[c-nsp] Cat 6500 and counters

Alexandre Snarskii snar at paranoia.ru
Thu Apr 28 06:26:52 EDT 2005 

On Thu, Apr 28, 2005 at 01:53:52PM +0400, Andrey Zimin wrote:
[...]
> > > For billing, we won't need netflow on most of the ports, 
> > but for some
> > > parts of the network, we can't do without (yet), and 
> > sampled netflow is
> > > BAD for that (if just because there have been some cases in 
> > court recently
> > > where the court said "this is not science, this is just 
> > guesswork, it
> > > cannot be accepted as a serious base for billing").
> > 
> > Please note that c65 limited on number of active of netflow entries. 
> > For sup720-3bxl/sup720-3b this number is relatively high one 
> > (~230K entries), 
> > but this limit exists... 
> In real life you more hit aging limit(30-40 flow/s) and with this:

hmmm... Looks like this limitation is sup720-specific. 

At least in my real life (using old sup2/msfc2) i'm getting about 200 flow 
packets/sec (5000 flow records/sec) right now. Under SQL Slammer worm i 
even saw about 2000 flow packets/sec (50kflows/sec). 

Anyway, thanks for information on this issue. 

> > PS: one more limitation - you will not be able to limit router to 
> > collect netflow data on just some interfaces - it will collect 
> > data on all interfaces. 
> You can't collect full NF data more than 1-2Gbit/s Internet traffic crossing
> Sup720-3bxl box, and more 5Gbit/s with src-dst-if aggregations.
> It depends of enviroment, but realy far from expected on router with 10GE interfaces.
> 
> So, pay you exclusive attention on NF functions on 6K platform, if u have plan to use it.
> It totally different than u can see on other router platforms.
> 
> Do the tests in real enviroments, if that possible.
> 
> Just my 2c.
> 
> WBR,
> =============================
> Andrey Zimin | AVZ-RIPE
> MTU-Intel ISP, Moscow, Russia
> =============================
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list