I have a case that I don't have a way to resolve this, can anyone help me to troubleshoot this problem ?
In my DC, I have a Catalyst Switch 4507 connect to one ZTE Switch using port-channel5. And Server Farm connect to 4507 via linecard 24port 1G.
The topology of network in this picture.
When I ping from another local Lan in difference subnet with Server Farm, The delay of packet is very high, and some time the ping reply request timeout,althought all link is GigabitEthernet 1Gb. The Catalyst 4507 connect to ZTE Switch using Interface port-channel5 with 6 bundle link, up bandwidth to 6Gb. Then I log to Catalyst 4507, using "show interface port-channel5" command, we see that drop packet in port-channel5. This is the result of show interface port-channel5
Port-channel5 is up, line protocol is up (connected) Hardware is EtherChannel, address is 0019.e734.3f2f (bia 0019.e734.3f2f) MTU 1522 bytes, BW 6000000 Kbit, DLY 10 usec, reliability 255/255, txload 64/255, rxload 2/255 Encapsulation ARPA, loopback not set Keepalive set (10 sec) Full-duplex, 1000Mb/s, media type is N/A input flow-control is off, output flow-control is unsupported Members in this channel: Gi1/19 Gi1/20 Gi1/21 Gi1/22 Gi1/23 Gi1/24 ARP type: ARPA, ARP Timeout 04:00:00 Last input never, output never, output hang never Last clearing of "show interface" counters 00:08:17 Input queue: 0/2000/0/0 (size/max/drops/flushes); Total output drops: 2960374 Queueing strategy: fifo Output queue: 0/40 (size/max) 5 minute input rate 70075000 bits/sec, 88349 packets/sec 5 minute output rate 1509557000 bits/sec, 129272 packets/sec 48154520 packets input, 4601539612 bytes, 0 no buffer Received 813 broadcasts (96 multicasts) 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 206 overrun, 0 ignored 0 input packets with dribble condition detected 70527852 packets output, 103036482692 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 babbles, 0 late collision, 0 deferred 0 lost carrier, 0 no carrier 0 output buffer failures, 0 output buffers swapped out
But with the same configuration, I replace Catalyst 4507 using Catalyst 3750G, the problem don't appear. Don't have a lose packet in port-channel5. All ping command reply succesfull and time of ping is <1ms.
When I test with topo in picture bellow.
The drop packet error eapear again in port-channel6. there no problem between Catalyst 3750G and ZTE Switch. Only Problem with Catalyst 4507. Alway have a drop packet in Catalyst 4507 but with the same configuration, there no problem with Catalyst 3750.
When I enable netflow on Catalyst 4507, the errors eapear "Netflow stats lost either due to hardware hash collisions or full hardware flow table. Stats lost". But in Catalyst 3750, nothing appear.
So what is the problem ???? Can anyone help me ???
With Command show interface, I only have a show interface G1/21
GigabitEthernet1/21 is up, line protocol is up (connected) Hardware is Gigabit Ethernet Port, address is 0019.e734.3f2c (bia 0019.e734.3f2c) MTU 1522 bytes, BW 1000000 Kbit, DLY 10 usec, reliability 255/255, txload 30/255, rxload 2/255 Encapsulation ARPA, loopback not set Keepalive set (10 sec) Auto-duplex, Auto-speed, link type is auto, media type is 10/100/1000-TX input flow-control is off, output flow-control is off ARP type: ARPA, ARP Timeout 04:00:00 Last input 00:03:01, output never, output hang never Last clearing of "show interface" counters 00:03:46 Input queue: 0/2000/0/0 (size/max/drops/flushes); Total output drops: 277 Queueing strategy: fifo Output queue: 0/40 (size/max) 5 minute input rate 10809000 bits/sec, 6670 packets/sec 5 minute output rate 117819000 bits/sec, 10219 packets/sec 998799 packets input, 260308439 bytes, 0 no buffer Received 7 broadcasts (5 multicasts) 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 83 overrun, 0 ignored 0 input packets with dribble condition detected 1469094 packets output, 2087577692 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 babbles, 0 late collision, 0 deferred 0 lost carrier, 0 no carrier 0 output buffer failures, 0 output buffers swapped out
This is the output of show ver.
Cisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500-ENTSERVICES-M), Version 12.2(54)SG, RELEASE SOFTWARE (fc3) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2010 by Cisco Systems, Inc. Compiled Sun 27-Jun-10 04:53 by prod_rel_team Image text-base: 0x10000000, data-base: 0x121F5B44
ROM: 12.2(31r)SGA3 Pod Revision 16, Force Revision 31, Tie Revision 32
SW4507_T14 uptime is 8 hours, 58 minutes Uptime for this control processor is 8 hours, 37 minutes System returned to ROM by reload System image file is "bootflash:cat4500-entservices-mz.122-54.SG.bin"
cisco WS-C4507R-E (MPC8540) processor (revision 13) with 524288K bytes of memory. Processor board ID FOX1412GCTW MPC8540 CPU at 800Mhz, Supervisor V-10GE Last reset from Reload 2 Virtual Ethernet interfaces 56 Gigabit Ethernet interfaces 4 Ten Gigabit Ethernet interfaces 511K bytes of non-volatile configuration memory.
The Catalyst 4507 I have temporary replace by Catalyst 3750, as now in Catalyst 4507 don't have any traffic, but when I integrated Catalyst 4507 in to network, I have configured "Port-channel load-balance src-dst-ip".
And I have a output of show interface summary when connected Catalyst 4507 to network
Thank you very much again for your's reply, you are very great. In yesterday, I have configured my Switch as your recommend and monitor for one day. There no drop packet, ping reply very good and network normal operate.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...