[c-nsp] Cisco gear for hosting provider

Skeeve Stevens skeeve at skeeve.org
Sun Nov 19 18:43:04 EST 2006


Hey Alex,

	A Cisco 2800 with the ram can do BGP but it is not a fast router.

	Since you are talking basic Ethernet, lets assume you mean the Cisco
2811.  That can handle 120k PPS topping out at 61Mbps.  Given you are
talking about connecting to Pipe/Equinix or alike, the speed of which you
can pull data from those guys will probably exceed this abilities of this
router.  The Cisco2851 has more grunt but then you are entering the price
range where you could get a refreshed 7204 with NPE 225 or bigger, which
would provide you with a more stable platform for what you are wanting to
do.

...Skeeve

_______________________________________________________
Skeeve Stevens, RHCE     Email: skeeve at eintellego.net
eIntellego - www.eintellego.net - Cell: +61(0)414 753383
skype://skeeve
Address: P.O Box 1035, Epping, NSW, 1710, Australia

eintellego - the Australian ISP specialists
______________________________________________________

 

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Alex Campbell
Sent: Monday, 20 November 2006 10:14 AM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Cisco gear for hosting provider


Hi everyone,

I'm looking for advice on the best Cisco gear for a smallish hosting
provider environment.  We have one primary transit provider, one backup
transit provider and we also peer at a local IX (from which we take about
2500 prefixes).  All our external connectivity is delivered over cat6
ethernet.  We are not handling massive traffic loads under normal conditions
but have very high SLA requirements, so of course we will buy 2 devices and
run them in failover.  We also want to be able to handle DDoS conditions as
best as possible.

Here are my thoughts so far on the obvious options:

28xx
+ fairly small (1RU)
+ can take 768MB of RAM, so presumably can handle 2x full internet 
+ tables
(not sure how happy it would be though)
- software based L3 forwarding
- still quite expensive for what they are, particularly for additional FE/GE
interfaces
- not much room for growth
- will presumably catch fire under major DDoS conditions

3750G EMI
+ great price/performance ratio, 24xGE interfaces builtin no need for 
+ separate switches (uplink servers to both devices with
active/passive teaming)
+ very fast hardware L3 forwarding
+ lot of room for growth in traffic
+ great for diffusing DDoS attacks
- limited QoS capabilities
- can't take anywhere near full internet tables (limited to something like
11,000 unicast routes)

7204 VXR / NPE-G1
+ well known, trusted platform
+ still software based L3 forwarding, but fast can easily take full 
+ internet tables
- very expensive
- larger footprint than alternatives above

The 2811 and 3750G solutions will probably come out at around the same
price, so I guess a major question here is whether being able to take full
tables on the 2811 (protection from partial upstream failure, ability to
load balance) is more useful than being able to push packets at linerate GE
on the 3750G.

Any advice, guidance or suggestions would be most appreciated.

Regards,

Alex


_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/



More information about the cisco-nsp mailing list