[c-nsp] Policy Based Routing on Cisco 6500
Hi, I am wondering if there any performance issue with using PBR on a Cisco 6500 with Sup720? Any pointers and suggestions are most appreciated. Thanks in advance, Shine ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Policy Based Routing on Cisco 6500
On Jun 9, 2009, at 6:00 PM, Shine Joseph wrote: I am wondering if there any performance issue with using PBR on a Cisco 6500 with Sup720? I think (correction welcome) that it only works in hardware based upon matching an extended ACL - any attempt to do things like match on packet size, etc. results in software switching. PBR by its nature is operationally brittle and ugly; if there's another way to accomplish one's goal, it's generally best to pursue an alternate method, if at all possible. --- Roland Dobbins rdobb...@arbor.net // http://www.arbornetworks.com Unfortunately, inefficiency scales really well. -- Kevin Lawton ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Policy Based Routing on Cisco 6500
Shine, PBR is done in hardware on the 6500. If you have DFC's, it would be done on the DFC. If not, the central PFC will do it. You should monitor your TCAM resources, as it may fill it up, and then traffic would be punted to the CPU - which you want to avoid at all costs. Use the show tcam counts command. Take a look here: http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/con figuration/guide/cef.html Arie -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Shine Joseph Sent: Tuesday, June 09, 2009 14:01 To: cisco-nsp@puck.nether.net Subject: [c-nsp] Policy Based Routing on Cisco 6500 Hi, I am wondering if there any performance issue with using PBR on a Cisco 6500 with Sup720? Any pointers and suggestions are most appreciated. Thanks in advance, Shine ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Policy Based Routing on Cisco 6500
Correct. See: http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/configuration/guide/layer3.html#wpmkr1033564 •The Policy Feature Card (PFC) and any Distributed Feature Cards (DFCs) provide hardware support for policy-based routing (PBR) for route-map sequences that use the match ip address, set ip next-hop, and ip default next-hop PBR keywords. HTH, Tim At 05:01 AM 6/9/2009, Roland Dobbins proclaimed: On Jun 9, 2009, at 6:00 PM, Shine Joseph wrote: I am wondering if there any performance issue with using PBR on a Cisco 6500 with Sup720? I think (correction welcome) that it only works in hardware based upon matching an extended ACL - any attempt to do things like match on packet size, etc. results in software switching. PBR by its nature is operationally brittle and ugly; if there's another way to accomplish one's goal, it's generally best to pursue an alternate method, if at all possible. --- Roland Dobbins rdobb...@arbor.net // http://www.arbornetworks.comhttp://www.arbornetworks.com Unfortunately, inefficiency scales really well. -- Kevin Lawton ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsphttps://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/http://puck.nether.net/pipermail/cisco-nsp/ Tim Stevenson, tstev...@cisco.com Routing Switching CCIE #5561 Technical Marketing Engineer, Cisco Nexus 7000 Cisco - http://www.cisco.com IP Phone: 408-526-6759 The contents of this message may be *Cisco Confidential* and are intended for the specified recipients only. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Policy Based Routing on Cisco 6500
PBR by its nature is operationally brittle and ugly; if there's another way to accomplish one's goal, it's generally best to pursue an alternate method, if at all possible. Absolutely forcefully agree :) While this is a bit off-topic here's an example of what you can do with a distance-vector routing protocol: http://www.nil.com/ipcorner/ScalablePolicyRouting/ MPLS + BGP or MPLS TE can also solve numerous issues for which people tend to use PBR. Ivan http://www.ioshints.info/about http://blog.ioshints.info/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
