New feature! Upgrade and increase expert visibility of your issues with Priority Questions.
Solved
High CPU on Cisco 2960 caused by process HLFM address learning
Posted on 2016-09-21
Hi
I have been checking a switch for high CPU Util, below is the output of the processes. I added bpduguard to all the access ports which were missing looked like a BPDU flood, this did not fix the issue. It is a Cisco C2960. Any ideas guys on the fix. I rebooted the switch it cleared the process, is there anything else I can do other than rebooting the switch in the furure ?
CPU utilization for five seconds: 90%/0%; one minute: 88%; five minutes: 85%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
64 1027439852 588315945 1746 58.12% 62.86% 59.45% 0 HLFM address lea
187 274811181 37798433 7270 14.01% 12.62% 12.41% 0 Inline Power
123 4662298 23761507 196 5.25% 0.42% 0.08% 0 Auth Manager
108 1581934791 450359134 3512 4.13% 4.02% 4.41% 0 Hulc LED Process
I have been checking a switch for high CPU Util, below is the output of the processes. I added bpduguard to all the access ports which were missing looked like a BPDU flood, this did not fix the issue. It is a Cisco C2960. Any ideas guys on the fix. I rebooted the switch it cleared the process, is there anything else I can do other than rebooting the switch in the furure ?
CPU utilization for five seconds: 90%/0%; one minute: 88%; five minutes: 85%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
64 1027439852 588315945 1746 58.12% 62.86% 59.45% 0 HLFM address lea
187 274811181 37798433 7270 14.01% 12.62% 12.41% 0 Inline Power
123 4662298 23761507 196 5.25% 0.42% 0.08% 0 Auth Manager
108 1581934791 450359134 3512 4.13% 4.02% 4.41% 0 Hulc LED Process
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
2
5 Comments
Active today
It could be Cisco bug (there were problems with CPU spikes and memory leaks in some IOS versions), so it can be IOS version dependent. You can try to upgrade or downgrade IOS version.
What is output from
# sh version
What is output from
# sh version
Thanks Predrag, below is the Sh ver output.
UKSWLINC001#sh vers
Cisco IOS Software, C2960 Software (C2960-LANBASEK9-M), Version 12.2(50)SE5, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2010 by Cisco Systems, Inc.
Compiled Tue 28-Sep-10 13:44 by prod_rel_team
Image text-base: 0x00003000, data-base: 0x01400000
ROM: Bootstrap program is C2960 boot loader
BOOTLDR: C2960 Boot Loader (C2960-HBOOT-M) Version 12.2(46r)SE2, RELEASE SOFTWARE (fc1)
UKSWLINC001 uptime is 5 hours, 24 minutes
System returned to ROM by power-on
System restarted at 10:47:12 UTC Wed Sep 21 2016
System image file is "flash:/c2960-lanbasek9-mz
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
cisco WS-C2960-48PST-L (PowerPC405) processor (revision F0) with 65536K bytes of memory.
Processor board ID FOC1516W2DF
Last reset from power-on
3 Virtual Ethernet interfaces
48 FastEthernet interfaces
4 Gigabit Ethernet interfaces
The password-recovery mechanism is enabled.
64K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address : 88:F0:77:86:97:80
Motherboard assembly number : 73-11882-10
Power supply part number : 341-0266-03
Motherboard serial number : FOC151524M4
Power supply serial number : LIT15080WA2
Model revision number : F0
Motherboard revision number : A0
Model number : WS-C2960-48PST-L
System serial number : FOC1516W2DF
Top Assembly Part Number : 800-30874-05
Top Assembly Revision Number : A0
Version ID : V04
CLEI Code Number : CMMD410ARA
Hardware Board Revision Number : 0x01
Switch Ports Model SW Version SW Image
------ ----- ----- ---------- ----------
* 1 52 WS-C2960-48PST-L 12.2(50)SE5 C2960-LANBASEK9-M
UKSWLINC001#sh vers
Cisco IOS Software, C2960 Software (C2960-LANBASEK9-M), Version 12.2(50)SE5, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2010 by Cisco Systems, Inc.
Compiled Tue 28-Sep-10 13:44 by prod_rel_team
Image text-base: 0x00003000, data-base: 0x01400000
ROM: Bootstrap program is C2960 boot loader
BOOTLDR: C2960 Boot Loader (C2960-HBOOT-M) Version 12.2(46r)SE2, RELEASE SOFTWARE (fc1)
UKSWLINC001 uptime is 5 hours, 24 minutes
System returned to ROM by power-on
System restarted at 10:47:12 UTC Wed Sep 21 2016
System image file is "flash:/c2960-lanbasek9-mz
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
cisco WS-C2960-48PST-L (PowerPC405) processor (revision F0) with 65536K bytes of memory.
Processor board ID FOC1516W2DF
Last reset from power-on
3 Virtual Ethernet interfaces
48 FastEthernet interfaces
4 Gigabit Ethernet interfaces
The password-recovery mechanism is enabled.
64K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address : 88:F0:77:86:97:80
Motherboard assembly number : 73-11882-10
Power supply part number : 341-0266-03
Motherboard serial number : FOC151524M4
Power supply serial number : LIT15080WA2
Model revision number : F0
Motherboard revision number : A0
Model number : WS-C2960-48PST-L
System serial number : FOC1516W2DF
Top Assembly Part Number : 800-30874-05
Top Assembly Revision Number : A0
Version ID : V04
CLEI Code Number : CMMD410ARA
Hardware Board Revision Number : 0x01
Switch Ports Model SW Version SW Image
------ ----- ----- ---------- ----------
* 1 52 WS-C2960-48PST-L 12.2(50)SE5 C2960-LANBASEK9-M
Active today
You can paste sanitized configuration, if some configuration problem can be noticed.
Recommended version for your device is IOS 12.2.55-SE11
You can find list of bugs that were "cured" and possible workarond in Resolved Caveats section.
This does not mean that your problem is listed on link, but upgrade can solve many issues.
Recommended version for your device is IOS 12.2.55-SE11
You can find list of bugs that were "cured" and possible workarond in Resolved Caveats section.
This does not mean that your problem is listed on link, but upgrade can solve many issues.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
I have seen some questions on problems with SSH/telnet access to Cisco routers that may occur despite the fact that from a PC connected to your LAN, Internet connectivity is in place and users can access Internet sites without any issues. There are…
There are two basic ways to configure a static route for Cisco IOS devices. I've written this article to highlight a case study comparing the configuration of a static route using the next-hop IP and the configuration of a static route using an outg…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month13 days, 16 hours left to enroll
656 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.