[c-nsp] New hardware choose help needed

Shane Amante shane at castlepoint.net
Mon Apr 16 10:07:51 EDT 2007 

Hi Dimitriy,

Dmitriy Sirant wrote:
> Hi,
> 
> We want to buy new hardware and need your help in choose right hardware 
> configuration.
> 
> First stage:
> 
> Cisco 7204VXR
> NPE-G1
> 
> What we need from it:
> 1. Terminate about 50-150 VLANs
> 2. Terminate about 2500-4000 PPPoE users (at 100Mb, not ADSL)
> 3. Dynamic access lists and rate-limits for PPPoE users via Radius.
> 4. 2 x 1000Mbit/s ports to clients with full load and 1 x 1000Mbit/s 
> port to ISP with load about 500Mbit/s
> 
> Second stage:
> Need make city wide LAN with possibility give for client 100Mbit/s 
> bandwidth between 2 any points. For it want to use at center such hardware:
> 
> Catalyst 6509
>     WS-C6509-NEB-A  Catalyst 6500 9-slot chassis(NEBS),21RU,no PS,no Fan 
> Tray 1
>       WS-CAC-6000W  Cat6500 6000W AC Power Supply 1
>       FR-C6FW  Catalyst 6000 family IOS Firewall Feature Set 1
>       WS-SUP720  Catalyst 6500 / Cisco 7600 Supervisor 720 Fabric MSFC3 
> PFC3A 1
>       MEM-C6K-CPTFL512M  Catalyst 6500 Sup720/Sup32 Compact Flash Mem 
> 512MB 1
>       CF-ADAPTER-SP  SP adapter with compact flash for SUP720 1
>       GLC-T  1000BASE-T SFP 1
>       WS-X6708-10G-3CXL  C6K 8 port 10 Gigabit Ethernet module with 
> DFC3CXL (req. X2) 1
>       X2-10GB-ER  10GBASE-ER X2 Module 8
>       WS-X6708-10G-3CXL  C6K 8 port 10 Gigabit Ethernet module with 
> DFC3CXL (req. X2) 1
>       X2-10GB-ER  10GBASE-ER X2 Module 8
>       WS-X6708-10G-3CXL  C6K 8 port 10 Gigabit Ethernet module with 
> DFC3CXL (req. X2) 1
>       X2-10GB-ER  10GBASE-ER X2 Module 8
>       WS-X6708-10G-3CXL  C6K 8 port 10 Gigabit Ethernet module with 
> DFC3CXL (req. X2) 1
>       X2-10GB-ER  10GBASE-ER X2 Module 8
>       WS-X6708-10G-3CXL  C6K 8 port 10 Gigabit Ethernet module with 
> DFC3CXL (req. X2) 1
>       X2-10GB-ER  10GBASE-ER X2 Module 8
>       WS-X6708-10G-3CXL  C6K 8 port 10 Gigabit Ethernet module with 
> DFC3CXL (req. X2) 1
>       X2-10GB-ER  10GBASE-ER X2 Module 8
>       WS-X6708-10G-3CXL  C6K 8 port 10 Gigabit Ethernet module with 
> DFC3CXL (req. X2) 1
>       X2-10GB-ER  10GBASE-ER X2 Module 8
>       WS-X6708-10G-3CXL  C6K 8 port 10 Gigabit Ethernet module with 
> DFC3CXL (req. X2) 1
>       X2-10GB-ER  10GBASE-ER X2 Module 8
>       FAN-MOD-09  Fan Module for CISCO7609 and Catalyst WS-C6509-NEB-A 1
>       SM3AEK9-12218SXF  Cisco CAT6000-MSFC3 IOS ADVANCED ENTERPRISE 
> SERVICES SSH 1
> 
> What we need from it:
> 1. Guaranteed bus speed for work 60-64 10Gb ports with full load.

I'm not sure what you mean about "full load", but assuming you mean the 
ability to run all the ports at wire-rate ... then, you probably want to 
avoid the WS-X6708 linecards as they are 2:1 oversubscribed.  Refer to 
the data sheet on the WS-X6704 and WS-X6708 for details:
http://www.cisco.com/en/US/products/hw/switches/ps708/products_data_sheet09186a00801dce34.html

If you need "wire-rate", then you should look at the WS-X6704, (4-port 
10 GbE cards), which, in theory, will give you 32 x 10 GbE ports per 
chassis.  However, you should look at your exact configuration in 
Cisco's Power Calculator:
http://www.cisco.com/go/powercalculator
... because, certain power supplies may not be adequate for your load.


> 2. Terminate about 100-400 VLANs

Should be no problem.


> 3. Terminate about 5000-8000 PPPoE sessions (at 100Mb, not ADSL)
> 4. PPPoE users must authorize via RADIUS

You're likely looking at the "MWAM" card to do that.  I don't have any 
experience with that card, but as others have noted on the list (see 
archives), the 6500 is generally not a good PPP termination device. 
You're likely better off sticking with the 7200's for (dense) PPP 
termination.


> 5. NetFlow

Should be no problem.


> 6. PPPoE access lists and rate-limits via RADIUS

See previous comment for #3 and #4, re: MWAM card.


> 7. Access list on every interfaces

Again, should be no problem, as long as the ACL's are fairly modest.

-shane


> What you say about hardware we choose ? Is it suitable for that work ?
> 
> Thank you
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list