Security is an increasing concern for today’s operators, and the Brocade NetIron XMR routers offer a powerful set of security mechanisms that allow operators to enhance both infrastructure security and subscriber security. The NetIron XMR routers feature highly scalable inbound and outbound ACLs, which allow operators to implement IPv4, IPv6, and Layer 2 security policies. These policies can be applied permanently or on demand without impacting normal operations. Receive ACLs further harden platform and infrastructure security, allowing operators to implement strict policies for controlling management traffic and control traffic. To counter IP address spoofing used in many forms of DoS attacks, the NetIron XMR routers offer hardware-based wire-speed Unicast Reverse Path Forwarding (uRPF) for both edge applications (strict mode), and backbone applications (loose mode). uRPF allows the routers to check the packet’s source IP address against the routing table to ensure that the packet came from a valid, and expected, source network.
Using the Brocade NetIron XMR routers, operators can combine the benefits of SONET/SDH long haul transport and the abundance of cost-effective capacity of Carrier Ethernet in many POPs. The routers offer a portfolio of native POS interfaces with speeds ranging from OC-12 (STM-4) to OC-192 (STM-64), allowing for native connectivity to SONET/SDH optical transport equipment or to existing POS routers with distances up to 80 km. Carrier Ethernet interfaces offer distances up to 80 km for 10- GbE, and up to 150 km for GbE. In addition, the routers offer operators cost-effective
10-GbE transport over OC-192 (STM-64) links using IEEE standard 10-GbE WAN PHY.
KEY FEATURES
Service provider-grade IPv4/IPv6/MPLS multi-service backbone routers 4-, 8-, 16-, and 32-slot systems for maximum deployment versatility Terabit-scale architecture designed for massive 10-GbE and OC-192 scalability Performance of competitor multi-chassis routers in a fraction of the rack space:
•Up to 2 billion pps routing performance with non-blocking 3.2 Tbps data capacity
Industry-leading port capacity for a single chassis router:
•128 10 Gigabit Ethernet/640 Gigabit Ethernet ports
•64 OC-192/256 OC-48 ports
Wire-speed dual stack IPv4/IPv6 routing
Wire-speed edge (PE) and core (P) Label Switching Routers
Industry-leading performance for MPLS services providing concurrent IP over MPLS, Virtual Leased Lines (VLLs), Virtual Private LAN Services (VPLSes), and BGP/MPLS VPNs at wire speed
High-performance, robust routing via Brocade Direct Routing (FDR) for complete programming of the Forwarding Information Base (FIB) in hardware
Full suite of unicast and multicast IPv4 and IPv6 routing protocols:
•Supported IPv4 protocols include RIP, OSPF, BGP-4, IS-IS, PIM-DM, PIM-SM/SSM, IGMP, BGP-MP for multicast, and MSDP
•Supported IPv6 protocols include RIPng, OSPFv3, IS-IS for IPv6, BGP-MP for IPv6 (BGP4+), PIM-SM/SSM, and MLD
Comprehensive MPLS signaling and path calculation algorithms for both traffic engineered and non-traffic engineered applications:
•OSPF-TE, IS-IS-TE, RSVP-TE, CSPF
•LDP
Powerful Multi-VRF Routing supports virtual routing applications over non-MPLS backbones
Industry-leading scalability up to:*
•10 million BGP routes
•1 million IPv4 routes in hardware (FIB)
•240,000 IPv6 routes in hardware (FIB)
•2000 BGP peers per system
•2,000 BGP/MPLS VPNs and up to 1 million VPN routes
•32,000 VLLs per system
•16,000 VPLSes and up to 1 million VPLS MAC addresses
•4,094 VLANs and up to 2 million MAC addresses8-path Equal Cost Multipath (ECMP)
Superior high-availability design:
•Redundant management modules
•Redundant switch fabrics
•Redundant power supplies and cooling system
•Hitless Layer 3 and Layer 2 failover with OSPF and
•BGP graceful restart
•Hitless (in-service) software upgrades leveraging graceful restart
