The New Network
Explore Juniper’s vision for network innovation and how the company and industry are shaping the future with the new network
Showing results for 
Search instead for 
Do you mean 

So what part of Layer 3 don’t they get?

by Juniper Employee ‎02-14-2011 10:05 AM - edited ‎02-18-2011 04:16 PM

One of the keys in building a revolutionary new fabric architecture for the data center is not forcing unnecessary change on the rest of the data center.  Data centers want to evolve gracefully.  The goal is to unleash the promise of the modern data center without disrupting how the infrastructure connects to the fabric or how applications are implemented.


Thus the interfaces to servers and storage should track standards so that the existing servers and storage can connect while evolving to incorporate newer protocols such as Data Center Bridging (DCB), VEPA, and FCoE.  It should also be possible to implement existing applications on top of the fabric to take advantage of the lower latency and greater agility to improve the user experience, but without requiring any alterations to the applications themselves.


Here lies the challenge. Almost all data centers implement Layer 2 and Layer 3 protocols to manage traffic flows.  Layer 2 provides plug-and-play simplicity but struggles to provide effective inter-switch connectivity without inflicting loops and necessitating protocols such as Spanning Tree or TRILL. Layer 2 is also subject to flooding and ARP-table corruption issues.  Layer 3 does an excellent job at inter-switch connectivity and securing (by isolating) subnets but lacks plug-and-play capabilities.  Therefore, most data centers implement a combination of Layer 2 and Layer 3 and applications require traffic flows to constantly cross between Layer 2 and Layer 3.  For example, VLANs - a Layer 2 capability - are used to contain Layer 2 loop and flooding issues while providing traffic separation between different applications or tiers of the same application.  This traffic separation is essential to the security strategy within the data center.  However to enter into a VLAN or cross between VLANs, traffic must pass through Layer 3.


So what confuses me is why anyone would want to implement a data center “fabric” that only supports Layer 2 traffic.  This completely misses the point of a data center fabric.


I have spoken previously about the benefits of a flat, non-blocking, any-to-any fabric within the data center. That this is the ideal topology is not in doubt; all major switch vendors are now espousing their own fabric strategies. A number of them are proposing non-blocking networks built out of their existing switch products. The problem with this strategy is that it inherently exacerbates multi-pathing challenges, increasing the number of potential loops in the network.  To address this, vendors are proposing a set of proprietary or “pre-standard” multi-pathing protocols which create L2 tunnels and thus avoid loops.  This includes non-conforming TRILL-like and Shortest Path Bridging implementations.

Unfortunately these protocols only address Layer 2 traffic.  These tunnels must be terminated before traffic may cross between VLANs or exit the data center. This adds overhead and latency and adversely impacts every application.  In one case, the vendor actually requires separate hardware to handle Layer 2 vs. Layer 3 traffic. This creates a major capacity planning nightmare that did not exist before.  While they admit their solution is best suited for Layer 2-only environments (with the exception of some HPC environments), almost all current applications require Layer 2 AND Layer 3. And the applications are not about to change.


Finally, these approaches fail to address the most challenging issue facing the data center and its network: complexity.  In fact, they ADD complexity.  In the data center, where management and operating costs dominate the economics, why would the concept of introducing more complexity be considered acceptable?


With the Stratus Project, we looked at this problem and came to a very different conclusion.  If you properly engineer the fabric from the ground up, the fabric can deliver unprecedented scalability and resiliency while maintaining the operational simplicity of a single Layer 2/Layer 3 switch. No changes to the interfaces to the infrastructure.  No changes to the applications. Blazing performance, inordinate simplicity.  Stay tuned.

by robert.juric
on ‎02-15-2011 07:08 AM

You state, "Thus the interfaces to servers and storage should track standards...", but why stop at the interfaces to the servers and storage? The Stratus Project is going to rely on proprietary hardware to lay out the network fabric. I believe we should have standards throughout the entire network. I'm not saying the other vendors are doing a better job at this, FabricPath isn't standard-friendly either. At least with TRILL or SPB we have people working on defining a standard, a standard which can be implemented by any vendor in order to create an OPEN network fabric. A closed, locked-in solution is not a very good one in my opinion.

by Juniper Employee
on ‎03-04-2011 03:09 PM

Robert's question reflects his perception that the QFabric architecture is a network and, like any network, he strongly believes that it should be built out of standard interfaces.  We at Juniper completely agree—networks should be open.  However this is where the confusion about QFabric architecture most often arises - the natural assumption that the QFabric architecture is a network.  It is not.  The QFabric architecture is, in fact, a switch.


Robert, This is an excellent question, and speaks to the heart of the design of the QFabric architectureNow that we have gone public with the architecture, I can better respond.  Please see this blog posting which directly addresses your question : Taking the Network out of the Network 

Juniper Networks Technical Books
About the Author
  • Prior to Juniper acquisition, Ankur was the Founder and CEO of Contrail Systems Inc - a pioneer in standards based network virtualization and scale-out networking software. Ankur has over 15 years of experience in building world-class networking products and leading high performance teams. Prior to Contrail, Ankur served as Chief Technology Officer and VP of Engineering at Aruba Networks, where he played critical roles in the rapid expansion of team, products, and global businesses. Before Aruba, Ankur helped drive Juniper’s initial entry into and expansion of the Ethernet Switching market. Ankur received his MSEE from Stanford University & BSEE from the University of Southern California.
  • I am an experienced leader in the Information Experience (iX) industry. For over 20 years, I've led information organizations at Juniper, Microsoft, Cisco, and Oracle to deliver quality technical documentation and information products to customers and partners across the globe.
  • Bob Dix currently serves as the Vice President of Government Affairs & Critical Infrastructure Protection for Juniper Networks. During his career, he has served in senior leadership roles in industry and government, including serving as Staff Director for the House Government Reform Subcommittee on Technology, Information Policy, Intergovernmental Relations and the Census during the 108th Congress. He represents Juniper on the Industry Executive Point of Contact for the President's National Security Telecommunications Advisory Committee ( NSTAC ), where he chaired the Cybersecurity Collaboration Task Force in 2009. He served as Chair of the Information Technology Sector Coordinating Council ( IT SCC ) from 2008 – 2010 and currently remains a member of the Executive Committee. Mr. Dix was elected in May, 2011 as Chair of the Partnership for Critical Infrastructure Security ( PCIS ). He also serves on the National Security Task Force for the U. S. Chamber of Commerce. He is a member of the AFCEA Cyber Security Committee and Chairs the Supply Chain Assurance Subcommittee for TechAmerica. Additionally, Dix has actively worked to insure and coordinate private sector participation and collaboration with the National Exercise Program, intended to test our nation’s preparedness and resiliency. He served as Chair of the National Private Sector Working Group for National Level Exercise 2011 and 2010. In 2007 and 2009, Dix was honored with a prestigious Federal 100 Award, and was recognized in March, 2010 as the recipient of the annual FCW Industry Eagle Award. Dix also served as a local government elected official in Northern Virginia for 12 years and in his spare time coaches AAU/Travel girls basketball.
  • Jennifer Blatnik is vice president of cloud, security and enterprise portfolio marketing at Juniper Networks with focus on enterprise deployments of security, routing, switching, and SDN products, as well as cloud solutions. She has more than 20 years of experience helping enterprises solve network security challenges. Before joining Juniper, Jennifer served multiple roles at Cisco Systems, Inc., including directing product management for security technologies aimed at small to medium enterprises, as well as supporting managed services, cloud service architectures and go-to-market strategies. She holds a B.A. in Computer Science from University of California, Berkeley.
  • Jerry oversees all aspects of OpenLab which serves as a catalyst to spark the development of new innovative software applications or solutions that leverage the power of SDN/network programmability and intelligence. OpenLab is unique within Juniper and with its polished facility, globally accessible lab, and educational programs – such as the SDN “hackathons,” it serves as a tool for customer, partners, and academia. Prior to this position, Jerry led the development, management and marketing of the company’s strategic partnerships for video/unified communications, optical networking, and content/media delivery. In addition to handling the day-to-day oversight of the partnerships, he established new cross-partner go-to-market processes to drive and manage joint field opportunities. Before joining Juniper, Jerry led the Lucent Technologies application hosting/service provider marketing organization. He has over 25 years of experience in the data networking field with a focus on strategic alliance development, marketing, and technical field support. Jerry possesses a BS degree in Computer Science from St. John’s University in New York. He is active as a Juniper ambassador within the technology and academic community which includes advisory board positions with both NJIT and Rutgers in New Jersey.
  • Kevin Walker is the Security Chief Technology and Strategy Officer for Juniper’s Development and Innovation (JDI) organization. He is responsible for driving the security strategy both internally within Juniper, and externally with investors, partners, influencers, and customers. He provides the guidance required for JDI to conceive, develop and create momentum for industry-leading security solutions. Working closely with the Security Engineering team, Walker identifies the opportunities for improved security, growth, and innovation to deliver the scalable, reliable, and compliant security architecture needed in today’s security landscape. Before joining Juniper, Walker was VP and Assistant Chief Information Security Officer (CISO) at He has served as a Chief Information Security Officer (CISO), Chief Security Strategist and Director of Information Security across a number of notable companies including Intuit, Cisco, Symantec and VERITAS Software. With over twenty-five years in various computer science and information technology disciplines, focusing on enterprise applications, network design, and information security, Walker possesses research and engineering expertise across of range of technologies including networking protocols, securing applications at the atomic level, cryptography, and speech biometrics.
  • As Juniper’s Senior Vice President of Strategy and Product Line Management, Kevin Hutchins is responsible for defining and enabling Juniper’s strategy from company vision into product execution. This includes driving the company’s inorganic growth through strategic partnerships, venture investments and acquisitions/divestitures. In addition, he is responsible for driving key strategic imperatives, including Juniper’s software strategy and transformation. Hutchins joined Juniper in 2010 as Vice President, Portfolio Management & Business Operations for Juniper’s Development & Innovation team where he led business planning, portfolio rationalization, new product introduction and execution of strategic programs across Juniper’s portfolio of routing, switching and security products.
  • Mike Marcellin is Senior Vice President and Chief Marketing Officer, leading the global marketing team responsible for marketing Juniper’s product and services portfolio and stewarding the brand, driving preference for Juniper in the market, training our partners and account teams, and developing a differentiated information experience for our customers. Before joining the global marketing organization, Marcellin led business strategy and marketing for Juniper’s industry-leading portfolio of high-performance routing, switching and security products. Prior to joining Juniper in 2010, Marcellin served as Vice President of Global Managed Solutions for Verizon, where he oversaw product development and marketing of its managed IP networking, hosting, security and IT solutions for businesses around the world. He also served as Vice President of Global Product Marketing for Verizon Business, executive director of Verizon Business’ IP and Ethernet portfolio as well as leading the company’s eCRM marketing division. Marcellin began his career with MCI in 1994. Marcellin is a Board Member for the Telecommunications Industry Association and a Board Member of US Ignite, an NSF-sponsored initiative. Marcellin holds two patents and was a Rodman Scholar at the University of Virginia, where he received a bachelor of science degree with distinction in systems engineering. He is based in Sunnyvale, California.
  • Masum Mir is Vice President of Product, Solutions & Technical Marketing at Juniper Networks. Masum is responsible for the Switching product line, network management product line and optical technologies. Beside product leadership Masum also leads cloud strategy and solution architecture. Masum has 19 years of experience in communication and data networking industry with Expertise in Ethernet Switching, Data Center, Carrier Ethernet, Routing, overlay & network segmentation, Fabric technology & photonics technology.
  • Paul Obsitnik is Vice President of Service Provider Marketing for Juniper Networks Platform Systems Division (PSD), responsible for the marketing of Juniper’s portfolio of high performance routing, switching, and data center fabric products to Service Providers globally. Paul's team is responsible for marketing strategy, product marketing, go-to-market planning, and competitive analysis worldwide for the Service Provider segment. Obsitnik has extensive experience in marketing, sales and business development positions with a proven track record in creating technology markets. He has served in senior marketing and sales management positions at several companies including BridgeWave Communications, ONI Systems, NorthPoint Communications and 3Com. Paul holds a Bachelor of Science with Honors in Electrical Engineering from the United States Naval Academy and a Master of Business Administration from the Harvard Graduate School of Business. Obsitnik is based in Sunnyvale, California.
  • Pradeep Sindhu founded Juniper Networks in February 1996, and has held several central roles in shaping the company. He currently serves as Vice Chairman of the Board and Chief Technology Officer, and is responsible for the company's technical roadmap as well as day-to-day design and development of future products. He served as Chairman and Chief Executive Officer for eight months when he founded the company. During that time, he played a central role in the architecture, design, and development of the M40 router.
  • Rami Rahim is Chief Executive Officer of Juniper Networks and a member of the company’s Board of Directors. Rahim was appointed CEO in November 2014. Rahim began his Juniper career in early 1997, as employee No. 32, and worked as an engineer on Juniper’s first breakthrough product, the M40 core router. Rahim has progressed through a series of technical and leadership roles at Juniper, applying his engineering acumen to the design and development of Juniper’s industry-leading product portfolio. He most recently served as Executive Vice President and General Manager of the Juniper Development and Innovation (JDI) organization, overseeing the company’s entire product and technology portfolio. His responsibilities included driving strategy, development and business growth for routing, switching, security, silicon technology, and the Junos operating system. Other leadership positions held over the years include: Executive Vice President and General Manager of Platform Systems Division for routing and switching, Senior Vice President of the Edge and Aggregation Business Unit (EABU), and Vice President and General Manager of EABU.
  • As Chief Customer Officer, Vince Molinaro is responsible for driving the strategic and operational elements of the Sales, Marketing, Partners, Services and Support functions at Juniper Networks. He leads a global organization of more than 3,500 professionals that includes direct and indirect sales, systems engineering, advanced technologies and field operations. Molinaro brings more than 25 years of professional experience in engineering, product management, marketing, sales and operations to his worldwide role. He joined Juniper in 2009 and led the strategy and go-to-market execution for the company’s global service provider business. He was named EVP, Worldwide Sales in 2013 before assuming his current role in February 2014. Prior to joining Juniper, Molinaro held senior leadership positions at a number of technology companies including Bell Laboratories, Lucent Technologies, Alcatel-Lucent and Internap Network Services. He has extensive domestic and international experience having lived and managed large organizations throughout Europe and the U.S. Molinaro holds a bachelor of science degree in biomedical engineering from Boston University and a master of science degree in electrical engineering from University of Bridgeport. He is based out of the Juniper Networks facility in New Jersey, home of OpenLab, The Junos and SDN Center for Innovation.
About The New Network

Exploring the vision for the networking industry and the issues shaping its future.

Subscribe to The New Network    RSS Icon

Our Bloggers

Rami Rahim
Chief Executive Officer

Profile | Subscribe

Pradeep Sindhu
Vice Chairman of the Board & CTO

Profile | Subscribe

Mike Marcellin
Chief Marketing Officer

Profile | Subscribe

Ankur Singla
Vice President of Engineering

Profile | Subscribe

Bob Dix
Vice President
Government Affairs &
Critical Infrastructure Protection

Profile | Subscribe