Options
Outbound Discards
olaHalo
Member Posts: 748 ■■■■□□□□□□
in CCNA & CCENT
Im getting discards on a clients 4500 l3 switch.
The interface is gigabit set to 1000mpbs full duplux on both sides of the link.
The other end is a sonicwall firewall also gigabit.
Here is the output of some of my commands
Any help troubleshooting would be great.
Our resident CCIE is blaming the firewall.
The interface is gigabit set to 1000mpbs full duplux on both sides of the link.
The other end is a sonicwall firewall also gigabit.
Here is the output of some of my commands
LVCC4507#show int gi3/16
GigabitEthernet3/16 is up, line protocol is up (connected)
Hardware is Gigabit Ethernet Port, address is 0018.18b5.b27f (bia 0018.18b5.b27f)
Description: Server and Infrastructure Ports
MTU 1500 bytes, BW 1000000 Kbit, DLY 10 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 1000Mb/s, link type is auto, media type is 10/100/1000-TX
input flow-control is on, output flow-control is on
ARP type: ARPA, ARP Timeout 04:00:00
Last input never, output never, output hang never
Last clearing of "show interface" counters 16:54:36
[B]Input queue: 0/2000/0/0 (size/max/drops/flushes); Total output drops: 3792156[/B]
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 1334000 bits/sec, 282 packets/sec
5 minute output rate 1547000 bits/sec, 322 packets/sec
16394982 packets input, 5689792738 bytes, 0 no buffer
Received 506 broadcasts (477 multicasts)
0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 input packets with dribble condition detected
1783770083 packets output, 1915243832312 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
LVCC4507#show int g3/16 counter all Port InBytes InUcastPkts InMcastPkts InBcastPkts Gi3/16 5786821197 16536950 478 29 Port OutBytes OutUcastPkts OutMcastPkts OutBcastPkts Gi3/16 1915280348389 1783798385 38388 57170 Port InPkts 64 OutPkts 64 InPkts 65-127 OutPkts 65-127 Gi3/16 1024385 2268471 11077307 1292883 Port InPkts 128-255 OutPkts 128-255 InPkts 256-511 OutPkts 256-511 Gi3/16 681040 596731 528956 710950 Port InPkts 512-1023 OutPkts 512-1023 Gi3/16 224276 231690 Port InPkts 1024-1522 OutPkts 1024-1522 InPkts 1523-1600 OutPkts 1523-1600 Gi3/16 3001493 1778793218 0 0 Port Tx-Bytes-Queue-1 Tx-Bytes-Queue-2 Tx-Bytes-Queue-3 Tx-Bytes-Queue-4 Gi3/16 1915279246789 0 2368 2950834 Port Tx-Drops-Queue-1 Tx-Drops-Queue-2 Tx-Drops-Queue-3 Tx-Drops-Queue-4 Port Tx-Drops-Queue-1 Tx-Drops-Queue-2 Tx-Drops-Queue-3 Tx-Drops-Queue-4 Gi3/16 3792156 0 0 0 Port Dbl-Drops-Queue-1 Dbl-Drops-Queue-2 Dbl-Drops-Queue-3 Dbl-Drops-Queue-4 Gi3/16 0 0 0 0 Port Rx-No-Pkt-Buff RxPauseFrames TxPauseFrames PauseFramesDrop Gi3/16 0 480573 0 0 Port UnsupOpcodePause Gi3/16 0 Port CrcAlign-Err Dropped-Bad-Pkts Collisions Symbol-Err Gi3/16 0 0 0 0 Port Undersize Oversize Fragments Jabbers Gi3/16 0 0 0 0 Port Single-Col Multi-Col Late-Col Excess-Col Gi3/16 0 0 0 0 Port Deferred-Col False-Car Carri-Sen Sequence-Err Gi3/16 0 0 0 0 Port RxIslTagFrames TxIslTagFrames RxDot1qTagFrames TxDot1qTagFrames Gi3/16 0 0 0 0
LVCC4507#show ip traffic
IP statistics:
Rcvd: 484569813 total, 478291872 local destination
0 format errors, 0 checksum errors, 2346122 bad hop count
0 unknown protocol, 425512 not a gateway
0 security failures, 0 bad options, 60466 with options
Opts: 0 end, 0 nop, 0 basic security, 0 loose source route
0 timestamp, 0 extended security, 0 record route
0 stream ID, 0 strict source route, 60466 alert, 0 cipso, 0 ump
0 other
Frags: 0 reassembled, 0 timeouts, 0 couldn't reassemble
0 fragmented, 0 couldn't fragment
Bcast: 80853593 received, 84151 sent
Mcast: 0 received, 0 sent
Sent: 401316654 generated, 331399427 forwarded
Drop: 2 encapsulation failed, 0 unresolved, 0 no adjacency
77 no route, 0 unicast RPF, 0 forced drop
0 options denied, 0 source IP address zero
ICMP statistics:
Rcvd: 1800 format errors, 0 checksum errors, 0 redirects, 205 unreachable
870777 echo, 40 echo reply, 0 mask requests, 0 mask replies, 0 quench
0 parameter, 0 timestamp, 0 info request, 0 other
0 irdp solicitations, 0 irdp advertisements
Sent: 3487268 redirects, 56498 unreachable, 40 echo, 870777 echo reply
0 mask requests, 0 mask replies, 0 quench, 0 timestamp
0 info reply, 939 time exceeded, 0 parameter problem
0 irdp solicitations, 0 irdp advertisements
TCP statistics:
Rcvd: 45699 total, 0 checksum errors, 572 no port
Sent: 36941 total
Probe statistics:
Rcvd: 0 address requests, 0 address replies
0 proxy name requests, 0 where-is requests, 0 other
Sent: 0 address requests, 0 address replies (0 proxy)
0 proxy name replies, 0 where-is replies
UDP statistics:
Rcvd: 477373323 total, 0 checksum errors, 10680965 no port
Sent: 396864194 total, 69176833 forwarded broadcasts
EIGRP-IPv4 statistics:
Rcvd: 0 total
Sent: 0 total
PIMv2 statistics: Sent/Received
Total: 0/0, 0 checksum errors, 0 format errors
Registers: 0/0 (0 non-rp, 0 non-sm-group), Register Stops: 0/0, Hellos: 0/0
Join/Prunes: 0/0, Asserts: 0/0, grafts: 0/0
Bootstraps: 0/0, Candidate_RP_Advertisements: 0/0
Queue drops: 0
State-Refresh: 0/0
IGMP statistics: Sent/Received
Total: 0/0, Format errors: 0/0, Checksum errors: 0/0
Host Queries: 0/0, Host Reports: 0/0, Host Leaves: 0/0
DVMRP: 0/0, PIM: 0/0
Queue drops: 0
ARP statistics:
Rcvd: 38709616 requests, 22219571 replies, 280 reverse, 0 other
Sent: 3266555 requests, 5237345 replies (2153 proxy), 0 reverse
Drop due to input queue full: 0
Any help troubleshooting would be great.
Our resident CCIE is blaming the firewall.
Comments
-
Options
networker050184
Mod Posts: 11,962 Mod
Output drops are usually due to the output queue being overrun. Depending on your linecards it could be ports other than this one hogging the resources as well as buffer pools are shared. I will assume you checked all the normal stuff, cabling, duplex match etc.
How often are these drops increasing? What makes the CCIE think it's the firewall's fault?An expert is a man who has made all the mistakes which can be made. -
OptionsolaHalo
Member Posts: 748 ■■■■□□□□□□
The drops usually increase late at night when backups and whatnot run.
Im just assuming that its being caused by burst traffic.
Yes I checked all the cabling and duplex.
Im not sure why the CCIE thinks its the firewall.
She said she bypassed the firewall and was getting better speeds. But im not sure what that has to do with the packet loss.
I was not there when she was there so Im just going off what the onsite tech (not a cisco guy) said. -
Optionsnetworker050184
Mod Posts: 11,962 Mod
Have you checked your hardware and how the buffers are allocated? Some share between four sets or sets of ports. Some are not over subscribed. You might be able to move some connections around to ensure you don't fall into the over run scenario.An expert is a man who has made all the mistakes which can be made.
-
OptionsolaHalo
Member Posts: 748 ■■■■□□□□□□
Looks like the buffers are using the default settings.
There are plenty in the free list as well.
I dont have much experience configuring the buffers though. -
OptionsolaHalo
Member Posts: 748 ■■■■□□□□□□
If anyone cares, the issue was caused by a compromised web server pushing over 700mbps of traffic.
