Looking for real word experiences virtualizing router and firewall services
with rates above 1Gbps on x86 platforms. Most testing I have been involved
with virtualizing routers and firewalls, performance drops
dramatically above 1Gbps.
Connections per second are critical for a firewall in particul
On 23/Sep/19 20:39, Gert Doering wrote:
> Among routers (full flexibility, large tables, buffers, ...) it's a
> fairly good bargain - compare this to ASR9001 or ASR9901 from the Cisco
> camp.
This.
Mark.
signature.asc
Description: OpenPGP digital signature
On 23/Sep/19 20:37, Jason Lixfeld wrote:
> Is the MX204 not a prohibitively expensive 10G port?
When you consider that you can:
- Drive a Metro-E ring at 100Gbps with no special Transport gear.
- Hang an ASR920 or two off of those 10Gbps ports to manage
low-speed customers.
- Place
Hi,
On Mon, Sep 23, 2019 at 02:37:08PM -0400, Jason Lixfeld wrote:
> > Juniper have dropped the ball here for years. Until the MX204. However,
> > the MX204 is good if you run 10Gbps customers in the Metro. Otherwise,
> > for now, nothing beats the ASR920, IMHO.
>
> Is the MX204 not a prohibitive
> On Sep 23, 2019, at 2:17 PM, Mark Tinka wrote:
>
> On 23/Sep/19 14:07, Jason Lixfeld wrote:
>> What are your other requirements? Who/what else are you looking at?
>
> We were the first ISP in the world to run IP/MPLS all the way into the
> Access back in 2009 - TIME dotCom, Malaysia - on th
On 23/Sep/19 14:07, Jason Lixfeld wrote:
> What are your other requirements? Who/what else are you looking at?
We were the first ISP in the world to run IP/MPLS all the way into the
Access back in 2009 - TIME dotCom, Malaysia - on the Cisco ME3600X.
I haven't operated that network since 2012,
--- Begin Message ---
Nikolas,
I have been running into "committed config doesn't match operational reality"
issues with JunOS since at least 16.1. I've seen this under protocol bgp,
firewall filters, etc.
My issues appear apply-group related. Are your affected BGP policies achieved
via appl
> On Sep 23, 2019, at 5:11 AM, Mark Tinka wrote:
>
> This is the major driving reason behind us avoiding the NCS540
> for the Metro.
What are your other requirements? Who/what else are you looking at?
___
juniper-nsp mailing list juniper-nsp@puck.ne
On 23/Sep/19 13:14, Tarko Tikan wrote:
>
>
> What is the motivation to run jericho in your L2-only setup (instead
> trident)? Only buffer space?
We were chasing the actual switch, as it met all of what we needed,
including the larger buffer space.
Mark.
_
hey,
7280R, Jericho.
What is the motivation to run jericho in your L2-only setup (instead
trident)? Only buffer space?
--
tarko
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
On 23/Sep/19 10:58, Karl Gerhard wrote:
>
> The big companies have fancy and expensive labs and employees that spend
> weeks testing new releases. However, we're a small hosting provider running a
> bunch of MX480ies and other Juniper stuff. I need routers that I can upgrade
> without fearin
Hi,
I'd like to point out one more thing because I feel that this point hasn't been
stressed enough:
Upgrading Junos might be more time consuming than many people expect it to be.
The reason for this is that quite often, things that previously worked in Junos
will break in a new release. This a
On 23/Sep/19 09:44, Gert Doering wrote:
> Ewww... thanks for the heads up. I have one of those "incoming" as
> new "full table, many features, external links" L3 device, and that
> one will definitely need QoS + netflow/ipfix + L3...
>
> Will test very thoroughly :-)
I'll also let you know onc
Hi,
On Mon, Sep 23, 2019 at 09:28:38AM +0200, Mark Tinka wrote:
> > Which box was this? Trident or Jericho?
> 7280R, Jericho.
Ewww... thanks for the heads up. I have one of those "incoming" as
new "full table, many features, external links" L3 device, and that
one will definitely need QoS + net
On 23/Sep/19 09:23, Gert Doering wrote:
>
> Which box was this? Trident or Jericho?
7280R, Jericho.
Mark.
signature.asc
Description: OpenPGP digital signature
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailma
Hi,
On Mon, Sep 23, 2019 at 09:15:48AM +0200, Mark Tinka wrote:
> We hit an issue where policing did not work, despite being activated. We
> then realized we had to explicitly enable "l2 qos" for our TCAM profile.
> This is traffic-affecting. You then verify by bumping the hardware ACL
> counters.
On 19/Sep/19 00:52, Jason Lixfeld wrote:
> FWIW, you may want to check out Arista’s 7280R. We’ve just deployed a pair
> of these for EVPN-MPLS and they’re slick, and from what I understand, they
> have the FIB scale to be able to act as a border router. It’s a very
> IOS-like CLI (but so ma
17 matches
Mail list logo