To get flexible netflow via nbar you are probably going to have to go to much more expensive box. The 72xx series might do it as Gert mentioned. But nothing with hardware forwarding is really going to do that. You probably need a separate switch and router to achieve what you need unless you go up to a ASR1000 series. The ASR1001 would be a good fit depending on the port count you need. But again you might need a router and A switch to achieve what you need.
Mack McBride | Network Architect | ViaWest, Inc. O: 720.891.2502 | mack.mcbr...@viawest.com | www.viawest.com | LinkedIn | Twitter | YouTube -----Original Message----- From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Gert Doering Sent: Thursday, April 09, 2015 12:52 PM To: Adam Greene Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] 3850? Hi, On Thu, Apr 09, 2015 at 11:17:17AM -0400, Adam Greene wrote: > - Flexible NetFlow with NBAR *this* I'm pretty sure the 3750 cannot do netflow in hardware (even less NBAR) - so it's going up to software, and its tiny CPU is not up to the job. I have no experience with 3850, but I bet a beer that it is not capable of doing "netflow with NBAR" in hardware either - and I would doubt even "basic netflow", but maybe things improved there in recent years. NBAR is hard for anything "in hardware". What traffic levels do you realistically need on the routing side of things? If you do switching on a switch (a 3750 is fairly good for that) and offload routing to something with a faster CPU and vlan subinterfaces, it might work out - depending on traffic. Like, a used 7201, for up to 200-300 Mbit/s ... gert -- USENET is *not* the non-clickable part of WWW! //www.muc.de/~gert/ Gert Doering - Munich, Germany g...@greenie.muc.de fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de This message contains information that may be confidential, privileged or otherwise protected by law from disclosure. It is intended for the exclusive use of the addressee(s). Unless you are the addressee or authorized agent of the addressee, you may not review, copy, distribute or disclose to anyone the message or any information contained within. If you have received this message in error, please contact the sender by electronic reply and immediately delete all copies of the message. _______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
