We have one Router Cisco 2801 at the customer site and facing issue of having very High CPU coming to 99%.CPU utilization for five seconds: 99%/28%; one minute: 99%; five minutes: 98%
We installed a solution with 2 Cisco 2801, BGP multihomed failover.
1) The router which is currently getting all the traffic gets to 55% to 60% of CPU usage when handling 40 SIP/RTP streams . This equals 10Mbit up/10Mbit down and it showed around 5800 packets TX and around 5800 packets RX, with a majority of them CEF switched. As those figures are way less than the performance figures published by Cisco, we wonder if we made any mistake in setting up our router, or if we can do something to improve the router setup.
2) Does it have an impact on router performance if we increase/decrease RTP packet size, thus increasing or decreasing the pps relative to the consumed bandwidth?
3) If it is not possible to improve router configuration, we also wonder about possible replacement units for those routers. Would a 2901 do a good job? By how much would it rise the capacity? What other models would you recommend if we plan to rise the number of concurrent calls by a factor of 4 or even 8 times of what we have now (so up to 48000 pps and 80Mbit).
Here is what we tried:
- ip route-cache same-interface does not seem to improve anything
- ip flow ingress on or off makes no difference
- disabling the inbound ACL on fa0/0 seems to reduce load by 10%, although I don't understand why - a very high percentage is CPU interrupts, and ACLs are process switched, or not?
- we tried following the Cisco guide for high CPU due to high interrupts, with no success
Here are some usage statistics:
The graphs that we plot via SNMP show a propotional growth/increase of CPU and bandwidth (and thus pps) At the highest loads, we had a bit more than 55% CPU utilization with more than 50% interrupt CPU.
CPU utilization for five seconds: 36%/30%; one minute: 30%; five minutes: 30% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 127 13140 954 13773 2.00% 0.29% 0.07% 194 SSH Process
I have problems with the Router 2801.When i give the command show processes cpu, the command show me that the router is working in 98%.
I have vlans like voice vlan and others, I have one 20 Mb Wan Link and I redirect all traffic from my lan to this link and when i browse in internet or i do downloads the router goes to 98%, when i don't make it the router processes goes down.
I thought be problem with hardware, but i exchange to another router and the same problem happened.Before this situation, I had one link with 12 Mb and nothing happened, when i exchange this to the 20 mb link the problems starting.
When i start a download the processes of the router cpu stay in 99%/97%. When i'm not doing a download the processes stay in 3%/0%. I have one 20 mb link to Wan.
I did the troubleshooting seeing the this document :
I have in my router 2801, one link with 20 MB WAN Connection, and it is presenting high cpu utilization with 97% Interrupt Errors when start one download.
I exchanged it to another router the 2811 and it presented the same results. I read the cisco document about Router Performance.
And it speaks about the 2801 supports 46 Mbps using CEF/Fast Switching and 1.5Mbps using only Process Switching, and 2811 supports 61.44 CEF and 1.5Mbps Process Switching.
I need to know if the NAT Process is process switching or CEF Switching. Because if it was process switching the router is working in the max capacity and i will need to exchange the hardware to a better hardware.
I looked but could not find any information on what's the use of the USB interface on my 2801 router. I saw something about Cisco USB memory module and eToken by Aladdin. Is this interface restricted to Cisco and Aladdin only?
I have a Cisco RV110W small business router setup at my home. It has one of those HTML GUI interfaces, check the boxes, etc.., to get things working. Basically, your typical home router with VPN. I have enabled the VPN, it's PPTP, added the password, and now it's automagically configured! I can successfully VPN to my home with a Windows7 client. Here's my problem, I now need to VPN into my home router with a 2801. Is this possible? Everything I found on the subject has only been to setup a Cisco IOS router as a VPN server or tunneling to another IOS router. No examples using an IOS based router as the client.
I'm having trouble setting up a Cisco 2801 as an internet router between our firewall & our ISP.I've setup FastEthernet0/0 as the WAN port & FastEthernet0/1 as the LAN port. I've setup a default gateway pointing the next hop (the ISP),when I plug in a pair of laptops configured to mimic our IP scheme, I'm able to ping thru, but when I put the router between our firewall & ISP I'm not able to get out to the internet (can't ping google) I can still ping the next hop.,Our old router died, so I am unable to pull up its configuration. Here is the code I'm come up with so far.
I have to configure failover on both router. if one get fail then the other router should be dial.Physical connection
•1. Two routers (Cisco 2801) are connecting with splitter through RJ 11 port. •2.Only one ISP link is coming in splitter.
Requirement: As per as customer requirement. He wants redundancy with in both 2 routers. If one goes down then the other router come up. And same configuration on 2801_R2 router. I am planing to do HSRP on our lan network (2801R1,2801R2 ehternet interface which connected to switch). from switch i will create two default route with (next hope) virtual ip address.
I have a 2801 router with a HWIC-3G-cdma card that I have inherited from a predicessor. How to use a cellular card on a router and need to get this thing up and running. Any example config that I can see or point me in the right dorection to get this up and running? I have the cellular card set up as Cellular0/1/0 on the interface, I assume that that was done by default, and it has an IP address. The Static Route of 0.0.0.0 0.0.0.0 Cellular0/1/0, in the config with only 2 other interfaces as being direct connection. But that is as far as I recognize. Do I need to set up a router protocol? Which one? How do I use the cellular card? Do I need to have an ISP connection?
I have just received Time Warner Cable and get 16Mbps down from them directly through their modem (motorola DOCSIS 2.0 modem- SB5101) to my PC (using speedtest.net). When I then connect TWC's modem through my 2801 router on fa0/0, the download rate I get is considerably slower (on the order of 3-4Mbps via same testing method). What am I missing?
Here is how the passthrough interface is setup:
interface FastEthernet0/0 bandwidth receive inherit ip address dhcp ip nat outside ip virtual-reassembly in duplex auto speed auto
I have attempted removing bandwidth command - nothing changed with it not there. I have also hard coded the speed and duplex to 100/full to no avail....
Other possible relevant configs: ip nat inside source list 1 interface FastEthernet0/0 overload ip route 0.0.0.0 0.0.0.0 dhcp access-list 1 permit 192.168.1.0 0.0.0.255
Basically this things is wide open... for testing but the download speed differential is perplexing to me.
I need some clarification if it is possible to do an IPL connection between Cisco 2801 (T1) to Cisco 1841 (E1) via Ethernet (2801) to Serial (1841).
I am unable to find any documentation about this and I need to connect our network to our overseas office.
Our side uses the 1841 router and our provider has set-up our E1 connection to be via Serial interface while on our overseas office uses the 2801 and will connect via the T1 card, which by the way does not have any serial interface ports just ethernets.
So far checking on how to configure this, I am unsure on how the connection will happen since the info that I got is that T1 does not have the option to hold an IP address (also unsure on this though). With this in mind and that the 2801 does not have serial interfaces, does that mean that IPL connection would be via the available Ethernet ports?
I have 5 routers. Four routers are: c2801-IPBASEK9-m v 12.4(24)T2. One router is a C2800-IPBASEK9-M v 12.4(24)T3. so, it appears that the IOS on all 5 routers is very similar, the only difference is the T3 at the end of the version and that 4 are 2801s and one is a 2800. What is very wierd is the 4 2801 have the embedded scripting language "tclsh". The 2800 does not have tclsh. If I issue the command: tclsh on the 2800, I get:
Center-GW#tclshTranslating "tclsh"
% Bad IP address or host name% Unknown command or computer name, or unable to find computer addressCenter-GW#
I have one problem doing a ping to a router lan interface, I have 3 routers (2801) connected between each other (separated 1 mile each), the link is established trough microwave signals (connected to the 2801 fast ethernet interfaces), every router has a connection to a LAN. One of them is located at headquarters.Last thursday I replace one of the router with a cisco 2901, i configure the router with the same configuration that was on the 2801, i power up the router and the 2 link were up without problems.One day after the noc called me to tell me that after i replace the router they can't ping the router IP lan interface on the new 2901 (before the replacement the ping was sucessful). I called one user the lan connected to that 2901, and they can do a ping to the router's LAN IP address.
I can ping the 2901 IP wan interfaces, I can ping the LAN users ip address, but i cannot ping the router LAN IP address, from my desktop, and neither the 2 routers 2801 connected to the 2901.I show the configuration on the 2901, I couldn't change it because i didn't have time to do that, but i'll change the configuration to use ipsec tunnels.The configuration as you can see, has a crypto map, but the acl used by the crypto map, only permits the interfaces ip address, so i think that doesn't work, so the traffic doesn't get encrypted, but i don't know if that is the problem why i can't do a ping to the lan interface. [code]
I'm using for a company network a 2801 Cisco Router. This router has 2 FastEthernet Interfaces connected on 2 ISP's and one VLAN for internal users. What acl should i use if for example one client from the lan is using a torrent client to download from the internet. I want just to specify a maximum download speed or to block that client to access the internet when it's trying to download something that can affect other clients from the LAN.
The goal is to add a 2801 router between a DSL modem and a switch and obviously still access the internet. I connected and configured as explained below and the results are:
- I am able to ping internet addresses from the 2801 router - I am not able to ping internet addresses from userlaptop but I am able to ping LAN gateway (192.168.254.254)
I cannot understand why the internet requests from the user laptopuser are not routed to the internet but the router itself can access the internet.
simple configuration of a 2801 Router. I have 2 internet providers with static ip's connected to F0/0 and F0/1 and one Vlan for LAN area. I would like to configure the router to use one primary line and just in case to use the back-up line. [code]
Now if detects that it hasn't cable link on the FastEthernet interfaces it's working. I'm using 2 wireless gateways to acces the internet each one connected on the 2 FaEth for simulating the providers. If i simulate an issue on the provider ( i've removed the sim from the wireless gateway) it doesn't pass on the second isp.I haved trying to configure with "IP Service Level Agreements " for failover / load balancing but the command "ip sla" is incomplete. I can't make an update of the IOS because the customer do not have an Service Contract with Cisco.
I have setup an eBGP session to a Cisco 2801 CE router. The BGP session establish, however, the session keeps resetting after 90 sec which is the BGP keepalive holdtime value.
On the PE router I found that the OutQ doesn't clear = 22 when doing a "sh ip bgp x.x.x.x summary" - Session reset at 1:30.When I filter the amount of routes advertized to the CE neighbor with the "neighbor x.x.x.x prefix-list out" - I see the OutQ clear = 0 and the BGP session remains up.
-Number of NRLI advertized without prefix filter = 172 -Number of NLRI after filter = 52
Today I've received reports of slow internet access/activity and have noticed myself that it seems a bit slow today. On the dashboard of our asa 5510 the "outside interface" traffic usage is running constantly high. It's at the top of the graph. How can I tell what is causing the spike in utilization. It usually runs at about 1500-2000 Kbps, and now it's up over 10,000.
We have a cisco 2801 router in class which has a disabled password recovery. We tried almost everything, we cannot get into ROMmon and the break sequence doesn't work in any program (hyper terminal, putty, teraterm pro).
Here is the log from hyperterminal:
System Bootstrap, Version 12.3(8r)T9, RELEASE SOFTWARE (fc1)Technical Support: [URL].Copyright (c) 2004 by cisco Systems, Inc.PLD version 0x10GIO ASIC version 0x127c2801 processor with 131072 Kbytes of main memoryMain memory is configured to 64 bit mode with parity disabledReadonly ROMMON initializedPASSWORD RECOVERY FUNCTIONALITY IS DISABLEDprogram load complete, entry point: 0x8000f000, size: 0xc100Initializing ATA monitor library.......program load complete, entry point: 0x8000f000, size: 0xc100Initializing ATA monitor library.......program load complete, entry point: 0x8000f000, size: 0xd49718Self decompressing the image :
I have a 2801 router that I am replacing with a 2911. I know the ports on the 2911 are Gigabits and the 2801 are Fe. I read where the IOS would not support backup and restore on each other . I am attaching a show ver on both routers. I need to know if backup and restore would work and or what other changes would need to get done.
I was just recently hired in my company, we have an sf300-24p switch but I cant find the console cable for it, I think it needs a female to female db9 serial cable, all I have is a DB9 serial to rj45 console cable for the 2801 router, also I cant find the IP address of the sf300 switch, it is directly connected to the 2801 router, I issued a show arp to the router but didnt find the switch's IP add for web access, to sum it up I have no way of configuring the switch, is there any way to find the IP address of the switch? It also dosnt show on show cdp neighbors?
We have recently implemented some QoS on our routers and i have noticed that the CPU usage has risen enormously as a result.
I checked the CPU Processes and found that the avg values are 50% usage. This seems rather high considering that only 75% of our edge routers have this feature enabled.
Our main router is a Cisco CISCO2911/K9 (revision 1.0) with 487424K/36864K bytes of memory. Our edge routers are either 2801 models or 881 models.
This is our first implementation of QoS and would like to ensure that it is working properly before implementing other QoS rules. Here is a copy of the config on the 2911 router:
class-map match-all Citrix match protocol citrix class-map match-all Print match protocol printer class-map match-all C-Coolingata [ code]......
Here is the config on our edge routers:
class-map match-any Citrix match access-group name Citrix-ACL [code]....
As you can see we have different link speeds at different sites based on their size, location etc. How to be able to confirm that this config is correct?
Currently we have a cisco router 2801 for Wireless Internet connection. And we are going to have another ISP that can provide us Fibre Optic internet connection rather than wireless.My question is that can we use this router for fibre optic internet connection? how do we go about this? what is the maximum bandwidth that the router can support?
We have a Cisco 2801 router running IOS "c2801-spservicesk9-mz.151-4.M4.bin" which we upgraded from previous “c2801-spservicesk9-mz.124-3d.bin”.
Requirement.
We want to monitor the device temperature via snmp but unable to do because temperature ratings are not available on "show environment all" output like below.
Routeri# sh environment all Fan 1 OK Fan 2 OK ILP Power Supply - Absent Fan Speed Setting: Normal
Where as on Cisco 2811/51 & Cisco 3825/45 we can get temperature ratings on "show env all" output.
As per link [URL] below commands are supported on Cisco 2800 series router.
Command options • show environment all • show environment fans • show environment leds • show environment power-supply • show environment table • show environment temperatures • show environment voltages
I want to know whether this is Cisco 2801 platform limitations or something else. tried to find Cisco doc on this but no luck.
I have a 2651 that has an adsl1-wic that I am using as my DSL router. I recently acquired a 2801 that I want to replace the 2651 with. I configured the 2801 the same way as the 2651 but on a reload I get the statement that says
Setup: New interface NVIO placed in shutdown state
When I do a show interface all of the interfaces show up except the NVIO and I don't have any connectivity to the outside world. I am using Nat since I have a /29 and using nat pool overload. What am I missing? I am running IPVOICEK9-M 12.4.25c on the 2651 and adventerprise 12.4.24.T on the 2801
I want to set up my LAN to have internet access via my 2801 router.The 2801 router is connected to my home ADSL router.Now do I just configure a 0.0.0.0 'gateway of last resort' on the 2801 router pointing to the interface leading to the ADSL router ?Therefore, all traffic from my PCs that is internet bound will head out to the ADSL router and onto the internet.