BFD and fast-external-fallover (but set carrier-delay if you get microflaps)
Dave.
John Elliot wrote:
Hi,
We have 2 upstreams, in two seperate locations(both only advertising default
route to us) - both of our edge routers have a floating static default to the
other edge should we lose
Hi,
We have a VSS domain, with 2 BGP upstream connections (to the same AS), one on
each domain-switch...
In BGP we set maximum-paths 2 I like to know if there is a way to load-balance
over both links outgoing traffic.
I do see both bgp routes in the routing table but VSS is prefering the link
On Wed, 10 Nov 2010 10:53:37 +0100, you wrote:
I have tried to look up if Cisco ASA 5520 (or any other cisco ASA
model) supports QinQ tagged vlans, but been unable to find out if it
supports this functionality.
It doesn't.
-A
___
cisco-nsp mailing
You could use the nat pool of type match-host, the last octet will match then
ip nat pool one2one 172.16.10.1 172.16.10.254 netmask 255.255.255.0
type match-host
On Wed, Nov 10, 2010 at 9:29 AM, Ziv Leyes z...@gilat.net wrote:
You could use a 255 addresses pool like:
ip nat pool NAT
Hi.
I have tried to look up if Cisco ASA 5520 (or any other cisco ASA
model) supports QinQ tagged vlans, but been unable to find out if it
supports this functionality.
Maybe someone on this mailing list knows?
Thanks!
Cheers
Kristoffer Björk.
___
In IPv4, all protocol control packets carry TOS value of c0.
I guess same value should be used in IPv6 protocol control packets.
But CISCO sends all control packets (OSPFv3, Router solicitation, neighbor
solicitation etc) with e0 as traffic class.( CISCO IPv4 control packets have
c0.)
Why this
Hi,
On Tue, Nov 09, 2010 at 01:33:25PM -0500, Jared Mauch wrote:
How about 1pm CET and 1pm EST tomorrow?
*done*.
Calling TAC is amazingly convoluted. (I've never done that before, I
always open cases per web interface, so this was a new experience for
me - figuring out whether I'm entitled
Are the SSH sessions getting hung? What do you see in show resource
usage all? Does it look like all of the SSH sessions are being used
(even if they aren't actively in use)?
-Pete
On Tue, Nov 9, 2010 at 2:23 PM, Ryan West rw...@zyedge.com wrote:
On Tue, 2010-11-09 at 13:35 +, Matthew
I've got a weird problem that I hope someone can shed some light on. We
have multiple 3560G's deployed currently, each utilizing 4 SFP's for uplink.
The switches are configured with 2 L2 port-channels, with a different SVI in
each port-channel pointing to our upstream router. IE:
g0/49 + g0/51
(a.) Running Cisco 7206VXR with NPE-G2
(b.) Currently running c7200p-advipservicesk9-mz.122-33.SRD1.bin.
(b.) Router terminates L2TP/Pppoe Connections for ADSL. Router also
terminates data T1 connections piped in via channelized DS3.
Problem is: every few weeks, the router resets itself, with an
The mechanism you want to investigate is BFD to check if the BGP neighbor
is reachable, not lowering BGP hold timers. BFD might give you anything
from 100 ms to 3 seconds of detection time depending on platform, changing
BGP hold timers to less than ~10 seconds is usually unreliable.
On Tue, Nov 9, 2010 at 8:34 PM, Chris Evans chrisccnpsp...@gmail.comwrote:
Is the port going down? Or it stays up during this failure. Different
failures require different mechanisms...
Correct, basically if you have to wait for the peer to timeout because there
was no interface state
On 10.11.2010 20:33, Dominic Ogbonna wrote:
Does anyone have any thoughts as to what could be wrong? Any suggestion for
IOS version?
Are you sure it's not something in the HW?
Apart from that, not running on a G2 but multiple 3825, and probably a
bit outdated, but we've not had any problems with
On Thu, 11 Nov 2010, John Elliot wrote:
Thanks for the info - Is it necessary for the Upstream to also configure
bfd on their side?
Yes.
I would have something like this under L3 Interface to Upstream?:
bfd interval 100 min_rx 100 multiplier 3
And under bgp:
neighbor UPSTREAM fall-over
On 10/11/2010 22:01, John Neiberger wrote:
I ran into a problem with an OIR last night on a 7609. I normally
don't like to do them. I usually prefer to power the router down
first, replace/add the card and then power it back up. It caused all
sorts of fun when it failed the initial startup and
It's true. Bad things can happen. Primary one is buss stall. They are
not supposed to happen anymore but there are bugIDs out there that
prove they do. During buss stall we can't do forwarding lookups to PFC
(pretty sure DFC lookups still work). Even worse is that during buss
stall
On Wed, Nov 10, 2010 at 6:44 PM, Scott Weeks sur...@mauigateway.com wrote:
Do you think (or is there evidence) that very many ASs use maxas-limit type
commands? I have never used it and never had any problems...
we do bgp maxas-limit 50 to avoid as-path triggered bugs. Google
around if you
On Wed, Nov 10, 2010 at 5:28 PM, Benjamin Lovell belov...@cisco.com wrote:
It's true. Bad things can happen. Primary one is buss stall. They are not
supposed to happen anymore but there are bugIDs out there that prove they
do. During buss stall we can't do forwarding lookups to PFC(pretty sure
Good ole' On Insert: Reload. Yeah the bus stalls are priceless, you're
best bet is to plan like you're taking down the router, and if it works, hey
you just saved some downtime, and are done early. That being said, at least
the actual crashes aren't terribly common, so you can do low risk stuff
I agree with David.
Nothing rules out the chance you are the lucky winner of a new bug.
See what TAC has to say, they can decode the crash output and tell you
what's going on.
-Pete
On Wed, Nov 10, 2010 at 4:13 PM, David Rothera david.roth...@gmail.com wrote:
The fact that you have had the
Try to keep an eye on this, I know there are some bugs in 8.2 related
to ssh hangs.
You could always try to configure telnet to see if telnet hangs as
well when ssh is broken. SSH and telnet are treated as completely
different processes inside the ASA IOS.
Maybe tie it to a single user with priv
On Wed, Nov 10, 2010 at 11:26:36PM +, Nick Hilliard wrote:
So yeah. Annoying, but there you go. Usually you'll get away with
it, but if your application is unforgiving of a 5 minute reboot during
production hours, then you may want to consider a maintenance window.
5 minutes? What
SegV is most certainly not always software. Stuck bits in IO memory or in
memory used by a PPP session description could easily cause a SegV. The POST
isn't completely exhaustive. examining the crash dumps can help discern if
its a hardware or software issue. I wouldn't rule out either. Open a TAC
I would have something like this under L3 Interface to Upstream?:
bfd interval 100 min_rx 100 multiplier 3
And under bgp:
neighbor UPSTREAM fall-over bfd
Something like that, the values might be different depending on what
platform you're running.
Thanks everyone for the
Michael,
'stuck bits'?
SegV exceptions are _always_ caused by software bugs.
http://bit.ly/98QqhO
eninja ;-)
On Nov 10, 2010, at 8:56 PM, Michael Loftis mlof...@wgops.com wrote:
SegV is most certainly not always software. Stuck bits in IO memory or in
memory used by a PPP session
25 matches
Mail list logo
