Solved: Re: Cisco WAN Router Recommendation

utawakevou · ‎04-30-2019

Is there suitable WAN router model that have the capacity to at least do the following

host 3 100Mbps and 1 Gbps WAN links with at least 1Gb throughput
SSH
OSPF
Netflow
IPsec over GRE tunneling with aes256 and aes128

On another note we've got two Cisco Nexus N9K-C9372TX , performing the following roles:

hosting VMware hosts and SAN storage
vPC between the two N9K-C9372TX and the VMware hosts
HSRP
intervlan routing and OSPF
root bridge using vPC

So probably I can just configure at least 4 ports as router port and use that instead of buying extra devices ? Will this be ok concerning the above roles ? Processor and memory usage not above between 10-30% considering the above roles for the two boxes

Any help with hardware specs and IOS version technology will be really appreciated

balaji.bandi · ‎04-30-2019

In the world of revelution anything possible, any device can be used.

But only concern here most people look at Securty / Demarcation of of LAN vs WAN Edge

if your desing of thinking, yes Nexus work,.but you are fully exposed to WAN ( so that is the not best Practice until this is totaly VPLS and Dark Fibre Lines (only mesh network for your organisation)

in related to

IPsec over GRE tunneling with aes256 and aes128 <-- nexus have limited functionalites, since they meant to be DC Switches (not for WAN edge routers)

Other hand you WAN Edge routers From Cisco

https://www.cisco.com/c/en_uk/products/routers/branch-routers/index.html#~stickynav=2

Look at 4K Models, comes with base and you can upgrade to 1GB speed when your network ready.(or from day 1)

https://www.cisco.com/c/en/us/products/routers/4000-series-integrated-services-routers-isr/models-comparison.html

Internms of IOS - IOS-XE is the good move.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

balaji.bandi · ‎05-02-2019

Correct you need to buy additional GE module for your extra port requirement.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

balaji.bandi · ‎04-30-2019

In the world of revelution anything possible, any device can be used.

But only concern here most people look at Securty / Demarcation of of LAN vs WAN Edge

if your desing of thinking, yes Nexus work,.but you are fully exposed to WAN ( so that is the not best Practice until this is totaly VPLS and Dark Fibre Lines (only mesh network for your organisation)

in related to

IPsec over GRE tunneling with aes256 and aes128 <-- nexus have limited functionalites, since they meant to be DC Switches (not for WAN edge routers)

Other hand you WAN Edge routers From Cisco

https://www.cisco.com/c/en_uk/products/routers/branch-routers/index.html#~stickynav=2

Look at 4K Models, comes with base and you can upgrade to 1GB speed when your network ready.(or from day 1)

https://www.cisco.com/c/en/us/products/routers/4000-series-integrated-services-routers-isr/models-comparison.html

Internms of IOS - IOS-XE is the good move.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

utawakevou · ‎05-01-2019

Thank you so much @balaji.bandi

Will look at the 4000 series and take it from there.

Regards

utawakevou · ‎05-01-2019

So if we have to go for the 4451 model, it says Integrated WAN Ports2 PoE GE / SFP then below its shows 2 GE / SFP. Does this mean that it comes with these integrated GE ports ? So in total 4 intergrated GE's then we just have to buy a module that support 2 more GE to make it total of 6 GE ?

balaji.bandi · ‎05-02-2019

Correct you need to buy additional GE module for your extra port requirement.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help