuyn tip frame bng CEF

Bc 1: Host A gi mt gi tin n host B. Switch nhn ra frame ny l mt gi tin lp 3 v a ch MAC ch (MAC-M) trng vi a ch MAC ca thit b lp 3 (Multilayer Switch). Bc 2: Switch thc hin mt tra cu CEF da trn a ch IP ch (IP-B). Cc gi tin truy cp cc dng ni dung trong bng CEF cho kt ni mng trc tip (VLAN20) v c chuyn n thit b lp 3 bng cch s dng bng glean adjacency. Bc 3: Thit b lp 3 ci t mt ARP throttling adjacency trong switch cho a ch IP ca my B. Bc 4: Thit b lp 3 gi ARP request cho my B trong VLAN20. Bc 5: Host B gi limt ARP reponse cho thit b lp 3. Bc 6: Thit b lp 3 ci t bng adjacency c chnh sa ni dung trong switch (loi b ARP throttling trong bng adjacency). Bc 7: Switch chuyn tip gi tin n host B. Bc 8: Switch nhn c mt gi tin tip theo cho my B (IP-B). Bc 9: Switch thc hin mt tra cu lp 3 v tm mt mc trong CEF cho my B. Cc mc tr ti bng adjacency vi viec thng tin ca my B c vit li. Bc 10: Switch ghi li trn tng gi d liu cc thng tin trong bng adjacency v chuyn tip cc gi tin n host B trn VLAN20.

122

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

5.3.4

M t nhng dng li thng thng CEF v gii php

CEF l cc thc nhanh nht ca chuyn mch gi lp 3 trong phn cng. Cc bng CEF c lu trong phn cng xut pht t cc thng tin thu thp bi b x l nh tuyn. C hai bc chnh trong x l s c ca vic hoat ng CEF: m bo rng cc hot ng lp 3 trn b vi x l nh tuyn hot ng bnh thng bng switch c cp nhp vi thng tin chnh xc v y . Xc minh thng tin t b x l nh tuyn c c b xung chnh xc vo trong bng FIB v bng k, v ang c s dng bi CEF chuyn tip gi tin lp 3 trong phn cng. Khc phc s c ca CEF l xc minh rng cc gi c thc s nhn c y li ch ca chuyn mch CEF, khng b y xung mt phng thc chuyn gi tin chm hn hoc chuyn i phng php x l. Cisco m t thi gian chuyn xung l hnh ng ca vic gi mt gi tin xung cp chuyn mnh tip theo nhng nhanh hn. Danh sch sau y xc nh th t u tin cc phng php chuyn mch Cisco IOS Switch, t nhanh nht n chm nht:

-Nhng phng thc chuyn tip(CEF, DCEF) thch hp c khng? -Bng CEF c hon chnh v chnh xc khng?

Hnh 5.3.4-1: Mc nh hng ca cc phng php chuyn mch

Distributed CEF CEF Fast switching Process Switching

123

Gio trnh kha hc BCMSN

Chng 5 Thc thi Inter-VLAN Routing

Mt s thay i xy ra khi mt phng php chuyn mch hay dng khng to mt ng dn hp l, hoc, trong CEF l mt mt bng adjacency hp l. Nu qu trnh tra cu CEF khng tm thy mt dng hp l trong bng FIB, CEF ci t mt bng punt adjacency vi h thng t c chn. CEF y tt c cc gi tin xung di vi bng adjacency cho ch chuyn mch tt k tip chuyn tip tt c cc gi tin, ngay c khi iu ny t mang li hiu qu.

124