Zte ZXR10 ZSR V2 Product Description
ZXR10 ZSR V2 Series Router
Product Description
V 2.00.20R3
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 1
ZXR10 ZSR V2 Series Router Product Description
Version
Date
Author
Reviewer
Notes
V1.0
2013/12/06
Xiehuachao
Liujumei/Xuqi
Not open to the third party, based on
V2.00.10.
V1.1
2014/08/28
Xiehuachao
Liujumei/Xuqi
Not open to the third party, based on
V2.00.10R2.
V2.0
2014/12/08
Xiehuachao
Liujumei/Xuqi
Not open to the third party, based on
V2.00.20R1.
V3.0
2015/03/20
Xiehuachao
Liujumei/Xuqi
Not open to the third party, based on
V2.00.20R2.
V3.1
2015/07/28
Xiehuachao
Liujumei/Xuqi
Not open to the third party, based on
V2.00.20R3.
© 2015 ZTE Corporation. All rights reserved.
ZTE CONFIDENTIAL: This document contains proprietary information of ZTE and is not to be disclosed or used
without the prior written permission of ZTE.
Due to update and improvement of ZTE products and technologies, information in this document is subjected to
change without notice.
ZXR10 ZSR V2 Series Router Product Description
2 ZTE Confidential & Proprietary
TABLE OF CONTENTS
1 Overview ............................................................................................................ 7
2 Highlights ........................................................................................................... 7
2.1 Strong performance, no bottleneck for network access ........................................ 7
2.2 Wired and wireless, access anytime and anywhere ............................................. 9
2.3 All in one, Lower CAPEX ................................................................................... 10
2.4 Flexible extension, smooth upgrade ................................................................... 10
2.5 Easy provision & maintenance, fast network deployment ................................... 11
2.6 Green and energy saving, bring a nature and serene network ........................... 11
3 Features ........................................................................................................... 12
3.1 IPv4 Routing protocols and IP basic service ...................................................... 12
3.1.1 Unicast routing protocols .................................................................................... 12
3.1.2 IPv4 Multicast route protocol .............................................................................. 15
3.1.3 Policy route and route policy .............................................................................. 17
3.1.4 DHCP ................................................................................................................ 18
3.1.5 DNS ................................................................................................................... 18
3.2 WAN Access ...................................................................................................... 18
3.2.1 PPP ................................................................................................................... 18
3.2.2 ML-PPP ............................................................................................................. 20
3.2.3 HDLC ................................................................................................ ................. 20
3.2.4 FR 20
3.3 Switching and Routing in One ............................................................................ 21
3.3.1 Broadcasting storm suppression ........................................................................ 21
3.3.2 Spanning Tree Protocol ..................................................................................... 21
3.4 MPLS ................................................................................................ ................. 22
3.4.1 LDP.................................................................................................................... 22
3.4.2 Static Tunnel ...................................................................................................... 23
3.4.3 MPLS-TE ........................................................................................................... 23
3.5 VPN ................................ ................................................................ ................... 24
3.5.1 IPSec VPN ......................................................................................................... 24
3.5.2 IPSec NAT traversal .......................................................................................... 26
3.5.3 GRE VPN .......................................................................................................... 27
3.5.4 L2TP VPN .......................................................................................................... 27
3.5.5 IPSec + GRE ..................................................................................................... 29
3.5.6 MPLS L3 VPN .................................................................................................... 30
3.5.7 MPLS L2 VPN .................................................................................................... 30
3.5.8 Smart Dial Control (SDC) ................................................................................... 31
3.6 QoS Capability ................................................................................................... 32
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 3
3.6.1 Flow Classification and Flow Tag ....................................................................... 33
3.6.2 Traffic Monitoring ............................................................................................... 33
3.6.3 Traffic Shaping ................................................................................................... 33
3.6.4 Queue Scheduling ............................................................................................. 33
3.6.5 Congestion Avoidance ....................................................................................... 34
3.6.6 MPLS QoS ......................................................................................................... 34
3.7 Security Features ............................................................................................... 35
3.7.1 ACL.................................................................................................................... 35
3.7.2 Anti-IP source attacks ........................................................................................ 37
3.7.3 Anti-ARP attacks ................................................................................................ 37
3.7.4 Firewall .............................................................................................................. 38
3.7.5 Multiple Security Authentications ....................................................................... 42
3.7.6 URPF ................................................................................................................. 44
3.8 Network Reliability ............................................................................................. 44
3.8.1 Ping Detect ........................................................................................................ 44
3.8.2 BFD ................................................................................................................... 44
3.8.3 FRR ................................................................................................................... 45
3.8.4 VRRP ................................................................................................................. 46
3.9 IPv6 Features .................................................................................................... 47
3.9.1 Basic Function of IPv6 ....................................................................................... 47
3.9.2 IPv6 Unicast Routing Protocol............................................................................ 47
3.9.3 Multicast Routing Protocol ................................................................................. 49
3.9.4 IPv6 Tunnel ........................................................................................................ 49
3.9.5 6PE .................................................................................................................... 53
3.9.6 6VPE ................................................................................................................. 53
3.9.7 NAT64 ............................................................................................................... 54
3.10 NAT ................................................................................................................... 55
3.11 Network Management Features ......................................................................... 56
3.11.1 NetNumen™ Integrated Network Management Platform.................................... 56
3.11.2 NETFLOW ......................................................................................................... 57
3.11.3 Network Layer Inspection ................................................................................... 58
3.12 System Operation and Maintenance .................................................................. 58
3.12.1 Multiple Configuration Methods .......................................................................... 58
3.12.2 System Policing and Maintenance ..................................................................... 58
3.12.3 Diagnosis and Debugging .................................................................................. 60
3.12.4 Version Upgrade ................................................................................................ 60
4 System Architecture ........................................................................................ 61
4.1 Product Appearance .......................................................................................... 61
4.1.1 The Appearance of ZXR10 3800-8 .................................................................... 61
4.1.2 The Appearance of ZXR10 2800-4 .................................................................... 63
4.1.3 The Appearance of ZXR10 1800-2S/2S(G)/2S(W) ............................................. 64
ZXR10 ZSR V2 Series Router Product Description
4 ZTE Confidential & Proprietary
4.1.4 The Appearance of ZXR10 1800-2E/2E(G) ........................................................ 65
4.1.5 The Appearance of ZXR10 2800-3E/3E(G) ........................................................ 67
4.2 Hardware Architecture ....................................................................................... 69
4.2.1 Overall Hardware Architecture ........................................................................... 69
4.2.2 The Working Principle of the Hardware System ................................ ................. 72
4.2.3 The Introduction to the Hardware Unit ................................................................ 72
4.3 Software Architecture ......................................................................................... 77
4.4 Technical Specifications ..................................................................................... 82
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 5
FIGURES
Figure 1-1 The view of the ZXR10 ZSR V2 series router .................................................... 7
Figure 3-1 IPSec NAT traversal schematic diagram ...........................................................27
Figure 3-2 L2TP VPN schematic diagram ..........................................................................28
Figure 3-3 IPSec+GRE VPN schematic diagram ............................................................... 29
Figure 3-4 Working principle of IPv6 over IPv4 tunnel ........................................................51
Figure 3-5 Working principle of IPv4 (or IPv6) over IPv6 tunnel .........................................52
Figure 3-6 Working principle of ISATAP tunnel ..................................................................53
Figure 3-7 NAT64 Application scenario ..............................................................................54
Figure 4-1 The Front View of the ZXR10 3800-8 ................................................................61
Figure 4-2 The Key Components of the ZXR10 3800-8 .....................................................62
Figure 4-3 The Ichnography of the ZXR10 3800-8 Architecture........................................62
Figure 4-4 The Front View of the ZXR10 2800-4 ................................................................63
Figure 4-5 The Key Components of the ZXR10 2800-4 .....................................................63
Figure 4-6 The Ichnography of the ZXR10 2800-4 Architecture .........................................63
Figure 4-7 The Front View of the ZXR10 1800-2S .............................................................64
Figure 4-8 The Front View of the ZXR10 1800-2S(G)/2S(W) .............................................65
Figure 4-9 The Ichnography of the ZXR10 1800-2S/2S(G)/2S(W) Archtiecture..................65
Figure 4-10 The Front and Real Panel of the ZXR10 1800-2E/2E(G) ................................65
Figure 4-11 The Key Components of the ZXR10 1800-2E/2E(G) .......................................66
Figure 4-12 The Ichnography of the ZXR10 1800-2E/2E(G) Architecture ...........................67
Figure 4-13 The Front and Real Panel of the ZXR10 2800-3E/3E(G) ................................67
Figure 4-14 The Key Components of the ZXR10 2800-3E/3E(G) .......................................68
Figure 4-15 The Ichnography of the ZXR10 2800-3E/3E(G) Architecture ...........................68
Figure 4-16 The Hardware Architecture of the ZXR10 3800-8 ...........................................70
Figure 4-17 The Hardware Architecture of the ZXR10 2800-4 ...........................................70
Figure 4-18 The Hardware Architecture of the ZXR10 1800-2S/2S(G)/2S(W) ....................71
Figure 4-19 The Hardware Architecture of the ZXR10 1800-2E/2E(G) ...............................71
Figure 4-20 The Hardware Architecture of the ZXR10 2800-3E/3E(G) ...............................71
ZXR10 ZSR V2 Series Router Product Description
6 ZTE Confidential & Proprietary
Figure 4-21 Open Service Unit of ZXR10 ZSR V2 .............................................................76
Figure 4-22 The Entire Software Architecture of the ZXR10 ZSR V2 .................................78
TABLES
Table 4-1 The PIUs supported by the ZXR10 ZSR V2 .......................................................74
Table 4-2 Physical Indices of OSU .....................................................................................76
Table 4-3 Physical Indices of ZXR10 ZSR V2 ................................................................ ....82
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 7
1 Overview
ZXR10 ZSR V2 is ZTE’s intelligent multiservice router integrating routing, switching,
wireless, security and VPN. The modular and scalable system structure builds intelligent,
efficient, reliable, flexible and maintainable network.
ZXR10 ZSR V2 series router includes 1800-2S/2S(G)/2S(W), 2800-4, 3800-8, 1800-2E
/2E(G)and 2800-3E/3E(G). They can meet different market demands. Their forwarding
performance ranges from 1Mpps to 5Mpps. They can be applied to VIP access, DCN,
campus network, enterprise network egress gateway, enterprise headquarter/branch
access, mobile office, industry network convergence/access, etc.
The appearance of each product is shown as below:
Figure 1-1 The view of the ZXR10 ZSR V2 series router
2 Highlights
2.1 Strong performance, no bottleneck for network
access
The rise of enterprise application content and network data traffic and the appearance of
video-conference, remote teaching and remote data disaster recovery backup lead to
higher performance requirements for node equipment processing network data.
High-performance multi-core processor + Smart Switching Engine (SSE) ensure
ZXR10 ZSR V2 Series Router Product Description
8 ZTE Confidential & Proprietary
high-performance protocol processing and management control processing as well
as L2/L3 high-speed forwarding of data, increasing the overall system performance
by 10 times than the previous generation of access router. The multilayer distributed
forwarding allocates system resources reasonably in system multiservice overlay to
assure excellent forwarding performance. Single slot has the bus bandwidth of up to
10Gbps.
Support high-speed interface of GE, FE, E1, POS, CPOS, xDSL,
Synchronous/asynchronous serial wire port and 3G/LTE, Wi-Fi wireless port, and the
device Integrated industry's largest fixed-Gigabit interfaces, which can be used as
WAN or LAN access, providing a complete and flexible access capability.
The perfect high reliability design. AC/DC power supply 1+1 hybrid redundancy.
Power supply, fans and interface boards hot-swappable. The software modular
design, which can overlay new features flexibility and improve system stability and
flexibility. Perfect OAM detection mechanisms and BFD for everything, FRR, VRRP,
links bundled and other rich reliability technologies to enhance service reliability.
Control plane security technologies include classification of the control plane packets,
multi-level speed restrictions, multi-level scheduling, traffic suppression, protocol
white name, protocol authentication, anti-DDOS attack mechanism and attack trace
functions. The greatest degree to ensure the safety of equipment itself.
Strong ACL, excellent L2/L3 ACL mixed processing algorithms, up to 8K ACLs
capacity (all overlay loads scene, the system performance degradation is less than
30%) and humanization ACL log statistics management function helps users to
easily achieve fine management of various services.
Compact design, 1800-2S adopts the desktop design. 2800-4 and 3800-8 adopt the
front cabling design where operation and maintenance can be fulfilled at single side.
They can be installed into 300mm-deep cabinet to saving the space in equipment
room, and or into outdoor cabinet, vehicle equipment, BS and office locker to cut
O&M cost.
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 9
2.2 Wired and wireless, access anytime and anywhere
With wider coverage than conventional network, wireless network can extend network
access scope to supplement wired network. It supports mobile office anytime, anywhere
to resolve the bottleneck of time and space. ZXR10 ZSR V2 is creating the industry’s
first true 4G router ensuring network reliability and increasing bandwidth value.
Support 3G (WCDAM/CDMA/TD-SCDMA) and LTE (TDD / FDD).
Embedded wireless module, PnP USB data card and special interface card are
optional, meeting networking requirements in various scenarios.
When the equipment is deployed in equipment room or office corner with weak
wireless signal, the optional extension feeder solve the problem of signal coverage.
It can detect 3G/LTE signal strength and dynamically monitors link quality to ensure
SLA.
Powerful SDC support smart dial-up achieve link redundancy. Device can dialed the
xDSL or the 3G/LTE link according to the policy, building load balancing and
redundancy protection route, to protect the service.
For the consideration of Internet egress performance and reliability, several Internet
egresses from multiple carriers are often used at the same time. Multilink load
balance technology can monitor the Internet links from multiple carriers and smartly
select the path for data flow accessing the Internet to ensure the fastest and best
Internet access for users.
Create VPN channels in 3G/LTE networks to enhance wireless link security.
Support WIFI access, adjustable 802.11b/g/n RF mode, dynamic adjustment of
access rate according based on environments, Guard Interval to prevent front/back
data interference, WMM (Wi-Fi Multimedia) to provide wireless QoS and assure the
quality of voice and video services, and such verification modes as no verification,
WEP, WPA, WPA2 (TKIP and AES-CCMP) and WAPI hardware encryption.
ZXR10 ZSR V2 Series Router Product Description
10 ZTE Confidential & Proprietary
2.3 All in one, Lower CAPEX
With network application increase, customers often need to connect different devices to
resolve different problems, which increase user investment and increase network fault
points. ZXR10 ZSR V2 integrates multiple functions to meet network requirements in
different scenarios, such as routing, switching, AP NAT gateway, VPN gateway, etc.
L2TP/GRE/IPSec tunnel technology and MPLS VPN over GRE for a variety of
different environments of VPN networking.
Support MPLS, Provide Perfect L2/L3 MPLS solutions which easily extend MPLS to
the network edge. Support PWE3 to bear TDM service.
Support the stateful firewall, which can control access data flow and ensure network
security.
Hardware-based QoS, support HQoS for different users and services to provide a
variety of service level guarantee to meet user multi-service access meticulous
management needs.
2.4 Flexible extension, smooth upgrade
As network applications and traffic rise, processing performance should be upgraded
smoothly. ZXR10 ZSR V2 offers forwarding engines of different performances as well as
on-demand selection and smooth upgrade, protecting user investment and meeting future
network requirements. IPv4 address pool dwindles and IPv6 is the development trend.
An upgradable router is vital to an enterprise because it can extend router lifecycle.
ZXR10 2800-4 and ZXR10 3800-8 have main control forwarding cards supporting
multiple forwarding performances, reducing CAPEX and assuring future
performance upgrade.
Profound accumulation, in early 2000 ZTE began to study the IPv6 technology, and
in global IPv6 next-generation Internet Summit 2010, due to the outstanding
performance in the commercial promotion of IPv6, ZTE was awarded the IPv6
equipment commercial Pioneer Award ". ZXR10 ZSR V2 supports IPv4/IPv6 dual
stack, which can access IPv4 and IPv6 at the same time. It supports 6in4, 6to4 and
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 11
6in4 tunnel technologies to transmit data between IPv4 and IPv6 networks, and
NAT444, NAT64 and 6rd technologies to evolve IPv4 network to IPv6.
2.5 Easy provision & maintenance, fast network
deployment
A large number of access routers are deployed in wide range. Traditionally, engineers
need to load and upgrade versions for each router on site. The traditional mode has low
efficiency and may cause optional errors, so it is necessary to provide visual deployment
and maintenance means supporting convenient operation, remote maintenance, and
diagnosis anytime.
Support USB disk to deploy devices, Auto-Config, Network Management batch
version upgrades, zero-touch automatic device configuration and mass deployment.
Support SQA (Service Quality Analyzer). It can dynamically detect and locate
network quality through ICMP-echo, UDP, TCP, FTP, DNS, HTTP and SNMP. It can
adopt VRRP, static route, interface backup, link backup and policy route as well as
ZXNPA to automatically report network performance threshold alarm and fulfill
graphic detection and management.
Support port mirroring, 1:1 netflow sampling, Support the flow characteristics explicit
presentation, Provide an effective means of monitoring to ensure network precisely
controlled and operated.
Support WEB GUI and graphical NMS, provides one-click service creation and
one-click information-gathering tool to help network administrators achieve the rapid
loading of the service and high-maintenance.
2.6 Green and energy saving, bring a nature and serene
network
ZXR10 ZSR V2 adheres to green environmental protection, and takes measures in design,
R&D, manufacturing, logistics and engineering to build a communication network with low
noise, low power consumption and high efficiency.
ZXR10 ZSR V2 Series Router Product Description
12 ZTE Confidential & Proprietary
Advanced 28nm chip increases performance and reduces energy consumption.
The hardware adopts the leading submarine-level quiet technology.
Intelligent fan is automatically adjusted according to system operation status,
reducing power consumption and equipment noise.
Intelligent off Idle service cards, support EEE energy efficient Ethernet specification,
can reduce energy consumption 2/3.
Strict adherence to RoHS standards, using unleaded green material, reducing
carbon dioxide emissions.
3 Features
3.1 IPv4 Routing protocols and IP basic service
3.1.1 Unicast routing protocols
ZXR10 ZSR V2 fully supports a variety of unicast routing protocols, including static routing,
RIP, OSPF, IS-IS and BGP.
3.1.1.1 Static Route
Static route is configured manually by an administrator to simplify network configuration
and improve network performance. It uses a scenario of simple network structure. When a
network failure or topology change happens, static route is not automatically changed, but
it is manually changed by an administrator.
ZXR10 ZSR V2 supports static route configuration based on next hop and egress
interface as well as the correlation between static route and VRF instance.
3.1.1.2 RIP
RIP is a UDP-based distance vector dynamic routing protocol. It periodically broadcasts
route tables to neighbors to maintain the relationship between adjacent routers and
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 13
calculate its own route table according to the received routes. RIP runs simply and is
applied to small networks.
ZXR10 ZSR V2 supports the following RIP functions:
Support RIPv1/v2 basic functions such as split horizon, poison reverse, interface
verification, route collection, and route protocol redistribution.
Support RIP load sharing.
Support RIP VPN access.
Support RIP MIB.
3.1.1.3 OSPF
OSPF routing protocol is used for route information exchange between routers in one
Autonomous System (AS), so it is an Interior Gateway Protocol (IGP) based on link status.
OSPF is one of the most widely used IPv4 IGP routing protocols. ZXR10 ZSR V2 supports
the following OSPF functions:
Support OSPF basic functions such as neighbor certification, Virtual Link, STUB,
NSSA, Type-3 LSA aggregation, Type-5 LSA aggregation, and redistribution of other
route protocols.
Support OSPF route load sharing.
Support VPN access and advanced functions such as sham-link.
Support OSPF BFD.
Support OSPF FRR.
Support OSPF-TE.
Support OSPF MIB.
3.1.1.4 IS-IS
IS-IS is a routing protocol drafted by ISO to support Connectionless Network Service
(CLNS). IETF extends the IS-IS to support IP route information. ISIS is also an Interior
Gateway Protocol (IGP) based on link status.
ZXR10 ZSR V2 Series Router Product Description
14 ZTE Confidential & Proprietary
IS-IS is one of the most widely used IPv4 IGP route protocols. ZXR10 ZSR V2 supports
the following IS-IS functions:
Support IS-IS basic functions.
Support IS-IS extension functions such as hostname and overload-bit.
Support IS-IS route load sharing.
Support IS-IS VPN ACCESS.
Support IS-IS BFD.
Support IS-IS FRR.
Support IS-IS-TE.
Support IS-IS MIB.
3.1.1.5 BGP
Border Gateway Protocol (BGP) is an inter-AS routing protocol. It is used for network
reachability information exchange between AS running BGP.
ZXR10 ZSR V2 supports the following BGP functions:
Support BGP basic function and such enhanced functions as session certification,
route oscillation suppression, route reflector, alliance, extension group attribute,
route aggregation, and route filtering.
Support BGP route load sharing.
Support MP-BGP functions such as IPv4 unicast, IPv4 multicast, IPv4
labeled-unicast, IPv4 MDT, IPv6 unicast, IPv6 multicast, IPv6 labeled-unicast,
VPNv4, and other AFIs.
Support BGP BFD.
Support BGP FRR.
Support BGP MIB.
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 15
3.1.2 IPv4 Multicast route protocol
The multicast is a point-to-multipoint or multipoint-to-multipoint communications mode,
namely, multiple receivers receive the same information from single source.
Multicast-based applications include video conference, remote teaching, software
allocation, etc.
3.1.2.1 IGMP
The host uses Internet Group Management Protocol (IGMP) to inform the multicast router
on the network which group the router should join or leave. In this way, the multicast router
on the network knows whether a multicast group member is available on the network, and
decides whether to forward multicast packets to the network. When a multicast router
receives a multicast packet, it checks the multicast destination address of the packet, and
forward packets to the interfaces of all group members or downstream routers.
ZXR10 ZSR V2 supports IGMPv1, IGMPv2 and IGMPv3.
3.1.2.2 PIM-SM
Protocol Independent Multicast-Sparse Mode (PIM-SM) is applied to the following
situations:
Group members are extended across a wide scope.
Network bandwidth resource is limited.
PIM-SM is not dependent on a specific unicast routing protocol. Supposed that all routers
on a shared network segment do not need to send multicast packets, the router must take
the initiative to request to join a multicast group before sending and receiving multicast
packets. By setting the RP (Rendezvous Point), PIM-SM sends multicast information to all
routers supporting PIM-SM. In PIM-SM, the router explicitly joins and leaves the multicast
group to reduce the network bandwidth occupied by data packet and control packet.
ZXR10 ZSR V2 Series Router Product Description
16 ZTE Confidential & Proprietary
3.1.2.3 PIM-DM
PIM-DM (PIM-Dense-mode) is a dense-mode multicast route protocol and sends
multicast data in the ‘push’ mode. It usually applies to small network with dense multicast
group members.
3.1.2.4 PIM-SSM
PIM-SSM has all the advantages of PIM-SM, but it can create a source-based shortest
path tree rather than a shared tree. When a group membership report from a particular
source to group is received, the shortest path tree is created directly.
PIM-SSM, a subset of PIM-SM, is suitable for the ‘well known’ source and is valid between
domains and within a domain. PIM-SM uses the MSDP multicasting inter-domain route,
but PIM-SSM does not.
3.1.2.5 Static Multicast
Static route multicast is used when a multicast is expected to be forwarded via the
specified path rather than the best path of unicast route.
Static multicast provides egress and ingress interfaces for the user to configure multicast
route table and form multicast forwarding table according to the configuration. If static
multicast route and dynamic multicast route are available at the same time, static
multicast route is preferred. Static multicast has the logic status equivalent to PIM-SM and
PIM-DM, namely, a special multicast route protocol. Static route multicast has the
following purposes:
Change RPF route: The multicast and unicast generally have the same network
topology structure and data transport path. Multicast static route can be configured to
change the RPF route so as to create a different transport path for multicast data.
Connect RPF route: When a unicast route is blocked, multicast data cannot be
forwarded because a RPF route is unavailable. Multicast static route can be
configured to generate a RPF route so that multicast route table can be created to
guide the forwarding of multicast data.
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 17
3.1.2.6 MSDP
Multicast Source Discovery Protocol (MSDP) is a mechanism connecting several PIM
domains. It works on TCP to provide PIM-SM with multicast source information outside
PIM domain.
A MSDP speaker in one PIM-SM domain creates a session with other inter-domain MSDP
neighbors via TCP. When the MSDP speaker knows a new multicast source in the MSDP
domain (through the PIM register mechanism), it generates a Source Active (SA)
message and sends it to all MSDP neighbors.
3.1.3 Policy route and route policy
3.1.3.1 Policy routing
ZXR10 ZSR V2 supports policy routing to forward packets according to the policy
designated by a user. The policy routing provides the packet forwarding policy, and match
object is packet. Match objects is screened according to attribute fields and the set action
is designated. The set is divided into two types: One is route option which changes a
forwarding path, and the other is packet modification option which modifies the attributes
of the screened packet. Policy routing implements traffic engineering to a certain extent,
thus flows of different QoS or data of different types (such as voice and FTP) can take
different paths.
3.1.3.2 Route policy
Route policy is the route distributing and receiving policy. Route protocol selection is
actually a route policy. Route policy means modifying parameters or setting control mode
to change the results of route creation, distribution and selection. ZXR10 ZSR V2
supports RIP, OSPF, IS-IS, BGP and VRF to use route policy.
Control route distribution. Only distribute route information meeting conditions.
Control route receiving. Only receive indispensible, legal route information to control
the capacity of route table and improve network security.
Filtering and control the introduced route.
ZXR10 ZSR V2 Series Router Product Description
18 ZTE Confidential & Proprietary
Only introduce some route information meeting conditions and set some of their
attributes to satisfy protocol requirements.
Set the attribute for the route filtered by route policy.
3.1.4 DHCP
Dynamic Host Configuration Protocol (DHCP) dynamically manages and configures the
users in a centralize way. It adopts client/server communications mode. A client applies to
a server for configuration information (including parameters such as IP address, subnet
mask and default gateway), and the server returns the information according to the policy.
DHCP uses UDP as transport protocol. The host sends a message to port 67 of DHCP
server, and the server returns a message to port 68 of the host.
ZXR10 ZSR V2 supports DHCP Relay, and DHCP Server to accommodate user demands
for DHCP in different scenarios.
3.1.5 DNS
Domain Name System (DNS), a distributed database for TCP/IP applications, copes with
the conversion between domain name and IP address. With the DNS, a user directly
employs an easy-to-remember, meaningful domain name for an application, and the DNS
resolution server in the network resolves it into a proper IP address.
ZXR10 ZSR V2 can work as a DNS client. It sends a DNS resolution request to a DNS
server to request and receive the response message of the DNS server packet, and then
sends the message to the user.
3.2 WAN Access
3.2.1 PPP
PPP (a widely used WAN protocol, achieves router-to-router) and host-to-network
connection across synchronous and asynchronous circuits. It has a set of schemes for
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 19
link creation/maintenance/removal, upper-layer protocol negotiation, authentication, and
other functions.
PPP consists of LCP and NCP. It supports the point-to-point interface (such as
E1/T1/POS) link creation by negotiation and link maintenance, and provides a upper-layer
protocol packet with a packet encapsulation format different from Ethernet protocol.
A upper-layer protocol packet (such as IP packets and MPLS packet) is only
encapsulated with two bytes of protocol fields in the front, and is added with a PPP header
with two fixed values, namely, 0xFF03. The header can be removed through negotiation.
The PPP negotiation has three stages: LCP, authentication (optional) and NCP:
The authentication is optional and it is generally used for an access router to
authenticate an access user.
NCP consists of IPCP, IPv6CP, MPLSCP, OSINLCP and BCP. IPCP (supporting
IPv4) must make link negotiation and the rest is selected as needed. After successful
negotiation with IPCP, PPP port is set to UP.
Compared with the Ethernet encapsulation:
PPP has a higher bandwidth utilization ratio, which has a better effect on short packet.
And its header encapsulation is simpler, and complex Ethernet MAC header
encapsulation and decapsulation are removed from packet transceiving mechanism.
But PPP state machine is more complex than Ethernet because PPP interface is set
to UP only after successful negotiation and then the packet is received at the upper
layer.
The default protocol state of a PPP interface is down after creation, and it is UP after
successful PPP link negotiation. Both sides periodically send LCP keep-alive packets to
each other. If there is no ECHO response to continuous N (N>=1) keep-alive request
packets, the link is set to down and the protocol state is set to down to trigger route
recalculation and route update.
ZXR10 ZSR V2 Series Router Product Description
20 ZTE Confidential & Proprietary
3.2.2 ML-PPP
ML-PPP bundles multiple PPP links with a purpose to increase bandwidth. It can be
applied to an interface supporting PPP.
3.2.3 HDLC
High-level Data Link Control (HDLC) is a bit-oriented link-layer protocol. It parallels with
such L2 protocol as PPP and Frame Relay (FR), and offers different services for
upper-level protocols.
The HDLC’s biggest feature is that character set is not required for data, and any bit
stream can be transparently transported.
3.2.4 FR
Frame Relay (FR) is a high-performance WAN protocol running on physical layer and
data link layer of OSI reference model.
The data packet switching technology is a simplified X.25. It removes some complex
functions of X.25 (such as window technology and data retransmission technology) and
relies on high-level protocol to provide error correction. Because FR works on WAN
devices which are better than X.25, these devices has a higher reliability. FR strictly
corresponds to the lowest two layers of the OSI reference model, while X.25 provides L3
services, so FR has a higher performance and more efficient transport efficiency than
X.25
FR WAN equipment is usually divided into data terminal equipment (DTE) and data
circuit-terminating equipment (DCE). At both ends of communications are DTE and DCE,
and the router generally works as a DTE device.
FR provides the connection-oriented communications at data link layer. A communication
link is defined between each pair of devices, and the link has a data link connection
identifier (DLCI). This service needs a permanent virtual circuit (PVC) with a DLCI. The
DLCI value is generally specified by a FR SP. The available DLCI is 16-1007 and the rest
is retained for the protocols.
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 21
FR supports both PVC and SVC. PVC is the most frequently used. The manually
configured PVC is particularly suitable for data communication thanks to its simplicity,
high efficiency and multiplexing.
3.3 Switching and Routing in One
Based on the network connection requirements inside enterprise, ZXR10 ZSR V2
promotes high-density Ethernet switching module to implement seamless integration of
router and Ethernet switch.
ZXR10 ZSR V2 supports VLAN, Supervlan, QINQ, SmartGroup, supports Ethernet port
L2/L3 mode switching, L2 switching across the board, L2/L3 configured on the same
interface, supports full Spanning Tree Protocol and broadcast storm suppression , and
other L2 functions.
3.3.1 Broadcasting storm suppression
The broadcasting storm which seriously damages network performance refers to the
disturbed network communication caused by continuous forwarded broadcasting frames.
The broadcasting storm suppression means the user can set the size of the broadcasting
streams that allowed by the port. When the streams exceed the threshold, the system will
discard the exceeding ones to avoid the broadcasting storm.
ZXR10 ZSR V2 support the following storm suppression.
Support the broadcast packet suppression
Support the multicast packet suppression
Support the unknown packet suppression
Speed limit supports two modes bps or pps
3.3.2 Spanning Tree Protocol
Loops in L2 switching networks make the messages cycling and growing in the loop.
Thus, the broadcasting storm which takes up all valid bandwidth and makes network
unavailable is generated.
ZXR10 ZSR V2 Series Router Product Description
22 ZTE Confidential & Proprietary
Under this circumstance, the spanning tree protocol (STP) is generated. As a L2
management protocol, the STP eliminates the L2 loop by blocking redundant links
optionally. At the same time, it is capable of link backup. The same as other
protocols, the STP keeps developing. However, it was initially used as IEEE
802.1D-1998 STP, then generates IEEE 802.1w RSTP(Rapid Spanning Tree
Protocol) and IEEE 802.1s MSTP(Multiple Spanning Tree Protocol).
ZXR10 ZSR V2 supports STP, RSTP and MSTP, and supports transparent
transmission of the above protocols.
3.4 MPLS
3.4.1 LDP
MPLS is a multiple layer switching technology. It combines L2 switching and L3 routing,
uses label to aggregate the messages need forwarding. It works in route layer structure,
supporting multiple upper layer protocols. It can be implemented on multiple physical
platforms.
ZXR10 ZSR V2 supports multi-protocol label switching by supporting the following
functions:
It supports basic functions and label forwarding services of MPLS. It
implements LDP signaling protocol, which takes charge of label distribution,
LSP establishment, and parameters needed in LSP establishment.
It supports Graceful Restart at MPLS signaling protocol layer. It can keep label
data forwarding when protocol is interrupted.
It supports MPLS Ping/Tracert. It uses MPLS echo request and MPLS echo
reply to check the availability of LSP.
It supports LDP FRR. It can takes quick switching of data flow when LSP
interrupts.
It supports MPLS LSP load balancing.
It supports multiple layer label processing.
It supports LSP loop check mechanism.
ZXR10 ZSR V2 Series Router Product Description
ZTE Confidential & Proprietary 23
It supports MPLS CoS and mapping of IP packet from ToS domain to MPLS
packet in EXP domain.
3.4.2 Static Tunnel
Static tunnel is the tunnel configured by the administrator manually. It doesn’t need to be
triggered by MPLS signaling protocol, nor packet control by exchange. Thus it consumes
little resource and suits stable small network with simple topology structure. However, the
tunnel established by static label distribution cannot be dynamically adjusted based on
network topology change. It should be manually configured by the administrator.
Each LSR on the tunnel should be configured with static tunnel command, including head
node, intermediate node and tail node. The services can be guaranteed to normally
forward on LSP of the tunnel only when the tunnel is correctly configured on each node.
3.4.3 MPLS-TE
Network congestion is a major problem that influences backbone network performance.
The local congestion may result from inadequate network resources or unbalanced
resource load. TE (Traffic Engineering) solves the congestion caused by unbalanced
load.
MPLS TE is a technology combining traffic engineering and MPLS. With MPLS TE, the
service provider can precisely control the path that the traffic goes through, so as to avoid
the congested node. It can solve the problem that some paths are overloaded but some
are idle, so as to make full use of the existing bandwidth resources. At the same time,
MPLS TE can reserve the resources during the process of LSP tunnel establishment to
guarantee service quality.
MPLS TE establish link bandwidth resource database at each node in MPLS network by
OSPF TE or IS-IS. It uses CSPF algorithm to calculate tunnel establishment path based
on link bandwidth resource database and tunnel constraint. At last it uses RSVP-TE
signaling protocol to establish TE tunnel on the path that calculated by CSPF algorithm.
ZXR10 ZSR V2 supports the following MPLS TE features:
OSPF TE and IS-IS TE
ZXR10 ZSR V2 Series Router Product Description
24 ZTE Confidential & Proprietary
CSPF (Constrained Shortest Path First)
Basic functions of RSVP-TE: it implements RSVP-TE basic functions defined by
RFC2205 and RFC3209. It can establish and maintain TE tunnel by Path/Resv
message interaction.
RSVP-TE FRR: it implements link protection and node protection of RSVP-TE
FRR protocol functions in Facility defined by RFC4090 to offer LSR RSVP-TE
local protection capability.
RSVP-TE Graceful Restart: it implements Graceful Restart by RFC3473, Draft
‘Extensions to GMPLS RSVP Graceful Restart’, and recovery mechanism for
restart at adjacent multiple nodes defined in the section of ‘failure recovery’.
RSVP-TE MIB.
RSVP-TE expansion: RSVP-TE MBB, re-optimization, preemptive priority,
abstract update, automatic routing, FA, Hot-standby, and authentication.
3.5 VPN
3.5.1 IPSec VPN
IP Security (IPSec) is an IETF-defined IP-layer security framework protocol. It protects
sensitive data transport in an unprotected network (e.g., the Internet). It defines IP packet
formats and related infrastructure for confidentiality, data integrity, anti-replay and
enhanced identity authentication in network communication IP packet transport.
Confidentiality means encrypting user data and sending it in the form of ciphertext.
Data integrity means ensuring no data modification in the transport. IPSec
authenticates the data received to determine whether the packet has been modified.
Anti-replay means comparing the slide window of the target host with the sequence
number of the received packet to identify whether the packet is copied, preventing a
malicious user from intercepting IPSec packets and reinsert them into the session.
Origin certification means identifying the identity of the data sender through a
pre-shared key or RSA signature.
Loading...