ситуация следующая:
Код:
#show cpu | e 0.00
=======================================
CPU Using Rate Information
CPU utilization in five seconds: 50.18%
CPU utilization in one minute : 55.35%
CPU utilization in five minutes: 53.48%
NO 5Sec 1Min 5Min Process
0 8.02% 9.27% 9.05% LISR INT
1 1.25% 1.53% 1.28% HISR INT
2 0.26% 0.27% 0.27% ktimer
3 0.08% 0.09% 0.10% atimer
18 0.01% 0.03% 0.03% ll_mt
19 0.42% 0.42% 0.42% ll main process
36 0.47% 0.49% 0.49% lacp_event
42 0.06% 0.09% 0.10% erps_task
46 0.61% 0.60% 0.60% tpp_task
49 0.03% 0.03% 0.03% ip6timer
56 7.00% 8.02% 7.97% tnet
58 16.43% 16.81% 15.99% Tarptime
60 0.01% 0.01% 0.01% Ttcptimer
63 0.14% 0.13% 0.14% ef_res
64 1.39% 1.52% 1.47% ef_rcv_msg
83 0.09% 0.04% 0.03% nsmd
84 0.01% 0.11% 0.11% ripd
86 0.46% 0.22% 0.22% ospfd
98 0.03% 0.03% 0.02% Tlogtrap
114 0.28% 0.27% 0.27% bfd_server
115 0.02% 0.02% 0.02% bfd_proxy
144 0.05% 0.05% 0.05% lldp_task
148 2.11% 2.09% 2.10% bcm_l2x_1
149 0.97% 0.96% 0.95% bcm_cntr_0
150 1.03% 1.04% 1.04% bcm_link_0
151 0.05% 0.05% 0.05% dma_pkt_thread
166 8.17% 9.36% 9.41% ssp_flow_rx_task
171 0.06% 0.05% 0.04% idle_vlan_proc_thread
174 0.65% 0.54% 0.54% stat_get_and_send
176 0.02% 0.16% 0.12% rl_vty_2
177 49.82% 44.65% 46.52% idle
#sh cpu m | e 0 0 0
Type Pps Total Drop
-------------------- --------- --------- ---------
arp 20 295255 0
lldp 0 1688 0
ospf-v2 1 13804 0
rip-ipv4 0 912 0
err-ttl1 0 126727 22
ip-packet-other 79 1278015 0
#sh arp counter
Count of static entries: 0
Count of dynamic entries: 3636 (complete: 3332 incomplete: 304)
Total: 3636
#sh mac-address-table count
Dynamic Address Count : 3993
Static Address Count : 0
Filtering Address Count: 0
Total Mac Addresses : 3993
Total Mac Address Space Available: 28775
Код:
#sh interfaces status
Interface Status Vlan Duplex Speed Type
------------------------ -------- ---- ------- --------- ------
GigabitEthernet 0/1 up 1 Full 1000M fiber
GigabitEthernet 0/2 up 1 Full 1000M fiber
GigabitEthernet 0/3 up 1 Full 1000M fiber
GigabitEthernet 0/4 up 1 Full 1000M fiber
GigabitEthernet 0/5 down 1 Unknown Unknown fiber
GigabitEthernet 0/6 down 1 Unknown Unknown fiber
GigabitEthernet 0/7 down 1 Unknown Unknown fiber
GigabitEthernet 0/8 down 1 Unknown Unknown fiber
GigabitEthernet 0/9 down 1 Unknown Unknown fiber
GigabitEthernet 0/10 down 1 Unknown Unknown fiber
GigabitEthernet 0/11 down 1 Unknown Unknown fiber
GigabitEthernet 0/12 down 1 Unknown Unknown fiber
GigabitEthernet 0/13 up 1 Full 1000M copper
GigabitEthernet 0/14 up 1 Full 1000M copper
GigabitEthernet 0/15 up 1 Full 1000M copper
GigabitEthernet 0/16 up 1 Full 1000M copper
GigabitEthernet 0/17 down 1 Unknown Unknown copper
GigabitEthernet 0/18 down 1 Unknown Unknown copper
GigabitEthernet 0/19 up 1 Full 1000M copper
GigabitEthernet 0/20 up 1 Full 1000M copper
GigabitEthernet 0/21 up 1 Full 1000M copper
GigabitEthernet 0/22 up 1 Full 1000M copper
GigabitEthernet 0/23 up 1 Full 1000M copper
GigabitEthernet 0/24 up 1 Full 1000M copper
AggregatePort 1 up 1 Full 1000M fiber
AggregatePort 2 up 1 Full 1000M copper
AggregatePort 3 up 1 Full 1000M copper
AggregatePort 4 up 1 Full 1000M copper
по топологии 1-4 порты LACP из ядра, 13-16 порты LACP в стэк DGS-3120, 21-22 и 23-24 сервера для фильтрации трафика, 19 и 20 порты сервер для диагностики трафика (monitor session + tcpdump)
Вечером все становится на столько плохо, что невозможно подключиться по telnet (после обмена SYN тихо).
по фильтру зекралированного трафика линка в сторону абонентов
tcpdump -ni em1 -e vlan and ! arp and ! tcp and ! udp and proto ! gre and ! ipv6 and ! icmp and ! esp
видно только LACP.
если делать фильтр, где перечислить все ip, приписанные на коммутаторе, то видны лишь icmp reply/request на скорости примерно 10 запросов до коммутатора в секунду.
на коммутаторе запущены rip для анонсирования в ядро и OSPF для связи с VPN абонентами:
Код:
#sh ip ro sum
Memory: 220632 bytes
Entries: 951
Connected:152,Static:7,RIP:0,OSPF:791,ISIS:0,BGP:0
#sh interfaces counters rate
Interface Sampling Time Input Rate Input Rate Output Rate Output Rate
(bits/sec) (packets/sec) (bits/sec) (packets/sec)
------------ --------------------- -------------------- -------------------- -------------------- --------------------
Gi0/1 5 seconds 291836594 43205 259225683 53243
Gi0/2 5 seconds 447794171 52959 233911793 43631
Gi0/3 5 seconds 462633199 59565 278359294 43939
Gi0/4 5 seconds 402405001 50173 257774861 41433
Gi0/5 5 seconds 0 0 0 0
Gi0/6 5 seconds 0 0 0 0
Gi0/7 5 seconds 0 0 0 0
Gi0/8 5 seconds 0 0 0 0
Gi0/9 5 seconds 0 0 0 0
Gi0/10 5 seconds 0 0 0 0
Gi0/11 5 seconds 0 0 0 0
Gi0/12 5 seconds 0 0 0 0
Gi0/13 5 seconds 283008981 48334 698104450 90868
Gi0/14 5 seconds 256725591 40347 230042665 43776
Gi0/15 5 seconds 279685760 46254 411483094 58645
Gi0/16 5 seconds 278724724 59103 346791373 55110
Gi0/17 5 seconds 0 0 0 0
Gi0/18 5 seconds 0 0 0 0
Gi0/19 5 seconds 472 0 1738 1
Gi0/20 5 seconds 1048 0 968167543 153991
Gi0/21 5 seconds 221245268 52406 232721295 41821
Gi0/22 5 seconds 209297559 49521 183599388 29162
Gi0/23 5 seconds 49580683 18512 54936712 19905
Gi0/24 5 seconds 49471544 18422 45692955 17918
Ag1 5 seconds 1636412300 209817 1045134679 185290
Ag2 5 seconds 1115277726 197319 1719478088 252838
Ag3 5 seconds 102183318 37829 103806667 38743
Ag4 5 seconds 435801141 103153 421440917 71884
Ag5 5 seconds 3364 2 2490 4
вообщем, повторяется ситуация с DGS-3612. если проблема не будет решена, то нового возвращения аггрегации на D-Link не предвидится. сейчас остальные районы крутятся на Cisco 3550/3750 - подобных проблем никогда не возникало.
вечерняя нагрузка поднимается до
Код:
d1-zav40#sh arp counter
Count of static entries: 0
Count of dynamic entries: 4117 (complete: 3878 incomplete: 239)
Total: 4117
d1-zav40#sh mac-address-table count
Dynamic Address Count : 4873
Static Address Count : 0
Filtering Address Count: 0
Total Mac Addresses : 4873
Total Mac Address Space Available: 27895
Total Entries: 4194
и 3-3.5Гбит на a1 и a2
Вход
Регистрация
FAQ
Поиск
