Obviously the router isn't capable of retreiving the line speed provided by my ISP, therefore I've set a service-policy to cap the bandwidth at 16mbit for this tunnel. For the 12.4 version it will be sufficient, but the 15.1 version will still be running above it's capability.
This is my tunnel configuration:
ip address 10.0.0.2 255.255.255.252
ip mtu 1400
ip tcp adjust-mss 1352
tunnel source Loopback16
tunnel destination 220.127.116.11
tunnel bandwidth transmit 16384
tunnel bandwidth receive 16384
service-policy input 16MBIT (police cir 16777000 bc 375000 be 750000)
I've also tried rate-limit instead of service-policy giving me exactly the same results.
Syslog ED Pool buffers, 600 bytes (total 150, permanent 150):
118 in free list (150 min, 150 max allowed)
I noticed there are more big buffer failures in the 15.1 version, also there are less buffer elements allowed. Could this be the reason for the performance degradation? I've also checked the status of all interfaces, not displaying any errors.
I've also checked the AIM config on both versions, and they seem to be different:
As you can see the DH/SA index is 0000 with the 15.1 version compared to 0150 with the 12.4 version. Is this a driver bug, configuration error or unrelated to this issue?
What I'd like to know if this performance issue is related to a bug in IOS or a faulty-configuration even though they both run exactly the same config? Or are these results as expected since the IOS 15.1 performance is generally lower?
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...