[c-nsp] cisco 7507 vs ssg 550
Masood Ahmad Shah
masood at nexlinx.net.pk
Wed Sep 17 16:47:54 EDT 2008
You can't replace Cisco 7500 with SSG550 (Firewall); Coz POS (OC3) is
currently not available for SSG platform; Second SSG can run screenos only
not JUNOS; screenos is the operating system for integrated Firewall/IPSec
VPN solutions. Third SSG purpose-built security appliance, I would
definitely not recommend SSG.
T1, E1, Serial, DS3, Fe and SFP (copper or fiber) the only available
interfaces for SSG devices.
I would also recommend not replacing 7500 with just another idiot 7200
(software router, policy (route-maps), access-list, tunnels or a simple
debugging will "hang up" the router). If you really need Gig throughput
along with tunnels and policy routing; you need to consider line/wire rate
router; it can be Cisco 76XX (be careful while selecting modules) or all
juniper M/T Series routers along with AS PIC (go 4 M7i or M10i).
Regards,
Masood
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Arie Vayner (avayner
Sent: Wednesday, September 17, 2008 12:03 PM
To: Faisal Muzammil; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] cisco 7507 vs ssg 550
Faisal,
Why don't you take a look at a 7200/NPE-G2 (or even a 7201, which is a
1RU version of it).
http://www.cisco.com/en/US/products/hw/routers/ps341/index.html
http://www.cisco.com/en/US/prod/collateral/routers/ps341/product_data_sh
eet0900aecd8047177b.html
http://www.cisco.com/en/US/products/ps7253/index.html
The advantage of changing to this kind of device is that it would be a
natural upgrade from 7500 (which is a very old model...). All the
configs should most likely transfer as a simple copy paste.
Arie
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Faisal Muzammil
Sent: Tuesday, September 16, 2008 12:52 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] cisco 7507 vs ssg 550
Hi,
We have a cisco 7507 router for our wan and are thinking of replacing it
with juniper ssg 550. Currently we have 1 GEIP interface on the lan side
of 7507 and 1 POS(STM/OC3) interface on the wan side. We have a few IP
IP tunnels established and are running BGP over the wan and OSPF on the
lan side. We also have the need of using PBRs. The main reason behind
this change is that we are going to outgrow our STM capacity and need to
upgrade to higher bandwidth on the wan side. hence similarly we will
need to have a better option on the lan side instead of GEIP due to the
limitation of 200mbps aggregate throughput on it.
Thanks in advance for your suggestions
regards
Famz
_________________________________________________________________
News, entertainment and everything you care about at Live.com. Get it
now!
http://www.live.com/getstarted.aspx
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list