Ignored Packets in VLan 1

Hi all,
 
I have a Cisco WS-C2950-48,  and I have incrementing throttles and ignored on  VLAN 1 interface.  Vlan 1 is a managament interface, some time
when I try to Access I can't.
 
2950#show int vlan 1
Vlan1 is up, line protocol is up
  Internet address is 10.0.0.146/16
  MTU 1500 bytes, BW 1000000 Kbit, DLY 10 usec,
     reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ARPA, loopback not set
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input 00:00:00, output never, output hang never
  Last clearing of "show interface" counters never
  Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
  Queueing strategy: fifo
  Output queue: 0/40 (size/max)
  30 second input rate 36000 bits/sec, 52 packets/sec
  30 second output rate 17000 bits/sec, 23 packets/sec
     297870558 packets input, 1596814696 bytes, 0 no buffer
     Received 195554838 broadcasts (0 IP multicast)
     0 runts, 0 giants, 1607875 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 98455174 ignored
     76743540 packets output, 3185572576 bytes, 0 underruns
     0 output errors, 2 interface resets
     0 output buffer failures, 0 output buffers swapped out
 
Clients are not having any troubles.
 
 
CPU utilization it's OK.
 
 
Thanks in advance.
BCN_2012Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Nayyar HH (CCIE RS)Network ArchitectCommented:
Can you post "show ip traffic" output ?
0
BCN_2012Author Commented:
Yes, thanks for reply,

show ip traffic
IP statistics:
  Rcvd:  1074460 total, 152824 local destination
         0 format errors, 0 checksum errors, 0 bad hop count
         0 unknown protocol, 921636 not a gateway
         0 security failures, 0 bad options, 51 with options
  Opts:  0 end, 0 nop, 0 basic security, 0 loose source route
         0 timestamp, 0 extended security, 0 record route
         0 stream ID, 0 strict source route, 51 alert, 0 cipso
         0 other
  Frags: 0 reassembled, 0 timeouts, 0 couldn't reassemble
         0 fragmented, 0 couldn't fragment
  Bcast: 140851 received, 3 sent
  Mcast: 0 received, 0 sent
  Sent:  12442 generated, 0 forwarded
  Drop:  382 encapsulation failed, 0 unresolved, 0 no adjacency
         0 no route, 0 unicast RPF, 0 forced drop
  Drop:  0 packets with source IP address zero

ICMP statistics:
  Rcvd: 0 format errors, 0 checksum errors, 0 redirects, 5 unreachable
        1693 echo, 440 echo reply, 0 mask requests, 0 mask replies, 0 quench
        0 parameter, 0 timestamp, 0 info request, 0 other
        0 irdp solicitations, 0 irdp advertisements
  Sent: 0 redirects, 0 unreachable, 440 echo, 1693 echo reply
        0 mask requests, 0 mask replies, 0 quench, 0 timestamp
        0 info reply, 0 time exceeded, 0 parameter problem
        0 irdp solicitations, 0 irdp advertisements

UDP statistics:
  Rcvd: 147949 total, 0 checksum errors, 140851 no port
  Sent: 7407 total, 0 forwarded broadcasts

TCP statistics:
  Rcvd: 2737 total, 0 checksum errors, 2 no port
  Sent: 2904 total

ARP statistics:
  Rcvd: 2827378 requests, 45 replies, 0 reverse, 0 other
  Sent: 361 requests, 1724 replies (0 proxy), 0 reverse
0
Nayyar HH (CCIE RS)Network ArchitectCommented:
I think there might be a host on VLAN1 sending excessive broadcast,

65% of packets received on VLAN1 is broadcast

Try to track down the host by finding out which connected port in VLAN1 has a very high "received broadcast" value

Command:

sh interfaces | i lan|ther|broad

You could look to enable broadcast storm-control
0
Check Out How Miercom Evaluates Wi-Fi Security!

It's not just about Wi-Fi connectivity anymore. A wireless security breach can cost your business large amounts of time, trouble, and expense. Plus, hear first-hand from Miercom on how WatchGuard's Wi-Fi security stacks up against the competition plus a LIVE demo!

Nayyar HH (CCIE RS)Network ArchitectCommented:
0
BCN_2012Author Commented:
Hi, thanks for reply again,

I think there is a memory problem in switch:

show buffers failures
Caller       Pool          Size      When
0x802D7634  Large            170    08:07:37
0x802D7634  Huge             170    08:07:37
0x802D7634  Middle           170    07:07:37
0x802D7634  Middle           170    05:33:54
0x802D7634  Middle           170    03:56:43
0x802D7634  Middle           170    03:56:43
0x802D7634  Middle           170    00:12:26
0x802D7634  Middle           178    00:12:26
0x802D7634  Middle           170    00:12:26
0x802D7634  Middle           170    00:12:26

2950#show region address 0x802D7634
Address 0x802D7634 is located physically in :
 
  Name  : text
  Class : IText
  Media : R/W
  Start : 0x80010000
  End   : 0x8056FA63
  Size  : 0x0055FA64
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
BCN_2012Author Commented:
Good answers
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Network Management

From novice to tech pro — start learning today.