Cisco device traffic / bandwidth requirements

Discussion in 'Cisco' started by Cen, Aug 31, 2005.

  1. Cen

    Cen Guest

    Where do i get information on traffic characteristics on cisco devices
    (routers, PIX, MLS etc) with regards to the following:

    - connection (TCP/UDP) blocking probability
    - bandwidth / load curve
    - maximum TCP/UDP connections
    - maximum translations
    - etc. . .

    It's hard to find this info on cisco web site.
     
    Cen, Aug 31, 2005
    #1
    1. Advertising

  2. In article <df49ek$2cbv$>,
    Cen <> wrote:
    :Where do i get information on traffic characteristics on cisco devices
    :(routers, PIX, MLS etc) with regards to the following:

    :- connection (TCP/UDP) blocking probability
    :- bandwidth / load curve
    :- maximum TCP/UDP connections
    :- maximum translations

    :It's hard to find this info on cisco web site.

    The max connections is in the PIX data sheets, but the figures are
    pretty much meaningless as it depends mostly upon the available
    memory.

    The connection blocking probability on the PIX 6.x software
    depends upon available memory, and upon whether you have floodguard
    enabled, and upon the state of the other connections that might
    be reclaimable -- in the sense that if you are out of resources,
    ability to connect is going to depend upon ability to reclaim
    resources.
    http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/df.htm#wp1029632

    If you are not out of resources on the PIX then connection blocking
    probability is going to depend upon what you specified for
    max_conns and emb_limit in the 'static' command.
    http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/s.htm#wp1026694

    There is also the possibility that the PIX's IDS will detect
    an attack and that you have configured 'drop' as the action,
    http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/gl.htm#wp1101884
    I do not know at the moment if any of those IDS require any kind
    of "judgement" or if they can all be determined independantly,
    on a per-packet basis. For example, "UDP Bomb attack" sounds like it
    might require seeing a few packets to activate.

    http://www.cisco.com/univercd/cc/td...x/pix_sw/v_63/63syslog/pixemsgs.htm#wp1055451


    Beyond that... if a PIX does not have the resources to handle a packet,
    then the packet will be dropped. The PIX "fails to closed":
    each packet must be -explicitly- approved internally in order to
    pass to the other side. The PIX does not just pass packets through,
    either: it builds new outgoing packets based upon the information
    of the incoming packets, so packets cannot "slip through" because
    (say) a checking algorithm didn't return within a specific time.



    I don't think you are going to find information about items such
    as bandwidth/load curves, not unless you go NDA (Non-disclosure
    agreement), and even then it is going to depend a lot on what
    you have configured and what software release. You might be able
    to find some charts in the results published by The Tolly Group.

    --
    Entropy is the logarithm of probability -- Boltzmann
     
    Walter Roberson, Aug 31, 2005
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Rene Kuhn
    Replies:
    0
    Views:
    948
    Rene Kuhn
    Dec 28, 2005
  2. Skybuck Flying
    Replies:
    0
    Views:
    4,902
    Skybuck Flying
    Jan 19, 2006
  3. Paul D.Smith

    Ineen & video - bandwidth requirements?

    Paul D.Smith, Jul 5, 2005, in forum: UK VOIP
    Replies:
    0
    Views:
    522
    Paul D.Smith
    Jul 5, 2005
  4. Al Dykes
    Replies:
    1
    Views:
    552
  5. sireg

    bandwidth requirements

    sireg, Mar 10, 2010, in forum: Computer Information
    Replies:
    0
    Views:
    584
    sireg
    Mar 10, 2010
Loading...

Share This Page