Cisco WAN :: ASR1000 - Encryption Over Metropolitan Optical Ethernet
Mar 1, 2012
We're installing ASR1000 series (ASR1001 and ASR1006) routers on a new WAN and have a requirement to enrypt the traffic between the EIGRP neighbors. Each ASR will be connected to the MOE with a gig interface and we will be using L3 on the interfaces with EIGRP as the routing protocol. We have advipservices-k9 IOS-XE
The ASR1006 is our datacenter WAN router and all remote sites have the ASR1001s. The ASR1006 WAN interface will be configured with L3 subinterfaces, one to each remote location, using a /30 mask.
What is the best method to encrypt the traffic between the ASR1006 WAN interface and the remote ASR1001 WAN interface?
View 2 Replies
ADVERTISEMENT
Jun 19, 2011
I hear a lot these days about ethernet deployment in metropolitan areas as access networks. Does this mean that there would be one big optical ethernet LAN (or MAN if you prefer) with fiber to the home connected by switches? Wouldn't this lead to massive spanning trees in large cities? One bad,configuration in the network would affect the whole network.Will all IP traffic have to travel to the core even if it is destined for an intra-MAN destination? I cannot imagine that a ARP broadcast in a large MAN is feasible.
View 1 Replies
View Related
Mar 6, 2013
how the ASR1000s are being setup.I am looking at ASR1000s as part of network refresh and was looking at RJ-45 based Gigabit Ethernet ports compatible with the ASR1000s SPA-5X1GE-V2 seems to be an option but they are all SFPs. Are there any options for RJ-45 ones on ASR1000s?
There is an option for the 2 port where one can mix and match SFPs and RJ45 but I was looking for something which is RJ45 only.Are there any options for them available.I know I could get something with FastEthernet type but was looking for the GigabitEthernet type.
View 4 Replies
View Related
Jun 24, 2012
Ethernet frame overhead due to encryption protocols used, and how can it be resolved?
View 1 Replies
View Related
Feb 28, 2008
We are looking for a solution to avoid VPNs to encrypt data between HQ and Bldgs (point-to-multipoint) Gigabit fiber(untrusted media).Is there any cisco's product providing layer2 encryption over Giga fiber?The HQ has a 6509s and remote bldgs have mixed of 3750s,4500s in trunks.
View 2 Replies
View Related
Jul 9, 2011
Am trying to find out what is the suitable SPA for ASR1000 routers to connect ATM DS3 through the local telco. Currently this is connected to a NM-ATM-DS3 module on a C3845 router. The reason for asking is we need to upgrade the WAN router to ASR1000.
View 2 Replies
View Related
Jun 24, 2012
I am looking for a way to use a 3G connexion on ASR1000.Is it possible to install HWIC module of ISR2 in SPA slot or use an USB modem on the RP?
View 2 Replies
View Related
Sep 25, 2012
The ASR1000 router supports hot-swap modules and network interfaces?
View 1 Replies
View Related
May 5, 2013
We use ISG on asr1000 (l3 routed subscriber). Now we are trying to implement ipv6 isg sessions. so.. for ipv4 sessions we have
radius-server attribute 8 include-in-access-req
radius-server attribute 32 include-in-access-req but for ipv6 there is no such attribute#radius-server attribute ?
11 Filter-Id attribute configuration
188 Num-In-Multilink attribute configuration
218 Address-Pool attribute
25 Class attribute
30 DNIS attribute
31 Calling Station ID
32 NAS-Identifier attribute
4 NAS IP address attribute
44 Acct-Session-Id attribute
55 Event-Timestamp attribute
6 Service-Type attribute
60 CHAP-Challenge attribute
61 NAS-Port-Type attribute configuration
66 Tunnel-Client-Endpoint attribute
67 Tunnel-Server-Endpoint attribute
69 Tunnel-Password attribute
77 Connect-Info attribute
8 Framed IP address attribute
95 NAS IPv6 address attribute
list List of Attribute Types
nas-port NAS-Port attribute configuration
nas-port-id Nas-Port-Id attribute configuration
what is best practice for authorize ipv6 l3 subscribers ?
View 3 Replies
View Related
Apr 11, 2013
We have asr1006 with 2 esp-40 and 2 rp2 and 2 sip-40. we need to bridge vlan from portchannel (2*10) to single 10ge port.
So fn said that EVC on Port-Channel supported on our software and document [URL] have such example
- configure terminal
- interface port-channel channel-group
- service instance id ethernet
But on our router we have not service command on port-channel. only on non portchannel interface.
But other document have Restrictions for Configuring EVCs on the Cisco ASR 1000 Series Router The following features are not supported: EVC on Etherchannels
Connect ww port-channel 1 2 tenGigabitEthernet 0/1/0 2 this is possible command on our router (but i can't create service instance on portchannel interface)
We need to bridge l2 without l3 termination ? is this possible with port-channel ?
View 1 Replies
View Related
Dec 6, 2012
we're trying to integrate our SBC instances (CUBE SP on ASR1000) into our network management system (EMC SMARTS)Syslog messages from SBC instances are some kind of cumbersome with lot of line breaks resulting in multiple syslog messages the NMS must parse.How do I configure it to just put it all into one line just as "normal" log messages?
View 2 Replies
View Related
Feb 7, 2010
I have a question regarding netflow and NAT. I have read some documentation (on ASR1000) regarding monitoring NAT process on Cisco ASR1000 that can be done using netflow version 9 (the term was called netflow event logging a.k.a NEL). The problem is, I have not found the netflow collector that can do that. I have queried several software such as manage engine "Netflow Analyzer" and Lancope, but they said their software can not do that.
View 11 Replies
View Related
Dec 15, 2012
How to test the aaa on cisco asr 1000 ? I wana test some user account to a cisco acs.
View 5 Replies
View Related
Dec 19, 2012
I've seen where the micron is printed on a fiber strand, and that you can identify the connector type, but how do identify the difference between a 50 micron OM4 MMF, a 50 micron OM3 MMF, and a 50 micron OM2 MMF?
View 7 Replies
View Related
Oct 30, 2012
I'm trying to use EPC on ASR1001 running IOS-XE 3.4, and it won't work. Configuration commands are accepted by the router, but there are no packets in the capture buffer.In release notes for IOS-XE, in the 2.5 section, there is a statement that EPC is not supported on ASR1k. Is it true also for newer versions of IOS-XR?
View 1 Replies
View Related
Jul 7, 2012
One of our customer would like to connect 3 datacentres and decided to use VPLS to extend layer 2 VLANs . For this purpose they have bought six Cisco ASR1000 edge routers( two at each side).They also wanted to buy MPLS SP backbone but have decided to buy 2x10G dark fibre links instead.My question is,
1-Will it still possible to run VPLS over dark fibre? Because all the documents I read regarding VPLS are deployed over MPLS backbone.
2-Any sample configuration for implementation VPLS in ASR1000 ?
View 7 Replies
View Related
Mar 26, 2013
I'm trying to find out what platforms support Multilink PPP with Link Fragmentation and Interleaving over a single link, when that single link is PPPoE. In searching the documentation, the best information I can find is that it seems to be supported in one direction on the ASR1000 url...Many platforms appear to support PPPoE and also MLPPP w/LFI, but it's not clear that both features are supported on the same link.
The application is a radio that has an Ethernet interface on its terrestrial link, and acts as an Ethernet bridge. Would like to use Multilink PPPoE with LFI in order to provide LFI in order to run VoIP over lower speed links (e.g 256kb). For what it's worth, the radio also supports RFC 5578 PPPoE Extensions for Credit Flow and Link Metrics. It was fairly easy to find what platforms support RFC 5578. But RFC 5578 would be used to support variation in the capacity of the link. If the link speed is fixed, RFC 5578 is not needed. I was trying to find if the set of platforms supported increase if the need for RFC 5578 is taken off the table.
In particular, I'd be interested in the whether the ASR 9000 series supports MLPPP bundles with LFI when the links are PPPoE.
View 1 Replies
View Related
Aug 7, 2012
Is there a command to find your optical tx/rx power (dBm) on a 3845? On a 3750 you can do a show int transceiver; looking for a comparable command for ISRs.
View 2 Replies
View Related
Apr 4, 2013
560km long pipeline, intermediate station at every 30 or 40 kms. Couple of Ip phones, 2 or 3 IP camera, and few control signls (IP system) will be connected at every stations. Do not expect heavy data. Which one may be the prefered economical solution can I use
1. Ethernet network (Switch with Optical SFP ports at every site)
2. SDH equipment at every site
3. DWDM equipment (if so lower end)
View 3 Replies
View Related
Aug 13, 2012
I have a ONT with a built in router but I need to install a separate router onto our network by connecting the router to the ONT. I need the extra router so that I could use some 3rd party hardware which can only be configured in D-link and Tp-link brand routers. I do not want to change the ONT system to the standard modem router system because the ONT also supports a system of internet phones. I'm curious if this is possible at all because a repair tech. told me that you could use the router as a transformer but so far it is not working. I'm really unfaimilar with the ONT configuration so I don't know if this plan can actually work . So far the router can not recieve a WAN connection and therefore can not obtain a Ip address.
View 2 Replies
View Related
Aug 31, 2011
I have a Laptop with no optical drive. I wanted to avoid buying and external CD/DVD Burner by connecting the Laptop to the Desktop in order to use the optical drive to setup up office and MSWindows
View 3 Replies
View Related
Oct 7, 2011
I whish to connect the two switches shown below.The distance between them is 50m (~54 yards), one floor apart, and I would like to link them with the cheapest optical solution possible.I have been given a solution with 19inch patch panel, splitter, pigtail cords, patch cords, SC connectors, i.e., the lot.Not being an expert in networking, I feel that is an overkill solution.
Servers______________________________________ Devices/Other Switches
| ___________________________________________________|
| ___________________________________________________|
V ___________________________________________________V
(SLM2048-EU-SFP port) <----------------------> (GBIC port-CISCO 2950 Series)
^
|
|
SAN
View 12 Replies
View Related
Apr 10, 2012
I was positively surprised to find the optical transmit/receive values using the show fiber-ports optical-transceiver detailed command on a SG300-10.
Now I'm wondering if there is also a SNMP-MIB to query these values? I've already tried the CISCO-ENTITY-SENSOR-MIB used by the larger devices running Cisco IOS, but this didn't work.
View 3 Replies
View Related
Jun 9, 2011
I have two SG300-20 Switches and buy two MGBLX1 Modules for the Switches.
I plugedin the Modules but the Modules didn`t work and in the WebConsole i can´t see the Modules.
Is there any configuration to enable the SFP Modules? or is it a problem from my Switches
View 3 Replies
View Related
Feb 27, 2011
Is there a device, which is able to produce a time delay on fiber optical link? I mean for example if one would like to reduce the power level of an optical signal, he could use simple air-gap optical attenuator on optical link. However, has somebody seen a device, which is able to introduce a time delay on optical link?
View 6 Replies
View Related
Dec 29, 2012
choose the right media converter for my private LAN? My budget is very less & I found TP-Link products fits in my budget.I got confused by looking at 2 models & don't know which one to choose. TP-Link's MC220L and MC210CS. these two models are same but with different I/O Ports(connectors) for Fiber Cable connection?
View 4 Replies
View Related
May 30, 2012
I was wondering why there are so many different types of optical connectors? - sc, fc, lc, e2000? Why the devices have different connectors? Dispite the fact that some of them are push/pull, and some of them are not, and if there are specific types for multimode and singlemode, and full/half duplex.
View 5 Replies
View Related
Sep 14, 2012
I have a Cisco3800 with IOS Version 12.3(14)T2 and I have an HWIC-1GE-SFP module inserted on it.
I need to know if there is a command to verify optical power level in this module inserted in the Cisco 3800 router?
Something similar to the following command that I can execute in an Cisco ASR9K:
show controllers Te0/0/0/1 phy | i Rx
View 4 Replies
View Related
Dec 18, 2011
I am looking for optical transceivers that are compatible with the Cisco 5509 switch. Preferably 1G.
View 3 Replies
View Related
Feb 5, 2012
We have C7206VXR NPE-G2 platform with transceiver which support DOM.Could we monitor DOM tx/rx level statistic through snmp for 7206 platform?In CLI result of command "sh interf GigabitEthernet0/1 transceiver" give some information.We tried search for some MIB In "MIB locator" on cisco.com.
View 2 Replies
View Related
Sep 11, 2011
Any equivalent show command to get the "FIB TCAM Usage" on An ASR 1006 ?the "show platform hardware capacity forwarding" does not work on ASR1006 Example on 6500: Router# show platform hardware capacity forwarding.
View 1 Replies
View Related
Feb 13, 2013
I want to know what the default behavior about the command 'mls qos trust dscp' under router platform interface. the router is ASR1000 series.we don't need to put above command line to trust dscp in case of router? otherwise, we have to add it as welll as like switch platform.
View 4 Replies
View Related
Jan 10, 2013
I have a switch where the current power threshold is set to -20.0db. The problem is that the receive power fluctuates between -19.9db to -20.1db, which is causing it to throw alarms on my solarwinds monitoring server. What I would like to do is change it to a different warning threshold, but I can't seem to find the command to do so. This is a catalyst 3750 running IOS version 12.2(55)SE3. [code]
View 5 Replies
View Related
