The Truth About Router Performance

Similar documents
Cisco Integrated Services Routers Performance Overview

Total solution for your network security. Provide policy-based firewall on scheduled time. Prevent many known DoS and DDoS attack

CISCO SMB CLASS MOBILITY AND WIRELESS SOLUTIONS: THE RESPONSIVE WORKFORCE

This document describes how the Meraki Cloud Controller system enables the construction of large-scale, cost-effective wireless networks.

Lab Testing Summary Report

Ethernet Wide Area Networking, Routers or Switches and Making the Right Choice

ZyXEL offer more than just a product, we offer a solution. The Prestige DSL router family benefits providers and resellers enabling them to offer:

IREBOX X. Firebox X Family of Security Products. Comprehensive Unified Threat Management Solutions That Scale With Your Business

WAN Optimization Integrated with Cisco Branch Office Routers Improves Application Performance and Lowers TCO

The Cisco ASA 5500 as a Superior Firewall Solution

Deploying the ShoreTel IP Telephony Solution with a Meru Networks Wireless LAN

convergence: preparing the enterprise network

IP Telephony Basics. Part of The Technology Overview Series for Small and Medium Businesses

How To Set Up A Cisco Rv110W Wireless N Vpn Network Device With A Wireless Network (Wired) And A Wireless Nvv (Wireless) Network (Wireline) For A Small Business (Small Business) Or Remote Worker

The term Virtual Private Networks comes with a simple three-letter acronym VPN

Cisco RV110W Wireless-N VPN Firewall

SUNYIT. Reaction Paper 2. Measuring the performance of VoIP over Wireless LAN

Cisco IP Communications Express: Cisco Unified Callmanager Express with Cisco Unity Express

Cisco IOS Advanced Firewall

Best Practices for deploying unified communications together with SIP trunking connectivity

Cisco RV 120W Wireless-N VPN Firewall

Lucent VPN Firewall Security in x Wireless Networks

Cisco RV110W Wireless-N VPN Firewall

ALLNET ALL-VPN10. VPN/Firewall WLAN-N WAN Router

An ADTRAN White Paper. Seven Guidelines for Your SMB Network

Avaya IP Office. Converged Communications. Contact Centres Unified Communication Services

Deploying Secure Enterprise Wide IP Videoconferencing Across Virtual Private Networks

WATCHGUARD FIREBOX VCLASS

Router Throughput Tests

Cisco RV215W Wireless-N VPN Router

What s New in Converged Access and Unified Business Solutions. Tim Saunders VP, Product Management ADTRAN Enterprise Networks Division

Small, Medium and Large Businesses

Cisco Configuration Assistant

SonicWALL Advantages Over WatchGuard

High-performance VoIP Traffic Optimizer Client Solution

SonicWALL Corporate Design System. The SonicWALL Brand Identity

MERAKI WHITE PAPER Cloud + Wireless LAN = Easier + Affordable

TSC (Total Solution Communications Ltd)

Huawei AR G3 FAQ TOP14

ETM System SIP Trunk Support Technical Discussion

ENHWI-N n Wireless Router

4 Delivers over 20,000 SSL connections per second (cps), which

Cisco 2600 Series Modular Access Routers

How To Use A Cisco Wvvvdns4400N Wireless-N Gigabit Security Router For Small Businesses

Solutions Guide. Secure Remote Access. Allied Telesis provides comprehensive solutions for secure remote access.

EdgeMarc 4508T4/4508T4W Converged Networking Router

Managed Services: Taking Advantage of Managed Services in the High-End Enterprise

Cisco RV082 Dual WAN VPN Router Cisco Small Business Routers

Cisco Application Networking for BEA WebLogic

Increase Simplicity and Improve Reliability with VPLS on the MX Series Routers

Hosted Voice. Best Practice Recommendations for VoIP Deployments

Exam Name: Cisco Sales Associate Exam Exam Type: Cisco Exam Code: Doc Type: Q & A with Explanations Total Questions: 50

Cisco SR 520-T1 Secure Router

Cisco RV180 VPN Router

Huawei esight Brief Product Brochure

Why Migrate to the Cisco Unified Wireless Network?

Application Notes for Configuring a SonicWALL VPN with an Avaya IP Telephony Infrastructure - Issue 1.0

WATCHGUARD FIREBOX SOHO 6TC AND SOHO 6

- Introduction to PIX/ASA Firewalls -

Recommended IP Telephony Architecture

Improving Quality of Service

Cisco Configuration Assistant

IVCi s IntelliNet SM Network

Lab Testing Summary Report

OpenScape Session Border Controller Delivering security, interoperability and cost savings to the enterprise network border

Providing Secure IT Management & Partnering Solution for Bendigo South East College

CradleCare Support Agreement The Peace of Mind Plan

What s New in Converged Access and Unified Business Solutions

IP Telephony Management

Network Simulation Traffic, Paths and Impairment

Game changing Technology für Ihre Kunden. Thomas Bürgis System Engineering Manager CEE

DATA SECURITY 1/12. Copyright Nokia Corporation All rights reserved. Ver. 1.0

Level: 3 Credit value: 9 GLH: 80. QCF unit reference R/507/8351. This unit has 6 learning outcomes.

Securing SIP Trunks APPLICATION NOTE.

Colt IP VPN Services Colt Technology Services Group Limited. All rights reserved.

Gigabit to the edge. HP ProCurve Networking Solutions

SafeNet Network Encryption Solutions Safenet High-Speed Network Encryptors Combine the Highest Performance With the Easiest Integration and

Cisco WRVS4400N Wireless-N Gigabit Security Router: Cisco Small Business Routers

Secure Access Complete Visibility

Datasheet. Enterprise Gateway Router with Gigabit Ethernet. Models: USG, USG-PRO-4. Advanced Security, Monitoring, and Management

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

Truffle Broadband Bonding Network Appliance

Convergence: The Foundation for Unified Communications

Creating Business-Class VoIP: Ensuring End-to-End Service Quality and Performance in a Multi-Vendor Environment. A Stratecast Whitepaper

HOSTED VOICE Bring Your Own Bandwidth & Remote Worker. Install and Best Practices Guide

Assessing Business Continuity Solutions

Improving Network Efficiency for SMB Through Intelligent Load Balancing

ethernet services for multi-site connectivity security, performance, ip transparency

Cisco CCNP Optimizing Converged Cisco Networks (ONT)

CCNA Cisco Associate- Level Certifications

Industrial Network Security for SCADA, Automation, Process Control and PLC Systems. Contents. 1 An Introduction to Industrial Network Security 1

Big Solutions for Small Business

Best Effort gets Better with MPLS. Superior network flexibility and resiliency at a lower cost with support for voice, video and future applications

network infrastructure: getting started with VoIP

Protecting the Extended Enterprise Network Security Strategies and Solutions from ProCurve Networking

Transcription:

The Truth About Router Performance Multiservice Routers versus Integrated Service Routers (Gen. 2) Frank Ohlhorst Lab Director/Product Analyst

The Truth About Router Performance 2 Router performance has become one of the most important factors for delivering services over the WAN. Today s technologies, such as Virtual Desktop Infrastructure (VDI), Voice over IP (VoIP), Unified Communications (UC), Virtual Private Networks (VPN) and security services demand low latency, high bandwidth solutions to properly perform and deliver critical enterprise services. However, many of the routers in place today fail to deliver the performance demanded by the current crop of technologies and will most surely come up short as newer, bandwidthintensive applications arrive on the scene. The Performance Puzzle Several vendors present performance capabilities using traditional methods, such as raw Mbps, basic latency and CPU utilization. While those measurements may offer a baseline, that baseline is not an accurate representation of true performance. In other words, prospective router purchasers need to focus on the real-world performance capabilities of a router; performance measurements that include a mix of traffic and services that today s businesses encounter. The Setup Modern Routers are More Than Just Routers Enterprises have come to expect much more from a router than just simply routing traffic across the WAN. Routers are expected to act as appliances that function at the edge of the network and often incorporate VPN access, Stateful Packet Inspection (SPI) firewalls, Quality of Service (QoS) routing and many other capabilities that most enterprises can pick and choose from to customize what services a router must offer. Each of those elements can have a dramatic effect on performance, especially when it comes to throughput and latency. Simply put, the more a router is expected to do, the more processing power is needed. This test is to evaluate the performance of the two market leading branch office routers: s Multiservice Routers and the latest Integrated Services Routers (ISR), Gen 2. This head-to-head comparison tested like-products designed for the same market segment: mid-range branch office routers for the enterprise. Products tested included: s 443 and s 3925 s 345 and s 2911 s 343 and s 1941 In these head-to-head evaluations of routers and routers, throughput was measured in an Ethernet WAN-to-Ethernet LAN test setup where integrated services including SPI firewall, Network Address Translation (NAT), and 3DES IPSec VPN were enabled. Three separate tests were conducted to measure various customized configurations that an enterprise would typically implement. Internet Security: Throughput test with SPI firewall and NAT enabled Secure Corporate Connectivity: Throughput test with SPI, NAT, and the addition of IPSec with 3DES encryption VPN services enabled Real World Bandwidth Utilization: A real-world throughput test balancing a mix of services, traffic and the utilization of bandwidth Configuration 1: Internet Security SPI Firewall and NAT Throughput Out of the box, all the products offer advanced IP routing capabilities. The products add an Integrated SPI firewall to the mix, while offers a SPI firewall as an option on their unit. With the SPI firewall and NAT enabled, the first test shows that the routers demonstrated superior performance in this area, yielding up to 285 percent increase over that of. Mbps 8 7 6 5 4 3 2 1 443 2 2 285% 136% 153% 18 14 12 8 6 4 2 18 14 12 8 6 4 2 3925 345 2911 343 1941

Configuration 2: Secure Corporate Connectivity 3 Firewall, NAT and VPN Throughput IPSec VPN is one of the most processor intensive services taxing a router. This is due to the vast amount of computations needed to run various encryption algorithms to protect traffic for safe passage over unsecure networks, like the Internet. With the addition of IPSec VPN added to the original test suite, the routers continue to show impressive performance numbers, still exceeding that of, up to 87 percent. Mbps 14 12 1 8 6 4 2 443 3925 1 87% 54% 23% 8 6 4 2 345 2911 1 8 6 4 2 343 1941 Configuration 3: Real-world Bandwidth Utilization The Importance of Real-world Performance Several technologies have been introduced or have evolved over time that change how traffic must be treated over the network. That mix of technologies affects the efficiency of routing hardware and places new demands on the intelligence incorporated into a router. What s more, each technology may have different requirements in how it is routed across a WAN. For example, VPN traffic requires encryption and decryption to be performed by the router, while VoIP traffic requires that latency is minimized to improve call performance. Virtualization technologies place further demands on a router, where virtulization s display protocols often use significant bandwidth and require a low latency connection to provide an acceptable end user experience. Simply put, new technologies place new demands on routers and real-world performance proves to be the primary metric to judge the suitability of a router. What s more, that performance must be balanced against costs, and issues such as future proofing must be added to the mix. routers configured for Ethernet WAN and LAN connections consistently outperformed the models in a number of test scenarios including firewall with NAT and firewall with NAT and VPN. Although these numbers definitively showed superior performance, in a poll of IT managers, it was determined that in most real-world network examples of today s traffic flows, approximately 6 percent of traffic is often routed through a NAT-enabled firewall, with the remaining 4 percent of the traffic load utilizing VPN tunnels. Therefore, to make these tests even more authentic to that of a real-world condition, not only was the traffic mix representative, but the bandwidth utilization was also adjusted to mimic that of a true SME networking environment by splitting the bandwidth into this 6/4 arrangement. The chart below clearly shows continued superior routing performance for all three models of branch office routers, yielding up to 377 percent greater throughput than the comparable model. Mbps 3 25 2 15 1 5 166% 1 1 71% 377% 8 6 4 2 8 6 4 2 443 3925 345 2911 343 1941

Test Scenario 4 Real-world Traffic is in the Mix IMIX Typically, businesses have a need for a routing product that accommodates multiple functions and can handle an array of traffic types simultaneously. A typical traffic mix would include both firewall and VPN traffic. Likewise, testing individual packet sizes provides a throughput estimate but is not indicative of a services enabled environment or real-world product and application usage. To more accurately assess the head-to-head performance of each routing engine, these performance tests used an industry-accepted mix of traffic patterns, types, and sizes called IMIX (Internet Mix). IMIX simulates real Internet traffic patterns and distributions for data access. Using an IMIX traffic distribution provides a real-life modeling of user traffic with various profiles that include traffic patterns based on real-world sampling of Internet traffic, VoIP, a variety of business applications, and web browsing. Engineers used a Spirent Test Center to test each router using an IMIX 741 packet profile with a traffic distribution of 66 byte packets with a weighting of 58 percent (7 66 byte frames) of the load, 594 byte packets for 33 percent of the traffic load (4 594 byte frames), and 1518 byte packets for the remaining 8 percent of the traffic load (1 1518 byte frame), which provided a variation in packet sizes tested from small to large packets with a test run time of 3 seconds. Technical Results The three tests showed that with services enabled, branch office routers consistently outperformed the comparable models. The chart below demonstrates the raw throughput results for each test performed and the overall percentage of increased performance by the routers. Internet Security Secure Corporate Connectivity Real-world Bandwidth Utilization 343 187,737,872 bps 57,324,813 bps 87,624,264 bps 153% 23% 1941 74,17,992 bps 46,612,143 bps 18,367,765 bps 377% 345 187,737,872 bps 81,48,678 bps 88,45,72 bps 136% 54% 2911 79,693,768 bps 53,26,288 bps 51,438,48 bps 443 771,62,656 bps 131,18,432 bps 259,317,128 bps 285% 87% 3925 2,111,464 bps 69,958,728 bps 97,318,939 bps 71% 166% Technology Behind the Numbers The performance improvement offered by the equipment is due to a combination of factors, ranging from the processing power contained within the router, efficient firmware and the incorporation of s innovative RapidRoute technology. Any way you slice it, offered a performance boost over the comparable product. s RapidRoute technology enabled each router to meet the high performance needs of high-speed Ethernet services. The revolutionary RapidRoute technology interprets session traffic and the performance-injected 343, 345, and 443 platforms deliver faster processing cycles and therefore make higher-speed routing decisions. Even with processorintensive services enabled, like Firewall, NAT, VPN, and even QoS, the Modular and Multiservice Routers with RapidRoute technology outperform the competition with higher throughput to accommodate today s larger-bandwidth applications.

More than Just the Numbers 5 Qualified testing has shown that s Series of routers offer significant performance increases over competing products, such as those from. also offers significant Return on Investment (ROI) advantages over s similar products, and lowers the Total Cost of Ownership (TCO) of routing technology, in general. Ease-of-Use The Series is designed to make implementation, deployment, and maintenance simple, resulting in saved time and money for your network. s line of routers, switches, wireless access points, business gateways, telephony, and unified communications solutions merge seamlessly into existing networks, and are easy to configure and operate. All network products are standards-based for ease of integration in multi-vendor network environments and provide a breadth of ease-of-use features that make it easy to install, manage, and monitor the network. Wireless Controller The Series features a standards-based wireless LAN solution with a centralized control architecture for easy deployment and management. routers are Wi-Fi access controller capable and can manage up to 24 Wi-Fi products. This allows the entire wireless LAN network, to be centrally managed from a single device. Unlike many competing Wireless LAN (WLAN) controller solutions, routers offer wireless management at no additional charge. VoIP-ready s Series of routers are VoIP-ready with QoS, hierarchal QoS, Class of Service (CoS), SIP Transparent Proxy, Net Flow 9 Traffic Monitoring, and Voice Quality Monitoring (VQM). As voice and data networks converge into a single communications network, QoS is of the utmost importance. QoS allows a network to provide better service to selected traffic and enables the network to handle both mission-critical and besteffort traffic on the same infrastructure. VQM moves beyond QoS and can save network administrators valuable time in the troubleshooting process by examining the full data stream and identify problem areas down to the packet level in an easy-touse, graphically-intuitive interface. VQM captures data for Mean Opinion Score (MOS), jitter, delay, and packet loss statistics necessary to troubleshoot VoIP calls. Management The Command Line Interface (CLI) mimics the de facto industry standard, and is both familiar and easy to use. It supports multiple configuration scripts to simplify setup of local and remote units. Using the Web-based GUI and setup wizards with a set of pre-determined parameters allows users to quickly prepare the unit for operation. products provide a troubleshooting and diagnostics webpage that details any errors or problems in configuration and offers possible suggestions. Security The Series of routers provides a stringent line of defense against common security threats to your network. The security portfolio features a stateful inspection firewall to protect against Denial of Service (DoS) and other unauthorized access attempts; and optional IPSec-compliant VPN with DES/3DES/AES encryption to secure transmissions across a public infrastructure. Innovative features like the security audit tool allow network users to quickly and easily assess configuration of devices in the network to determine wired and wireless network threats and possible vulnerabilities and provides suggested changes based on industry best-practices for network security. Warranty and Support provides an industry-leading five-year warranty and world-class support on all their router platforms. This affords IT staff the ability to invest wisely in networking hardware without incurring ongoing expenses for support. also believes there is no need for costly maintenance contracts just to keep your devices up-todate with the latest firmware. With routers, firmware upgrades are included for the life of the product, so IT funds can be utilized for items that move your network into the future and not just for maintaining existing equipment.

Product Comparison Matrix 6 443 3925 345 2911 343 1941 Features 443 3925 345 2911 343 1941 IP Router Stateful Inspection Firewall IPSec VPN Quality of Service (QoS) Voice Quality Monitoring (VQM) WAN Slots 3 4 2 4 1 2 1/1Base-T Ports 1 2 2 1/1/1Base-T Ports 2 3 3 2 SFP Fiber Interface Compact Flash Content Filtering Remote Survivability Command Line Interface Web GUI Warranty Firmware 2 2 5-year Free 9-Day Under Contract 5-year Free 9-Day Under Contract 5-year Free 9-Day Under Contract Form Factor 1U 3U 1U 2U 1U 2U Cost Dimensions Weight Power 1.75 H, 17.25 W, 11 D 5.25 H, 17.25 W, 18.75 D 7.5 lbs. 39 lbs. 75 W 1 W 1.25 H, 17.25 W, 7.75 D 3.5 H, 17.25 W, 12 D 7.5 lbs. 18 lbs. 4 W 5 W 1.72 H, 1.5 W, 5.8 D 3.5 H, 13.5 W, 11.5 D 4 lbs. 12 lbs. 25 W 35 W MSRP $3,89 $1,895 $2,44 $3,595 $1,29 $2,495 Test Summary Internet Security 443: 285% higher performance 345: 136% higher performance 343: 153% higher performance Secure Corporate Connectivity 443: 87% higher performance 345: 54% higher performance 343: 23% higher performance Real-world Bandwidth Utilization 443: 166% higher performance 345: 71% higher performance 343: 377% higher performance Frank Ohlhorst Lab Director/Product Analyst Frank J. Ohlhorst is an award-winning technology journalist, professional speaker and IT business consultant with over 25 years of experience in the technology arena. Frank has written for several leading technology publications, including ComputerWorld, TechTarget, PCWorld, ExtremeTech and Toms Hardware. Frank s testing background started when he joined CMP Technology s Channel group in 1999 as a Technical Editor assigned to the CRN Test Center, within a year, Frank became the Senior Technical Editor, and was responsible for designing product testing methodologies, assigning product reviews, roundups and bakeoffs to the CRN Test Center staff. In 23, Frank was named Technology Editor of CRN. In that capacity, he ensured that CRN maintained a clearer focus on technology and increased the integration of the Test Center s review content into both CRN s print and web properties. For more information, visit Ohlhorst.net and are registered trademarks of, Inc. and its affiliates in the U.S. and certain other countries. All other trademarks mentioned in this document are the property of their respective owners. This product test was commissioned by and created independently by Frank J. Ohlhorst.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information