Cisco Switching/Routing :: 6509 Matching A Device To Bandwidth Consumption
Sep 18, 2012
My company is composed of three different campuses, all with a similar network topology. We currently are experiencing high bandwidth on our serial interface at one of the campuses in particular. The network is composed of about 20 VLANS routed internally using a Cisco 6509. Traffic to the outside is PAT’d by an ASA 5510 and then forwarded through our edge router interface. Each VLAN is PAT’d to a specific public address.Due to the PAT, how would you recommend determining what specific private addresses are consuming our resources on the serial interface. When I look at our NMS, it reports the public address, but that only narrows it down to a VLAN. For example, all the devices in VLAN 6 are translated to 146.34.118.245, and 146.34.11.245 is a top talker.
I was looking at a problem where a traffic from certain sites have a restricted bandwidth, an ongoing problem for a year or so, apparently this throughput never exceeds around 25Mbps. My customer describes a situation where the end to end utilisation rises, eventually flat-lining at around 25Mbps. how many extra systems come on line, this traffic never exceeds this rate, and end users complain of poor responses.
During my investigation I found that one of the switches (Cat 6509) in the traffic path has a policer configured on a vlan interface, the policer has 3 sections for different traffic based on DSCP markers, and a default (unconfigured) class-default. Various people have had a poke about with this config over the years, with the result that all the traffic has the CoS and DSCP tags set to 0. All this traffic is hitting the class-default in the policer.The link that this traffic hits the Cat 6509 on is a 100Mbps link.
If I was designing this from scratch I'd probably configure a rate for the class-default.my question is, in the case where no specific configuration has been entered for the class-default, how much bandwidth is allocated to this class?
We run a workers camp here and we currently have around 2500-3000 people using our 100MB internet pipe. We are upgrading the pipe to 200MB soon but I still would like to limit how much bandwidth everyone is using.
We allow streaming media such as Netflix, youtube, apple TV and of course .So it gets full pretty fast. We have QOS implemented although I wasn't here when it was done so I don't know a lot about it. I would like to limit IPs to a certain amount of bandwidth. [code]
I currently have a 2851 router with 2Mbps point-to-point leased circuit on its serial interface and most of the time its congested. Any tool for measuring the current consumption that is happening on the link other than netflow.Was looking for something for a graph or chart displaying the current consumption rate.
We own a Wifi controller 5508, with many access points connected to him. Except on the site where the controller is installed, all other APs are configured in FlexConnect mode through our MPLS network to prevent roundtrip for local communications (local client to local server for example).
Because of important slowness on one site where 8 APs are installed, we captured the traffic going in and out of our MPLS router and we discovered that the APs are consuming about 150kbits/s each in one-way communications with the controller (controller to APs), even when nobody is present (the capture was done this sunday).
Could you confirm me if this behaviour is normal or not ? What could explain such a large amount of data between the controller and the APs ?
We are planning for the office move and I need to estimate how much power we need to run a fully populated Cat4507R switch. The chassis include 2 Sups, one 6-port fiber line card, two 48-port Gig and two 48-port FastEthernet line cards. The switch also has redundant power supply (4200ACV 1400W). According to Cisco Power Calculator [URL], I need 49.5 amp 110-120V circuit. It seems to be too much higher than real world. How many 20amp circuit we would need when all the ports are fully utilized?
I have 2 x 3560e-24td-s 2 x ASA5510 2 x 2821(no modules) 2 x 2901
I'm trying to figure out power draw in Amps for my new cabinet. I looked at the data sheet for the 2821 and it says 3A for the 110V under the row AC Input Current, Would that be accurate if I did that for all the models and then just added up the total?
I need to figure out the max power consumption of 7009. The issue is, at this point i am not sure what modules will be used, so just to give an estimate, how we calculate the max power consumption of nexus 7009 ?
I'm performing tests with following desired scenario: We have several remote offices, connected to our HQ via MPLS. In these remote offices, we have several vlan's. Each vlan has it's own ip-range. The MPLS cloud is routed, so we cannot switch our HQ vlan's to the remote offices. In this case, the client pc is in a guest vlan which allows him internet access. The uplink for this internet access is hosted in our HQ datacenter.
basic scheme: client pc --> MPLS cloud (managed by ISP) --> 6500 switch LAN --> Checkpoint Firewall --> 6500 switch DMZ --> ASA Firewall
My test scheme: Client pc is in a subnet A (guest vlan range office). We receive this traffic on our first LAN 6500.
I am calculating Cisco 4500X power consumption requirements to select appropriate UPS systems. I have 4500X switch with dual power supplies.which value should I take for power consumption calculation, in data sheet it has two values: AC Power Max Rating: 750W System Power Consumption: 330W nominal/400W max
Which values should I take, to calculate UPS systems capacity? And also I am interesting when 4500x has two power supplies what is power consumption?
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports x1 NAM x2 Sup720 Running 12.2(18)SXF3
I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis?Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports x1 NAM x2 Sup720
Running 12.2(18)SXF3.I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis. Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
If two (one 6509A 9/26 with server A located in A end, 6509B with serverB located in B End) which is connected via a 1G link. If there is serverA send 700M file to server B via a 1G link. If I configured below command to 6509A 9/26, can I limit the bandwidth of server on bothincoming and outgoing to 500M?
class-map match-all FROM-SERVERmatch access-group name FROM-SERVER!policy-map FROM-SERVERclass FROM-SERVERpolice 500000000 conform-action transmit exceed-action drop!interface GigabitEthernet9/26service-policy in FROM-SERVER
As per my understanding 6509 all slots are dual channel, so 9 slot * 40 per slot (20 g in and 20 g out) = 360 GB How cisco claim the 720 ?? What about the 6513 chassic switch fabric connection?
We are a new medical school located in PA. Just have just completed a new building and are now working on getting our network finished. Here is the situation we have a 50MB Internet Connection that comes into our network that then hits the ISPs Cisco 3750 which sends it to two of our Cisco 3750s for redundancy. From the 3750 goes into our Cisco 6509 with a FWSM module, then out from there to our distribution switches which are all Cisco 2960s.
What we would like to do is to control how much WAN connectivity each of our VRFs get. Right now we have a Faculty, Student, and Research VRF formed, and are trying to figure out the best spot where we can say Faculty gets 30MB of Bandwidth, Students gets 10, and Research gets 10. If possible would like burst capabilities.
I'm currently in the process of doing a bandwidth analysis on 2 WAN links at my current HQ / remote sites. The topology is pretty straightforward, two 3845 routers at HQ, and two 3845 routers at my remote site, both with P2P DS3 interfaces between them. From each router we then connect directly into a 6509 at the HQ, and a 4506 at my remote site where we are using equal cost load sharing (EIGRP) to split the load / give us redundancy between the sites.
I'm just looking for a good test for how well the circuits are performing. I've done some basic file transfer tests, but they're only showing about 4MBPS, which seems quite slow. I also know that this isn't a true measurement because there are amny different factors involved, like hard drive write speeds, network congestion, etc, that may influence the test.
we've had an issue with our network, we have 2 6509 connected with redundancy, which are connected with 2 x 4900 Switches, from which are connected to a ESX Chassis for visualization, the thing is that the ESX stopped working, and the 4900 switches, and the main core were suffering from overload, they hang on it very well, in order to stop the overload, one of the links to the ESX Chassis were disconnected from one of the 4900 switches. The CPU usage from the 4900 and the core(6509) went down below 40%, and then they started to migrate the virtual servers from the chassis to another 2 chassis that were added right after. They were actually working well, but suddenly the 6509 changed to the other supervisor after everything was OK. We were wondering what could have been the cause of this, maybe the virtual servers migrations, maybe the overload from the ESX ? We also had a few question, is there any need to reload the cores every few months as a planned task ? Because the cores have been up for more than 1 year. And also is there any kind of of tool to monitor the CPU status, or the status overall from the cores or the switches ?
The have around 80 staff and I think the current infrastructure is overkill for the size of the company. The current kit is old and they have no GB ethernet ports. They currently have:-
Core Switch: 1x Cisco c6509with a 48 port fast ethernet module (WS-X6248-RJ-45) and an 8 port fibre module (WS-X6408A-GBIC)
I'm looking to replace this with something with 72 ethernet ports and 8 fibre ports
Access Switches: 2x 3500Replacement needs at least 48 ports and 2 fibre modules each
and 2x 5500Replacement needs at least 72 ports and 2 fibre modules each.
I have two ISPs. Each is on it's own subnet connected to the 6509 MSFC/Switch. FW1 is on 100.1.100.0/30 and FW2 is on 200.1.200.0/30 subnet. My goal is route all traffice going to the Internet from subnet 10.133.3.0/24 to FW1 and all other subnets across the organization to FW2. I am not sure if I need to use ACL / Static route combo, or just a static routes or ACLS?
We have a Catalyst 6509 switch, and we hope to use policy based routing to redirect http traffic to my proxy server, where I can find the configuration example?
I would like to ask you if it's possibile to block routing between some Vlan for just once of them.
Maybe I can explain better:
I've got a Cisco 6509 with 4 configured vlan interfaces Int Vlan 10 10.10.1.0/24 Int Vlan 20 10.10.2.0/24 Int Vlan 30 10.10.3.0/24 Int Vlan 40 10.10.4.0/24
Vlan "10" is the phone voip Vlan and it must not talk with the others Vlan. The others Vlan can comunicate normally except with Vlan "10".
Pratically Vlan "10" needs to be isolated from the others.
This equirement comes becouse Vlan 10 is wireless and has the WEP key encryption (very weak protocol). Some Phone couldn't support the WPA2 key and I need to avoid an unauthorized external client, cracking the WEP key and connecting to this WiFi, could have free access to the others Vlan.
I have a problem on my catalyst 6509 on which I would like to do the following things :
I have some Vlans in which multicast is enabled. In tose Vlan theres is a router which is default router for equipements.
I had enabled multicast routing because some Vlan needs to exchange multicast informations, but I wolud like to make difference between Multicast traffic. For example I have 5 vlans:
Vlan 1 and 2 need to exchange Multicast informations but the don't need multicast information from Vlan 3 and 4 Vlan 3 and 5 need to exchange Multicast informations but the don't need multicast information from Vlan 1 and 2 Vlan 5 is independant Vlan but doesn't need to have multicast information from all others vlan.
Last problem, equipement on differents vlan can use the same Mulkticast group address. In this case, Multicast routing is not working between Vlan 1 to Vlan 2 and Vlan 3 to Vlan 4.
I need to setup my 6509 with PBR going to two different Firewalls. The 6509 has vlans and multiple serial interfaces. What/where do I install the policy-maps? I want to direct one of the vlans to one firewall and the other vlans and wan subnets to the other firewall.
I would like to connect to a 1Gb routed uplink, and then impose bandwidth limits (via shaping/policing/whatever) on a per port basis. The ports could either be configured to route, or as switchports on separate VLANS. I'm trying to identify hardware that will let me do this. The set up I have in mind is shown below.
I am wondering if the IP Services Adv software on that switch will allow that functionality?
I have a 4500 and 6500 that I'd like to be able to limit the bandwidth of layer 2 switchports. So for instance I have all GB blades but certain servers I'd like only to have connections of about 5 Mb per second or 15 Mb per second etc.
They have a /28 wan adress coming from ISP, that gives out 100Mbps, going to a Cisco 2960S switch (ver. 12.2) the switch is only holding 1 vlan. Connected to the 2960 are 3 firewalls/routers from other manifactors, each creating their own network. The customer wishes for a solution where each final FW/router gets minimum 33% and maximum 100% of the bandwidth, depending on how much each final Fw/router are in use.
I am designing a dual local router ISP multihomed network and I need some recommendations on the edge routers and the distribution layer switches I should use in my design. Right now we have two 6509s as internet edge devices multihoming to two ISPs, with load sharing and failover (layer 2 and layer 3). I was thinking of using Cisco 7200 routers at the internet edge and Cisco 4500 series switches behind the router for layer 2 switching(ISP---7200 series ---4200 series). Current traffic pattern on my two 6509s is around 100Mbps on an average on each switch when they are load balancing.. and when one failovers to another it just doubles. So I need to make sure the devices I chose has enough throughput for my current requirements and future growth.
we use LMS 3.2 in our network. We have a couple of 6509-V-E Switches with mutiple interfaces (VLAN interfaces and Layer 3 interfaces) The problem is, campus manager discovers the switch by a interface randomly...one time its a lay3 Interface and another one its a vlan interface which none of them are in DNS hence no name resolution can be made.
Is there a way to "tell" CM to us for instance the VLAN Management IP of the switch?
