首頁 探索 說明
註冊 登入
jeremy
/
HON95-wiki
镜像来自 https://github.com/HON95/wiki
1
0
複刻 0
Files 問題管理 0 Wiki
目錄樹: 6773b14e7e
分支列表 標籤列表
HON95-wiki
/
it
/
network
/
architecture.md

architecture.md 2.8 KB
文件歷史 原始文件

title: Network Architecture breadcrumbs:

  • title: IT
  • title: Network --- {% include header.md %}

Models

Single Layer

  • Switching, routing and firewalling is all done on the same layer, with clients directly connected.

Three-layer Hierarchical Model

  • Appripriate for large networks spanning multiple regions (e.g. multiple buildings).
  • Scales well.
  • Focuses on north-south traffic.
  • Consists of three layers.
  • Access layer:
    • L2 switches.
    • Connected to clients.
    • Typically one access-layer VLAN spans one or a few access switches.
    • Should implement first-hop security.
    • Connected upstream to distribution switches.
  • Distribution layer:
    • L3 switches or routers.
    • terminates access-layer VLANs.
    • Implements features like filtering and QoS.
    • May manage individual WAN connections.
    • Connected upstream to core routers and ptionally interconnected with other distribution switches.
  • Core layer:
    • Routers.
    • Provides a backbone between distribution regions and toward external networks.
    • Focuses entirely on high bandwidth, low latency, high reliability and high resilience.
    • Avoids anything that may slow down traffic, like access lists, policy enforcement, etc.
    • It's possible to connect multiple core routers and distribution switches by using a switch.

Collapsed Core

  • Similar to the three-layer hierarchical model, but with the core and distribution layers collapsed.
  • Appropriate for medium/small sites without multiples regions.

Collapsed Distribution

  • Similar to the three-layer hierarchical model, but with the distribution and access layers collapsed.
  • Generally not very useful.

Spine Leaf

  • Two or three layers: Leaf layer, spine layer and an optional super-spine layer.
  • Leaf switches connect to every spine switch and not to any other leaf switches.
  • Spine routers (or switches) are not connected to any other spine routers.
  • Hosts connect only to leaf switches.
  • All spine-leaf links are routed.
  • Every pair of leaf switches are always two hops away from each other.
  • Routers to external areas, firewalls and load balancers are added connected leaf switches called border leaves.
  • Large spine-leaf networks may be broken into multiple networks where the spine rouers are connected to routers in the super-spine layer.
  • Focuses on east-west traffic.
  • Well suited for data centers.
  • Well suited for ECMP.
  • Well suited for VXLAN for allowing hosts to move easily between leaf switches.

Terms

  • Equal-cost multi-path routing (ECMP): Routing strategy for forwarding over multiple best paths to the same destination.
  • Oversubscription: Less uplink capacity than downlink capacity.

Notes

  • VXLAN or Q-in-Q may be used to span VLANs over different areas.

{% include footer.md %}