I am looking for some advice I will try to be as detailed as possible but I?m sure I will leave out something important. I work for a medium size web hosting company we currently have a /18 and
Our network infrastructure is extremely flat, we get the hand off from our provider it goes to our pix525 and pix525 fail over (the pix?s do the static routing of the /18) and then the connection gets dropped to a pair of 3508?s that give uplinks to our four racks. This infrastructure has worked well for the past 3 or so years but now we are having major ARP issues with the PIX, basically because the /18 isn?t subnetted (and for now and arguments sake lets say it can?t be) the PIX has to handle all the arp requests. If I clear arp in the pix 5 seconds later I will have 5k entries (I also found out that the max arp on a pix is 8192 if anyone was curious). So we are looking for a solution to band-aid our problem until subnetting can be properly done (it will at least take a year to do). My question is what would be the best method to offload the ARP / routing of the pix and handle the number of addresses in a /18? (currently we do about 80/mbs and about 8-10k connections on the pix)
Three choices that I was looking at were a
7204VXR NPE-400 with 2 PA-GE cards
Can anyone chime in with their recommendations on what potentially we could do to mitigate this issue? As always money is an issue so the cheaper the better.
Without knowing more about the design of your network, I would lean towards the 4948. We use it in our datacenter for segmenting server VLANs at the distribution layer. We have had no problems with them and it has good performance for a stackable switch. I think the 3750 is a little underpowered for you. The 7200 would work, but it may not fit well in the future design of your network. The 4948 can handle your address space and can be the L3 for your VLANs. Get a pair of them and put them to work!
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...