cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
631
Views
0
Helpful
2
Replies

uRPF Impact and Best Practice Suggestions

ChuckMcF
Level 1
Level 1

We need to implement uRPF in our network. I was hoping someone from the Community could provide their insights from their experience.

 

- Is there a significant impact on the CPU from turning on uRPF?

- Due to the potential CPU impact should it be configured on each SVI on a core switch or just the link from the external router going to the core switch?

- Is it better/preferable to implement via an ACL or "ip verify unicast source reachable-via rx"?

 

I appreciate your thoughts on this,

Chuck McFadden

2 Replies 2

Deepak Kumar
VIP Alumni
VIP Alumni

Hi,

Here, you are missing key information such as the Device model and firmware version. I remember that I was reading a document on the same topic a year ago. I want to share the same with you to understand the impact of uRPF.

 

https://xrdocs.io/ncs5500/tutorials/ncs5500-urpf/

 

I think uRPF is more scalable if there are multiple interfaces and routes.

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!

Thank you for the reply. Here is the information that you requested:

 

Core switch: Nexus 7706 NXOS 8.4(2)

External Boundary Router: ASR 1001-HX IOS XE 16.12.1s

 

TIA,

Chuck

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco