Dual wan failover config: failback does not always work as expected for existing LAN traffic flows

I have an 881 router configured with 2 dhcp WAN connections.  I am trying to configure failure detection of the primary connection (I do not really care about the secondary at this time).
I have an ip sla/track configured to monitor the primary WAN connection, and if it stops passing traffic it removes that route, passing all traffic out the second WAN connection.  When the first connection is restored it should restore the route and everything should pass through the first connection again.  This works for all my tests except one.  If I start a ping stream from a client "ping 8.8.8.8 -t" and disconnect the primary connection it will lose a few packets but then use the secondary connection in about 15 seconds.  After restoring the primary connection all new traffic will use the primary connection, but the ping stream will then stop working (fails over, but not back).  If I stop the ping stream for a time (not sure how long is required, but my test was over a minute) it will then use the primary connection like all other new traffic.  A stop of a few seconds is not enough, and even opening up a second command prompt to ping the same target also does not work (pinging new targets works as desired).  It is as if something is caching the route/session/whatever and it has to have a window of no traffic before expiring/relearning the route.  This means any sustained traffic to the original target will not work until it is stopped for a certain time to let "something" age out.
I need to know if there is a way to "flush the cache" (or whatever) during fail-back to force the primary route to be used after fail-back, or something else that will have the same effect.  My suspicion is that the second route gets "preferred" because the first is removed by the sla, and when the sla returns the route to the list the existing traffic flow is not aware of the route list change, using the last known good route (which now does not pass traffic).  The Issue here is that it takes a length of time for the now bad route to get flushed, which is greater than I want to have.
config (edited):
interface FastEthernet3
 description Backup ISP
 switchport access vlan 800
 no ip address
interface FastEthernet4
 description Primary ISP
 ip dhcp client route track 100
 ip address dhcp
 ip nat outside
 ip virtual-reassembly in
 duplex auto
 speed auto
 crypto ipsec client ezvpn EZVPN-to-1941
interface Vlan800
 description Backup ISP
 ip address dhcp
 ip nat outside
 ip virtual-reassembly in
track 100 list boolean or
 object 101
 object 102
track 101 ip sla 10 reachability
track 102 ip sla 20 reachability
ip sla 10
 icmp-echo 4.2.2.2 source-interface FastEthernet4
 threshold 1000
 timeout 1500
 frequency 5
ip sla schedule 10 life forever start-time now
ip sla 20
 icmp-echo 208.67.222.222 source-interface FastEthernet4
 threshold 1000
 timeout 1500
 frequency 5
ip sla schedule 20 life forever start-time now
ip route 4.2.2.2 255.255.255.255 FastEthernet4 permanent
ip route 10.1.2.0 255.255.255.0 <1941 wan ip removed>
ip route <1941 wan ip removed> 255.255.255.255 FastEthernet4 permanent
ip route 208.67.222.222 255.255.255.255 FastEthernet4 permanent
ip route 0.0.0.0 0.0.0.0 Vlan800 dhcp 254
ip route 0.0.0.0 0.0.0.0 FastEthernet4 dhcp
Observation: the last 2 routes appear in the order shown above.  Even though the vlan800 route has a higher administrative cost it is in front of the FA4 route, could this be contributing to the issue?  Is there a way to ensure the FA4 route is always listed before vlan800 at all times?

I have an 881 router configured with 2 dhcp WAN connections.  I am trying to configure failure detection of the primary connection (I do not really care about the secondary at this time).
I have an ip sla/track configured to monitor the primary WAN connection, and if it stops passing traffic it removes that route, passing all traffic out the second WAN connection.  When the first connection is restored it should restore the route and everything should pass through the first connection again.  This works for all my tests except one.  If I start a ping stream from a client "ping 8.8.8.8 -t" and disconnect the primary connection it will lose a few packets but then use the secondary connection in about 15 seconds.  After restoring the primary connection all new traffic will use the primary connection, but the ping stream will then stop working (fails over, but not back).  If I stop the ping stream for a time (not sure how long is required, but my test was over a minute) it will then use the primary connection like all other new traffic.  A stop of a few seconds is not enough, and even opening up a second command prompt to ping the same target also does not work (pinging new targets works as desired).  It is as if something is caching the route/session/whatever and it has to have a window of no traffic before expiring/relearning the route.  This means any sustained traffic to the original target will not work until it is stopped for a certain time to let "something" age out.
I need to know if there is a way to "flush the cache" (or whatever) during fail-back to force the primary route to be used after fail-back, or something else that will have the same effect.  My suspicion is that the second route gets "preferred" because the first is removed by the sla, and when the sla returns the route to the list the existing traffic flow is not aware of the route list change, using the last known good route (which now does not pass traffic).  The Issue here is that it takes a length of time for the now bad route to get flushed, which is greater than I want to have.
config (edited):
interface FastEthernet3
 description Backup ISP
 switchport access vlan 800
 no ip address
interface FastEthernet4
 description Primary ISP
 ip dhcp client route track 100
 ip address dhcp
 ip nat outside
 ip virtual-reassembly in
 duplex auto
 speed auto
 crypto ipsec client ezvpn EZVPN-to-1941
interface Vlan800
 description Backup ISP
 ip address dhcp
 ip nat outside
 ip virtual-reassembly in
track 100 list boolean or
 object 101
 object 102
track 101 ip sla 10 reachability
track 102 ip sla 20 reachability
ip sla 10
 icmp-echo 4.2.2.2 source-interface FastEthernet4
 threshold 1000
 timeout 1500
 frequency 5
ip sla schedule 10 life forever start-time now
ip sla 20
 icmp-echo 208.67.222.222 source-interface FastEthernet4
 threshold 1000
 timeout 1500
 frequency 5
ip sla schedule 20 life forever start-time now
ip route 4.2.2.2 255.255.255.255 FastEthernet4 permanent
ip route 10.1.2.0 255.255.255.0 <1941 wan ip removed>
ip route <1941 wan ip removed> 255.255.255.255 FastEthernet4 permanent
ip route 208.67.222.222 255.255.255.255 FastEthernet4 permanent
ip route 0.0.0.0 0.0.0.0 Vlan800 dhcp 254
ip route 0.0.0.0 0.0.0.0 FastEthernet4 dhcp
Observation: the last 2 routes appear in the order shown above.  Even though the vlan800 route has a higher administrative cost it is in front of the FA4 route, could this be contributing to the issue?  Is there a way to ensure the FA4 route is always listed before vlan800 at all times?

Similar Messages

  • LR4.2 and "Do not import selected duplicates" does not always work.

    LR4.2 and "Do not import selected duplicates" does not always work. Running a Mac, 10.6.8, I am cleaning up hard drives, organizing old files. There are times lightroom 4.2 (and before) does not recognize already imported raws and does not gray them out. These are backed up cards and folders of of raw images. Why is the "do not import selected duplicates" check box not working???!!!

    There's a known (and old) bug when duplicate identification fails on photos
    that have been imported from another catalog.
    Sent from phone.

  • The Back arrow does not always work, particularly with Amazon and eBay sites.Even the on-page Back arrows do not work either.

    I am using version 15.0.1. Since I updated to this version, the Back arrow does NOT always work particularly with Amazon and eBay. This is particularly evident when I go from a list the result of a search to an item on the lis. I cannot get back to the list even using the On-page Back arrow. I usually have to repeat the search to get back to the list again.

    Hi MorrellMurphy
    probably problem with [http://kb.mozillazine.org/Bookmarks_history_and_toolbar_buttons_not_working_-_Firefox Locked or damaged places.sqlite] file
    thank you

  • Can I not add images to my itunes from Google images or other search engines as when I click get artwork it does not always work

    Can I not add images to my itunes from Google images or other search engines as when I click get artwork it does not always work. I used to be able to do this.

    The sort fields should generally be empty unless you've putting in custom values to sort solo artists by their surnames. You can apply common changes to thousands of tracks at once, just don't apply the wrong change because there is no undo.
    It is a good idea to backup before undertaking large scale changes. See this backup tip for a suggested approach.
    tt2
    Message was edited by: turingtest2

  • On my iphone 4, when i try to open an app, the icons start wiggling like i want to delete them. the touch screen does not always work. sometimes the phone reboots itself. any help out there?

    on my iphone 4, when i try to open an app, the icons start wiggling like i want to delete them. the touch screen does not always work. sometimes the phone reboots itself. any help out there?

    Have you tried basics from the manual?
    restart,
    reset,
    restore
    iPhone User Guide (For iOS 4.2 and 4.3 Software)

  • Scrolling with the mouse wheel does not always work with 4.0? Never a problem with previsous versions.

    in firefox 4.0, at times the scrolling wheel will not work. It has never been a problem with previous versions, and always works in internet explorer.

    Hello Henry,
    Thanks for the hint!
    My mouse wheel is  working, but not in flash player...strange... It is a Microsoft Comfort  Mouse and I see there is already logged bug about that: https://bugs.adobe.com/jira/browse/FP-5145
    Anyway besides this bug, there is an additional issue I think, that the vertical layout does not calculate properly the vertical scroll position, when certain elements are excluded from the layout. I have described this additionally in the Jira.
    Regards,
    Dinko

  • Image.getScaledInstance() does not always work under Windows Vista

    Hi:
    I've run into some intermittent image scaling problems under Windows Vista (minus Aero effects) that I never experienced with the same program, same image(s), running same Java version under XP. The images I'm using are all JPEGs, and the problem appears to affect approx 1 out of 3 grayscale images (no color ones so far) w/o respect to size (ie: small ones can be problems while larger ones will work). Java -version shows 1.6.0_02-b06. I was wondering if anyone else out there has seen this, or can point out what I may be doing wrong. Sample code to duplicate follows.
    Tx,
    Jallewel
    // ===================================================================
    // Image Scaling Problem, Description & Demo Program (minus the image):
    //   Environment:  SDK/JRE: Java 1.6.0_02-b06, running under
    //        Windows Vista Home Premium (32-Bit) on Dell Inspiron w/3GB RAM
    //   ************* Symptoms ******************
    //   Problem occurs when invoking image.getScaledInstance().
    //   Problem shows up under Windows Vista, configured w/Windows Classic look
    //       & feel - that is, with Aero effects turned OFF.
    //   Problem does NOT show up under Windows XP on Dell Dimension 4500.
    //   Test across computers used same SDK/JRE, Java program, and Image.
    //   Problem ONLY appears in grayscale JPEG images, and only 1 out of 3 of those.
    //   (I can provide a problem image)
    // Results Compiling & Running This Program:
    //   C:\Users\~\VistaProblem>javac VistaProblem.java
    //   C:\Users\~\VistaProblem>java VistaProblem
    //      Uncaught error fetching image:
    //      java.lang.ClassCastException: [I cannot be cast to [B
    //        at java.awt.image.ColorModel.getAlpha(Unknown Source)
    //        at java.awt.image.ColorModel.getRGB(Unknown Source)
    //        at sun.awt.image.ImageRepresentation.convertToRGB(Unknown Source)
    //        at sun.awt.image.ImageRepresentation.setPixels(Unknown Source)
    //        at java.awt.image.AreaAveragingScaleFilter.accumPixels(Unknown Source)
    //        at java.awt.image.AreaAveragingScaleFilter.setPixels(Unknown Source)
    //        at sun.awt.image.ImageDecoder.setPixels(Unknown Source)
    //        at sun.awt.image.JPEGImageDecoder.sendPixels(Unknown Source)
    //        at sun.awt.image.JPEGImageDecoder.readImage(Native Method)
    //        at sun.awt.image.JPEGImageDecoder.produceImage(Unknown Source)
    //        at sun.awt.image.InputStreamImageSource.doFetch(Unknown Source)
    //        at sun.awt.image.ImageFetcher.fetchloop(Unknown Source)
    //        at sun.awt.image.ImageFetcher.run(Unknown Source)
    import java.*;
    import java.awt.*;
    import java.io.*;
    import javax.imageio.*;
    // class VistaProblem
    public class VistaProblem extends Frame {
       private static ScrollPane sp = new ScrollPane(ScrollPane.SCROLLBARS_AS_NEEDED);
       public static ImageComponent ic;
       // Constructor
       public VistaProblem() {
          super("VistaProblem");
          add(sp, BorderLayout.CENTER);
          this.setSize(700, 520);
          setVisible(true);
         String fPathName = "./ProblemImage.jpg";
          ic = new ImageComponent(getToolkit().getImage(fPathName));
          sp.add(ic);
          sp.validate();
          ic.Scale(220, 200);
       // class ImageComponent
       class ImageComponent extends Component {
          private Image image;
          // Constructor
          ImageComponent(Image img) {
             this.image = img;
          // paint
          public void paint(Graphics g) {
             g.setColor(getBackground());
             g.drawImage(image, 10, 10, this);
             g.dispose();
          // Scale
          public void Scale (int width, int height) {
             // ***** PROBLEM LINE HERE; COMMENT OUT AND PROGRAM WORKS *****
             this.image = this.image.getScaledInstance(width, height, Image.SCALE_SMOOTH);
             repaint();
       // Main Entry Point
       public static void main(String args[]) {
          Frame f = new VistaProblem();
    } // end VistaProblem

    That does indeed appear to be a bug. I looks like it's having problems with the alpha value in the color model, so a possible workaround would be to change the color model the image uses before scaling. This may entail creating a new BufferedImage and drawing the old image into it.

  • Firewire port does not always work to import movies from video camera

    I've been having issues with my Mac Pro lately, it is an 06 model. Opening up iMovie and starting the import process for video from my Canon camera, the software will not recognize that the camera is connected.
    In system profile I do see that the camera is connected via the fire-wire port and shows the correct name, etc.
    After a bit of troubleshooting, restarting software, I unplugged the fire-wire connector that is part of the dongle coming from the 23" cinema display and the camera appeared like it should.
    System profile indicated that the fire-wire connection from the 23" display was unknown. I do know that I can plug other items into the display and they work fine.
    Rebooting the Mac Pro did not have any effect either.
    Granted, it is working, but I wish I did not have to unplug the cinema display port each time I want to do this.

    The firewire port on the Display does not have enough internal power requirements to support some devices. Try the firewire port on the back of the Mac Pro. If you are using a firewire repeater then don't connect it to the Display firewire port, use the Mac pro.

  • Adobe 9 plugin save function does not always work

    This may not be a problem with Adobe Reader or Internet Explorer, but my credit card company says it is, so I need to look.
    When I try to get my on-line statements from a particular credit card company, a new IE window with Adobe Reader running "underneath" comes up fine. When I press the "Save" icon (the floppy disk icon) nothing happens.
    I have done this recently with another similar site (brokerage account) successfully, so my version of Reader and/or IE7 do not seem to be the problem. Note that in all cases the bank/broker do not give direct access to the pdf file, which is probably for security reasons -- in other words, "right-click/save-as" does not work for on-line statements. Instead they run a server-end script which "presents" the pdf to the new browser window. All of this indicates that they have control over the security and therefore disallow me from saving locally.
    If anyone knows of a setting I need to make, or if they can confirm that the problem is on the server end, I could use the help. I want to stay paperless, so you'll be helping the environment if you help me :)
    My alternative is to print the statement, then scan it and throw it out, which is obviously ridiculous :)

    I am having much the same problem as the OP and Martin.
    Currently I am running Reader 9 on a Vista computer. This is a new computer and I was able to save my credit card statement in January. Then after I saved my statement in January, I believe I upgraded Reader at some point, and when I tried to save my February statement it wouldn't work.
    I have tried to right click on the document, and there is no "Save As..." option. But like someone else posted, it's just a long gibberish type name in IE address bar.
    I also tried printing the document to a file, but that does not work either. It fails to bring up the dialog box asking the usual queations. I can print the document on my printer.
    I have spent several sessions with the credit card company website tech support people. Per their suggestions I have uninstalled and reinstalled Reader 9, they also had me delete cookies, change popup blocker settings, add security certificates, etc.
    None of that worked, and they tell me it's an Adobe problem.
    Like other posters I can save this same statement using my laptop with an earlier version of Reader. In my case Reader 7.
    Like Martin posted, and the credit card tech people suggested, I believe this is a Reader 9 problem.
    I hope someone has a fix.
    Thanks,
    Don Sepanski

  • Query filter with amounts does not alway work

    I have several customers with the same problem.
    They create a query in Webi containing some simple objects. In the filter pane they have for eksample amounts less than  -2000
    This should give a report with rows where the amount is less than -2000. But in some cases there are rows with amount = 0.00. It does not matter what value they put in the filter, it could be -2000 or 1000 or 200 etc. the problem is that some rows with value 0.00 slips through and are listed in the rows of the report.
    I have been searching for a note for this problem, but haven't found any yet.
    The BOE version is 12.2.5.537
    I do not have this problem on customers who runs a 12.1 version of BOE....
    Thanks
    Pål Risberg
    SAP BO Solution Architect

    Can you post the actual SQL?
    Does this measure object have a sum(table.column)
      (so it goes in the having and is evaluated on the group by level)
    or not
      (so it goes into the where and is evaluate on a row to row basis)...
    In case of the latter you can off course have detail values that pass the test,
    but are counter booked so they add up to zero, and show as zero in BO.
    Good luck,
    Marianne

  • How can I make Thunderbird 31.4.0 always open with Inbox? The add-on "select Inbox" does not always work!

    Starting with TB 31.2 - some four months ago - I have not been able to open TB to the Inbox. I downloaded the "Select INbox" add on many times (and disabled/removed as many times) but it does not work consistently. When it does finally work I have no idea why. And then the next time, it doesn't work again!

    I still have this problem. There doesn't seem to be any rhyme or reason to it. This morning TB opened to the Inbox but I have little confidence that it will do that again.
    In earlier post I already replied that I don't have CCleaner on my computer. I also have not downloaded any programs since I began to have this problem.
    Now I wonder if the Intego Net Barrier and Virus Barrier could be having a negative influence. I've been using these for years and have not changed their settings in any way for years. If they could be the reason that the settings are erased between TB starts what should I do?
    You can probably tell that I only use my computer and do not understand anything about programming, etc.! I need complete, step-by-step explanations for a computer dummy.
    Thanks in advance.

  • Airplay does not always work with Apple TV (no airplay symbol)

    We have two iPhones and one iPad (all using iOS6). Sometimes we can connect any device without problems, sometimes the Airplay symbol does not appear on the iPhone or iPad at all. Rebooting (unplugging and plugging again power cord) the Apple TV sometimes helps. Anyhow, I checked all hints from the Apple FAQ and the only thing I don't use is iOS 7 (but currently iOS 6 should still be ok).
    Does anybody made the same experience?

    This morning I downgraded the firmware of my Apple TV to 5.3 (I was on 6.0.2). This solved my problem! :)
    I too had lagging playback, both from iTunes as well as for Airplaying a video from my iPad. Often the video or airplay just would not start.
    With firmware 5.3 my ATV is again as fast as it used to be: videos start promptly, no waiting for the spinning disc and hoping the thing will start. It just works now :)

  • Sleep button on main menu does not always work..

    For my own convenience, I added the "sleep" selection to my iPod's main menu, so I wouldn't have to worry about holding down the play/pause button instead. Quite often, this button simply doesn't work in putting the iPod to sleep. Holding the play/pause button works, but clicking sleep seems to do nothing half the time. The iPod realises that it's being clicked, since it makes the "click" noise from the speaker.. yet nothing happens. Is this some sort of wierd bug? And if so, why does the sleep option work some times and not others?

    I usually give mine at least 15 sec and mine works perfectly.If i dont wait for it to spin down it will not cut off.try it.......

  • JVM version check -version:1.4* does not always work

    Jdk1.5 (and later 1.4.2) has a version checking feature in java -version: flag.
    i.e.,
    [ronnc@bill ronnc]$ java -version:1.4.2_05-b04 -version
    java version "1.4.2_05"
    Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2_05-b04)
    Java HotSpot(TM) Client VM (build 1.4.2_05-b04, mixed mode)
    [ronnc@bill ronnc]$ java -version:1.4* -version
    java version "1.4.2_05"
    Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2_05-b04)
    Java HotSpot(TM) Client VM (build 1.4.2_05-b04, mixed mode)
    I have this working on some machine but on several machine it just refuses to work in a very perculia way.
    [builder@apollo builder]$ java -version:1.4.2_05-b04 -version
    java version "1.4.2_05"
    Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2_05-b04)
    Java HotSpot(TM) Client VM (build 1.4.2_05-b04, mixed mode)
    [builder@apollo builder]$ java -version:1.4* -version
    Unable to locate JRE meeting specification "1.4*"
    I've looked into the launcher source code (it checks version info from dir name or jre/RELEASE file) and I think i've setup everything right still having trouble understanding why it doesn't work on some machine. It seems to me that acceptable_release() function doesn't return correctly.
    Anyone have any idea why? Also does anyone know how I can get the source to libjvm.so so that I can look at what it's doing.
    rOnn c.

    It's not documented anywhere except from the command line help
    [ronnc@bill ronnc]$ java -showversion
    java version "1.4.2_05"
    Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2_05-b04)
    Java HotSpot(TM) Client VM (build 1.4.2_05-b04, mixed mode)
    Usage: java [-options] class [args...]
    (to execute a class)
    or java [-options] -jar jarfile [args...]
    (to execute a jar file)
    where options include:
    -client to select the "client" VM
    -server to select the "server" VM
    -hotspot is a synonym for the "client" VM [deprecated]
    The default VM is client.
    -cp <class search path of directories and zip/jar files>
    -classpath <class search path of directories and zip/jar files>
    A : separated list of directories, JAR archives,
    and ZIP archives to search for class files.
    -D<name>=<value>
    set a system property
    -verbose[:class|gc|jni]
    enable verbose output
    -version print product version and exit
    -version:<value>
    require the specified version to run
    -showversion print product version and continue
    -jre-restrict-search | -jre-no-restrict-search
    include/exclude user private JREs in the version search
    -? -help print this help message
    -X print help on non-standard options
    -ea[:<packagename>...|:<classname>]
    -enableassertions[:<packagename>...|:<classname>]
    enable assertions
    -da[:<packagename>...|:<classname>]
    -disableassertions[:<packagename>...|:<classname>]
    disable assertions
    -esa | -enablesystemassertions
    enable system assertions
    -dsa | -disablesystemassertions
    disable system assertions
    Do you see -version:<value> ? I've done my research please do yours.

  • Sync over Wi-Fi does not always work

    Sometimes it does, sometimes it doesn't; works very inconsistently. Often iTunes displays an error, iPhone can't be located despite the fact that it's connected to my Wi-Fi. Any way to increase the reliabilty of the sync?

    So the files in your iTunes Library are stored locally on the same computer you're trying to sync with, right?
    Then it might be an issue if the PC and the iOS device are both using WiFi. Maybe Apple meant this feature to be used with computers being connected by cable (and only the iOS connected over WiFi). Anyway, I still believe it has something to with the bandwidth, although you're already using the maximum available speed.
    What's the bandwidth usage while syncing? Take a look in the Task Manager!
    Mine is nearly 30% before the error occurs...

Maybe you are looking for

  • Using My MBP

    I have a few questions about my New Mac, they are all over the place so i figured this would be the best spot to ask, so please just bare with me. Frist off I read that Post yesterday about reseting the PMU, Im not going to try this but, what effects

  • BP by Sales Area Data

    Hello, Could any one help me with the table where the Sales Area, Sales Org, Sales group and Sales District are stored for a BP. Importantly I would be looking for a table where I can find a Sales district of BP. Any inputs would be highly appreciate

  • Scenario: R/3 - XI - Third Party System: Manage queues

    Hi to all, my scenario is: an R/3 system which extract some datas -> XI -> datas are used in a third party system. In R/3 system I did a custom program which extracts datas and send them to abap proxy, this program is used by a key user who can execu

  • Strange noises when downloading st

    Hi, I have a X-Fi elite pro. When i download, and get anything over 250 - 300k i start to get wired noises, like distortion and stuff like that. If i stop the downloads this sto ps. It right winds me up when i am listening to music. Is there a fix or

  • Deletion of Import maps

    Hi,   Can any body help how to delete the import maps. Regards, Mallikarjun.M