Gents,
We have a WAN facing Cisco 3845 which is showing the numbers below on it's
Gi0/1 interface:
Input queue: 0/75/9/71805 (size/max/drops/flushes); Total output drops:
714432
Of course, these counters are increasing and we have a bunch of users at the
other side of the link complaining abou
Also keep in mind that the packet did actually ingress on some interface on
the router somewhere prior to it being dropped by the ACL. The NetFlow
record must be sent to the collector in order for the ingress interface
traffic to be reported correctly in the collector.
In other words, if the route
On Feb 26, 2010, at 12:43 AM, Drew Weaver wrote:
> but why is it showing up in the netflow exports?
Because that's how NetFlow is supposed to work on a real router, vs. the broken
implementation on 6500/7600 with current hardware.
;>
It's of great operational significance to know that even t
Thanks Andrew, i will investigate the options you mentioned.
Regards,
Antonio Soares, CCIE #18473 (R&S/SP)
amsoa...@netcabo.pt
-Original Message-
From: Andrew Yourtchenko [mailto:ayour...@cisco.com]
Sent: quinta-feira, 25 de Fevereiro de 2010 21:41
To: Antonio Soares
Cc: dwhit...@cis
Hi,
> IPv6 exists in IP Services now and the advanced IP services train has been
> EoL'd. You have to change your SDM profile to get IPv6, so it will initially
> seem to be absent (it even rejects config commands until you change the
> profile).
ah! that might explain a few things when will
It the feature sets that are deemed "advanced". You can leverage these if
necessary, however, per the previous thread, it's what you do, that enables the
changes.
~Jay Murphy
IP Network Specialist
NM State Government
IT Services Division
PSB – IP Network Management Center
Santa Fé, New México
On Thu, 25 Feb 2010 21:40:42 +, you wrote:
> IPv6 only exists in the IP advanced services right now it seems
No, actually IPv6 was moved to IP Base and IP Services (same as IPv4)
with 12.2(50)SE.
-A
___
cisco-nsp mailing list cisco-nsp@puck.nethe
IPv6 exists in IP Services now and the advanced IP services train has been
EoL'd. You have to change your SDM profile to get IPv6, so it will initially
seem to be absent (it even rejects config commands until you change the
profile).
-saxon
On 25 February 2010 14:40, Alan Buxey wrote:
> Hi,
> >
Antonio,
On Thu, 25 Feb 2010, Antonio Soares wrote:
David/Andrew,
Thank you very much for clarifying this. Well, the customer was looking for
something like this but for TCP sessions traversing the
PIX/ASA. For example, how many SYN packets were sent to the systems protected
by the unit, how
Hi,
> Is there a good breakdown anywhere comparing the functionality of the
> Enterprise (IP Services) feature set compared to Standard (IP Base) besides
> a big dollar difference?
theres document on the cisco site that lets you see.
IPv6 only exists in the IP advanced services right now it seem
Hi,
On Thu, Feb 25, 2010 at 11:43:37AM -0500, Drew Weaver wrote:
> Should ingress packets dropped by ACLs still hit Netflow on the GSR with E5
> linecards?
>
> Gi2/0/2 10.1.123.32 Null 10.1.123.3 11 A29F 0035 1
I'm not sure whether this is documented anywhere, but this is
On Feb 25, 2010, at 12:56 AM, Pavel Dimow wrote:
> Hi,
>
> as I am not native english speaker I don't know how to name my problem
> but I will try to give as much details as possible.
> Here it is, I have Cisco 7600 wich is core switch, and it have one
> uplink to our edge router (it is SVI inte
David/Andrew,
Thank you very much for clarifying this. Well, the customer was looking for
something like this but for TCP sessions traversing the
PIX/ASA. For example, how many SYN packets were sent to the systems protected
by the unit, how many SYN/ACK were sent from those
systems, how many arr
You can expect the ipservices to give you dynamic routing, among other things.
Check out http://cisco.com/go/fn and compare 2 images to see the specific
features.
- Ed
--Original Message--
From: Jeremy Parr
Sender: cisco-nsp-boun...@puck.nether.net
To: cisco-nsp@puck.nether.net
Subject:
Is there a good breakdown anywhere comparing the functionality of the
Enterprise (IP Services) feature set compared to Standard (IP Base) besides
a big dollar difference?
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailma
6500: One backplane failure in 120 chassis-years (number of chassis
running times the number of years they've been running).
4500: Zero in 20 chassis-years.
-porkchop
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of
nm...@g
On Thu, 25 Feb 2010, Antonio Soares wrote:
I have a customer swearing that these counters are related with TCP sessions
to/from the PIX/ASA and i found it very strange. Why
would we need so many details about that ? These counters make sense for
connections traversing the PIX/ASA. By the way
I am assuming you need to give a central service (NMS, VOIP) to customer
your VRFs.
See the following links
http://www.ciscosystems.ro/en/US/products/ps6604/products_qanda_item09186a00800b2cd7.shtml
http://www.cisco.biz/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftnatvpn.html
Anthony
Primoz J
6500, SUP720, 12.2(33)SXI3.
Couple of iBGP neighbors keep flapping on one box. Looks like a
path-mtu issue, yet the discovered path looks correct:
sh bgp ipv4 unicast summary | i Neighbor|10.116.0.1
NeighborV AS MsgRcvd MsgSent TblVer InQ OutQ
Up/Down State/PfxRcd
10.116.0.1
Hi Antonio,
Please see inline..
Antonio Soares wrote:
> Group,
>
> I need help with the PIX/ASA "show counters" command:
>
> http://www.cisco.com/en/US/partner/docs/security/asa/asa80/command/reference/s2.html#wp1358086
>
> As you can see, the command reference doesn't give too much details about
Group,
I need help with the PIX/ASA "show counters" command:
http://www.cisco.com/en/US/partner/docs/security/asa/asa80/command/reference/s2.html#wp1358086
As you can see, the command reference doesn't give too much details about the
command.
The CLI "show counters description" command gives u
Howdy,
Should ingress packets dropped by ACLs still hit Netflow on the GSR with E5
linecards?
Gi2/0/2 10.1.123.32 Null 10.1.123.3 11 A29F 0035 1
Gi2/0/2 is one of our Internet connections
10.1.123.32 (changed to protect, is one of our routed public IPs that isn't
routed i
I see this as giving the caching device an IP off of the 7600 core switch and
using policy based routing (both directions)
Let me also recommend ip sla tracking. If the caching device is the one I have
experience with you will want to dynamically stop the PBR in the event the
caching appliance
Once with a 6500 - we had a chassis that stopped recognizing the left power
supply. It still delivered power, but the Sup couldn't tell what model PS
it was, so assumed it was a 1300W unit (and shut down half the chassis if
the other supply failed).
Numerous fan failures with Cat4000s, but no pro
A way to approach it is to list down your requirements. List what you
must have and what is nice to have line them up side by side withe
equipment and see which delivers what the most of your requirements
At the best price if cost is an issue also
Raymond
On 2/25/10, Muhammad Atif Jauahar wrote:
I think we had one 6509 chassis that had to be swapped we have had
around 20 of them for 10 years
Thanks
Colin
Just a quick consensus.
Have many people experienced chassis/backplane failure in the 45xx/65xx/76xx
lines? I have not yet (knock on wood) and I would just like to know if people
The only chassis-related RMA I have experienced were
1) several times the chassis came damaged due to transport
2) a failed env-mon PCB on a 7500 lots of years ago. The folk from TAC
has sent me a new chassis only to replace the tiny PCB and send the
chassis back :)
--
deejay
> -Original
Hi,
> We swapped everything (sup, linecards, even PSUs) before the chassis
> backplane became a suspect. The new chassis solved all problems.
we have one 6509 here that appears to be having a backplane issue - we are
swapping it out today. first time ever from my own memory - and we have over
a
One thing you can do to help with this in the future is to put the S/N into the
config.
Something like:
alias exec SerialNumber SN_
That way it is always available with a show config. True this doesn't help you
get
the S/N the first time, for that you still have to do a visual inspection.
> 1. [...] few EX4200 Switches (Edge)
> 2. [...] 2 Nexus 5000 + Nexus 2000 fabric extender (Edge).
>
>Which Proposal is best and why? comments needed.
One trivially obvious difference: Nexus 5k + 2K is L2 only while EX4200
is L3 capable.
~JasonG
___
Once, a 6500.
We had an environment with 8x 6500, this was a new one. When we brought it into
service we had very strange behavior. Dropping OSPF sessions, packet-loss, etc.
We swapped everything (sup, linecards, even PSUs) before the chassis backplane
became a suspect. The new chassis solved a
Just a quick consensus.
Have many people experienced chassis/backplane failure in the 45xx/65xx/76xx
lines? I have not yet (knock on wood) and I would just like to know if people
have experienced this and how often. I have read a few posts where this has
happened.
Thanks in advance.
___
Ummm.Ford is in a better cash position that GM.
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of sth...@nethelp.no
Sent: Thursday, February 25, 2010 5:05 AM
To: atif.jau...@gmail.com
Cc: cisco-nsp@puck.nether.net
Subjec
Rebooting a windows machine is a dangerous proposition :)
I bet if you disable/enabled the adapter it would clear.
Jason
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Gert Doering
Sent: Thursday, February 25, 2010 4:47
and why there is a problem with simply using VLANs to insert the cache
into the path?
--
deejay
> -Original Message-
> From: Daniska, Tomas
> Sent: Thursday, February 25, 2010 1:41 PM
> To: 'Pavel Dimow'
> Subject: RE: [c-nsp] Forwarding traffic to "transparent" device
>
> and why ther
Hello good people...
has anyone encountered CSCtc03951 - IP packets with unicast DSTIP and
multicast DMAC dropped when incoming and leaving the same distributed
etherchannel? I have customer with a large installed base of MS NLB
clusters, the setup is based around VSS and multichassis (i.e.,
Please buy both any report your results, I would like to hear the
answerl.
All the best,
Dana
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
Hi
I have very specific config of MPLS and to be honest, I have no idea
how to configure this. In this rare case CCO doesn't seem to be very
helpful... or at least I can't find any samples for this.
I have central location, and few subsidaries. MPLS VPN is configured
between these, and everythi
> > We are going to upgrade our Data Center we need 2 (redundant) core
> > switches with top of rack switches (Edge).
> >
> > We get two Proposals
> >
> 1. 2 x EX8216 Switches (Core) and few EX4200 Switches (Edge)
> 2. 2 x Nexus 7000 (Core), 2 Nexus 5000 (Distribut
On 25/02/2010 10:36, Muhammad Atif Jauahar wrote:
>> We are going to upgrade our Data Center we need 2 (redundant) core
>> switches with top of rack switches (Edge).
>>
>> We get two Proposals
>>
> 1. 2 x EX8216 Switches (Core) and few EX4200 Switches (Edge)
> 2. 2
Hi,
On Thu, Feb 25, 2010 at 02:49:19PM +0530, vijay gore wrote:
> i dont want to reboot my win xp OS
Ah, Windows. Rebooting *always* helps with windows problems.
(You *did* notice that this is a *cisco* list, not an "I have a windows
system and need help!"-list?)
gert
--
USENET is *not* the
Hi,
> We are going to upgrade our Data Center we need 2 (redundant) core
> switches with top of rack switches (Edge).
>
> We get two Proposals
>
1. 2 x EX8216 Switches (Core) and few EX4200 Switches (Edge)
2. 2 x Nexus 7000 (Core), 2 Nexus 5000 (Distribution
i dont want to reboot my win xp OS
On Thu, Feb 25, 2010 at 2:30 PM, Gert Doering wrote:
> Hi,
>
> On Thu, Feb 25, 2010 at 02:04:50PM +0530, vijay gore wrote:
> > how to clear CLOSE_WAIT status from netstat
>
> reboot.
>
> (With the information you have given us, like "what operating system"
> or
Hi,
On Thu, Feb 25, 2010 at 02:04:50PM +0530, vijay gore wrote:
> how to clear CLOSE_WAIT status from netstat
reboot.
(With the information you have given us, like "what operating system"
or "what is the underlying problem", reboot is the only answer that is
guaranteed to help getting rid of CLO
dear team,
how to clear CLOSE_WAIT status from netstat
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
45 matches
Mail list logo
