From: Scott Morris (swm@xxxxxxxxxx)
Date: Thu Apr 18 2002 - 14:57:30 GMT-3
Never overlook the obvious. :)
According to your interface, you have lack of buffers (and overruns because
of it). Overruns occur as packets come IN to an interface. There's very
small buffer space on the card, and if the CPU doesn't take the information
in a timely manner, then it will have another packet slam into it on the way
in (analogy anyway).
So, I'd say one of two things (or combination):
Processor is overloaded (perhaps non-efficient config rules, or just too
many)
RAM is depleted (this is easy to fix. Add more RAM!)
Give those two things a whirl and see what happens. You may also consider
looking at the design of your network (e.g. do ALL workstations talk
directly to the inside interface of the PIX? If so, how many things are
they trying to do?). Chances are though, since you have the errors on both
interfaces that it's a CPU and/or memory related issue.
You're stressing the PIX out for some reason. Stop that. :)
Scott
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Wright, Jeremy
Sent: Thursday, April 18, 2002 1:08 PM
To: 'ccielab@groupstudy.com'
Cc: 'security@groupstudy.com'
Subject: PIX Interface Errors
does anyone know what could possibly be causing intermittent drops on my
pix. IP's have been removed to protect the innocent. Please notice the input
errors and overruns on the interfaces match. any suggestions? TIA
charger# sh int
interface ethernet0 "outside" is up, line protocol is up
Hardware is i82559 ethernet, address is 0004.9ad0.b3a8
IP address , subnet mask
MTU 1500 bytes, BW 100000 Kbit full duplex
13096920 packets input, 784948228 bytes, 2823487 no buffer
Received 9832854 broadcasts, 0 runts, 0 giants
13652 input errors, 0 CRC, 0 frame, 13652 overrun, 0 ignored, 0
abort
7828585 packets output, 261095618 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collisions, 0 deferred
0 lost carrier, 0 no carrier
input queue (curr/max blocks): hardware (128/128) software (0/178)
output queue (curr/max blocks): hardware (0/128) software (0/50)
interface ethernet1 "inside" is up, line protocol is up
Hardware is i82559 ethernet, address is 0004.9ad0.b3a9
IP address , subnet mask
MTU 1500 bytes, BW 100000 Kbit full duplex
56368683 packets input, 1190253414 bytes, 3326433 no buffer
Received 52447952 broadcasts, 0 runts, 0 giants
3702 input errors, 0 CRC, 0 frame, 3702 overrun, 0 ignored, 0 abort
569791 packets output, 234944145 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collisions, 0 deferred
0 lost carrier, 0 no carrier
input queue (curr/max blocks): hardware (128/128) software (0/169)
output queue (curr/max blocks): hardware (1/27) software (0/15)
************************
Jeremy Wright
Network Analyst
Archer Daniels Midland
ja_wright@admworld.com
(217)451-4063
************************
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:58:12 GMT-3