Ask The Expert: Introduction to Cisco ASR 1000 Series Aggregation Services Routers

ciscomoderator · ‎02-21-2012

Manigandan B

Welcome to the Cisco Support Community Ask the Expert conversation. Learn from Cisco expert Manigandan B about the architecture, features, performance and benefits of Cisco ASR 1000 Series Routers. This event is a continuation of the Cisco live Facebook Forum, where you can ask additional questions to the expert.

Manigandan B. is a technical services engineer at Cisco working as a team leader for the Enterprise Services team. He works primarily with customers and their escalations in the Europe, Middle East and Africa (EMEA) region. His areas of expertise are architecture of routers, Cisco IOS, QoS, packet tracing, Cisco Express Forwarding, Cisco NetFlow, Network Address Translation, and other router platform issues. Mani has been associated with Cisco for more than 3 years, having joined Cisco after receiving a bachelor's degree in electronics and communication engineering. He also holds CCNA, CCNP, and ITIL certifications.

Remember to use the rating system to let Manigandan know if you have received an adequate response.

Manigandan might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation on the Network Infrastructure sub-community discussion forum shortly after the event. This event lasts through March 6 , 2012. Visit this forum often to view responses to your questions and the questions of other community members.

John Ventura · ‎02-22-2012

Hello,

Can you let me know if the ASR1k support per packet load-sharing?

thanks a lot,

- John

manib · ‎02-22-2012

Hello John,

ASR1k doesn't support per-packet load balancing(PPLB) as of date. It causes quite a lot of issues when we load share the steams based on per packet. Some common issues:-

1. Packet sequencing issues.

2. Very bad TCP performance.

etc.

We support flow based load sharing and this feature is not even on the radar of ASR1k team. Thanks.

Cheers,

/Mani

John Ventura · ‎02-24-2012

Another question, Manigandan. Can you provide some guidance of how do we troubleshoot packet drops on ASR1k? Also, when ASR1k crashes where do we look for crash files?.

Thanks for your valuable responses

- John

manib · ‎02-26-2012

Hi John,

That's a very good question. This CCO page will help us:

http://www.cisco.com/en/US/products/ps9343/products_tech_note09186a0080af2d14.shtml

Basically we start of looking at QFP drops and then proceed further. For the second part, ASR1k's RP or ESP or SIP can crash. If the ESP or SIP crashes, we would just have the core files under harddisk:core directory. While if RP crashes, we would have crash file in bootflash and core files under harddisk:core directory.

* For ASR1001 and ASR1002, we need to look at bootflash for core and crashfile.

Cheers,

/Mani

jag · ‎02-27-2012

Hi,
Please can you tell me is there any plan to support cTCP encapsulation for Easy VPN on the ASR 1k?

Regards,

Jason

manib · ‎02-28-2012

Hi Jason,

The CTCP Support on ASR1k is not yet on roadmap. There are few customer cases requesting for the same and ASR1k dev team might update something soon. As of date, we don't support it.

Cheers,

/Mani

talmadari · ‎02-27-2012

Hi MANIGANDAN,

Can you please note the main differences between the ASR1k to some other WAN aggregation routers as the 7200 series?

What are the reasons that I should take into consideration while choosing the ASR1k over other routers?

Best Regards,

Talm

manib · ‎02-28-2012

Hi Talm,

Good question. Please start here on CCO:

http://www.cisco.com/en/US/products/ps9343/index.html

Its has all the reasons why one should opt for ASR1k.

Please see few VOD's recorded for this purposes:

Router security services:

http://www.cisco.com/en/US/products/ps6540/index.html

Cisco Application Visibility and Control (AVC):

http://www.cisco.com/en/US/prod/routers/application_visibility_control.html

Lets talk very concisely about 7200 and ASR1k:

1. Basically 7200 is a 13 year old software based system that has the

greatest feature breadth of any router ever developed. Active selling

will continue, no new Hardware is planned though IOS Software features

will continue to be developed in the appropriate releases.

2. ASR1000 family is our next generation midrange router that will

eventually replace the 7200, 7300, C10k, 10720, etc. We added HW and SW

HA, Front to Back airflow, Scaling, Performance and Bandwidth improvements

to name a few.

3. More reasons for ASR1k can be found here which serves as a very good comparison:

http://www.cisco.com/en/US/prod/collateral/routers/ps9343/data_sheet_c78-447652.html

This should give you a very good picture of the robustness of the platform.

Cheers,

/Mani

Danilo Dy · ‎02-27-2012

Hi Manigandan,

I found that GLBP in ASR1002 does not suport IPv6. May I know when will GLBP support IPv6?

I use ADV ENT.

Best wishes,

Dandy

Joe Lee · ‎02-27-2012

Hi Manigandan,

It seems ASR 1002 doesn't support the object group for the access list. Do you know when ASR 1002 will support Object Group?

Our ASR 1002 is running 3.4.0S, are there any new features on 3.5.1S?

Thanks!

Joe

manib · ‎02-28-2012

Hi Joe,

Support will start in 3.9S (Q1CY2013). Thanks.

Cheers,

/Mani

manib · ‎02-28-2012

Hi Dandy,

This feature is not in ASR1k dev team's roadmap. So as of now, we don't have an ETA when the support will begin. Feel free to work with Cisco's accounts team if you have a ASR1k contract, so that they can talk to ASR1k dev team and see if they can get that feature on their radar.

Cheers,

/Mani

Danilo Dy · ‎03-05-2012

Thanks Mani. My maintenance contract is with Cisco partner. I guess I have to wait for ASR1K Dev team to hopefully they will include it in their future plan

Best wishes,

Dandy

Michel Bou Sleiman · ‎02-27-2012

Hello Manigandan,

We have implemented a few dozens of ASR 1004 as Internet Gateways, but unfortunately we are having lots of problems when running PAT.

Two issues have been faced so far and are critical to operations:

1- PAT pooling fails, whereas if we have a pool with N entries, lots of protocols are consuming 1 to 1 NAT, which leave us with shortage of ports. A pool of 5 IP addresses should serve about 320000 ports thus 320000 simultaneous connections. but we only end up in using the first 4 IP addresses as 1-to-1 NAT and the remaining 5th is doing PAT ! We tried to increase the Pool mask (eg 20 IP addresses) and still the same issue. We expect to serve 2000000 simultaneous connections per ESP-40 (as per the datasheet).

2- On another unit we have the following output in the NAT stats:

sh ip nat statistics

Total active translations: 75727 (0 static, 75727 dynamic; 75727 extended)

Outside interfaces:

GigabitEthernet0/0/2, GigabitEthernet0/0/3

Inside interfaces:

GigabitEthernet0/0/0, GigabitEthernet0/0/1

Hits: 1842060462 Misses: 52429354

CEF Translated packets: 0, CEF Punted packets: 0

Expired translations: 52225597

Dynamic mappings:

-- Inside Source

[Id: 9] route-map NATALL pool natpool refcount 75320

pool natpool: netmask 255.255.255.0

start 89.108.185.51 end 89.108.185.100

type generic, total addresses 50, allocated 1 (2%), misses 0

nat-limit statistics:

max entry: max allowed 0, used 0, missed 0

Pool stats drop: 0 Mapping stats drop: 1

Port block alloc fail: 0

IP alias add fail: 0

Limit entry add fail: 0

Note that we have 75727 simultaneous connections for a SINGLE IP... That is a bit ackward, don't you think?

Your feedback is much apprecaited.

One last question, is there any document related to which applications are supported by PAT on the ASR1K ?

Thanks,

Michel.