On 06/19/2012 12:25 AM, Benny Amorsen wrote:
Pavel Lunin plu...@senetsy.ru writes:
Em… isn't 10G+ possible on SRX HE without offloading?
I don't know, that is part of what I am trying to find out :)
Well, you can certainly do 5Gbit/sec on the (much older) Netscreen 5400
hardware with M2
19.06.2012 03:25, Benny Amorsen wrote:
Em… isn't 10G+ possible on SRX HE without offloading?
I don't know, that is part of what I am trying to find out :)
Even 'independent tests' from Cisco's friends do not argue that SRX3k
can do 20G+.
Pavel Lunin plu...@senetsy.ru writes:
Even 'independent tests' from Cisco's friends do not argue that SRX3k
can do 20G+.
http://www.cisco.com/en/US/prod/collateral/vpndevc/miercom_vs_juniper.pdf
I am sorry for that sort of a link in such a respectful place :)
I am sure the SRX3600 can do
Phil Mayers p.may...@imperial.ac.uk writes:
It's only a factor of two up, and they've had 6/7 years to get there.
I'm assuming the 5600/5800 can do 10Gbit/sec (of basic firewalling -
no deep inspection etc.) unless anyone has compelling evidence
otherwise.
Yes, I am assuming that too.
But
Hello the list,
I solve most of problems to ping from my SRX cluster.
- In first, my provider gave me another range IP @, because the first was
wrong. So I can ping from my DMZ (with public @);
- In Second, I put my NAT rules (which I forgot), so I can ping from a node
from INSIDE network;
Hello the list,
I solve most of problems to ping from my SRX cluster.
- In first, my provider gave me another range IP @, because the first was
wrong. So I can ping from my DMZ (with public @);
- In Second, I put my NAT rules (which I forgot), so I can ping from a node
from INSIDE network;
Even 'independent tests' from Cisco's friends do not argue that SRX3k
can do 20G+.
http://www.cisco.com/en/US/prod/collateral/vpndevc/miercom_vs_juniper
.
pdf
I am sorry for that sort of a link in such a respectful place :)
I am sure the SRX3600 can do 22Gbps+. The question is not
Hello the list,
I solve most of problems to ping from my SRX cluster.
But now, I have a new problem, because I did a lot of changes:
I don't have routing process on the cluster of site B.
toto@BA-SRX650-01# show chassis cluster
reth-count 6;
rpd is disabled on the backup node in a chassis cluster.
You can set some routes through fpx0 using the groups node0/node1, but it
has to be truly OOB.
Scott
On Tue, Jun 19, 2012 at 8:21 AM, Roland Droual
roland.dro...@paris.iufm.frwrote:
Hello the list,
I solve most of problems to ping
To expand on what scott said.
The routing daemon on the backup SRX (RG0 backup) doesn't run by
design. To handle some static routes out the fxp0 interface you can
set routes using the groups much like you configured the hostname and
such. It's well documented, feel free to give it a look if you
Per Granath per.gran...@gcc.com.cy writes:
For the record, the Miercom report is from tests without services
offload - so that's without 'hardware offload'.
It is great to hear that.
In general, with that 22Gbps on the SPC processing, the processing
power could also be eaten up by IPSec
So I can't remember the command to show the BGP output being sent to a peer.
Such as routes and details I am drawing a blank today.
Thank you for the little things in advance.
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
So I can't remember the command to show the BGP output being sent to a
peer. Such as routes and details I am drawing a blank today.
Thank you for the little things in advance.
show route advertising-protocol bgp
___
juniper-nsp mailing list
show route advertising-protocol bgp y.y.y.y (to see the routes being
advertised on local router by BGP)
show route receiving-protocol bgp x.x.x.x (to see the received routes
on remote peer by BGP)
x.x.x.x y.y.y.y = IP address of the neighbor
Cheers
On Tue, Jun 19, 2012 at 7:11 PM, Per Granath
Hello,
I prefered to kill the chassis cluster, and I rebuilt it.
I retrieved my routing process
I can ping all the network.
Thanks for your help.
Roland DROUAL
- Mail Original -
De: Tim Eberhard xmi...@gmail.com
À: Scott T. Cameron routeh...@gmail.com
Cc: Roland Droual
Question for you service provider folks. How do cable modems, dsl, ftth,
etc limit bandwidth? I believe that everything is limited at the customer
edge demarq device, performing bandwidth limits on a central network device
would be too costly to do.
Do the CE devices use a form of traffic
Yes some do their limiting at the DSLAM or OLT.
However, why transport traffic just to drop it? I generally use an MX as a BRAS
and shape there.
On Jun 19, 2012, at 12:19 PM, Chris Evans wrote:
Question for you service provider folks. How do cable modems, dsl, ftth,
etc limit bandwidth? I
Not costly at all; when you think about scaling it to 20,000/30,000 subscribers
per box.
BRAS's (xDSL, PPPoE, PPPoA) have massive numbers of hardware queues, and
shape/queue per individual subscriber. These boxes are designed to do this.
Examples: Juniper E-series, Cisco ASR-Series, Juniper
So whole that may be true for dsl/ppp I don't think it is for cable and
ftth?? There have been many articles in the past about uncapping your
cable modem. Through the use of traffic shaping on the edge you can slow
down tcp to get the same desired effect.
I have verizon fios and I've been told
An ISP I used to work for shaped/policed every single session at the
LNS, downstream towards the customer, to the maximum service speed of
their purchased plan.
If a customer suddenly becomes the target of a DoS attack, you dont
want hundreds or thousands of megabits flooding onto your expensive
Layer-2 Cable is done at a BRAS (running in DHCP mode). Layer-3 Cable Plants
shape at the CMTS.
Layer-2 Optical/GPON/FTTH can be done at a BRAS (if DHCP or PPP), or can be
done at the head end GPON device; assuming the GPON is reasonably 'smart', and
understands each subscriber and their
Okay that makes more sense. So both sides technically probably do it??
For upstream the local customer device would limit. Then downstream the
bras would do it.
Still, can someone answer if it's shaping or policing?
On Jun 19, 2012 4:55 PM, Chris Kawchuk juniperd...@gmail.com wrote:
Layer-2
Downstream is Shaped, Definitely.
The BRAS/CMTS/etc sets up Individual Hardware Queues for each traffic class per
subscriber. (Hence why those boxes have 16,000-64,000 HW queues per blade, as
each sub may use 2-8 queues depending on what you sell =)..)
Generally 4 prioritized queues (NC,
Apologies, as my REGEX-fu is weak today.
I'm attempting to filter off certain interface from showing up via an SNMP
walk... i.e. interfaces that are internally generated which really serve no
purpose outside the JunOS box itself: (lsi.*, lo0.16384, etc)
I want to match any ge-x/x/x interface
24 matches
Mail list logo