Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > Cisco device traffic / bandwidth requirements

Reply
Thread Tools

Cisco device traffic / bandwidth requirements

 
 
Cen
Guest
Posts: n/a
 
      08-31-2005
Where do i get information on traffic characteristics on cisco devices
(routers, PIX, MLS etc) with regards to the following:

- connection (TCP/UDP) blocking probability
- bandwidth / load curve
- maximum TCP/UDP connections
- maximum translations
- etc. . .

It's hard to find this info on cisco web site.


 
Reply With Quote
 
 
 
 
Walter Roberson
Guest
Posts: n/a
 
      08-31-2005
In article <df49ek$2cbv$(E-Mail Removed)>,
Cen <(E-Mail Removed)> wrote:
:Where do i get information on traffic characteristics on cisco devices
routers, PIX, MLS etc) with regards to the following:

:- connection (TCP/UDP) blocking probability
:- bandwidth / load curve
:- maximum TCP/UDP connections
:- maximum translations

:It's hard to find this info on cisco web site.

The max connections is in the PIX data sheets, but the figures are
pretty much meaningless as it depends mostly upon the available
memory.

The connection blocking probability on the PIX 6.x software
depends upon available memory, and upon whether you have floodguard
enabled, and upon the state of the other connections that might
be reclaimable -- in the sense that if you are out of resources,
ability to connect is going to depend upon ability to reclaim
resources.
http://www.cisco.com/univercd/cc/td/....htm#wp1029632

If you are not out of resources on the PIX then connection blocking
probability is going to depend upon what you specified for
max_conns and emb_limit in the 'static' command.
http://www.cisco.com/univercd/cc/td/....htm#wp1026694

There is also the possibility that the PIX's IDS will detect
an attack and that you have configured 'drop' as the action,
http://www.cisco.com/univercd/cc/td/....htm#wp1101884
I do not know at the moment if any of those IDS require any kind
of "judgement" or if they can all be determined independantly,
on a per-packet basis. For example, "UDP Bomb attack" sounds like it
might require seeing a few packets to activate.

http://www.cisco.com/univercd/cc/td/....htm#wp1055451


Beyond that... if a PIX does not have the resources to handle a packet,
then the packet will be dropped. The PIX "fails to closed":
each packet must be -explicitly- approved internally in order to
pass to the other side. The PIX does not just pass packets through,
either: it builds new outgoing packets based upon the information
of the incoming packets, so packets cannot "slip through" because
(say) a checking algorithm didn't return within a specific time.



I don't think you are going to find information about items such
as bandwidth/load curves, not unless you go NDA (Non-disclosure
agreement), and even then it is going to depend a lot on what
you have configured and what software release. You might be able
to find some charts in the results published by The Tolly Group.

--
Entropy is the logarithm of probability -- Boltzmann
 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
bandwidth requirements for VOIP over broadband? Al Dykes UK VOIP 1 09-26-2008 06:27 PM
Discussion about segregating bandwidth with Cisco 7513, Cisco 3750 and Cisco 3640 iskandar@measat.com Cisco 1 06-18-2006 06:30 PM
How does typical ISP traffic shaping/bandwidth limiting work ? Do ISP's allow bursty traffic per second ? Skybuck Flying Cisco 0 01-19-2006 08:50 PM
Cisco 1750 Router Cisco QoS Device Manager Cisco VPN Device Manager Rene Kuhn Cisco 0 12-28-2005 08:45 PM
Ineen & video - bandwidth requirements? Paul D.Smith UK VOIP 0 07-05-2005 07:58 AM



Advertisments