Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1022
Views
0
Helpful
5
Replies

Bringing up a redundant 6500

MBrooksAirIT
Level 1
Level 1

‎10-24-2010 08:50 PM - edited ‎03-06-2019 01:42 PM

Hello All- We will be bringing up a second 6500 in our core for redundancy. Both 6500s have identical hardware and software; redundant SUP720s (WS-SUP720-3B) and a FWSM. We will also be upgrading the IOS on both as we would like to implement HSRP v2. Current IOS code version is 12.2(18)SXF7 which it appears limits my choices for upgrade (no ISSU/eFSU). I would like to start a discussion with this knowledgeable group so that we can avoid any gotchas along the way.

I plan on splitting SPT root between the two and using both as secondary to the other. We will use HSRP for L3 VLANs. We use OSPF as our RP.

I have been reading through the threads a bit, these in particular:

https://supportforums.cisco.com/message/631316

https://supportforums.cisco.com/message/184025

https://supportforums.cisco.com/thread/164208

I share a lot of the same concerns, especially downtime. I am also reading through the design guides, but want to get specific input particular to my environment. Please feel free to suggest links for reading and anything else you may feel is helpful.

Many thanx

-michael

Labels:
0 Helpful
5 Replies 5

Naveen Kumar Rajaharia
Level 1
Level 1

‎10-24-2010 11:37 PM

Two ways to design it :-

1) Using Switch as L3

In this you need to create vlan svi, configure hsrp groups, load balance the gateways

2) Using switch as L2 and FW as l3

Create vlan on switch, configure FW as gateway with two instances bundled for vlans. with 2 intances you can get redundancy and load balancing between two fwsm

0 Helpful

MBrooksAirIT
Level 1
Level 1
In response to Naveen Kumar Rajaharia

‎12-27-2010 12:27 PM

We have L3 on both the switch/MSFC and the FWSM. Have built a script for the HSRP groups (assuming HSRP v2). Do not know much about your statement "load balance the gateways" -- can you talk a bit more about that?

Also am looking for comments on IOS version to upgrade to. We have a pretty straightforward vanilla config. Modules below:

Mod Ports Card Type                              Model
--- ----- -------------------------------------- ------------------ -----------
  1    6  Firewall Module                        WS-SVC-FWM-1
  2   48  SFM-capable 48 port 10/100/1000mb RJ45 WS-X6548-GE-45AF
  4   24  CEF720 24 port 1000mb SFP              WS-X6724-SFP
  5    8  Network Analysis Module                WS-SVC-NAM-2
  6   48  48-port 10/100 mb RJ45                 WS-X6148-45AF
  7    2  Supervisor Engine 720 (Active)         WS-SUP720-3B
  8    2  Supervisor Engine 720 (Hot)            WS-SUP720-3B
  9   48  SFM-capable 48 port 10/100/1000mb RJ45 WS-X6548-GE-45AF
10    4  CEF720 4 port 10-Gigabit Ethernet      WS-X6704-10GE
11    8  CEF720 8 port 10GE with DFC            WS-X6708-10GE
12    8  Intrusion Detection System             WS-SVC-IDSM-2

13   48  CEF720 48 port 1000mb SFP              WS-X6748-SFP

WS-X6148-45AF is going away and the line cards will be shuffled a bit to accomodate a new additional WS-X6748-SFP.

Thanx

0 Helpful

Reza Sharifi
Hall of Fame
Hall of Fame
In response to MBrooksAirIT

‎12-27-2010 01:00 PM

Mike,

If you have limited number of vlans, I would not worry about load balancing the gateways, as that would make the deign more complicated, because now you have to remember which box is the HSRP/VRRP master for which vlan and also remember which device is the Root per vlan.  If you have a lots of vlans, load balancing the gateway makes scene.  As for your IOS question, the latest on CCO is SXI5.  I have tested SXI4a and it seems to be pretty stable.  One more thing, since you are planning to upgrade your IOS, make sure you upgrade to a non-modular IOS, as Cisco slowly phasing out modular IOS on the 6500 series.  ISSU/eFSU is supported in newer IOS, but that really applies if you are using redundant sup or VSS.

HTH

Reza

0 Helpful

MBrooksAirIT
Level 1
Level 1
In response to Reza Sharifi

‎12-27-2010 04:37 PM

I went through the software advisor and it suggested the lated IOS code I could use was 12.2(18)SXF16. The feature set we need is Advanced IP Services SSH. Can someone verify that the line cards I have will be supported by SXI4a or SXI5 (SXI4 has a bug which may affect us)? I will probably just get a TAC case open to answer this. We are definitely not going to be using a modular image.

We have ~150 VLANs on our network, one of whhich is heavy-use video, and another is high-traffic audio. The others are a mixed bag.

Thanx

0 Helpful

MBrooksAirIT
Level 1
Level 1
In response to MBrooksAirIT

‎12-28-2010 03:15 PM

And BTW, we are using redundant Sup720s, which you can see in slots 7 & 8, in SSO mode.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card