Cisco Firewall :: 5580-40 - Input Errors / Overruns And Reset Drops On 10Gig Interface?
May 10, 2012
I have an issue with input errors, overruns, and input reset drops on the inside interface of an 5580-40 (v8.2.5: Transparent mode) The box is not stressed at all according to the 'show' commands in the Cisco troubleshooting performance document for PIX/ASA v8.2.5. Nothing stands out because is pretty much normal, nothing (processes, RAM, blocks, IO...) really being highly utilized. I have replaced the 10Gig card and that seemed to work because the rate of errors has gone down tremedously. The next step is to RMA the whole box.My question is what would be the cause of the inside interface to stop processing traffic (I say that because the syslog server stops receiving messages) for some periods of 30 seconds periodically throughout the day and clients lose their connections (ie Outlook, IBM Sametime, Oracle, MSSQL..etc). Can the issue be somewhere related to the overruns and input errors?
View 2 Replies
ADVERTISEMENT
Feb 26, 2013
My Expertise with Cisco ASA is Very less. I have observed Input errors in a Couple of Interfaces in Cisco ASA 5540 Firewall. [code] I need to Clear the Input errors on this particular Interface.Will Clear interface GigabitEthernet 0/0 will work?
View 4 Replies
View Related
May 11, 2011
My router, a Cisco 7204 with NPE 300, is experiencing output drops and input errors on a fastethernet interface. I have a 100Mbps connection with less than 15Mbps utilization at peak times.
FastEthernet1/0 is up, line protocol is up Hardware is DEC21140, address is 0014.a985.1a1c (bia 0014.a985.1a1c) Internet address is 38.102.66.134/30 MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, reliability 255/255, txload 3/255, rxload 1/255
[Code]....
View 17 Replies
View Related
Nov 4, 2011
I use an 1841 router as an internet facing firewall with a 10MB MetroE connection. Lately users started reporting slow internet download speeds and web pages timing out. Bandwidth reports do not show the link as being saturated so I looked at the interfaces on the 1841. The interface connected to the provider shows OK as far as errors but the LAN side of the router shows steadily increasing input errors. It doesn't show any other errors, no CRC, frame, runts, giants or overruns, just generic input errors. What type of errors are those? Nothing is being logged on the console.
I moved the connection to another switch ports and the errors continue. I switched it down to 10MB and also changed the switch and the errors slow down but don't stop. Interestingly, the switch side never shows any errors. What can I do here? I guess it can be a bad interface but that is such a rare thing that I am hesitant to replace the router.
View 11 Replies
View Related
Apr 16, 2013
We are facing since one month in our two Cisco WS-C3750G-12S on many interfaces input errors when data transer or ping (ICMP) increase input erros. Not only port 1 but many interface has same issue, i have change new IOS but still same issue, once i have erase startup config but same issue we are facing and finaly i have replace same new switch with the same IOS it's working fine.(c3750-ipservicesk9-mz.122-55.SE4.bin) [code]
View 11 Replies
View Related
Nov 16, 2009
Why packets overrun are incrementing on the ASA even when I've only 40Mbps of throughput traffic?All interface are 1000- Full Duplex, both on ASA and on Catalyst3750.I've test the ASA5540 generating GET HTTP, about 40Mbit of traffic.When I use one ingress interface and one egress interface, interface input overrun counter is zero.When I use the same traffic with 3 ingress interfaces(slot0) and 3 egress interfaces(slot1), interface input overrun counter increase(60k overrun in only 2 minutes).
View 4 Replies
View Related
Feb 22, 2012
I have this output from show interfaces command for the fastethernet interface on a 2811 router.
find the causes of the crc and the ignored input errors on the interface?
The interface configuration is:
interface FastEthernet0/0description VLANS_CHILE
no ip address
[Code]....
View 6 Replies
View Related
Oct 21, 2012
I have been making effort to solve frequent input errors of module interface(WS-X4548-GB-RJ45) in our Backbone Switch(Cat4506).Let me show you show interface information.Rx-No-pkt-buff value is increased continuously even though traffic rate of interfaces is lower than 20Mbps.We have two Backbone Switch which is operated by HA via HSRP.What bring buffer shortage to our network ? [code]
View 2 Replies
View Related
Feb 11, 2012
I am receiving allot of Errors "%ASA-4-405001: received ARP collision from IP/MAC on interface dmz1 with existing ARP Entry IP/MAC
When i checked this MAC address in the same firewall it shows too many IP Addresses. What could be the reason ?
View 0 Replies
View Related
Apr 26, 2013
We have deployed a few ASA 5585 SSP40 in our data centers to seperate different customer/security zones connected with 10Gig interfaces. Currently we have a dedicated log server attached to each ASA connected with a p2p 10Gig interface. While detailed log information is considered important I somehow have the gut feeling all this high end equipment and bandwidth is used a little too wasteful. I have little experience with these big firewalls and I have not yet seen the equipment in an attack situation, however I doubt a firewall could ever generate 10gig of log data, while doing the primary fire walling job at the same time. Looking at the typical packet size of a syslog message I don't even believe a 1 gig link could ever be saturated with pure syslog messages.
View 3 Replies
View Related
Dec 6, 2011
Vlan interface would be dropping packets on the input queue? Refer to the drops/flushes below. This is from a 6500 with a Sup720, there are a number of vlans on it. This 6500 and it's HSRP partner are exhibiting the same symptoms on all the vlans I bothered to check. This particular vlan is quite lightly used, there are only about fifteen user PC's (each with 100 Mb interfaces) on it.
There is a bit of information on input queue drops on Cisco, but this is focused on physical interfaces where I can understand some packets being dropped. I would think that Vlan interfaces would have different issues.I note the "no buffer" errors as well, that also concerns me, especially as that counter is quite close to the "flushes".
Vlan123 is up, line protocol is up Hardware is EtherSVI, address is 00d0.04fd.6000 (bia 00d0.04fd.6000) Description: Vlan123 Internet address is 10.123.123.7/24 MTU 1500 bytes, BW 1000000 Kbit, DLY 10 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation ARPA, loopback not set Keepalive not supported ARP type: ARPA, ARP Timeout 04:00:00
[Code] .......
View 3 Replies
View Related
Nov 6, 2011
i have an 2921 connected to an Catalyst 3560. My router interface shows quite a lot of input queue drops. Load is not too much max 5/255.
View 1 Replies
View Related
May 28, 2013
We are having Cisco ASA 5540 having Cisco Adaptive Security Appliance Software Version 8.0(5)23 at certain time of moment daily wer are facing latency and packetdrop wherin when I checked for ASA Interface which gives me " Input Errors" on outside interface ,so can any one tell me what are the causes to get input errors on cisco asa outisde interface.
View 2 Replies
View Related
May 1, 2012
I have got new cisco ASA 5580 running 7.2(4) on it when i am trying to configured Virtual interface on vlan 400 in Gi0/0.400 to LBASE.now the problem is from my MZ zone 10.242.107.17 to Lbase virtual interface 10.242.103.1 iam not able to ping.
View 2 Replies
View Related
Dec 14, 2011
I have a PIX 535 connected through OFC to Cisco 2960 Switch.
PIX end - G0 (SC type Connector) - Switch End - Gi1/0/28 (LC type connector)
When I am pinging from either side, I am getting packet drops. CRC error is increasing at PIX interface.
Speed settings, tried with
auto - auto
auto - nonegotiate
nonegotiate - auto
nonegotiate - nonegotiate
But no improvements. When its connected with SC - SC connector, its working fine.
Switch also working fine when connected LC - LC.Switch OS is 15.x version.
Cisco PIX Security Appliance Software Version 7.0(4) <system>
Device Manager Version 5.0(4) Cisco PIX Security Appliance Software Version 7.0(4) <system>Device Manager Version 5.0(4)
View 1 Replies
View Related
Oct 21, 2012
I ran into a problem a few weeks ago and am still trying to figure out why either the 3560 switch or our Cacti syslog server did not alert us when one of our ports was experiencing heavy CRC and Input errors.
I had upgraded the IOS to 12.2(55)SE6 and rebooted the switch. About a week later, someone was troubleshooting why print jobs were having problems printing to a high speed printer. When I looked at the interface it showed a few thousand CRC and Input errors. I cleared the counters and had them print again and watched as the CRC and Input errors went up. When I did a "show log" there were no error messages. Looking at our Cacti Syslog there were also no errors present for the past 6 months.
We found that the device on the port was set to auto speed and duplex and the switch port was at 100/Full. Once we got them to match the problem was resolved, but we were left wondering why we never got any alerts.
We also have some 3548 and 3550 model switches that Cacti picks up %LINK-4-ERROR for any ports that show CRC and Input errors. I did some research and it appears that the 3560 switches do not have the LINK facility code. I believe it has been replaced with a PHY link code but I'm not sure. We do have some "%PHY-4-EXCESSIVE_ERRORS: Excessive FCS, data, or idle word errors found" but they are all for 3750 switches. I could not find any 3560 that had alerted for that error or the LINK error.
I also tripped port security on the 3560 switch just to make sure that it was reporting correctly to Cacti and that alert did show up.
My question is how do I get a 3560 switch to alert in the logging buffer for CRC/Input/FCS errors? Also, how I can generate CRC and Input errors on purpose for testing? I tried mismatching the speed/duplex/Auto and only got collissions, no CRC or Input errors.
View 2 Replies
View Related
Mar 22, 2012
ASA has 3 interfaces: outside, inside, DMZ Average total throughput is between 20-200mbps. Majority of throughput would be between inside and DMZ interfaces. CPU never goes above 70% (and doesn't seem to spike much with respect to traffic patterns).We are seeing lots of errors on the interface. Inside output:
Interface GigabitEthernet0/1 "Inside", is up, line protocol is up
Hardware is i82546GB rev03, BW 1000 Mbps, DLY 10 usec
Auto-Duplex(Full-duplex), Auto-Speed(1000 Mbps)
Input flow control is unsupported, output flow control is unsupported
[code]....
The ASA is a VPN headend for 3 remote branches. Approximately 100 VOIP phones between the sites register to a phone server at the main site (where 5520 is).I'm baffled by these overruns and underruns.
Code version 8.2(2).I refuse to believe that I need to upgrade the firewall when a 5520 can supposedly process 450mbps (aware this is best case but our average is close to 80-100mbps) and should do 300,000 bps wheras on average we are pushing 10-15,000.Is there anything we can do to find out why the ASA is having such a hard time processing all of the packets we are sending it?
View 5 Replies
View Related
Jul 1, 2012
I am not sure why the CRC and input errors are increasing in fastethernet port...This port is used as Intradomain cross connect to Data Center service provider for LAN extension between two Data Centers in different locations... The link is 100 MB. The switch port is directly connected to patch panel of DC provider and I believe they have some L3 switch or some other device that is providing LAN extension...
#sh interfaces fastEthernet 0/23
FastEthernet0/23 is up, line protocol is up (connected)
Hardware is Fast Ethernet, address is 0019.3050.1497 (bia 0019.3050.1497)
Description: ASA_VPN_TO
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
[code]....
View 26 Replies
View Related
Dec 5, 2011
I'm using a Cisco 1812 to route traffic from a small location with 10 users.. Users are complaning about packet loss, and programs with live database connection is freezing..On the router i've checked one of the Fastethernet interfaces, and I can see that the input errors are increasing constantly. [code]
View 5 Replies
View Related
Oct 2, 2012
I am not sure why the CRC and input errors are increasing in fastethernet port...This port is used as Intradomain cross connect to Data Center service provider for LAN extension between two Data Centers in different locations... The link is 100 MB. The switch port is directly connected to patch panel of DC provider and I believe they have some L3 switch or some other device that is providing LAN extension...
#sh interfaces fastEthernet 0/23
FastEthernet0/23 is up, line protocol is up (connected)
Hardware is Fast Ethernet, address is 0019.3050.1497 (bia 0019.3050.1497)
[Code].....
View 3 Replies
View Related
Mar 15, 2013
I have an ASR 1002x connected to a 6513. Connection is from ASR Gig Copper SFP to 6513 Copper 10/100/1000 port. The ASR is recevinig Runt and input errors. I have removed the negotiation auto command on both boxes and hard coded the speed etc and still errors occur. I have also added the negotiation auto to both devices and also removed it with out hard coding the speed at and same results. Everytime I have seen these errors is has been to collision caused by a duplex mismatch.
View 4 Replies
View Related
Mar 11, 2013
I have an odd situation where I cannot get a device connected to a built in switchport with out input and crc errors. When connecting to a GLC-T sfp it works fine.Here is my test layout
Outdoor wireless AP --- 10' of cat6 cable --- Gigabit POE injector --- 10' Cat6 cable --- 3560G port 48. (input and crc errors)
When I do this there are input and crc errors on the switch port. This has been confirmed on three different switches and three different outdoor AP's. We though at first it was the injector, but when we run the same setup, but instead connect the device to port 49 with a GLC-T sfp there are no errors.
Outdoor wireless AP --- 10' of cat6 cable --- Gigabit POE injector --- 10' Cat6 cable --- 3560G port 49 (GLC-T). (No errors)
I have upgraded the 3560G to the latest ios and still it has the same problem. If I run the same setup to a 2960 there are no errors at all.
Outdoor wireless AP --- 10' of cat6 cable --- Gigabit POE injector --- 10' Cat6 cable --- 2960 port g0/1 (No errors)
I have also tried manually setting the speed on the 3560G with no success.
View 9 Replies
View Related
Oct 13, 2011
Today I've received reports of slow internet access/activity and have noticed myself that it seems a bit slow today. On the dashboard of our asa 5510 the "outside interface" traffic usage is running constantly high. It's at the top of the graph. How can I tell what is causing the spike in utilization. It usually runs at about 1500-2000 Kbps, and now it's up over 10,000.
View 6 Replies
View Related
Feb 7, 2011
I have this topology in part of my networ:k
Cisco7200---Cisco6500---Cisco3560---LAN1
|
Cisco3560
|
LAN2
All devices are interconected via optical 1Gb/s links. There is no QoS implemented on any device and all VLANs are allowed on all interfaces.
Also all links are trunks (with many VLANs)
In LAN1 there was a layer 2 broadcast-storm and 4000packets/s was comming to rest of the network (in one particular VLAN).
1) 7200 with G1 should be able to handle traffic up to 500Mb/s, but a lot of users experienced drops on traffic via 7200.
(CPU load was around 10%).
2) Why do I have input drops on 7200 on link toward 6500 if CPU was normal. Broadcast comming to this interfaces were cca 4kpps. But since it's destination is not on router these packets should be rejected on interface controller. Is that right? (7200 doesn't even has dot1q subinterface in that VLAN but since 6500 allow all VLANs on its trunk these packets reach 7200)
3) Why do I have output drops on Cisco 6500 (it is here as layer 2 device only)? It is max 160Mb/s in output direction. It has WS6724 card with DFC (there is no oversubscription).. Shouln't 6500 send traffic as fast as interface allows (up to 1Gb/s). Am I righ't?
4) After all how coul'd 6500 now if 7200 can't handle these traffic?Output drops should be only seen if QoS is enabled (i.e. shaping), or if there is oversubscription on the linecard?
View 4 Replies
View Related
Oct 30, 2011
Our customer is experimenting really bad performance when running 10Gig traffic through FWSM on C6509. Test with1 Gig traffic are providing find result perfromance as expected in this document: url... I have made a simple drawing so everyone can understand the setup:
The issue is when running 10 Gig traffic between Netapp servers. This traffic is going though the FWSM and the perfomance are really bad: around 50 Mbit/sec. If the traffic is not going though the FWSM ther performance are around 900 Mbit/s.
The customer and I think that the issue is releated the buffer in the C6509 and the FWSM which has big trouble managing 10G to 1G traffic convertering between C6509 and FWSM 6 G etherchannel connection.
When running 10G traffic through FWSM the number of output drops are increasing as you can see on the output bellow. The last thing which is wired a is that the speed is showing 1000 Mbits and not 6000Mbits. [code]
View 4 Replies
View Related
Mar 18, 2012
I found increasing of total output drops and output queue drops even input rate was low and no qos apply on this interface. I plan to increase hold queue out for output queue.
Router 1941, 15.0(1)M4
Serial0/0/0 is up, line protocol is up
Hardware is WIC MBRD Serial
[Code]....
View 1 Replies
View Related
Apr 6, 2011
I have a pair of 5505's in transparent mode and connected them to C2960S. The inside interface (which is VLAN5 on the switchport) keeps dropping, going in to error state. There is no log reference in the switch and the interface shows as UP. The standby ASA has no problem, both interfaces on the switch is up. As soon as I failover the units over, the active node inside interfaces drops.
View 2 Replies
View Related
Jan 3, 2012
I would like to know if I can reset the TTL value for all IP packets to 64 as they exit my network through an ASA5505 to the outside network. Can this be done on a 5505?
View 1 Replies
View Related
Jun 17, 2012
What does RP drops entail? We are experiencing 0.23 % drops on an vlan int on one of our 6500. This interface is an L3 to a server-subnet. Doing a sh int vlan 238 switching shows 30935411 RP (Route Processing) drops.It was a bit unclear to me in the thread "Input queue drops on 6500 vlan interface" if RP drops was through the router, or to the router(mgmnt)?I can do a netdr to see what traffic goes to it. It should not generate CPU load, but I think I will wait until after hours before I try that command.
- do NETDR:
-- debug netdr cap rx vlan 238
-- show netdr cap
View 5 Replies
View Related
Sep 8, 2012
I can see drops on one of our busy L3 vlan in the input queue and are going up very frequently.System image file is "sup-bootflash:s72033-psv-mz.122-18.SXD3.binHardware = 6509
View 1 Replies
View Related
Feb 25, 2013
I have a connection that is loosing packets, my show interface output below summarises the interface where i believe the problem is occuring. My Hardware is 6509 running 12.2
View 1 Replies
View Related
Feb 10, 2012
I feel that 3560 and 3750 perform differently with the following two commands:
srr-queue bandwidth shape 5 0 0 0
srr-queue bandwidth limit 50
On 3750, the bandwidth for queue 1 is limited to 100mbps x 50% / 5 = 10mbps
On 3560, the bandwidth for queue 1 is limited to the smaller value of BW / shape weight and BW x limit%.
Does it sound about right? is there a way to check for mls qos input queue drops? The show mls qos interface xxx stat only shows the output queue drops. Maybe for some reason the input queue never drops?
View 6 Replies
View Related
Nov 17, 2012
I have seen an error in GRE configured between two routers over WAN. i am monitoring the WAN link and GRe tunnel via WhatsupGold NMS and it reported that Gre tunnel having packet loss sometimes and this time it affects the services and traffic passing over tunnel.sh int t101 shows output drops . is that the problem ? i have read that i have to adjust MTC size but i tried to change the tunnel MTU to 1400 but still sh int t101 shows MTU as 1514 ? What could be the problem of output drops in my tunnel link. [code]
View 1 Replies
View Related
