[j-nsp] Router with lots of layer 3 interfaces
Scott T. Cameron
routehero at gmail.com
Mon Mar 7 23:08:58 EST 2011
The SRX line is a firewall, and not a router. Although it can and does
route packets, it is not the strength of the box.
2000 layer3 interfaces is a pretty large number that you may have trouble
fitting on a fair amount of gear.
An SRX240 can handle 64 VLANs on 10.4R2.
Personally I would find a different solution for the problem. Besides
finding the right hardware for the job, 2000 L3 interfaces is a significant
management burden.
Scott
On Mon, Mar 7, 2011 at 9:22 PM, Andrew Jones <aj at jonesy.com.au> wrote:
> Hi,
> I have a requirement to terminate the layer 3 for about 2000 vlans on a
> pair of routers of some kind, with failover in the event of one of the
> routers dying. Is this something that SRX240Hs could do? How many layer3
> interfaces can the SRX240 handle? SRX650? Throughput is not a huge concern,
> each vlan only requires a small amount of bandwidth.
>
> To handle the failover, I could use the clustering, although that would
> mean any software upgrades would require a simultaneous reboot of both
> devices, making it a less desirable solution than having two SRXs with VRRP
> on each vlan-facing layer 3 interface which would allow me to reboot the
> boxes one at a time. My question with that setup is: how many VRRP
> instances can I have on an SRX?
> I appreciate any advice/feedback.
> Thanks,
> Andrew
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
More information about the juniper-nsp
mailing list