[j-nsp] NAT without AS PIC
Rubens Kuhl Jr.
rubensk at gmail.com
Thu Aug 7 13:36:32 EDT 2008
On Thu, Aug 7, 2008 at 2:01 PM, Brandon Bennett <bennetb at gmail.com> wrote:
>> On the 7600 and the ASR1000, is that hardware accelerated NAT a
>> default option, or are those add-on features?
>
> On both the 7600 and the ASR it is in the base images and ready to
> just configure. Crazy for Cisco, I know. You'd think they'd milk
> another license out of you somewhere. :)
That doesn't mean it's healthy to do NAT, because every first packet
of a flow will hit a slow CPU (unless you have brand new RSP720).
The thing about Juniper is that they could give the decision to us,
network engineers, whether to do NAT on the PowerPC at the board
controller or the Intel at the routing engine is good or not on that
scenario. Can this go wrong sometimes ? Sure, as could exception
packets and flow exporting... there are controls to those, there could
be a control on NAT pps rate... they could even not call that a
feature: don't mention NAT on the product datasheet, just on the
manuals.
Rubens
More information about the juniper-nsp
mailing list