[c-nsp] IPSEC Tunnel Crash, transform set change
Anyone experience this issue and can explain why it works. Created an IPSEC tunnel with an ESP transform set to South America and it worked for a while few hours and the crashed. Spoke to another engineer who then changed the transform set to AH and brought the tunnel up and then changed back to ESP and it has worked fine since. Would anyone know why the tunnel would restore after changing the transform set back to ESP and possible what an ISP might be doing to cause the initial tunnel to crash ? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] SPA-8X1GE-V* inter frame gap
We recently had some issues with the SPA-8X1GE-V* inter frame gap. I wonder if any other users had seen this issue and solutions to the problem. Card appears to support only a receive minimum of 10 bytes whereas normally 8 (some devices support 5) appears be the minimum on 1Gb. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] SONET SRC BFD
Had a minor issue where there are sufficient errors on and SRC ring to instigate a BFD failure and disable the routing protocol but not enough to instigate a ring wrap. Which caused a routing failure and partial network outage. This was a single occurrence in several years and wondered if anyone else had had a similar incident and what they did to resolve it. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP router upgrade
If it helps, recently upgraded the corporate from a 7206 to 3925 for the corporate 1GB connection which works well and has no performance issues, full bgp table. Also using 7604s for the diverse production ISPs 10GB connex also no issues, full bgp table. Installed and forgotten. Cisco 7206VXR (NPE-G2) processor (revision A) with 917504K/65536K bytes of memory. MPC7448 CPU at 1666Mhz, Implementation 0, Rev 2.2 6 slot VXR midplane, Version 2.11 *** Cisco CISCO3925-CHASSIS (revision 1.0) with C3900-SPE200/K9 with 691200K/291840K bytes of memory. 4 Gigabit Ethernet interfaces 256K bytes of non-volatile configuration memory. 250880K bytes of ATA System CompactFlash *** Cisco CISCO7604 (M8500) processor (revision 2.0) with 851968K/65536K bytes of memory. BASEBOARD: RSP720 CPU: MPC8548_E, Version: 2.0, (0x80390020) CORE: E500, Version: 2.0, (0x80210020) CPU:1200MHz, CCB:400MHz, DDR:200MHz, 1 Virtual Ethernet interface 50 Gigabit Ethernet interfaces 16 Ten Gigabit Ethernet interfaces 3964K bytes of non-volatile configuration memory. sho mod Mod Ports Card Type Model Serial No. --- - -- -- --- 1 2 Route Switch Processor 720 (Active) RSP720-3C-GE 2 48 48-port 10/100/1000 RJ45 EtherModule WS-X6148A-GE-TX 3 8 CEF720 8 port 10GE with DFC WS-X6708-10GE 4 8 CEF720 8 port 10GE with DFC WS-X6708-10GE From: Lars Eidsheim l...@intellit.no To: cisco-nsp@puck.nether.net cisco-nsp@puck.nether.net Sent: Friday, August 12, 2011 7:31 AM Subject: [c-nsp] BGP router upgrade Hi all, I am looking for a thoughts about a BGP edge router upgrade. I am planning to upgrade our BGP edge from a Cisco 7200/NPE-G1. The NPE-G1 suits our needs at the moment, but as we are looking to interconnect with more services, do more localpeerings and implement IPv6 in near future this might a good timing to upgrade. As we are running a few 6500s in our network already I was thinking to install a 6500 with SUP720-3BXL and a 6724-SFP linecard to replace our existing 7200 platform. The 3BXL will keep-up with full BGP feed and the platform can easily be upgraded to 10 gbit/s with a new line card (in example 6704-10GE). I know others are using the 6500/SUP720-3BXL for this purpose, but as the 6500 is designed a switch platform i would like hear others opinion on the subject? Maybe I should be looking to other platforms as well, like Huawei or Juniper? Rgrds Lars Eidsheim This email has been scanned and secured by Intellit This communication is for use by the intended recipient and contains information that may be privileged, confidential and exempt from disclosure or copyrighted under applicable law. If you are not the intended recipient, you are hereby formally notified that any dissemination, use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] pseudowire
I am trying to create a psuedowire between two 7600 routers and don't seem to be able to get the VC up. I can do it between two 3700 routers at each end but with the 7600s the VC shows DOWN. The infrastructure is the same (testing in a lab environment). Has anyone ever used a pseudowire between two 7600's ? Trunking is not an option. Diag here, just swap 3725s for 7600s in diag and use int gi4/48 for fe0/0, int gi4/47 swpt acc 222 for Fe 0/1 and created int vlan 222 to add the xconnect statement. http://nncooper2.fortunecity.com/psmpls/LAB%20MPLS6.jpg Any help/ideas appreciated. 7604C#show mpls l2 vc 21 56 LAB TAS B02 Local intf Local circuit Dest addressVC ID Status 21 56 LAB TAS B02 - -- --- -- -- 21 56 LAB TAS B02 Vl222 Eth VLAN 222 1.10.1.10 222DOWN 7604D#sho mpls l2 vc 21 55 LAB TAS B02 Local intf Local circuit Dest addressVC ID Status 21 55 LAB TAS B02 - -- --- -- -- 21 55 LAB TAS B02 Vl222 Eth VLAN 222 1.10.1.9 222DOWN 21 55 LAB TAS B02 7604D# 3725B#sho mpls l2 vc 21 47 LAB TAS B02 21 47 LAB TAS B02 Local intf Local circuit Dest addressVC ID Status 21 47 LAB TAS B02 - -- --- -- -- 21 47 LAB TAS B02 Fa0/1.222 Eth VLAN 222 1.10.1.7 222UP 21 47 LAB TAS B02 3725B# ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] What is the lowest switch?
Broadcom themselves do some pretty fast and impressive switches. http://www.broadcom.com/products/Switching From: Chris Evans chrisccnpsp...@gmail.com To: Asbjorn Hojmark - Lists li...@hojmark.org Cc: Cisco NSP cisco-nsp@puck.nether.net Sent: Wed, March 16, 2011 8:39:56 AM Subject: Re: [c-nsp] What is the lowest switch? This new network switch is the 3ks which are based on merchant silicon. Its a stop gap solution until they spin their own. I believe its based on the broadcom Trident chipset that other vendors such as bnt juniper and arista are using.. They are due out by end if April for fcs I believe. On Mar 16, 2011 10:21 AM, Asbjorn Hojmark - Lists li...@hojmark.org wrote: On Wed, 16 Mar 2011 18:02:34 +0900, you wrote: I heard C4900M is low latency switch In almost all real-world scenarios, any dropped frame affects performance almost infinitely more than the latency of any switch between the two hosts. Don't *just* look at latency. That being said: The Nexus 5548 is pretty low latency port-to-port, and has much better density than the 4900M. Also a new Nexus switch is rumoured[1] to be 'just around the corner', specifically targeted at HFT scenarios. You should take this up with the account team. Do you know any other vender? Well, Arista plays in this space. -A [1] Those rumours are easily googlable. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] micro bursts
If you just want a short term analysis to check a mib get if is a very useful tool, alternatively if you want long term historical, NMIS is the best free tool I have found. http://www.wtcs.org/snmp4tpc/getif.htm http://sins.com.au/nmis/ From: Tim Pozar po...@lns.com To: Daniel Hooper dhoo...@gold.net.au Cc: cisco-nsp@puck.nether.net cisco-nsp@puck.nether.net Sent: Sat, March 5, 2011 11:13:16 AM Subject: Re: [c-nsp] micro bursts Cacti has a real time monitoring and graphing that samples every 5 seconds. Tim on 3/5/11 6:07 AM Daniel Hooper said the following: What's the best way to graph or log them with 3550 switches? I once had a windows application that could do 1 second polls on interface counters that was really good, but I can no longer find this piece of software or even remember what it was called. -Dan ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ -- GPG Fingerprint: 4821 CFDA 06E7 49F3 BF05 3F02 11E3 390F 8338 5B04 http://www.lns.com/house/pozar/pozar_4096_rsa_public.asc ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] How to pass VLAN through router
If you don't need to access the vlan at the intermediary routers a psudo-wire may work. I have only used them via mpls but understand they work with encapsulation l2tpv2 or 3 as well. From: Pavel Dimow paveldi...@gmail.com To: cisco-nsp@puck.nether.net Sent: Sat, February 12, 2011 10:13:02 AM Subject: [c-nsp] How to pass VLAN through router Is this possible at all? I ended in pretty ugly scenario (for a short time period I hope) where I must pass VLAN through router (yes router not L3 switch). The scenario is: SW1-trunk-R1-trunk-R2-trunk-L3SWITCH I don't have control over SW1 and R1, but I do know that I have trunk from my R2 to other side R1 for sure (I already terminate one VLAN on R2). Now, I need somehow to get VLAN from other side (SW1) to L3SWITCH where I will setup a SVI. Any thoughts? How router behaves considering VLANs? Is it only possible to terminate vlan on subinterface and no vlan passing? It is logical to me, because router is a router not a switch (in my case R2 is Cisco ASR). And IF router will pass VLAN over trunk interfaces how do I control which VLANs are allowed to pass over which interface? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
