[c-nsp] 6509 ACE/FWSM Modules??????????
Kevin Graham
kgraham at industrial-marshmallow.com
Wed Jul 30 12:56:45 EDT 2008
> > My plan is to collapse my core switch(3750), pix, and css devices into
> > two 6509's with the fwsm/ace/Gig-e modules. I am just trying to decide
> > the best way to segregate the internal lan and middle tier dmz's.
>
> Our experience with 6500/7600 and IOS support makes this look like a bad
> plan.
[...]
> Historic precedence shows that all 6500/7600 blades that are not "ethernet
> based" have a fairly short life experience (or won't be supported in
> whatever chassis you have, you always need "the other one").
Much agreed. Unless you need the throughput on the modules, an ASA and ACE
4710 strapped to the 3750 stack will likely be cheaper, easier to manage
(the only management gain with ACE-M and FWSM is power control), have better
availability characteristics and leave your options for redeployment and
future upgrades wide open. With the leftover budget, start swapping in
3750E's and you'd be in great shape.
Based on past performance, unless you intend to deploy this and leave it
untouched until you forklift everything but the chassis. The really cute
part is that support will be _effectively_ dropped well before Cisco issues
an EOS notice. (Just one example is that Cisco will still sell you a new
CSM, though don't put it in a SXH switch (which a 720C requires), as it
will be powered down due to being unsupported while still preserving all of
the CLI's.)
More information about the cisco-nsp
mailing list