[c-nsp] 2950 ACL processing - asic/cpu? - David J. Hughes - net.nether.puck.cisco-nsp

3 messages in net.nether.puck.cisco-nsp[c-nsp] 2950 ACL processing - asic/cpu?

From	Sent On	Attachments
matthew zeier	Jan 24, 2005 6:18 pm
sth...@nethelp.no	Jan 25, 2005 3:48 am
David J. Hughes	Jan 25, 2005 6:16 pm

	Permalink for this message Paste this link in email or IM:
	Permalink for this thread Paste this link in email or IM:
	Atom feed for this thread Paste this URL into your reader:

Subject:	[c-nsp] 2950 ACL processing - asic/cpu?	Actions...
From:	David J. Hughes (bam...@Hughes.com.au)
Date:	Jan 25, 2005 6:16:30 pm
List:	net.nether.puck.cisco-nsp

I'm trying to determine how much performance hit I can expect on a 2950-48 with port ACLs on every interface. Is this something that's handled on some ASIC or in CPU?

It's all hardware based. The 2950g makes a great (albeit basic) layer 3 filter. Our testing has shown that pulling 70kpps of simulated dos traffic out of the traffic path using a layer 3 acl increased the cpu from 12% to 14%. Awesome functionality in a cheap box.

David ...

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets
	Permalink to these results Paste this link in email or IM:
	Atom feed for tracking future search results Paste this URL into your reader: