Re: Max DMVPN tunnels on Cisco 4221 as hub

zmtechnologie · ‎08-16-2018

How many spoke devices can connect to the Cisco 4221 router as DMVPN hub without encryption?

omz · ‎08-17-2018

Without the HSEC license, only 225 secure tunnels and 85 Mbps of crypto bandwidth would be available.

https://www.cisco.com/c/en/us/td/docs/routers/access/4400/release/xe-16-rn/isr4k-rel-notes-xe-16-4.pdf

With HSEC license upto 4000 tunnels.

https://clnv.s3.amazonaws.com/2015/eur/pdf/PSORST-2008.pdf

zmtechnologie · ‎08-17-2018

Tks

Georg Pauwen · ‎08-17-2018

Hello,

if you don't use encryption, the limit would be whatever the maximum IDB is for that platform, and the memory needed.

show idb

will tell you the maximum of IDBs supported...

zmtechnologie · ‎08-17-2018

thanks for your answer it seems logical, but I doubt ; if there is any limitation on nhrp also ?:

I have 2 ISR4221 as hub and 600 AR1220 as spoke :

XXXX#show idb

Maximum number of Software IDBs 16384. In use 11.

Maximum number of Micro Software IDBs 49152. In use 0.

HWIDBs SWIDBs uHWIDBs uSWIDBs
Active 7 7 0 0
Inactive 4 4 0 0
Total IDBs 11 11 0 0
Size each (bytes) 4936 1936 3840 616
Total bytes 54296 21296 0 0

Type SIdx Idx St,O,Sh Interface Name (subblocks)
---------------------------------------------------
H 1 4 A,D,R GigabitEthernet0/0/0 (PLIM QOS HWSB(8), HW SB LLDP(6), HW SB CDP(4), MTU MIN MAX(3), i/f lock(2), Ether(1))
H 2 5 D,A,R GigabitEthernet0/0/1 (PLIM QOS HWSB(8), MACSEC HWSB(7), HW SB LLDP(6), HW SB CDP(4), MTU MIN MAX(3), i/f lock(2), Ether(1))
H 3 7 U,U,R Cellular0/2/0 (MACSEC HWSB(7), Serial(5))
H 4 8 U,A,R Cellular0/2/1 (MACSEC HWSB(7), Serial(5))
H 5 3 U,I,R LIIN0 (Ether(1))
H 6 10 U,R,R Loopback0
H 7 11 U,R,U Tunnel10 (MACSEC HWSB(7))

S 1 5 U GigabitEthernet0/0/0 (Ether-OAM(17), ONEP interface subblock(15), PLIM QOS SWSB(16), ACL(14), NetBIOS(6), SWSB IPROUTING(5), SW SB LLDP(4), SW CDP(3), IOSXE-RP(2), KEEPALIVE(1))
S 2 6 U GigabitEthernet0/0/1 (Ether-OAM(17), ONEP interface subblock(15), PLIM QOS SWSB(16), ACL(14), SW FIB PENDING EVENT(10001), ARP IDB Subblock(11), Dynamic DNS Updates(8), SW IPV4 STATS FORWARDING(7), NetBIOS(6), SWSB IPROUTING(5), SW SB LLDP(4), SW CDP(3), IOSXE-RP(2), KEEPALIVE(1))
S 3 7 U Cellular0/2/0 (ONEP interface subblock(15), ACL(14), Dynamic DNS Updates(8), SW IPV4 STATS FORWARDING(7), IPv6 feature on swidb(12), TUN_SIDB2TUNS(10002), NetBIOS(6), SWSB IPROUTING(5), IOSXE-RP(2), KEEPALIVE(1))
S 4 8 U Cellular0/2/1 (ONEP interface subblock(15), ACL(14), IPv6 feature on swidb(12), NetBIOS(6), SWSB IPROUTING(5), IOSXE-RP(2), KEEPALIVE(1))
S 5 4 U LIIN0 (Dynamic DNS Updates(8), NetBIOS(6), SWSB IPROUTING(5), IOSXE-RP(2), KEEPALIVE(1))
S 6 10 U Loopback0 (NetBIOS(6), ONEP interface subblock(15), ACL(14), Dynamic DNS Updates(8), SW IPV4 STATS FORWARDING(7), IOSXE-RP(2), SWSB IPROUTING(5), KEEPALIVE(1))
S 7 11 U Tunnel10 (ONEP interface subblock(15), ACL(14), SW EIGRP(13), SW MCAST(10), SW NHRP(9), Dynamic DNS Updates(8), SW IPV4 STATS FORWARDING(7), IOSXE-RP(2), NetBIOS(6), SWSB IPROUTING(5), KEEPALIVE(1))

Key: SIdx=Sort Index, Idx=hw_if_index or if_number
St=Current State, O=Old State, Sh=Shadow State
A=Admindown, D=Down, G=Going Down, I=Init
R=Reset, T=Testing, U=Up, X=Deleted