I have a Cisco 7206VXR with NSE-1 which is doing large number of NAT translation( about 20000), At the peak time, the high CPU of the RP can be seen. When I check the PXF switching statistics, I found About 20% packets were punted due to "NAT OUTSIDE", "NAT INSIDE" and "NAT TCP FLAGS".
I want to ask which type of traffic caused to these punts and how can I reduce these punted packets and let them pass the PXF processors?
EDU-7206-A#sh pxf account summ
Pkts Dropped RP Processed Ignored
Total 0 10625677 0
PXF complex busy: 16% PXF read pipeline full: 0%
Packets RP -> PXF:
switch ip: 0
switch raw: 51066262
qos fastsend: 0
qos enqueue: 0
Packets PXF -> RP:
qos pkts: 0
fast pkts: 40440585
drops: total 0
punts: total 10625677
" not IP : 8565
" NAT TCP flags : 1001868
" NAT version : 3662
" NAT inside : 2243047
" NAT outside : 7323872
" CEF no adjacency : 44221
" IP TTL : 442
Packets ignored: 0 | ring space:
shadow ring full: 0 | shadow ring: 16382
in ring full: 0 | inring: 991
PXF inactive: 0
tx credits: 0 | delayed credits: 0
holdq enqueues: 119359 | requeue drops: 0
interrupts: 40122912 | pending read bytes: 0
Interface Pkts In Chars In Pkts Out Chars Out Punted Dropped
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...