Cisco Switching/Routing :: ICMP High Response Time To SVI Interface 3750X
Mar 13, 2011
I am in the process of installing a 3750x (IOS 12.2 (53r) SE2 IP Base) Cisco Catalyst switch in a new network of just 2 PC's (2 hosts, OS windows7 64Bits). I have enabled SVI interfaces with the both hosts installed in 2 different network segments. We then start connectivity test. The response time for the PING command between both hosts remain below 1 millisecond, whereas the response time between the hosts and their correspondent SVI interface is variable, and at all time is higher than 1 millisecond, sometimes it reaches 17 milliseconds. (Note that the switch CPU usage is only 8% at the time of testing) We have performed this same connectivity test changing the 3750x switches and in two different locations obtaining the same results.
Need to clarify if ip sla icmp echo operation is supported in catalyst 3kx switches (ip services)? on the configuration guide, commands are available, but on the feature navigator, i can't find the feature, only ip sla video operation. i don't have a device to test on here.
We are facing high CPU Utilization on Cisco 3750X-48P-L without any traffic on it. find the attached log files for 2 separate 3750's stack, we have upgraded the IOS of SW2 from "c3750e-universalk9-mz.122-55.SE3.bin" to "c3750e-universalk9-mz.122-55.SE4.bin" but still we found the same issue with CPU utilization.
Seeing very high CPU on one of our 3750X stacks. Usally its around 30% but recently its 70, 80, 90 or maxed at 100% during the main day.IOS version c3750e-universalk9-mz.122-55.SE1.bin.Has a ten gig uplink connected to a nexus 7k and another ten gig connected to another 7k. Running Layer 3 and EIGRP on the 3750X.Is this normal for the CPU?
#sh processes cpu history 5555555554444455555555555555588888666669999888885555577777 8888000001111111111222227777755555666662222222229999977777 100 90 ***** **** 80 ***** ********* *****
We recently configured a stack of four 48 port 3750-x switches . We are noticing high CPU usage. "Hulc LED process" seems pretty high. This has coincided with VMware servers getting slow and non-responsive at times, perhaps a coincidence, not sure. Below I provided some outputs about how to diagnose it.
I have a 2 Cisco 3750X stacked working as CORE switches but not in production yet showing a high CPU utilization and I would like to see with you whether you think this is normal or a IOS upgrade/downgrade should be performed.
I have very low traffic coming through as this is not yet in production:
We have just purchased Cisco 3750X 24 S switches (QTY 2), last week we put them in prodcution in simple Layer 2 mode. No Core, just act as Access switch in order to only check the performace and availibility of switches.
But strange thing I have noticed the highest cpu utilization, cpu sits on 13 to 14% and from historical logs it hit above 60%. I am confused what is happening. Remember to terminate copper connection we have inserted Copper SFP Modules on both switches.
Both switches connected on Layer 2 mode via trunk, in LAN environment we have here 7 3Com 2824 Management switches which are terminated on Copper SFP modules at Cisco 3750X 24 S. All 3Comm Switches uplink are terminated on Cisco 3750 Switch 1, another switch is idle. Whole setup is running on VLAN1 .
Also refer no port in TCP and UDP packets in show ip traffic. any abnormal condition you predict..basically, In near days we plan to make these switches as Core layer and run intervlan routing, HSRP/VRRP and OSPF. But in this cpu usage how we can go ahead until this resolved..
i am seeing very high utilization on a random basis on the stack. and the logs indicate me that there is a pattern where there is a stack power cable shows inserted (which was never unplugged) followed by sudden spike in the utilization.
001018: *Mar 6 16:21:22.138: %PLATFORM_STACKPOWER-6-CABLE_EVENT: Switch 4 stack power cable 1 inserted 001019: *Mar 6 18:18:37.982: %SYS-1-CPURISINGTHRESHOLD: Threshold: Total CPU
We had a stack of 4 qty 3750g running IP base on ver 12.2.32, then installed a 3750x to the stack and upgraded the whole stack to 15.0.2 SE3. In doing so, we noticed that the memory utilization jumped from 60-70% to 83-84%.
We had the same issue occur when upgrading to 15.0.2 SE3 on another stack that was 6 qty 3750g running ip-services, but this one jumped to 90%. On the 6 qty stack, we downgraded to 12.2.55 and the memory util went back down to 60-70%.
On the mixed stack, we replaced the 3750x with another 3750g and downgraded the whole stack to 12.2.55, however, the memory utilization did not drop down. As far as I can tell, no config changes have changed from the original IOS.
convergence time in case of stack master will be switched over to other switch.In my understating, when the stack master will be switched over to other switch based on election algorithm, convergence time will be less than 10 second.
I tried to calculate concersion time during fail over testing but convergence time was 21 second. I think it is too long...
Expected reasons
・I configured Rapid Spanning tree protocol between L3 and L3. (But RSTP's convergence time is 2~3 second..)
I am looking for a way to bind between a switch interface (cat 3750X) and a DHCP server reply.The switch can operate as the DHCP server .a PC connected to interface Gi 1/0/1 will lways get IP address 10.0.0.1 because it is connected to interface Gi 1/0/1, a PC connected to interface Gi 1/0/5 will lways get IP address 10.0.0.5 because it is connected to interface Gi 1/0/5 and so on... (no matter the source MAC address who sends the DHCP request).
we're having an issue with the command "cts dot1x" when applied to an uplink interface. It basically kils the connection with this command is applied. Once you remove it, everything is back to normal, the platform is a cisco 3750x.
We have a remote site that is using 3750X switches as layer 2 switches back to our home site. The uplink port is showing dropped packets but the utilization on the link is never about 10%. We have a 100Mb circuit to this site. Our speed tests and iperf tests are not showing any issues that we can see. However the port is still droping packets. It is not dropping at a high rate but they are dropping.
i have a stack of 3750x, with minimal configuration. there are two vlans, and two vlan interfaces with IP addresses. when i ping out from this switch to another host, it picks vlan1's ip address as the source automatically. i tested this by doing two pings with extended options using each vlan's interface as the source, and got different results. how the switch decided to use the first vlan's ip address as a source.
I am having an issue pinpointing why my 2821 router is discarding so many packets when transferring data to our second site. The traffic flows from the local lan, to the router, where it is redirected via WCCP to a WAN optimization device, back to the router and over a GRE tunnel to the second site where the same process happens. The traffic does get there, but the LAN/Repeater router interfaces have around 20,000-60,000 input drops an hour. From the output below, it looks like traffic is being dropped by the RP.
I just restarted the router as a last resort, and here is what has accumulated in the last 30 min: FastEthernet0/0/1 is up, line protocol is up Hardware is Fast Ethernet, address is 0025.840c.7680 (bia 0025.840c.7680) [code]....
And CPU never goes above 40% 100 90 80 70 [code]...
I need to remotely monitor a WRT45G from a remote host on the Internet. As such, I want to allow ICMP ping replies on the public Internet interface. However, I have found no feature to allow me to do this. Similar Netgear devices do allow this feature. I suspect the answer is, "you can't do that".
is it possible to shutdown a specific port on my 3750x and monitor this port at the same time .for example , im dealing with a mac authenticated network using port security , i want to shut down all the ports that are not used at the moment , however , if some one gets connected to the one of the shutdown ports i want to know the mac address of the user or atleast to know that i have someone who is just plugged in to the one of the shutdowned ports .
Our company just recently bought a CISCO SA520W Security Appliance from a distributor here in the Philippines. Unfortunately, after a month of use, the LAN ports on the appliance started losing power. We reported this to the distributor and they sent a CISCO engineers to check on the unit. The engineers found the unit to be defective and need to be replaced.
Three weeks after the distributor pulled-out the unit, I have followed-up the status with them. They told me that they got no definite ETA from CISCO for the replacement unit. I followed-up with them again after a week. This time, they told me that the device is already in transit and it is coming from CISCO USA but they still don't have an expected time of arrival to give me.Does it really take more than a month for CISCO to replace a brand new defective unit? The serial number of our appliance is DNI1610G0G7.
Having issues with HTTPS sites being very slow after applying KB2585542? Once you remove this Microsoft patch everything returns to normal. It appears that the CSS does not handle the split-ssl requests properly. I have opened a TAC case but am not really getting anywhere as we seem to be the only company that is having this issue.
I have a brand-new WRT160N router (just installed FW v3.0.02) that I am using in mixed mode, 20MHz only, Channel 11, not filtering anonymous requests, beacon at 2306, RTS at 2307, fragmentation at 2346, MTU at 1400.
These settings bring the response from a simple ping command over the wireless network down to approximately 6ms on average, which is good. However, when I still noticed inconsistency with my internet response over wireless, I decided to do a test.
By simply running the "ping" command on 192.168.1.1 (the router address) over the wireless network repeatedly (approx 3 seconds between commands), I can see that approximately every 65 seconds or so, router response time increases to over 100ms for a few seconds, then decreases down to 6 ms or so for another 65-70 seconds. See the chart below. The interval looks pretty consistent to me, with the exception of one stretch where it goes for over two minutes without a spike. I see this pattern regardless of what else I'm doing over the network. I do not see this behavior running the same test when physically wired to the router (ping response time is a flat line at 0ms).
Today I've received reports of slow internet access/activity and have noticed myself that it seems a bit slow today. On the dashboard of our asa 5510 the "outside interface" traffic usage is running constantly high. It's at the top of the graph. How can I tell what is causing the spike in utilization. It usually runs at about 1500-2000 Kbps, and now it's up over 10,000.
i had a client request to block ICMP request on their 1841 WAN link. i've got ACL hits for ACE 170 but not for 171.
how to test or simulate for ICMP time-exceeded? is this TTL related and is there a DOS command or any way to produce ping packet with a less TTL count that would hit the ACL log? below is the config.
interface FastEthernet0/0 ip address 202.42.x.y 255.255.255.252 ip access-group IDS_Fastethernet0/0_in_0 in ip access-list extended IDS_Fastethernet0/0_in_0
Each time I'm rebooting my E3200 device my ping to my ISP is 20ms. Few hours later the ping goes up to 300-500ms.Than I reboot again and the ping is going down to 20ms again.
I am trying to track down an application response problem on my network (the traffic goes through a 6509 and FWSM).I noticed in one of my WireShark captures, that the client at times seems to be sending ackowledgements (ACKs) over and over again, and I'm not sure if this indicates a problem/ retransmission.
Basically, a web server is delivering images to the client, but end users are complaining of slowness and freezes.Wire-Shark has not flagged this as a problem (comes up "green")
I attached the terminal to the console port to watch the bootup sequense, but nothing appear the same cable used on athor switches and router without any issue.procedure to access the router noting that Giga ports not working also.
I've just installed an SG300-28 (v01) switch configured in layer 3 mode with 1.0.0.27 firmware. It's working just fine except that when running a traceroute across the switch, it does not respond with an ICMP-11 time exceeded packet. Does this behavior persist in the current 1.2.5 firmware?
Inter-VLAN applications are slow and same VLAN it is working fine.(i.e.VLAN to VLAN applications and File transfer response was Slow).Switch Model number: WS-C3750G-24TS-S1U
I have 2 Catalyst 2924 switch in a home lab. Both of them have developed the same problem at the same time (strange). I have tried all that I can think of. I can telnet to them but cannot access via the console port. On a telnet session I execueted a "write erase, reload" on one of them. As I anticipated this threw me out of the telnet session and I presently have no access to that switch.
The console cable is fine, works for all other devices.
We have Four 2960S Switches in Stack. We have created Multiple VLANs. While Pinging from Member PC to Member VLAN IP on Switch, we are getting Higher TTL response & Some ping breaks for One Particular VLAN. While pinging from Member PC to Member PC, we are getting Normal Ping Response.
i have WLC 5508 showing the below Logs , which prevent the users from connecting to the SSIDs , also its disconnecting the associted users DHCP Socket Task: Jul 11 09:54:08.992: %SIM-3-DHCP_SERVER_NO_REPLY: sim_interface.c:1039 Failed to get DHCP response on interface 'interface-02'. Marking interface dirty.*mmListen: Jul 11 09:54:08.638: %MM-3-INVALID_PKT_RECVD: mm_listen.c:7671 Received an invalid packet from 10.21.1.25. Source member:0.0.0.0. source member unknown.it shows 3 to 4 times durring 1 hour ,
