vDS - evacuation packets dropped

Similar Questions

• Receive packets dropped on all the 4 vmnic

  ESXi 5.1, three hosts, 31 VMs all the hardware version 9 with the updated tools

  In the performance tab, I show the data network in real time with only "reception of packets dropped" checked

  My host and all 4 of the vmnic present ignored packets

  What is strange, is the graph is a line flat for the host and all the 4 vmnic, for example for the host, it's a constant ignored packets 42 130

  Two of the vmnic are attached to a Vswitch which are supported by two 1 GB Cisco switches in the back of my IBM Bladecenter

  Two of the vmnic are attached to a DVSwitch which is supported by two IBM 10 GB switches at the back of my IBM Bladecenter

  This is an instant screen that shows this. Although this screenshot shows a host, three guests are experiencing the same thing

  No idea why this is happening?

  

  The type of this metric is "summons". This means that the value represented is always the sum total of all the matches have taken place so far (so all packets ignored til now). You've probably had a number of frames being dropped in the past, but not now, which will result in a flat line for this particular counter.

  Check (r) esxtop for detailed and statistics.

• Equium M40X - slow internet packets dropped

  I use a wi - fi connection and my pc keeps dropping packets from time to time (and also not connected via LAN) making my internet connection is a bit slow.
  I had my wifi router has changed and he always does.

  Reflection on the upgrade of BIOS and wireless driver here but it of too risky, time-consuming and can it not cure all cases.
  My gut feeling is some process is suddenly from time to time and slow things down (my mouse movements sometimes freeze for a few seconds).

  I have AVG Anti-Virus installed, you run scan and no viruses found.
  I've defragged and run the registry cleaner.

  Any ideas I can try to find out what is the cause. see you soon

  Hello

  I put t know if it s really a problem!
  I very often use WiFi and I noticed a similar issue.
  But it really depends on the site and server I connect.

  However, the WLan driver update should be done initially to check if this could sort the WiFi issue but to be honest I m not sure if it is a WLan problem, due to the fact that this also occurs when you use the local network.

  I think you should check if a Windows updates are possible and available.
  If the new versionis available BIOS, check if the BIOS update helps.
  The use of a firewall might have a bad influence on the transmission too!

• Random Tunnel IPSec Packet drops

  Hi experts,

  I am trying to solve a problem of fall of random package for tunneling IPSec between two VTI. For more than a month, we could not see not any question, and from today, we have 30% through a tunnel packet loss IPSec.

  After analysis, I have concluded that packet loss is located somewhere on the way to the uc520 to the 2921. Package account see the correctly on the output interface physics uc520, but the number of packets is low on the interface of penetration on the 2921.

  Pings outside of the tunnel by the way are very good.

  I also deleted the tunnels on both ends and after they have recovery, the question was always present.

  Pointers on research where packets get lost?

  RR-hq-2921 #ping 10.1.13.1 g0/1 source rep 100

  Type to abort escape sequence.

  Send 100, echoes ICMP 100 bytes to 10.1.13.1, wait time is 2 seconds:

  Packet sent with a source address of 10.1.1.1

  !!..!.!!!!!!!!!..!!!!!!!!!!!!!!.!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

  ..!!.!!!!!!!!!!!.!!!!!!!!.!!!!

  Topology:

  [uc520] == HAVE == {{{cloud}}} == MODEM == [2921]

  Test:

  Claire 2921 # counters g0/0

  Disable "show interface" counters on this interface [confirm]

  % CLEAR-5-COUNTERS: claire counter on interface GigabitEthernet0/0

  Execute on uc520: ping source timeout 0 rep 4000

  This is supposed to increase rapidly the number of packets at a distance of 4000 packages, as it has done on the output uc520 interface

  # 2921 sho int g0/0 | I entered the packages

  3348 packets input, 607812 bytes, 0 no buffer< missing="" ~650="">

  # 2921 sho int g0/0

  GigabitEthernet0/0 is up, line protocol is up

  Material is CN Gigabit Ethernet, the address is XXXXXXXX

  Description: Outdoors - WAN port

  The Internet address is XXX.XXX.XXX.XXX/YY

  MTU 1500 bytes, BW 35000 Kbit/s, 10 DLY usec,

  reliability 255/255, txload 1/255, rxload 1/255

  Encapsulation ARPA, loopback not set

  KeepAlive set (10 sec)

  Full-Duplex, 1 Gbps, media type is RJ45

  control output stream is XON, control of input stream is XON

  Type of the ARP: ARPA, ARP Timeout 04:00

  Last entry of 00:00:00, 00:00:00 exit, exit hang never

  Final cleaning of the counters 'show interface' 00:00:42

  Input queue: 0/75/0/0 (size/max/drops/dumps); Total output drops: 0

  Strategy of queues: fifo

  Output queue: 0/40 (size/max)

  30 second entry rate 75000 bps, 51 packets/s

  exit rate of 30 seconds 77000 bps, 52 packets/s

  3456 packets input, 619794 bytes, 0 no buffer

  Received 0 emissions (0 of IP multicasts)

  0 Runts, 0 giants, 0 shifters

  entry 0, 0 CRC errors, frame 0, saturation 0, 0 ignored

  Watchdog 0, multicast 0, break 0 comments

  3454 packets output, 632194 bytes, 0 underruns

  0 output errors, 0 collisions, 0 resets interface

  unknown protocol 0 drops

  0 babbles, collision end 0, 0 deferred

  carrier, 0 no carrier, lost 0 0 interrupt output

  output buffer, the output buffers 0 permuted 0 failures

  Good infor

  Now, did you ask your ISP if they made the last changes made?

  I think that your suspcious is correct and if the number of packets do not match, then probably something in the environment has changed, since it worked before with the same configuration and IOS versions.

  HTH.

• Drop Packet BOUNCING

  Whenever ESXi is powered on, a switch of gigabyte or a FastEthernet switch... I have drop packet. Take a look at the picture so see what I mean.

  Here's the scenario:

  Cable Modem - > 2821 Gi0/0 - > 3550 Gi0/0 - Port-Channel 1

  -Gi0/2 and Gi0/3-> ESXi Server (with IP hash)

  -> host: DNS/DHCP Win2008 Vlan 40

  -> VMkernel: 10.10.80.5

  Before being on a purchase order, the ESXi server was plugged into a regular trunk port.

  If I use a laptop computer plugged into a port on the switch... I get an IP address and the DNS works well.

  HERE'S THE PROBLEM:

  

  I have NO IDEA why she did this. The iOS are more recent. The server is updated to the latest version. WinServ2008/DNS/DHCP uses a network card VMnet3 and not E1000.

  ESXi is 5.5.

  I did the configuration of VMware with this tutorial:

  VMware KB: Example configuration of EtherChannel / control protocol LACP (Link Aggregation) with ESXi/ESX and Cisco/H...

  ANOTHER FACT: when the port Gi0/2 and Gi 0/3 are closed, no more problems.

  The router config and Switch is below.

  Can someone help me?

  RTR1_dwt > en
  Password:
  RTR1_dwt #sh run
  Building configuration...

  Current configuration: 3533 bytes
  !
  ! Last configuration change to 16:59:02 EST Saturday, November 2, 2013 by danik
  ! NVRAM config last updated at 16:10:43 a.m. EST Saturday, November 2, 2013 by danik
  !
  version 12.4
  horodateurs service debug datetime msec
  Log service timestamps datetime msec
  no password encryption service
  !
  hostname RTR1_dwt
  !
  boot-start-marker
  start the flash system: c2800nm-adventerprisek9_ivs - mz.124 - 25 g .bin
  boot-end-marker
  !
  enable secret 5 $1$ Y/ZH$ 06jO3q61Y30WCvmzZmITp.
  !
  AAA new-model
  !
  !
  AAA authentication login AutClient local
  AAA authorization groupauthor LAN
  !
  AAA - the id of the joint session
  clock timezone IS - 4
  No network-clock-participate wic 2
  !
  !
  IP cef
  !
  !
  domain name of IP danikwt.com
  property intellectual auth-proxy max-nodata-& 3
  property intellectual admission max-nodata-& 3
  !
  !
  Enable WebVPN
  !
  !
  voice-card 0
  No dspfarm
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  
  !
  !
  controller E1 0/2/0
  !
  Cisco IP ftp username
  !
  rays of cryptographic keys
  pre-shared key address 0.0.0.0 0.0.0.0 - key All0abcd
  !
  crypto ISAKMP policy 10
  BA 3des
  preshared authentication
  Group 2
  !
  ISAKMP crypto client configuration group danikwtgroup
  key All0abcd
  DNS 10.10.40.3
  domain corp.danikwt.com
  pool vpnpool
  include-local-lan
  Crypto isakmp Lan2Lan profile
  Description 'Lan-to-Lan for connection 8 speak '.
  rays of Keychain
  function identity address 0.0.0.0
  Crypto isakmp L2L profile
  ! This profile is incomplete (no declaration of identity match)
  Crypto isakmp VPNclient profile
  Description 'profile of VPN Clients.
  danikwtgroup group identity match
  client authentication list AutClient
  ISAKMP authorization list groupauthor
  initiate client configuration address
  client configuration address respond
  !
  !
  Crypto ipsec transform-set esp-3des esp-sha-hmac danikset
  !
  Crypto-map dynamic dynmap 5
  Set transform-set danikset
  Define VPNclient isakmp-profile
  Crypto-map dynamic dynmap 10
  Set transform-set danikset
  set the isakmp Lan2Lan profile
  !
  !
  danikmap 10 card crypto ipsec-isakmp dynamic dynmap
  !
  map mymap 10-isakmp ipsec crypto dynamic dynmap
  !
  !
  !
  !
  interface Loopback0
  10.5.5.1 IP address 255.255.255.0
  IP nat inside
  IP virtual-reassembly
  !
  interface GigabitEthernet0/0
  DHCP IP address
  NAT outside IP
  IP virtual-reassembly
  automatic duplex
  automatic speed
  danikmap card crypto
  !
  interface GigabitEthernet0/1
  IP 10.10.10.1 255.255.255.252
  IP nat inside
  IP virtual-reassembly
  full duplex
  Speed 1000
  !
  interface Serial0/3/0
  no ip address
  Shutdown
  !
  the BRI1/0 interface
  no ip address
  encapsulation hdlc
  Shutdown
  !
  interface BRI1/1
  no ip address
  encapsulation hdlc
  Shutdown
  !
  interface BRI1/2
  no ip address
  encapsulation hdlc
  Shutdown
  !
  interface BRI1/3
  no ip address
  encapsulation hdlc
  Shutdown
  !
  Router eigrp 10
  redistribute static metric 1000000 5 255 1 1500
  Network 10.5.5.0 0.0.0.255
  10.0.0.0 network
  No Auto-resume
  !
  IP local pool vpnpool 10.5.5.2 10.5.5.100
  IP forward-Protocol ND
  IP route 0.0.0.0 0.0.0.0 GigabitEthernet0/0
  !
  !
  no ip address of the http server
  no ip http secure server
  overload of IP nat inside source list 102 interface GigabitEthernet0/0
  IP nat inside source static tcp 10.10.40.1 22 96.127.209.203 22222 extensible
  !
  access-list 102 permit ip 10.10.0.0 0.0.255.255 everything
  access-list 102 permit ip 10.5.0.0 0.0.255.255 everything
  !
  !
  !
  control plan
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  access controller
  Shutdown
  !
  !
  Line con 0
  line to 0
  line vty 0 4
  entry ssh transport
  !
  Scheduler allocate 20000 1000
  NTP master 3
  NTP-Calendar Update
  NTP 192.75.12.11 server
  !
  end

  Password:

  SWT1_dwt > en
  Password:
  SWT1_dwt #sh run
  Building configuration...

  Current configuration: 5150 bytes
  !
  ! Last configuration change at 22:43:56 EST Tuesday, November 5, 2013 by danik
  ! NVRAM config last updated at 9:51:21 EST Tuesday, November 5, 2013 by danik
  !
  version 12.2
  no service button
  horodateurs service debug uptime
  Log service timestamps uptime
  no password encryption service
  !
  hostname SWT1_dwt
  !
  
  !
  
  No aaa new-model
  clock timezone IS - 4
  IP subnet zero
  IP routing
  IP - danikwt.com domain name
  !
  !
  !
  Crypto pki trustpoint TP-self-signed -3153477504
  enrollment selfsigned
  name of the object cn = IOS-Self-signed-certificate -3153477504
  revocation checking no
  rsakeypair TP-self-signed -3153477504
  !
  !
  crypto TP-self-signed pki certificate chain -3153477504
  certificate self-signed 01
  308201B 5 A0030201 02020101 3082024C 300 D 0609 2A 864886 F70D0101 04050030
  2 060355 04031326 494F532D 53656 C 66 2 AND 536967 6E65642D 43657274 31312F30
  69666963 33313533 34373735 6174652D 3034301E 170 3933 30333031 30303139
  32335A 17 0D 323030 31303130 30303030 305A 3031 06035504 03132649 312F302D
  4F532D53 5369676E 656C662D 43 65727469 66696361 74652 33 31353334 65642D
  37373530 3430819F 300 D 0609 2A 864886 01050003, 818, 0030, 81890281 F70D0101
  8100C3CA 2B1E9031 936A76B9 FB3AD172 74604AB6 83DF7B2E 58B10C3C 883D284B
  74640B 03 F60F6992 E87ECCAD 8CFFA1A0 AD6ED302 F186B3C1 1315659F CAE38D9F
  71BE5030 E9E51D33 47152537 54030E1D ABCEBFEC 917D02C1 6ADA2DC7 8A61C975
  ECC476F4 82EF97A4 E6ED84E7 CE785352 D817286E 92E5DA1B 5B67AE84 5DF453BC
  010001A 3 74307230 1 130101 FF040530 030101FF 301F0603 0F060355 5BE90203
  551 1104 18301682 14535754 315F6477 742E6461 6E696B77 742E636F 6D301F06
  B 23 04183016 801422 7 C00BBF3A 5D0684B1 BF2647C3 B9F5B83A 1A1D301D 03551D
  0603551D 0E041604 1422B7C0 0BBF3A5D 0684B1BF 2647C3B9 F5B83A1A 1D300D06
  092A 8648 86F70D01 01040500 03818100 9A472CFB C56CA8A9 46520 HAS 40 38C8CD9A
  4B86A056 5CD8A6C4 D5E1359A 1D110DFB 69E30F47 39126B 83 AA2AE32C CE5717A3
  230A 6763 FFB35C75 FBF6D42F D4E98E26 C8C3EFA2 B12B170A 152B14FC 5089EDD2
  7DD39C3B AC194D4F AF433AF1 F9F3A4C8 63E535F2 A038631F 27E26717 2CCE9EEF
  23B 26994 5DD9D179 99A2208B A116D4C7
  quit smoking
  !
  !
  pvst spanning-tree mode
  spanning tree extend id-system
  !
  internal allocation policy of VLAN ascendant
  !
  !
  !
  !
  !
  !
  interface Loopback2
  IP 10.5.5.55 255.255.255.0
  !
  Interface Port - Channel 1
  Description ESXi_VLAN_TRUNK
  switchport trunk encapsulation dot1q
  switchport trunk allowed vlan 10,40,50,70,80
  switchport mode trunk
  switchport nonegotiate
  !
  interface GigabitEthernet0/1
  Description "to the ‑‑ 2821 Uplink router.
  No switchport
  10.10.10.2 IP address 255.255.255.252
  Speed 1000
  full duplex
  !
  interface GigabitEthernet0/2
  Description 'server UpLink '.
  switchport trunk encapsulation dot1q
  switchport trunk allowed vlan 10,40,50,70,80
  switchport mode trunk
  switchport nonegotiate
  Speed 1000
  full duplex
  channel-group mode 1 on
  spanning tree portfast trunk
  !
  interface GigabitEthernet0/3
  Description 'server UpLink '.
  switchport trunk encapsulation dot1q
  switchport trunk allowed vlan 10,40,50,70,80
  switchport mode trunk
  switchport nonegotiate
  Speed 1000
  full duplex
  spanning tree portfast trunk
  !
  interface GigabitEthernet0/4
  Description "iLO 2.
  switchport access vlan 80
  switchport mode access
  !
  interface GigabitEthernet0/5
  Description 'Wireless UPlink for local data ‑‑ Vlan40'
  switchport access vlan 40
  switchport mode access
  Speed 100
  full duplex
  !
  interface GigabitEthernet0/6
  desirable switchport mode dynamic
  !
  interface GigabitEthernet0/7
  desirable switchport mode dynamic
  !
  interface GigabitEthernet0/8
  desirable switchport mode dynamic
  !
  interface GigabitEthernet0/9
  Description "MGMT coelio ~.
  switchport access vlan 80
  switchport mode access
  Speed 1000
  full duplex
  !
  interface GigabitEthernet0/10
  Description "PoE Switch Uplink - Linksys ONE.
  switchport trunk encapsulation dot1q
  switchport trunk allowed vlan 10,40,50,70,80
  switchport mode trunk
  switchport nonegotiate
  Speed 1000
  full duplex
  spanning tree portfast trunk
  !
  interface GigabitEthernet0/11
  desirable switchport mode dynamic
  !
  interface GigabitEthernet0/12
  desirable switchport mode dynamic
  !
  interface Vlan1
  no ip address
  Shutdown
  !
  interface Vlan40
  «Data & Wireless» description
  IP 10.10.40.1 255.255.255.0
  !
  interface Vlan50
  Description "telephony Vlan.
  IP 10.10.50.1 255.255.255.0
  !
  interface Vlan70
  Description "vlan VPN.
  IP 10.10.70.1 255.255.255.0
  !
  interface Vlan80
  Description "Vlan Management."
  IP 10.10.80.1 255.255.255.0
  !
  !
  Router eigrp 10
  No Auto-resume
  Network 10.10.10.0 0.0.0.3
  Network 10.10.40.0 0.0.0.255
  Network 10.10.50.0 0.0.0.255
  Network 10.10.70.0 0.0.0.255
  Network 10.10.80.0 0.0.0.255
  !
  by default-gateway IP 10.10.10.1
  IP classless
  IP route 0.0.0.0 0.0.0.0 10.10.10.1
  IP http server
  IP http secure server
  !
  !
  !
  control plan
  !
  !
  Line con 0
  Synchronous recording
  line vty 0 4
  local connection
  entry ssh transport
  line vty 5 15
  local connection
  !
  NTP-period clock 17180445
  NTP 192.75.12.11 server
  NTP peers 10.10.10.1
  NTP peers 10.10.50.1
  end

  SWT1_dwt #.
  ---------------------------------

  PROBLEM SOLVED!

  I can't find the article, but he was right. In this article, they said that the decline of the package could be the cause of the Vkernel interface in the same vswitch as virtual machines.

  So I vmnic1, configured as a switchport access vlan 80.

  Then, I changed the ip address of the interface vlan 255.255.255.252 80 to 10.10.80.6.

  (my vcenter server is already set up to the communication of the esxi via 10.10.80.5).

  

  Here is the final result that now works. MORE NO PACKET DROP.

  Thank you all!

• The number of packets of high-head ASA5510 inside Interface

  We have experienced some problems with occasional connections to VPN clients. In investgating, we used the mtr utility to draw LAN upside to an external host. First jump (from the host of the ASA) packet loss seemed excessive, sometimes up to 50%. The only thing between the host and the SAA is a gigabit switch. A flood of ping to the host even to the same destinations show a 0% packet loss.

  Looking at the inside interface, the use of the ASDM Interface Grapher for number packet Drop shows almost compatible 510-512 Kpackets lost.

  What are the causes of thie? Can it be mitigated by reconfiguring the Auto/Auto Interface to 1000/Full? Where can I start looking for the source of this decline in package, and is this real or some artifacts of the ASA firmware?

  I read somewhere that Cisco recommends that the connection between the switch and the firewall must be set to auto / auto.

  Here is a troubleshooting guide for the interface on the ASA errors:

  https://supportforums.Cisco.com/docs/doc-12439

  Accommodation inside the switch is healthy without error?

  Here is a troubleshooting guide for the VPN problems. Check to see if there is no error logs on the client when they connect.

  If the problem can be replicated check for the error on the SAA logs as well.

  http://www.Cisco.com/en/us/products/ps6120/products_tech_note09186a00807e0aca.shtml

  Remember messages useful rate.

• DAVID tail Drops

  We have a POS 155 Mbps circuit.

  There are tail drops that occur on the default class that is allocated 25% (38,75 Mbps). There is a part of the voice traffic, but it is the priority in queue and is not a problem. Other control classes also OK.

  But when I look at the overall use of the physical interface (155 Mbps), it isn't cluttered. It peaks at 40 percent during the opening hours - which most is the default class.

  It was my understanding that DAVID should not "kick in" unless there is congestion - such as defined by the WRED algorithm.

  "Congestion" here applies to the physical interface or is it worth the 25% allocated without traffic?

  If the tail drops are produced due to "congestion" on the class by default, what settings should I change - queue lengths or the bandwidth allocated by default?

  eth-service-policy policy-map
  voice of the class
  percentage of priority 35
  voice command class
  2% of bandwidth
  Network-class control
  percentage of bandwidth 5
  class class by default
    25% of bandwidth
  random detection

  Policy-map frame-relay-form-policy
  class class by default
  average of form 154000000
  Service-eth-service-policy

  POS1/0 interface
  Description «...» »
  no ip address
  encapsulation frame-relay
  No keepalive
  No arp frame relay
  no relay inverse-arp frame
  frame-relay-form-exit of service-policy policy
  waiting-1000 on

  show policy-map interface POS1/0

  POS1/0

  Out of service-policy: frame-relay-form-policy

  Class-map: default class (all football match)
  1802709602 package, 720560400569 bytes
  5 minutes offered rate 26898000 bps, lower rate 0 bps
  Match: all
  Traffic Shaping
  Target/average byte support excess increment interval
  Rate limit bits/int bits/int (ms) (bytes)
  154000000/154000000 962500 3850000 3850000 25 481250

  Adapt the queue packets bytes packet shaping
  Active depth delayed deferred Active
  -0 1802673602 3259356776 79971 71426633 not

  Service policy: eth-service-policy

  Class-map: default class (all football match)
  1405375819 package, 644742811187 bytes
  5 minutes offered rate 24889000 bps, lower rate 0 bps
  Match: all
  Queues
  The output queue: Conversation 267
  Bandwidth 25 (%)
  Bandwidth 38500 (Kbps)
  (correspondence pkts matched / bytes) 94915/108733008
  (depth/total drops/No.-buffer drops) 36015/0/0
  exponential weight: 9
  average queue depth: 0

  class transmitted random drop tail drop brand Maximum Minimum
  pkts pkts, bytes, pkts, bytes beat beat the prob
  0 1405364393/644719714663 4793657/4024 31991/36714190 20 40 1/10
  1 25378/1116693 0/0 0/0 22 40 1 / 10
  2 175 / 7736 0/0 0/0 24 40 1 / 10
  3       0/0               0/0              0/0           26      40  1/10
  4       0/0               0/0              0/0           28      40  1/10
  5       0/0               0/0              0/0           30      40  1/10
  6       0/0               0/0              0/0           32      40  1/10
  7       0/0               0/0              0/0           34      40  1/10
  RSVP 0/0 0/0 0/0 36 40 1 / 10

  Packet drop counters increment when I controlled from one day to the next, and we have graphs that show random and drops of tail.

  

  Thank you (in anticipation).

  Hello, Craig.

  Here is the minimum and maximum thresholds that you have on the class by default WRED. That you run fast enough connection with many users, the traffic must be burst, and queue average of 20/40 packages is not enough!

  100M link I would say to have thresholds at least 200 to 300 packages (or even more) respectively; the size of the queue on 400-500.

  Best regards.

  PS: forced to queue length just queues delay and buffers available; I guess in your case, only delay queues would come into play... up to 300 packs * 500 bytes * 10/150 M = 1/100 sec = 10 ms (in the worst cases).

• Implementation of the LACP Protocol in vDS without loss of network connectivity

  Hello

  Situation: a 2 node Cluster esx with a vDS with 4 physical uplinks. VDS has 4 trade (management, 2 for vmotion
  (and a PG for the vm network).

  What are best practices to implement LACP without interruption to network connectivity?

  I read about some problems remove some uplinks to an existing vDS. If someone does this?

  Best

  Alex

  Here is a video I created using LACP with the VDS 5.1.

  Configuration of LACP on a vSphere 5.1 Distributed Switch - YouTube

  Like I said before, any time delete you an uplink it there is a risk of disruption of the network. You then create new distributed port groups that are needed.

  High level:

  1. Create new VDS
  2. Remove 2 uplinks from the former VDS (chance to drop ping)
  3. Add 2 uplinks to the new VDS
  4. Configure LACP on the new physical ports and VDS
  5. Create groups of port required on the new VDS
  6. Migrate virtual machines (chance to drop ping)

• vSphere update your distributed switch 5.1 to 5.5

  Hi after that the upgrade to vsphere vsphere 5.5 5.1 and using vsphere distribution swtich to VDS needs to upgrade to 5.5 see a screenshot in attachment.

  The VDS 5.5 upgrade will cause failures or packet drops?

  The upgrade of virtual distributed switch won't cause any downtime. It is a non-distrayant operation, you should not see any package drop.

  -A

• HP envy 15 m6 connectivity problem

  I've had this laptop for 1 year and a half. I had good results until recently, the Internet has been uncertain, it disconnects or has limited internet. I tried many solutions to reset winsock, to reinstall the driver. I tried to update the driver, disableing and help and many other things. However, none of them have worked. I have tried almost everything on the Microsoft Web site and the HP Web site. I have also contacted the Intel site, to no prevail. Is there anything else I can try, or maybe I have the wrong driver. I have an Intel (R) Dual-Band Wireless AC 3160. One of the mistakes that I get whenever I try recurring troubleshooting is missing protocols, but I also frequently get the problem with wireless network card error. I would really appreciate any kind of feedback.

  Hello @eagarcia00,

  I'm glad that the WiFi connect now! I could not find any documents specifically solve the loss of packets of data over a wireless network. I found an article from a different website with measures to reduce packet loss.

  http://www.TomsHardware.com/Forum/39115-43-packet-drops-wireless-network

  If this information helped you, click on the thumbs up!

• LRT 214 Throtteling download speed by a factor of 7

  I have a TLR-214 (v 1.0.3.09) I have reset to factory settings and does any other configuration changes. There is no other network traffic (hard wired or wireless) connected to the LRT-214. I ran a network speed test using my ISP (Cox) site and get 15 Mbit/s download and 10 Mbps upload. If I remove the LRT-214 and connect the computer directly to the modem, and then do the same speed test, I get 115 Mbps download and and 10 Mbps upload. I checked the number of packages of error on the WAN and LAN side and reports of the LRT-214 0 packets dropped... I can't fathem Router 1 Gbps, stopping my bandwidth that much. Should I get an evil router?

  Thanks in advance for any help you can provide.

  Tim

  Hi Timtheis,

  You can also check with your ISP if they have problems with the correct modem. It could be a problem with the modem through the router gigabit WAN port. You can see the forums of the modem because some have been resolved by replacing the modem.

  Thank you.

• EA3500 EA4500 PPPOE issue resolved

  The question:

  Usable size MTU packets drop when it is connected to an ADSL Modem in bridge with EA series router connected via PPPOE mode.

  How to identify the issue:

  The router will connect using PPPOE and displays the IP address normally in State. If you are a standard ping www.yahoo.com , it works fine. When you open www.yahoo.com into your browser, it fails. Load the ping www.yahoo.com with packet MTU sizes over 100 fail.

  What are the causes of the problem:

  The current firmware using linux pppd daemon and rp - pppoe.so PPPOE connection library. The version used is ppp - 2.4.4 according to me. Is this version or the Linksys patch files that are at the origin of the problem.

  My tests showed that when the ADSL Modem ethernet port had a different MTU 1500 load pings started to drop quickly and the site navigation Web does not. If the ADSL Modem ethernet port had a MTU of 1500 the problem does not occur.

  The Solution I used:

  Searching the Web I found how to get root SSH access to the router (not really a security risk). I also found the build tools CodeSourcery used to create the firmware.

  With the help of these tools I compiled a version different ppp - 2.4.5 of the library of demon and rp - pppoe.so of pppd. So I swapped the old version to the new version and commented a line off /etc/init.d/serivce_wan/ppp_helpers.sh

  After that, the routers worked perfectly.

  Footnotes:

  I love first of all these routers. They are really great, but this a defect has been a real problem for me and almost prevented me from using Linksys in the future.

  Now that I have a due diligence on its firmware I love him even more.

  Also parental control on the classic firmware is the best I've come across. Does the router indespenible for me and why I when through all the work to find a solution.

  Remember, that assumes that you are running the classic firmware on your EA3500\EA4500. I don't know if it works with Cloud firmware for these routers.

• Best practices with streams WCCP of WAAS

  Hello

  I have a module WAAS SRE 910 in 2911 router that intercepts packets this router with WCCP.

  All packets are received by the external interface (gi 0/2, connected to a switch with port configured in vlan WCCP) and are sent back to the router via the internal interface (IG 1/0 connected directly to the router):

  WAAS # sh interface IG 1/0

  Internet address: 10.0.1.1

  Subnet mask: 255.255.255.0

  State of the admin: to the top

  Operating status: running

  Maximum transfer unit size: 1500

  Entry errors: 0

  Entry packets dropped: 0

  Packets received: 20631

  Output errors: 0

  Output packets dropped: 0

  Load interval: 30

  Input rate: 239 bps, 0 packets/s

  Output: 3270892 bps, 592 packets/s

  Packets sent: 110062

  Auto-negotiation: on

  Full Duplex: Yes

  Speed: 1000 Mbit/s

  WAAS # sh interface 2/0 gi

  Internet address: 10.0.2.1

  Subnet mask: 255.255.255.0

  State of the admin: to the top

  Operating status: running

  Maximum transfer unit size: 1500

  Entry errors: 0

  Entry packets dropped: 0

  Packets received: 86558

  Output errors: 0

  Output packets dropped: 0

  Load interval: 30

  Input rate: 2519130 bps, 579 packets/s

  Output rate: 3431 bps, 2 packets/sec

  Packets sent: 1580

  Auto-negotiation: on

  Full Duplex: Yes

  Speed: 100 Mbps

  The default route configured in module WAAS is 0.0.0.0/0 to 10.0.1.254 (interface of the router).

  It would be better that the packets leave module WAAS of the external interface (instead of the internal interface)?

  Is there a best practice recommended by Cisco on this?

  Thank you.

  Stéphane

  Hi Stephane,

  That's right, internal interface means SM1/0.

  The best way is to have traffic at the start of the internal interface module so that we are sure, it hits the redirect exclude statement and that we do not have the crest of the loops because WCCP.

  Kind regards

  Nicolas

• Recommendations of logging

  Are there recommendations regarding when you choose to open a session at the beginning or end?  I know in some circumstances, the only option is to immediately because of the packet dropped, but what about in other situations?

  For example, I have an access control rule that has balanced security and a defined strategy for IPS connectivity and a custom policy file.  The action is set on allow which should still block bad things, if it goes through.  Is it better to open a session at the beginning or end?

  My default action for this policy has the network discovery.  Is it better to open a session at the beginning or end?

  The only other place that I have enabled logging is in SSL policies and you can only connect at the end.

  The problem is that I came across a problem where CME seems to have very few events (like maybe an hours value), whereas before, I had days worth so I feel that I now have too many records enabled.  The virtual appliance that resembles it culminates at connection of 10 M running events.

  If you want see what happens on the network and keep track, you have logging enabled.

  I suggest to use end-of-connection in there also.

  Political SSL you can have it with end of connection as the political SSL must decide and then open a session that will be better.

  Rate if helps.

  Yogesh

• Cisco 4506 high CPU usage

  Hello

  Yesterday afternoon, one of our 4506 switch has climbed to 96% CPU usage. I did not the configuration changes. Here is the process with high CPU usage

  40 36630921841089949084 3360% 8.63% 10.56% 11,29% 0 Cat4k Mgmt HiPri

  41 30929587802851505705 1084 36,61 36,53% 36.18% 0 Cat4k Mgmt LoPri

  76 72485492 270422107 268 entry IP 7.91% 7.72% 7,68% 0

  113 35661224 40030007 890 21.91 28.13 29,84% 0 DHCPD receive

  After having HS health platform, what are those high:

  S2w-JobEventSchedule 10.00 7.54 10 8 100 500 9 9 7 36703:06

  Stub-JobEventSchedul 10.00 12.23 10 48 100 500 12 12 9 51004:51

  K2CpuMan review 30,00 29,44 30 99 100 500 33 32 25 37067:58

  K2AccelPacketMan: Tx 10.00 12,15 20 1 100 500 12 12 10 11871:22

  And finally sh platform cpu packet statistics gives me this

  Packets dropped in hardware by CPU Subport (txQueueNotAvail)

  UC Subport TxQueue 0 TxQueue 1 TxQueue 2 TxQueue 3

  ------------ --------------- --------------- --------------- ---------------

  0 11045 14031 149981 188579662

  1               0               0               0         5919279

  2               0          115638               0               0

  RkiosSysPacketMan:

  Falures allowance package: 0

  Package (common software) buffer allocation falures: 0

  Package Buffer (software ESMP) allocation falures: 0

  Package Buffer (software EOBC) allocation falures: 0

  Falures IOS Packet Wrapper buffer allocation: 0

  Packets dropped in the overall treatment

  Total 5 s 1 min, 5 min 1 hour avg avg avg avg

  -------------------- --------- --------- --------- ----------

  146521131 0 0 0 0

  Packets dropped in treatment by event CPU

  AVG s Total 5 1 min, 5 min avg avg avg 1 hour event

  ----------------- -------------------- --------- --------- --------- ----------

  Input Acl 146002289 0 0 0 0

  SA Miss                             27         0         0         0          0

  Packets dropped in the treatment of priority

  AVG s Total 5 priority 1 min, 5 min avg avg avg 1 hour

  ----------------- -------------------- --------- --------- --------- ----------

  Normal 46723179 0 0 0 0

  Medium 518884 0 0 0 0

  High 99797883 0 0 0 0

  Packets dropped in the treatment of the reason

  AVG s Total 5 reason 1 min, 5 min avg avg avg 1 hour

  ------------------ -------------------- --------- --------- --------- ----------

  SrcAddrTableFilt 24 0 0 0 0

  L2DstDrop                             7         0         0         0          0

  L2DstDropInAcl 46 0 0 0 0

  NoDstPorts                           32         0         0         0          0

  NoFloodPorts 146521022 0 0 0 0

  The package 16 total queues

  Packets received from the packet queue

  Total 5 s 1 min, 5 min 1 hour avg avg avg avg queue

  ---------------------- --------------- --------- --------- --------- ----------

  6279742115 238 247 203 193 ESMP

  L2/L3Control 1320811357 57 48 43 41

  Host of learning 24933459 1 0 0 0

  L3 Fwd Medium 5813 0 0 0 0

  L3 Fwd Low 72923122 0 0 0 0

  L2 Fwd high 11130 0 0 0 0

  L2 Fwd Medium 164016 0 0 0 0

  L2 Fwd 242645408 227 237 193 185 Low

  L3 Rx High                           9         0         0         0          0

  L3 Rx 89296999 439 461 378 364 Low

  Failure of the RPF 129420 0 0 0 0

  Packets dropped packet queue

  Total 5 s 1 min, 5 min 1 hour avg avg avg avg queue

  ---------------------- --------------- --------- --------- --------- ----------

  L2/L3Control 18470371 0 0 0 0

  Host of learning 5825831 0 0 0 0

  L2 Fwd Low 405210 0 0 0 0

  L3 Rx Low                         9863         0         0         0          0

  I will be restarting the night switch to see if it helps.

  Thank you.

  Salman

  Hello Salman,

  If DHCP requests are taken over by clients, you will probably want to focus on the limiting of requests DHCP using DHCP snooping.

  ip dhcp snooping limit rate rate

  http://www.Cisco.com/c/en/us/support/docs/switches/catalyst-4000-series-switches/65591-Cat4500-high-CPU.html#high_cpu

  http://www.Cisco.com/c/en/us/TD/docs/switches/LAN/catalyst4500/12-2/25ew/configuration/guide/conf/DHCP.html#wp1073418

  -Ginette