Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2051
Views
0
Helpful
1
Replies

Help Needed - CEF Hardware Acceleration

ciscogeek
Level 1
Level 1

‎04-11-2019 01:45 PM

Hello,


I am studying CEF and know the basic working of CEF. However, I need help in following questions:


Question 1: I understand that CEF uses mainly Prefix, NextHop, and Interface information in its table to forward packet. It seems that Packets are HW Accelerated based on only destination IP/Network. I was wondering if CISCO CEF supports forwarding of packets based on transport layer? For example, some other vendors provide this facility to HW accelerate the packets based on FLOW matching the source/destination port(s) and source/destination IP(s). For example, from other vendor, following entry takes src/dest ports into consideration in HW acceleration table to forward the packets.

 

Rule ID: 1

PROTO: 17

SOURCE PORT: 3333

DESTINATION PORT: 22

Source: 10.10.10.1

Destination: 20.20.20.1

GATEWAY: 10.10.10.2

 

Question 2: If the answer to the question 1 is YES, then i would also like to know how would CEF/Hardware Acceleration forward Fragmented Packets. As far as I know, when fragmentation is done, only first packet contains protocol information (TCP/UDP). All other subsequent packets don't. If CEF considered TCP/UDP in its CEF table, how would it process all subsequent packets that have no information of upper layer protocol (src/dest ports). 

 

Question 3: This is separate question from CEF. If a bigger sized packet is fragmented into 4 fragments, is it possible to send 2 packets on Link-1 and other 2 packets on Link-2. In this way, all the intermediary routers will not reassemble the fragments. And the re-assembly only happens at the destination. Is this true ? 

Also please, if possible, share when it is required to re-assemble fragments before even reaching to the destination. I have heard that when firewall is in between the Source and Destination, Firewall must re-assemble all the fragments. Is this true ? 

Any help would highly be appreciated.

 

Thanks.

 

Labels:
0 Helpful
1 Reply 1

brselzer
Cisco Employee
Cisco Employee

‎04-12-2019 06:16 AM

Hello,

 

Question 1: Yes, CEF supports load balancing based on layer 4 ports.

 

Router(config)#ip cef load-sharing algorithm ?
include-ports Algorithm that includes layer 4 ports  <-------
original Original algorithm
tunnel Algorithm for use in tunnel only environments
universal Algorithm for use in most environments

 

Question 2: CEF can not support fragmentation. If you look at the situations that CEF can not handle, fragmentation is one of them.

 

Router#show cef not-cef-switched

IPv4 CEF Packets passed on to next switching layer
Slot No_adj No_encap Unsupp'ted Redirect Receive Options Access Frag  <----Fragmentation packets can not be CEF switced
RP 0 0 0 0 18413 0 0 0

 

 

Question 3: See answer to question 2

 

Hope that helps!

-Bradley Selzer
CCIE# 60833
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card