Sorry, No it supports 1 slot for a single height SPAs, also it could be
ordered without IDC (Integrated Daughter Card), or with IDC that provides
4xT3 ports, or IDC that provides 2xPOS, in all cases you also have 4-built
in GE ports, However due to more forwarding capacity and memory options from
Anyone know the list price difference between the 1000 and 1002-f version?
-Original Message-
From: E. Versaevel [mailto:e...@infopact.nl]
Sent: donderdag 17 februari 2011 9:05
To: Rens
Cc: 'Mounir Mohamed'; cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Router recommendation for small
On Sun, Feb 13, 2011 at 5:47 PM, Azher Mughal az...@hep.caltech.edu wrote:
Another nice software with alerts: http://www.8pussy.org/dokuwiki/doku.php
-Azher
Thanks, this looks very good too. I'm going to be busy trying all of these
out! :)
/bs
ASR 1001 has several options as it has one general use single height SPA slot
and next to that an OPTIONAL daughterboard with the interfaces mentioned.
(to bad we won't need POS ;))
Op 17-2-2011 8:43, Rens schreef:
It's not even that old.
PS: you can also install SPA in asr1001 no?
Mounir Mohamed mounirmoha...@gmail.com writes:
For investment protection I recommend Cisco ASR1001, It is an ISP class gear
that allows you to add services as you grow without performance degradation.
Check it out.
http://www.cisco.com/en/US/products/ps10878/index.html
I know I am repeating
Came across an odd one recently with a clients sonicwall. May or may not be
relevant, but check it out all the same
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=7587formaction=faqalert
Stephen Stack
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
It depends on the number of BGP sessions you gone use, multiple BGP sessions
with full internet routing table (340K right now) will be stored smoothly on
an RP with 4G or 8G memory, but after completing the BGP decision process it
will end up with less than 500k on the forwarding path (ESP5 with
On 17/02/2011 09:11, Mounir Mohamed wrote:
It depends on the number of BGP sessions you gone use, multiple BGP sessions
with full internet routing table (340K right now) will be stored smoothly on
an RP with 4G or 8G memory, but after completing the BGP decision process it
will end up with less
From a different angle, IPv4 depletion will defuse the increasing of IPv4
routes on the internet.
On Thu, Feb 17, 2011 at 11:30 AM, Nick Hilliard n...@foobar.org wrote:
On 17/02/2011 09:11, Mounir Mohamed wrote:
It depends on the number of BGP sessions you gone use, multiple BGP
sessions
On 17/02/2011 10:03, Mounir Mohamed wrote:
From a different angle, IPv4 depletion will defuse the increasing of IPv4
routes on the internet.
That may happen. Alternatively, as people become desperate about acquiring
new IPv4 address space in order to grow their businesses, they will buy /
On Feb 17, 2011, at 5:03 PM, Mounir Mohamed wrote:
From a different angle, IPv4 depletion will defuse the increasing of IPv4
routes on the internet.
Not necessarily.
---
Roland Dobbins rdobb...@arbor.net //
On Thu, Feb 17, 2011 at 12:12 PM, Nick Hilliard n...@foobar.org wrote:
On 17/02/2011 10:03, Mounir Mohamed wrote:
From a different angle, IPv4 depletion will defuse the increasing of IPv4
routes on the internet.
That may happen. Alternatively, as people become desperate about acquiring
Now I know that Cisco supports multiple flow exporting:
http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/12s_mdnf.html
but the maximum exports allowed for the past 4 years is as per the fine
print Currently, the maximum number of export destinations allowed is two.
By stating the word
When one does a sho cdp nei one gets various string texts for the
platform of a neighbor. Examples might be 7206VXR, 1841, CISCO7613,
WS-C2950G, C831, etc. There doesn't seem to be any pattern and I was
wondering if someone can point me at a more definitive list of platform
strings that come
On Feb 17, 2011, at 6:26 PM, Hank Nussbacher wrote:
Anyone know when that is supposed to happen?
Platforms which have implemented FNF or some subset thereof (N7K, CRS-1, ASR9K,
et. al.) can support multiple exporters.
That being said, it may make more sense to simply export the flow
On 17/02/2011 11:26, Hank Nussbacher wrote:
By stating the word Currently, Cisco implies that at some point they
would support more than 2 flow exports. Anyone know when that is supposed
to happen?
I believe you can export flows to a multicast address, if that's of any
help? Haven't tried it
On Feb 17, 2011, at 6:44 PM, Nick Hilliard wrote:
I believe you can export flows to a multicast address, if that's of any help?
Actually, this isn't supported, and doesn't work consistently at all. See my
previous response in this thread.
Thanks for the advice, everyone. Unfortunately, I am on a tight budget for
this particular project which is why I was looking at cheaper/smaller
solutions such as a 3845 or perhaps a 7206VXR with a NPE-G1. While these
are older products, they should be be able to satisfy my requirements for
the
Dear,
I am experiencing a problem on a 34MB SDH circuit between a Cisco 7206 and a
2851 router, the PortAdapter on 2851 is 'NM-1T3/E3 One port T3/E3 network
module'.
I have 100% sucessful end-to-end connectivity, tested through the ping
command, but whenever I transmit some traffic (10Mb about)
On Thu, 17 Feb 2011, Dobbins, Roland wrote:
Platforms which have implemented FNF or some subset thereof (N7K,
CRS-1, ASR9K, et. al.) can support multiple exporters.
That being said, it may make more sense to simply export the flow
telemetry to a *NIX box running the UDP Samplicator or
On 17/02/2011 14:39, Josh Baird wrote:
While these are older products, they should be be able to satisfy my
requirements for
the short term, right? That is, they can handle two full BGP feeds.
Hi Josh,
A 7206VXR with a NPE-G1 and 1GB RAM kit will handle 2 full BGP feeds
comfortably.
It is
Hi,
after some flux of IPv6 routes I got on my last old GSR the error
message for each line card:
%EE48-3-IPV6_TCAM_CAPACITY_EXCEEDED: IPv6 pkts will be software switched.
Issueing a sh controllers frfab alpha tcam carve shows me an
utilization of 50-100% of any RX_IPv6_* region while all other
John, Max, Stephen,
Thanks for your advice. We have ip mtu 1404 on all interfaces, but I
suspect that is not sufficient. I will look into ip tcp adjust-mss
1360 to understand what it does (besides specifying a lower MTU) that
ip mtu does not, and try it out.
Also, mturoute looks like a
On Thu, 2011-02-17 at 10:00 -0500, Adam Greene wrote:
Thanks for your advice. We have ip mtu 1404 on all interfaces, but I
suspect that is not sufficient. I will look into ip tcp adjust-mss
1360 to understand what it does (besides specifying a lower MTU) that
ip mtu does not, and try it
Hi,
Does anyone know how is throughput tested for Cisco ASA applicances? Although,
does anyone have any documents where Cisco explains what firewall throughput
means?
Is it:
- the total packets per second the entire backplane can handle, so all the
traffic across all ports, inside and
The answer to that question is entirely dependant on how the device is
configured. How many lines in how many ACLs applied to how many interfaces
with what kinds of inspection and services enabled. Everything you enable
subtracts from total system throughput.
For example, we maxed out a 5550
I've been searching for documentation that explains what sets the input
queue. I realize on many platforms it is often 75. However, I have a
customer with a 6513 and 6748 modules on which some interfaces have a queue
depth of 75 and some interfaces have a queue depth of 2,000. There are no
Does anyone have any info on what the command ip arp track does on a catalyst
switch? (3750, and 4500 in my situation)
I'm familiar with DAI and the other L2 security technologies, and can guess at
what this command does, but I've yet to find any official documentation to
confirm that. None
Hi there,
It's a toss-up between a 2651XM or a 2801 (because of budget
constraints), for a 20Mb Ethernet circuit that will do moderate QoS
and ACLs. No BGP, just static routes.
The IOS's on both are relatively recent IP Services, and both have
their RAM maxed.
I am leaning on using the
My customer has a ASR1002 with no IOS. How should we go about getting
IOS and downloading onto thee ASR1002?
Ha said;
No IOS was found on the boxflash is empty..
I cant boot device.
--
regards,
Nathaniel Bernadeau
Gallant Systems, LLC
11064 Livingston RD Suite 106-C
Fort Washington, MD
Graham
I'd go with the 2800 series. Like all Cisco routers they process traffic on
the CPU. The 2800 have a much faster CPU than the old 2600XM, even a 2651XM.
Surely a NPE-400 is cheaper than a 2801. You can pick up a 7206VXR NPE-400 for
like £250 these days.
James
On 17 Feb 2011, at
Not all routers by cisco CPU switch the traffic. This is the case in these low
end devices, so I can understand why you might think they all are that way.
Jared Mauch
On Feb 17, 2011, at 11:27 AM, James ja...@tridentnet.net wrote:
Graham
I'd go with the 2800 series. Like all Cisco
I wouldn't use the 2651 for much else than maybe a door-stop. The 2801
might not be able to do 20M ethernet depending on what else you are asking
it to do. Can you use a switch here? If it's all ethernet than a 3560 or
even a 3550/3750 would be fine. They even have 8 port 3560's for cheap.
On 2/17/2011 12:10, Keegan Holley wrote:
I wouldn't use the 2651 for much else than maybe a door-stop. The 2801
might not be able to do 20M ethernet depending on what else you are asking
it to do. Can you use a switch here? If it's all ethernet than a 3560 or
even a 3550/3750 would be fine.
On Thu, 2011-02-17 at 11:25 -0600, cisco...@secureobscure.com wrote:
The answer to that question is entirely dependant on how the device is
configured. How many lines in how many ACLs applied to how many interfaces
with what kinds of inspection and services enabled. Everything you enable
On Thu, 2011-02-17 at 13:26 -0500, Chris Kane wrote:
I've been searching for documentation that explains what sets the input
queue. I realize on many platforms it is often 75. However, I have a
customer with a 6513 and 6748 modules on which some interfaces have a queue
depth of 75 and some
I push 30Mb of traffic through an 1841 regularly... larger packets, just me
downloading a file while acting as a firewall doing stateful inspection, IPS, a
4to6 tunnel, netflow, and nothing else major going on... It handles it with no
problem (maybe 65% CPU load), so depending on what you're
A 3550 maybe an option, I'll keep that in mind. Thanks!
- Reply message -
From: Keegan Holley keegan.hol...@sungard.com
Date: Thu, Feb 17, 2011 2:10 pm
Subject: [c-nsp] Older Cisco Routers - which one to go with?
To: Graham Wooden gra...@g-rock.net
Cc: cisco-nsp@puck.nether.net
I
Hi Jan.
after some flux of IPv6 routes I got on my last old GSR the error
message for each line card:
We experienced that as well today.
Issueing a sh controllers frfab alpha tcam carve shows me an
utilization of 50-100% of any RX_IPv6_* region while all other regions
have 0 to 5%
On 2/17/2011 3:32 PM, Peter Rathlev wrote:
I'm not able to test a lot right now, but traffic just short of 200
Mbps / 15 kpps makes our 5550 run at ~19% CPU (5 min avg, constant
traffic rate).
Running a little north of 200Mbps through a 5540, 1-to-1 NAT, 300-400
conns/sec, ~200
lines in
On Thu, 2011-02-17 at 15:10 -0500, Keegan Holley wrote:
I wouldn't use the 2651 for much else than maybe a door-stop.
Agreed, but a functional and pretty door-stop at that. :-)
The 2801 might not be able to do 20M ethernet depending on what else
you are asking it to do.
We recently had to
I have a ASA 5505 I am setting up at a small branch office. Working towards a
site to site VPN but first I need to get it to talk to itself. Traffic is not
passing from inside to outside.
interface Vlan1
nameif inside
security-level 100
ip address 172.19.1.1 255.255.255.0
!
interface
If I remember correctly,
Put the image onto a FAT formatted USB flash stick.
Insert the USB stick into the USB 0 or equivalent port on the router and
reboot it.
Once the router boots up into rommon, do a boot usb0:image name or
equivalent.
Once the router boots up copy the image from the USB
Hi all,
Anybody have any favourite packet generators? Preferably for OS X. Basically
just looking to generate some video-like UDP and measure packet loss between
two points on the Internet.
OFOC
Christian
___
cisco-nsp mailing list
Hi Folks,
In Absence of a Netflow collector that could Parse MPLS aware Netflow
exports, is there another tool/script publicly available that can
provide insight into say the top talkers/top LSP destinations from a
heavy traffic volume perspective by parsing say the LFIB forwarding
table and
what does show xlate show?
I'm guessing it's a Nate issue.
Scott
On Thu, Feb 17, 2011 at 1:53 PM, Michael Loether m...@azloether.com wrote:
I have a ASA 5505 I am setting up at a small branch office. Working
towards a site to site VPN but first I need to get it to talk to itself.
Traffic
On Feb 17, 2011, at 4:04 PM, Michael Balasko wrote:
Not sure what version of code you are on, but two things. Pre 8.3 code with
nat control enabled, you need Fixup protocol icmp and you probably need a
global statement to match the nat statement. Your nat looks more like a
static statement
Can you post the show runs for the NAT, ACL, access-groups, and interfaces?
Sent from handheld
On Feb 17, 2011, at 6:54 PM, Michael Loether m...@azloether.com wrote:
On Feb 17, 2011, at 4:04 PM, Michael Balasko wrote:
Not sure what version of code you are on, but two things. Pre 8.3 code
You can't ping like that. You can ping from the inside interface to
the outside, and vice versa. You can test traffic from the inside by
pinging the outside interface for example. There is no way to change
this behavior.
Also ICMP is IP, permit ip any will allow ICMP.
The only other thing is
On Feb 18, 2011, at 3:58 AM, Per Carlson wrote:
In config mode, reallocate TCAM regions e.g. reallocate Netflow TCAM to IPv6
Note that this isn't free, and that one must think about the feature mix prior
to re-carving.
---
On Feb 18, 2011, at 6:16 AM, Christian MacNevin wrote:
Basically just looking to generate some video-like UDP and measure packet
loss between two points on the Internet.
hping3, scapy, packit, NetDude, tcpreplay . . .
---
--- On Fri, 18/2/11, Christian MacNevin cmacne...@linkedin.com wrote:
Anybody have any favourite packet generators? Preferably
for OS X. Basically just looking to generate some video-like
UDP and measure packet loss between two points on the
Internet.
Hi Christian,
Personally I use
Do you have:
global (outside) 1 interface
or similar?
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original
AFAIK, it is used for tracking devices by web-authentication and NAC.
Search for 802.1x web-authentication bypass for example (dot1x WAB).
On Thu, Feb 17, 2011 at 20:03, Tom Lusty tlu...@csnstores.com wrote:
Does anyone have any info on what the command ip arp track does on a
catalyst switch?
Hi Pelle,
thanks for your good answer. I simply can't configure this. What code
are you running? I'm running an quite old code. It seems I have to do an
upgrade first.
(config)#hw-module slot 1 tcam carve rx_ipv6 14
% Ambiguous command: hw-module slot 1 tcam carve rx_ipv6 14
(config)#hw-module
55 matches
Mail list logo
