When designing a network, it is ideal to try and sepaerate as much as possible into the 3 layers. However, this is not always possible. They different layers deal more with traffic filtering and policing more than they do physical distance. Its best to try to push your acls, rate-limits, QoS markings, etc. as far to the edge as possible (access layer). Final policing of traffic will occur at the distro layer which should be an aggregation of multiple similar access layer devices, and trying to step up the speed to pass into the core. The core should be as unfiltered (within reason) as possible. The idea is to move traffic in the core as fast as possible since you have already policed and marked at the other two layers. The core will be an aggregation for multiple similar distro devices. For a potential service provider/datacenter example:
Access Layer - 3550s used to connect various different customers. QoS trust/overide applied to the port, queues setup on the port, rate-limits pushed to the port depending on type of service, copper ethernet would be the handoff to each customer with speeds ranging from 1 to 100Mbps. Each 3550 would use dual fiber uplinks to connect to two 6500s for redundancy.
Distro Layer - Dual 6500s with sfp fiber blades to terminate the uplinks from the access layer. Layer 3 termination for customers is handled with SVIs and HSRP is used for logical redundancy. Layer 3 marking of QoS, acls, and rate-limiting occur before passing into the core. Each 6500 would dual up link to dual 6500s in the core using 10gigE modules.
Core Layer - Here the core has a connection to every other module in the network so the traffic is forwarded as fast as possible to where it needs to go.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...