Re: [c-nsp] CRS-1 MSC utilization
Hello Oliver, On Tue, Jun 15, 2010 at 5:00 AM, Oliver Boehmer (oboehmer) oboeh...@cisco.com wrote: Does anyone know if there is a command to view the utilization of a MSC in a CRS? We are using the 8 port 10GE PLIMs which are 2:1 oversubscribed. ... If you want to look at the forwarding asic utilization, show controllers pse utilization location loc is the command you're looking for.. How should I interpret the output of that command? When I issue it on a single PLIM: - #show controllers pse utilization location 0/0/CPU0 PPE Utilization NodeIngress Egress 0/0/CPU0: 9.2 0.6 From this output I would think there is 10% of capacity ingress and 0.6% egress. However with monitor interface I see: Interface In(bps) Out(bps) Te0/0/0/0 3.6G/ 36% 881.3M/ 8% Te0/0/0/1 5.0G/ 50% 862.5M/ 8% Te0/0/0/2245.0M/ 2% 3.1G/ 31% Te0/0/0/3278.5M/ 2% 3.6G/ 36% Te0/0/0/4 2.2G/ 22% 643.6M/ 6% Te0/0/0/5 3.6G/ 36% 1.6G/ 16% Te0/0/0/6 1.1G/ 11% 3.9G/ 39% Te0/0/0/7 3.5G/ 35% 4.8G/ 48% Ingress traffic for all interfaces combined is 19.5Gbit/s and egress is 19.3Gbit/s Nearly 20Gbits bidirectional traffic would be 50% of MSC (or 40% of PSE) capacity right? Or am I looking at it in the wrong way? Or what else should/could we monitor to prevent loss due to too much traffic on a PLIM. Thanks, Bas ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] H-VPLS BGP autodiscovery
Yes you are right - the cost of the SIP interface is lower than the Lan card Also, I already have a mpls ldp router-id Loopback0, which is used for other purposes . AFAIK only one loopback can participate in ldp interaction. If I have correctly understood you are offering to implement one more normal igp-related mpls+ip topology. How it is possibly? 2010/6/15 tkap...@gmail.com You will need to adjust igp cost so that your signaling/sourcing PE router issues/sends tldp via the sip-based interface towards the far-end vpls speakers' loopback address. It would seem that your device is picking a link that's lower cost (via the 10 gig card) which cannot allocate labels for vpls vfi vc's. You may also want to assign and deploy a second set of loopbacks on your devices, specifically for use in signaling (and costing/adjusting via an igp or ibgp) vpls vfi setup. A different target (loopback) will permit you to run a normal igp-related mpls+ip topology alongside a slightly different one, with tweaks you apply so that tldp sessions for vfis take different links/egress paths. The pfc3 will not (read: cannot) allocate labels which terminate to a local vfi *and* which have a P-facing link on a LAN card. The pfc3 only supports allocating labels for vfi's that have p-facing links which terminate on sip+spa, ES, or OSM+ line cards, and of course p2p eompls vc's. The pfc3 will be fine with acting as a P device for both lan cards and wan cards. The issue you are seeing occurs only when the device is acting as a vfi PE and when you wish to run P-facing links on lan ports. -Tk -Original Message- From: Anrey Teslenko teslenko.and...@gmail.com Date: Tue, 15 Jun 2010 12:43:56 To: cisco-nsp@puck.nether.netcisco-nsp@puck.nether.net Subject: Re: [c-nsp] H-VPLS BGP autodiscovery Whether somebody can answer my question? Help me please, If you had the same problem 2010/6/11 Anrey Teslenko teslenko.and...@gmail.com Hello all, Does anyone have the experience in configuration of H-VPLS, using BGP as discovery mechanism? I try to implement this in my network. Everything works fine, but there are some problems. I tune H-VPLS on cisco 7600 series with SIP-400 as uplink and downlink interfaces. I have trouble, when router has two uplinks interfaces - the first on Sip 400 and the second on a LAN card Detailed output is as follows for my VFI Local interface: VFI test VFI up MPLS VC type is VFI, interworking type is Ethernet Destination address: xx.xx.xx.xx, VC ID: 500, VC status: up Output interface: none, imposed label stack {302 295} Preferred path: not configured Default path: active Next hop: Invalid ADDR As result LDP signaling works fine, BGP autodiscovery works fine, however pseudo wire has not found outgoing interface Manual configuration of VFI allows to apply pseudoware-class with preferred-path, but this configuration is poorly scalable However in autodiscovery mode I couldn't apply preferred-path (Cisco say: Tunnel selection is not supported with autodiscovered neighbors.) So my question is: How to properly select output interface (SIP 400 instead WS-X6704-10GE), configuring of H-VPLS and using BGP autodiscovery? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Continous BGP session resets on SRD3
Hi, Since this morning I am experiencing a weird problem on one of my full feeds link. My router is a 7606 with dual RSP720-3CXL-GE and running SRD3. I have a multihop bgp peer to get the full bgp feed from my customer. Suddenly this morning the connection started flapping. With the following error message: Jun 16 07:40:03 CEST: %BGP-5-ADJCHANGE: neighbor W.X.Y.Z vpn vrf XX Up Jun 16 07:42:36 CEST: %BGP-5-ADJCHANGE: neighbor W.X.Y.Z vpn vrf XX Down BGP Notification sent Jun 16 07:42:36 CEST: %BGP-3-NOTIFICATION: sent to neighbor W.X.Y.Z 3/4 (invalid flags for attribute) 3 bytes 00 15w6d: BGP: 217.15.96.9 Bad attributes Jun 16 07:42:36 CEST: %BGP-4-MSGDUMP: unsupported or mal-formatted message received from W.X.Y.Z: 012B 0200 0001 1040 0101 02C0 119A 0226 3D77 22E0 04F9 3065 0003 0065 0003 0065 C288 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 4002 4E02 263D 7722 E004 F930 655B A05B A0C2 8822 E422 E422 E422 E422 E422 E422 E422 E422 E422 E422 Jun 16 07:42:42 CEST: %BGP_SESSION-5-ADJCHANGE: neighbor W.X.Y.Z IPv4 Unicast vpn vrf XX topology base removed from session BGP Notification sent The sequence is as follows: It basically goes up, starts getting the feed, then at around 290K routes it logs this error and resets the session. It will Then start over again. Note that this does not seem to be the route dampening issue - I do not even have dampening enabled on my router. Also mls cef is set at 350K for IPv4 and free RAM is over 1G Any ideas? Thanks/Regards Gordon ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Cisco 6500 experiencing %CPU_MONITOR-SP-6-NOT_HEARD
Hello List, Just for the record, I will post this in case some guys out there have the same problem some day. Last friday, one of my core routers, a Cisco 6509 with two SUP720-3BXL modules running s72033-advipservicesk9_wan-mz.122-33.SXH2a, crashed and restarted out of the blue. Crashfile info says the following : *Jun 11 06:43:06.310: %CPU_MONITOR-SP-6-NOT_HEARD: CPU_MONITOR messages have not been heard for 30 seconds [5/1] Jun 11 06:43:36.310: %CPU_MONITOR-SP-6-NOT_HEARD: CPU_MONITOR messages have not been heard for 60 seconds [5/1] Jun 11 06:44:06.310: %CPU_MONITOR-SP-6-NOT_HEARD: CPU_MONITOR messages have not been heard for 90 seconds [5/1] *Jun 11 06:44:25.366: SP: icc_send_request_internal: ipc_send_rpc_blocked failed, result 6 Jun 11 06:44:25.366: SP: -Traceback= 40BC1538 40BC16F8 40BC19E0 40B11AE4 40B120D0 40752F58 40752F44 *Jun 11 06:44:36.310: %CPU_MONITOR-SP-6-NOT_HEARD: CPU_MONITOR messages have not been heard for 120 seconds [5/1] *Jun 11 06:44:51.366: SP: IPC: Message 43EDD2BC timed out waiting for Ack Jun 11 06:44:51.366: SP: IPC: MSG: ptr: 0x43EDD2BC, flags: 0x20101, retries: 21, seq: 0x2155C10, refcount: 2, retry: 00:00:00, rpc_result = 0x0, data_buffer = 0x503FAF5C, header = 0x8C7A7C8, data = 0x8C7A7E8 || HDR: src: 0x1, dst: 0x2150010, index: 0, seq: 23568, sz: 80, type: 1, flags: 0x404 hi: 0x6F4F386, lo: 0x8C7A7E8 || DATA: 00 00 00 05 00 00 00 00 00 00 1B 59 00 00 00 01 00 00 00 07 Jun 11 06:44:51.366: SP: IPC: Send failed: IPC msg timeout MSG: ptr: 0x43EDD2BC, flags: 0x20101, retries: 21, seq: 0x2155C10, refcount: 2, retry: 00:00:00, rpc_result = 0x0, data_buffer = 0x503FAF5C, header = 0x8C7A7C8, data = 0x8C7A7E8 || HDR: src: 0x1, dst: 0x2150010, index: 0, seq: 23568, sz: 80, type: 1, flags: 0x404 hi: 0x6F4F386, lo: 0x8C7A7E8 || DATA: 00 00 00 05 00 00 00 00 00 00 1B 59 00 00 00 01 00 00 00 07 Jun 11 06:44:51.366: SP: -Traceback= 403E6CB0 403EB96C 403EC00C 40405988 40752F58 40752F44 Jun 11 06:44:51.366: %C6K_PROCMIB-SP-3-IPC_TRANSMIT_FAIL: Failed to send process statistics update : error code = timeout -Traceback= 409A39A4 409A39F4 409A3C00 409A3E60 40752F58 40752F44 *Jun 11 06:45:06.310: %CPU_MONITOR-SP-6-NOT_HEARD: CPU_MONITOR messages have not been heard for 150 seconds [5/1] Jun 11 06:45:36.310: %CPU_MONITOR-SP-3-TIMED_OUT: CPU_MONITOR messages have failed, resetting system [5/1] * *%Software-forced reload * 06:45:36 UTC Fri Jun 11 2010: Breakpoint exception, CPU signal 23, PC = 0x41183348 For some reason, RP and SP were not able to communicate using the EOBC. I have googling around and looks like folks out there (among c-nsp too) have already seen this for Cisco 6500 and 7600. In this particular case, Cisco says : CPU_MONITOR-3-TIMED_OUT or CPU_MONITOR-6-NOT_HEARD Problem Problème The switch reports these error messages: CPU_MONITOR-3-TIMED_OUT: CPU monitor messages have failed, resetting system CPU_MONITOR-6-NOT_HEARD: CPU monitor messages have not been heard for [dec] seconds Description Description These messages indicate that CPU monitor messages have not been heard for a significant amount of time. A time-out most probably occurs, which resets the system. [dec] is the number of seconds. The problem possibly occurs because of these reasons: - Badly seated line card or module === Not likely - Bad ASIC or bad backplane === Not likely - Software bugs === Probably - Parity error=== Don't know - High traffic in the Ethernet out of band channel (EOBC) channel === According to the IPC stats, nothing fancy The EOBC channel is a half duplex channel that services many other functions, which includes Simple Network Management Protocol (SNMP) traffic and packets that are destined to the switch. If the EOBC channel is full of messages because of a storm of SNMP traffic, then the channel is subjected to collisions. When this happens, EOBC is possibly not able to carry IPC messages. This makes the switch display the error message. Workaround Contournement Reseat the line card or module. If a maintenance window can be scheduled, reset the switch in order to clear any transient issues. Personally, I'd say I hit a bug with this but I can't seem to find it using cisco web tools. Anyone could point me to the right direction ? Thank you all. Best regards. Y. -- Youssef BENGELLOUN-ZAHR …… Ingénieur Réseaux et Télécoms Technopole de l'Aube en Champagne - BP 601 - 10901 TROYES Cedex 9 Agence Paris : 6, rue Charles Floquet - 92120 MONTROUGE Tel +33 (0) 825 000 720 Tel. direct +33 (0) 1 77 35 59 14 Tel. portable +33 (0) 6 22 42 63 80 Emaily...@720.fr …….www.720.fr ___ cisco-nsp mailing list cisco-nsp@puck.nether.net
[c-nsp] mst over etherchannel + QoS
Hi all I'd like to ask You if is possible simulate network in GNS for etherchannel with mst and QoS. If not please can You recommned any simulator for? Thanks a lot Ivan ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Continous BGP session resets on SRD3
Hi Gordon, Just hang-up the phone with TAC. We also had the same issue this morning. One session was iBGP and the other eBGP. Engineer said, undocumented bug, needs to do more research and get back to be. Don't know what he did and fix it. I guess you need to open a case... Good luck, Kostas On 16/6/2010 12:37 μμ, Gordon Bezzina wrote: Hi, Since this morning I am experiencing a weird problem on one of my full feeds link. My router is a 7606 with dual RSP720-3CXL-GE and running SRD3. I have a multihop bgp peer to get the full bgp feed from my customer. Suddenly this morning the connection started flapping. With the following error message: Jun 16 07:40:03 CEST: %BGP-5-ADJCHANGE: neighbor W.X.Y.Z vpn vrf XX Up Jun 16 07:42:36 CEST: %BGP-5-ADJCHANGE: neighbor W.X.Y.Z vpn vrf XX Down BGP Notification sent Jun 16 07:42:36 CEST: %BGP-3-NOTIFICATION: sent to neighbor W.X.Y.Z 3/4 (invalid flags for attribute) 3 bytes 00 15w6d: BGP: 217.15.96.9 Bad attributes Jun 16 07:42:36 CEST: %BGP-4-MSGDUMP: unsupported or mal-formatted message received from W.X.Y.Z: 012B 0200 0001 1040 0101 02C0 119A 0226 3D77 22E0 04F9 3065 0003 0065 0003 0065 C288 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 4002 4E02 263D 7722 E004 F930 655B A05B A0C2 8822 E422 E422 E422 E422 E422 E422 E422 E422 E422 E422 Jun 16 07:42:42 CEST: %BGP_SESSION-5-ADJCHANGE: neighbor W.X.Y.Z IPv4 Unicast vpn vrf XX topology base removed from session BGP Notification sent The sequence is as follows: It basically goes up, starts getting the feed, then at around 290K routes it logs this error and resets the session. It will Then start over again. Note that this does not seem to be the route dampening issue - I do not even have dampening enabled on my router. Also mls cef is set at 350K for IPv4 and free RAM is over 1G Any ideas? Thanks/Regards Gordon ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cisco 6500 experiencing %CPU_MONITOR-SP-6-NOT_HEARD
Hi Yousef, Just for the record, I will post this in case some guys out there have the same problem some day. Last friday, one of my core routers, a Cisco 6509 with two SUP720-3BXL modules running s72033-advipservicesk9_wan-mz.122-33.SXH2a, crashed and restarted out of the blue. Crashfile info says the following : -=snip=- Personally, I'd say I hit a bug with this but I can't seem to find it using cisco web tools. Anyone could point me to the right direction ? We had similar crashes in 2007-2009 (on SUP720-3B). After several *long* TAC cases, it turned out that we hit a couple of bugs. I can't find the bug IDs at the moment, but according to my email archive, the fixes were included in SXH4. I'd recommend trying a more recent SXH build as a lot of issues have been fixed since SXH2a. Or, if you're comfortable with bigger upgrade steps: we're running SXI3a now, which has been more stable in our environment than SXH has been. However, as always with bugs features in IOS, YMMV. By the way, the root cause in our case had to do with interrupt masking; it was mainly triggered by non IP packets from directly connected network segments. Our case was only reproducible by replaying actual traffic captures, not with synthetic IP traffic. Regards, Jeroen van Ingen ICT Service Centre University of Twente, P.O.Box 217, 7500 AE Enschede, The Netherlands ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cisco 6500 experiencing %CPU_MONITOR-SP-6-NOT_HEARD
Hello Jeroen, Thanks for the feedback. If you can find the bug IDs, please do not hesitate to send them, it come in handy sometimes. I have been thinking of upgrading to SXI3 (why not SXI4, hey ;-) for a long time and have labed it, all my configs were correctly accepted. We are running some basic BGP / MPLS and route reflection on this router, have experienced any weird things regarding theese on SXI3 / SXI4 ? Thanks again. Best regards. Y. 2010/6/16 j.vaningensche...@utwente.nl Hi Yousef, Just for the record, I will post this in case some guys out there have the same problem some day. Last friday, one of my core routers, a Cisco 6509 with two SUP720-3BXL modules running s72033-advipservicesk9_wan-mz.122-33.SXH2a, crashed and restarted out of the blue. Crashfile info says the following : -=snip=- Personally, I'd say I hit a bug with this but I can't seem to find it using cisco web tools. Anyone could point me to the right direction ? We had similar crashes in 2007-2009 (on SUP720-3B). After several *long* TAC cases, it turned out that we hit a couple of bugs. I can't find the bug IDs at the moment, but according to my email archive, the fixes were included in SXH4. I'd recommend trying a more recent SXH build as a lot of issues have been fixed since SXH2a. Or, if you're comfortable with bigger upgrade steps: we're running SXI3a now, which has been more stable in our environment than SXH has been. However, as always with bugs features in IOS, YMMV. By the way, the root cause in our case had to do with interrupt masking; it was mainly triggered by non IP packets from directly connected network segments. Our case was only reproducible by replaying actual traffic captures, not with synthetic IP traffic. Regards, Jeroen van Ingen ICT Service Centre University of Twente, P.O.Box 217, 7500 AE Enschede, The Netherlands -- Youssef BENGELLOUN-ZAHR …… Ingénieur Réseaux et Télécoms Technopole de l'Aube en Champagne - BP 601 - 10901 TROYES Cedex 9 Agence Paris : 6, rue Charles Floquet - 92120 MONTROUGE Tel +33 (0) 825 000 720 Tel. direct +33 (0) 1 77 35 59 14 Tel. portable +33 (0) 6 22 42 63 80 Emaily...@720.fr …….www.720.fr ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] mst over etherchannel + QoS
Hello Ivan, no currently it is not possible to simulate (proper term is actually emulate) anything else above PVST+, as the only switch oriented card in dynamips is NM-16ESW - which only supports PVST+. Due to the proprietary hardware used in switches, I don't think you will find any other emulator that does this (not speaking about the fact that AFAIK there is no other cisco emulator then dynamips). -pavel On Wed, Jun 16, 2010 at 2:44 PM, Ivan Šimko ivan.si...@gmail.com wrote: Hi all I'd like to ask You if is possible simulate network in GNS for etherchannel with mst and QoS. If not please can You recommned any simulator for? Thanks a lot Ivan ___ cisco-nsp mailing list cisco-...@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cisco 6500 experiencing %CPU_MONITOR-SP-6-NOT_HEARD
Hi Youssef, Most relevant bug ID in my archive seems to be CSCsi86691, but I'm not sure if that was the one. The description doesn't exactly match our case. We're running basic BGP with a couple of peers, but only limited routes because our SUPs don't have enough TCAM space for a full table. No MPLS or route reflector. Known problem in our environment: occasional dropping of BGP sessions where BFD is used. Can be triggered by making changes in long ACLs. We've given up on this one, our users don't notice the short drops due to redundancy. Tried TAC but we dropped the case when TAC required us to do disruptive tests. This only occurs with a specific set of conditions: BGP with BFD enabled, CPU in interrupt 10% (approx) and then modifying a standard ACL that is over 700 lines long. Determine for yourself how likely it is to hit you ;). We see it a couple of times a week, we generally lose one BGP session for 5 - 15 seconds. Perhaps others who use BGP+RR+MPLS know more important caveats... Regards, Jeroen van Ingen ICT Service Centre University of Twente, P.O.Box 217, 7500 AE Enschede, The Netherlands From: Youssef Bengelloun-Zahr [mailto:yous...@720.fr] Sent: woensdag 16 juni 2010 15:10 To: Ingen Schenau, J. van (ICTS) Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] Cisco 6500 experiencing %CPU_MONITOR-SP-6-NOT_HEARD Hello Jeroen, Thanks for the feedback. If you can find the bug IDs, please do not hesitate to send them, it come in handy sometimes. I have been thinking of upgrading to SXI3 (why not SXI4, hey ;-) for a long time and have labed it, all my configs were correctly accepted. We are running some basic BGP / MPLS and route reflection on this router, have experienced any weird things regarding theese on SXI3 / SXI4 ? Thanks again. Best regards. Y. 2010/6/16 j.vaningensche...@utwente.nl Hi Yousef, Just for the record, I will post this in case some guys out there have the same problem some day. Last friday, one of my core routers, a Cisco 6509 with two SUP720-3BXL modules running s72033-advipservicesk9_wan-mz.122-33.SXH2a, crashed and restarted out of the blue. Crashfile info says the following : -=snip=- Personally, I'd say I hit a bug with this but I can't seem to find it using cisco web tools. Anyone could point me to the right direction ? We had similar crashes in 2007-2009 (on SUP720-3B). After several *long* TAC cases, it turned out that we hit a couple of bugs. I can't find the bug IDs at the moment, but according to my email archive, the fixes were included in SXH4. I'd recommend trying a more recent SXH build as a lot of issues have been fixed since SXH2a. Or, if you're comfortable with bigger upgrade steps: we're running SXI3a now, which has been more stable in our environment than SXH has been. However, as always with bugs features in IOS, YMMV. By the way, the root cause in our case had to do with interrupt masking; it was mainly triggered by non IP packets from directly connected network segments. Our case was only reproducible by replaying actual traffic captures, not with synthetic IP traffic. Regards, Jeroen van Ingen ICT Service Centre University of Twente, P.O.Box 217, 7500 AE Enschede, The Netherlands -- Youssef BENGELLOUN-ZAHR .. Ingénieur Réseaux et Télécoms Technopole de l'Aube en Champagne - BP 601 - 10901 TROYES Cedex 9 Agence Paris : 6, rue Charles Floquet - 92120 MONTROUGE Tel +33 (0) 825 000 720 Tel. direct +33 (0) 1 77 35 59 14 Tel. portable +33 (0) 6 22 42 63 80 Emaily...@720.fr ...www.720.fr ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cisco 6500 experiencing %CPU_MONITOR-SP-6-NOT_HEARD
On 16/06/10 14:10, Youssef Bengelloun-Zahr wrote: Hello Jeroen, Thanks for the feedback. If you can find the bug IDs, please do not hesitate to send them, it come in handy sometimes. I have been thinking of upgrading to SXI3 (why not SXI4, hey ;-) for a long time and have labed it, all my configs were correctly accepted. We are running some basic BGP / MPLS and route reflection on this router, have experienced any weird things regarding theese on SXI3 / SXI4 ? We run a BGP/MPLS network on 6500/sup720 with SXI3 (previously on SXI zero for over a year) with no problems. 2 of the routers are route reflectors (yes yes slow CPUs blah - it's ~800 routes and ~20 iBGP peers) ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] 3800 stuck in rommon
Thanx for all the replies, I kicked off xmodem last night and when i cam back in this morning the IOS was on the flash. I am not sure why I could not tftpdnld the image with a tftp server that supports large file tansfers, but at least the router is up. thanx again, harbor235 On Tue, Jun 15, 2010 at 10:54 PM, Christopher J. Wargaski war...@gmail.comwrote: Hey-- Can you connect the card to your workstation or laptop? I recently worked on a project that required multiple 3845 routers. I upgraded the IOS and placed a base config each flash card with my laptop (flash card reader with a USB interface on it). Windows XP saw the flash card as another drive and let me read and write to it. cjw 4. 3800 stuck in rommon (harbor235) Date: Tue, 15 Jun 2010 13:54:51 -0400 From: harbor235 harbor...@gmail.com To: cisco-nsp@puck.nether.net Subject: [c-nsp] 3800 stuck in rommon Message-ID: aanlktinojwxvl_evqka3h098hvumxac0vx3ymgryc...@mail.gmail.com Content-Type: text/plain; charset=ISO-8859-1 I have a 3825 stuck in rommon, I am using a 2800 PCMCIA card in flash, the original is missing, I have assumed filesystems are compatable and that I can use the 2800 PCMCIA. I setup a tftp server to download a new IOS image, the download starts with no problem, the image is transferring fine, then near the end I get a timeout. My questions: 1) Are the 2800 and 3800 using compatible filesystems? 2) How do I get a new IOS image on the PCMCIA, I do not have another 3800. There are some old files on the card, I never get to the part where ROMMON erases the flash. Any help would be appreciated. harbor235 ;} -- ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] mst over etherchannel + QoS
hmmm :-( thanks a lot On 16 June 2010 14:35, Pavel Skovajsa pavel.skova...@gmail.com wrote: Hello Ivan, no currently it is not possible to simulate (proper term is actually emulate) anything else above PVST+, as the only switch oriented card in dynamips is NM-16ESW - which only supports PVST+. Due to the proprietary hardware used in switches, I don't think you will find any other emulator that does this (not speaking about the fact that AFAIK there is no other cisco emulator then dynamips). -pavel On Wed, Jun 16, 2010 at 2:44 PM, Ivan Šimko ivan.si...@gmail.com wrote: Hi all I'd like to ask You if is possible simulate network in GNS for etherchannel with mst and QoS. If not please can You recommned any simulator for? Thanks a lot Ivan ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] mst over etherchannel + QoS
BTW, this morning Jeremy released new version of GNS3 0.7.2: Here is a list of the changes in this version: * Lot of small fixes (relative paths, link removal, .net loading, Ethernet switch connection to a Cloud etc.) * Qemuwrapper: random MAC address for devices * NPE-G2 option for c7200 routers (need a specific and uncompressed IOS image and C7200-IO-2FE, C7200-IO-GE-E, PA-2FE-TX and PA-GE are unlikely to work) * Simulated switches: daisy chaining support * Improved directory selection for new projects * New translations: Bulgarian, Italian and Ukrainian * Frame Relay capture option for all serial links * Dialog to display an Ethernet switch MAC address table See - http://www.gns3.net/content/gns3-072 -pavel On Wed, Jun 16, 2010 at 3:35 PM, Pavel Skovajsa pavel.skova...@gmail.com wrote: Hello Ivan, no currently it is not possible to simulate (proper term is actually emulate) anything else above PVST+, as the only switch oriented card in dynamips is NM-16ESW - which only supports PVST+. Due to the proprietary hardware used in switches, I don't think you will find any other emulator that does this (not speaking about the fact that AFAIK there is no other cisco emulator then dynamips). -pavel On Wed, Jun 16, 2010 at 2:44 PM, Ivan Šimko ivan.si...@gmail.com wrote: Hi all I'd like to ask You if is possible simulate network in GNS for etherchannel with mst and QoS. If not please can You recommned any simulator for? Thanks a lot Ivan ___ cisco-nsp mailing list cisco-...@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Nexus 7k support for Twin-ax cables with N7K-M132XP-12 line card
Hi, Does anyone know if the copper Twin-ax cables (e.g. SFP-H10GB-CU3M) are supported in the N7K-M132XP-12 line card? We're running NX-OS 5.0(2a) and they appear to work although they're not officially listed on the 10GE Transceiver compatibility matrix. This intention is to use them for 10GE Nexus-Nexus interlinks and between Nexus and 4948-10GE switches (with OneX converters) where distances allow. Cheers, Matt -- Matthew Melbourne ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cisco 6500 experiencing %CPU_MONITOR-SP-6-NOT_HEARD
We run our 6500 as core routers will full BGP feed on each and Route Reflection. Plus, each core router has multiple Internal BGP peers and multiple External BGP peers on different IXPs. Yes, CPU is slow but it does the job ;-) Thanks. Y. 2010/6/16 Phil Mayers p.may...@imperial.ac.uk On 16/06/10 14:10, Youssef Bengelloun-Zahr wrote: Hello Jeroen, Thanks for the feedback. If you can find the bug IDs, please do not hesitate to send them, it come in handy sometimes. I have been thinking of upgrading to SXI3 (why not SXI4, hey ;-) for a long time and have labed it, all my configs were correctly accepted. We are running some basic BGP / MPLS and route reflection on this router, have experienced any weird things regarding theese on SXI3 / SXI4 ? We run a BGP/MPLS network on 6500/sup720 with SXI3 (previously on SXI zero for over a year) with no problems. 2 of the routers are route reflectors (yes yes slow CPUs blah - it's ~800 routes and ~20 iBGP peers) ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ -- Youssef BENGELLOUN-ZAHR …… Ingénieur Réseaux et Télécoms Technopole de l'Aube en Champagne - BP 601 - 10901 TROYES Cedex 9 Agence Paris : 6, rue Charles Floquet - 92120 MONTROUGE Tel +33 (0) 825 000 720 Tel. direct +33 (0) 1 77 35 59 14 Tel. portable +33 (0) 6 22 42 63 80 Emaily...@720.fr …….www.720.fr ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Continous BGP session resets on SRD3
We saw this issue about 8 hours ago too... It appeared to affect GSRs running anything older than gsr-k4p-mz.120-32.SY9.bin as well as 7200s running non-current versions of IOS. Our 6500s were all fine but they are all running at least s72033-adventerprisek9_wan-mz.122-33.SXI1.bin. This sure looked like it was tickling CSCeh13489 but we already limit the maximum AS-path length to well-under 255 and that did not seem to protect us. We ended up doing an emergency upgrade of the GSRs involved. John van Oppen Spectrum Networks Direct: 206-973-8302 Main: 206-973-8300 From: cisco-nsp-boun...@puck.nether.net [cisco-nsp-boun...@puck.nether.net] on behalf of Kostas Fotiadis [kostas.fotia...@oteglobe.net] Sent: Wednesday, June 16, 2010 4:41 AM To: Gordon Bezzina Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] Continous BGP session resets on SRD3 Hi Gordon, Just hang-up the phone with TAC. We also had the same issue this morning. One session was iBGP and the other eBGP. Engineer said, undocumented bug, needs to do more research and get back to be. Don't know what he did and fix it. I guess you need to open a case... Good luck, Kostas On 16/6/2010 12:37 μμ, Gordon Bezzina wrote: Hi, Since this morning I am experiencing a weird problem on one of my full feeds link. My router is a 7606 with dual RSP720-3CXL-GE and running SRD3. I have a multihop bgp peer to get the full bgp feed from my customer. Suddenly this morning the connection started flapping. With the following error message: Jun 16 07:40:03 CEST: %BGP-5-ADJCHANGE: neighbor W.X.Y.Z vpn vrf XX Up Jun 16 07:42:36 CEST: %BGP-5-ADJCHANGE: neighbor W.X.Y.Z vpn vrf XX Down BGP Notification sent Jun 16 07:42:36 CEST: %BGP-3-NOTIFICATION: sent to neighbor W.X.Y.Z 3/4 (invalid flags for attribute) 3 bytes 00 15w6d: BGP: 217.15.96.9 Bad attributes Jun 16 07:42:36 CEST: %BGP-4-MSGDUMP: unsupported or mal-formatted message received from W.X.Y.Z: 012B 0200 0001 1040 0101 02C0 119A 0226 3D77 22E0 04F9 3065 0003 0065 0003 0065 C288 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 4002 4E02 263D 7722 E004 F930 655B A05B A0C2 8822 E422 E422 E422 E422 E422 E422 E422 E422 E422 E422 Jun 16 07:42:42 CEST: %BGP_SESSION-5-ADJCHANGE: neighbor W.X.Y.Z IPv4 Unicast vpn vrf XX topology base removed from session BGP Notification sent The sequence is as follows: It basically goes up, starts getting the feed, then at around 290K routes it logs this error and resets the session. It will Then start over again. Note that this does not seem to be the route dampening issue - I do not even have dampening enabled on my router. Also mls cef is set at 350K for IPv4 and free RAM is over 1G Any ideas? Thanks/Regards Gordon ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Continous BGP session resets on SRD3
On 16/06/2010 16:57, John van Oppen wrote: We saw this issue about 8 hours ago too... It appeared to affect GSRs running anything older than gsr-k4p-mz.120-32.SY9.bin as well as 7200s running non-current versions of IOS. Interesting. Given that several other people are seeing exactly the same problems right now, I wonder is this is some form of bogus prefix floating around? Nick ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Nexus 7k support for Twin-ax cables with N7K-M132XP-12 line card
Check the archive. It's come up before; they're not supported at this time but yea they do work. Sho int capability shows it as 10g unkown if memory serves. Sent from my iPhone On Jun 16, 2010, at 7:57 AM, Matthew Melbourne m...@melbourne.org.uk wrote: Hi, Does anyone know if the copper Twin-ax cables (e.g. SFP-H10GB-CU3M) are supported in the N7K-M132XP-12 line card? We're running NX-OS 5.0(2a) and they appear to work although they're not officially listed on the 10GE Transceiver compatibility matrix. This intention is to use them for 10GE Nexus-Nexus interlinks and between Nexus and 4948-10GE switches (with OneX converters) where distances allow. Cheers, Matt -- Matthew Melbourne ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Continous BGP session resets on SRD3
yep, that is what I was wondering too...It appeared to be coming in on one of our peers (we were seeing adjacencies between the old IOS routers and one of our peering routers as the location of the clearing). Unfortunately from my hotel room at nanog it was not easy to do much other than upgrade the IOSes, I would have loved to get an actual packet capture since the error messages did not indicate the prefix involved. John van Oppen Spectrum Networks Direct: 206-973-8302 Main: 206-973-8300 From: Nick Hilliard [n...@foobar.org] Sent: Wednesday, June 16, 2010 9:04 AM To: John van Oppen Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] Continous BGP session resets on SRD3 On 16/06/2010 16:57, John van Oppen wrote: We saw this issue about 8 hours ago too... It appeared to affect GSRs running anything older than gsr-k4p-mz.120-32.SY9.bin as well as 7200s running non-current versions of IOS. Interesting. Given that several other people are seeing exactly the same problems right now, I wonder is this is some form of bogus prefix floating around? Nick ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] mpls vpn load balancing issue [LONG]
hi all, my first post, please be kind! :) i have a typical mpls network, as a nation-wide mpls-vpn topology, where CE's are connected to PE's via eBGP sesssions. P routers and PE routers are each other inside an ospf area 0, all the PE's are connected to 3 core P's, and P's are acting as route reflectors for all PE's with MP-Bgp. ce1 ce2 ..ceN \ | / \ | / PE1 | | P / \ / \ / \ P---P / \ / \ PE2 PE3 / | / | / | / | ce4 ce5---ce6 ce7 PE are fully meshed with all three P's, please see Figure 6-5 for reference on http://fengnet.com/book/MPLS%20Configuration%20on%20Cisco%20IOS%20Software/ch06lev1sec2.html the ios is at Version 12.2(33)SRD2a. on the PE's, maximum-paths ibgb unequal 2 import 2 is configured under the routing bgp process, inside the address-family ipv4 vrf $VRFNAME. based on this, think about two different CE's in the same AS 65xxx, they are connected to two different PE for redundancy. (ce5 and ce6 above, connected to PE2 and PE3 respectively) BOTH ce5 and ce6 are advertising few routes, the SAME ROUTES for the two CE's, these routes are first statically configured and then announced via network command under the bgp process so for ce5 and ce6 i can see : ip route 1.2.3.0 255.255.255.0 g1/0 a.b.c.d1 ip route 1.2.4.0 255.255.255.0 g1/1 a.b.c.d2 ip route 1.2.5.0 255.255.255.0 g1/0 a.b.c.d1 ip route 1.2.6.0 255.255.255.0 g1/1 a.b.c.d2 and then router bgp 65xxx network 1.2.3.0 mask 255.255.255.0 network 1.2.4.0 mask 255.255.255.0 network 1.2.5.0 mask 255.255.255.0 network 1.2.6.0 mask 255.255.255.0 the issue can be noticed on the remote PE1. on this remote PE1, under the vrf bgp table, you can see that only one of those 4 routes is load balanced with 2 paths, the other 3 ones are not loadbalanced, even if all paths are there in the bgp table for the vrf. so for example on network 1.2.4.0 i have no multipath loadbalancing even if there are 3 available paths: PE1-ROUTER7600#sh ip bgp vpnv4 vrf $VRFNAME 1.2.4.0 BGP routing table entry for 10:1555:1.2.4.0/24, version 381822021 Paths: (3 available, best #3, table $VRFNAME) Multipath: iBGP Advertised to update-groups: 4 6 65xxx, imported path from 10::1.2.4.0/24 10.1.2.2 (metric 45) from 10.0.0.2 (10.10.10.2) Origin IGP, metric 0, localpref 100, valid, internal Extended Community: RT:10: Originator: 10.1.2.99, Cluster list: 0.0.0.1 mpls labels in/out nolabel/459 65xxx, imported path from 10::1.2.4.0/24 10.1.2.3 (metric 45) from 10.0.0.3 (10.10.10.3) Origin IGP, metric 0, localpref 100, valid, internal Extended Community: RT:10: Originator: 10.1.2.88, Cluster list: 0.0.0.2 mpls labels in/out nolabel/839 65xxx, imported path from 10::1.2.4.0/24 10.1.2.3 (metric 45) from 10.0.0.2 (10.10.10.2) Origin IGP, metric 0, localpref 100, valid, internal, multipath, best Extended Community: RT:10:777 Originator: 10.1.2.88, Cluster list: 0.0.0.1 mpls labels in/out nolabel/839 on network 1.2.3.0 i do have multipath and loadbalancing as expected: PE1-ROUTER7600#sh ip bgp vpnv4 vrf $VRFNAME 1.2.3.0 BGP routing table entry for 10::1.2.3.0/24, version 381822020 Paths: (3 available, best #3, table $VRFNAME) Multipath: iBGP Advertised to update-groups: 3 5 65xxx, imported path from 10::1.2.3.0/24 10.1.2.29 (metric 45) from 10.0.0.2 (10.10.10.2) Origin IGP, metric 0, localpref 100, valid, internal, multipath Extended Community: RT:10: Originator: 10.1.2.99, Cluster list: 0.0.0.1 mpls labels in/out nolabel/1282 65xxx, imported path from 10::1.2.3.0/24 10.1.2.28 (metric 45) from 10.0.0.3 (10.10.10.3) Origin IGP, metric 0, localpref 100, valid, internal Extended Community: RT:10: Originator: 10.1.2.88, Cluster list: 0.0.0.2 mpls labels in/out nolabel/719 65xxx, imported path from 10::1.2.3.0/24 10.1.2.28 (metric 45) from 10.0.0.2 (10.10.10.2) Origin IGP, metric 0, localpref 100, valid, internal, multipath, best Extended Community: RT:10: Originator: 10.1.2.88, Cluster list: 0.0.0.1 mpls labels in/out nolabel/719 why for a network i have lodbalancing and for the other one i haven't? other than the missing multipath, why the vrf bgp table shows 3 paths, even if i configured it to import only 2 at maximum? lastly, the issue isn't live all the days, somedays i have 4 paths for each prefix and multipathing occurs as well. hope it's clear enough, i did also a dynamips emulation but everything works fine there, even if with a newer 12.4T. thanks to whom patiently read til here and thanks anyway. best regards. -- -- ___ cisco-nsp mailing list cisco-nsp@puck.nether.net
Re: [c-nsp] Shared vs Independent VLAN learning with Q-in-Q
What type of platform? Provider, or customer application, or both? ~Jay Murphy IP Network Specialist NM State Government IT Services Division PSB – IP Network Management Center Santa Fé, New México 87505 We move the information that moves your world. “Good engineering demands that we understand what we’re doing and why, keep an open mind, and learn from experience.” “Engineering is about finding the sweet spot between what's solvable and what isn't. Radia Perlman Please consider the environment before printing e-mail -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Derick Winkworth Sent: Tuesday, June 15, 2010 5:19 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Shared vs Independent VLAN learning with Q-in-Q Does anyone know if there are any Cisco platforms that support IVL with Q-in-Q so the mac lookup is a 72-bit field essentially (both VLANs and MAC address). Just curious... ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ Confidentiality Notice: This e-mail, including all attachments is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited unless specifically provided under the New Mexico Inspection of Public Records Act. If you are not the intended recipient, please contact the sender and destroy all copies of this message. -- This email has been scanned by the Sybari - Antigen Email System. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] mpls vpn load balancing issue [LONG]
(sorry i forget to add the tag in front of the subject) hi all, my first post, please be kind! :) i have a typical mpls network, as a nation-wide mpls-vpn topology, where CE's are connected to PE's via eBGP sesssions. P routers and PE routers are each other inside an ospf area 0, all the PE's are connected to 3 core P's, and P's are acting as route reflectors for all PE's with MP-Bgp. ce1 ce2 ..ceN \ | / \ | / PE1 | | P / \ / \ / \ P---P / \ / \ PE2 PE3 / | / | / | / | ce4 ce5---ce6 ce7 PE are fully meshed with all three P's, please see Figure 6-5 for reference on http://fengnet.com/book/MPLS%20Configuration%20on%20Cisco%20IOS%20Software/ch06lev1sec2.html the ios is at Version 12.2(33)SRD2a. on the PE's, maximum-paths ibgb unequal 2 import 2 is configured under the routing bgp process, inside the address-family ipv4 vrf $VRFNAME. based on this, think about two different CE's in the same AS 65xxx, they are connected to two different PE for redundancy. (ce5 and ce6 above, connected to PE2 and PE3 respectively) BOTH ce5 and ce6 are advertising few routes, the SAME ROUTES for the two CE's, these routes are first statically configured and then announced via network command under the bgp process so for ce5 and ce6 i can see : ip route 1.2.3.0 255.255.255.0 g1/0 a.b.c.d1 ip route 1.2.4.0 255.255.255.0 g1/1 a.b.c.d2 ip route 1.2.5.0 255.255.255.0 g1/0 a.b.c.d1 ip route 1.2.6.0 255.255.255.0 g1/1 a.b.c.d2 and then router bgp 65xxx network 1.2.3.0 mask 255.255.255.0 network 1.2.4.0 mask 255.255.255.0 network 1.2.5.0 mask 255.255.255.0 network 1.2.6.0 mask 255.255.255.0 the issue can be noticed on the remote PE1. on this remote PE1, under the vrf bgp table, you can see that only one of those 4 routes is load balanced with 2 paths, the other 3 ones are not loadbalanced, even if all paths are there in the bgp table for the vrf. so for example on network 1.2.4.0 i have no multipath loadbalancing even if there are 3 available paths: PE1-ROUTER7600#sh ip bgp vpnv4 vrf $VRFNAME 1.2.4.0 BGP routing table entry for 10:1555:1.2.4.0/24, version 381822021 Paths: (3 available, best #3, table $VRFNAME) Multipath: iBGP Advertised to update-groups: 4 6 65xxx, imported path from 10::1.2.4.0/24 10.1.2.2 (metric 45) from 10.0.0.2 (10.10.10.2) Origin IGP, metric 0, localpref 100, valid, internal Extended Community: RT:10: Originator: 10.1.2.99, Cluster list: 0.0.0.1 mpls labels in/out nolabel/459 65xxx, imported path from 10::1.2.4.0/24 10.1.2.3 (metric 45) from 10.0.0.3 (10.10.10.3) Origin IGP, metric 0, localpref 100, valid, internal Extended Community: RT:10: Originator: 10.1.2.88, Cluster list: 0.0.0.2 mpls labels in/out nolabel/839 65xxx, imported path from 10::1.2.4.0/24 10.1.2.3 (metric 45) from 10.0.0.2 (10.10.10.2) Origin IGP, metric 0, localpref 100, valid, internal, multipath, best Extended Community: RT:10:777 Originator: 10.1.2.88, Cluster list: 0.0.0.1 mpls labels in/out nolabel/839 on network 1.2.3.0 i do have multipath and loadbalancing as expected: PE1-ROUTER7600#sh ip bgp vpnv4 vrf $VRFNAME 1.2.3.0 BGP routing table entry for 10::1.2.3.0/24, version 381822020 Paths: (3 available, best #3, table $VRFNAME) Multipath: iBGP Advertised to update-groups: 3 5 65xxx, imported path from 10::1.2.3.0/24 10.1.2.29 (metric 45) from 10.0.0.2 (10.10.10.2) Origin IGP, metric 0, localpref 100, valid, internal, multipath Extended Community: RT:10: Originator: 10.1.2.99, Cluster list: 0.0.0.1 mpls labels in/out nolabel/1282 65xxx, imported path from 10::1.2.3.0/24 10.1.2.28 (metric 45) from 10.0.0.3 (10.10.10.3) Origin IGP, metric 0, localpref 100, valid, internal Extended Community: RT:10: Originator: 10.1.2.88, Cluster list: 0.0.0.2 mpls labels in/out nolabel/719 65xxx, imported path from 10::1.2.3.0/24 10.1.2.28 (metric 45) from 10.0.0.2 (10.10.10.2) Origin IGP, metric 0, localpref 100, valid, internal, multipath, best Extended Community: RT:10: Originator: 10.1.2.88, Cluster list: 0.0.0.1 mpls labels in/out nolabel/719 why for a network i have lodbalancing and for the other one i haven't? other than the missing multipath, why the vrf bgp table shows 3 paths, even if i configured it to import only 2 at maximum? lastly, the issue isn't live all the days, somedays i have 4 paths for each prefix and multipathing occurs as well. hope it's clear enough, i did also a dynamips emulation but everything works fine there, even if with a newer 12.4T. thanks to whom patiently read til here and thanks anyway. best regards. -- -- ___ cisco-nsp mailing list
Re: [c-nsp] Continous BGP session resets on SRD3
Did anyone get a couple of the update dumps? On 6/16/10 11:57 AM, John van Oppen wrote: 012B 0200 0001 1040 0101 02C0 119A 0226 3D77 22E0 04F9 3065 0003 0065 0003 0065 C288 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 4002 4E02 263D 7722 E004 F930 655B A05B A0C2 8822 E422 E422 E422 E422 E422 E422 E422 E422 E422 E422 ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Nexus 7k support for Twin-ax cables with N7K-M132XP-12 linecard
Matthew, Yes it is not officially listed, however, other companies sell it and state the compatibility... However, for the 4900 series it is officially listed. ~Jay Murphy IP Network Specialist NM State Government IT Services Division PSB – IP Network Management Center Santa Fé, New México 87505 We move the information that moves your world. “Good engineering demands that we understand what we’re doing and why, keep an open mind, and learn from experience.” “Engineering is about finding the sweet spot between what's solvable and what isn't. Radia Perlman Please consider the environment before printing e-mail -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Matthew Melbourne Sent: Wednesday, June 16, 2010 8:57 AM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Nexus 7k support for Twin-ax cables with N7K-M132XP-12 linecard Hi, Does anyone know if the copper Twin-ax cables (e.g. SFP-H10GB-CU3M) are supported in the N7K-M132XP-12 line card? We're running NX-OS 5.0(2a) and they appear to work although they're not officially listed on the 10GE Transceiver compatibility matrix. This intention is to use them for 10GE Nexus-Nexus interlinks and between Nexus and 4948-10GE switches (with OneX converters) where distances allow. Cheers, Matt -- Matthew Melbourne ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ Confidentiality Notice: This e-mail, including all attachments is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited unless specifically provided under the New Mexico Inspection of Public Records Act. If you are not the intended recipient, please contact the sender and destroy all copies of this message. -- This email has been scanned by the Sybari - Antigen Email System. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Shared vs Independent VLAN learning with Q-in-Q
On Tue, 2010-06-15 at 16:19 -0700, Derick Winkworth wrote: Does anyone know if there are any Cisco platforms that support IVL with Q-in-Q so the mac lookup is a 72-bit field essentially (both VLANs and MAC address). All Catalyst switches have per-VLAN FIBs, if that's what you're asking. Aren't all switches like that these days? -- Peter ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Shared vs Independent VLAN learning with Q-in-Q
As far as I know there is no way to get this to happen. The bridging decision will be only on the outer Q tag. The inner tag is not considered as part of the MAC lookup. This why when you get two QinQ tunnels from an ISP they need to be sure they are carried through their network in different vlans, else you can see mac flapping. -Ben On Jun 16, 2010, at 3:47 PM, Peter Rathlev wrote: On Tue, 2010-06-15 at 16:19 -0700, Derick Winkworth wrote: Does anyone know if there are any Cisco platforms that support IVL with Q-in-Q so the mac lookup is a 72-bit field essentially (both VLANs and MAC address). All Catalyst switches have per-VLAN FIBs, if that's what you're asking. Aren't all switches like that these days? -- Peter ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] ASR 1002 with IOS 12.2(33)XNF1 Percentage based traffic shaping
hi, Does anyone have problem with ASR 1002 in configuring Percentage based traffic shaping I have following config? Somehow I am not able to attach the swrvice policy to tunnel interface. CLI throw following error. Traffic Shaping feature is not supported in user defined class of parent level policy CEF is enabled globally and I also tried applying service policy after configuring qos-preclassify. Is there anything special about ASR 1002 for traffic shapping configuration? On physical interface there is no issues in applying this policy-map. ! class-map match-all Bandwidth_Control_to_Store_CLASS match access-group name Bandwidth_Control_to_Store_ACL ! ! policy-map Bandwidth_Control_to_Store_POLICY class Bandwidth_Control_to_Store_CLASS shape average percent 50 ! interface Tunnel780 bandwidth 1500 ip address 10.56.63.245 255.255.255.252 ip tcp adjust-mss 1436 ip ospf cost 50 keepalive 2 3 cdp enable tunnel source FastEthernet0/0 tunnel destination 192.168.22.206 end ! ip access-list extended Bandwith_Control_to_Store_ACL permit ip host 172.18.128.242 any interface FastEthernet0/2/0 ip address 192.168.16.2 255.255.255.252 speed 100 no negotiation auto end Krunal ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Shared vs Independent VLAN learning with Q-in-Q
hey, All Catalyst switches have per-VLAN FIBs, if that's what you're asking. Aren't all switches like that these days? With QinQ you need to look at inner vlan aswell. I don't think any cisco switch can do it. And yes, it's actually a problem, consider 2 different inner vlans with vrrp routers on two sites connected by QinQ. You'll get constant vrrp mac flapping between endpoints. If it's only 2 endpoints you could always turn off mac learning completely. -- tarko ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ASR 1002 with IOS 12.2(33)XNF1 Percentage based traffic shaping
On Wed, 2010-06-16 at 16:23 -0400, krunal shah wrote: Does anyone have problem with ASR 1002 in configuring Percentage based traffic shaping I have following config? Somehow I am not able to attach the swrvice policy to tunnel interface. CLI throw following error. Traffic Shaping feature is not supported in user defined class of parent level policy Maybe it's because the class has no idea what the 50% are from. The bandwidth interface configuration command does nothing in this context. Try creating a parent class specifying the bandwidth (shape average 150) and then attach the current class as a child to that one. -- Peter ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Specification of RA that responds to RS (applied RA suppress I/F)
Hi, Cat65 interface(GigabitEthernet) sent out RA, when RS was received in the interface that applied ipv6 nd ra suppress. Is this behavior within specification ? Catalyst6503 SUP720-3BXL s72033-ipservicesk9_wan-vz.122-33.SXI3 I was not able to find a clear answer though I saw a similar contribution before. - http://www.mail-archive.com/cisco-nsp@puck.nether.net/msg27203.html - nakayama daigo ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] BGP routing table !!
Hi guys, Might be a basic question but i couldnt find anything, i have cisco 7606 i just had a new peering with our upstream provider, but router rebooted when routes reached 300k, router is not running anything else as well. Any idea? Cisco CISCO7606-S (M8500) processor (revision 1.0) with 851968K/65536K bytes of memory. Processor board ID FOX1310G2VB BASEBOARD: RSP720 CPU: MPC8548_E, Version: 2.0, (0x80390020) CORE: E500, Version: 2.0, (0x80210020) CPU:1200MHz, CCB:400MHz, DDR:200MHz, L1:D-cache 32 kB enabled I-cache 32 kB enabled Regards ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Nexus 7k support for Twin-ax cables with N7K-M132XP-12 line card
they seem to work but trust me when i state (with a Cisco hat on) that there are good reasons we don't list the 1m/3m/5m passive CX1 as officially supported on N7K-M132XP-12 module. if you are going to use them - either cisco branded or 3rd party ones - strongly suggest you actually 'test' them in all scenarios. suggest you reach out to your account team too. there may be other options available. cheers, lincoln. On 17/06/2010, at 2:05 AM, Ryan Hughes wrote: Check the archive. It's come up before; they're not supported at this time but yea they do work. Sho int capability shows it as 10g unkown if memory serves. Sent from my iPhone On Jun 16, 2010, at 7:57 AM, Matthew Melbourne m...@melbourne.org.uk wrote: Hi, Does anyone know if the copper Twin-ax cables (e.g. SFP-H10GB-CU3M) are supported in the N7K-M132XP-12 line card? We're running NX-OS 5.0(2a) and they appear to work although they're not officially listed on the 10GE Transceiver compatibility matrix. This intention is to use them for 10GE Nexus-Nexus interlinks and between Nexus and 4948-10GE switches (with OneX converters) where distances allow. Cheers, Matt -- Matthew Melbourne ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Nexus 7k support for Twin-ax cables with N7K-M132XP-12 line card
On 17/06/2010 01:07, Lincoln Dale wrote: [...] trust me when i state (with a Cisco hat on) that there are good reasons [...] Lincoln, you're a terrible tease :-) Put us out of our misery. Please! Nick ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Console problems
I can't seem to come up with the right keyword combination to google this. I've got a 7206VXR with an NPE-400 and an I/O 2FE/E card. Using a Belkin USB to Serial adaptor I can watch the router boot and get to the Press Return to get Started prompt. After I hit return the interfaces go up and then admin down. After that I can't get anything out of the console. I can insert and remove a DS3 card and I will see a message saying the card was inserted and removed but I can't interact with the box. I've connected to a 3550 I have laying here and I am able to get a console session going with it. Does anyone have any ideas on this one? Everything I am googleing relates to the router crashing or hanging which this one does not seem to do. Richey ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Console problems
I have some strange problem with my USB-serial adapter on only certain ASA/PIX chassis. (not specific model, just some work some don't) It works with other brand of USB adapter. I say get another USB-Serial adapter. I usually keep two different models in my bag. On Wed, Jun 16, 2010 at 11:04 PM, Richey myli...@battleop.com wrote: I can't seem to come up with the right keyword combination to google this. I've got a 7206VXR with an NPE-400 and an I/O 2FE/E card. Using a Belkin USB to Serial adaptor I can watch the router boot and get to the Press Return to get Started prompt. After I hit return the interfaces go up and then admin down. After that I can't get anything out of the console. I can insert and remove a DS3 card and I will see a message saying the card was inserted and removed but I can't interact with the box. I've connected to a 3550 I have laying here and I am able to get a console session going with it. Does anyone have any ideas on this one? Everything I am googleing relates to the router crashing or hanging which this one does not seem to do. Richey ___ cisco-nsp mailing list cisco-...@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Continous BGP session resets on SRD3
Hi, The other end is a GSR, but I do not have control on. Anyhow performed emergency upgrade my 7600 from SRD3 to SRE1, did the trick. It now works without any problems. Thanks to all. Best Regards Gordon -Original Message- From: John van Oppen [mailto:jvanop...@spectrumnet.us] Sent: L-Erbgħa, 16 ta' Ġunju 2010 17:43 To: Kostas Fotiadis; Gordon Bezzina Cc: cisco-nsp@puck.nether.net Subject: RE: [c-nsp] Continous BGP session resets on SRD3 We saw this issue about 8 hours ago too... It appeared to affect GSRs running anything older than gsr-k4p-mz.120-32.SY9.bin as well as 7200s running non-current versions of IOS. Our 6500s were all fine but they are all running at least s72033-adventerprisek9_wan-mz.122-33.SXI1.bin. This sure looked like it was tickling CSCeh13489 but we already limit the maximum AS-path length to well-under 255 and that did not seem to protect us. We ended up doing an emergency upgrade of the GSRs involved. John van Oppen Spectrum Networks Direct: 206-973-8302 Main: 206-973-8300 From: cisco-nsp-boun...@puck.nether.net [cisco-nsp-boun...@puck.nether.net] on behalf of Kostas Fotiadis [kostas.fotia...@oteglobe.net] Sent: Wednesday, June 16, 2010 4:41 AM To: Gordon Bezzina Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] Continous BGP session resets on SRD3 Hi Gordon, Just hang-up the phone with TAC. We also had the same issue this morning. One session was iBGP and the other eBGP. Engineer said, undocumented bug, needs to do more research and get back to be. Don't know what he did and fix it. I guess you need to open a case... Good luck, Kostas On 16/6/2010 12:37 μμ, Gordon Bezzina wrote: Hi, Since this morning I am experiencing a weird problem on one of my full feeds link. My router is a 7606 with dual RSP720-3CXL-GE and running SRD3. I have a multihop bgp peer to get the full bgp feed from my customer. Suddenly this morning the connection started flapping. With the following error message: Jun 16 07:40:03 CEST: %BGP-5-ADJCHANGE: neighbor W.X.Y.Z vpn vrf XX Up Jun 16 07:42:36 CEST: %BGP-5-ADJCHANGE: neighbor W.X.Y.Z vpn vrf XX Down BGP Notification sent Jun 16 07:42:36 CEST: %BGP-3-NOTIFICATION: sent to neighbor W.X.Y.Z 3/4 (invalid flags for attribute) 3 bytes 00 15w6d: BGP: 217.15.96.9 Bad attributes Jun 16 07:42:36 CEST: %BGP-4-MSGDUMP: unsupported or mal-formatted message received from W.X.Y.Z: 012B 0200 0001 1040 0101 02C0 119A 0226 3D77 22E0 04F9 3065 0003 0065 0003 0065 C288 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 22E4 4002 4E02 263D 7722 E004 F930 655B A05B A0C2 8822 E422 E422 E422 E422 E422 E422 E422 E422 E422 E422 Jun 16 07:42:42 CEST: %BGP_SESSION-5-ADJCHANGE: neighbor W.X.Y.Z IPv4 Unicast vpn vrf XX topology base removed from session BGP Notification sent The sequence is as follows: It basically goes up, starts getting the feed, then at around 290K routes it logs this error and resets the session. It will Then start over again. Note that this does not seem to be the route dampening issue - I do not even have dampening enabled on my router. Also mls cef is set at 350K for IPv4 and free RAM is over 1G Any ideas? Thanks/Regards Gordon ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] OT - Cisco QoS - FIFO
Had a question about QoS with a co-worker asking does Cisco devices give priority to Network Control (CS6) traffic traffic? He show/told me that in Juniper that always have 5% for Network control traffic even on FIFO Chris O'Shea ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/