Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Flow Monitoring Using CSE2000 Overview

    Although the Monitoring Services PIC can be used in an active flow monitoring topology on various Juniper Networks® routers, the Monitoring Services PIC is not supported on Juniper Networks PTX Series Packet Transport Routers because of challenges in terms of CPU and memory requirements for wired and mobile applications that are supported by the PTX Series routers. Further, PTX Series routers do not support inline sampling. Considering the vast coverage of PTX Series routers, it is necessary to scale the control plane and service plane at a competitive level by using a new hardware that has a more powerful processor and a higher service capability.

    Juniper Networks Carrier-Grade Service Engine (CSE) is a solution that enables Juniper Networks PTX5000 Packet Transport Routers and Juniper Networks PTX3000 Packet Transport Routers to provide high-performance flow monitoring and accounting services. The CSE2000 device is tethered to the PTX Series router and provides support for active flow monitoring version 9. The CSE2000 enables scaling of control plane and service plane, without adding components to the existing PTX Series router.

    Note: You can connect the CSE2000 to PTX Series routers in one of the following ways:

    • Connect CSE2000 to a PTX5000 router.
    • Connect CSE2000 to a PTX3000 router.
    • Connect CSE2000 to two PTX3000 routers.
    • Connect CSE2000 to two PTX5000 routers.
    • Connect CSE2000 to a PTX5000 router and a PTX3000 router.

    For more information about connecting the CSE2000 to PTX Series routers, see the CSE2000 Hardware Installation Guide.

    Using the CSE2000 tethered to a PTX Series router, you can perform the following operations:

    • Traffic sampling—You can create a copy of traffic and send it to the CSE2000, which performs flow accounting while the PTX Series router forwards the packet to its original destination.
    • Active flow monitoring—Active monitoring implies that flow monitoring is carried out on the same router (the CSE2000 is treated as a part of the router) that forwards the packets being monitored.
    • Flow aggregation—You can collect an aggregate of sampled flows and send the aggregate to a specified host that runs the version 9 format defined in RFC 3954, Cisco Systems NetFlow Services Export Version 9. With the version 9 format, you can sample MPLS, IPv4, and IPv6 traffic.

    Figure 1: Active Flow Monitoring Version 9 by Tethering CSE2000 to PTX Series Router

    Active Flow Monitoring Version
9 by Tethering CSE2000 to PTX Series Router

    The CSE2000 is tethered to a PTX Series router to enable active flow monitoring version 9. Active flow monitoring version 9, which is based on RFC 3954, provides a way to organize flow data into templates. It also provides a way to actively monitor IPv4, IPv6, and MPLS flows. Active flow monitoring version 9 runs as an application on the CSE2000. Control and data path connectivity between a PTX Series router and the CSE2000 is shown in Figure 1.

    Control path connectivity between the PTX Series router and the CSE2000 is required for generating proper active flow monitoring version 9 records, for downloading templates, and for collecting the statistics.

    Data path connectivity from the PTX Series router to the CSE2000 is enabled by means of tethered interfaces. A maximum of two interfaces can be connected to a single CSE2000 service card. These two interfaces must be present on the same FPC in the PTX Series router. These tethered interfaces form a logical interface and are called aggregated tethered services (ATS) interfaces. ATS interfaces are similar to aggregated Ethernet interfaces; however, they do not support Link Aggregation Control Protocol (LACP).

    As shown in Figure 1, traffic enters through the ingress port on a PTX Series router on which sampling is configured, the sampled packets are sent to the CSE2000 through the tethered interfaces, and traffic goes out through the egress port. Active flow monitoring version 9 operations are performed on the CSE2000 and the packets are exported in the form of v9 records from the CSE2000 to the PTX Series router. The PTX Series router forwards the v9 records to the version 9 flow server.

    Modified: 2017-01-18