CPU Load 98% after changed MTU size

Similar Messages

• CPU load higher after applying in 147440 kernel on Oracle database servers

  Hi all,
  Just wanted to know if anyone else is seeing an Increased CPU load with higher peaks and for longer periods of time, especially on single thread processes on oracle database servers. Our Oracle Database versions vary from Oracle 10 to Oracle 11.1.0.7 11.2.0.2 10.2.0.4. The Hardware includes Sunfire V245's, V440 and T5240. We saw a slight performance hit when going to 147440-02 at the first of Oct, but no big deal. Then we applied 147440-04 in the first part of Nov. And of course we got CPU panics and Zfs file system stopped mounting basically a complete disaster. Oracle provided and IDR for the CPU panic and then later release 147440-06. Which resolved the CPU panics and zfs file system mounts. But now our load average on is 1 to 3 points higher during load, grid control is constantly complaining of 100% utilization. I have had a call open since the first of November with oracle/sun support and have provided guds performance stats on before and after Kernel change. They are still saying that its not an issue. It is so bad we had to roll back to a July kernel on one of the servers.

  Just to let you all know what we have found. After 2 1/2 months of working with Oracle Kernel team, they have identified the Oracle Enterprise Manager (emagent) (Grid control Agent) was using nearly 60000 threads under the 147440 Kernel and only 1500 threads under an older kernel.
  I googled the solution for the emagent, but I continue to press Oracle Kernel Engineers to work with their software division, to identify other products that might cause similar problems.
  http://oracle-dba-quickanswers.blogspot.com/2011/10/emagent-consuming-very-high-cpu.html

• Mid 2010 Macbook Pro - Change MTU size kills internet (Jumbo Frames)

  Hi everyone, i'm hoping someone here can enlighten or help me solve my problem I'm having.
  I am trying to change my MTU size to enable Jumbo frames on my 13 inch Mid 2010 Macbook Pro. I recently bought a ReadyNAS Ultra and would like to speed up transfers to the unit.
  My setup is as follows:
  I have my ReadyNAS Ultra 2 and 2010 Macbook Pro (Core 2 Duo) wired via cat6 ethernet to my 5th Generation Apple Airport Extreme. The Airport Extreme is connected via cat5e to my AT&T Uverse Gateway which is set up to allow my Airport to assign DHCP and NAT (gateway is in bridge mode with wireless off).
  Anyways, I have enabled Jumbo frames on my ReadyNAS, when I enable them on my MBP.. it applies fine. It disconnects / reconnects the ethernet like it should, but then my connection drops. I can't see any devices on my LAN and I cannot access any internet websites, but according to the network pane I am still assigned a valid dhcp address. When I manually try to increase my MTU size, the same thing happens (from 9000 to 1600 I tried every size).....
  Could it be my MBP just can't suppose the increase of MTU size? It leaves them at 1500 when I set it to automatic... if it doesn't support the increased MTU size, why would it let me custom change the MTU and even give an option to select "Jumbo Frames (9000)"?
  I appreciate any help in advance!!

  asdftroy wrote:
  If you did read my post then you would have saw that the option is there, but that is not entirely what my inquiry is about. The option isn't working as intended, and I was wondering if anyone had the same issues as me. Thanks anyways.
  Anyone else?
  The way you responded to someone trying to help you probably means others will be hesitant to try.

• Excel 2010 bug -- cannot place controls on chart properly after changing paper size

  I have encountered unexpected behavior in Excel 2010 when placing controls on a chart that is a separate sheet. The issue is that the controls (e.g. spinner, scroll bar, etc.) cannot be placed or moved to the right side or the bottom.
  Steps to reproduce:
  1) create a chart as a separate sheet
  2) change the paper size to, for example, A6 (4.13" x 5.83")
  3) change paper size back to Letter (8.5" x 11")
  4) controls cannot be placed on right side or bottom of chart.
  It appears that instead of using the current dimensions of the chart paper size to determine where controls may be placed, the smallest dimensions that have ever been applied to the chart are used.
  I am looking for a workaround for this issue since I would like to use a paper size large than 8.5" x 11", but I cannot place controls on such a chart properly at this time.
  Any ideas?

  I have found a workaround for this issue:
  1) change paper size in your default printer's preferences to the paper size you want in Excel.
  2) afterwards insert or create the chart. It is automatically the correct paper size, and controls can be placed or moved properly.
  3) change default printer paper size back.
  In case your chart has already been created, simply copy the existing chart in step 2 instead of inserting/creating.
  Aidan
  Edit: credit to http://webdesignerpark.blogspot.com/2013/02/paper-size-to-set-your-default-paper.htmlfor the idea on changing default paper size.

• Link Aggregation dladm on T2000 with 2 e1000g. How can i change mtu size

  Hello
  I made a Link Aggregation on a T2000 with e1000g1 & e1000g2 successfully.
  Now i want to raise up the mtu size to mtu 9000 for the aggregation.
  I tried /etc/hostname.aggr
  mtu 9000
  unsuccessfully- MTU size still 1500
  /kernel/drv/etc/e1000g.conf
  setting Max Fram Size for 1 2 3 interface to 2(upto 8k)
  also not successfully
  MaxFrameSize=0,2,2,2;
  # 0 is for normal ethernet frames.
  # 1 is for upto 4k size frames.
  # 2 is for upto 8k size frames.
  # 3 is for upto 16k size frames.
  # These are maximum frame limits, not the actual ethernet frame
  # size. Your actual ethernet frame size would be determined by
  # protocol stack configuration (please refer to ndd command man pages)
  # For Jumbo Frame Support (9k ethernet packet)
  # use 3 (upto 16k size frames)
  Has someone an idea?
  thanx for advice

  Bug is described:
  http://sunsolve.sun.com/search/document.do?assetkey=1-1-6326664-1
  Solution is
  T-Patch 125020-01
  Message was edited by:
  sunibk

• Out of the box Media Web Part in VideoPlayerPage.aspx is not video loading dynamically after changing Media Setting

  Hi,
      We are on SharePoint 2013 and we are using the default SharePoint 2013 Asset Library to upload videos. We are using purely out of the box sharepoint 2013 with no customization at all.
  When we click on any videos, It will lead us to the videoPlayerPage.aspx and plays the video that we click on which is what we wanted. But we do not want the player to play videos on load thus we did the following action
   Edit Page 
   Click on the Media Web Part checkbox and the Media Tab in the Ribbon appears
   Uncheck "Start Media Automatically"
   Stop Editing
  After doing this, no matter whatever video was click, it will only load the video which we perform the action on.
  How can we undo this change or revert back as we need the videoplayerpage.aspx to load video based on what we click in Asset Library? 
  Thank you.
  Best Regards
  Alex Lee

  I just did this myself and it did the same to me when editing it via the page editing.
  If you open in SharePoint Designer, you can browse to the page (/Forms/Video/VideoPlayerPage.aspx) and change the property in the HTML.  This will keep the web part properties from getting overwritten in the DB.  You will then be able to open each
  video without it playing automatically.
  NOTE:  You need to delete the asset library, then add it back in order to apply this.
  Chris Givens CEO, Architecting Connected Systems
  Blog Twitter

• MPLS: changing mtu-size on a fast reroute tunnel

  Hi,
  please can someone tell me how to change the MTU of a fast reroute tunnel interface ?
  Best regards

  You should be able to change the MTU on the interface tunnel itself. Using the "ip MTU xxx" command.
  Regards,
  Niranjan

• Warp Stabilising footage after changing the size of the video frame size

  Hi everyone. I was wondering if anyone could resolve a problem I'm having with Warp Stabiliser in Adobe Premiere Pro CC. So I'm editing a video for a client and unfortunately a few scenes feature some camera shake, which don't look that aesthetically pleasing so I'm trying my best to get rid of the shake using Warp Stabiliser. I altered the frame size of the video from 1920x1080 to 1920x800 so I can have the 12:5 anamorphic look, however when I try to use Warp Stabiliser now a message pops up saying that it requires clip dimensions to match sequence and that I can fix it by nesting. I'm confused by this, I was wondering if anyone could help me by letting me know how to get round this, cause I would hate to have to do the entire video agin just because I altered the frame size. Thanks a lot.

  For the warp to do its thing the clip needs to be the same as the sequence settings.
  If not you get a warning like you have experienced. The only way to solve this is to nest the clip and then apply the warp to that nest.
  On a side note i would edit everything in 1820x1080 and on export make it 1920x800.
  For reference in your edit you can make a pillerbox matte in the titler.

• JFrame content displayed only after changing frame size

  Hello everybody,
  could someone explain to me why the content in this frame:
  public class PHPTableReport extends JFrame {
       public PHPTableReport() {
            getContentPane().setLayout(null);
            final JLabel newAppletLabel = new JLabel();
            newFrameLabel.setBorder(new BevelBorder(BevelBorder.LOWERED));
            newFrameLabel.setBackground(Color.BLUE);
            newFrameLabel.setText("New Frame");
            newFrameLabel.setBounds(10, 10, 50, 58);
            getContentPane().add(newAppletLabel);
       }when invoked like this (in a JApplet):
  PHPTableReport pHPTFrame =  new PHPTableReport();
  pHPTFrame.setVisible (true);
  pHPTFrame.setBounds(300, 300, 800, 600);only displays after dragging the window/frame bigger or smaller?
  Thanks in advance again
  Jan

  Change this :
  pHPTFrame.setVisible (true);
  pHPTFrame.setBounds(300, 300, 800, 600);To:
  pHPTFrame.setBounds(300, 300, 800, 600);
  pHPTFrame.setVisible (true);

• Not able to change the size of the Drive

  Hello ,
  I have a template with 50 GB C drive and I want to a create a VM having 100 GB C drive using this template  . But I am not able to change C drive size from the edit settings . After changing the size from the edit settings to 100 Gb , I found that in newly created VM the size of the C drive was 50 Gb.
  If it is possible to change the C drive size to 100 Gb without making any changes in template ?
  Can anyone suggest me how to do this ?

  This question should be posted in a forum area related to a product - are you using vSphere, and if so which version?

• MTU Size Issue on Cisco 3560 Switch

  Could anybody tell me how to change MTU Size on a Cisco 3560 Switch.i mean to say whether it is to be changed on FastEthernet Interfaces or on VLAN 1 or on Global Configuration Mode and with which Command to change it.

  I am using MPLS on my Routers and the MTU size i have set on my Router Interfaces is 1524.
  When i do a normal ping from Customer's one site to another (where my Traffic has to pass through this Switch VLAN)i get a reply , but when a Ping with a Byte Size of 1500 or more the Packets get completely dropped.
  I think due to MTU Mistach bet. Switch and Router the Packets r getting droped,that is why i was trying to change it.
  could the Packets get dropped because of this reason.Please suggest.

• PSE8 unusual high CPU load

  Dear members and supporters,
  after a new clean install of PSE8 on a MacBook Pro dual core 2,4GHz / 2GB RAM / OS 10.5. latest version the CPU load right after program start represents a normal idle value of about 1 percent. After opening an image the load goes up to about 34 percent without any further usage of PSE8 and remains on this value. That's the case with different images of about 3 - 5 MB (from digital cameras) and it's reproducable. When working in PSE on the image the load will run on 100 percent and more on one processor core and not very less on the other.
  After closing the image (no matter if manipulated or not) the load still remains on 34 percent.
  With a newer system on another MacBook Pro with Mac OS 10.6 latest version, the unusual load ist quite similar. There it's about 1 percent after start and about 15 percent CPU load on both cores after opening an image. Here as well with no further usage of the program. Also here it remains on this level after closing the image.
  So when starting PSE and working on images the system load is always at about 100 percent, fan is blowing with full power and won't slow down again even after hours. In general the fan is rarely in progress and never on this level. Also PSE8 slows down the entire system when working with other applications nearby. No difference if the image is bigger or not.
  Is there already a work-around or fix for this problem available?
  In my eyes the problem is obviously caused by PSEs code - no other application shows a behaviour like this. Also in activity manager on Mac OS PSE8 has an entry as no 64bit app. When will this be a real 64bit application?
  Best regards, Peer

  My experience has been that running Mainstage on my Macbook Air 11 (2ghz i7/8gb ram/Intel HD Graphics 4000 512 MB) with an external monitor makes Mainstage unusable. A concert that runs at ~40-50% CPU on the laptop screen peaks at over 110-120%+ with my 27" Thunderbolt display.
  It makes it a drag editing programs, while holding a guitar, looking at an 11" screen when a 27" is sitting next to the laptop unusable.
  The MBAir 11 works great on gigs with Mainstage and no external monitor though. It makes for a light, but a bit delicate (as with any laptop), setup.
  For a program that's supposed to "just work" Mainstage has a very deep, and sometimes very obtuse, learning curve. And I've used Logic for 20 years now.

• Hwmond high cpu load after 10.6.8 update

  hwmond is causing up to 70% cpu load after every reboot on several xserves i manage caused by the update to 10.6.8. anybody else having this problem? it can be solved by hwmond -s5 to set the hwmond interval to 5 seconds but this command is not processed properly, is causing an error message "IOConnectMethodScalarIScalra0 call return err = 0xE00002BC" and has to be exited with cmd+c. Also, the com.apple.hwmond.plist in LaunchDaemons is empty.

  In my case:
  I installed 10.6.8 via the Combo Update, was running 10.6.7 previous to this.
  /System/Library/LaunchDaemons/com.apple.hwmond.plist still exists and is not empty
  /etc/hwmond.SMART still exists and is not empty
  /etc/hwmond.conf didn't exist, so from Terminal.app I simply issued "sudo touch /etc/hwmond.conf"
  I tried:
  In Terminal.app, ran:sudo launchctl unload /System/Library/LaunchDaemons/com.apple.hwmond.plist
  Then, backed up /usr/sbin/hwmond and /System/Library/LaunchDaemons/com.apple.hwmond.plist
  From a Mac Pro running 10.6.7 Server, copied both the binary and the plist to the same spots on the Xserve, then, in Terminal.app, ran:sudo launchctl load /System/Library/LaunchDaemons/com.apple.hwmond.plist
  That didn't change a thing. hwmond still spiked.
  Put everything back the way it was.
  And:
  In Terminal.app, ran:sudo launchctl unload /System/Library/LaunchDaemons/com.apple.hwmond.plist
  Backed up /System/Library/LaunchDaemons/com.apple.hwmond.plist
  Made another copy to the Desktop
  Edited this copy and added a string in ProgramArguments with a value of "-S255", but this still caused hwmond to spike after putting this copy back in LaunchDaemons, repairing permissions, and loading the plist via launchctl again. Any valid value still caused it to spike. However my Xserve now reboots if I set the value to an invalid value, like "-s256". Then again this also caused com.apple.hwmond and com.apple.launchd to create entries in the system log complaining about the value with hwmond attempting to relaunch itself every 10 seconds:
  6/24/11 2:37:10 PM com.apple.hwmond[2697] hwmond: n should be 1 to 255 seconds
  6/24/11 2:37:10 PM com.apple.launchd[1] (com.apple.hwmond[2697]) Exited with exit code: 1
  6/24/11 2:37:10 PM          com.apple.launchd[1] (com.apple.hwmond) Throttling respawn: Will start in 10 seconds
  OP, Armin, did something similar, but I think he tried doing it directly in Terminal, not using launchctl / launchd, which caused the error he mentioned.
  Finally, added a "Disabled" item, with a boolean value of YES to the plist, recopied it, repaired permissions again (launchctl will complain and won't load the plist if you don't). This way hwmond is disabled, I can reboot my Xserve, and wait until Apple figures this out.
  Full com.apple.hwmond.plist on my Xserve looks like this now:
  <?xml version="1.0" encoding="UTF-8"?>
  <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
  <plist version="1.0">
  <dict>
            <key>Label</key>
            <string>com.apple.hwmond</string>
            <key>OnDemand</key>
            <false/>
            <key>Program</key>
            <string>/usr/sbin/hwmond</string>
            <key>ProgramArguments</key>
            <array>
                      <string>hwmond</string>
                      <string>-s255</string>
            </array>
            <key>ServiceIPC</key>
            <false/>
            <key>Disabled</key>
            <true/>
  </dict>
  </plist>
  Edit: I too have filed a bug report with a link to this thread included.
  Second Edit: Server Monitor.app still works after disabling hwmond via the plist even after a reboot.
  Third Edit: Sorry, keep remembering things, a modified /usr/sbin/hwmond was included the 10.6.8 Server Combo Update package, but not the Delta. Not sure if this matters. How has everyone updated to 10.6.8 so far? Like I mentioned, I used the Combo.

• MTU Size Problem Loading Certain Webpages

  Hello Colleagues,
  I'm having a strange problem dealing with MTU sizes and loading certain webpages. I am aware of the default Microsoft MTU of 1500 and also using GRE IPSEC Tunnels recommended at MTU size 1400. I have since manually set some users PC's to MTU of 1400 and most of those users are experiencing no issues. However, there are a few users who still experience website loading issues even though I have manually changed their MTU size to 1400.
  These are domain accounts will the same image loads on their machines, so all have the same permissions, rights, firewall settings, etc. They all use the same LAN, switches, and routers.
  Here are the router configs, router 1 and router 2
  Router 1
  Current configuration : 9006 bytes
  version 15.3
  no service pad
  service timestamps debug datetime msec localtime
  service timestamps log datetime msec localtime
  service password-encryption
  hostname R-US-RS-WVPN1
  boot-start-marker
  boot system flash:c1900-universalk9-mz.SPA.153-1.T1.bin
  boot system flash:c1900-universalk9-mz.SPA.151-3.T1.bin
  boot-end-marker
  logging buffered 64000
  enable secret 5 *removed*
  no aaa new-model
  clock timezone CET 1 0
  clock summer-time CET recurring last Sun Mar 2:00 last Sun Oct 3:00
  errdisable recovery cause udld
  errdisable recovery cause bpduguard
  errdisable recovery cause rootguard
  errdisable recovery cause pagp-flap
  errdisable recovery cause dtp-flap
  errdisable recovery cause link-flap
  errdisable recovery interval 303
  ip cef
  ip domain name corp.com
  ip name-server 10.###.8.21
  ip name-server 10.###.8.96
  ip inspect dns-timeout 90
  ip inspect tcp idle-time 60
  ip inspect name fw smtp timeout 120
  ip inspect name fw ftp timeout 120
  ip inspect name fw realaudio
  ip inspect name fw tftp timeout 30
  ip inspect name fw udp timeout 30
  ip inspect name fw tcp timeout 60
  no ipv6 cef
  multilink bundle-name authenticated
  crypto pki trustpoint TP-self-signed-316595902
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-316595902
  revocation-check none
  rsakeypair TP-self-signed-316595902
  crypto pki certificate chain TP-self-signed-316595902
  certificate self-signed 01
    *removed*
          quit
  license udi pid CISCO1921/K9 sn FTX153182M8
  spanning-tree vlan 229 priority 8192
  redundancy
  ip ssh version 2
  crypto isakmp policy 10
  hash md5
  authentication pre-share
  lifetime 3600
  crypto isakmp key *removed* address 70.###.172.142
  crypto isakmp key *removed* address 184.###.###.254
  crypto isakmp keepalive 35 11
  crypto ipsec transform-set FY-WVPN-Tunnel esp-aes esp-md5-hmac
  mode tunnel
  crypto map vpn 10 ipsec-isakmp
  set peer 70.###.172.142
  set peer 184.###.###.254
  set transform-set FY-WVPN-Tunnel
  match address gre-tunnel-list
  interface Loopback0
  ip address 10.###.0.10 255.255.255.255
  interface Tunnel2291
  description Primary-TimewarnerTelecom-Ral-FayWVPN1
  ip address 10.###.99.26 255.255.255.252
  no ip redirects
  cdp enable
  tunnel source 66.###.161.126
  tunnel destination 184.###.###.254
  crypto map vpn
  interface Tunnel2293
  description Primary-TimewarnerTelecom-Ral-FayWVPN2
  ip address 10.###.99.154 255.255.255.252
  no ip redirects
  cdp enable
  tunnel source 66.###.161.126
  tunnel destination 70.###.172.142
  crypto map vpn
  interface Embedded-Service-Engine0/0
  no ip address
  shutdown
  interface GigabitEthernet0/0
  description TW Telecom/DMVPN1
  ip address 66.###.161.126 255.255.255.252
  ip access-group Block-Internet in
  ip access-group Block-Internet out
  duplex auto
  speed auto
  no cdp enable
  crypto map vpn
  interface GigabitEthernet0/1
  no ip address
  duplex auto
  speed auto
  interface GigabitEthernet0/0/0
  switchport access vlan 229
  no ip address
  interface GigabitEthernet0/0/1
  switchport access vlan 229
  no ip address
  interface GigabitEthernet0/0/2
  switchport access vlan 229
  no ip address
  interface GigabitEthernet0/0/3
  description PBX Eth1
  switchport access vlan 229
  no ip address
  interface Vlan1
  no ip address
  shutdown
  interface Vlan229
  ip address 10.###.229.253 255.255.255.0
  ip helper-address 10.###.231.201
  standby 229 ip 10.###.229.254
  standby 229 priority 105
  standby 229 preempt
  router eigrp 100
  network 10.0.0.0
  ip forward-protocol nd
  no ip http server
  ip http secure-server
  ip route 70.###.172.142 255.255.255.255 66.###.161.125
  ip route 184.###.###.254 255.255.255.255 66.###.161.125
  ip route 205.###.96.180 255.255.255.252 66.###.161.125
  ip access-list extended Block-Internet
  permit esp host 66.###.161.126 host 184.###.###.254
  permit esp host 184.###.###.254 host 66.###.161.126
  permit udp host 66.###.161.126 host 184.###.###.254 eq isakmp
  permit udp host 184.###.###.254 host 66.###.161.126 eq isakmp
  permit esp host 66.###.161.126 host 70.###.172.142
  permit esp host 70.###.172.142 host 66.###.161.126
  permit udp host 66.###.161.126 host 70.###.172.142 eq isakmp
  permit udp host 70.###.172.142 host 66.###.161.126 eq isakmp
  permit icmp host 66.###.161.126 host 184.###.###.254
  permit icmp host 184.###.###.254 host 66.###.161.126
  permit icmp host 66.###.161.126 host 70.###.172.142
  permit icmp host 70.###.172.142 host 66.###.161.126
  permit icmp any any echo-reply
  permit icmp any any time-exceeded
  permit icmp any any packet-too-big
  permit icmp any any traceroute
  permit icmp any any unreachable
  deny   ip any any
  deny   icmp any any
  ip access-list extended gre-tunnel-list
  permit gre host 66.###.161.126 host 184.###.###.254
  permit gre host 66.###.161.126 host 70.###.172.142
  logging host 10.100.###.254
  logging host 10.100.###.246
  snmp-server community a RW 20
  snmp-server community r RO 20
  snmp-server community a RW 20
  snmp-server community r RO 20
  snmp-server community P_RW RW
  snmp-server community P_RO RO
  snmp-server enable traps entity-sensor threshold
  snmp-server host 10.100.###.246 public
  snmp-server host 10.100.###.254 public
  access-list 20 permit 10.###.9.3
  access-list 20 permit 10.###.8.16
  access-list 20 permit 10.100.###.249
  access-list 20 permit 10.100.###.254
  access-list 20 permit 10.100.###.246
  control-plane
  banner motd ^CCCCCCC
  ****************** Warning! Warning! Warning! ********************
  This system is restricted to authorized users for business
  purposes.  Unauthorized access is a violation of the law.  This
  service may be monitored for administrative and security reasons.
  By proceeding, you consent to this monitoring
  ****************** Warning! Warning! Warning! ********************
  ^C
  line con 0
  login local
  line aux 0
  line 2
  no activation-character
  no exec
  transport preferred none
  transport input all
  transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
  stopbits 1
  line vty 0 4
  exec-timeout 60 0
  password 7 *removed*
  login local
  transport input ssh
  line vty 5 15
  exec-timeout 60 0
  password 7 *removed*
  login local
  transport input ssh
  scheduler allocate 20000 1000
  ntp server 10.###.8.8 prefer
  ntp server 10.###.231.200 prefer
  ntp server 10.###.8.69
  ntp server 10.###.1.6 prefer
  end
  Router 2
  Current configuration : 9013 bytes
  version 15.3
  no service pad
  service timestamps debug datetime msec localtime
  service timestamps log datetime msec localtime
  service password-encryption
  hostname R-US-RS-WVPN2
  boot-start-marker
  boot system flash:c1900-universalk9-mz.SPA.153-1.T1.bin
  boot system flash:c1900-universalk9-mz.SPA.151-3.T1.bin
  boot-end-marker
  logging buffered 64000
  logging console critical
  enable secret 5 *removed*
  no aaa new-model
  clock timezone CET 1 0
  clock summer-time CET recurring last Sun Mar 2:00 last Sun Oct 3:00
  errdisable recovery cause udld
  errdisable recovery cause bpduguard
  errdisable recovery cause rootguard
  errdisable recovery cause pagp-flap
  errdisable recovery cause dtp-flap
  errdisable recovery cause link-flap
  errdisable recovery interval 303
  ip cef
  ip domain name corp.mann-hummel.com
  ip name-server 10.###.8.21
  ip name-server 10.###.8.96
  ip inspect dns-timeout 90
  ip inspect tcp idle-time 60
  ip inspect name fw smtp timeout 120
  ip inspect name fw ftp timeout 120
  ip inspect name fw realaudio
  ip inspect name fw tftp timeout 30
  ip inspect name fw udp timeout 30
  ip inspect name fw tcp timeout 60
  ipv6 multicast rpf use-bgp
  no ipv6 cef
  multilink bundle-name authenticated
  crypto pki trustpoint TP-self-signed-3179596086
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-3179596086
  revocation-check none
  rsakeypair TP-self-signed-3179596086
  crypto pki certificate chain TP-self-signed-3179596086
  certificate self-signed 01
    *removed*
          quit
  license udi pid CISCO1921/K9 sn FTX153182M2
  spanning-tree vlan 229 priority 1###84
  redundancy
  ip ssh version 2
  crypto isakmp policy 10
  hash md5
  authentication pre-share
  lifetime 3600
  crypto isakmp key *removed* address 70.###.172.142
  crypto isakmp key *removed* address 184.###.###.254
  crypto isakmp keepalive 35 11
  crypto ipsec transform-set Fay-Ral-WVPN-Tunnel esp-aes esp-md5-hmac
  mode tunnel
  crypto map vpn 10 ipsec-isakmp
  set peer 184.###.###.254
  set peer 70.###.172.142
  set transform-set Fay-Ral-WVPN-Tunnel
  match address gre-tunnel-list
  interface Loopback0
  ip address 10.###.0.12 255.255.255.255
  interface Tunnel2292
  description Failover-TimewarnerCable-Ral-Fay-WVPN2
  ip address 10.###.99.30 255.255.255.252
  no ip redirects
  cdp enable
  tunnel source 96.###.25.226
  tunnel destination 184.###.###.254
  crypto map vpn
  interface Tunnel2294
  description Failover-TimewarnerCable-Ral-Fay-WVPN2
  ip address 10.###.99.158 255.255.255.252
  no ip redirects
  cdp enable
  tunnel source 96.###.25.226
  tunnel destination 70.###.172.142
  crypto map vpn
  interface Embedded-Service-Engine0/0
  no ip address
  shutdown
  interface GigabitEthernet0/0
  description Fay-Ral WVPN
  ip address 96.###.25.226 255.255.255.252
  ip access-group Block-Internet in
  ip access-group Block-Internet out
  duplex auto
  speed auto
  no cdp enable
  crypto map vpn
  interface GigabitEthernet0/1
  no ip address
  shutdown
  duplex auto
  speed auto
  interface GigabitEthernet0/0/0
  switchport access vlan 229
  no ip address
  interface GigabitEthernet0/0/1
  switchport access vlan 229
  no ip address
  interface GigabitEthernet0/0/2
  switchport access vlan 229
  no ip address
  interface GigabitEthernet0/0/3
  description PBX Eth2
  switchport access vlan 229
  no ip address
  interface Vlan1
  no ip address
  shutdown
  interface Vlan229
  ip address 10.###.229.252 255.255.255.0
  ip helper-address 10.###.231.201
  standby 229 ip 10.###.229.254
  standby 229 preempt
  router eigrp 100
  network 10.0.0.0
  ip forward-protocol nd
  no ip http server
  ip http secure-server
  ip route 70.###.172.142 255.255.255.255 96.###.25.225
  ip route 184.###.###.254 255.255.255.255 96.###.25.225
  ip route 205.###.96.180 255.255.255.252 66.###.161.125
  ip access-list extended Block-Internet
  permit esp host 96.###.25.226 host 184.###.###.254
  permit esp host 184.###.###.254 host 96.###.25.226
  permit udp host 96.###.25.226 host 184.###.###.254 eq isakmp
  permit udp host 184.###.###.254 host 96.###.25.226 eq isakmp
  permit esp host 96.###.25.226 host 70.###.172.142
  permit esp host 70.###.172.142 host 96.###.25.226
  permit udp host 96.###.25.226 host 70.###.172.142 eq isakmp
  permit udp host 70.###.172.142 host 96.###.25.226 eq isakmp
  permit icmp host 96.###.25.226 host 184.###.###.254
  permit icmp host 184.###.###.254 host 96.###.25.226
  permit icmp host 96.###.25.226 host 70.###.172.142
  permit icmp host 70.###.172.142 host 96.###.25.226
  permit icmp any any echo-reply
  permit icmp any any time-exceeded
  permit icmp any any packet-too-big
  permit icmp any any traceroute
  permit icmp any any unreachable
  deny   ip any any
  deny   icmp any any
  ip access-list extended gre-tunnel-list
  permit gre host 96.###.25.226 host 184.###.###.254
  permit gre host 96.###.25.226 host 70.###.172.142
  logging host 10.100.###.254
  logging host 10.100.###.246
  snmp-server community P_RW RW
  snmp-server community P_RO RO
  snmp-server community a RW 20
  snmp-server community r RO 20
  snmp-server community a RW 20
  snmp-server community r RO 20
  snmp-server enable traps entity-sensor threshold
  snmp-server host 10.100.###.246 public
  snmp-server host 10.100.###.254 public
  access-list 20 permit 10.###.9.3
  access-list 20 permit 10.###.8.16
  access-list 20 permit 10.100.###.249
  access-list 20 permit 10.100.###.254
  access-list 20 permit 10.100.###.246
  control-plane
  banner motd ^CCCCCC
  ****************** Warning! Warning! Warning! ********************
  This system is restricted to authorized users for business
  purposes.  Unauthorized access is a violation of the law.  This
  service may be monitored for administrative and security reasons.
  By proceeding, you consent to this monitoring
  ****************** Warning! Warning! Warning! ********************
  ^C
  line con 0
  login local
  line aux 0
  line 2
  no activation-character
  no exec
  transport preferred none
  transport input all
  transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
  stopbits 1
  line vty 0 4
  exec-timeout 60 0
  password 7 *removed*
  login local
  transport input ssh
  line vty 5 15
  exec-timeout 60 0
  password 7 *removed*
  login local
  transport input ssh
  scheduler allocate 20000 1000
  ntp server 10.###.8.8 prefer
  ntp server 10.###.231.200 prefer
  ntp server 10.###.8.69
  ntp server 10.###.1.6 prefer
  end

  UPDATE
  I have since applied the following config to the tunnel interfaces:
  ip mtu 1400
  ip tcp adjust-mss 1400
  tunnel path-mtu-discovery
  This worked and I was able to reset each users PC to default MTU size of 1500, but only until just now. I got a call from a user who explained that he wasn't able to reach some websites, again.
  Sure enough, I've just confirmed that all of the users are unable to access the websites any longer.
  This is crazy, does anyone have any ideas?

• How do you change the MTU size in a Cisco 871?

  This 871 is at a remote site and is an ezvpn IPsec client (network extension mode) back to a 3030 headend.
  We're having problems with a PC trying to connect through the IPsec tunnel and we think it may be an MTU size problem.
  Int F4 is the outside interface.
  We are using a virtual-template associated with the crypto ipsec client ezvpn statement.
  When I go into any of the 871 interfaces and type 'mtu 1370' it errors out with 'The F4 (or whatever interface) does not allow manual MTU size configuration.
  If I type 'ip mtu 1370' on F4 (or vlan1 or virtual-template 1) this is accepted, but when I do a 'show int f 4', it still shows MTU of 1514 - even after a reload.
  What is the correct way to set the MTU size in the 871 router - and is it best set on the F4 interface, the vlan, or the virtual-template interface?

  Hi
  As per the supporting doc Cisco 871 has one want ethernet interface and 2 switch ports.
  I feel you are trying to change the mtu under the switch port which may not be possible.
  You can refer the below link for more info..
  http://www.cisco.com/en/US/products/hw/routers/ps380/products_data_sheet0900aecd8028a976.html
  regds