CISCO CATALYST 6500 SERIES SUPERVISOR ENGINE 1A AND 2
As the Cisco® premier modular multilayer switch, the Cisco Catalyst® 6500 Series delivers secure, converged services from the wiring closet to the core, to the data center to the WAN edge.
The supervisor engines for the Cisco Catalyst 6500 Series deliver the latest advanced switching technology with proven Cisco software to power a new generation of scalable and intelligent multilayer switching solutions for both enterprise and service provider environments. Designed to integrate data, voice, and video into a single platform for fully integrated IP communications, the Cisco Catalyst 6500 Series supervisor engines enable intelligent, resilient, scalable, and secure high performance multilayer switching solutions.
The widely deployed Supervisor Engine 1A and Supervisor Engine 2 are used in wiring closets, distribution/core, data center, and WAN edge configurations enabling the seamless integration of advanced services such as security, voice, and content into a converged network that reduces the total cost of ownership. And the new Supervisor Engine 720 is ideally suited for high performance core, data center, and metro Ethernet deployments with its scalable performance of up to 400 million packets per second using a 720 Gbps switch fabric.
By sharing a common set of interfaces, operating system and management tools, the Cisco Catalyst 6500 Series supervisors provide operational consistency-enabling common sparing and minimizing training requirements; all modules feature predictable performance and a broad range of capabilities. Supervisor Engine 1A and Supervisor Engine 2 highlights include:
• Feature-rich and wire-rate intelligent network services-Support and complement comprehensive security and granular quality of service mechanisms, including identity-based networking capabilities based on IEEE 802.1x extensions and simplified configuration using two AutoQoS commands
• End-to-end flexible deployments-Position anywhere in the network from the wiring closet to the distribution/ core, and from the data center to the WAN edge and the MAN
• Scalable and predictable performance-Feature a flexible switch fabric and forwarding architecture delivering throughput from 15 Mpps/32 Gbps (Classic interface modules), to 30 Mpps/256 Gbps (CEF256 interface modules), to 210 Mpps/256 Gbps (dCEF256 interface modules) for network cores supporting multi-gigabit trunks
• Flexible multilayer switching support and forwarding architectures-Select basic Layer 2 forwarding or feature-rich Cisco Express Forwarding (CEF) using the same supervisor
• Choice of operating system support-Support both Cisco IOS® Software, Cisco Catalyst OS software, and Hybrid (Cisco Catalyst OS software and Cisco IOS Software for the MSFC)
• Operational consistency-Support all 3 generations of Cisco Catalyst 6500 Series interface and services modules in all Cisco Catalyst 6500 3-, 6-, 9-, and 13-slot chassis running Cisco IOS Software and Cisco Catalyst Operating System Software and a common set of Cisco network management tools that support the Cisco Catalyst 6500 Supervisor Engine 1A and 2 as well as many other Cisco Systems® product lines. (13-slot chassis is compatible with Supervisor Engine 2 only).
• Maximum network uptime and user productivity-Provide fault-tolerant network resilience and high availability features including fast 1- to 3-second stateful failover between redundant Cisco Catalyst 6500 supervisor engines enabling near-hitless software upgrades for business-critical network environments, including IP-telephony enabled wiring closets
• Extensive management tools-Support CiscoWorks network management platform, Simple Network Management Protocol (SNMP) versions 1, 2, and 3 and four RMON groups (statistics, history, alarms, and events)
As part of the Cisco Catalyst 6500 Series of modular products, Supervisor Engines 1A and 2 share a common operating system and CLI-encouraging an end-to-end Cisco Catalyst 6500 Series solution for maximum operational consistency, common sparing, and minimized training requirements (Figure 1).
Figure 1
Supervisor Engines 1A and Supervisor Engine 2
Supervisor Engine 1-PFC
Supervisor Engine 2-MSFC2
SUPERVISOR ENGINE 1A AND SUPERVISOR ENGINE 2 DEPLOYMENT SCENARIOS
With a broad range of interfaces, and services modules, chassis/slot configurations as well as a scalable set of Supervisor Engines, the Cisco Catalyst 6500 can be deployed anywhere in the network. The figure below depicts the Cisco Catalyst 6500 deployed in the wiring closet, distribution, core, data center, WAN edge and Metro and provides recommended supervisor engines for each part of the network.
Figure 2
Cisco Supervisor Engine 1A and Supervisor Engine 2 Deployment Scenarios
The following table outlines the primary deployment scenarios for Cisco Catalyst 6500 Series supervisor engines.
Table 1. Deployment Scenarios for Cisco Catalyst 6500 Series Supervisor Engines
Enterprise distribution, data centers, and WAN edge
Supervisor Engine 1A
PFC
MSFC2
15 Mpps, 32 Gbps
Centralized Layer 2-4 forwarding
Enhanced security and quality of service (QoS)
Distribution and core
Supervisor Engine 2 PFC2
30 Mpps, 256 Gbps Centralized Layer 2 forwarding and Layer 3-4 services Enhanced security and QoS
Premium wiring closet and data center access
Supervisor Engine 1A PFC
15 Mpps, 32 Gbps
Centralized Layer 2 forwarding and Layer 3-4 services
Enhanced security and QoS
Enterprise wiring closets
Supervisor Engine 1A
2GE
15 Mpps, 32 Gbps
Centralized Layer 2 forwarding
Value wiring closet
SUPERVISOR ENGINE 1A AND 2 FEATURES
The Supervisor Engine 1A and 2 provide the following features:
• High availability
• Scalable performance
• Wire-rate traffic management
• End-to-end management tools
• Comprehensive security
• Advanced Layer 2, Layer 3, and Layer 4 forwarding
High Availability
Supervisor Engines 1A and 2 can be deployed in dual-supervisor engine configurations in all Cisco Catalyst 6500 Series chassis (6503, 6506, 6509, 6509-NEB, 6509-NEB-A, and 6513 [6513 is compatible with Supervisor Engine 2 only]). The dual-supervisor engine configuration synchronizes protocol states between the primary and the redundant supervisor engine, provides industry-leading network availability with sub-3-second failover, and maximizes network uptime by allowing hot swapping of standby supervisor engines. Important high-availability features include:
• Supervisor engine redundancy-With synchronization of protocol states and support for HSRP and Uplink Fast
• Rapid failover rates-Sub-3-second stateful failover and Layer 3 IP Unicast and Multicast failover
• Hot swapping-Hot swapping of standby supervisors
Scalable Performance
Supervisor Engines 1A and 2 provide scalable performance, from 15 Mpps to 210 Mpps with bandwidth scaling from 32 Gbps to 256 Gbps, that densely populated wiring closets and high-throughput network cores with multigigabit trunks require.
Supervisor Engine 2 uses the Cisco Express Forwarding routing architecture that performs high-speed lookups even with advanced Layer 3 services enabled, and independent of the number of flows through the switch, while maintaining 30 Mpps of centralized performance and 210 Mpps of distributed performance.
• Supervisor Engine 1A-Provides 15-Mpps performance with 32-Gbps bandwidth
• Supervisor Engine 2-Provides 30 Mpps of centralized performance and 210 Mpps of distributed performance with 256-Gbps bandwidth
For details see Table 2-Cisco Catalyst 6500 Supervisor Engine Feature Comparison.
Wire-Rate Traffic Management
Supervisor Engines 1A and 2 provide wire-rate traffic management using Layer 2, 3, and 4 QoS and security checks, including ACL policy enforcement, as part of their forwarding process to protect and secure content. These traffic management features enable efficient handling of converged networks that carry a mix of mission-critical, time-sensitive, and bandwidth-intensive multimedia applications.
• Advanced QoS tools such as packet classification and marking and congestion avoidance based on Layer 2, Layer 3, and Layer 4 header information.
• QoS scheduling rules with thresholds can be configured in the switch for multiple receive and transmit queues.
• Rate limiting can be used to police traffic on a per-flow or aggregate basis with a very fine granularity.
For details see Table 3-QoS Features Comparison.
End-to-End Management Tools
Managed with CiscoWorks2000, Cisco Catalyst 6500 Series switches can be configured and managed to deliver end-to-end device, VLAN, traffic, and policy management. Cisco Resource Manager, a Web-based management tool that works with CiscoWorks2000, provides: automated inventory collection, software deployment, easy tracking of network changes, views into device availability, and quick isolation of error conditions.
Supervisor Engines 1A and 2 provide a comprehensive set of management tools to provide the required visibility and control in the network.
• Console management-Provide shared interface to the Supervisor Engine 2 and the Multilayer Switch Feature Card 2 (MSFC2) available out-of-band from a local terminal or remote terminal connected through a modem to the console or auxiliary interface
• In-band management-Provide shared interface to the Supervisor Engine 2 and the MSFC2 available in-band through SNMP, Telnet client, Bootstrap Protocol (BOOTP), and Trivial File Transfer Protocol (TFTP)
• SPAN-Allow management and monitoring of switch traffic
• RSPAN-Allow centralized management and monitoring by aggregating and directing traffic from multiple distributed hosts and switches to a remotely located switch through a trunk link
• VACL Capture-Direct traffic to a network analysis port using an ACL
For details see Table 4-Management Tools Comparison.
Comprehensive Security
The advanced security capabilities of Supervisor Engines 1A and 2 can reduce the threats of malicious attacks while enabling authentication, authorization, and accounting. With support for up to 32K ACL entries, IP/IPX security ACLs in hardware, and advanced features such as port security, Supervisor Engines 1A and 2 offer a superior set of Layer 2-4 network traffic security capabilities:
• Layer 2 security features-Include private VLANs and port security, to help the network architect properly partition and control the utilization of the switch resources.
• Layer 2, 3, and 4 hardware filters-Can work on the forwarding engine and in conjunction with optional integrated services modules to inspect each forwarded packet and permit or deny all the streams of traffic according to the network administrator's rules.
For details see Table 5-PFC and PFC2 Security Features Comparison.
SUPERVISOR ENGINE 1A AND 2 ARCHITECTURE
Cisco Catalyst 6500 Series Supervisor Engines 1A and 2 manage the system by storing and running the system software, controlling the various modules in the chassis, performing basic forwarding, and providing the Gigabit uplinks that allow redundant supervisor engine connections.
Supervisor Engine 2 offers an improved forwarding design. The Supervisor Engine 1A CPU performs Layer 2 forwarding, but Supervisor Engine 2 performs Cisco Express Forwarding (CEF) and distributed CEF, doubling the forwarding performance. As shown in Table 2, Supervisor Engines 1A and 2 offer choices in operating characteristics, including forwarding architecture, performance, bandwidth, DRAM and boot Flash sizes, and support for chassis, Policy Feature Card/Policy Feature Card 2 (PFC/PFC2), MSFC2, and Switch Fabric Module (SFM).
30 Mpps-Supervisor Engine 2-PFC2 and Supervisor Engine 2-MSFC2
up to 210 Mpps-Supervisor Engine 2-MSFC2 with SFM and DFCs
15 Mpps
Maximum bandwidth
256 Gbps (with distributed forwarding)
32 Gbps
DRAM
128 MB, 256 MB, 512 MB
128 MB
Onboard Flash (BootFlash)
32 MB
16 MB
Chassis supported
6006, 6009, 6503, 6506, 6509, 6509-NEB,
6509-NEB-A, 6513
7603, 7606, 7609, OSR-7609, 7613
6006, 6009, 6503, 6506, 6509, 6509-NEB,
6509-NEB-A
7603, 7606, 7609, OSR-7609
PFC daughter card available
Yes (PFC2); Standard with Supervisor Engine 2
Yes (PFC); Not field upgradable
MSFC2 daughter card available
Yes, and field upgradable
Yes, not field upgradable
SFM supported
Yes
No
The PFC/PFC2 and MSFC2 daughter cards and the SFM increase Supervisor Engines 1A and 2 functions:
• PFC and PFC2-Perform hardware-based Layer 2, Layer 3, and Layer 4 packet forwarding as well as packet classification, traffic management, and policy enforcement
• MSFC2-Performs Layer 3 control plane functions including address resolution and routing protocols
• SFM 2-Provides 256 Gbps dedicated bandwidth to all slots in the chassis and requires Supervisor Engine 2-MSFC2. The SFM 2 will not operate in the same chassis with Supervisor Engine 720.
Policy Feature Card (PFC and PFC2)
The Policy Feature Card provides quality of service (QoS) and policy based intelligent networking capabilities to the Cisco Catalyst 6500 Series. Recommended for premier wiring closets, backbone, data center and WAN edge deployments, the PFC identifies and classifies traffic applying the appropriate QoS priority level and Security Policies as defined by the network administrator configured ACLs. The PFC also helps to prevent unauthorized applications from being allowed on the network.
The Supervisor Engine PFC daughter card makes the packet forwarding decision in its application-specific integrated circuit (ASIC) complex. In distributed forwarding implementations, an identical ASIC complex located on an interface module's DFC daughter card allows the interface module to make packet-forwarding decisions locally. After the PFC or DFC makes the forwarding decision for the interface module, it sends the forwarding result to the interface module that does all packet buffering, queuing, and delivery.
In addition to packet forwarding, the PFC performs the following major functions at wire-rate:
Supported on both Supervisor 1A and Supervisor 2 as an option the MSFC2 acts as the Layer 3 forwarding routing engine. On its Layer 3 forwarding routing engine, the MSFC2 builds the CEF Forwarding Information Base (FIB) table in software and then downloads this table to the ASICs on the PFC or DFC that make the forwarding decisions for IP Unicast and Multicast traffic. For more information see How Cisco Express Forwarding Works.
Layer 3 Switching
Table 6 shows the MSFC2 Layer 3 switching features.
Yes, in software (only on Supervisor Engine 2-MSFC2
No, requires MSFC2 upgrade
No
Note: Refer to the release notes for up-to-date software version information.
SWITCH FABRIC MODULES (SFM AND SFM2)
Designed to support distributed forwarding, the Cisco Catalyst 6500 Series SFM (WS-X6500-SFM) and SFM2 (WS-X6500-SFM2) provide dedicated bandwidth to each slot up to 256 Gbps per system. For distributed forwarding to work, an interface module must have a Distributed Forwarding Card (DFC) and must be installed in the chassis with either a Supervisor Engine 2-MSFC2 and an SFM or SFM2, or a Supervisor Engine 720. The SFM works with Cisco Catalyst 6506, 6509, 6509-NEB, and 6509-NEB-A chassis and can occupy any slot. The SFM2 works with 6506, 6509, 6509-NEB, 6509-NEB-A, 6513, 7603, 7606, 7609, OSR-7609, and 7613 chassis; and it can occupy any slot, except in the 6513 and 7613 where it must occupy slot 7 or 8.
The Cisco Catalyst 6503 does not currently support the SFM modules as this would leave one slot open after configuring the supervisor and SFM in two of the three available slots. However, the Supervisor 720 provides full CEF256, dCEF256, aCEF720, and dCEF720 capabilities to the Cisco Catalyst 6503 chassis with its slot-efficient integration of the supervisor engine and switch fabric in a single module.
Switch Fabric Module Architecture
Providing access to the switch fabric through dual 8-Gbps serial channels, the SFM or SFM2 performs all switching on the module ndependent of the passive backplane. For more information see How Distributed Cisco Express Forwarding (dCEF) Works.
High Availability
Two SFM and SFM2 modules can be configured in a system for high availability with 1-to-1 redundancy, where one SFM or SFM2 is operational and one serves as a backup.
Note: The SFM and SFM2 cannot operate in the same chassis with a Supervisor Engine 720.
SUPERVISOR ENGINE 2-MSFC2
Suited for deployment in the distribution/core with Classic interface modules, CEF256 interface modules and dCEF256 interface modules, Supervisor 1A-2GE provides Layer 2/3/4 forwarding with the following operational advantages:
• Bandwidth-32 Gbps per system; 256 Gbps with SFM in chassis
• Layer 2, 3 traffic classification and marking-Layer 2 and Layer 3 (See Table 3-QoS Features Comparison for details)
• Multilayer (Layer 3) switching-IPv4 supported (See Table 6 for details)
• Distributed forwarding-Requires Switch Fabric Module and interface modules with Distributed Forwarding Cards (DFCs); for details, see section titled How Distributed Cisco Express Forwarding (dCEF) Works
• Operating system-Cisco Catalyst OS with Cisco IOS on the MSFC and Cisco IOS Software
