Hi, I have a client who is interested in setting up many branch offices and
bring these back to a central location via IPSEC. They have a pile of
2610's and a pile of ADSL cards. At each location they wish to have two DSL
lines, one with my client's network, and another with a carrier who they
On 5/8/07, Scott Granados [EMAIL PROTECTED] wrote:
Hi, I have a client who is interested in setting up many branch offices
and
bring these back to a central location via IPSEC. They have a pile of
2610's and a pile of ADSL cards. At each location they wish to have two
DSL
lines, one with
Yesterday evening we upgraded our BGP routers to Cisco 7301 with IOS
c7301-advipservicesk9-mz.124-9.T. We enabled the IPS signatures to log
only, however we had an issue with incoming web mail from Yahoo and
Hotmail, all other e-mail was fine including other web mail such as
googlemail. After
I am seeing high input interface drops on an SVI interface on an MSFC3. The
MSFC3 is installed in a 6503 chassis with Sup720. The switch is running
hybird mode.
The traffic load has increased, and CPU is running high when the traffic
load increases. I don't know why the SVI is showing
I hadn't tried that. I'm curious as to why this would be started all of
a sudden. It worked fine until that night on a number of other routers.
There's another router sitting next to the edge router that
experienced the problem. It's configured almost identically. Together
they provide
I have a little more info this time..
It appears that the traffic is being process switched.
It started when this switch became more of a router on a stick.
Previously most traffic flowed from one SVI to the other; this 6503 is
essentially an access or WAN router. Now traffic flows from routers
Here's some commands to get you started:
sh buffers input-interface
sh int vlan1234 switching
sh ip interface
sh ip traffic
sh cef drop
sh ip cache flow
sh cef not-cef-switched
Some more help can be found here:
http://www.cisco.com/warp/public/63/queue_drops.html
You also might want to verify
Sending ICMP redirects for all those?
Chuck
--- Original Message ---
From:barney gumbo [EMAIL PROTECTED]
Sent:Wed 5/9/07 12:15 pm
To:Dale W. Carder [EMAIL PROTECTED]
Cc:cisco-nsp@puck.nether.net cisco-nsp@puck.nether.net
Subj:Re: [c-nsp] troubleshooting SVI input drops on MSFC3
I have a little
I see ICMP redirects (which is not disabled on that SVI) and they are
incrementing. I can understand high CPU as a result of the router being
forced to trx alot of ICMP redirects, however that (the MSFC sending ICMP
redirects) doesnt cause the traffic to be process-switched, does it?
ICMP
Greetings,
I was just checking to see if anyone had ran into the following ATM IMA
problem. I did a bug scrub on CCO and did not find any relevant bugs associated
with our problem.
Problem: Unable to set correct UBR value to PVC on an ATM IMA interface.
Router Type - Cisco
I don't think the PFC has any logic in it to provide ICMP responses for
any of the message types. Someone from Cisco would know for sure
though. Without the ability for the PFC to respond, those packets would
get forwarded to the MSFC. It seems that it should only do it once per
flow, but it
Hi everyone!
I'm reading this list for a couple of months now and tonight I got my
first question :-)
We get a new location with 2 internet upstreams and I'd like to run HSRP
for fail-over. There is a bit of a strange topology though...
My carriers gave me 2x2 /30 for two BGP sessions so I can
Or, does the traffic hit the MSFC because the CEF adjacency is the
same
interface for all prefixes, i.e. router-on-a-stick?
I've read references to both as being the reason one would see high
CPU on
an MSFC along with SVI input drops, just trying to understand the
hardware
better. It seems
The decision to redirect the packet for ICMP redirect is done using a bit
in the PFC HW and it is a per-vlan bit, and not per flow. This bit can
either be on or off and is controlled by having 'no ip redirects'. That
is why you are seeing all traffic in the vlan getting punted to software,
if
We've decided to go with multiple 7206VXR/NPE-G2's for our edge routing
(replacing older NPE-300/400 devices). We have simple needs -- BGP, OSPF,
NetFlow, and some small ACLs on the WAN interfaces. Since the IOS selection
for
the G2 is somewhat limited, if others can share what IOS release
Also, I am not sure how the original poster got into this situation.
When user configures secondaries, we automatically disable 'ip redirects'
on the interface. Eg:
2-2-mid-720(config-if)#ip add 7.7.7.7 255.255.255.0
2-2-mid-720(config-if)#ip add 8.8.8.8 255.255.255.0 sec
ICMP redirect is
Hi, I have a client who is interested in setting up many branch
offices and bring these back to a central location via IPSEC. They
have a pile of 2610's and a pile of ADSL cards. At each location they
wish to have two DSL lines, one with my client's network, and another
with a
Mike, thanks for the response. In this config I simply wish to leave one
line in a reserve (unused state). So load sharing is not a requirement
which I suspect simplifies things. It looks to me in 12.2-13T or later it's
as simple as defining two dialers with the appropriate matching pools and
Your iBGP routers must have a full mesh of peers. Meaning you must setup a
peering relationship between all iBGP routers within an AS unless using a
Route-Reflector, which you don't need. Additionally, best practices are to use
a Loopback nterface for iBGP peerings. HSRP is a gateway
Right, in a PPPOE config though wouldn't one have an up down situation if
say an ATM switch mid way failed or the BRAS on the far end went out to
lunch? Thanks for the pointers and the link.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dean Smith
I had a similar issue when trying to turn up port channels that span across
stack 3750. TAC recommends not using PAGP or LACP. Have not gotten it work
since. Is this similar to your scenerio? Any resolution?
- Original Message
From: Dan Armstrong [EMAIL PROTECTED]
To: Collins, Richard
I would first disable icmp redirects on that SVI.
Then you have rate-limiters that control how much traffic is punted to MSFC
(http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_guide_chapter09186a0080435872.html).
For ICMP redirects you have folllowing command:
mls
22 matches
Mail list logo
