Re: Tunnel keepalives

From: Sergey Golovanov (sergey.golovanov@iementor.com)
Date: Thu Mar 08 2007 - 10:44:40 ART

• Next message: Paul Schuuring: "Re: PPP: no peer neighbor-route"
• Previous message: Sean C: "Re: Tunnel keepalives"
• Maybe in reply to: Piotr Ojczyk: "Tunnel keepalives"
• Next in thread: Piotr Ojczyk: "Re: Tunnel keepalives"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

yes, in this specific case, if I were to turn off keepalives, the CPU would drop to around 15% (in addition the router is doing IPSEC on all GRE tunnels)

--------------------------------------------------------------------
Sergey Golovanov, CCIEx5 (R&S/Security/Voice/Service Provider/Storage)
"Please, don't ask me for my ccie #, there are reasons why I can't release it"
ieMentor Instructor and Content Developer
sergey.golovanov@iementor.com
http://www.iementor.com

> -------Original Message-------
> From: Sean C <upp_and_upp@hotmail.com>
> Subject: Re: Tunnel keepalives
> Sent: Mar 08 '07 08:36
>
> Hi Sergey,
>
> Could you extrapolate on this a little: '...more than 200 gre tunnels
> running with keepalives turned on will cause its CPU to go 100%.'
>
> Were you able to baseline the CPU on the 37xx w/ tunnels and w/out using
> keepalives? I just find that statistic is extraordinary.
>
> Thanks.
> Sean
> ----- Original Message -----
> From: "Sergey Golovanov" <sergey.golovanov@iementor.com>
> To: "Piotr Ojczyk" <pojczyk@tlen.pl>; <ccielab@groupstudy.com>
> Sent: Wednesday, March 07, 2007 6:24 PM
> Subject: Re: Tunnel keepalives
>
>
> > I've been bugging TAC about this few times already. A 37xx router with
> > more than 200 gre tunnels running with keepalives turned on will cause its
> > CPU to go 100%. If you find a solution, let me know please :)
> >
> >
> > --------------------------------------------------------------------
> > Sergey Golovanov, CCIEx5 (R&S/Security/Voice/Service Provider/Storage)
> > "Please, don't ask me for my ccie #, there are reasons why I can't release
> > it"
> > ieMentor Instructor and Content Developer
> > sergey.golovanov@iementor.com
> > http://www.iementor.com
> >
> >
> >> -------Original Message-------
> >> From: Piotr Ojczyk <pojczyk@tlen.pl>
> >> Subject: Tunnel keepalives
> >> Sent: Mar 07 '07 17:44
> >>
> >> Hello,
> >>
> >> When there are a few tunnels configured with the same time interval, the
> >> keepalives are sent simultaneously for all the interfaces. It causes
> >> quite
> >> inconvenient situation when very big number of tunnels is used - a storm
> >> of
> >> keepalives is then generated followed by the long idle time. Especially
> >> when
> >> all the responding routers are connected to a multi-access network and
> >> try
> >> to reply immediately causing collisions.
> >>
> >> Is there any possibility to spread tunnel keepalives to be sent in
> >> different
> >> time?
> >>
> >> Thanks
> >> Piotr
> >>
> >> _______________________________________________________________________
> >> Subscription information may be found at:
> >> http://www.groupstudy.com/list/CCIELab.html
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html

• Next message: Paul Schuuring: "Re: PPP: no peer neighbor-route"
• Previous message: Sean C: "Re: Tunnel keepalives"
• Maybe in reply to: Piotr Ojczyk: "Tunnel keepalives"
• Next in thread: Piotr Ojczyk: "Re: Tunnel keepalives"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Apr 01 2007 - 06:35:50 ART