Transcription
Data SheetCisco ASR 1000 Series Aggregation Services Routers Cisco is reinventing edge routing with the Cisco ASR 1000 Series Aggregation ServicesRouters, a new line of midrange routers that establish a new price-to-performance classoffering, benefiting both service providers and enterprises alike: For service providers, the Cisco ASR 1000 Series Routers facilitate more flexible, efficient,and cost-effective delivery of complex consumer and business services. For enterprises, the Cisco ASR 1000 Series Routers deliver a highly reliable, highperformance WAN edge solution where information, communication, collaboration, andcommerce converge.The Cisco ASR 1000 Series Routers: Accelerate services by offering outstanding performance and resiliency with optimized,intelligent services Establish a new benchmark for price-to-performance offerings in the enterprise advancedrouting, service provider edge, and broadband aggregation segments Facilitate significant network architectural innovations in areas such as WAN aggregation,managed customer-premises-equipment (CPE) services, service provider edgeservices, etc. Reduce operating expenses (OpEx) and capital expenditures (CapEx) by facilitatingmanaged or hosted services over identical architectures and operating environmentsProduct OverviewThe Cisco ASR 1000 Series consists of four different versions (Figure 1): the Cisco ASR 1002Fixed Router, the Cisco ASR 1002 Router, the Cisco ASR 1004 Router, and the Cisco ASR 1006Router. All four models use the innovative and powerful Cisco QuantumFlow Processor, whichprovides a huge leap in performance and resiliency for network processors.Figure 1.Cisco ASR 1000 Series Aggregation Services RoutersThe Cisco ASR 1000 Series provides a significant enhanced value compared to prior generationsof Cisco midrange routing solutions by providing more than tenfold performance improvement withservices running. Additionally, the routers have hardware and software redundancy, as well as anindustry-leading high-availability design. 2009 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.Page 1 of 13
Data SheetThe Cisco ASR 1000 Series delivers multiple services embedded in the Cisco QuantumFlowProcessor at wire speeds of up to 20 Gbps. The services supported on the Cisco QuantumFlowProcessor include security services (for example, encryption and firewall), quality of service (QoS), Network Based Application Recognition (NBAR), Cisco IOS Flexible Packet Matching (FPM),broadband aggregation, and Cisco Unified Border Element (SP Edition) (formerly called SessionBorder Control or SBC), among others.With the separation of the control and data planes in the Cisco ASR 1000 Series Routerarchitecture, software redundancy (on the Cisco ASR 1002-Fixed, ASR 1002, and ASR 1004Routers) and hardware redundancy (on the Cisco ASR 1006 Router) are provided. Additionally,the modular Cisco IOS XE Software that is introduced with the Cisco ASR 1000 Series facilitatesIn Service Software Upgrade (ISSU).From a price-to-performance perspective, the Cisco ASR 1000 Series Router solution fits wellbetween the Cisco 7200 Series and Cisco 7300 Series and the Cisco 7600 Series and Cisco Catalyst 6000 Series Routers, thus dramatically enhancing the Cisco midrange routing portfolio(Figure 2).Figure 2.Cisco Midrange Routing PortfolioMore details about the individual Cisco ASR 1000 Series components such as the embeddedservices processors, the route processor, and the SPA interface processor (SIP) card are availablein the respective data sheets: Cisco ASR 1000 Series Embedded Services Processors (ESPs):http://www.cisco.com/go/asr1000 Cisco ASR 1000 Series Route Processor: http://www.cisco.com/go/asr1000 Cisco ASR 1000 Series Shared Port Adapter Interface Processor ables 1 and 2 describe enterprise and service provider application examples, respectively.Table 1.Cisco ASR 1000 Series Enterprise ApplicationsApplicationsSuperior application availability at theWAN edge:Guarantee high-priority applications bycreating a virtual “glass ceiling” for lowerpriority applications.Benefits Applies Modular QoS CLI (MQC)policies on VLANs or tunnels Clamps an arbitrary collection of lowpriority traffic to a certain bandwidth Classifies based on differentiatedservices code point (DSCP), NBAR,and Cisco IOS FPM into numeroushierarchies, (one for high priority andone for low priority) 2009 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.Implementations Implements flexible hierarchies Supports 128,000 queues Allows all queues to have aminimum, maximum, and excessbandwidth with priority propagationPage 2 of 13
Data SheetMultiservice, scalable, and secureheadend:The Cisco ASR 1000 Series offers fullservice IP Security (IPsec*) VPNaggregation that scales to meet the newbandwidth demands of service providerIP VPNs.Embedded high-speed firewall:With the Zone-Policy Firewall, the CiscoASR 1000 Series acts as an implicitcomplete barrier between any interfacesnot members of the same zone. Anexplicit zone-pair policy must bespecified (using Cisco Policy Language;that is, MQC) in each direction betweeneach zone pair. The policy establisheswithin the router what kind of statefulinspection (Layer 4, Layer 7, orapplication) and session parameters toapply to each zone pairing.Example: An explicit policy allowingHTTP and Domain Name System (DNS)to traverse the Internet-DMZ zoneboundary would be required.Managed CPE:This implementation of branch-officearchitecture offers powerful investmentprotection with services and scale. Reduces CapEx and OpEx bymigrating and consolidating to fewerCisco ASR 1000 Series Routers Protects investment through easytransition to much higher encryptionsupport -- offering encryption supportof up to 8 Gbps with the Cisco ASR1000 Series ESP (ASR1000-ESP20) Offers easier management throughembedded security services in CiscoQuantumFlow Processor, with noadditional service modules or bladesrequired Optimized for QoS and IP Multicastapplications Supports thousands of sites Supports 4000 IPsec tunnels The firewall is embedded in theCisco QuantumFlow Processor; noadditional service blades or modulesare required. Multigigabits of bandwidth are routedwhile at the same time the routerperforms Zone-Policy Firewall andother baseline features such as QoS,IPv4, IPv6, NetFlow, etc. The Cisco ASR 1000 Seriesprovides logging of all firewallsession state off to networkmanagement applications capable ofaccepting relatively huge amounts offlow data. Third-party applicationscan handle the session data. Provides firewall performance of 5 to20 Gbps at time of first availability,depending on the embeddedservices processor Offers high-speed logging of 40,000sessions per second with NetFlowVersion 9 Helps branch office route correctlyover various types of Ethernetservice-level agreements (SLAs) Encrypts multigigabits of bandwidth - without any additional serviceblades or modules Optimizes the WAN to route aroundbrownouts in the service providernetwork to further guaranteemission-critical applications Offers a small form factor (2 rackunits [2RU]) with the Cisco ASR1002 Router, including softwaremodularity and ISSU Offers accessibility even when theCisco IOS Software is down Offers first-in-industry softwareredundancy support, without anyadditional hardware module Offers powerful firewall and NATperformance of 5 to 20 Gbps and1.8- to 8-Gbps encryption support inaddition to WAN optimization andvoice features Offers up to 8-Gbps encryptionperformance and up to 12-Gbpsnoncryptographic throughput supportwith the ASR1000-ESP20 engine* This product includes software developed by Cavium Networks.Table 2.Cisco ASR 1000 Series Service Provider ApplicationsApplicationsBenefitsBroadband L2TP AccessConcentrator (LAC) or L2TP NetworkServer (LNS): Ideal for triple-play (data, voice, andvideo) wholesale deployments Offers integral service deliveryThe solution offers Layer 2 TunnelingProtocol (L2TP) endpoint to tunnel Pointto-Point Protocol (PPPoX) or IP sessionswith bandwidth demands in the STM-1ATM, Fast Ethernet, Gigabit Ethernet,and 10 Gigabit Ethernet range. Offers per-user firewall, SBC, etc.Service provider edge: Layer 3 VPN(L3VPN) provider edge: Provides integral services in CiscoQuantumFlow Processor Provides encryption, FPM, NBAR,SBC, IP Multicast, etc.Example: The solution can be deployedat the distributed provider edge, orprovider edge in global VPN networksfor bandwidth demands such asasymmetric DSL (ADSL), T1/E1, STM-1,STM-4, Fast Ethernet, Gigabit Ethernet,etc. 2009 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.Implementations Provides very high scalability of up to32,000 subscribers and up to 16,000tunnels Offers excellent multicastperformance Scales to 1,000 Virtual RouteForwarding (VRF) instances, 1million Label Distribution Protocol(LDP) labels, and 4,000 accesscontrol lists (ACLs) Supports up to 1 million IPv4 routes Supports up to 250,000 IPv6 routesPage 3 of 13
Data SheetService provider edge: High-end routereflector:You can use the solution as a routereflector for bandwidth support of 20Gbps. Provides high scalability Offers modular design of routeprocessor and embedded servicesprocessor with hardware andsoftware redundancy Scales up to 1 million IPv4 routes or250,000 IPv6 routes Supports 64,000 Layer 3 adjacencies Offers sufficient memory (2-GBDRAM) Offers optional upgrade to 4-GBDRAMNote: The Cisco ASR 1002 Routerships by default with 4-GB DRAM(ASR1002). Offers extensive Border GatewayProtocol (BGP) feature supportNext-generation voice and multimediaexample: Cisco Unified BorderElement (SP Edition):The SBC application (named CiscoUnified Border Element (SP Edition))performs the voice and video gatewayfunctions simultaneously with regular IPdata services. No appliance or additionalservice blade is required. The controlprotocols and media protocols worktransparently within a complex voicearchitecture. The WAN edge is simpler to managebecause only one egress and oneingress point needs managementand policy application. With the distributed control planeand separate data-forwarding plane,the signaling and control processingremain separate from mediaprocessing. ISSU support allows for easyaddition of new-use cases. You can use a single SBCapplication on the Cisco ASR 1000Series for residential, enterprise, andservice provider peering applications. Facilitates SBC with security, QoS,IPv4, and IPv6 (IP Unicast and IPMulticast simultaneously) Supports 32,000 simultaneous voicecalls and multimedia data of up to 20Gbps with accounting, firewall, andcall quality enabled Integrated with inbox high-availabilityinfrastructure and Dynamic HostConfiguration Protocol (DHCP) RelaySoftwareThe Cisco ASR 1000 Series is supported in Cisco IOS XE Software, which is introduced with theCisco ASR 1000 Series Routers as a modular operating system. Based on Cisco IOS SoftwareRelease 12.2SR, Cisco IOS XE Software is designed to provide modular packaging, featurevelocity, and powerful resiliency. Because of the extreme flexibility and robust performance of theCisco ASR 1000 Series ESPs, which are based on the Cisco QuantumFlow Processor technology,Network Security, Deep Packet Inspection, Cisco IOS Firewall, and many other advanced featuresare implemented in Cisco IOS XE Software without the need of additional hardware support (forexample, in the form of a service blade).One of the most innovative features is that the Cisco IOS XE Software supports dual Cisco IOSSoftware consolidated packages in one single Cisco ASR 1000 Series Route Processor forsoftware redundancy in the Cisco ASR 1002, Cisco ASR 1002-Fixed, and ASR 1004 Routers. Thisdual Cisco IOS Software consolidated package could be the same consolidated package forbackup, or a different consolidated package also on a different Cisco IOS XE Software release forresilient upgrade. Information about the compatibility of supported dual consolidated packages isavailable in the release notes. The (optional) hardware-redundant route processor and ESPconfiguration in the Cisco ASR 1006 Router does not support Cisco IOS Software redundancy in asingle route processor because each of the two route processors supports one Cisco IOS XEimage.For ease of ordering, you can choose from six supported consolidated packages in each CiscoIOS XE Software release: IP Base without crypto IP Base Advanced IP Services Advanced IP Services without crypto Advanced Enterprise Services 2009 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.Page 4 of 13
Data Sheet Advanced Enterprise Services without cryptoAll Cisco IOS XE Software Route Processor 1 (RP1) consolidated packages are compatible acrossthe entire Cisco ASR 1000 Series with the Cisco ASR 1000 Series Route Processor 1 (ASR1000RP1). Table 3 describes each of the Cisco IOS XE consolidated packages.Table 3.Descriptions of Cisco IOS XE Software Consolidated Packages for ASR1000-RP1 and ASR1002and ASR1002-F with integrated ASR1000-RP1Cisco IOS XE Consolidated PackagePart NumberCisco ASR 1000 Series RP1 IP BASEW/O CRYPTOSASR1R1-IPBDescription Provides low-cost base consolidated package Offers only basic IP feature support Satisfies export requirements for noncryptographicsoftwareCisco ASR 1000 Series RP1 IP BASESASR1R1-IPBK9 Provides low-cost base consolidated package Offers only basic IP feature support, including SecureShell (SSH) Protocol and Simple Network ManagementProtocol Version 3 (SNMPv3) supportCisco ASR 1000 Series RP1ADVANCED IP SERVICESSASR1R1-AISK9 Targeted for service provider customers Supports all features, including encryption (IPsec*, TripleDigital Encryption Standard [3DES], AdvancedEncryption Standard [AES], and SSH), Lawful Intercept,and SBC Does not support older protocolsCisco ASR 1000 Series R
The Cisco ASR 1000 Series is supported in Cisco IOS XE Software, which is introduced with the Cisco ASR 1000 Series Routers as a modular operating system. Based on Cisco IOS Software Release 12.2SR, Cisco IOS XE Software is designed to provide modular packaging, feature velocity, and powerful resiliency. Because of the extreme flexibility and robust performance of the
