Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Cisco>
  3. NSP
ASR 1000 series replacement
cisco-nsp at puck
Dec 16, 2023, 1:16 AM
Post #1 of 5 (217 views)
Permalink
Greeting,
We have a somewhat unusual scenario with thousands of CPE devices each
using cellular interface and gre tunnel to connect to hub router, currently
ASR 1001x.
The hub router deploys NHRP map multicast with GRE tunnels and bgp session
to each cpe device, each tunnel different customer vrf connected to mpls
core network.
There are hundreds of GRE tunnels.
What would be logical replacement for hub router considering expansion and
redundancy.
We tried a pair of stacked Cisco 9500, and it performed worse than expected.
One solution we have is another router with same addressing scheme, and to
rely on routing to migrate tunnels to this new router in the event of
failure of original hub.
We can't modify cpe configuration (must target same ip address).
Any suggestions?
Thanks
_______________________________________________
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: ASR 1000 series replacement [ In reply to ]
cisco-nsp at puck
Dec 16, 2023, 1:35 AM
Post #2 of 5 (217 views)
Permalink
hey,

> We have a somewhat unusual scenario with thousands of CPE devices
> each using cellular interface and gre tunnel to connect to hub
> router, currently ASR 1001x. The hub router deploys NHRP map
> multicast with GRE tunnels and bgp session to each cpe device, each
> tunnel different customer vrf connected to mpls core network. There
> are hundreds of GRE tunnels.

Not really so unusual in SP environment.

> What would be logical replacement for hub router considering
> expansion and redundancy. We tried a pair of stacked Cisco 9500, and
> it performed worse than expected.

cat8500 family (non-L models). Forget the stupid naming, this is
actually next-gen QFP and should be called asr1k+

> One solution we have is another
> router with same addressing scheme, and to rely on routing to migrate
> tunnels to this new router in the event of failure of original hub.

Anycast works and this is what we did for exactly the scenario your
described earlier. But we found that we'd like it to be more hitless so
we are now deploying dual tunnels from every CPE to C8500-12X headends.

--
tarko

_______________________________________________
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: ASR 1000 series replacement [ In reply to ]
cisco-nsp at puck
Dec 16, 2023, 8:14 AM
Post #3 of 5 (217 views)
Permalink
Hi,

That's great, because we had the same chassis in mind.
The peculiarity comes from the way CPEs are configured, routing, NAT
between vrfs, one tunnel limit per CPE, and some other things.

Anyway, awesome - thank you.

BR

On Sat, Dec 16, 2023 at 10:35?AM Tarko Tikan via cisco-nsp <
cisco-nsp@puck.nether.net> wrote:

> hey,
>
> > We have a somewhat unusual scenario with thousands of CPE devices
> > each using cellular interface and gre tunnel to connect to hub
> > router, currently ASR 1001x. The hub router deploys NHRP map
> > multicast with GRE tunnels and bgp session to each cpe device, each
> > tunnel different customer vrf connected to mpls core network. There
> > are hundreds of GRE tunnels.
>
> Not really so unusual in SP environment.
>
> > What would be logical replacement for hub router considering
> > expansion and redundancy. We tried a pair of stacked Cisco 9500, and
> > it performed worse than expected.
>
> cat8500 family (non-L models). Forget the stupid naming, this is
> actually next-gen QFP and should be called asr1k+
>
> > One solution we have is another
> > router with same addressing scheme, and to rely on routing to migrate
> > tunnels to this new router in the event of failure of original hub.
>
> Anycast works and this is what we did for exactly the scenario your
> described earlier. But we found that we'd like it to be more hitless so
> we are now deploying dual tunnels from every CPE to C8500-12X headends.
>
> --
> tarko
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp@puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
_______________________________________________
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: ASR 1000 series replacement [ In reply to ]
cisco-nsp at puck
Dec 16, 2023, 8:37 AM
Post #4 of 5 (217 views)
Permalink
> On Dec 16, 2023, at 4:16?AM, Dragan Jovicic via cisco-nsp <cisco-nsp@puck.nether.net> wrote:
>
> Greeting,
> We have a somewhat unusual scenario with thousands of CPE devices each
> using cellular interface and gre tunnel to connect to hub router, currently
> ASR 1001x.

> The hub router deploys NHRP map multicast with GRE tunnels and bgp session
> to each cpe device, each tunnel different customer vrf connected to mpls
> core network.

> There are hundreds of GRE tunnels.

I have nothing to offer, and I'm mostly out of the ISP game, but I am so curious what the use-case is here, especially the "BGP to each CPE". I understand this might be private info, but I'm just so very curious. The BGP part is where I'm stumped...

Charles
_______________________________________________
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: ASR 1000 series replacement [ In reply to ]
cisco-nsp at puck
Dec 16, 2023, 11:53 PM
Post #5 of 5 (217 views)
Permalink
On Sat, 16 Dec 2023 at 18:38, Charles Sprickman via cisco-nsp
<cisco-nsp@puck.nether.net> wrote:

> > There are hundreds of GRE tunnels.
>
> I have nothing to offer, and I'm mostly out of the ISP game, but I am so curious what the use-case is here, especially the "BGP to each CPE". I understand this might be private info, but I'm just so very curious. The BGP part is where I'm stumped...

Any reason why you'd need hub+spoke topology, so many use cases. I've
use it for two things.

Mobile backup termination
OOB termination

In both cases with BGP, because I had 2 hubs, for redundancy. But BGP
would be needed in the first case anyhow, as the customer delivers
IPs. And helps in the 2nd case, even without redundancy to simplify
configuration and keep hub configuration free (no touching on hub,
when adding or removing spokes, due to BGP listen/allow).

I mean this is what got rebranded under SDN but has existed before,
it's just pragmatic and specific.

--
++ytti
_______________________________________________
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal