Hi Everyone
Our Cisco core switch 4900m has taken a turn for the worse, we quickly replace this with something we had in our lab, a ubiquiti ER-12 router, but now the entire network is bottlenecked to 1Gbits, so we are looking towards the 10gb routing solutions by Mikrotik.
Our setup is as follows,
Full Windows domain network with dns and dhcp on the domain controllers.
We have 9 vlans all on different subnets, all vlans except 2 need to be able to access traffic from each other, including the server vlan.
Like Cisco we need to route all Internet bound traffic to a specific ip 10.210.143.252. On the cisco switch it is setup as ip route 0.0.0.0 0.0.0.0 10.210.143.252.
This ip address is our main firewall which has a transparent url filter in between this and the cisco switch.
We need to be able to use dhcp relay or ip helper to the domain controllers for dishing out dhcp addresses.
The arp cache table needs to be able to take 4096 addresses.
We won’t be using the firewall, Nat or traffic inspection on the Mikrotik
Would this model MikroTik CCR1036-8G-2S+ be able to do this using the 10gb sfp+ sockets and can you team/bond these together to get 20gbits bandwidth of vlan routing performance and then use a 1gb port for the connection to the firewall which is 10.210.143.252 on vlan 5.
Thanks in advance.
And I hope it will fit the bill, I will be ordering tomorrow if this is the case.
The OP was specifically asking about inter-VLAN routing performance. The CRS devices are ill-suited to that role as they are primarily designed as layer2 switches with limited layer3 support. Although there is tentative support for layer3 hardware offloading in RouterOS 7 for a handful for CRS3xx devices this is very much beta and not really suitable for a production environment.
The published test results for the CCR1036-8G-2S+ are here https://mikrotik.com/product/CCR1036-8G-2Splus#fndtn-testresults - significantly less than the hardware routing on a 4900M. If not using firewall or NAT so fastpath is used it is probably capable, but I haven’t used a CCR in this scenario to say so for definite.
Thankyou for your replies, the 36 core mikrotik router looks like it would do the trick pretty well.
We would only be using intervlan routing, to for example vlan 15 - 10.210.128.5 client can get to vlan 5 - 10.210.143.10.
The other 2 things we would need is dhcp relay to a windows dhcp server and 0.0.0.0 0.0.0.0 to 10.210.143.252 default route out which is the firewall address.
We would not need any firewall or Nat features, just the power to give around 20gbits of routing power between vlans, the Internet is 1gbit full duplex.
Would this not do the trick? As I quite like the language pvid and tag, this speaks the same language as netgear and unifi which we have plenty of, we were hoping to phase out our remaining 10 cisco switches.
I see it has routing capability and the forwarding rate is double of what the cisco can do, how big is the arp cache table on this switch?
Do the Mikrotik switches actually do routing of vlan traffic?
This switch has routing capacity of a few 100Mbps. As @tdw already mentioned, this number will sky-rocket with ROSv7. However ROSv7 unfortunately seems far from being production-ready. And yes, all Mikrotik switches (most notably the CRS product line) when running RouterOS (as opposed to SwitchOS) do have routing capabilities but with very low capacity.