Solved

Cisco IOU High CPU Usuage

Posted on 2016-08-12
6
123 Views
Last Modified: 2016-08-13
Hello Experts,

I use Cisco IOU provided by flyxy.cn at http://91sec.blogspot.co.uk/2014/03/my-cisco-iou-racks-from-flyxj-iouv3.html

The Cisco L2 IOU 12 causes a lot of CPU usage causes high CPU usage. The high CPU usage is System not Users: more debugging shows that L2 IOU causes a lot of loopback traffic. It was suggested to use the following commands:

class-map match-all ARP
  match protocol arp

policy-map ARP-limit
  class ARP
   police rate 2 pps burst 20 packets peak-rate 7 pps
     conform-action transmit
     exceed-action drop
     violate-action drop

http://www.routereflector.com/2012/09/l2-iou-high-cpu-usage/

However, I don't see where to apply to policy. Can someone shed some light

Cheers

cpatte7372
0
Comment
Question by:Member_2_7966113
  • 3
  • 2
6 Comments
 
LVL 28

Accepted Solution

by:
Predrag Jovic earned 500 total points
ID: 41754239
Most likely you should apply it on loopback interface (since it is loopback traffic)  :)

interface loopback0
service-policy output ARP-limit

Most likely you need to restrict traffic from loopback in out direction,.
0
 
LVL 4

Expert Comment

by:Steven Roman
ID: 41754435
Hello

This is still going to use processing to try to limited the traffic

Try to determine why this is going on.  ARP could be MAC address flooding on your IOU Lab.

If that does not show any thing try GNS3 or Cisoc VIRL

Hope this helps.

Thanks
0
 

Author Comment

by:Member_2_7966113
ID: 41754627
Hello Steven

Does Cisco VIRL do switching?

Regards
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 28

Expert Comment

by:Predrag Jovic
ID: 41754631
Yes, but you need to pay for it. Check prices on Virl page.
0
 

Author Comment

by:Member_2_7966113
ID: 41754635
Hi Steven,

I've just checked out Cisco VIRL, its not for me.

Cheers
0
 

Author Closing Comment

by:Member_2_7966113
ID: 41754637
Thanks for responding. That solved the problem
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
WiFi Routers with Guest Network capability 14 73
Accessing two networks from one PC 30 109
MSSQL server connection  forced closed 3 38
Connecting Servers to L2 OR L3 Switch 6 46
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question