Re: [c-nsp] ARP on ASR9k 4.3.2
On Fri, 17 Jan 2014, Mark Tinka wrote: IOS is riddled with no ip blah to turn off stupidity. If they start going down this path with IOS XR, the clean slate will have been for nothing. I agree. Sensible defaults has been a good thing in XR. Was the ARP change even documented? I would guess not, since arp learning local search finds the only mention at all in this thread. Even on www.cisco.com arp learning local gives no hits apart from the bug ID description. For instance, the command isn't documented in http://www.cisco.com/en/US/partner/docs/routers/asr9000/software/asr9k_r4.3/addr_serv/command/reference/b_ipaddr_cr42asr9k_chapter_010.html. -- Mikael Abrahamssonemail: swm...@swm.pp.se ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] ASR9K nvEdge errors
Hi, we are constantly getting this error: LC/1/2/CPU0:Jan 17 10:27:37.591 : l2fib[243]: %PLATFORM-PLAT_L2FIB-6-HW_INIT_INFO : Failed to init Platform HAL Layer : 'prm_server' detected the 'warning' condition 'An operation that was requested was aborted - data integrity may be compromised.' (1165763072) LC/1/2/CPU0:Jan 17 10:27:37.641 : sysmgr[91]: l2fib_mgr(1) (jid 243) (pid 30855332) (fail_count 7407) abnormally terminated, restart scheduled LC/1/2/CPU0:Jan 17 10:27:37.642 : sysmgr[91]: %OS-SYSMGR-3-ERROR : l2fib_mgr(1) (jid 243) exited, will be respawned with a delay (slow-restart) LC/1/2/CPU0:Jan 17 10:27:37.643 : sysmgr[91]: %OS-SYSMGR-3-ERROR : l2fib_mgr(243) (fail count 7407) will be respawned in 120 seconds LC/1/2/CPU0:Jan 17 10:27:37.643 CET: sysmgr[91]: %OS-SYSMGR-7-DEBUG : l2fib_mgr(1) (jid 243) did not signal end of initialization LC/1/2/CPU0:Jan 17 10:29:45.702 : l2fib[243]: %PLATFORM-PLAT_L2FIB-6-HW_INIT_INFO : Failed to init Platform HAL Layer : 'prm_server' detected the 'warning' condition 'An operation that was requested was aborted - data integrity may be compromised.' (1165763072) LC/1/2/CPU0:Jan 17 10:29:45.753 : sysmgr[91]: l2fib_mgr(1) (jid 243) (pid 30859428) (fail_count 7408) abnormally terminated, restart scheduled LC/1/2/CPU0:Jan 17 10:29:45.753 : sysmgr[91]: %OS-SYSMGR-3-ERROR : l2fib_mgr(1) (jid 243) exited, will be respawned with a delay (slow-restart) LC/1/2/CPU0:Jan 17 10:29:45.754 CET: sysmgr[91]: %OS-SYSMGR-7-DEBUG : l2fib_mgr(1) (jid 243) did not signal end of initialization LC/1/2/CPU0:Jan 17 10:29:45.754 : sysmgr[91]: %OS-SYSMGR-3-ERROR : l2fib_mgr(243) (fail count 7408) will be respawned in 120 seconds anyone knows whats happening? thanks for help ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] ASR9K policy-map with more than 10G rate
Hello, I have two 10G ports on ASR9K aggregated to the bundle interface. The following policy is configured: ipv4 access-list ANY-to-ANY 10 permit ipv4 any any class-map match-any ANY match access-group ipv4 ANY-to-ANY end-class-map policy-map 10.5G-STRICT class ANY police rate 10500 mbps conform-action transmit exceed-action drop I get the following error while trying to attach the policy-map to the bundle-ether interface: % Failed to commit one or more configuration items during a pseudo-atomic operation. All changes made have been reverted. Please issue 'show configuration failed' from this session to view the errors How can one figure out? Thanks. -- Regards, Anton Turygin ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Nexus 7K vPC with Object Tracking
Hi Folks, Topology is something like two N7K have two downstream N5K running dual vPC. Each N7K is single homed with core. So since each N7K learns remote networks for that only core link so if the link goes down the traffic black hole because both N7K are not exchange routes. I want to configure object tracking under vpc so if uplink core link goes down, tracking bring down the downlinks toward N5K. Is anybody using object tracking ? are there any drawbacks/limitations or any design consideration. Please share your thoughts. Thanks Regards ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Amount of buffers on ASR9001
Hi Daniel, Try to contact Alexander Thuijs from Cisco he's the ASR9k guru. adam -Original Message- From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of daniel@reaper.nu Sent: Friday, January 03, 2014 1:51 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Amount of buffers on ASR9001 Hi list, I want to find out how much buffers are available on Cisco ASR 9001, both for integrated ports and for MPA such as A9K-MPA-4X10GE. I would greatly appreciate if anyone has these available. I'll try to ping some Cisco people as well but often it's faster to ask here. Thanks. Best regards, Daniel Dib CCIE #37149 ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Amount of buffers on ASR9001
Or, put on your helmet and watch this: https://www.ciscolive365.com/connect/sessionDetail.ww?SESSION_ID=7939backBtn=true -dan Dan Brisson Network Engineer University of Vermont (Ph) 802.656.8111 dbris...@uvm.edu On 1/17/2014 8:52 AM, Adam Vitkovsky wrote: Hi Daniel, Try to contact Alexander Thuijs from Cisco he's the ASR9k guru. adam -Original Message- From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of daniel@reaper.nu Sent: Friday, January 03, 2014 1:51 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Amount of buffers on ASR9001 Hi list, I want to find out how much buffers are available on Cisco ASR 9001, both for integrated ports and for MPA such as A9K-MPA-4X10GE. I would greatly appreciate if anyone has these available. I'll try to ping some Cisco people as well but often it's faster to ask here. Thanks. Best regards, Daniel Dib CCIE #37149 ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] ARP problems with UCS FI 6140XP
I have a host that is receiving netflow UDP exports. A couple times a day the export flow stops. The MAC address is getting dropped from the FI MAC address table. A simple HTTP access to the host restores the MAC address and the flow. It looks like CIMC logging is for system events only. Is there a way I can debug or log *network* messages (e.g., ARP, etc.) Thanks, Joe Loiacono ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] R: ARP problems with UCS FI 6140XP
Hi Don't' use the ucs stuff but this happens on regular switches as well, Microsoft clusters come to mind ... The box is probably not generating any outbound traffic and the mac times out before your arp entry does. You can shorten your arp timers or lengthen your mac timers Or have a script generate outbound traffic every X You can activate debugging to verify this ie debug ip arp for arp Brian -Messaggio originale- Da: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] Per conto di Joe Loiacono Inviato: venerdì 17 gennaio 2014 15:38 A: cisco-nsp@puck.nether.net Oggetto: [c-nsp] ARP problems with UCS FI 6140XP I have a host that is receiving netflow UDP exports. A couple times a day the export flow stops. The MAC address is getting dropped from the FI MAC address table. A simple HTTP access to the host restores the MAC address and the flow. It looks like CIMC logging is for system events only. Is there a way I can debug or log *network* messages (e.g., ARP, etc.) Thanks, Joe Loiacono ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ --- This e-mail is intended only for the addressee named above. As this e-mail may contain confidential or privileged information, if you are not the named addressee, you are not authorized to retain, read, copy or disseminate this message or any part of it. Please consider your environmental responsibility before printing this e-mail. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ARP problems with UCS FI 6140XP
Not really sure what an 'FI' is, but can you set the mac address aging time on this FI to something longer than 5 minutes, and or have the netflow collector do 'something' to send traffic, like configure NTP on it? Chuck -Original Message- From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Joe Loiacono Sent: Friday, January 17, 2014 9:38 AM To: cisco-nsp@puck.nether.net Subject: [c-nsp] ARP problems with UCS FI 6140XP I have a host that is receiving netflow UDP exports. A couple times a day the export flow stops. The MAC address is getting dropped from the FI MAC address table. A simple HTTP access to the host restores the MAC address and the flow. It looks like CIMC logging is for system events only. Is there a way I can debug or log *network* messages (e.g., ARP, etc.) Thanks, Joe Loiacono ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ARP problems with UCS FI 6140XP
Or ping its default gateway every minute. -dan On 1/17/2014 10:58 AM, Chuck Church wrote: Not really sure what an 'FI' is, but can you set the mac address aging time on this FI to something longer than 5 minutes, and or have the netflow collector do 'something' to send traffic, like configure NTP on it? Chuck -Original Message- From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Joe Loiacono Sent: Friday, January 17, 2014 9:38 AM To: cisco-nsp@puck.nether.net Subject: [c-nsp] ARP problems with UCS FI 6140XP I have a host that is receiving netflow UDP exports. A couple times a day the export flow stops. The MAC address is getting dropped from the FI MAC address table. A simple HTTP access to the host restores the MAC address and the flow. It looks like CIMC logging is for system events only. Is there a way I can debug or log *network* messages (e.g., ARP, etc.) Thanks, Joe Loiacono ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ARP problems with UCS FI 6140XP
On 17/01/2014 15:59, Dan Brisson wrote: Or ping its default gateway every minute. easier to tweak arp settings: interface GigabitEthernet1/1 arp timeout 240 Nick ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Nexus 7K vPC with Object Tracking
You might consider putting a L3 network in place between the two N7K's for routing, so that they can re-route upstream traffic through the core link on the other N7K during a failure rather than bringing the physical links down. It can just be a VLAN w/ SVI's trunked over the VPC peer link. - Oliver Garraux Check out my blog: blog.garraux.net Follow me on Twitter: twitter.com/olivergarraux On Fri, Jan 17, 2014 at 7:48 AM, Yham yhamee...@gmail.com wrote: Hi Folks, Topology is something like two N7K have two downstream N5K running dual vPC. Each N7K is single homed with core. So since each N7K learns remote networks for that only core link so if the link goes down the traffic black hole because both N7K are not exchange routes. I want to configure object tracking under vpc so if uplink core link goes down, tracking bring down the downlinks toward N5K. Is anybody using object tracking ? are there any drawbacks/limitations or any design consideration. Please share your thoughts. Thanks Regards ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] AS5350XM replacement?
Hi, Have a need to terminate Analog PPP modems for Dial backup. AS5350XM is EOL; PVDM*DM cards for ISR series are EOL also. Cisco appears to be totally getting out of Analog Dial business... have a project where there is still a need need for Analog PPP modems for dial backup... Anyone know any replacement? Like to be able to take a PRI, do PPP and have the box speak OSPF... Sean -- -- Sean Watkins 403-629-6152 ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] AS5350XM replacement?
On 17/01/2014 21:40, Sean Watkins wrote: Anyone know any replacement? I'd say check out ebay. Does _anyone_ do modems these days? Nick ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] AS5350XM replacement?
Yah they are still used allot for backup.. I see it all the time. Heck even a bunch of gear cisco sells, still has Analog modems inside for dial backup. its slow but works great for SCADA etc. Sean On Fri, Jan 17, 2014 at 3:35 PM, Nick Hilliard n...@foobar.org wrote: On 17/01/2014 21:40, Sean Watkins wrote: Anyone know any replacement? I'd say check out ebay. Does _anyone_ do modems these days? Nick -- -- Sean Watkins 403-629-6152 ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Nexus 7K vPC with Object Tracking
Thank you Oliver, If N7K switches have more than 100 vrfs and each vrf have more than one vlans then means it is required to run equal numbers of routing processes. In this case what you think which is best take: routing protocol per vrf or enabling tracking? There may be better option other than these. Regards On Fri, Jan 17, 2014 at 1:55 PM, Oliver Garraux oli...@g.garraux.netwrote: You might consider putting a L3 network in place between the two N7K's for routing, so that they can re-route upstream traffic through the core link on the other N7K during a failure rather than bringing the physical links down. It can just be a VLAN w/ SVI's trunked over the VPC peer link. - Oliver Garraux Check out my blog: blog.garraux.net Follow me on Twitter: twitter.com/olivergarraux On Fri, Jan 17, 2014 at 7:48 AM, Yham yhamee...@gmail.com wrote: Hi Folks, Topology is something like two N7K have two downstream N5K running dual vPC. Each N7K is single homed with core. So since each N7K learns remote networks for that only core link so if the link goes down the traffic black hole because both N7K are not exchange routes. I want to configure object tracking under vpc so if uplink core link goes down, tracking bring down the downlinks toward N5K. Is anybody using object tracking ? are there any drawbacks/limitations or any design consideration. Please share your thoughts. Thanks Regards ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Nexus 7K vPC with Object Tracking
Le 18 janv. 2014 à 01:32, Yham yhamee...@gmail.com a écrit : If N7K switches have more than 100 vrfs and each vrf have more than one vlans then means it is required to run equal numbers of routing processes. It seems mpls and mp-bgp are availables on n7k. This should help you to handle vrf routes distribution on 100s of vrf with very few routing processes. ++ Fd ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
