Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
625
Views
0
Helpful
4
Replies

WAAS conection limit alarm

c_simon
Level 1
Level 1

‎03-18-2009 09:04 AM

Hi,

I have a waas solution implemented, where the both (Datacenter and Edge) are in inline mode. The WAE in Datacenter side is viewing all connections from the others sites of the WAN where there is not a WAE in there, so that connections are in PT becouse "Not Peer".

These days we started to see a minor alarm: "1 max_conn_overload sysmon accl=TFO". We don't see this alarm from the Edge WAE, only from Datacenter WAE.

Could be that DC WAE takes in account the PT connections? if the answer is yes, Can this overload make that the WAE stop the optimization when new connections arrive until the number of connections go down?

Thanks in advanced!!!

Celeste

These days we started to see a minor alarm: "1 max_conn_overload sysmon accl=TFO". We don't see this alarm from the Edge WAE, only from Datacenter WAE.

Could be that DC WAE take in account the PT connections? if the answer is yes, Can this overload makes that the WAE stops the optimization when new connections arrive until the number of connections goes down?

Labels:
0 Helpful
4 Replies 4

dstolt
Cisco Employee
Cisco Employee

‎03-19-2009 07:19 AM

Hi Celeste,

Do you only have 2 boxes deployed, or is the DC WAE supporting other edges as well?

Please post what version of WAAS you are running and the output from:

sh stat tfo

On both of your boxes?

Thanks,

Dan

0 Helpful

c_simon
Level 1
Level 1
In response to dstolt

‎03-19-2009 09:59 AM

Hi Dan

We have only 2 boxes deployed. The DC WAE is supporting only one Edge.

Both are running 4.1.1.16c

I am attaching the show stat conn tfo for you.

Thanks!

Celeste

Preview file
6 KB
0 Helpful

dstolt
Cisco Employee
Cisco Employee
In response to c_simon

‎03-20-2009 11:23 AM

Thanks for the update, can you check one more thing on your WAE-Tronador box? can you do the following command?

find-pattern match "Routing Loop" syslog.txt

We are looking for the following enteries similar to "opt_syn_rcv: Routing Loop

detected - Packet has our own devid. Packet dropped."

Also, do "sh stat auto" and look for the entry:

Auto discovery Miscellaneous

.....

SYNs found with our device id: XX

If you see that counter incrementing, you may be hitting DDTS: CSCsx68058 "Routing loops at the core can cause TFO overload on the WAE " If this is the case, then you need to inspect you interception at the core to ensure that you are not re-intercepting traffic egressing the WAE on the router.

Let me know if this is the case or we can keep searching.

Thanks,

Dan

0 Helpful

c_simon
Level 1
Level 1
In response to dstolt

‎03-20-2009 01:18 PM

Hi Dan

Thanks for your reply.

I am attaching the info for you. It's seems to be the problem.

Thank you!

Celeste

Preview file
3 KB
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents