09-14-2016 06:37 PM
Hi,
I am working on a requirement for bunch of 3rd party switches mainly HP and Brocade and some legacy Cisco switches. All users are distributed geographically and connected centrally via MetroE with very low latency and around 250+ sites.
Does Walled Garden allow central DHCP/DNS? Putting SNS in every location will drive up the cost. Do we have any design for this?
Thanks
Wing Churn
Solved! Go to Solution.
09-16-2016 12:50 PM
You could, but need to make sure that max concurrent users < platform max which is the case here if using 3595s. If plan to perform lots of web auth, then scale as you would regular ISE flows with maybe a bit more overhead for DNS/DHCP and additional redirect functions. Consider web auths (non-registered endpoints) is about 25-40 auths/sec.
Note that there are some open defects planned for ISE 2.1 Patch 2 to address overlapping scopes and couple other issues. If plan to overload PSNs with multiple Auth VLANs, then will need to wait until Patch 2 or request hotfix.
/Craig
09-14-2016 10:55 PM
If PSN is layer 3, then configure "helper" on local gateway to use DHCP Server on configured PSN interface, this is defined under the Auth VLAN Config
09-14-2016 11:37 PM
Hi Imran,
Thanks for the response. I am looking at around 250 sites with around 15k user. Do we have any specific design for this?
Can I dedicate 2 x SNS 3595 for 3rd Party integration only?
Thanks
Wing Churn
09-16-2016 12:50 PM
You could, but need to make sure that max concurrent users < platform max which is the case here if using 3595s. If plan to perform lots of web auth, then scale as you would regular ISE flows with maybe a bit more overhead for DNS/DHCP and additional redirect functions. Consider web auths (non-registered endpoints) is about 25-40 auths/sec.
Note that there are some open defects planned for ISE 2.1 Patch 2 to address overlapping scopes and couple other issues. If plan to overload PSNs with multiple Auth VLANs, then will need to wait until Patch 2 or request hotfix.
/Craig
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide