[nsp] sizing a router
Gert Doering
gert at greenie.muc.de
Tue Jul 6 16:05:35 EDT 2004
Hi,
On Tue, Jul 06, 2004 at 11:49:37AM -0700, Steve Francis wrote:
> 7200 with a NPE-G1 will do line rate OC3, but doesn't do the hardware
> QoS/ACL that will let it survive a targeted DoS, as it has a central CPU
> model.
The 7200+NPE-G1 should be able to handle that load (unless you do stupid
things like "10.000 lines long ACLs with logging").
If all you do is forward packets between two interfaces, "central CPU"
vs. "distributed CPU" isn't that much difference - someone has to move the
packets, and if only two interfaces are involved, it's usually only
a single "someone", even on the distributed boxes.
> 7500 with distributed VIP's with fare well, but be expensive, and still
> do software processing (albeit distributed.)
The NPE-G1 is MUCH faster than all available VIPs (the VIP6-80 runs at
400 MHz, while the NPE-G1 runs at 700).
The distributed-ness of the 7500s will not help here. NSF would be a nice
plus, but a very expensive one.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
More information about the cisco-nsp
mailing list