| reply to CCSomething
Re: SMARTnet said by nosx:Thats not really true anymore aryoba, the universal IOS are now shipping with a 30 year temporary key for feature packs (voice/data/security). Did I hear you right nosx with 30 YEAR TEMP licences?! Wow... just wow...
said by aryoba:you can have a little Juniper SRX 100 firewall to run not only OSPF and firewall stuff; but also virtualization, BGP, VRF, and Layer-2 VPN without special code key activation. Cisco ASA 5505 might not be able to ASA was a much needed kick in the pants from the dated PIX line in terms of performance,
but serious Cisco needs to go to ASA G2 (or whatever you want to call it) IMO. First
on the wishlist, stop with the silly "every feature is a licence" idea.
Regards |
|
|
|
 mikeeoPremium
join:2000-03-12
Newark, DE | reply to mbruno
said by mbruno:said by cramer:said by mbruno:don't choke off your money supply (the learning student) Heh. Students are not where Cisco makes their money. The testing centers, boot camps, book writers, etc. are the one's making money on students. In the end, if you want to learn to manage Cisco toys, you need the actual toys. Sadly, there's next to no on the job learning in today's market; if you don't have a box of certificates, you don't even get an interview. This kind of stuff makes it really tough to get into networking. Not everybody is lucky enough to fall into a networking job, some of us have to work other stuff like being a Sys. Admin and then hope we can jump over to the Network side of things after we jump through the hoops, which by the way is not guaranteed. Cramer I do agree with you about the money thing. What I meant was without the student, there would be no book writers or boot camps for Cisco to make the kind of money they do. In some ways, I am glad Juniper is given Cisco a run for their money. Don't misunderstand me, I like learning about Cisco but they need to quit being greedy to the little guy. Sooner or later Cisco will catch on that they need to be more competitive to complete with Juniper or Juniper will eat their lunch. I can say for sure where I work that the management is starting to phase out the Cisco equipment and replace them with Juniper products. I ask one of the Network Engineers why are we move vendors and was told Management saw how much less expensive using Juniper Equipment was compared to Cisco. I was also told that Cisco will not budge from their price when they told this to the Cisco rep what they were going to do if they didn't lower the price. My guess is that the Cisco Rep. didn't believe we would move to Juniper. So I guess it was a game of chicken and Cisco lost the game. I see this every once in a while. Juniper gives an 80% discount to displace Cisco and makes the customer purchase a 5-7 yr maintence agreement at LIST price.
Ever called Juniper support? ever looked at the documentation?
There is a reason why Cisco don't discount like Juniper...they don't have too. |
|
aryobaPremium,MVM
join:2002-08-22
kudos:1 | said by mikeeo:I see this every once in a while. Juniper gives an 80% discount to displace Cisco and makes the customer purchase a 5-7 yr maintence agreement at LIST price.
Ever called Juniper support? ever looked at the documentation?
There is a reason why Cisco don't discount like Juniper...they don't have too.
It is not always the case where you as a customer purchase 5-7 year maintenance agreement. There are other ways that resellers made up the loss I'm sure 
Documentation wise, Juniper website is not as good as Cisco's. In addition, Juniper usually suggest to upgrade the JUNOS code every 3 months or so for those that use specific feature like virtualization. If your environment is ISP like where it is mostly BGP or OSPF routing in addition to some switching, then you may not need to upgrade that often.
There is a story where Level-3 core routers were down due to bugs in their Juniper JUNOS code. So it may be wise to have redundant Cisco and Juniper routers/switches as your cores.
Another downside of Juniper was that Juniper never indicated which JUNOS code was considered "stable". With Cisco, there is a star sign next to their stable IOS code so it is easier for users to pick the most suitable code for their need.
In regards of calling the tech support, I would say it would be equal between Cisco and Juniper. The first person that pick up the phone is always the clueless person which is challenging when you have Priority-1 situation. With this situation, some companies have Cisco and Juniper resident engineers for such dedicated support. |
|
aryobaPremium,MVM
join:2002-08-22
kudos:1 | reply to HELLFIRE
said by HELLFIRE:said by nosx:Thats not really true anymore aryoba, the universal IOS are now shipping with a 30 year temporary key for feature packs (voice/data/security). Did I hear you right nosx with 30 YEAR TEMP licences?! Wow... just wow... said by aryoba:you can have a little Juniper SRX 100 firewall to run not only OSPF and firewall stuff; but also virtualization, BGP, VRF, and Layer-2 VPN without special code key activation. Cisco ASA 5505 might not be able to ASA was a much needed kick in the pants from the dated PIX line in terms of performance, but serious Cisco needs to go to ASA G2 (or whatever you want to call it) IMO. First on the wishlist, stop with the silly "every feature is a licence" idea. Regards Certain companies prefer Juniper SRX firewall to Cisco ASA due to performance. Heavy firewall and inspection stuff on ASA will put a significant load while SRX does not even blip.
However handling Juniper in general is not as simple as Cisco. You may have to understand some UNIX stuff to deal with Juniper, not to mention the syntax can be confusing when you are used to Cisco IOS structure.
There are certain aspects that JUNOS does not support compared to Cisco. One example JUNOS does not support is inability to run multiple OSPF routing domain to share the same routing table where you can simply run multiple OSPF routing domain in Cisco IOS with different Process ID. |
|
aryobaPremium,MVM
join:2002-08-22
kudos:1 | reply to carp
said by carp:Learn Networking, not syntax!
I agree. Understanding IP protocols takes you long way while remembering syntaxes only get you to certain point. For this one reason I do not agree when certain people insist you to memorize whole bunch of commands and syntaxes without understanding the protocols as a focus. |
|
| reply to CCSomething
said by aryoba:Certain companies prefer Juniper SRX firewall to Cisco ASA due to performance. Heavy firewall and inspection stuff on ASA will put a significant load while SRX does not even blip. You do have to give that ASA is ALOT older than SRX, especially in terms of processing
hardware -- AMD Geode / S478 P4 technology circa 2005 versus the Cavium mulit-core
circa 2009-2010?.
Will give that neither Juniper nor Cisco seem to have cracked the all-in-one appliance
with multi-gigabit interfaces and inspection speeds in the entry-level enterprise arena.
Closest I saw was SRX210 / 240 which runs in the 2K+ range.
Regards |
|
| OT -- I picked up my 210 for home for 400 quid! |
|
aryobaPremium,MVM
join:2002-08-22
kudos:1 | reply to HELLFIRE
said by HELLFIRE:said by aryoba:Certain companies prefer Juniper SRX firewall to Cisco ASA due to performance. Heavy firewall and inspection stuff on ASA will put a significant load while SRX does not even blip. You do have to give that ASA is ALOT older than SRX, especially in terms of processing hardware -- AMD Geode / S478 P4 technology circa 2005 versus the Cavium mulit-core circa 2009-2010?. I think Cisco ASA was designed to compete with Juniper Netscreen or SSG. I agree that Cisco needs to step up in order to compete with SRX product line. |
|
aryobaPremium,MVM
join:2002-08-22
kudos:1 | reply to HELLFIRE
said by HELLFIRE:Will give that neither Juniper nor Cisco seem to have cracked the all-in-one appliance with multi-gigabit interfaces and inspection speeds in the entry-level enterprise arena. Closest I saw was SRX210 / 240 which runs in the 2K+ range.
The beauty of SRX 210 and 240 firewall product line is that it is originally designed as firewall with T1 module support (Juniper calls module as PIM) in addition to BGP and VRF functionality. Cisco tried to compete with the ZBF (Zone-Based Firewall) feature embedded into the 1900 router IOS product line, which was more of router with firewall functionality.
The 2K+ price range was probably the SRX 240 where the SRX 210 should be $1K or under similar to Cisco ASA 5505 price range. With any luck, you could probably pick up SRX 210 off ebay for about $300 |
|
| reply to CCSomething
said by HELLFIRE:Closest I saw was SRX210 / 240 which runs in the 2K+ range. Correction, meant the SRX220, and last I checked, brandnew a 220 would set
you back around 2K. Otherwise, looks like a sweet piece of gear to get
with 8GigE interfaces and 950Mbps (claimed) throughput.
Regards |
|
