Re: Juniper MX204 allow oversubscription?

2022-05-16 Thread Mark Tinka 




On 5/16/22 20:27, Randy Carpenter wrote:


Yes... the MX304 is awesome, but the price is going to be crazy. Possibly ~10x 
MX204 if fully loaded.


For me, the MX304 should, really, be an alternative to the MX10003, and 
not an upgrade of the MX204.


Far easier to get more MX204's than even one MX304 :-).



What does the ACX7100 have in terms of FIB/RIB ? Juniper is making it very hard 
as of late to find that information. I'd be curious if the ACX could do brder 
router duties with multiple full BGP feeds (which the MX204 has no problem with 
at all)


The ACX7100 is an x86-based system with 32GB of RAM. It ships with a 
Broadcom J2 chip. Aggregate capacity is 4.8Tbps. FIB is 1 - 2 million 
entries.


There is a bunch of timing in the box, so you can guess whom it's aimed at.

Mark.

Re: Free-ish Linux Netflow collector/analyser options

2022-05-16 Thread John Kristoff 
On Mon, 16 May 2022 18:34:29 +
Matthew Crocker  wrote:

> I’m looking for a free-ish Linux open sources Netflow
> collector/analyser.
[...]

There was a long thread back in January that I think will provide
you many of the suggestions you're seeking. If you haven't seen it, it
starts here:

  

John

Re: Free-ish Linux Netflow collector/analyser options

2022-05-16 Thread Joe Loiacono 
Try FlowViewer (analyzing, graphing, tending software) + SiLK (robust, 
high-performance capture software from Carnegie-Mellon).


Pretty full netflow analysis package; free.

See: http://flowviewer.net

Joe

On 5/16/2022 2:34 PM, Matthew Crocker wrote:


I’m looking for a free-ish Linux open sources Netflow 
collector/analyser.  I have 5 Juniper MX routers that will send IPFIX 
flows to for an ISP network.    I’m hoping it is something I can run 
in AWS/EC2 as I don’t want to worry about storage again in my 
lifetime.  Does anyone have any recommendations?


For reporting I would like to generate basic  usage reports to/from 
IP/Subnet/ASN.  It would be great if it could also detect DDoS and 
activate flowspec back into my core routers but that isn’t a requirement


Thanks

-Matt

Free-ish Linux Netflow collector/analyser options

2022-05-16 Thread Matthew Crocker 

I’m looking for a free-ish Linux open sources Netflow collector/analyser.  I 
have 5 Juniper MX routers that will send IPFIX flows to for an ISP network.
I’m hoping it is something I can run in AWS/EC2 as I don’t want to worry about 
storage again in my lifetime.  Does anyone have any recommendations?

For reporting I would like to generate basic  usage reports to/from 
IP/Subnet/ASN.  It would be great if it could also detect DDoS and activate 
flowspec back into my core routers but that isn’t a requirement

Thanks

-Matt

Re: Juniper MX204 allow oversubscription?

2022-05-16 Thread Randy Carpenter 


- On May 16, 2022, at 2:06 PM, Aled Morris aled.w.mor...@googlemail.com 
wrote:

> On Mon, 16 May 2022 at 18:52, Randy Carpenter < [ mailto:rcar...@network1.net 
> |
> rcar...@network1.net ] > wrote:

>> My hope for a successor (MX205 ?) would be more flexibility and 25G ports.
>> 4x100G+8x25G would be awesome.

> I was hoping the MX304 would be the upgrade, but it seems like overkill - 2U,
> modular with dual processors, up to 96 x 10/25 GbE, 48 x 40/50/100, 12 x 400
> GbE
> Probably a bit more expensive than MX204 too.

Yes... the MX304 is awesome, but the price is going to be crazy. Possibly ~10x 
MX204 if fully loaded.

> There's also ACX7100-48L: 48x 10GE/25GE/50GE (SFP56), 6x 400GE (QSFP56-DD)

What does the ACX7100 have in terms of FIB/RIB ? Juniper is making it very hard 
as of late to find that information. I'd be curious if the ACX could do brder 
router duties with multiple full BGP feeds (which the MX204 has no problem with 
at all)

-Randy

Re: Juniper MX204 allow oversubscription?

2022-05-16 Thread Mark Tinka 



On 5/16/22 20:06, Aled Morris via NANOG wrote:




I was hoping the MX304 would be the upgrade, but it seems like 
overkill - 2U, modular with dual processors, up to 96 x 10/25 GbE, 48 
x 40/50/100, 12 x 400 GbE


Probably a bit more expensive than MX204 too.

There's also ACX7100-48L: 48x 10GE/25GE/50GE (SFP56), 6x 400GE (QSFP56-DD)


The ACX71000 is Broadcom.

Mark.

Re: Juniper MX204 allow oversubscription?

2022-05-16 Thread Aled Morris via NANOG 
On Mon, 16 May 2022 at 18:52, Randy Carpenter  wrote:

> My hope for a successor (MX205 ?) would be more flexibility and 25G ports.
> 4x100G+8x25G would be awesome.
>
>
I was hoping the MX304 would be the upgrade, but it seems like overkill -
2U, modular with dual processors, up to 96 x 10/25 GbE, 48 x 40/50/100, 12
x 400 GbE

Probably a bit more expensive than MX204 too.

There's also ACX7100-48L: 48x 10GE/25GE/50GE (SFP56), 6x 400GE (QSFP56-DD)

Aled

Re: Juniper MX204 allow oversubscription?

2022-05-16 Thread Randy Carpenter 


If additional ports are more important than the full 100G throughput, you can 
configure it as 2x100+2x40+8x10.

We tend to break out 10G ports on switches, so we can more fully utilize the 
100G ports.

My hope for a successor (MX205 ?) would be more flexibility and 25G ports. 
4x100G+8x25G would be awesome.

thanks,
-Randy

--
Randy Carpenter
Vice President - IT Services
First Network Group, Inc.
(800)578-6381, Opt. 1
http://www.network1.net

- On May 16, 2022, at 1:10 PM, Kevin Shymkiw kshym...@gmail.com wrote:

> Adam,

> Simply put - No there isn't a way to oversubscribe the front panel.

> Juniper has a handy tool to check your port combinations though - [
> https://apps.juniper.net/home/port-checker/index.html |
> https://apps.juniper.net/home/port-checker/index.html ]

> The lack of being able to oversubscribe has to do with # of lanes to the EA
> ASIC, and how those can be broken down.

> Kevin

> On Mon, May 16, 2022 at 11:04 AM Adam Thompson < [ 
> mailto:athomp...@merlin.mb.ca
> | athomp...@merlin.mb.ca ] > wrote:

>> Hi all,

>> Hoping some Juniper-using folks know:

>> On the MX204, which comes with 4x100G + 8x10G ports, you can only use 3 of 
>> the 4
>> 100G ports if you want to use any of the 10G ports at all.

>> Supposedly this is to prevent oversubscription on what is a 400G-rated 
>> router.
>> However, I’m perfectly fine with oversubscription with a 400G aggregate
>> throughput cap.

>> Is there a way to stop the automatic “oh, I’ll disable these other ports for 
>> you
>> so you don’t oversubscribe the box” behaviour and let all the front-panel 
>> ports
>> be used at once?

>> -Adam

>> Adam Thompson

>> Consultant, Infrastructure Services

>> 100 - 135 Innovation Drive

>> Winnipeg, MB R3T 6A8

>> (204) 977-6824 or 1-800-430-6404 (MB only)

>> [ https://www.merlin.mb.ca/ | https://www.merlin.mb.ca ]

>> [ https://teams.microsoft.com/l/chat/0/0?users=athomp...@merlin.mb.ca | Chat
>>  with me on Teams ]

Re: Juniper MX204 allow oversubscription?

2022-05-16 Thread Kevin Shymkiw 
Adam,

Simply put - No there isn't a way to oversubscribe the front panel.

Juniper has a handy tool to check your port combinations though -
https://apps.juniper.net/home/port-checker/index.html

The lack of being able to oversubscribe has to do with # of lanes to the EA
ASIC, and how those can be broken down.

Kevin

On Mon, May 16, 2022 at 11:04 AM Adam Thompson 
wrote:

> Hi all,
>
> Hoping some Juniper-using folks know:
>
> On the MX204, which comes with 4x100G + 8x10G ports, you can only use 3 of
> the 4 100G ports if you want to use any of the 10G ports at all.
>
> Supposedly this is to prevent oversubscription on what is a 400G-rated
> router.  However, I’m perfectly fine with oversubscription with a 400G
> aggregate throughput cap.
>
> Is there a way to stop the automatic “oh, I’ll disable these other ports
> for you so you don’t oversubscribe the box” behaviour and let all the
> front-panel ports be used at once?
>
> -Adam
>
>
>
> *Adam Thompson*
>
> Consultant, Infrastructure Services
>
> [image: MERLIN]
>
> 100 - 135 Innovation Drive
>
> Winnipeg, MB R3T 6A8
>
> (204) 977-6824 or 1-800-430-6404 (MB only)
>
> https://www.merlin.mb.ca
>
> Chat with me on Teams
> 
>
>
>

Juniper MX204 allow oversubscription?

2022-05-16 Thread Adam Thompson 
Hi all,
Hoping some Juniper-using folks know:
On the MX204, which comes with 4x100G + 8x10G ports, you can only use 3 of the 
4 100G ports if you want to use any of the 10G ports at all.
Supposedly this is to prevent oversubscription on what is a 400G-rated router.  
However, I’m perfectly fine with oversubscription with a 400G aggregate 
throughput cap.
Is there a way to stop the automatic “oh, I’ll disable these other ports for 
you so you don’t oversubscribe the box” behaviour and let all the front-panel 
ports be used at once?
-Adam

Adam Thompson
Consultant, Infrastructure Services
[MERLIN]
100 - 135 Innovation Drive
Winnipeg, MB R3T 6A8
(204) 977-6824 or 1-800-430-6404 (MB only)
https://www.merlin.mb.ca
[cid:image002.png@01D8691C.50B29030]Chat with me on 
Teams