Re: [c-nsp] 3850 / 3650 storm control

On 22.11.17, 17:15, "cisco-nsp on behalf of Scott Voll" wrote: So I'm green field with 3850 at the distribution layer and 3650 at the access layer. Since I don't have anything to start with, what would be save

Re: [c-nsp] 3850 / 3650 storm control

Hi Scott, On Wed, Nov 22, 2017 at 08:13:45AM -0800, Scott Voll wrote: > > Since I don't have anything to start with, what would be save storm control > limits to start with on each platform for Broadcast, multicast,and > Unicast? > After some observations of common broadcast levels we limit

Re: [c-nsp] 3850 / 3650 storm control

On 22 November 2017 at 20:56, Charles Sprickman wrote: > If you did have some multicast traffic, like a basic 720p or 1080p video > stream, what’s a good rule of thumb for that? Assume 5-8 Mb/s. > Just watch a port with an active viewer and go 10-20% above what > you see as a

Re: [c-nsp] 3850 / 3650 storm control

--- Begin Message --- Just chiming in with a quick question... > On Nov 22, 2017, at 1:25 PM, Saku Ytti wrote: > > Hey Scott, > > In edge links, you can limit multicast and broadcast very severely. > There is very little point to limit unicast even in edge links, unless > you

Re: [c-nsp] 3850 / 3650 storm control

Hey Scott, In edge links, you can limit multicast and broadcast very severely. There is very little point to limit unicast even in edge links, unless you want to protect firewall from some owned host sending 1.48M SYN pps. In core links you may not need/want to limit at all, but if you must, it

[c-nsp] 3850 / 3650 storm control

So I'm green field with 3850 at the distribution layer and 3650 at the access layer. Since I don't have anything to start with, what would be save storm control limits to start with on each platform for Broadcast, multicast,and Unicast? Mgig to the edge, 20gig to the distribution, and 160 gig to

Re: [c-nsp] 3850 and output drops

This is probably the bug that I found recently. https://bst.cloudapps.cisco.com/bugsearch/bug/CSCva81608 On 7 September 2016 at 06:07, Peter Rathlev wrote: > On Tue, 2016-09-06 at 18:48 +0200, Sebastian Beutel wrote: > > Everything started when a co-worker tried to

Re: [c-nsp] 3850 and output drops

On Tue, 2016-09-06 at 18:48 +0200, Sebastian Beutel wrote: > Everything started when a co-worker tried to troubleshoot a rapidly > increasing output error counter on a 3850 Switchport. What kind of interfaces are these? Would it perhaps be downlink interfaces that connect at a lower rate than the

Re: [c-nsp] 3850 and output drops

The 3750 do not report output drops due to buffers on "show interface", but they show up on "show interfaces summary". The new models, cat3650 and cat3850 have the output drops shown on "show interface". Both 3650 and 3850 seems to have 'mls qos' always on an no way to turn it off. This url

Re: [c-nsp] 3850 and output drops

Hi, On Tue, Sep 06, 2016 at 06:22:12PM +0100, Nick Hilliard wrote: > > Maybe "the 3750 has reasonable buffers, while the 3850 is from the > > new regime of 'make it cheap, make small buffers' switches"... > > ... and the 3750 does not have reasonable buffers. OTOH there's the bug that

Re: [c-nsp] 3850 and output drops

Gert Doering wrote: > On Tue, Sep 06, 2016 at 06:48:01PM +0200, Sebastian Beutel wrote: >> The output errors counters count different things on a 3750 and a 3850. >> While the 3750 only counts "frames dropped due to physical media problems" >> the 3850 also adds "frames dropped due to filled

Re: [c-nsp] 3850 and output drops

On 6 September 2016 at 19:58, Gert Doering wrote: > Maybe "the 3750 has reasonable buffers, while the 3850 is from the > new regime of 'make it cheap, make small buffers' switches"... http://www.cisco.com/assets/global/DK/pdfs/cisco_virtual_update_-_unified_access_c3850.pdf

Re: [c-nsp] 3850 and output drops

Hi, On Tue, Sep 06, 2016 at 06:48:01PM +0200, Sebastian Beutel wrote: > The output errors counters count different things on a 3750 and a 3850. > While the 3750 only counts "frames dropped due to physical media problems" > the 3850 also adds "frames dropped due to filled buffer" to this number.

[c-nsp] 3850 and output drops

Hi List, this maybe sounds like a novice question but the phenomenon i observe here is so peculiar to me that i like to share it and ask whether someone else has made similar observations. Everything started when a co-worker tried to troubleshoot a rapidly increasing output error counter

[c-nsp] 3850 Cat 7A

Anybody using cat 7A (Tera) cabling with 3850 ports ? Observing some ports with PoE+ splitters (Class 4 devices) continuously giving power TStart errors. Issue doesn't happen when i drop a Cat 6A UTP cable between the splitter and the port as a test. The structured cabling is certified Cat 7A

[c-nsp] 3850 DHCP Database Locked

Anyone ever received the error % The DHCP database could not be locked. Please retry the command later. It pops up when doing any sort of show dhcp command. I can find reference to it as a bug for 7206, but can't seem to find anything for 3850. I am running 3.03.05SE. Figured I would try this

Re: [c-nsp] 3850?

to face the challenge, since inaction is obviously resulting in its own set of issues. Thanks again. Adam -Original Message- From: Łukasz Bromirski [mailto:luk...@bromirski.net] Sent: Saturday, April 11, 2015 5:44 AM To: Adam Greene Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp

Re: [c-nsp] 3850?

On Mon, Apr 13, 2015 at 10:20:58AM -0400, Adam Greene wrote: Hmm ... SPANing the traffic ... there's about 125Mbps going through that regularly, so analyzing the mirrored traffic may be a challenge. I suspect the encapsulation failures are basically from the continual flood of hack attempts

Re: [c-nsp] 3850?

On 11 Apr 2015, at 00:26, Adam Greene maill...@webjogger.net wrote: We're not actually doing Netflow of any kind yet. OK. It looks like most of our input queue drops are due to 'encapsulation failed' ... i.e. bogus traffic to non-existent hosts. So far it hasn't affected legitimate

Re: [c-nsp] 3850?

On 10 Apr 2015, at 12:42, Marco van den Bovenkamp ma...@linuxgoeroe.dhs.org wrote: I think there's an uplink module for the 3750-X series which does netflow now, too? Yep. The C3KX-SM-10G. That'll do line-rate FNF (or so thaey claim; haven't used them yet). It does and the only

Re: [c-nsp] 3850?

-hours! etc. -Original Message- From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Lukasz Bromirski Sent: Friday, April 10, 2015 3:55 PM To: Marco van den Bovenkamp Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] 3850? On 10 Apr 2015, at 12:42, Marco van den

Re: [c-nsp] 3850?

] Sent: Thursday, April 09, 2015 4:21 PM To: Alan Buxey Cc: Gert Doering; Adam Greene; cisco-nsp@puck.nether.net Subject: Re: [c-nsp] 3850? Hi, On Thu, Apr 09, 2015 at 08:59:25PM +0100, Alan Buxey wrote: Cisco have been dumping quite a lot of features into their 38xx stores. .. and even 2960x

Re: [c-nsp] 3850?

Hi, On Thu, Apr 09, 2015 at 11:17:17AM -0400, Adam Greene wrote: - Flexible NetFlow with NBAR *this* I'm pretty sure the 3750 cannot do netflow in hardware (even less NBAR) - so it's going up to software, and its tiny CPU is not up to the job. I have no experience with 3850, but I

[c-nsp] 3850?

Hi all, We're looking to upgrade some old 3750's and 3750G's whose input queues don't seem to be able to pass 75Mbps without choking: (on a 3750G) Last clearing of show interface counters 21w5d Input queue: 1/75/5870052/0 (size/max/drops/flushes); Total output drops: 0). We need the

Re: [c-nsp] 3850?

On 09 Apr 2015, at 22:55, Adam Greene maill...@webjogger.net wrote: Thanks guys. 3750G#sh int g2/0/17 stats GigabitEthernet2/0/17 Switch pathPkts In Chars In Pkts Out Chars Out Processor 97455044 1696659687 11378007 1004114773 Route

Re: [c-nsp] 3850?

| Twitter | YouTube -Original Message- From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Gert Doering Sent: Thursday, April 09, 2015 12:52 PM To: Adam Greene Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] 3850? Hi, On Thu, Apr 09, 2015 at 11:17:17AM -0400, Adam

Re: [c-nsp] 3850?

Cisco have been dumping quite a lot of features into their 38xx stores. .. and even 2960x!! The netflow features on both is far far ahead of their historical investments into 'edge switching'. They might even now compare to the options that HP offer ;) alan

Re: [c-nsp] 3850?

Hi, On Thu, Apr 09, 2015 at 08:59:25PM +0100, Alan Buxey wrote: Cisco have been dumping quite a lot of features into their 38xx stores. .. and even 2960x!! The netflow features on both is far far ahead of their historical investments into 'edge switching'. They might even now compare to

Re: [c-nsp] 3850?

-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Adam Greene Sent: Thursday, April 09, 2015 9:17 AM To: cisco-nsp@puck.nether.net Subject: [c-nsp] 3850? Hi all, We're looking to upgrade some old 3750's and 3750G's whose input queues don't seem to be able to pass 75Mbps without

[c-nsp] 3850 per VLAN shaping help...

I am attempting apply per VLAN shaping on the 3850 chassis and having various problems; 1: I have attempted creating policy-maps and applying them to the VLAN SVI. Config mode takes the service-policy commands, with no errors in the log, but a show run on the interface indicates that nothing

Re: [c-nsp] 3850 per VLAN shaping help...

Subject: [c-nsp] 3850 per VLAN shaping help... I am attempting apply per VLAN shaping on the 3850 chassis and having various problems; 1: I have attempted creating policy-maps and applying them to the VLAN SVI. Config mode takes the service-policy commands, with no errors in the log, but a show