configuration/pseudowire.rst - trellis-docs - Gitiles

 Pseudowire
 ==========
 In Trellis, we assign different subnets to hosts that attach to different edge (leaf) switches.
 These hosts communicate over IP when traversing the spine switches, meaning that the layer-2 header is not preserved across transportation.
 However, in some use cases it is beneficial for hosts that connect to different leaves to be able to talk directly over L2 and also belong to the same IP subnet.
 We implemented Pseudowire (PW) in Trellis to fulfill this requirement.

 Pseudowires create tunnels between different connection points that transport L2 traffic between them.
 Pseudowires can handle single-tagged/double-tagged traffic and are able to modify the VLAN tags in some cases.

 .. note::
   Pseudowires are only supported on OF-DPA hardware switches.

 Managing pseudowires via REST
 -----------------------------
 You can find the REST API documentation at ``http://${ONOS-IP}:8181/onos/v1/docs``.
 Please click the drop down list and select Segment Routing Server.

 .. image:: ../images/config-pw-rest.png
     :width: 700px

 We configure and implement PWs through the dedicated REST API.

 .. code-block:: console

     $ curl --user onos:rocks -X POST -H 'Content-Type:application/json' http://${ONOS-IP}:8181/onos/segmentrouting/pseudowire/ -d@pseudowire.json
     $ curl --user onos:rocks -X GET -H 'Content-Type:application/json' http://${ONOS-IP}:8181/onos/segmentrouting/pseudowire/ -d@pseudowire.json
     $ curl --user onos:rocks -X DELETE -H 'Content-Type:application/json' http://${ONOS-IP}:8181/onos/segmentrouting/pseudowire/ -d@pseudowire.json

 Below is an example configuration for a single pseudowire,
 which transfers L2 double tagged traffic from cp1 to cp2 and also changes the outer VLAN tag of the packets.


 .. code-block:: json

     {
         "pwId" : 42,
         "cP1": "of:0000000000000205/25",
         "cP2": "of:0000000000000206/33",
         "cP1InnerTag": "101",
         "cP1OuterTag": "110",
         "cP2InnerTag": "101",
         "cP2OuterTag": "111",
         "mode": "RAW",
         "sdTag": "",
         "pwLabel": "1572"
     }

 - ``cP1``: First connection point of PW
 - ``cP2``: Second connection point of PW
 - ``cP1InnerTag / cp1OuterTag``: The expected inner and outer VLAN tags for ``cp1``. If you only want to use a single incoming tag,
   use the innerTag, and use ``None`` for the outerTag.
 - ``cP2InnerTag / cp2OuterTag``: The expected inner and outer VLAN tags for ``cp2``.
 - ``mode``: Pseudowire mode - RAW and TAGGED. Only RAW mode is supported in Trellis.
 - ``sdTag``: Service delimiting tag, only meaningful when in TAGGED mode.
 - ``pwLabel``: Unique pseudowire label.
 - ``pwId``: ID of the pseudowire.

 The REST API also supports bulk addition and removal of pseudowire.

 .. code-block:: console

     $ curl --user onos:rocks -X POST -H 'Content-Type:application/json'http://<controller-ip>:8181/onos/segmentrouting/pseudowire/bulk -d@pseudowires.json
     $ curl --user onos:rocks -X DELETE -H 'Content-Type:application/json'http://<controller-ip>:8181/onos/segmentrouting/pseudowire/bulk -d@pseudowires.json

 with the following example configuration:

 .. code-block:: json

     {
       "pseudowires": [{
           "pwId": 43,
           "cP1": "of:0000000000000227/15",
           "cP2": "of:0000000000000205/33",
           "cP1InnerTag": "101",
           "cP1OuterTag": "",
           "cP2InnerTag": "101",
           "cP2OuterTag": "",
           "mode": "RAW",
           "sdTag": "",
           "pwLabel": "2572"
         },
         {
           "pwId": 42,
           "cP1": "of:0000000000000201/12",
           "cP2": "of:0000000000000204/12",
           "cP1InnerTag": "101",
           "cP1OuterTag": "",
           "cP2InnerTag": "101",
           "cP2OuterTag": "",
           "mode": "RAW",
           "sdTag": "",
           "pwLabel": "1572"
         }
       ]
     }


 Managing pseudowires via CLI
 ----------------------------

 To add a pseudowire:

 .. code-block:: text

     onos> sr-pw-add --help
     DESCRIPTION
             onos:sr-pw-add

         Add a pseudowire to the network configuration, if it already exists update it.

     SYNTAX
             onos:sr-pw-add [options] pwId pwLabel mode sDTag cP1 cP1InnerVlan cP1OuterVlan cP2 cP2InnerVlan cP2OuterVlan

     <omitted>

     onos> sr-pw-add 42 1000 RAW None of:0000000000000204/12 100 10 of:0000000000000205/12 100 40

 To list existing pseudowires:

 .. code-block:: text

     onos> sr-pw-list

 To remove a pseudowire:

 .. code-block:: text

     onos> sr-pw-remove 42


 Type of pseudowires
 -------------------
 - **Leaf - Leaf** : As explained above we support leaf - leaf pseudowires.

 - **Spine - Leaf** : We further support leaf to spine pseudowires,
   where one termination point resides in a spine switch rather than a leaf switch.
   Please note that the encapsulated traffic for these types of pseudowires is carried **tagged** between leaf and spines,
   the reason for this is due to some hardware limitation. The **reserved transport VLAN is 4093**.

 - Multi-stage

   - **Leaf - Spine-1 - Spine-2**: Where Spine-1 and Spine-2 are interconnected between them and are part of distinct topologies.
   - **Leaf_1 - Spine_1 - Spine_2 - Leaf_2**: Where leaf-1 and leaf-2 are part of different fabric topologies which are interconnected between them between two spines.


 Common errors
 -------------
 If your pseudowires do not work make sure you have done the following in the host side :

 - Disabled VLAN offloading in the VM interfaces and also in the compute node interfaces.
 - Set the compute node interfaces and the VM interfaces at promiscuous mode.
 - In general, do the above for all the interfaces and bridges participated in the topology (either in a VM or physical server).
 - Before programming pseudowires make sure that the topology is completely up and running and also the configuration is added to the controller and the fabric is
   in an operational state.


 Restrictions
 ------------
 We list now some restrictions of pseudowire support, some of them stem from the implementation while others from switch hardware constraints.

 - We only support pseudowires with the same type of tagged traffic at each end.
   For example, if cP1 handles single tagged traffic then cP2 must handle single tagged traffic (same applies for single tagged and double tagged traffic).
   However, for pseudowires with single tagged traffic we support changing the tag,
   and for pseudowires with double tagged traffic we support changing the outer tag.
   We would like to support more use cases, however we are limited by hardware pipeline restrictions.
   In the future, and if needed, we might address this by using the egress tables of OF-DPA.
 - As of now, we only support RAW mode. We will support also TAGGED mode in the future if needed by any use case.
   Since, we only support RAW mode the sdTag must always be empty or None.


 Implementation limits
 ---------------------
 - **Link failures**: We partially support link failures.
   Specifically, our PW implementation does not properly handle link failures when the link involved is the one used for pseudowire traffic at the spine switches towards a leaf switch.
   This is due to an OF-DPA limitation which does not allow the use of MPLS ECMP groups in the spine.
   We plan to address this in the next release.

 - **Device failures**: We do not handle device failures currently, on a device failure please remove and re-install the pseudowire.
   We will address this soon.
	Pseudowire
	==========
	In Trellis, we assign different subnets to hosts that attach to different edge (leaf) switches.
	These hosts communicate over IP when traversing the spine switches, meaning that the layer-2 header is not preserved across transportation.
	However, in some use cases it is beneficial for hosts that connect to different leaves to be able to talk directly over L2 and also belong to the same IP subnet.
	We implemented Pseudowire (PW) in Trellis to fulfill this requirement.

	Pseudowires create tunnels between different connection points that transport L2 traffic between them.
	Pseudowires can handle single-tagged/double-tagged traffic and are able to modify the VLAN tags in some cases.

	.. note::
	Pseudowires are only supported on OF-DPA hardware switches.

	Managing pseudowires via REST
	-----------------------------
	You can find the REST API documentation at ``http://${ONOS-IP}:8181/onos/v1/docs``.
	Please click the drop down list and select Segment Routing Server.

	.. image:: ../images/config-pw-rest.png
	:width: 700px

	We configure and implement PWs through the dedicated REST API.

	.. code-block:: console

	$ curl --user onos:rocks -X POST -H 'Content-Type:application/json' http://${ONOS-IP}:8181/onos/segmentrouting/pseudowire/ -d@pseudowire.json
	$ curl --user onos:rocks -X GET -H 'Content-Type:application/json' http://${ONOS-IP}:8181/onos/segmentrouting/pseudowire/ -d@pseudowire.json
	$ curl --user onos:rocks -X DELETE -H 'Content-Type:application/json' http://${ONOS-IP}:8181/onos/segmentrouting/pseudowire/ -d@pseudowire.json

	Below is an example configuration for a single pseudowire,
	which transfers L2 double tagged traffic from cp1 to cp2 and also changes the outer VLAN tag of the packets.


	.. code-block:: json

	{
	"pwId" : 42,
	"cP1": "of:0000000000000205/25",
	"cP2": "of:0000000000000206/33",
	"cP1InnerTag": "101",
	"cP1OuterTag": "110",
	"cP2InnerTag": "101",
	"cP2OuterTag": "111",
	"mode": "RAW",
	"sdTag": "",
	"pwLabel": "1572"
	}

	- ``cP1``: First connection point of PW
	- ``cP2``: Second connection point of PW
	- ``cP1InnerTag / cp1OuterTag``: The expected inner and outer VLAN tags for ``cp1``. If you only want to use a single incoming tag,
	use the innerTag, and use ``None`` for the outerTag.
	- ``cP2InnerTag / cp2OuterTag``: The expected inner and outer VLAN tags for ``cp2``.
	- ``mode``: Pseudowire mode - RAW and TAGGED. Only RAW mode is supported in Trellis.
	- ``sdTag``: Service delimiting tag, only meaningful when in TAGGED mode.
	- ``pwLabel``: Unique pseudowire label.
	- ``pwId``: ID of the pseudowire.

	The REST API also supports bulk addition and removal of pseudowire.

	.. code-block:: console

	$ curl --user onos:rocks -X POST -H 'Content-Type:application/json'http://<controller-ip>:8181/onos/segmentrouting/pseudowire/bulk -d@pseudowires.json
	$ curl --user onos:rocks -X DELETE -H 'Content-Type:application/json'http://<controller-ip>:8181/onos/segmentrouting/pseudowire/bulk -d@pseudowires.json

	with the following example configuration:

	.. code-block:: json

	{
	"pseudowires": [{
	"pwId": 43,
	"cP1": "of:0000000000000227/15",
	"cP2": "of:0000000000000205/33",
	"cP1InnerTag": "101",
	"cP1OuterTag": "",
	"cP2InnerTag": "101",
	"cP2OuterTag": "",
	"mode": "RAW",
	"sdTag": "",
	"pwLabel": "2572"
	},
	{
	"pwId": 42,
	"cP1": "of:0000000000000201/12",
	"cP2": "of:0000000000000204/12",
	"cP1InnerTag": "101",
	"cP1OuterTag": "",
	"cP2InnerTag": "101",
	"cP2OuterTag": "",
	"mode": "RAW",
	"sdTag": "",
	"pwLabel": "1572"
	}
	]
	}


	Managing pseudowires via CLI
	----------------------------

	To add a pseudowire:

	.. code-block:: text

	onos> sr-pw-add --help
	DESCRIPTION
	onos:sr-pw-add

	Add a pseudowire to the network configuration, if it already exists update it.

	SYNTAX
	onos:sr-pw-add [options] pwId pwLabel mode sDTag cP1 cP1InnerVlan cP1OuterVlan cP2 cP2InnerVlan cP2OuterVlan

	<omitted>

	onos> sr-pw-add 42 1000 RAW None of:0000000000000204/12 100 10 of:0000000000000205/12 100 40

	To list existing pseudowires:

	.. code-block:: text

	onos> sr-pw-list

	To remove a pseudowire:

	.. code-block:: text

	onos> sr-pw-remove 42


	Type of pseudowires
	-------------------
	- Leaf - Leaf : As explained above we support leaf - leaf pseudowires.

	- Spine - Leaf : We further support leaf to spine pseudowires,
	where one termination point resides in a spine switch rather than a leaf switch.
	Please note that the encapsulated traffic for these types of pseudowires is carried tagged between leaf and spines,
	the reason for this is due to some hardware limitation. The reserved transport VLAN is 4093.

	- Multi-stage

	- Leaf - Spine-1 - Spine-2: Where Spine-1 and Spine-2 are interconnected between them and are part of distinct topologies.
	- Leaf_1 - Spine_1 - Spine_2 - Leaf_2: Where leaf-1 and leaf-2 are part of different fabric topologies which are interconnected between them between two spines.


	Common errors
	-------------
	If your pseudowires do not work make sure you have done the following in the host side :

	- Disabled VLAN offloading in the VM interfaces and also in the compute node interfaces.
	- Set the compute node interfaces and the VM interfaces at promiscuous mode.
	- In general, do the above for all the interfaces and bridges participated in the topology (either in a VM or physical server).
	- Before programming pseudowires make sure that the topology is completely up and running and also the configuration is added to the controller and the fabric is
	in an operational state.


	Restrictions
	------------
	We list now some restrictions of pseudowire support, some of them stem from the implementation while others from switch hardware constraints.

	- We only support pseudowires with the same type of tagged traffic at each end.
	For example, if cP1 handles single tagged traffic then cP2 must handle single tagged traffic (same applies for single tagged and double tagged traffic).
	However, for pseudowires with single tagged traffic we support changing the tag,
	and for pseudowires with double tagged traffic we support changing the outer tag.
	We would like to support more use cases, however we are limited by hardware pipeline restrictions.
	In the future, and if needed, we might address this by using the egress tables of OF-DPA.
	- As of now, we only support RAW mode. We will support also TAGGED mode in the future if needed by any use case.
	Since, we only support RAW mode the sdTag must always be empty or None.


	Implementation limits
	---------------------
	- Link failures: We partially support link failures.
	Specifically, our PW implementation does not properly handle link failures when the link involved is the one used for pseudowire traffic at the spine switches towards a leaf switch.
	This is due to an OF-DPA limitation which does not allow the use of MPLS ECMP groups in the spine.
	We plan to address this in the next release.

	- Device failures: We do not handle device failures currently, on a device failure please remove and re-install the pseudowire.
	We will address this soon.