High CPU load on Cisco 2600

NewsGroups | Search | Tools

User Password

Lost Password?

General Cisco Forum - Cisco Systems - Hardware Software and Security News and Discussions

Page 1 of 3 1 2 3 > last >> Bookmark this page: YahooMyWeb

Yahoo!

Google

Windows Live

del.icio.us digg

digg

Netscape

Subject

Author

Date

High CPU load on Cisco 2600

Syn

02-18-2005

Re: High CPU load on Cisco 2600

Merv

02-18-2005

Re: High CPU load on Cisco 2600

Ivan Ostreš

02-18-2005

Re: High CPU load on Cisco 2600

Iggy

02-18-2005

If you were Registered and logged in, you could reply and use other advanced thread options

Posted by Syn on February 18, 2005, 9:43 am

Hello,

We are having some very very slow response time from our Cisco 2600
router starting since yesterday, as you can see here from show proc cpu:

CPU utilization for five seconds: 100%/1%; one minute: 99%; five
minutes: 80%
29 2366684 441963 5354 97.20% 97.64% 77.52% 0 IP Input

the IP Input process is using all CPU resources but we only have a
2mbit/s line behind and a very small ACL. What could the problem come
from and how can I find the source of this problem ?

Thanks
Regards

Posted by Merv on February 18, 2005, 1:02 am

Do you have CEF configured ?

Post your configuration.

Reladd the router to see if that clears the problem

Posted by Syn on February 18, 2005, 10:33 am

Merv wrote:

> Do you have CEF configured ?
>
> Post your configuration.
>
> Reladd the router to see if that clears the problem
>

What is CEF ?

I already reloaded the router, and in a few minutes it starts again.

Here is the config:

!RANCID-CONTENT-TYPE: cisco
!
!Chassis type: 2621 - a 2600 router
!CPU: MPC860
!
!Memory: main 60416K/5120K
!Memory: nvram 32K
!
!Power: Redundant Power System is not present.
!
!Image: Software: C2600-JK9S-M, 12.2(6c), RELEASE SOFTWARE (fc1)
!Image: Compiled: Sat 02-Feb-02 01:09 by pwade
!Image: flash:c2600-jk9s-mz.122-6c.bin
!
!ROM Bootstrap: Version 11.3(2)XA4, RELEASE SOFTWARE (fc1)
!
!
!Flash: System flash directory:
!Flash: File Length Name/status
!Flash: 1 12421732 c2600-jk9s-mz.122-6c.bin
!Flash: [12421796 bytes used, 4355420 available, 16777216 total]
!Flash: 16384K bytes of processor board System flash (Read/Write)
!
!Flash: nvram: Directory of nvram:/

!Flash: nvram: 20 -rw- 7511 <no date>

startup-config

!Flash: nvram: 21 ---- 24 <no date>

private-config

!Flash: nvram: 1 -rw- 0 <no date> ifIndex-table

!Flash: nvram: 29688 bytes total (21077 bytes free)
!
!Interface: FastEthernet0/0, AMD Laguna
!Interface: FastEthernet0/1, AMD Laguna
!
!Slot 0: type C2621 2FE Mainboard, 2 ports
!
!
config-register 0x2102
version 12.2
service timestamps debug datetime
service timestamps log datetime
service password-encryption
!
hostname router
!
logging buffered 4096 debugging
enable secret 5 *SECRET*
!
clock timezone CET 1
clock summer-time CDT recurring
ip subnet-zero
!
!
no ip domain-lookup
!
ip ssh time-out 120
ip ssh authentication-retries 3
!
crypto isakmp policy 100
authentication pre-share

!crypto isakmp key <removed> address <IP>
!crypto isakmp key <removed> address <IP>
!crypto isakmp key <removed> address <IP>

!
!
crypto ipsec transform-set ts esp-des esp-sha-hmac
!
crypto map cmap 11 ipsec-isakmp

set peer <IP>

set transform-set ts
set pfs group1
match address crypto-muc-bsl
crypto map cmap 21 ipsec-isakmp

set peer <IP>

set transform-set ts
set pfs group1
match address crypto-muc-sna
crypto map cmap 31 ipsec-isakmp

set peer <IP>

set transform-set ts
set pfs group1
match address crypto-muc-lon
crypto map cmap 41 ipsec-isakmp

set peer <IP>

set transform-set ts
set pfs group1
match address crypto-muc-sna2
crypto map cmap 56 ipsec-isakmp

set peer <IP>

set transform-set ts
set pfs group1
match address crypto-muc-spa
!
call rsvp-sync
!
!
!
!
!
!
!
!
interface Tunnel11
bandwidth 2304

ip address <IP> <IP>

tunnel source FastEthernet0/0

tunnel destination <IP>
tunnel key <KEY>

tunnel checksum
crypto map cmap
!
interface Tunnel21
bandwidth 2304

ip address <IP> <IP>

tunnel source FastEthernet0/0

tunnel destination <IP>
tunnel key <KEY>

tunnel checksum
crypto map cmap
!
interface Tunnel31
bandwidth 2304

ip address <IP> <IP>

tunnel source FastEthernet0/0

tunnel destination <IP>
tunnel key <KEY>

tunnel checksum
crypto map cmap
!
interface Tunnel41
bandwidth 2304

ip address <IP> <IP>

tunnel source FastEthernet0/0

tunnel destination <IP>
tunnel key <KEY>

tunnel checksum
crypto map cmap
!
interface Tunnel56
bandwidth 2304

ip address <IP> <IP>

tunnel source FastEthernet0/0

tunnel destination <IP>

tunnel key 565656
tunnel checksum
crypto map cmap
!
interface FastEthernet0/0
bandwidth 2304

ip address <IP> <IP>

ip access-group provider-in in
ip nat outside
duplex auto
speed auto
no cdp enable
crypto map cmap
!
interface FastEthernet0/1

ip address <IP> <IP>

ip nat inside
duplex auto
speed auto
no cdp enable
!
router eigrp 300

network <IP>
network <IP>

no auto-summary
eigrp log-neighbor-changes
!
ip nat inside source list nat interface FastEthernet0/0 over

ip nat inside source static tcp <IP> 4302 <IP> 80 extendable
ip nat inside source static tcp <IP> 5900 <IP> 5900 extendable
ip nat inside source static tcp <IP> 5800 <IP> 5800 extendable
ip nat inside source static tcp <IP> 22 <IP> 22 extendable
ip nat inside source static tcp <IP> 4099 <IP> 4099 extendable
ip nat inside source static tcp <IP> 4100 <IP> 4100 extendable
ip nat inside source static tcp <IP> 4302 <IP> 4302 extendable
ip nat inside source static tcp <IP> 4303 <IP> 4303 extendable
ip nat inside source static tcp <IP> 4304 <IP> 4304 extendable
ip nat inside source static tcp <IP> 4305 <IP> 4305 extendable

ip classless

ip route 0.0.0.0 0.0.0.0 <IP>
ip route <IP> 255.255.255.0 Tunnel11
ip route <IP> 255.255.255.0 Tunnel31
ip route <IP> 255.255.255.0 Tunnel41
ip route <IP> 255.255.255.0 Tunnel21
ip route <IP> 255.255.255.252 Tunnel31
ip route <IP> 255.255.255.252 Tunnel21

ip http server
ip pim bidir-enable
!
!
ip access-list standard nat

permit <IP> 0.0.0.255

!
ip access-list extended crypto-muc-bsl