Re: [c-nsp] what would be the normal burst size in policer on 3550 cisco switch for 500Mbps

2014-11-05 Thread Per Carlson
Hi. Den tirsdag 4. november 2014 skrev Ahsan Rasheed følgende: > Hi All, > > what would be the normal burst size in policer on 3550 cisco switch for 500 > Mbps. > A common rule of thumb for best effort (TCP) traffic is a burst size of 1.5 seconds. The math is left for your exercise. -- Pel

Re: [c-nsp] ME3600x and ciscoEvcMIB

2014-01-03 Thread Per Carlson
On 26 December 2013 22:42, Waris Sagheer (waris) wrote: > EVC MIB should not require MPLS license. Have you opened a TAC case? > I have tried, but the request is (so far) rejected by our partner due to some (ridiculous) formality. -- Pelle "D’ä e å, vett ja”, skrek ja, för ja ble rasen, ”å i

Re: [c-nsp] ME3600x and ciscoEvcMIB

2013-12-13 Thread Per Carlson
e å, vett ja”, skrek ja, för ja ble rasen, ”å i åa ä e ö, hörer han lite, d’ä e å, å i åa ä e ö" - Gustav Fröding, 1895 On 15 October 2013 13:28, Nick Hilliard wrote: > On 15/10/2013 14:24, Per Carlson wrote: >> Nope, a numerical OID doesn't help at all (I did try that bef

Re: [c-nsp] ME3600x-cx 153-3.S any major pitfalls?

2013-11-05 Thread Per Carlson
Hi Waris. On 2 October 2013 17:51, Waris Sagheer (waris) wrote: > Hi Nick, > It would be 10/30/2013. > > > From: Nick Hilliard mailto:n...@foobar.org>> > Date: Wednesday, October 2, 2013 4:38 AM > To: "cisco-nsp@puck.nether.net" > mailto:cisco-nsp@puck.nether.ne

Re: [c-nsp] ME3600x and ciscoEvcMIB

2013-10-15 Thread Per Carlson
för ja ble rasen, ”å i åa ä e ö, hörer han lite, d’ä e å, å i åa ä e ö" - Gustav Fröding, 1895 On 15 October 2013 13:09, Nick Hilliard wrote: > On 15/10/2013 13:51, Per Carlson wrote: >> I'm trying to retreive some data from this MIB, but the switch doesn't >> have

Re: [c-nsp] ME3600x and ciscoEvcMIB

2013-10-15 Thread Per Carlson
d’ä e å, å i åa ä e ö" - Gustav Fröding, 1895 On 15 October 2013 13:24, Per Carlson wrote: > Hi Nick. > > Nope, a numerical OID doesn't help at all (I did try that before posting). > > pelle@kanelbulle:~$ snmpget rabbit .1.3.6.1.4.1.9.9.613 > CISCO-EVC-MIB::ciscoEv

[c-nsp] ME3600x and ciscoEvcMIB

2013-10-15 Thread Per Carlson
Hi. I'm trying to retreive some data from this MIB, but the switch doesn't have any objects under this MIB (BTW, SNMP is working because I can retreive data from other MIBs). pelle@kanelbulle:~$ snmpwalk rabbit ciscoEvcMIB CISCO-EVC-MIB::ciscoEvcMIB = No Such Object available on this agent at thi

Re: [c-nsp] Cisco 12008 8/40 Gigabit Link

2012-09-12 Thread Per Carlson
> Re XR not supported: > > Can you not put a prp2 in this chassis? Sure, but that doesn't help with regards to XR, it's the chassis that's unsupported. -- Pelle "D’ä e å, vett ja”, skrek ja, för ja ble rasen, ”å i åa ä e ö, hörer han lite, d’ä e å, å i åa ä e ö" - Gustav Fröding, 1895

Re: [c-nsp] Cisco 12008 8/40 Gigabit Link

2012-09-12 Thread Per Carlson
Hi. > Had a buddy who said he could send us a 8/40. This long term would be > better than our 7200VXR routers. A 12008/40 shouldn't be the base of *any* long term solution. After all it's End-of-Everything since more than two years (February 28, 2010): http://www.cisco.com/en/US/prod/collateral/

Re: [c-nsp] aaa authorization and "authentication expired"

2012-04-24 Thread Per Carlson
Hi. > I've set up command authorization using TACACS+ on some devices > (various IOS releases), and have since experienced a new type of > "error" message: "Authentication expired". I would like to find more > information of this time out, and if it's configurable (either on the > device or  in so

[c-nsp] aaa authorization and "authentication expired"

2012-04-23 Thread Per Carlson
Hi. I've set up command authorization using TACACS+ on some devices (various IOS releases), and have since experienced a new type of "error" message: "Authentication expired". I would like to find more information of this time out, and if it's configurable (either on the device or in some AV pair

Re: [c-nsp] Feedback on "terminal exec prompt timestamp"

2012-02-15 Thread Per Carlson
Hi. > We use this on every device that supports it. Here as well. > Having a timestamp is a great help in troubleshooting and "forensics". +1 It's were the feature really shines. The timestamps eases comparing output from show commands across multiple devices (in separate terminals), especiall

Re: [c-nsp] Flow collector and analysis program

2012-02-11 Thread Per Carlson
Hi. Jumping in a bit late, but... On Wed, Feb 1, 2012 at 15:40, Burak Dikici wrote: > I am looking for the open source flow collector program and open source > flow analysis program which are able to use in the ISP size.  Specially i > am expecting the functions from the flow collector & analysi

Re: [c-nsp] Configure MPLS on Cisco 3945

2011-12-18 Thread Per Carlson
> You need 'data' license for MPLS. You should have trial option if that's > newly shipped 3900, as it's now shipped with grace period of 600+ weeks. 600+ *weeks*!? A 10 year trial period is nice :-) If that's the default, I might be less negative about the licensing system. -- Pelle RFC1925, t

Re: [c-nsp] vpnv4 export map question

2011-11-19 Thread Per Carlson
Hi On Fri, Nov 18, 2011 at 09:46, wrote: > I apologies if I am misunderstanding the purpose of an export map. Perhaps > there is another mechanism to accomplish this? As Peter said, the export map is about assigning what RT to which prefix (most commonly overriding the default 'route-target exp

Re: [c-nsp] Cisco 7304-NSE-100 used as a border BGP router

2011-10-05 Thread Per Carlson
> Questions: > > 3.      Is there something special about this 7304 that I am missing? It's an old deprecated product which went End of Sale in July 4, 2010. > 5.      Is this a good choice for a customer router? I would rather choose an ASR1001. It's a modern platform and do out-perform a 7304

Re: [c-nsp] mpls ipv6 source-interface <> XR and on IOS

2011-04-26 Thread Per Carlson
Hi Vikas > I was trying command "mpls ipv6 source-interface <>" on SRE3 code, > look like there is no command like that on SRE. This command is > important for locally generated packets. Have someone used this > command? The command have been removed from newer IOSes (see Note and last section in

Re: [c-nsp] similar command "sh mls cef max-route" on 12k

2011-04-05 Thread Per Carlson
Hi Vikas. Checkout the "show controllers pse tcam" family of commands. They are not documented in the XR12k command reference but do work. Look at "Advanced System Command Reference/ASIC Driver Commands" on the CRS-1 (or ASR9k) for a command reference. The commands don't give you the exact number

Re: [c-nsp] about IOS XR 4.0.1

2011-03-30 Thread Per Carlson
Hi. > does anyone konw on iox xr 4.0.1 version there is any command function equals > to the command > "no bgp default route-target filter"on ios version? It's "retain route-target all": router bgp address-family vpnv4 unicast retain route-target all -- Pelle RFC1925, truth 11:  Every ol

Re: [c-nsp] New Joiner - ME3600X and tools

2011-03-29 Thread Per Carlson
Hi Reuben > Can you or anyone else who has access to both the ME3600X and ME3800X > enlighten as to any of the other differences between these two platforms? I have personally no experience with the ME3800X, so I can't give any detailed comments. > I had come to the view that the ME3600X and ME3

Re: [c-nsp] New Joiner - ME3600X and tools

2011-03-28 Thread Per Carlson
Hi. > The lack of H-VPLS support although clearly listed on the product page is > also kind of a downer. VPLS is one of the key differentiators between the ME3800X (which have it) and ME3600X (which don't). -- Pelle RFC1925, truth 11:  Every old idea will be proposed again with a different nam

Re: [c-nsp] Large scale "central services" VRF, best practice?

2011-03-18 Thread Per Carlson
Hi Peter. > Is there any "smart" way configure an MPLS VPN network for a "central > services" VRF for all (or many) other VRFs? > An SP from which we buy last-mile in a couple of VRFs have their > management prefixes leaked out into every VRF and we're looking for > something similar. > > Does

Re: [c-nsp] Easy question about connecting LANs over WANs

2011-03-15 Thread Per Carlson
> What is the best way to do this?  GRE tunnel?  Will DHCP go across it? You need something that works on Layer2, GRE is a Layer3 thing. You could try L2TPv3 Local Switching: http://www.cisco.com/en/US/docs/ios/wan/configuration/guide/wan_l2_tun_pro_v3_ps10592_TSD_Products_Configuration_Guide_Chap

Re: [c-nsp] Multicast support in single vrf

2011-03-09 Thread Per Carlson
> Is that supported on Cisco/7200 yet? According to cisco.com/go/fn mLDP is supported since SRE. Without any extensive testing, at least some of the mldp comamnds are available on a G2 running SRE2. -- Pelle RFC1925, truth 11:  Every old idea will be proposed again with a different name and  a

Re: [c-nsp] CRS1 downgrade from 4.0.1 to 3.6.2

2011-02-25 Thread Per Carlson
> I have upgraded CRS1 to 4.0.1 from 3.6.2. Upgrade worked fine and it is > running 4.0.1. But the issue is I am not able to downgrade it back to 3.6.2 > > I have also checked on the active and inactive files and could not locate > upgrade package on active disk (boot disk). Does anyone has faced s

Re: [c-nsp] carving TCAM on Engine 3 linecards due to exhausted IPv6 TCAM regions

2011-02-18 Thread Per Carlson
Hi Jan. > But if I look into TCAM usage I see no difference/improvement except as > for the RX_IPv6_128 region: > > #execute-on slot 1 sh controllers frfab alpha tcam carve > = Line Card (Slot 1) = > Id  Region  % Curr/Carve/Dflt   Mask Blocks       Masks > Value Cells >          

Re: [c-nsp] carving TCAM on Engine 3 linecards due to exhausted IPv6 TCAM regions

2011-02-18 Thread Per Carlson
Hi. On Fri, Feb 18, 2011 at 07:46, Jan Sandmaier wrote: > Hi Pelle, > > thanks for your good answer. I simply can't configure this. What code > are you running? I'm running an quite old code. It seems I have to do an > upgrade first. We are running SY9b. > bb-b.fra3.fra.de(config)#hw-module slo

Re: [c-nsp] carving TCAM on Engine 3 linecards due to exhausted IPv6 TCAM regions

2011-02-17 Thread Per Carlson
Hi Jan. > after some flux of IPv6 routes I got on my last old GSR the error > message for each line card: We experienced that as well today. > Issueing a "sh controllers frfab alpha tcam carve" shows me an > utilization of 50-100% of any RX_IPv6_* region while all other regions > have 0 to 5% ut

Re: [c-nsp] SNMP Question

2011-02-04 Thread Per Carlson
Hi Scott. > I have found that for my 3845 (running 15.0) with PRI in slots 0/0/0 I can > use OID 1.3.6.1.4.1.9.10.19.1.1.9.1.3.0.0 This is the CISCO-POP-MGMT-MIB (ftp://ftp.cisco.com/pub/mibs/v2/CISCO-POP-MGMT-MIB.my) The table you are polling is cpmDS0UsageTable where each entry is indexed like

Re: [c-nsp] GSR 12k downgrade IOX to IOS

2011-01-12 Thread Per Carlson
Hi Judah. > Can someone direct me to a document explaining how to downgrade a gsr12k > from IOX back to IOS?  Or does anyone have experience with this?  This is a > lab box so any way it works, works for us.  Since we have multiple PCCARDs > and CFs we would be most interested in a way to switch b

Re: [c-nsp] 4G 4rd party flash drive for XR-12k

2010-12-10 Thread Per Carlson
Hi Mikael > Any other hints in this area? I'd like them to survive several years in > normal operation... We buy ours from Zycko (.com/.se). They are "official 3rd party" (i.e. sold as FLASH-4G) and a bit more costly than the ones you found, but do come with a 5 year warranty. So far there havn'

Re: [c-nsp] Handling the inbound ACL's with dynamic pd ipv6 prefix from the ISP

2010-12-09 Thread Per Carlson
Hi George. >> My suggestion is to put all those hosts with public accessible >> services on one subnet, and all clients on another subnet. You can >> then have different ACL's protecting the different subnets (allow any >> -> tcp/80 on the www-server subnet, deny any on the client subnet). If >> y

Re: [c-nsp] ME Series for a LAN/Server Farm

2010-12-09 Thread Per Carlson
Hi. > I'm looking at the new 3600X series it was just released in Sept.  I noticed > the no local switching for UNI ports.  Is there a way to disable the UNI/NNI > relationship completely or enable local switching for UNI ports? That might be true if you run the UNI-ports as "switchports". OTOH y

Re: [c-nsp] Handling the inbound ACL's with dynamic pd ipv6 prefix from the ISP

2010-12-06 Thread Per Carlson
> But let's say now that you got an ftp server, or a www server on a host. How > can you set your access list? Since you have no clue what your ipv6 pd will > be like you have to permit all inbound traffic from internet to all hosts to > ports 80 and/or 25. With PD you (most likely) get a prefix s

Re: [c-nsp] Low end cisco switch that supports dot1q tunneling and design question

2010-10-19 Thread Per Carlson
Hi. > Also, can the tunnel terminate on multiple > switches if they are all configured with the same access vlan tag? Yes, but not with out some gotchas. If you have a lot of broadcast traffic, and are running the inner Vlans (C-Vlans) "sparsely meshed" you will have a lot more broadcast traffic

Re: [c-nsp] Cisco 3750s - Stackwise Plus

2010-10-17 Thread Per Carlson
They are called ME-36/3800X :-) -- Pelle (Sorry for the top-posting, I'm on a mobile device) On 17 Oct 2010 21:15, "Alan Buxey" wrote: > Hi, > >> > what I really want to see is a 3750E or 3750X equivalent of the 3750G-12S - they are great >> > fibre aggregators in the family-set >> >> Actually,

Re: [c-nsp] doubt on Mpps

2010-10-09 Thread Per Carlson
A networking device handles packets. That indirectly mean they are performance wise bound by the number of packets per second it manages to handle. For example the IP routing task within a router takes the same amount of time regardless the packet size. When calculating how many Mbps a device mana

Re: [c-nsp] to shape or not to shape

2010-10-09 Thread Per Carlson
Both policing and shaping are tools to use when dealing with sub-rates. The whole point with a shaper is to create a virtual interface speed and thus make use of the output queues earlier. In that perspective shaping to the interface speed is rather pointless. -- Pelle (sorry about the top-postin

Re: [c-nsp] IOS Image on LNS

2010-10-08 Thread Per Carlson
> I'd look at 12.2SB for an LNS role.  Hit a few oddities with 12.2SRD > last time I tried it. I've seen some issues as well on early SRD, but SRD5 have been stable. BTW, all versions of 12.2SB (for 7200) have got EoS notices[0]. It's only 12.2(31)SB that's still haven't reached "End of Software

Re: [c-nsp] IOS Image on LNS

2010-10-07 Thread Per Carlson
12.2SRDlatest is a good mix of features, maturity and stability. -- Pelle (sorry about the top-posting, I'm on a mobile device) On 7 Oct 2010 23:26, "Dominic" wrote: > Hi, > > Installing a new Cisco LNS router, I have Cisco 7200 NPE-G2 > router. Would support VPDN and L2TP tunnels. Any recommen

Re: [c-nsp] Limiting Interface Traffic

2010-10-06 Thread Per Carlson
> Ummm.  So how big are the buffers in the ME3600 and ME3800 series? Don't remember exactly, but the docs gives some pin points. When configuring WTD, it's possible with a queue-limit of 491520 bytes (default is 2000). -- Pelle RFC1925, truth 11:  Every old idea will be proposed again with a di

Re: [c-nsp] Limiting Interface Traffic

2010-10-06 Thread Per Carlson
Hi Nick. >> 1) Use of SFP+ instead of XFP-optics (no 40km optics at FCS, "never" >> anything beyond 40km) > > It's a LAN switch. If you want a metro switch, get something with deeper > buffers. I'm speaking of ME-36/3800X, not the 3560G. And those babies are indeed metro switches with large buffe

Re: [c-nsp] Limiting Interface Traffic

2010-10-06 Thread Per Carlson
>> I would easily trade 2) with a double height (2RU) box, >> and then there are (probably) space for putting the PSU >> in front, i.e also cover 3). > > You sound like you need an MX80, but then the network is in > the front too, just like the power :-). Except that a MX80 is even deeper than a 3

Re: [c-nsp] Limiting Interface Traffic

2010-10-06 Thread Per Carlson
Doh! Finger trouble... > I like this box more and more even if I don't have it yet ;) There are three things with the design of the box I'm not that happy with (but now I'm probably just nit-picking): 1) Use of SFP+ instead of XFP-optics (no 40km optics at FCS, "never" anything beyond 40km) 2) D

Re: [c-nsp] Limiting Interface Traffic

2010-10-06 Thread Per Carlson
> I like this box more and more even if I don't have it yet ;) There are three things with the design of the box I'm not that happy with (but now I'm probably just nit-picking): 1) Use of SFP+ instead of XFP-optics (no 40km optics at FCS, "never" anything beyond 40km) 2) Double depth of the switc

Re: [c-nsp] Limiting Interface Traffic

2010-10-06 Thread Per Carlson
Hi. > While on this subject, what is a recommended lower cost customer aggregation > platform? In general any ME-switch are a better choice than a Catalyst-switch. After all customer aggregation with subrates != desktop switching. I.e. if you are a SP, stick to the SP product ranges. In your ca

Re: [c-nsp] can I use | pipe line such as "| inc xxx" and regexp such as "regexp ^$" both , when I execute "show bgp "

2010-10-01 Thread Per Carlson
Hi Mark. >> features when using "show bgp ...". > > There's a number of things they don't have, and this is to > be expected for a box that is still fairly new on the scene. The CRS-1 isn't *that* new any more. > And someone else already mentioned, 3.8 brought with it some > BGP switches that ca

Re: [c-nsp] STM querry

2010-09-23 Thread Per Carlson
> Thanks Aaron , if you have any supporting doc for same it will be very > helpful for me. http://lmgtfy.com/?q=site%3Acisco.com+pa-mc-stm-1+config+guide -- Pelle RFC1925, truth 11:  Every old idea will be proposed again with a different name and  a different presentation, regardless of whether

Re: [c-nsp] can I use | pipe line such as "| inc xxx" and regexp such as "regexp ^$" both , when I execute "show bgp "

2010-09-23 Thread Per Carlson
> Note If the regular expression contains spaces, it must be specified and > surrounded by quotation marks. Tying up the some loose ends: quoting works fine in 3.9.0 RP/0/0/CPU0:melker#show bgp regexp ^32 NetworkNext HopMetric LocPrf Weight Path *> 10.100.0.0/16 1

Re: [c-nsp] can I use | pipe line such as "| inc xxx" and regexp such as "regexp ^$" both , when I execute "show bgp "

2010-09-23 Thread Per Carlson
> As far as I can tell from the docs[0] the "show bgp regexp" seems to > accept quotes. Can you verify that by any chance? It's in the man page as well: --8<-- RP/0/7/CPU0:mormor#man command show bgp regexp Note If the regular expression contains spaces, it must be specified and surrounded by q

Re: [c-nsp] can I use | pipe line such as "| inc xxx" and regexp such as "regexp ^$" both , when I execute "show bgp "

2010-09-23 Thread Per Carlson
Hi. > I don't have any CRS-1 available, but I can't see why it wouldn't have > that command. At least 3.6.3 and 3.9.0 doesn't have it (from 3.6.3 but same output on 3.9.0): RP/0/7/CPU0:mormor#show bgp ? paths Path information policy Preview advertisements un

Re: [c-nsp] can I use | pipe line such as "| inc xxx" and regexp such as "regexp ^$" both , when I execute "show bgp "

2010-09-23 Thread Per Carlson
Hi > RP/0/RP0/CPU0:#sh bgp regexp ^$ | Inc ? > LINE   I don't know what XR version you are running, but I get different results on 3.6.3 and 3.9.0. On 3.6.3 I get the same result as you: no matches. RP/0/7/CPU0:mormor#show bgp regexp ^$ | in /30 RP/0/7/CPU0:mormor# But on 3.9.0 it works as

Re: [c-nsp] rancid and inventory with "^"

2010-09-10 Thread Per Carlson
Hi. On Fri, Sep 10, 2010 at 10:01, Tassos Chatzithomaoglou wrote: > I believe i'm talking about a different issue. > In my case it's like rancid's parser cuts randomly a part of the inventory > whenever a string with "^" is met. > I have checked the cli output and this doesn't change. I've notic

Re: [c-nsp] passing ACL via radius - AAA Unsupported Attr

2010-09-03 Thread Per Carlson
Hi. > I'm looking for a way to pass ACLs via radius. To begin with, why are you sending the VRF-info 3 times, in two different ways? > 126083: Sep 2 16:32:10 PDT: RADIUS: Vendor, Cisco [26] 55 > 126084: Sep 2 16:32:10 PDT: RADIUS: Cisco AVpair [1] 49 > "lcp:interface-config#1

Re: [c-nsp] Radius and choosing ip-local pool on 7600, PPP termination

2010-09-03 Thread Per Carlson
> I can see in the tcpdump output from the server that it's sending > 'Cisco-AVPair' to set the ip pool, and even the debug shows it, but no clue > as to why it's not using it. You have to tell the 7600 which VRF to use as well. We don't have any 7600/ES+ combos, but this works fine on a 7200. Wit

Re: [c-nsp] Cisco Routers: Performance benchmark

2010-09-02 Thread Per Carlson
> ...so if we have test results with these > frame-sizes, we can be sure if the router we wanna buy can work under the > highest load of the passing traffic on our network or not. maybe for pure forwarding, but what if you throws acls, qos, fw, ids, nat, etc into the equation? enabling more featur

Re: [c-nsp] SNMP MIB for Receiving Prefix Counts for Individual Peers

2010-06-30 Thread Per Carlson
Hi. > Seeing as that was published in Feb 2010, I doubt it's supported by > anything yet... I guess I'll have to wait and see... Still a live document yes. It also hasn't got an OID from IANA yet... -- Pelle A: Because it messes up the order in which people normally read text. Q: Why is top-po

Re: [c-nsp] SNMP MIB for Receiving Prefix Counts for Individual Peers

2010-06-30 Thread Per Carlson
Hi Gary. > Is anyone aware of a MIB that supports querying the number of prefixes > (not the individual prefixes) received from a BGP peer? There is an I-D supporting this: http://tools.ietf.org/html/draft-ietf-idr-bgp4-mibv2-10 >From the Overview section: This MIB addresses several of the defi

Re: [c-nsp] CRS-1 MSC utilization

2010-06-15 Thread Per Carlson
Hi. > We are using the 8 port 10GE PLIMs which are 2:1 oversubscribed. The oversubscription of the 8-10GE PLIM is rather complicated. Some of the forwarding paths are restricted by bps, others by pps. This means you must be very careful selecting ports if you tries to avoid contention. Here's a g

Re: [c-nsp] To XR or not to XR

2010-05-19 Thread Per Carlson
Hi. On Wed, May 19, 2010 at 15:12, Mark Wheadon wrote: > What has been people's experience of Cisco IOS XR on the 12000 series ? TAC > have advised that12.0(33)S has been frozen in development and only bug fixes > or security fixes will be made to the code base. We do have one XR12k in productio

Re: [c-nsp] MIB to monitor EoMPLS xconnect

2010-05-11 Thread Per Carlson
> Is there a MIB to monitor the status of the EoMPLS xconnect as being UP > or DOWN??? > > I can't seem to find the corresponding MIB for this...looked at the MIB > below, but couldn't find it there. Have you checked if CISCO-IETF-PW-MIB suits you? -- Pelle A: Because it messes up the order in

Re: [c-nsp] Multiprotocol BGP with Cisco

2010-04-19 Thread Per Carlson
Hi. > Can you do it for v6 peer? Yes. The same neighbor-group can be applied to a IPv6 peer: RP/0/0/CPU0:xr12k#sh run router bgp router bgp 1 neighbor-group v4v6 remote-as 1 update-source Loopback0 address-family ipv4 unicast ! address-family ipv6 unicast ! ! neighbor 2001::11

Re: [c-nsp] Multiprotocol BGP with Cisco

2010-04-17 Thread Per Carlson
Hi. On Fri, Apr 16, 2010 at 22:14, Grzegorz Janoszka wrote: > On 16-4-2010 20:47, Steve Bertrand w rote: >> >> You just have to activate the neighbor in both address-family, and have >> the appropriate prefix lists and other policy config applied in both. > > For a common IOS I could imagine doin

Re: [c-nsp] ME6524 similarity? [was Re: ME3400 switches - internals?]

2010-03-30 Thread Per Carlson
Hi. >> The ME3750 and ME3400(-nonE) are two (in my opinion) failed attempts. >> The ME3750 lacks any decent customer ports (all RJ45), and the ME3400 >> doesn't have the hardware. > > How do these compare with the ME6524 series? The ME6524 is a completely different box. Don't get fooled by the ME

Re: [c-nsp] ME3400 switches - internals?

2010-03-30 Thread Per Carlson
Hi. > Does anyone have or use the ME3400s? What architecture are they based > on? It's more or less a Catalyst 3750 which have gotten a more Metro Ethernet/Service Provider oriented IOS-version. > Clearly they aren't a re-hashed 3750, and they seem to be a step > above the 3750s in terms of feat

Re: [c-nsp] OID that measures total traffic?

2010-03-26 Thread Per Carlson
On Fri, Mar 26, 2010 at 12:11, Lincoln Dale wrote: > On 25/03/2010, at 7:40 PM, Gert Doering wrote: >> Is that implemented in (common) Cisco gear? > > software-based forwarding platforms: yes. > hardware-based forwarding platforms: no. That's not that simple. For example do a 12k return data. Wh

Re: [c-nsp] OID that measures total traffic?

2010-03-26 Thread Per Carlson
Hi. > Is that implemented in (common) Cisco gear? At least all IOS-devices I've tried it on. Not sure how it works on 6500's, which I assume interests you Gert, because all my 6500's are pure L2-switches. In IOS-XR the counter is implemented but do return 0 all time (at least until 3.9) > Is th

Re: [c-nsp] OID that measures total traffic?

2010-03-24 Thread Per Carlson
> Is there an SNMP OID that reports total traffic that passes through a > router? >From RFC1213-MIB: ipForwDatagrams OBJECT-TYPE SYNTAX Counter ACCESS read-only STATUS mandatory DESCRIPTION "The number of input datagrams for which this entity was not the

Re: [c-nsp] IPv6: Getting started

2010-03-22 Thread Per Carlson
Hi Peter. > Q: We almost only use 6500/Sup720 (12.2(33)SXI) and 3560/3750 > (12.2(5n)SEn). According to Cisco's IPv6 technology white paper > we should be okay. Are all relevant management stuff IPv6-ready? TACACS > +, NetFlow (C6k FTW!), SSH, syslog, SNMPv3 et cetera. There were a severe bug (CS

Re: [c-nsp] 802.3ad questions..

2010-03-03 Thread Per Carlson
Hi. > We have (2) Metro Ethernet connections from two different carriers > connecting our two locations at the moment.  We need to provide for > redundancy at the L2 level for these, and would like to combine the > bandwidth into one logical bundle. > > We will be using Cisco switches on both side

Re: [c-nsp] Interface flaps affecting BGP and IS-IS

2010-02-19 Thread Per Carlson
Hi > We have a an edge router which connects to our upstream transit > provider over a 10Gbps interface. Recently, on a couple of occasions, > this interface has flapped resulting in BGP processes consuming ~100% > CPU (we are receiving a full table over this peering). Consequently, > when the CPU

Re: [c-nsp] cisco 2801 and HWIC-2T

2010-01-19 Thread Per Carlson
On Mon, Jan 18, 2010 at 16:39, Ryan West wrote: > The card is supported on your platform, but it's a T1 only card, so > controller e1 or card type won't work for it. No it's not. All "T" (H)WICs are for serial interfaces, which is *not* the same as a T1/E1. To use this type of (H)WIC you need a

Re: [c-nsp] IOS, IOS-XR and RANCID

2010-01-14 Thread Per Carlson
Hi. > We have a network composed by Cisco equipment running IOS and IOS-XR. > We run RANCID to manage/backup our configurations. > > Is anybody has experience on this software with both versions (IOS and > IOS-XR)? We have difficulties to integrate both versions simultaneously in > the same RANCID

Re: [c-nsp] QinQ Layer2 QoS - 3550?

2010-01-11 Thread Per Carlson
Hi. > We have a number of Cisco 3550's doing QinQ on a Metro-E network. > > I was wondering whether anybody is succesfully copying the 802.1P info from > the Inner Tag, to the Outer Tag. Sorry, but that's not possible on a 3550-class of switch. Only standard Catalyst (that I'm aware of) supportin

Re: [c-nsp] mlppp dot1q question

2009-11-30 Thread Per Carlson
Hi. > maybe you could also use eg l2tpv3 over mlppp or frame-relay with frf.16.1 > and  DLCIs? > > Haven't tried it though... We are using MLFR (FRF 16.1) in a quite large scale with great success. No bugs have bitten us so far, neither on the PE-side (12.0S on GSR) or CPE (ISR's running differen

Re: [c-nsp] Cisco Tahoma 1.x

2009-11-27 Thread Per Carlson
Hi. > I have been hearing of Cisco Tahoma 1.x guide to carrier ethernet design. > > Would anyone with access to the document share his/hers with me, if > permitted? This document is under a NDA. If you want to get a copy of it, contact your AM or SE. -- Pelle ___

Re: [c-nsp] IOS XR version you use

2009-11-18 Thread Per Carlson
Hi. > I look for a good choice of XR to upgrade to from 3.5. In terms of features > there are no mandatory ones that could drive us to do 3.8 instead of 3.6 > Does anyone of you use 3.8 in a production environment? Please share any > thoughts on this. We are using 3.5.4 (CRS and XR12k) and do pla

Re: [c-nsp] CRS-1 MSC, MSC-B, FP40

2009-11-09 Thread Per Carlson
Hi. > What is the difference between the three CRS L3+ forwarding engines?  The > datasheets look like straight copy-paste besides the weight and > power-ratings. That's true for MSC and MSC-B. They are virtually the same, but the B-version draws less power (and requires a newer XR-version). > T

Re: [c-nsp] MPLS x-connect to router itself

2009-10-28 Thread Per Carlson
Hi. > I was wondering if IOS MPLS routers (ME6500 PFC3C in my case) can > establish an MPLS x-connect to itself, although it's not the IP > address of router-id but another loopback address added for this > purpose. In Cisco language, this is called "Local Switching" (see http://www.cisco.com/en/

Re: [c-nsp] cisco router 2800/3800 serie

2009-08-26 Thread Per Carlson
Hi Arne. > We have 40 locations with different users and these location is to be > migrated to fiber 20Mb from adsl. How are those fiber accesses going to be delivered, i.e. do you need devices with optical interfaces? > We want to run MPLS on these routers, because there is administration > g

Re: [c-nsp] Question on CRS-MSC-40G

2009-05-11 Thread Per Carlson
Hi. > When you purchase a CRS-MSC-40G default, does it come with 40Gbps > license/sofware embedded in the MSC or do you have to put in a key code or > CD ROM to access 40 gig license? It's embedded, i.e. no fiddling with any license keys. -- Pelle ___

Re: [c-nsp] How to apply individual QoS policies to on an ingress Interface?

2009-05-07 Thread Per Carlson
Hi Andy. > So my question really is, do we need a class-map and policy-map for each > customer or is there a more elegant solution. You could probably use the ISG framework [1] for this (look for IP Subscriber Sessions). Just be aware there are quite a lot of hardware limitations as well as licen

Re: [c-nsp] Needs some help with QOS

2009-03-24 Thread Per Carlson
Hi. Which direction are you trying to prioritize? In the first post the policy were on the Dialer0-interface (traffic from LAN towards DSL), but in the last post it's on the Fa4-interface (traffic from DSL towards LAN). I assume it's the first one because there is less point shaping when going fr

Re: [c-nsp] No GRP images for GSR's?

2009-03-24 Thread Per Carlson
Hi > As far as I have heard, most people are at 12.0(32)SY, which is (I would > say) a better bet. If you have Eng5 LC's and is doing MPLS-VPNs there is a bug (CSCsq83540) potentially killing 0.0.0.0/0 in VRFs. Affected are basically everything upto 32S11, 32SY6 and 33S1. 32S12, 32SY7/8 and 33S2

Re: [c-nsp] Needs some help with QOS

2009-03-24 Thread Per Carlson
Hi. > So just a final question, would the solution have worked if it was on a > regular interface? I just want to make sure I had the right idea. Yes, in this case the ATM-interface where the PVC lives. But the PVC must be something else than the default "ubr" class of service. The U in UBR stand

Re: [c-nsp] Improved queuing in 12.4(20)T?

2008-08-26 Thread Per Carlson
Hi Oli. > I haven't looked at HQF for a while, but I recall the H-QoS scenario > you're using benefits especially from HQF as the parent shaper is aware > of the LLQ within the child, but not entirely sure about this. It would > explain the improved behaviour, though. I have always had the impres

[c-nsp] Improved queuing in 12.4(20)T?

2008-08-26 Thread Per Carlson
Hi. I'm doing some QoS-testings and notice a remarkable change in the latencies on a priority queue (as well as some improvement on other queues) in 12.4(20)T compared with 12.4M (19, 19b and 21) and 12.4(15)T7. The scenario is H-QoS with a parent doing "shape average" and a child with 4 queues:

Re: [c-nsp] Extending MPLS over external providers cloud

2008-08-06 Thread Per Carlson
On Wed, Aug 6, 2008 at 05:14, <[EMAIL PROTECTED]> wrote: > ... here I > have a cloud in the middle connecting several (20-30) DSL sites to a head > office (hub and spoke), and the thought of having to manage multiple > tunnels (one per vrf), per site is making me cringe.. We have successfully us