Hi Everyone
Our Cisco core switch 4900m has taken a turn for the worse, we quickly replace this with something we had in our lab, a ubiquiti ER-12 router, but now the entire network is bottlenecked to 1Gbits, so we are looking towards the 10gb routing solutions by Mikrotik.
Our setup is as follows,
Full Windows domain network with dns and dhcp on the domain controllers.
We have 9 vlans all on different subnets, all vlans except 2 need to be able to access traffic from each other, including the server vlan.
Like Cisco we need to route all Internet bound traffic to a specific ip 10.210.143.252. On the cisco switch it is setup as ip route 0.0.0.0 0.0.0.0 10.210.143.252.
This ip address is our main firewall which has a transparent url filter in between this and the cisco switch.
Our vlan subnets are.
server vlan 5
10.210.143.1/24
Data vlan 15
10 210 128.1/21
BMS vlan 25
172.22.14.1/24
Cctv vlan 30
172.22.15.1/24
Byod 1 vlan 35
10.210.152.1/21
Primary vlan 60
10.240.0.1/20
Cisco old management vlan 99
10.210.142.129/25
Byod 1 vlan 100
172.22.0.1/21
Staff wireless vlan 144
10.210.144.1
We need to be able to use dhcp relay or ip helper to the domain controllers for dishing out dhcp addresses.
The arp cache table needs to be able to take 4096 addresses.
We won't be using the firewall, Nat or traffic inspection on the Mikrotik
Would this model MikroTik CCR1036-8G-2S+ be able to do this using the 10gb sfp+ sockets and can you team/bond these together to get 20gbits bandwidth of vlan routing performance and then use a 1gb port for the connection to the firewall which is 10.210.143.252 on vlan 5.
Thanks in advance.
And I hope it will fit the bill, I will be ordering tomorrow if this is the case.
Re: Mikrotik to replace our faulty Cisco core switch
I think that CRS317-1G-16S+ is the closest thing to a Cisco 4900M.
https://wiki.mikrotik.com/wiki/Manual:C ... Offloading
https://wiki.mikrotik.com/wiki/Manual:C ... Offloading
Re: Mikrotik to replace our faulty Cisco core switch
The OP was specifically asking about inter-VLAN routing performance. The CRS devices are ill-suited to that role as they are primarily designed as layer2 switches with limited layer3 support. Although there is tentative support for layer3 hardware offloading in RouterOS 7 for a handful for CRS3xx devices this is very much beta and not really suitable for a production environment.
The published test results for the CCR1036-8G-2S+ are here https://mikrotik.com/product/CCR1036-8G ... estresults - significantly less than the hardware routing on a 4900M. If not using firewall or NAT so fastpath is used it is probably capable, but I haven't used a CCR in this scenario to say so for definite.
The published test results for the CCR1036-8G-2S+ are here https://mikrotik.com/product/CCR1036-8G ... estresults - significantly less than the hardware routing on a 4900M. If not using firewall or NAT so fastpath is used it is probably capable, but I haven't used a CCR in this scenario to say so for definite.
Re: Mikrotik to replace our faulty Cisco core switch
I would suggest getting a refurbished Cisco Catalyst Switch.
Aturna or other refurbishers offer *very* competitive prices for used Cisco components.
Currently Mikrotik routers are lacking too much features and having performance issues for enterprise environments.
Aturna or other refurbishers offer *very* competitive prices for used Cisco components.
Currently Mikrotik routers are lacking too much features and having performance issues for enterprise environments.
Re: Mikrotik to replace our faulty Cisco core switch
Hi everyone
Thankyou for your replies, the 36 core mikrotik router looks like it would do the trick pretty well.
We would only be using intervlan routing, to for example vlan 15 - 10.210.128.5 client can get to vlan 5 - 10.210.143.10.
The other 2 things we would need is dhcp relay to a windows dhcp server and 0.0.0.0 0.0.0.0 to 10.210.143.252 default route out which is the firewall address.
We would not need any firewall or Nat features, just the power to give around 20gbits of routing power between vlans, the Internet is 1gbit full duplex.
Would this not do the trick? As I quite like the language pvid and tag, this speaks the same language as netgear and unifi which we have plenty of, we were hoping to phase out our remaining 10 cisco switches.
Thankyou for your replies, the 36 core mikrotik router looks like it would do the trick pretty well.
We would only be using intervlan routing, to for example vlan 15 - 10.210.128.5 client can get to vlan 5 - 10.210.143.10.
The other 2 things we would need is dhcp relay to a windows dhcp server and 0.0.0.0 0.0.0.0 to 10.210.143.252 default route out which is the firewall address.
We would not need any firewall or Nat features, just the power to give around 20gbits of routing power between vlans, the Internet is 1gbit full duplex.
Would this not do the trick? As I quite like the language pvid and tag, this speaks the same language as netgear and unifi which we have plenty of, we were hoping to phase out our remaining 10 cisco switches.
Re: Mikrotik to replace our faulty Cisco core switch
What about this switch from Mikrotik.
CRS312-4C+8XG-RM
I see it has routing capability and the forwarding rate is double of what the cisco can do, how big is the arp cache table on this switch?
Do the Mikrotik switches actually do routing of vlan traffic?
CRS312-4C+8XG-RM
I see it has routing capability and the forwarding rate is double of what the cisco can do, how big is the arp cache table on this switch?
Do the Mikrotik switches actually do routing of vlan traffic?
Re: Mikrotik to replace our faulty Cisco core switch
What about this switch from Mikrotik.
CRS312-4C+8XG-RM
Do the Mikrotik switches actually do routing of vlan traffic?
This switch has routing capacity of a few 100Mbps. As @tdw already mentioned, this number will sky-rocket with ROSv7. However ROSv7 unfortunately seems far from being production-ready. And yes, all Mikrotik switches (most notably the CRS product line) when running RouterOS (as opposed to SwitchOS) do have routing capabilities but with very low capacity.