Cisco WAN :: Multi-cast Within Vrf On 7200's
Dec 15, 2010
We have network consisting of approx. 8 7200's running LNS/MPLS/BGP and we provide predominantly private networks to clients(Majority of client networks are a mix of Ethernet tails and DSL).We have received a request from one client to support multicast - Having never implemented multicast, have a few questions:
1. Is is supported/possible to provide multicast within a vrf on 7200's?(From initial investigations, it appears to be)
2. Is it possible to only enable mutilcast in a vrf(i.e. not globally)?
3. Any recommended guides/best pratices?(Googling has revealed nothing really that is similiar to what we want to do)4. What are the potential ramifications?(Resource overhead, Security implications, anything else?)
View 1 Replies
ADVERTISEMENT
Mar 26, 2010
Recently upgraded to 1.33NA. I keep getting this message when changing certain settings (such as enabling a guest zone). It's essentially locking me out of changing the system!As far as I know - the DIR-655 DOESN'T have WDS - this was removed a number of firmware revisions ago. I cannot find a setting for this anywhere. There are a few mentions of this on this forum and the web, but nothing concrete as to why it's happening or a valid solution.[url]...
View 6 Replies
View Related
May 8, 2013
We have a NEXUS 7000 running PIM SM. A checkpoint firewall is networke to it configured for PIM Dense mode. The RP is configured on the NEXUS Siwtch that the firewall is connected to.The firewall statically forwards multicast to the NEXUS.
I need the NEXUS to register the Multi cast so it can be routed to other networks.I've been able to get it working with 3750's but no answer.
View 3 Replies
View Related
Oct 28, 2012
I have a network with several catalyst 2960 switches and one catalyst 3750. I have created two VLAN and set up the proper routing and everything is working fine there. I have a client/server application that used multicast in the initial start up for the client to determine available servers, the issue is one of my clients is on a different VLAN then the server. I am able to route the multicast using MVR as long as both the server and the client are plugged into the 3750 by creating a static route, making the server a source port and the client a receive port. Unfortunately I need the client and the server plugged in to different 2960s. My question is how do I establish multicast routing between the two and perferably do it dynamically (always route multicast traffic from one VLAN to another).
View 2 Replies
View Related
Nov 4, 2012
I have a question that so far I haven't been able to find a suitable answer for. This is focused from an ISP perspective. So suppose I have the following scenario:
I have a BGP transit area. On each edge of the my network I have a e BGP connection to the same client for redundancy. This client has his own ASN, iBGP and prefixes. I'm receiving the same NLRI from the client through both sides. Let's assume he's advertzing the prefix 10.10.0.0/16 through both ends. I'm receiving it with no problems and I'm passing it along to the next providers with whom I also have multiple ingress and egress points.
Something like this:
PROVIDER A PROVIDER A
| |
eBGP eBGP
| |
CLIENT A (ASN65100) --- eBGP --- MYROUTERA(ASN65200) ----- iBGP --- MYROUTERB(ASN65200) --- eBGP --- CLIENT A(ASN65100)
| |
eBGP eBGP
| |
PROVIDER B PROVIDER B
Let's say my client pays for a 10Mb. Both links are configured to 10Mb so that each can handle the load in case the other one fails and both are always active. So my question is:
How can I shaped or police the client's traffic across multiple points of entry on different routers so that it won't go beyond the 10Mb. The same scenario applies on how can I limit traffic coming from the providers A, and B destined to the client's prefix: 10.10.0.0/16.
I don't mean using MED, local-pref, weight. Sure I can funnel all the traffic through one single point, but consider that I'm also trying to move away from basic routing and more into PfR, which mean that I have more granular control of the flows. Perhaps there is a PfR service-policy or something that can work.
For this scenario I'm using 7200 as my routers. If there is a solution that assumes any other model don't hesitate to post it. TLDR; How can I police or shape across multi interfaces on different routers?
View 2 Replies
View Related
Jun 9, 2013
I have a Nexus 3064 which is not recording source MAC addresses after a successful ARP. The switch is then flooding the entire vlan with unicast traffic.
The config is a boring single VLAN. One port (48) is going to a 6509. Not as a trunk, just extending the VLAN. There are SVI's on both switches. the default route for the Nexus users is the 6509's IP.The switch was basically, pulled out of the box, setup a single vlan(with jumbo frames) andan SVI, then plugged in the users. Nothing special.
View 3 Replies
View Related
May 29, 2013
I want to monitor our backup server (commvault) as it is saying it's library (Data Domain) is going off line.[code] The issue is I am seeing a lot of unicast traffic (on Wireshark) that has nothing to do with the server on E2/11. Some of it is from different VLANs... There is way too much data (multi-Mbps) to keep wireshark running very long to capture our intermitten problem.
View 3 Replies
View Related
Nov 3, 2012
I want to use chanelized POS PA in 7200 router. I want to know can I use chanelized PA for both chanelized and non-chanelized OC3/STM1? Does the both chanelized and non-chanelized feature is supported on chanelized module or I have to use other module?
View 1 Replies
View Related
Feb 24, 2012
I ran across this today on a 7200 that when all the vty lines are filled, and dont release, you enter clear line vty x and it is supposed to release the line. Well in some versions it doesn't work.
Here is the work around I found. clear tcp line vty x
View 3 Replies
View Related
Apr 16, 2012
I want to monitor my 7200's CPU packets per second rate.Any command i can run to show this?Or any MIB so I can poll this? 7200 NPE-G1 can handle 1mpps. And i want to verify the actual rate.
View 1 Replies
View Related
May 20, 2013
I want to know a number of maximum tcp connection at same time on interface of my 7200 router, how I'll do that?
View 3 Replies
View Related
Dec 11, 2012
I am having issues with frequent bgp flaps on the Cisco 7200 series router from past 1 week. I have raised a ticket with ISP but couldn't get any resolution from them as the flap is for about 2min.When ever we see BGP flap, we are not able to ping the remote end IP, Also at that point we drops on the interface connected to ISP.
View 1 Replies
View Related
Sep 27, 2011
I was recently given a Cisco 7200 VXR and told to erase the stored configurations in it. how to do erasing of Cisco 7200 stored config else I might have to delete them line by line.
View 4 Replies
View Related
Mar 23, 2013
I am planning to provide a redudnt link to our customer. The setup as below:
One link over wireless while the other link over wired link, I want to make sure that I should maintain the same public IP addresses for the customer therefore, I am looking for L2 failover for my customer.
If the wireless down the customer should migrated to wired and vis versa. I have 7200 CISCO Router as Core.
View 3 Replies
View Related
Mar 7, 2011
I am trying to configure a dynamic failover with IP SLA on a Cisco 7200 using 12.2(33) IOS. I would like to have something similar as the following configuration:
ip sla monitor 1type echo protocol ipIcmpEcho x.x.x.xfrequency 3ip sla monitor schedule 1 life forever start-time now!!track 10 rtr 1 reachability
access-list 101 permit icmp any host X.X.X.X echo!route-map LOCAL_POL permit 10 match ip address 101 set ip next-hop Y.Y.Y.Y set interface Null0!ip local policy route-map LOCAL_POL
!
ip route XX.XX.XX.XX 255.255.255.0 YY.YY.YY.YY track 10ip route XX.XX.XX.XX 255.255.255.0 ZZ..ZZ.ZZ.ZZ 254
My questions are the following
Question 1: What is the equivalent of ip sla monitor in 12.3 for dynamic failover with IPsla Should I used
ip sla ethernet-monitor 1 type echo domain name ?
or
ip sla 1 path echo X.X.X.X or ethernet mpid echo domain name or icmp-echo time out 1000 frequency 3 threhsold 2
I do not know if I have to used ethernet-monitor or ip sla. What is the domain name and the mpid associated to the ethernet-monitor ip sla.In the case where I have to used ip sla 1, shoud I used a path-echo, ethernet mpdi or icmp-echo for dynamic failover
Question 2: In 12.3, what is the equivalent to ip sla monitor schedule 1 life forever start-time now.I have found thec command ip sla schedule 1 start now but it does not seems that we could configure the duration.
Question 3: Should I also enable ip sla responder
View 2 Replies
View Related
Apr 19, 2012
I have a 7200 router with a 12.2.(46a) IOS and I am trying to activate Netflow on a subinterface. From the documentation of Cisco, I should be able to do it since the ios 12.2.(14)S but the command is unavailable.
[URL]
I have tried also to enter the command in the subinterface directly but it doesn't recognize it.
View 2 Replies
View Related
May 20, 2013
We have a Cisco 7204 G1 running c7200-advipservicesk9-mz.122-33.SRE7.bin and we're having a lot of difficulties getting a VTI working to a Cisco 2921 with adv. security. I've ruled out that the 2921 is at fault by successfully establishing a VTI to another 2921 and a 7200 running a different IOS release.
We see the tunnel come up, but when I sent a ping from the 2921 to the 7204 there isn't a reply. When I look at the results on the 7204 from a 'sh crypto engine connection active', I see the decrypt counters increase, but I don't see the Encrypt counters increase as it's trying to reply to the ping. I'm not sure if this is because there is an issue with the encryption or whether there might be a more fundamental issue with the router not replying to the pings.
I've tried the following IOS releases (c7200-advipservicesk9-mz.122-33.SRE7 & c7200-advipservicesk9-mz.122-33.SRE6) and they all behave the same way - this makes me think it might be a config issue rather than and IOS bug which is what I first thought. c7200-advipservicesk9-mz.122-33.SRE7.bin.
sh crypto engine connections active
Crypto Engine Connections
ID Interface Type Algorithm Encrypt Decrypt IP Address
1 Tu10 IPsec 3DES+SHA 0 31 10.5.5.1
2 Tu10 IPsec 3DES+SHA 19 0 10.5.5.1
1001 Tu10 IKE SHA+3DES 0 0 10.5.5.1
Here is a copy of my config on the 7204 - the other end (Cisco 2921) is configured in the same way.
crypto isakmp policy 1
encr 3des
authentication pre-share
[code].....
View 16 Replies
View Related
Apr 10, 2012
I have two 7204VXR with NPE-G2 and 1Gb of ram. One router has 2 eBGP peers and the other has 3. The routers receive all internet routes from the 5 peers and send 2 internal routes. There is an iBGP peering between both routers. On all peers I have a route-map to send only our routes.
All was working fine since a couple of months when I suddenly saw an increase of memory on one of the router (router B), 1 hour later the memory was 100% and router crash and reboot. The other router (router A) with the same hardware capacity, same ram and same amount of routes was working good. After router B restart, I shut all eBGP peering on it, keeping only iBGP with router A, ram used was the same as router A (about 50% used) but CPU was about 30% used by process Router BGP whereas router A which has active traffic and active eBGP is only 20% and bgp process i almost 0%. Restarting peers one by one on router B cause the same issue, increase of memory then crash, even with only one peer.
What I suspected :
- A peer on router B but I can't isolate one because the problem appears with each taken one by one
- Not enough memory, but router A has the same number of routes and don't have any problem
- IOS version ? same on both 12.4.(15)T1
- Why process router BGP use 30% on router B when all eBGP peers are shut except iBGP and no traffic pass.
- A routing loop but I only send internal routes to peers and only have one iBGP session with no sync nor redistribution with an IGP
Of course I can't run any debu ip bgp on routers as the number of routes is very large (300K).
View 1 Replies
View Related
Feb 9, 2011
OSPF-4-ERRRCV: Received invalid packet: Bad LLS Checksum with one of our tunnels
View 1 Replies
View Related
Nov 30, 2012
My router is running with BGP (One eBGP and One IBGP session). I have filterdown the BGP roting table by using prefix-List and default route to upstream router.But still found the CPU process is high (80%/80% with 60MB traffic).
Sh Proc CPU
-------------------
CPU utilization for five seconds: 88%/88%; one minute: 87%; five minutes: 87%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
[Code].....
View 5 Replies
View Related
Aug 28, 2012
I am having a weird issue with my Cisco 7200 router. From the router i am able to ping and reach out to the internet but from the client i am able to reach out to the internet but unable to ping I am not sure where is the issue but when i traceroute to it my packets are dropped at my routers interface. All my pings from the client time out. I checked the Access list to make sure ICMP is not blocked. Following is my running conf
ip audit notify log
ip audit po max-events 100
ip ssh break-string ~
ipv6 unicast-routing
no ftp-server write-enable
[code]....
View 2 Replies
View Related
Jan 2, 2011
My company has a spare 7200 VXR, originally planned to be placed on our TDM network. This plan was not followed through, but I'd like to switch it's function to work as a core router on our BGP network. I'd like for this 7200 to be able to handle full routes from our eBGP peer, something the SUP module in my 6500 isn't capable of doing. What kind of SUP module should i look at replacing this 7200 VXR with?
View 5 Replies
View Related
Jul 30, 2012
I'm using PA-SON-OC3 on 7200VXR (NPE-G1). I want to upgrade the link to OC12 with same wavelenght. I found PA-SRP-OC12SMI for this purpose but I'm not sure about compatiblity.
View 2 Replies
View Related
Nov 28, 2012
Primary optical link between CPE and PE, and backup 3G/ADSL link between CPE and PE.I am considering link failure detection on primary link (after which backup link should take over). Which method is the least CPU intesive:
1) BGP protocol between CPE and PE
2) RIP protocol between CPE and PE
3) BFD on static routes on PE
Is there difference in terms of CPU load between above mentioned methods or they are more or less the same?Hardver platforms are sup720 BXL and Cisco 7200 G2.
View 4 Replies
View Related
Mar 1, 2011
how many GRE tunnels (without IPSEC) can 7206 router supported. I have low bandwidth 2000 links & i want to configure GRE tunnels for them.
View 1 Replies
View Related
Nov 17, 2011
I have set a tunnel between Cisco pix 6.3 and Cisco Router 7200. Show Isakmp sa showing below detail on Pix
Total : 1
Embryonic : 0
dst src state pending created
xx6.x71.x29.x68 x2.1x7.52.1x1 QM_IDLE 0 0
Is tunnel is UP ? Traffice is not going throgh the tunnel . why ?
View 1 Replies
View Related
Feb 26, 2011
what does VXR and S means in these series?
View 1 Replies
View Related
Mar 12, 2013
In my Lab environment in GNS I have connected two 7200 series router through fastethernet on router A I have given IP adress 192.168.10.54 and router B I have given IP address 192.168.10.53 and default route as 0.0.0.0 0.0.0.0 192.168.10.53 and when I run the command on router A it shows result as follows "C 192.168.10.52/24 is directly connected ,Fast ethernet 2/0".
So I need to know why it's showing the result of .52 at last why not .53 or .54 at last what is the reason it's showing .52 which I have not mentioned in my IP address.
View 5 Replies
View Related
Jul 2, 2012
What are the rough figures that a NPE-G2 is able to hold for the BGP routing table?
378475 network entries using 51472600 bytes of memory 378482 path entries using 21194992 bytes of memory 63008/63003 BGP path/bestpath attribute entries using 8065024 bytes of memory BGP using 82975730 total bytes of memory
Are these 3 memories different memory allocated or are they are a sub-set of each other? If a NPE-G2 has 1GB RAM, does it mean that the routing table limit is depending on the RAM availability?
View 1 Replies
View Related
Dec 27, 2012
recently i removed the squid cache from the 7200 router so that i could apply the Qos on the router my topology is simple i have 7200 with two working interfaces
GI0/1====>LAN
Gi0/3====>to isp and working bgp
have 550 Mega BW from isp . at the rush hour , the quality of browsing becomes worse .i just need a Qos to apply it on the 7200 router so that the priority for my traffic as follow:
1- browsing has the highest priority
2-youtube has the 2nd priority after browsing
3-download & other applications have the 3nd priority.
View 8 Replies
View Related
Jun 7, 2011
I have 7200 Router some flows are not forwarded and when i check ""show ip cache flow"" output i found the destination interface is going to Null i checked the access-list it permits these flows.
View 3 Replies
View Related
Apr 20, 2011
I have a Cisco 7200 and need to establish L2TP over IPSEC session with a Draytek Fly200. Draytek must use L2TP over IPSEC to provide LAN-to-LAN connectivity. IPSEC phase 1 and 2 is ok, L2TP tunnel is also established, but on cloned virtual-access IPCP negotiation is not completed:
*Sep 16 09:50:36.911: %LINK-3-UPDOWN: Interface Virtual-Access3, changed state to up
L2X_ADJ: Vi3:midchain adj reqd for ip 0.0.0.0, cid 0
*Sep 16 09:50:38.911: Vi3 IPCP: O CONFREQ [REQsent] id 2 len 10
*Sep 16 09:50:38.911: Vi3 IPCP: Address 192.168.176.2 (0x0306C0A8B002)
*Sep 16 09:50:38.911: Vi3 IPCP: Event[Timeout+] State[REQsent to REQsent]
I think my VPDN configuration from Cisco side is not correct, but I cannot find configuration examples for this kind of solution.
View 8 Replies
View Related
Sep 12, 2012
One of my customer is looking for 1 port OC3 card for 7200 series router. There are two options (PA-POS-2OC3/PA-A6-OC3)However my customer is not sure whether he wants a ATM/POS card.
How to determine whether i should go for ATM or POS Card for OC3. Or atleast what should be my approach to determine whether i should go for ATM or POS Card for OC3.
View 4 Replies
View Related
