Cisco Switches :: ESW540 Performance Degradation To 100Mb When Using
Nov 27, 2011
I have three ESW-540-24 10/100/1000 Switches in a small school environment
1. ESW performs as a server switch for out small cluster of VMWare ESXi Hosts and iSCSI SAN with a link-aggregation/lacp/etherchannel connection to the backbone switch, and a Link-Aggregated Connection to the thrid ESW switch via a multimode optic fibre link to a near-site backup and DR location
2. The second ESW acting as network backbone links back to the server switch and our older LinksysSRW224G4 (four SRW224G4s) switches using Aggregated Links / LACP to reduce bandwidth contention and allow for link redundancy
3. The third ESW as mentioned previously is at the backup DR location linked back to Switch 1
When using Single 1GB links between these three switches I can almost saturate the 1GB link (80-95% utilisation) as soon as link aggregation is configured by bonding 2x 1GB links together to form an etherchannel link utilisation will not exceed 100MB (network monitor graph on a server/ workstation runs flat at 10% utilisation) I have tested this multiple times useing large file transfers accross our SANs (which have high enough throughput to saturate links) and can confirm that performance degradation occurs as soon as an etherchannel is configured on the same ports (regardless of manually setting admin speed and duplex of copper ports etc) all indicators specify that ports are running at 1GB even though throughput REDUCES by 90%.
We are not running the latest firmware yet (2.0.3), however I have read the release notes for newer versions (2.1.16 and 2.1.19) and there is no indication of a fix for etherchannel/lacp performance issues.
I'm troubleshooting one way audio with our anyconnect phones.I think it is a routing issue.typically I wouldnt run debug ip packet detail on a production router, however I just found out that you can use acl's to specify the traffic to be debugged.
R1(config)#access-list 199 permit tcp host 10.1.1.1 host 172.16.1.1 R1(config)#access-list 199 permit tcp host 172.16.1.1 host 10.1.1.1 R1(config)#end R1#debug ip packet 199 detail IP packet debugging is on (detailed) for access list 199
The use of debug commands requires the allocation of system resources like memory and processing power and in extreme situations can cause a heavily-loaded system to stall. Use debug commands with care. Use an ACL in order to selectively define the traffic that needs to be examined to reduce the impact of the debug command. Such a configuration does not filter any packets.
I can access the web console, and also have telnet access but only to a VT100 menu system - How do I access the full console command prompt (without using the serial console connection)?
My ADSL light switches off randomly during downloading a 100mb file. I just cannot complete the download. This has been happening ever since I switched my router to a wireless iBall Baton 150M.
Our network administrator restricts all our new 1Gb switches to only 100Mb, to which he claims it will increase overall performance. Preventing devices from bottlenecking the network. (that is, only restricting the main switch ports, not the uplinks)For example we have a new building with 2x WS-C2960S-48TS-L connected together with FlexJack and then a 1Gb Fiber connection back to our core switch.
This building is on it's own subnet and there is little broadcast traffic. I don't see the point other than it hinders the potential speed we could use. Labs are set up in this building and 1Gb is MUCH faster when it comes to imaging and software deployment.
We have several of the SG300 Serices switches. We use them to route VLAN traffic to Remote Offices, Internet Connections, and WiFi Access Points.In one remote office we have a SG300-10 setup to route the HQ Network and the remote Office Subnet. The SG300 is Connected to HQ via Fiber and has multiple Tagged VLANs on it. If I do speed tests over the Fiber Link on the Incoming Tagged Netwotk I get Decent performance, 80Mbs. If I switch to a networtk that is not priginating from HQ, and have the SG300-10 route packet, I get dismal performance. 15-20Mbs.
I Fireded up a New SG300-28P FW v1.2.7.76. Added a the HQ VLAN 101 and new VLAN 1025 . Mapped some Tagged and untagged ports for each. Switch was connected to HQ Network as untagged VLAN 101. I put a laptop on an Untagged VLAN 101 port. Ran some tests, cam back with 750-850Mbs. Great. Put the same laptop on a Tagged 101 Port, Configured the NIC for Tagged VLAN 101, Same test, same Speeds, 750-850Mbs.I then Configured laptop for Tagged VLAN 1025. Connected to tagged VLAN 1025 port. Ran speed tests, resuts were 15-20Mbs!
I then Configured laptop for Untagged VLAN 1025. Connected to unagged VLAN 1025 port. Ran speed tests, resuts were 15-20Mbs!It was only the Laptop and the Connection to the HQ net on the SG300-28P. Why is the performance of this unit soooooo poor when it needs to route?Other Switches have FW v1.0.0.27 or FW v1.1.2.0. They have Similar speed issues. All Configured for Layer 3.
I have a problem with a test network configuration i'm trying to set up. I have an SGE2000 G5 switch for LAN traffic, and i have "reserved" 3 ports with a VLAN to obtain two separate internet lines with two different public IPs from my ISP internet cable. Now what i've tried to do is connecting the ISP cable to the port1 of the VLAN, and i've connected the other 2 ports to my routers. The problem is that when doing this, port1 switches to half-duplex mode and the result is a huge performance degradation (0.28Mb DL instead of 16Mb approx.).
I'm having issues with my download speed lately and I need to know whether it's my router that's causing the problem or my ISP.When I leave the router on for a couple of days, without rebooting it, my download speed degrades to about 40-50% of what it usually is and when I reboot it the speed is back to normal.It's a 150Mbps Wireless N router, model SBN WR11N R2. I have no idea what brand it is, my ISP gave it to me a few years ago. Seems to be running some custom firmware installed by the ISP.
I am bridging my NetComm router to the Linksys EA4500 and it is giving me only 8MBps whereas the line speed is 14MBps. I have tried to connect directly to the netcomm by disabling the EA4500 and I am getting 14MBps. Any way to increase my speed?
I want to know which router can be used on 100mb cable connectionThe router will be using the connection from cable modem on bridge mode/modem mode with eth to routerI kind of have a idea looking at performance ratings but ppl have mixed opinions when you enable NAT and ACLs etc etc285129013825.
you have a Cable Modem and are paying for 30MB/sec download or better service, but the network connection on the cable modem is only 10/100; all very common today.Your network connection is showing it's connected at 100 (computer - router - cable modem)....now on the technical side, remember that a 100 MB network connection can only transfer data at a maximum rate of 12.5 MB/sec (not something the normal home user knows or even thinks about).So here's the question; why would you pay for 30MB/sec download speeds when the cable modem itself can only transfer (in theory) 12.5MB/sec to you over the network?
I'm looking into upgrading my WAN link to 100Mb via Fast Ethernet link. I'm waiting to hear from ISP about what exact technology they use, but according to my manager they will be coming in over fiber and then terminate to copper. I currently have 2811 in production with two T1 cards bundled together. 2811 has basic configuration with only 2 ACLs. I have ASA 5510 for NAT, Ipsec and other services. What router or networking device (layer 3 switch, such as 3560G perhaps??) should I use to accomodate 100Mb link? It seems that 2811 will not handle that kind of bandwith..In short the max recommended bandwidth limits for the 28xx series are as follows:
2801--2 Mbps 2811-4 Mbps 2821-8 Mbps 2851-12 Mbps
I don't want to create a bottleneck and am looking for appropiate solution to accomodate 100Mb link. Also, could ASA 5510 become a bottleneck in my scenario?According to Cisco docs ASA5510 can handle 300Mbps of firewall througput, but I'm not sure how it'd work in production...
if i plug a cisco 880 router in to a 100MB WAN Ethernet circuit what throughput will i get? on cisco site it says 25mb/sec but if it is Ethernet shouldn't it be done in hardware and get the full 100mb/sec?
I know that a 1841 plugged in to a 40MB WAN circuit can match that speed but Cisco site say it only can do E1 speed.
So I recently got a new computer today and it won't let me use my 100mbps of internet bandwidth. (Asus Sabertooth Z77 with an Intel 82579v gigabit lan controller) I noticed that at the LAN connection properties>Properties>Configure>Link Speed tab the 'Speed and Duplex' option was on Auto Negotiation and it was only accepting (or supporting) the 10mbps Full Duplex. When I switched it to 100mbps Full Duplex it would mark my connection icon with a red cross and when I clicked diagnose it said "Please connect your ethernet cable or your cable might be broken". So I tested my internet speed with that same cable on a different computer (laptop) and it worked with 40Mbps, so I don't think the cable is broken. Also I just recently downloaded some drivers but one was specifically for the Intel LAN controller but I'm a total noob for all of this computer stuff I don't know if it messed it up or something. Is it the motherboard that's not working correctly?
Is there a big difference in operating AP's when they are uplinked at 100mb vs 1000mb? We have 2 "main" offices that have AP's that are all connected to our access switches at 100mb. Recently with the addition of mobile devices, phones, etc we are seeing some issues. Today, we had a meeting room that had 20+ people connected to one AP and they started seeing issues of people getting disconncted or unable to connect.Just wondering if the uplink could have anything to do with this, or if we are just over subscribing the APs?
I have a Cisco WRVS4400N on the latest firmware and I have just had my Virgin internet connection upgraded to the 100Mb. Once i thought it was upgraded i checked with a broadband speed test and it came back as 15Mb download and 5Mb upload. Before i rang Virgin i thought i'd check with a direct connection from my pc straight to the modem. Ran the speed test and it came back as 100Mb download and 5Mb upload. I thought the best thing to do is restore my settings back to factory and its still the same.
I have a c3560 switch that has two gig fiber modules in it. I need to uplink fiber to one of these at 100mb. This is because this port will be rate limited to 20mb and 10 percent is the lowest you can go with the rate limiting command. Is there a 100mb fiber module i can insert in the 3560
4402's been running quite happily until recently. I have 11 wlan's configured, but only 5 are enabled at this moment in time.
There are 26ap's connected to the 4402, a mixture of 1130's and 1142's. The memory error in the subject is popping up quite frequently.
No reference I can find on this forum or other Cisco.com.
*osapiReaper: Aug 01 14:35:07.004: %OSAPI-1-MEM_LEAK_LOW_ALARM: osapi_task.c:5105 Free System Memory went below 100MB *osapiReaper: Aug 01 14:34:56.996: %OSAPI-1-MEM_LEAK_LOW_ALARM: osapi_task.c:5105 Free System Memory went below 100MB *osapiReaper: Aug 01 14:34:46.988: %OSAPI-1-MEM_LEAK_LOW_ALARM: osapi_task.c:5105 Free System Memory(code)
I am assuming, that the slowest component on a network determines the connect speed? I am having a small network with 4 pcs and 2 of them show 1GB connect speed while the other 2 show 100MB. What would cause 2 units to run at the 100MB speed on a Gigabyte-Switch and Router?
I have a Cisco 3725 running IOS 12.3. I have three WAN connections (2 x 100Mb and 1 x 2Mb serial) and I need to replace the 2Mb serial connection with a further 100Mb connection. However, I have not got any spare 100Mb sockets.My plan is to use a switch that supports VLANs, connect the three WAN connections to the switch, each in their own VLAN, then connect the switch to one port on the router, configuring the switch port as a trunk (so that it passes all three VLANs across the link) and configuring the router so that for that single Ethernet interface, it has three subinterfaces each configured for a VLAN that matches the VLAN used for the corresponding WAN connection.
I am a bit rusty on my IOS so I wanted to run this all past the community for feedback. [code] Any thoughts on whether or not that will work? Are there any commands from the original interface configurations that I CANNOT use when moving them to a subinterface? I'm thinking that the speed & duplex commands need to be removed?
How to get any numbers regarding performance for acs v.5 ? I have looked through the documents but couldnt really get any idea. Especially in a WLAN environment - how many clients can use one appliance as primary without putting the primary under strong load ?
I have spend half day to look up this question in cisco official web site, but get nothing . Any infomation about vpn performance of 3925 router?Produce : cisco 3925 ( Cisco 3925 Security Bundle w/SEC license PAK )Question is , how much ipsec vpn tunnels can be carried as a vpn server of this bundle ? if more licenses may be bought, how much most tunnels can be held?
Currently running a pair of 5520 as VPN routers. running 8.0.3, been using only Anyconnect SSL VPN for end users. These boxes do nothing else except serve VPN clients.However, recently we tried testing some IPSEC clients and are realizing that the Anyconnect SSL VPN clients is about 10x slower than the IPSEC client.From my house, downloading either CIFS or FTP, I can pull pretty close to 1.0mbps, while using Anyconnect, I pull 0.1mbps. What could be causing this slowdown? Should SSL VPN performance be on par with IPSEC? Clients all are windows 7, 64 bit. and the testing is being conducted on the same device.
I would like more information of performance to 7600 router with the SP-720, how many sessions full bgp routing it supports? I have 4 links 1 GB and a throughput of 900 MB.
We have a 1841 router and would like to enable netflow. Will this degrade the router's CPU and memory performance.
1841>sh verCisco IOS Software, 1841 Software (C1841-IPBASE-M), Version 12.4(1c), RELEASE SOFTWARE (fc1)Technical Support: [URL] Copyright (c) 1986-2005 by Cisco Systems, Inc.Compiled Tue 25-Oct-05 17:10 by evmiller
ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1)
1841 uptime is 1 day, 4 hours, 47 minutesSystem returned to ROM by power-onSystem restarted at 11:04:25 MYT Mon Jan 10 2011System image file is "flash:c1841-ipbase-mz.124-1c.bin"
Cisco 1841 (revision 7.0) with 114688K/16384K bytes of memory.Processor board ID FCZ113311Y62 FastEthernet interfacesDRAM configuration is 64 bits wide with parity disabled.191K bytes of NVRAM.31360K bytes of ATA CompactFlash (Read/Write)
With the current (A5) ACE 4710 lic setup, does the "X gigabit per second appliance throughput" that is licensed affect: -
A) Only "appliance" i.e. load balancing traffic, any other normal routed traffic is not included in the limit
or
B) Is it an overall throughput limit on the interfaces i.e. includes all traffic not only load balancing traffic but also normal routed traffic crossing the appliance
Looking at a scenario where the lic size I need for HTTP load balanacing would be one size if A) but would need to be much larger is B) to accomodate out of hours routed backup traffic crossing the ACE 4710
I have a client that uses the ASA 5520 as both a firewall and VPN termination device. Day to day VPN usage is 30-50 users and the memory (512 MB) is typically at 50% while the CPU is mostly under 30%. I've suggested the RAM be upgrade to 1GB.The client would like to add a large block of VPN users which could see 250-300 concurrent users. What kind of a system resource hit should the expect with this level of load?
I recently inherited a small network. There is an existing 1.5mbps Internet connection (fa0/0) (includes MPLS as well/same provider). We added a new ISP that allows for 50mb down/5mb up. I added the new ISP to fa0/1 and modified the NAT overload statements accordingly. I alo changed the default route to ONLY use the new, faster ISP connection. Using speedguide.net, I am only able to get 6 to 10mb down, most of the time. if I plug a laptop into the cable modem then I get 37 to 50mb down. Why the 2811 is so slow?
I have attached the config and various show outputs (nat, sh ver, memory, etc.). the file called "latest logs" contains a "sh ip traffic, sh int switching and a sh proc cpu sorted". [code]
I'm experiencing quite a slow vpn performance. I've tested different scenarios.
* Windows XP with built-ín pptp client and Shrew ipsec client * Linux built-in pptp * wireless and wired connections
I never managed to go above 1MBps neither with windows or linux. I managed to go up to 3MBps using the Shrew client.I've also checked mtu settings and everything seems to be fine.
I am having problems with CPU load on 2811 with AIM-VPN-II. There is a GRE+IPSec over E3 WAN link and the authentication is done using RSA, but even that there is around 10Mb/s of traffic I have a 70 - 85%. I also have another WAN link with router 2811 that doesn't have a AIM-VPN, and that one reach 95% CPU once the traffic goes up to 5 Mb/s.
Are there any recommendations that RSA authentication is not supportted for hardward encryption? It worries me, becouse have more sitautions like this.
