Router Technology Study Notes

Source: Internet
Author: User
Tags sflow

The router technology in China has developed very rapidly. So I have studied the comprehensive explanation of the router technology. Here I will share it with you and hope it will be useful to you. The multi-layer switch/router technology forwards data packets at the wire speed, and the Exchange ASIC exists in a distributed manner, allowing the entire system to efficiently transport traffic.

Over the years, the processing speed of traditional router technology has increased significantly, but it is still insufficient to keep up with the pace of powerful applications. For example, they can now forward nearly 1 million packets per second. However, considering that a single second can send 1,488,000 packets pps) and receive packets at a speed of 1,488,000 pps, two Gigabit Ethernet ports can easily overload the system. In contrast, the multi-layer switch/router technology forwards data packets at the wire speed, and the Exchange ASIC exists in a distributed manner, allowing the entire system to efficiently deliver traffic.

These new vswitch/router technologies use a new network design and management mode. When line rate Forwarding is implemented today, congestion points can be effectively eliminated, and users can be farther away from data without worrying about performance degradation. As mentioned in the previous example, stock traders can now connect to servers or network data that are several floors or hundreds of miles away from themselves, the specific distance depends on the interface type supported by the vswitch/vro and the copper or optical fiber type used. In addition, the new IP address and the optimized Ethernet router technology are easy to manage. It takes only a small amount of time for managers to synchronize the network with new applications. Similar to the BigIron chassis products of the network, the BigIron can easily transmit all traffic from applications. At the same time, more modules can be added to meet the requirements of increasing capacity and speed.

To determine the type and capacity of network traffic, the new data packet sampling technology is built into ASIC to monitor the traffic of the entire system. RFC 3176 or sFlow has become an increasingly popular method for enterprises and service providers to monitor the traffic of all applications on the network in real time-to describe the bandwidth required for the traffic and the whereabouts of the traffic. It can be said that sFlow allows enterprises to better monitor the use of network resources across multiple departments; in universities, it can identify illegal wireless and wired applications in the network, and detects and stops DoS attacks before the network performance is affected. Currently, RFC 3176 is becoming a must-have for enterprises that are very concerned with security.

The functions of multi-layer switches/routers are no different from those of traditional routers and switches. They only concentrate the distributed LAN and man WAN functions on a single device. They can achieve local exchange or layer-4 exchange between users in the same group), and achieve routing between users in different groups, that is, layer-4 Exchange or routing ), it also provides security features and special services for applications, that is, layer-4 Switching ).

Vrouters become ideal security checkpoints because they are the ingress and egress of the network. After you create a complex rule called Access Control List ACL on a vro, The vro checks each packet based on this rule. For traditional routers, it is time-consuming to check data packets according to security rules. After the router finds the layer 3rd and layer 4th information in each packet, it must compare the information with the rules. Enabling the security filter feature has always been a "Nightmare", which slows down the speed of router technology. Therefore, when the performance is greatly affected, you need to use special devices to share the workload.

Even multi-layer exchange routers face challenges when performing this function while maintaining line rate performance. When the security function is enabled, the speed of some new vswitches/routers will also slow down. However, most of the new vswitch/router technologies have integrated these security policies into the hardware, so that even when the ACL is enabled, it can provide line rate forwarding performance. The use of multi-layer switch/router technology for security and traffic analysis is becoming increasingly popular, mainly because equipment vendors have built this technology into the multi-layer switch/router technology. More and more network devices are integrated into the same device. In this way, independent hardware is no longer needed to monitor traffic or security, which can bring great benefits to SMB users.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.