Cisco Firewall :: ASA 5505 8.2 (1) Is Rebooting After High Xlate Usage?
Feb 26, 2012
I have ASA that just started to reboot through out the day yesterday. It seems to happen every few hours but not in a pattern.Right before it reboots there is a flood of sys log id 305006 messages "portmap translation creation failed for tcp src inside:xxx dst outside:xxx the xlats go from around 2-3k to about 30+k then crash.Memory ussage is already pretty high normally on this device (about %75 used) CPU is around %15-20 I notice that the portmap translation errors are always from 3 inside host.
View 4 Replies
ADVERTISEMENT
Jan 28, 2013
I have configured an ASA 5510 and 2960S 48 port switch in a lab environment. I have two laptops connected to seperate subinterfaces with server 2003 as dhcp server for one network. Everything has been working fine as we have been testing the ASA while also testing the csc smm module. When we came in today we noticed the csc module cpu is running at 100% constantly and http traffic is extremely slow. I have not yet received my smartnet contracts from the vendor or I would open a TAC case and I have read on the net that this is a common problem.
View 1 Replies
View Related
Jan 20, 2013
I recently reboot my asa 5520, I was trying to remove webvpn listening from my outside nic, even though it wasn't configured. [code]I was planning to do another reload without the fast reload option.
View 1 Replies
View Related
Feb 13, 2013
I'm having a problem with the memory and also trying to create some rules on the CISCO ASA. The version that I got installed was the 8.2.5.33 on a CISCO 5520 with 512 RAM, the memory usage is on 99% used, 1% free and because of that when I'm trying to create a new rule the firewall brings me the next error..So what I did was a downgrade to the version 8.2 (4) 4 and the memory went down a little (82% used, 18% free) but I still got the error when I'm creating an access rule on the device. One thing and I'm not sure if this could affect on the performance are the number of access list and the object groups that are created.
I already open a case with CISCO TAC and they are checking if the problem is with the memory capacity or maybe a memory leak.Also the doubt that I got is with the memory that I got now available should I can create access rules or 82 is still to hig to create a rule or and object group?
View 2 Replies
View Related
Feb 3, 2011
Today I upgraded my Cisco ASA 5505 ASDM from version 6.34 to 6.41 cause of some problems on old version with NetFlow. But now when I switch to dashboard i can not see "Top Usage" tab. That was quite usefull for me. It simply disappeared.
Can i somehow configure which tabs are displayed on dashboard ? I really need that one and I do not want to downgrade :/
View 7 Replies
View Related
Jun 25, 2012
My understanding is for insight to outside we need global and NAT, and for outside to inside we need static and ACL? Traffic goes to high to low, I'm just start working with 5505 recently.
View 2 Replies
View Related
Feb 6, 2012
Do you now if it is possible to disable the xlate for some connection?
The ASA has some concurrent session limitation that, I think, is related to xlate connections.
As my firewall is not performing any kind of NAT, is it possible to disabe xlate for some connections.
I saw some options like nat exemption, but i not sure if the xlate still being create even if we don't have a NAT translation.
View 3 Replies
View Related
Mar 20, 2011
One of my remote sites acquires Internet connectivity via a cable modem service. This goes down intermittently, of course. I would like to purchase DSL service from the local telco and configure the edge ASA (currently a 5505) to use the cable modem path normally ... and fall back to the DSL path if necessary.
These seems hard to do. The edge box would need to evaluate the viability of a WAN path using some set of tests ... perhaps pings to a handful of major Internet sites. If all those pings start failing, it would stall for a minute, to give the WAN service provider time to recover ... then cut over to the second path. Cutting to the second path might mean pushing new DNS server addresses to clients (or perhaps the edge box would hand out both sets of DNS servers all the time and rely on the clients to try them all.) Once the cable modem provider restored service, the edge box would stall for a while (ten minutes? an hour?) and then cut back.
I'm willing to replace the edge box with something fancier (a bigger ASA or something sold as a router or whatever), although I'd like to stay under 10K (list) for such a replacement.
View 3 Replies
View Related
Jan 25, 2013
When a physical switchport/routed port has high usage, you can move the link to a higher capacity port, upgrade the port, bond links, etc. What exactly do you do when an SVI has high usage? I guess you could remove some servers from the VLAN, but that doesn't seem like a reasonable solution. What dictates the capacity of an SVI? The backplane of the switch?
View 14 Replies
View Related
May 29, 2012
I have a 1841 router plugged into a 100M Comcast ethernet connection. My router cpu is really high and users download speed isn't as high as before. Can a 1841 handle 100M circuit with 100 users on it? What would cause the router's cpu to be high? I don't think there are any viruses or malware on the lan.
#sh proc cpu his
r2.leaguecity-toy-startoy 06:06:26 PM Wednesday May 30 2012 PST
111 1 1 1 111 24 1 1 1 1
400369232222544222330359645223283294332688334452308404382236
[Code].....
View 1 Replies
View Related
Mar 4, 2012
I have a lot of cisco 7206 vxr deviceses. I have a high cpu problem.I have a 7206 vxr g2. I used to use ebgp for three upstream carrier. I used to bgp full route table method. I have about 800 Mbps active traffics and behing the router about 1600 active customers.
How can I trouble shoot this high cpu problem?
#sh int gigabitEthernet 0/1
GigabitEthernet0/1 is up, line protocol is up
Hardware is MV64460 Internal MAC, address is 000c.cf1d.d01b (bia 000c.cf1d.d01b)
Description: ***** GW Interface *****
[Code]....
View 4 Replies
View Related
Jan 29, 2012
I have a Cisco 1921 router and it uses 99% of CPU and i cant seem to spot wich process that is taking up the cpu. I have an interface with several sub-interfaces and i am moving data between two of those subnets, i tried the "ip route-cache same-interface"-command on giga bit ethernet 0/1 with all the sub-interfaces like gigabitethernet 0/1.18 and so on. That did not work.
View 1 Replies
View Related
Mar 11, 2013
Received this notice from ISP. Does this make sense:We have noticed we are getting a huge number of queries from X.X.X.X and it is showing to be about 98% of the DNS traffic hitting our name servers. It appears that the data consists of reverse lookups to 10.1.0.0 network. It needs to be remediated as soon as possible because it could cause a service interruption.It almost seems as if my router is acting as a DNS server. The isp data consists of reverse lookups to 10.1.0.0 network which would be the internal.
View 3 Replies
View Related
Jan 15, 2008
I have a strange problem which looks to me like a DOS attack from the inside..but I cant be sure.
Symptoms:
All xlate connections used within hours.
Xlate connections start with all our servers across our WAN before moving onto all workstations.
No viruses have been found.
Looked in syslog and I cant find one single outside IP that seems to be a possible source.
View 7 Replies
View Related
Jan 31, 2011
I've got a problem with a core 6509E and the multicast.A client has a system with cams for the physical security and they are connected to a vlan with this config:
interface VlanXip address 172.20.167.1 255.255.255.128ip helper-address 172.20.32.7ip pim version 1ip pim sparse-modeendThe thing is that we know that one server that shows the cams at the security office is flooding the network and the CPU CORE is over 95% always:
CPU utilization for five seconds: 99%/39%; one minute: 99%; five minutes: 99%
263 644650276 567873287 1135 51.99% 55.06% 55.35% 0 IP Input
[Code] ....
View 1 Replies
View Related
Jul 12, 2012
I'm seeing very high CPU usage on my new 3560CG-8-PC switch. It's at 61%. How to chase down what's causing it?
I'm seeing a lot of rpf-fail drops. What causes them? How to prevent?
Supervisor TxQueue Drop Statistics
Queue 0: 0
Queue 1: 0
[Code].....
View 8 Replies
View Related
Jan 8, 2011
I am getting high cpu on 6500 swich running with SUP2 . Below is process cpu output .
****************** show proc cpu ******************
CPU utilization for five seconds: 97.03% one minute: 97.08% five minutes: 97.02%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process--- ----------- ---------- -------- ------- ------- ------- --- ---------------1 335581512 0 0 2.97% 2.92% 2.98% -2 Kernel and Idle2 6 128 1000 0.00% 0.00% 0.00% -2 Flash MIB Updat3 10468247 8763359 192000 0.98% 0.00% 0.00% -2 SynConfig 4 1694917 1210299 3000 0.57% 0.00% 0.00% -2 Statuspoll 5 341501 2798181 2000 0.19% 0.00% 0.00% -2
[Code]....
View 2 Replies
View Related
Feb 8, 2012
I am having a customer suffering from a vairours RIP problems and i can see these loggs (what do they mean and what to do to aviod that?):
RMS-PE3#show logg | i RIP
Feb 9 14:51:16: %SCHED-3-STUCKMTMR: Sleep with expired managed timer 56528110, time 0x6CBFD5EB5 (00:00:00 ago). -Process= "RIP Router", ipl= 5, pid= 480
.Feb 9 14:53:52: %SCHED-3-STUCKMTMR: Sleep with expired managed timer 4AE46A24, time 0x6CBFFC104 (00:00:00 ago). -Process= "RIP Router", ipl= 5, pid= 480
[Code]....
View 5 Replies
View Related
Aug 18, 2011
I have an Ironport S370 who is serving 30 users. The actual RAM usage is 78%, how should I check what processes are consuming the RAM?
I think this is the cause that the managemente console is much slower than some weeks before.
View 1 Replies
View Related
Sep 13, 2011
i keep getting messages from AVG saying they have detected a very high internet usage, first it was with google and then with firefox..they recommended to shut down and restart..anyone could explain what's going on? I'm not downloadin anything..just checking my mail!
View 1 Replies
View Related
Jan 22, 2012
Recently got a mobile broadband dongle for my laptop, shows 7.2 Mbps speed in the status window and under activity the received bytes is shooting up, as I write this is has went from 25,000,000 to 35,000,000, that's about 10 mg for a few seconds, it does this even when I have no page open, I can't see anything in task manager, I don't know why it's downloading so fast when there's nothing there, also because of this it is slowing my browsing down,
View 3 Replies
View Related
Nov 27, 2011
What is the impact of disabling xlate in FWSM
We have dynamic NAT configured from inside to outside interface, but still it is showing NAT entry as below.
"NAT from inside:177.26.99.10 to outside:177.26.99.10 flags Ii"
Expected NAT entry should as below :
"NAT from inside:177.26.99.10 to outside:111.111.111.111 flags Ii"
We were considering implementing "ip verify revert-path" .Hence here i am thinking whether xlate-bypass is the issue here and implementing same with "ip verify revert-path" woud be a good idea.
View 1 Replies
View Related
Mar 22, 2011
I have an issue with 7600 router where CPU goes up to 60-70% and memory is also high. Both due to BGP Router process. URL We are seeing this issue since ISP has upgraded their router 20 days ago. Router also seen following error.I have not reset the BGP session with ISP yet. Is there any way I can supress BGP updates coming from ISP and see if CPU and memory USAGE reduces. IOS version 12.2(33)SRD and RSP720 with PFC 3cXL
View 1 Replies
View Related
Sep 7, 2012
My 4500 core always in 60 % cpu utility , and when i run #sh proc cpu sorted i find that
55 29725041543795572214 0 39.43% 41.40% 41.39% 0 Cat4k Mgmt LoPri
Which mean that this process is the top one , and when i run #sh platform health i found that Stub-JobEventSchedul
10.00 15.98 10 64 100 500 20 17 12 29269:55 K2 CpuMan Review
30.00 35.60 30 48 100 500 49 46 32 52390:52
Those two process are the top and they already exceed their maximum rang and when i run #sh platform cpu packet statistics i can find that Packets Received by Packet Queue
Queue Total 5 sec avg 1 min avg 5 min avg 1 hour avg
---------------------- --------------- --------- --------- --------- ----------
Esmp 5053121950 475 462 340 326
L2/L3Control 244395185 17 8 5 11
Host Learning 67315739 0 0 0 0
L3 Fwd Low 346689615 73 23 14 13
L2 Fwd Low 5336180603 1180 1129 831 804
L3 Rx Low 2287913 0 0 0 0
RPF Failure 7510829 1 0 0 0
View 2 Replies
View Related
Sep 12, 2012
I have an issue with 7600 router where CPU goes up to 60-70% and memory is also high. Both due to BGP Router process. [URL] According to our baseline it should not be more than 40% at any given time. We see high CPU uptp 70% consistently.
CPU utilization for five seconds: 99%/0%; one minute: 57%; five minutes: 55%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
442 66173704 90234125 733 96.86% 46.09% 46.30% 0 BGP Router
7 509291060 26330202 19342 1.17% 3.90% 2.99% 0 Check heaps
Router has 1 eBGP session with ISP from where it downloads whole IPv4 internet routing table and two IBGP session with other two rotuer. When I look at BGP summary table I see many updates received from ISP and sent out to IBGP neighbors. Also did debug BGP updates to confirm it.
We are seeing this issue since ISP has upgraded their router 20 days ago. Router also seen following error.
%BGP-6-BIGCHUNK: Big chunk pool request 628 for community. Replenishing with malloc
I have not reset the BGP session with ISP yet. Is there any way I can supress BGP updates coming from ISP and see if CPU and memory USAGE reduces. IOS version 12.2(33)SRD and RSP720 with PFC 3cXL
View 5 Replies
View Related
May 18, 2011
My CAT 4510 switch is showing 99.9% CPU usage almost through out the day. After some analysis i saw that the “Cat4k Mgmt LoPri” process is having 86% CPU utilization. This process is a package that is including multiple process.
Within this package, two processes have been identified which are causing this shock which are “K5L3Unicast Adj Tabl” and “K5 L2 Hardware Addre” .
This indicates that some heavy activity is going on CEF adjacency table and RP MAC Address Table. My current IOS version is 12.2(53)SG
View 1 Replies
View Related
Jul 19, 2011
i have cisco 7600 router , here is show run : Gateway7600#sh run Building configuration...
Current configuration : 4787 bytes
!
! Last configuration change at 09:08:04 UTC Sat Apr 20 2013 by xxxx
!
version 15.2
service timestamps debug datetime msec
[Code]....
View 2 Replies
View Related
Oct 10, 2011
we have two ASA 5520, on the failover unit is showing LU allocate xlate failed. We read on [URL] that it could be a memory problem , but have cheked it and we have 85% of memory free on both nodes. We also can see all xlate on failover unit.
We have forced failover this evenig and we can´t stablish outbound connexions by outside interface, we think xlates or nat cant work properly.
View 5 Replies
View Related
Sep 13, 2011
I got an asa5510. After problems with ipsec connections the log said :
LU allocate xlate failed this error repeats every minute. At the cisco site i found the following :
explantion : stateful failover failed to allocate a translation (xlate) slot record recommended Action : check the available memory by using the show memory command to make sure that the security appliance had free memory in the system. If no memory is available, add more memory
But when i do there is free memory. (about 54%)
What can i do to fix this ?
View 2 Replies
View Related
May 15, 2012
I'm having issue with one stubborn process that is consuming nearly all the CPU on all of my switches. I tried googling it, but had no luck. The process is "hulc nrgyz PD di"
View 4 Replies
View Related
Jun 19, 2012
We recently configured a stack of four 48 port 3750-x switches . We are noticing high CPU usage. "Hulc LED process" seems pretty high. This has coincided with VMware servers getting slow and non-responsive at times, perhaps a coincidence, not sure. Below I provided some outputs about how to diagnose it.
View 13 Replies
View Related
Feb 26, 2013
I have a 2 Cisco 3750X stacked working as CORE switches but not in production yet showing a high CPU utilization and I would like to see with you whether you think this is normal or a IOS upgrade/downgrade should be performed.
I have very low traffic coming through as this is not yet in production:
122222333331111122222222222222222222222221111122222222222222 933333999999999922222777772222277777333339999922222111111111 100 90 80 70 60 50 40 ***** 30 ***** ***** ***** 20 ********************************************************** 10
[Code].....
View 4 Replies
View Related
Apr 9, 2013
The process "HL3U bkgrd proce" is causing high CPU usage issues in a switch 3750X-24T-L. The IOS is 15.0.2-SE2.
show platform ip unicast failed route and adjacencies displays a lot of entries, I've seen up to 1200.
After restart HL3U bkgrd proce takes around 10 - 20 % CPU, some hours later 99%.
A coupe of times we got logs like this:
%SYS-3-CPUHOG: Task is running for (2136)msecs, more than (2000)msecs (172/73),process = HL3U bkgrd process.
-Traceback= 0x1BE9C3Cz 0x27E103Cz 0x27E0F64z 0x50DCF8z 0x50DE98z 0x503BD0z 0x4F7718z 0x1FF0A18z 0x1F46DECz 0x1F4816Cz 0x1F48698z 0x1F499C8z 0x1FF15D0z 0x2000430z 0x1FF55B4z 0x1FF5FA4z
[Code].....
View 2 Replies
View Related
