Community discussions

MikroTik App
 
swapnilsonawane81090
just joined
Topic Author
Posts: 24
Joined: Sat Feb 08, 2020 5:33 am

Multiple VLAN-BRIDGE-PPPOESERVER

Sat May 28, 2022 7:37 am

Image
We have Dell R620
With the above config.

Currently, we are operating 1000 PPPoE Customers on it with bandwidth utilization of 1.5G Approx, & CPU utilization for the same is below 10%.

We are having GPON & multiple OLTS under this Mikrotik,
All ONU/ONT is on default VLAN.
This is causing too much broadcast on the network.
To resolve this, Now we want to separate each ONU on separate VLANs, for that do we need to add all VLANS on Mikrotik & then on OLT?

If we add 4000 VLANs
4000 PPPOE Servers
4000 BRIDGE on the same Interface.

Do we face any issues?
Or will it be ok?

or any other option?
 
swapnilsonawane81090
just joined
Topic Author
Posts: 24
Joined: Sat Feb 08, 2020 5:33 am

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Sat May 28, 2022 4:48 pm

?
 
sindy
Forum Guru
Forum Guru
Posts: 10205
Joined: Mon Dec 04, 2017 9:19 pm

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Sat May 28, 2022 9:23 pm

I'm not sure you'll gain that much reduction of broadcast traffic by using 4000 VLANs - with PPPoE, the only broadcast traffic is the PADI from the client, so partitioning the network by means of VLANs just prevents the PADI from clients in one VLAN from reaching the clients in all other VLANs, and the same effect can be achieved without VLANs, by use of split horizon (which prevents forwarding among client-facing ports in general). But I don't know your L2 hardware between the CHR and the OLTs, maybe the switches support VLANs but not split horizon.

If you assign management IP addresses to the ONUs themselves directly, i.e. not by means of PPPoE, split horizon is still sufficient to prevent ARP requests from one ONU from reaching the other ONUs; the ARP requests from the CHR will still reach all ONUs even with split horizon, but it's still a significant reduction of broadcast traffic arriving to each individual ONU.

In any case, even if you choose the "4000 VLAN" way, there's no need to set up 4000 bridges at the CHR, the 4000 VLAN interfaces can be attached to a single common bridge or even directly to the "ethernet" port if you only use a single one.
 
swapnilsonawane81090
just joined
Topic Author
Posts: 24
Joined: Sat Feb 08, 2020 5:33 am

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Sun May 29, 2022 5:44 am

I'm not sure you'll gain that much reduction of broadcast traffic by using 4000 VLANs - with PPPoE, the only broadcast traffic is the PADI from the client, so partitioning the network by means of VLANs just prevents the PADI from clients in one VLAN from reaching the clients in all other VLANs, and the same effect can be achieved without VLANs, by use of split horizon (which prevents forwarding among client-facing ports in general). But I don't know your L2 hardware between the CHR and the OLTs, maybe the switches support VLANs but not split horizon.

If you assign management IP addresses to the ONUs themselves directly, i.e. not by means of PPPoE, split horizon is still sufficient to prevent ARP requests from one ONU from reaching the other ONUs; the ARP requests from the CHR will still reach all ONUs even with split horizon, but it's still a significant reduction of broadcast traffic arriving to each individual ONU.

In any case, even if you choose the "4000 VLAN" way, there's no need to set up 4000 bridges at the CHR, the 4000 VLAN interfaces can be attached to a single common bridge or even directly to the "ethernet" port if you only use a single one.
Ok..
But I am not using CHR.
I have installed ROs Directly on SSD and it's running on bare metal Dell 620.

4000 VLAN will make high CPU usage for server?
 
sindy
Forum Guru
Forum Guru
Posts: 10205
Joined: Mon Dec 04, 2017 9:19 pm

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Sun May 29, 2022 7:39 am

Any additional processing (like untagging and tagging) matters in large scale. Only a practical test can show whether the total load will become whole 2 times higher than with PPPoE encapsulation alone or just 1.1 times - the PPPoE encapsulation is more complex than mere tagging and untagging.

You should be able to test that in advance if you set the switch port adjacent to your router to send the only VLAN tagged, and do the same on the router, i.e. insert a corresponding /interface vlan between the physical interface and the /interface pppoe server. To make the test more realistic regarding the number of VLAN IDs to match against, I'd add all 4000 /interface vlan. No need to add the 3999 /interface pppoe server, though.

But the biggest issue with PPPoE seems to be the avalanche effect when a large number of client connections becomes unavailable at the same time - there are multiple threads about this here on the forum. Since all of them mention CCR10xx, an x86 may not be affected, but what I'm trying to say is that the CPU load during a stable regular operation state, even with high payload bandwidth, may be far lower than the one during such a transitional state.
 
User avatar
Larsa
Forum Guru
Forum Guru
Posts: 1041
Joined: Sat Aug 29, 2015 7:40 pm
Location: The North Pole, Santa's Workshop

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Sun May 29, 2022 10:21 am

But I am not using CHR. I have installed ROs Directly on SSD and it's running on bare metal Dell 620.

Just curious, since you're not using CHR I wonder how you managed to install and run RoS "bare metal" on a Dell 620?
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 19107
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Sun May 29, 2022 1:37 pm

But I am not using CHR. I have installed ROs Directly on SSD and it's running on bare metal Dell 620.

Just curious, since you're not using CHR I wonder how you managed to install and run RoS "bare metal" on a Dell 620?
Perhaps MT is so desperate with the lack of parts and product they are now attaching RoS to Dell machines...........
Its called RHell-6009
 
User avatar
ingdaka
Trainer
Trainer
Posts: 452
Joined: Thu Aug 30, 2012 3:06 pm
Location: Albania
Contact:

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Sun May 29, 2022 10:42 pm

In my opinion do not set each ONT on different VLAN. Your can set max of 1 VLAN per PON Port will be enough.
 
swapnilsonawane81090
just joined
Topic Author
Posts: 24
Joined: Sat Feb 08, 2020 5:33 am

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Mon May 30, 2022 4:23 am

But I am not using CHR. I have installed ROs Directly on SSD and it's running on bare metal Dell 620.

Just curious, since you're not using CHR I wonder how you managed to install and run RoS "bare metal" on a Dell 620?
ON SSD Sir.
First of all, I have plugged it into my normal workstation.
by using VMWare I have installed RoS on SSD.
Then pluuged that SSD to Dell.

Are you using CHR?
To use CHR, Hyperwiser will use some resources to run VM right?
that may affect your CHR performance?
 
swapnilsonawane81090
just joined
Topic Author
Posts: 24
Joined: Sat Feb 08, 2020 5:33 am

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Mon May 30, 2022 4:23 am

:lol: :lol: :lol:


Just curious, since you're not using CHR I wonder how you managed to install and run RoS "bare metal" on a Dell 620?
Perhaps MT is so desperate with the lack of parts and product they are now attaching RoS to Dell machines...........
Its called RHell-6009
 
swapnilsonawane81090
just joined
Topic Author
Posts: 24
Joined: Sat Feb 08, 2020 5:33 am

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Mon May 30, 2022 4:26 am

In my opinion do not set each ONT on different VLAN. Your can set max of 1 VLAN per PON Port will be enough.
Ok, Sir,
But if broadcasting is happening on 1 or 2 ONUs under the same PON, that will affect all ONU / ONT under that pon, right?
To overcome this, what necessary steps do we need to do sir?
 
User avatar
Larsa
Forum Guru
Forum Guru
Posts: 1041
Joined: Sat Aug 29, 2015 7:40 pm
Location: The North Pole, Santa's Workshop

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Mon May 30, 2022 12:08 pm

ON SSD Sir. First of all, I have plugged it into my normal workstation. by using VMWare I have installed RoS on SSD. Then pluuged that SSD to Dell. Are you using CHR? To use CHR, Hyperwiser will use some resources to run VM right? that may affect your CHR performance?

Sir, nice to make your acquaintance as well but no need for further sir's. :-D

Since you mentioned VMware my guess is that you're using a type 1 hypervisor that runs on "bare metal" on both machines like VMware ESX/ESXi.

Nowadays, there is no major difference in cpu runtime overhead between type 1 and type 2 (hosted hypervisor) where the latter consumes much more storage space and memory needed for the host operating system itself. Another big drawback of using a type 2 (hosted hypervisor) is that you need to restart more frequent due to updates of the host operating system, especially if you use Windows Server. If using Windows Server as a host one might reduce the vulnerability by setting up at least two servers with Hyper-V Live Migration. The corresponding solution for VMware is vSphere vMotion.

Also, I'm pretty sure you're using Mikrotik Cloud Hosted Router (CHR) since there is no other way AFAIK to run RouterOS on other hardware than sold by Mikrotik.
 
swapnilsonawane81090
just joined
Topic Author
Posts: 24
Joined: Sat Feb 08, 2020 5:33 am

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Mon May 30, 2022 3:47 pm

ON SSD Sir. First of all, I have plugged it into my normal workstation. by using VMWare I have installed RoS on SSD. Then pluuged that SSD to Dell. Are you using CHR? To use CHR, Hyperwiser will use some resources to run VM right? that may affect your CHR performance?

Sir, nice to make your acquaintance as well but no need for further sir's. :-D

Since you mentioned VMware my guess is that you're using a type 1 hypervisor that runs on "bare metal" on both machines like VMware ESX/ESXi.

Nowadays, there is no major difference in cpu runtime overhead between type 1 and type 2 (hosted hypervisor) where the latter consumes much more storage space and memory needed for the host operating system itself. Another big drawback of using a type 2 (hosted hypervisor) is that you need to restart more frequent due to updates of the host operating system, especially if you use Windows Server. If using Windows Server as a host one might reduce the vulnerability by setting up at least two servers with Hyper-V Live Migration. The corresponding solution for VMware is vSphere vMotion.

Also, I'm pretty sure you're using Mikrotik Cloud Hosted Router (CHR) since there is no other way AFAIK to run RouterOS on other hardware than sold by Mikrotik.
NO

I have used VMWARE on my normal machine to install ROS on SSD.

No virtualization on Dell Bare Metal Server.
 
User avatar
Larsa
Forum Guru
Forum Guru
Posts: 1041
Joined: Sat Aug 29, 2015 7:40 pm
Location: The North Pole, Santa's Workshop

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Mon May 30, 2022 9:15 pm

I have used VMWARE on my normal machine to install ROS on SSD. No virtualization on Dell Bare Metal Server.

Ok, would you mind explaining in more detail how you managed to install and run something from the download page as a "pure metal" installation on the Dell?
 
User avatar
chechito
Forum Guru
Forum Guru
Posts: 2990
Joined: Sun Aug 24, 2014 3:14 am
Location: Bogota Colombia
Contact:

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Tue May 31, 2022 4:49 am

i think VLAN per customer is overly exaggerated approach

i think maybe a VLAN per GPON interface is the most segmented approach viable

create a PPPoE server interface per VLAN, do VLAN translation on yout GPON OLT to avoid the need to reconfigure customer ONU/ONT
 
swapnilsonawane81090
just joined
Topic Author
Posts: 24
Joined: Sat Feb 08, 2020 5:33 am

Re: Multiple VLAN-BRIDGE-PPPOESERVER

Tue May 31, 2022 5:50 am

i think VLAN per customer is overly exaggerated approach

i think maybe a VLAN per GPON interface is the most segmented approach viable

create a PPPoE server interface per VLAN, do VLAN translation on yout GPON OLT to avoid the need to reconfigure customer ONU/ONT
VLAN Per PON Interface or on each ONU Under that PON will have separate VLAN?

Who is online

Users browsing this forum: Amazon [Bot], Batterio, dredex, jhbarrantes, popecix and 80 guests