Cisco WAN :: High CPU Load With IP Input On 881?
Sep 23, 2012Here is my conf:
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
[Code].....
Here is my conf:
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
[Code].....
Today I've received reports of slow internet access/activity and have noticed myself that it seems a bit slow today. On the dashboard of our asa 5510 the "outside interface" traffic usage is running constantly high. It's at the top of the graph. How can I tell what is causing the spike in utilization. It usually runs at about 1500-2000 Kbps, and now it's up over 10,000.
View 6 Replies View RelatedWe installed a solution with 2 Cisco 2801, BGP multihomed failover.
1) The router which is currently getting all the traffic gets to 55% to 60% of CPU usage when handling 40 SIP/RTP streams . This equals 10Mbit up/10Mbit down and it showed around 5800 packets TX and around 5800 packets RX, with a majority of them CEF switched. As those figures are way less than the performance figures published by Cisco, we wonder if we made any mistake in setting up our router, or if we can do something to improve the router setup.
2) Does it have an impact on router performance if we increase/decrease RTP packet size, thus increasing or decreasing the pps relative to the consumed bandwidth?
3) If it is not possible to improve router configuration, we also wonder about possible replacement units for those routers. Would a 2901 do a good job? By how much would it rise the capacity? What other models would you recommend if we plan to rise the number of concurrent calls by a factor of 4 or even 8 times of what we have now (so up to 48000 pps and 80Mbit).
Here is what we tried:
- ip route-cache same-interface does not seem to improve anything
- ip flow ingress on or off makes no difference
- disabling the inbound ACL on fa0/0 seems to reduce load by 10%, although I don't understand why - a very high percentage is CPU interrupts, and ACLs are process switched, or not?
- we tried following the Cisco guide for high CPU due to high interrupts, with no success
Here are some usage statistics:
The graphs that we plot via SNMP show a propotional growth/increase of CPU and bandwidth (and thus pps) At the highest loads, we had a bit more than 55% CPU utilization with more than 50% interrupt CPU.
CPU utilization for five seconds: 36%/30%; one minute: 30%; five minutes: 30%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
127 13140 954 13773 2.00% 0.29% 0.07% 194 SSH Process
[Code].....
Our 2811 Edge router is having extremely high CPU problems. IP Input is consuming 70% of the process during business hours. Cisco express forwarding is enabled. It only shows 50% but its currently before business hours. Id say even 50% is still high.
CPU utilization for five seconds: 55%/16%; one minute: 70%; five minutes: 76%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
104 5310320 2813117 1887 36.92% 46.73% 51.43% 0 IP Input
The below interface is our public interface and is constantly over utilized with 100% Is there any configurations that can be done to correct this? Is there any more information that is needed?
IOS: (C2800NM-ADVSECURITYK9-M), Version 12.4(24)T4
Show IP Interface
FastEthernet0/0 is up, line protocol is up
Internet address is x.x.x.x
Broadcast address is x.x.x.x
Address determined by non-volatile memory
[code]....
my 3750-E Core Stack is connected to the Provider Router and is the DG for the internal LAN. I saw that the CPU is very high also in the night, but I found not the problem. I use an SVI to connect the provider due to HA reasons. I sniffered the network but saw no ecessive broadcaststorms. There was a PBR configured but I deleted it wihtout any success..
switch Version
15.0(1)SE1
10#sh proc cpu so
[Code]......
We are experiencing with high CPU input due to ARP input between 20:30 and 22:30 every day At this time we have a lot of backup operations. When I look the netflow report, I can't see anything anormal.
We are changing our backup server's NIC card from 1gig to 10Gig. The backup operation's traffic is high (approx 2Gbps level) but 6509 has to be handle this size of traffic.
We are using two 6509E in VSS mode and our image version is s72033-adventerprisek9_wan-mz.122-33.SXJ.bin
20:00
show ip arp summary
--------------
2588 IP ARP entries, with 166 of them incomplete
[Code].....
We added Site02 for redundancy and DR. Also added new SAN and ESX hosts. The CPU on device Site01Server01 is not very happy when files are being transferred between the sites. Since the setup is the same at both sites, why is the problem only at site01?
Site02 is newer and we have two 3750X-24 with IOS 12.2(55)SE3 on ipservices, for site02server01; no problem.
Site01server01 is a stack of two 3750G-24PS with IOS 12.2(58)SE on ipservices.
[Code]....
We have Cisco ME3400 switch, with configuration described below.
GE0/1 port is uplink:
interface GigabitEthernet0/1
description ***MATED-IUB_C&U-Plan***
port-type nni
switchport trunk allowed vlan 331,450,4085
switchport mode trunk
GEo/2 is configured as below:
interface GigabitEthernet0/2
description ***From NIB***
port-type nni
switchport access vlan 4085
[URL]
We have also tried Loopguard feature enabled on all ports: but after some period same problem is repeated.
version information is below:
Cisco IOS Software, ME340x Software (ME340x-METROIPACCESSK9-M), Version 12.2(25)SEG3, RELEASE SOFTWARE (fc2)
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Wed 25-Jul-07 22:56 by amvarma
I have a connection that is loosing packets, my show interface output below summarises the interface where i believe the problem is occuring. My Hardware is 6509 running 12.2
View 1 Replies View Related2811 router
Cisco IOS Software, 2800 Software (C2800NM-ADVENTERPRISEK9_IVS_LI-M), Version 12.4(24)T4, RELEASE SOFTWARE (fc2)
CPU utilization for five seconds: 82%/73%; one minute: 74%; five minutes: 77% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 116 222084 57773 3844 1.83% 1.69% 1.66% 0 IP Input 183 85148 309479 275 1.03%
[Code].....
I found cpu load around 90 - 100% on cisco 3845, so I show tech-spec and show log on router and found process "Virtual Exec" use high load. I'm not sure this situation make high latency time on my network.
View 3 Replies View Relatedwe have a pair of 7609 routers working in Active Standby mode. The version of routers are :- Cisco IOS Software, c7600rsp72043_rp Software (c7600rsp72043_rp-ADVIPSERVICESK9-M), Version 12.2(33)SRD4, RELEASE SOFTWARE (fc2)
Quiet frequently we are getting High CPU load problems on our router and this load comes down below 10 % automatically.
I am attaching the Show tech support for your kind consideration.
Similar issue was reported yesterday as well for which i have attached SH tech suppot.
I have a Cisco 2611XM (MPC860P) that i use at home, purchased it when i enrolled in my CCNA certification.
It never occured to me that i had an issue with this router. I have 10Mbps uplink at home, and sometimes its really slow, when i talked to my ISP, we did a lot of troubleshooting to see why we had high latency, but as it turns out, the issue is My Router.
I only have a few machines inside my local LAN so i never even thought this could happen. When i download a file using the 10Mb/s connection, the CPU load goes in less than 1 minute to 99%.
I thought it might be the IOS version of it, and upgraded it to a newer version, with the same results. Here is an output of it:
router1#show processes cpu sort
CPU utilization for five seconds: 99%/67%; one minute: 45%; five minutes: 13%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
[Code].....
We have two core switches in our network (Cisco WS-4503). HSRP is working as Active-Standby mode. Recently it has been found that core 1 (which is in active mode) shown high CPU load (60% - 100%). Also found that the below mentioned process takes more CPU. Our network consist of around 30 Vlans. We have already checked for the solution in Cisco website [URL] but couldn't find exact reason. see the below outputs for core 1 switch.
Core1# sh processes cpu sorted
CPU utilization for five seconds: 55%/3%; one minute: 65%; five minutes: 71%PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 30 1606933521086983644 147 24.79% 29.93% 35.85% 0 Cat4k Mgmt LoPri 29
[Code]....
I purchased the AE3000 Wireless Adapter for my PC, and has been working fine until now. When I first start my PC, my ping starts anywhere between 20-80, then after I try to access anything on the internet it shoots up between 600-1200. It just started happening about 3 days ago, but now it has gotten worse. I can't play any online games, and websites are slow to load.
View 1 Replies View Relatedwhat's the difference between High-power and High-gain wireless USB adapters.
View 5 Replies View RelatedBy default there 2 input queues. 2nd is priority queue and has 10% of link assigned. Weights for two queues are 4 and 4. For example we have 1Mbps link. ANd we also have saturated link with voice and other traffic. Will voice get 550k bandwidth? As I undestood 100k is assigned to voice strictly. Remaining 900k is evenly divided by two queues according to 4 and for ratio.
View 7 Replies View RelatedDo I need to plug in AP 1262 into a PoE switch or external power adapter before can power on? How about LAP 1262? Do I need PoE switch as well?
View 4 Replies View RelatedI use an 1841 router as an internet facing firewall with a 10MB MetroE connection. Lately users started reporting slow internet download speeds and web pages timing out. Bandwidth reports do not show the link as being saturated so I looked at the interfaces on the 1841. The interface connected to the provider shows OK as far as errors but the LAN side of the router shows steadily increasing input errors. It doesn't show any other errors, no CRC, frame, runts, giants or overruns, just generic input errors. What type of errors are those? Nothing is being logged on the console.
I moved the connection to another switch ports and the errors continue. I switched it down to 10MB and also changed the switch and the errors slow down but don't stop. Interestingly, the switch side never shows any errors. What can I do here? I guess it can be a bad interface but that is such a rare thing that I am hesitant to replace the router.
I have this topology in part of my networ:k
Cisco7200---Cisco6500---Cisco3560---LAN1
|
Cisco3560
|
LAN2
All devices are interconected via optical 1Gb/s links. There is no QoS implemented on any device and all VLANs are allowed on all interfaces.
Also all links are trunks (with many VLANs)
In LAN1 there was a layer 2 broadcast-storm and 4000packets/s was comming to rest of the network (in one particular VLAN).
1) 7200 with G1 should be able to handle traffic up to 500Mb/s, but a lot of users experienced drops on traffic via 7200.
(CPU load was around 10%).
2) Why do I have input drops on 7200 on link toward 6500 if CPU was normal. Broadcast comming to this interfaces were cca 4kpps. But since it's destination is not on router these packets should be rejected on interface controller. Is that right? (7200 doesn't even has dot1q subinterface in that VLAN but since 6500 allow all VLANs on its trunk these packets reach 7200)
3) Why do I have output drops on Cisco 6500 (it is here as layer 2 device only)? It is max 160Mb/s in output direction. It has WS6724 card with DFC (there is no oversubscription).. Shouln't 6500 send traffic as fast as interface allows (up to 1Gb/s). Am I righ't?
4) After all how coul'd 6500 now if 7200 can't handle these traffic?Output drops should be only seen if QoS is enabled (i.e. shaping), or if there is oversubscription on the linecard?
why my input parameter are gone in the TAGGED website ?
View 1 Replies View RelatedRunning vista. When I pull up my list of possible wireless signals to try and connect.
I normally get asked to input a security key. NOW the screen will simply close after i press the enter key. Right clicking and trying to connect also am having the same issue. MY wireless signal for MY comcast account it connects perfectly.
I bought a DVI D to hdmi connector so i can watch movies from my computer on my hdtv but whenever i try to switch to DVI on my HP w1907 my monitor says no input signal.
View 1 Replies View RelatedIn university I have one ethernet socket in my room which I have connected to an ethernet port on my wireless router. I have also connected all my other ethernet devices to the router so I don't have to keep unplugging them and replacing the ethernet cable in the wall socket. I can connect to the internet through the router but it's only allowing one device to be connected at once and the router is saying "no connection" even though I can connect through it. does this mean it's working as a switch at the moment, right? Would it be possible to make it work as a router so all my devices can work simultaneously and get the wifi to work?
View 5 Replies View RelatedI have connected the input cable of router to LAN port instead of INTERNET port and i got internet (some time only). due to that I caught by the authority and they are saying that change of port was the problem. Already there was a problem to our server (might be hardware problem).
View 2 Replies View RelatedI've just got my hands on a Cisco PIX 515. I mainly brought it too learn and play with, i done some Cisco stuff in the past but not much.
I just need too get this up and running with a IP Address on ethernet1 (192.168.1.254) but when I run the command "name if ethernet1 inside security100" in enable mode all I keep getting is ERROR % Invalid input detected at '' maker
We have 7206 VXR running NPE-G1, we are looking for the GigE cards for 7200 which supports upto line rate and came across Cisco 7200 Series Input/Output Controllers The datasheet for the same doesnt say anything about line rates.
View 3 Replies View RelatedMy router, a Cisco 7204 with NPE 300, is experiencing output drops and input errors on a fastethernet interface. I have a 100Mbps connection with less than 15Mbps utilization at peak times.
FastEthernet1/0 is up, line protocol is up Hardware is DEC21140, address is 0014.a985.1a1c (bia 0014.a985.1a1c) Internet address is 38.102.66.134/30 MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, reliability 255/255, txload 3/255, rxload 1/255
[Code]....
I ran into a problem a few weeks ago and am still trying to figure out why either the 3560 switch or our Cacti syslog server did not alert us when one of our ports was experiencing heavy CRC and Input errors.
I had upgraded the IOS to 12.2(55)SE6 and rebooted the switch. About a week later, someone was troubleshooting why print jobs were having problems printing to a high speed printer. When I looked at the interface it showed a few thousand CRC and Input errors. I cleared the counters and had them print again and watched as the CRC and Input errors went up. When I did a "show log" there were no error messages. Looking at our Cacti Syslog there were also no errors present for the past 6 months.
We found that the device on the port was set to auto speed and duplex and the switch port was at 100/Full. Once we got them to match the problem was resolved, but we were left wondering why we never got any alerts.
We also have some 3548 and 3550 model switches that Cacti picks up %LINK-4-ERROR for any ports that show CRC and Input errors. I did some research and it appears that the 3560 switches do not have the LINK facility code. I believe it has been replaced with a PHY link code but I'm not sure. We do have some "%PHY-4-EXCESSIVE_ERRORS: Excessive FCS, data, or idle word errors found" but they are all for 3750 switches. I could not find any 3560 that had alerted for that error or the LINK error.
I also tripped port security on the 3560 switch just to make sure that it was reporting correctly to Cacti and that alert did show up.
My question is how do I get a 3560 switch to alert in the logging buffer for CRC/Input/FCS errors? Also, how I can generate CRC and Input errors on purpose for testing? I tried mismatching the speed/duplex/Auto and only got collissions, no CRC or Input errors.
I am trying to configure my ASA 5545 firewall in area 0 but when I do so, the neighbor relationship never establishes. A debug on OSPF gives only one response: [code] Why the ASA is ignoring the input packets?
View 4 Replies View RelatedI have a cisco 1811 router with 12.4(6) IOS, I would like to ask can I use this as a layer 2 switch?
When I issue vlan ID command it gives me " Invalid input detected", I need use this device as switch to create different vlan on and the connect the f0 port to a ASA
I am having issue on my 3750G gig interface, it is not passing data more than 200M.Some how its giving me lots of input Pause on both sides,can some one explain if there is congesstion issue,do I need to enable flow control on both sides? [code]
View 4 Replies View RelatedWhenever I use the following command I get an invalid input error
ciscoasa#conf t
ciscoasa (config) # crypto isakmp enable outside
ciscoasa (config) #object network net-local
ciscoasa (config-network) # subnet 192.168.101.0 255.255.255.0
^
I have reset the firewall (cisco 5505) to factory default. The marker ^ is under the subnet