cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1494
Views
0
Helpful
5
Replies

Best way to measure bandwidth?

Hi All,

I have an IPsec tunnel between Site A and Site B.

Site A also has a GRE tunnel to Site C.

Site A ---- IPsec---- Site B

   |

GRE

   |

Site C

I need to measure the bandwidth being used (an available) between both connections.

So, I need to measure the bandwidth via the IPsec tunnel and the bandwitdh via GRE tunnel for some routing policies.

My question is, what's the recommended way to do this?

Thank you,

Federico.

3 Accepted Solutions

Accepted Solutions

Jerry Ye
Cisco Employee
Cisco Employee

Use FTP to transfer a very large file (100+ MB) messure traffic.

HTH,

jerry

View solution in original post

Federico

"sh crypto ipsec sa" should show you the amount of packets sent and received on the IPSEC tunnel. Not sure about GRE and whether you can see packets in/out on the tunnel interface itself. Have you tried "sh interface tunnel" ?

I'm assuming the problem is because both the IPSEC and GRE go via the same interface on the router ?

Jon

View solution in original post

Hi


As Jon mentioend from Router you can get some info with these commands


sh int summary  ( for GRE Tunnel )

sh crypto ipsec sa ( IPSEC )


If you have monitoring tool then you can get the amount of data transfered and traffic type.

We did a pilot with solarwinds NPM and Netflow Module ( www.solarwinds.com )  and got the details.



Hope this input helps.



Thanks

ST

View solution in original post

5 Replies 5

Jerry Ye
Cisco Employee
Cisco Employee

Use FTP to transfer a very large file (100+ MB) messure traffic.

HTH,

jerry

Thank you Jerry and I'll try that, but do you know if there's a way to measure the bandwidth from the router itself?

I mean a command on the router that can show me the amount of bandwidh being used over the tunnel?

Federico.

Federico

"sh crypto ipsec sa" should show you the amount of packets sent and received on the IPSEC tunnel. Not sure about GRE and whether you can see packets in/out on the tunnel interface itself. Have you tried "sh interface tunnel" ?

I'm assuming the problem is because both the IPSEC and GRE go via the same interface on the router ?

Jon

Hi


As Jon mentioend from Router you can get some info with these commands


sh int summary  ( for GRE Tunnel )

sh crypto ipsec sa ( IPSEC )


If you have monitoring tool then you can get the amount of data transfered and traffic type.

We did a pilot with solarwinds NPM and Netflow Module ( www.solarwinds.com )  and got the details.



Hope this input helps.



Thanks

ST

Thank you All,

I'll try the following:


1. An FTP 100+MB file
2. sh cry ips sa & sh int tunnel | summary on the routers
3. Netflow ''sh ip cache flow''

I will do some tests and see if from the above I could get what I need.

John,
The router actually use a different interface for IPsec and GRE.
i.e
Site A uses Fas0/0 for the IPsec tunnel to Site B
Site A uses VLAN1 for the GRE tunnel to Site C

Federico.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco