The traditional Ethernet network designs require termination of the Layer 2 Network at Aggregation or Core layer to limit the fault isolation and broadcast domain due to spanning tree. Due to limitations of spanning tree, each network design is composed of both Layer 2 and Layer 3 to take advantage of routing features (e.g. multipathing and fast convergence, loop mitigation mechanisms like TTL, RPF) to extend their network as shown in Figure 1 below. Cisco's new technology, FabricPath, brings Layer 3 routing benefits to flexible Layer 2-bridged Ethernet networks.
Due to widespread use of virtualization and clustering technologies these days, many organizations are looking to extend their Layer 2 domains across multiple data centers. FabricPath can provide this solution because it has the reliability and HA (High Availability) features just like ISIS protocol. Figure 2 shows the key points of FabricPath from both a Layer 2 and Layer 3 prospective.
Currently FabricPath is available only on the F1-Series module of the Nexus 7000 series. FabricPath is derived from IT Standard TRILL technology with a lot of extra enhanced features. Its switching allows multipath forwarding at the Layer 2 without the use of spanning-tree. FabricPath uses layer 2 ISIS based protocol for its control plane. The FabricPath ISIS process is different than the layer 3 ISIS process.
FP Forwarding Mechanism:
FabricPath creates trees just like spanning tree but uses link-based control based on ISIS protocol rather than distance vector like spanning tree. This is why it is loop free. This allows FabricPath to be in a forwarding state on all paths (maximum 16) without any blocking. It also allows faster convergences in case of failure similar to routing protocol. As shown in Figure 3, the fabric topology is composed of ingress, egress (edge) switches that are connected to the hosts and core switches that provide the fabric to connect all the edge switches. The egress switch can have the ports connected to conventional Ethernet (CE) so the egress switch is the one that has interfaces that are part of fabric path and CE. To forward the traffic to multiple destinations, FabricPath creates the Tree. After electing common roots for the L2 Fabric, "trees" from these roots are calculated from the shared L2 IS-IS routing database. In FB topology, each switch gets a unique switch ID, as depicted in Figure 3, to create the Layer 2 routing table. The ingress switch determines the "Tree" to be used for a flow and add the unique Tree identifier into the Fabric Path header.
Figure 3 depicts the Fabric Path routing table view from each switch. As mentioned before, once the root of the tree is determined, the root assigns dynamic IDs to the members.
One of the major improvements in FabricPath is that not all the switches in the Layer 2 FabricPath domain have to learn all the MAC addresses, which helps scale the MAC address tables. In FabricPath, as shown in figure 4, the MAC address table of the host A where it is showing that the host B is connected locally on the CE, whereas host C and D are connected via FP to the remote switches 101 and 200. When the Host A needs to send traffic to host C and host C's MAC address is not known, it floods the traffic to its root tree and then root forwards the packets to all its member switches. If the destination is not known on a particular edge switch, the switch drops that frame and does not learn the MAC address. However, if the destination is present on that switch, it will keep the source MAC address. To help reduce the MAC address entries, the core FabricPath switches never learn the MAC addresses.
FabricPath is fairly simple to configure.To configure the basic FabricPath network, follow the following steps on each device:
Enable the FP feature set on each device.
switch# config t
switch(config)# feature-set fabricpath
Configure the FP interfaces.
Switch(config)# interface ethernet 1/1
Switch(configif)# switchport mode fabric
Set the VLAN into FabricPath Mode. The default is the CE VLAN mode.
switch(config)# vlan 10
switch(config-vlan)# mode fabricpath
Please visit Cisco.com for more information about FabricPath.
Good Morning, I was recently upgrading a Cisco 3650-48PS from 16.6.5 to 16.6.7 in Prime 3.2. I tested the 16.6.7 version on 6 switches prior to deploying to multiple switches across our network. After Prime 3.2 tried to update the first 3650 switch i...
HelloI would like some information regarding port-channels.I have heard colleagues in the area of networks say that it is not indicated to build a port-channel with odd number of interfaces, ie the ideal is always to have port-channels with even numbers o...
Hello,I have two nexus 9K switches with vPC configured, the upstream is connected to FWs, the downstream is connected via port channel which is member of vPC, to a switch.For testing when I'm shutting down the primary vPC switch, with a continuous ping fr...
In my PoC and validation of Assurance, I have now come to the part where we would like to see Application health status.My DNAC is version 184.108.40.206 and my Edge switches are running on version 16.6 code. The telemetry is working fine. Switches are send...
Hey All,In my fabric network I have 3 SSID configured where one of them is Fabric and other legacy. As I have tested in my lab I have to see my fabric SSID in DNAC->Provision->Fabric->Host Onboarding page but I do not see.Instead I see completely...