Input packet drops on uplink port-profile

Similar Messages

• SCVMM2012r2 UR3 : Even with no Virtual switch assigned, an uplink port profile remains

  Hi,
  What I'm tryng to do, is to unassign an uplink set on my host, set to the wrong NIC (actually, on 3 NIC, event if I specified 2 when I added the logical switch...).
  To proceed, I deleted the Logical Switch assigned in the host properties on Virtual Switches tab.
  On my host, the teaming has been deleted, but unfortunately, on one of my NIC, the subnet set in my Logical Network subsit in "Logical Network Connectivity" and is greyed out.
  It's said "The subnet an VLAN information is set by an uplink port profile set 'tVMNet' associated to this host an cannot be changed here".
  But, if I removed the virtual switch, how can it be?
  Thanks for any advice, I'm stuck

  Hi all,
  I did finaly remove the cluster from SCVMM and added it back, and it's working now. No more ghost config remaining.
  I'm working on SCVMM from 3 days now, and I'm really not sure that's the easy to use tool we need to manage our small private cloud... It's buggy, slow, oposite of ergonomic and far too much cloud provider oriented...

• SCVMM 2012R2 - change port profiles and logical Switches

  Dear all,
  we are runnings a few clusters with Hyper-V 2012R2, managed by SCVMM 2012R2.
  I have configurad a Logical switch "Cluster-Default" with the necessary Logical networks, Port Pofiles etc., everything works fine.
  Now I have to make an additional network available to some of our VMs that is currently not configured in the Switch and the Uplink Port profile.
  Can I add Logical and VM Networks to a port profile that is "in use"?
  If Yes, how will these changes be applied to the hosts that are using the switches?
  (I have searched through technet and have found a lot about creating switches and profiles, but not about changing them)
  If No - how can I proceed?
  best regards
  Markus

  Yes, Network Sites can be added to Uplink Port Profiles that are in use.  The VM Networks for the associated Logical Networks will then be available for use by vNics connected to the Logical Switch using the updated Uplink Port Profile.

• SR-IOV Uplink Port with NIC Teaming

  Hello,
  I'm trying to setup my uplink port profile and logical switch with NIC Teaming and SR-IOV support. In Hyper-V this was easy, just had to create the NIC Team (which I configured as Dynamic & LACP) then check the box on the virtual switch.
  I'm VMM it does not seem to like to enable NIC Teams with SR-IOV:
  Can anyone advise? I'm not using any virtual ports. I just want all my VMs to connect to the physical switch though the LACP NIC Team, something which I thought would be simple.
  I have a plan B - don't use Microsoft's NIC Teaming and instead use the Intel technology to present all the adapters as one to the host. I'd rather no do this.
  Thanks
  MrGoodBytes

  Hi Sir,
  "SR-IOV does have certain limitations. If you configure port access control lists (ACLs), extensions or policies in the virtual switch, SR-IOV is disabled because its traffic totally bypasses the switch.
  You can’t team two SR-IOV network cards in the host. You can, however, take two physical SR-IOV NICs in the host, create separate virtual switches and team two virtual network cards within a VM. "
  There is really a limitation when using NIC teaming :
  http://technet.microsoft.com/en-us/magazine/dn235778.aspx
  Best Regards,
  Elton Ji 
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] .

• Physical computer profile "Error 21505" setting management vNic port profile

  Hi
  Versions: WS2012R2, VMM 2012R2 CU4.
  I am creating a Physical computer profile for bare metal deployment of hosts that will eventually form a Hyper-V cluster. I have 4 pNics and have configured 2 pNics as a switch for the VMs (guest traffic). The last two pNics are form a logical
  switch with three vNics for host comms (management, heartbeat and Live Migration). The problem I am facing is that when I set the port classification for the management vNic to "Host management" the job returns the following
  error:
  Error 21505
  The specified network adapter profile cannot be removed because it is associated with another network adapter profile as a transient management network adapter.
  Recommended Action
  To remove this network adapter profile, first remove the associated network adapter profile.
  As indicated by the error I do have a pNic set as a transient management network adapter, and this has an uplink port profile set (as it is used to create the switch required for host comms). I don't get why this isn't working and I can't find anything
  online regarding the error. Does anyone have any ideas on how to get this to work?
  I should mention that I created the (almost) excact profile pre CU4 and this produced no error in the jods view.
  /Trond

  Hi Sir,
  >>I should mention that I created the (almost) excact profile pre CU4 and this produced no error in the jods view.
  Please try to keep it up-to-date .
  The latest UR is 5 :
  http://blogs.technet.com/b/scvmm/archive/2013/04/10/update-rollup-5-for-system-center-2012-vmm-2012-fixes.aspx
  Best Regards,
  Elton Ji
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] .

• System vlan an port-profile

  I have a profile uplink which include a system vlan of 50, 60, 220
  thne i also have a port profile for vlan 50 and 60
  but when i connect a vm to this port group, i do not get any connection.
  however other vlans that are not set as system vlan on the uplink are working fine on their own port group.
  any idea why?

  here is an example from my configs I use.
  port-profile type ethernet system-uplink-03
  vmware port-group
  switchport mode trunk
  switchport trunk native vlan 1034
  switchport trunk allowed vlan 1031-1034
  channel-group auto mode on mac-pinning
  no shutdown
  system vlan 1031-1033
  description  Development system profile for critical ports and vm traffic
  state enabled
  1031-1034 are vmware mgmt, ip storage and vmotion in this instance vcenter was in a different environment I have I think about 12 different system uplink port profiles
  here is a port-profile:
  port-profile type vethernet 03-development-vmsc
  capability l3control
  vmware port-group
  switchport mode access
  switchport access vlan 1031
  no shutdown
  system vlan 1031
  max-ports 32
  description 03 Development ESXi Management
  state enabled
  hope this helps.

• Nexus 1000V - port-profile for VSM and VEM on same host

  Hello,
  I'm trying to run the VSM and VEM on the same host. At first I connected the VSM to the vSwitch. This works fine. Then I tried to move the VSM behind its own VEM.
  I have 3 different VLANs for management, control and packet traffic. Is it possible to connect the three VSM interfaces (management, control and packet) to only one port-profile, in which these three different VLANs are configured in a trunk? Or do I have to configure for each interface a separate port-profile, if I am using three different VLANs?
  Thanks
  Tobias

  Hello,
      The VSM does not emit VLAN-tagged frames. Therefore, its ports need to be configured in access mode. If your Control and Packet VLANs are the same, you could use the same port profile for both.
  Please make sure that the access VLAN is a system VLAN for all three ports.
  On a related note, if the VSM's storage is on NFS or iSCSI, the storage vmknic needs a system port profile as well. More info at:
  http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3/getting_started/configuration/guide/n1000v_gsg_5vsm_behind_vem.html

• Packet drops on 2960 with port-security enabled

  Hello,
  We are using the following port-security configuration on user access ports on Cisco 2960 switches, in order to protect the infrastructure to prevent MAC flooding attacks:
  switchport port-security maximum 10 switchport port-security switchport port-security aging time 1 switchport port-security violation restrict switchport port-security aging type inactivity
  There is a problem with the more "quiet" hosts, especially in technology - every time the MAC address ages out, the first packets (an ARP request usually) sent by the host is dropped by the switch. There is no violation logged, the switch should be OK to forward the packets but doesn't:
  Port Security              : EnabledPort Status                : Secure-upViolation Mode             : RestrictAging Time                 : 1 minsAging Type                 : InactivitySecureStatic Address Aging : DisabledMaximum MAC Addresses      : 10Total MAC Addresses        : 0Configured MAC Addresses   : 0Sticky MAC Addresses       : 0Last Source Address:Vlan   : 0011.aabb.ccdd:11Security Violation Count   : 0
  When port-security is turned off, all packets are forwarded without trouble. This is happening on both WS-C2960-24TT-L and WS-C2960-8TC-L, with IOS 12.2(35)SE1 and 12.2(50)SE5, respectively. I didn't check other models yet.
  I have found similar reports and bugs for the 2950 and 3750:
  https://supportforums.cisco.com/thread/163910
  https://supportforums.cisco.com/message/89560
  https://tools.cisco.com/bugsearch/bug/CSCeg63177
  https://tools.cisco.com/bugsearch/bug/CSCec21652
  Is there anything we can do to fix this?
  Is there an access switch that would not suffer from this problem? (Like 2960-S maybe?)
  Thank you.

  Hi Alioune,
  This is expected behaviour on the Nexus 1000v Ethernet interfaces when the uplinks are configured with MAC pinning.
  When using MAC pinning there's no special configuration of the ports on the upstream physical switches and so any broadcast packets are sent by the upstream switches on all uplinks towards the Nexus 1000v switch.
  On each VEM of the Nexus there's one uplink interface that is chosen as the Designated Receiver for broadcast traffic, and the function of the DR is to forward received broadcast traffic to VMs within the VLAN. The broadcast traffic received on any other uplinks of the VEM i.e., those that are not the acting as DR, drop the received broadcast traffic on ingress to the VEM.
  The drops you're seeing on the uplink interfaces are almost certainly the broadcast traffic being received on one or more non DR uplinks.
  Regards

• Why the Fibre uplink ports are down state even after giving no shutdown command at the interface

  Hi
  My Predecessors brought 2 CISCO 3750 switches and implemented LACP on these core switches. Due to looping in the network the Fibre uplink ports GigabitEthernet1/1/3 and GigabitEthernet2/1/3 are down (I think these uplink ports are mirrored in the LACP concept)
  Please see below from the configuration.
  I logged into the core switch and went to this particular interface GigabitEthernet1/1/3 and I gave the following command and still the port is in the down state after I gave no shutdown command. Do I need to give the same no shutdown command at interface GigabitEthernet2/1/3 as well ?
  Switch-Core1(config) interface GigabitEthernet1/1/3
  Switch-Core1(config-if)#no shutdown
  Switch-Core1(config-if)#
  Please see below  After no shutdown command given still these 2 Gigabit fibre uplink ports are down.
  GigabitEthernet1/0/20  unassigned      YES unset  up                    up
  GigabitEthernet1/0/21  unassigned      YES unset  down                  down
  GigabitEthernet1/0/22  unassigned      YES unset  down                  down
  GigabitEthernet1/0/23  unassigned      YES unset  down                  down
  GigabitEthernet1/0/24  unassigned      YES unset  up                    up
  GigabitEthernet1/1/1   unassigned      YES unset  up                    up
  GigabitEthernet1/1/2   unassigned      YES unset  up                    up
  GigabitEthernet1/1/3   unassigned      YES unset  down                  down
  GigabitEthernet1/1/4   unassigned      YES unset  up                    up
  Te1/1/1                unassigned      YES unset  down                  down
  Te1/1/2                unassigned      YES unset  down                  down
  GigabitEthernet2/0/1   unassigned      YES unset  up                    up
  GigabitEthernet2/0/2   unassigned      YES unset  up                    up
  GigabitEthernet2/0/3   unassigned      YES unset  up                    up
  GigabitEthernet2/0/4   unassigned      YES unset  down                  down
  GigabitEthernet2/0/5   unassigned      YES unset  up                    up
  GigabitEthernet2/0/6   unassigned      YES unset  down                  down
  GigabitEthernet2/0/7   unassigned      YES unset  down                  down
  GigabitEthernet2/0/8   unassigned      YES unset  up                    up
  GigabitEthernet2/0/9   unassigned      YES unset  up                    up
  GigabitEthernet2/0/10  unassigned      YES unset  down                  down
  GigabitEthernet2/0/11  unassigned      YES unset  down                  down
  GigabitEthernet2/0/12  unassigned      YES unset  down                  down
  GigabitEthernet2/0/13  unassigned      YES unset  down                  down
  GigabitEthernet2/0/14  unassigned      YES unset  up                    up
  GigabitEthernet2/0/15  unassigned      YES unset  up                    up
  GigabitEthernet2/0/16  unassigned      YES unset  up                    up
  GigabitEthernet2/0/17  unassigned      YES unset  up                    up
  GigabitEthernet2/0/18  unassigned      YES unset  up                    up
  GigabitEthernet2/0/19  unassigned      YES unset  down                  down
  GigabitEthernet2/0/20  unassigned      YES unset  up                    up
  GigabitEthernet2/0/21  unassigned      YES unset  down                  down
  GigabitEthernet2/0/22  unassigned      YES unset  up                    up
  GigabitEthernet2/0/23  unassigned      YES unset  down                  down
  GigabitEthernet2/0/24  unassigned      YES unset  up                    up
  GigabitEthernet2/1/1   unassigned      YES unset  up                    up
  GigabitEthernet2/1/2   unassigned      YES unset  up                    up
  GigabitEthernet2/1/3   unassigned      YES unset  down                  down
  GigabitEthernet2/1/4   unassigned      YES unset  up                    up
  Te2/1/1                unassigned      YES unset  down                  down
  Te2/1/2                unassigned      YES unset  down                  down
  Port-channel1          unassigned      YES unset  down                  down
  Port-channel2          unassigned      YES unset  down                  down
  Please  let me know if I am doing something wrong .Please post me some tutorial to sort this.

  It is possible you are overloading that little 4215. If that is the case you should also be seeing "missed packet percentage" messages in your events.
  How much traffic is your 4215 getting? Those sensors will start to drop packets for inspection at about 30 Mb/s.
  - Bob

• Best QOS Practice for a congested Uplink Port?

  I have an MPLS uplink port to a carrier that carries both voice and data.
  For example, Customer 3750 Switch 100MB Uplink--->100MB Uplink Carrier Router---Carrier Router 6MB MLPP Voice/Data MPLS Uplink with QOS configured for Voice subnet on carrier side too.
  The port occasionally suffers from overutilizition and spikes to the full 6MB
  I have a centralized CUCM that has phones that occasionally reset due to TCP 2000 timeouts (usually during the period of high utilization)
  So that I can avoid most phone resets during high utilization I have prioritized all voice traffic (signalling and RTP streams) to EF
  My question: What is best practice configuration for a congested uplink port? I'm going to assume the answer is it depends (the all great technical answer )
  Here are my thoughts on how to configure the 3750 uplink port so far:
  apply mls qos trust dscp
  apply priority-queue out
  (Here's where I'm looking for help)
  apply some sort of policing or bandwidth statement on the interface to protect the voice traffic: What are the recommendations and what would those configurations look like?
  I would apply these these configurations to the uplink ports at the edge site as well as the central site.
  Any thoughts as to the best way to accomplish this?

  Disclaimer
  The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
  Liability Disclaimer
  In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
  Posting
  You want to prioritize VoIP traffic at congestion points, which for you, looks to be whenever your LAN bandwidth hits your 6 Mbps WAN.
  If the carrier takes your 100 Mbps, and doesn't just generally police all traffic to 6 Mbps, but instead has different priority queues for the 6 Mbps, all you should need to do, is insure you traffic is correctly processed by your WAN vendor.  This, though, might require marking your traffic for the WAN provider.
  If you carrier first polices all your traffic at 6 Mbps (many do), then you need to shape the traffic (with you own prioritization) before the provider "sees" it.  If you need to "shape" on the 3750, there's a command to limit a port's bandwidth utilization, as a percentage.  However it's not exact, so you may need to "shape" slower than 6 Mbps to insure 6 Mbps won't be exceeded.  (BTW, for 6 Mbps, if you need to do QoS, you would be better off with an ISR.)
  You also mention 6 MLPPP, but it's unlclear what your device is for that.
  How to configure 3750 QoS is involved.  Basically when you enable QoS, each port has four dedicated egress queues.  By default, different traffic markings go into one of the four queues, each queue has same share of the bandwidth, and almost same share of the buffers.  The PQ command you noted, enables the first queue to always transmit its packets first.  Normally, you'll want to do that for VoIP bearer packets, which you've (insured are) directed to that queue.  You also want to insure that VoIP signally packets are not likley to be dropped and, more or less, are forwarded quickly.
  Cisco has multiple papers on QoS configurations, including papers for 3750s, so instead of my trying to present that, the above is intended as an overview.  Feel free to post additional questions, the more specific, the more likely you'll get an answer.

• ME 2600X input queue drops

  We have started to install ME2600X as access switch for FTTH
  Trunk ports are configured with rep and service instances
  These interfaces are facing Cat 4500X switches with rep edge ports. Northbound is a 6880X VSS and this is connected to the legacy network consisting of a couple of Cat6500 + loads of Catalyst switches
  We see loads of input queue drops in ME 2600X on the trunk interfaces. Even if I limit the allowed vlans out from the 4500X to the ME2600X the amount of dropped packets are still about half of the number of packets received on the interface.
  Captured traffic going out of the Cat4500X towards the ME 2600X showed mostly what I suspect is REP traffic. "Show mac traffic interface" show that all packers dropped are destined for "RP".
  We do not have clients on any ports yet so all traffic are inbound to the switch
  I need info and help troubleshooting this. What are the criteria for drops and how do I find what is dropped on this model?

  Config of REP port except the service instances
  interface TenGigabitEthernet0/45
   description TRAMAN-STH-02
   no ip address
   carrier-delay msec 200
   rep segment 1
   no keepalive
   soak link notification 10
   ip dhcp snooping trust
   l2protocol peer cdp lacp
   l2protocol forward stp vtp dtp pagp dot1x
  Here is an example of the amount of drops ver input
  Switch#show int te0/45
    Input queue: 0/75/337/0 (size/max/drops/flushes); Total output drops: 0
    5 minute input rate 59000 bits/sec, 10 packets/sec
  2659 packets input, 1976424 bytes, 0 no buffer
       Received 745 broadcasts (0 IP multicasts)
       0 runts, 0 giants, 0 throttles
       0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
       0 watchdog, 0 multicast, 0 pause input
  Switch#show int te0/45 summ
   *: interface is up
   IHQ: pkts in input hold queue     IQD: pkts dropped from input queue
   OHQ: pkts in output hold queue    OQD: pkts dropped from output queue
   RXBS: rx rate (bits/sec)          RXPS: rx rate (pkts/sec)
   TXBS: tx rate (bits/sec)          TXPS: tx rate (pkts/sec)
   TRTL: throttle count
    Interface                   IHQ       IQD       OHQ       OQD      RXBS      RXPS      TXBS      TXPS      TRTL
  * Te0/45                        0       533         0         0     64000        16      3000         3         0
  switch#show int te0/45 switching
  TenGigabitEthernet0/45 TRAMAN-STH-02
            Throttle count          0
                     Drops         RP    5491108         SP          0
               SPD Flushes       Fast          0        SSE          0
               SPD Aggress       Fast          0
              SPD Priority     Inputs          0      Drops          0
      Protocol  CDP
            Switching path    Pkts In   Chars In   Pkts Out  Chars Out
                   Process      17267    8029155      19179    7690779
              Cache misses          0          -          -          -
                      Fast          0          0          0          0
                 Auton/SSE          0          0          0          0
      Protocol  Other
            Switching path    Pkts In   Chars In   Pkts Out  Chars Out
                   Process          0          0    1150382  109509702
              Cache misses          0          -          -          -
                      Fast          0          0          0          0
                 Auton/SSE          0          0          0          0
      NOTE: all counts are cumulative and reset only after a reload.

• Packets Dropped In Hardware By CPU Subport on Catalyst 4507

  CHAN4507#sh platform cpu pac stat
  Packets Dropped In Hardware By CPU Subport (txQueueNotAvail)
  CPU Subport TxQueue 0 TxQueue 1 TxQueue 2 TxQueue 3
  0 0 0 0 71498709
  3 105952 0 0 0
  Packets Dropped In Processing Overall
  Total 5 sec avg 1 min avg 5 min avg 1 hour avg
  3914397 0 0 0 0
  Packets Dropped In Processing by CPU event
  Event Total 5 sec avg 1 min avg 5 min avg 1 hour avg
  Input Acl 338853 0 0 0 0
  SA Miss 13 0 0 0 0
  Packets Dropped In Processing by Priority
  Priority Total 5 sec avg 1 min avg 5 min avg 1 hour avg
  Normal 3913388 0 0 0 0
  Medium 21642 0 0 0 0
  High 996 0 0 0 0
  Crucial 3553902 0 0 0 0
  Packets Dropped In Processing by Reason
  Reason Total 5 sec avg 1 min avg 5 min avg 1 hour avg
  SrcAddrTableFilt 2 0 0 0 0
  L2DstDrop 15 0 0 0 0
  AclActionDrop 338853 0 0 0 0
  NoFloodPorts 3575527 0 0 0 0
  Total packet queues 16
  Packets Received by Packet Queue
  Queue Total 5 sec avg 1 min avg 5 min avg 1 hour avg
  Esmp 3264762238 132 133 132 132
  Control 58750153 1 1 1 1
  Host Learning 2278841 0 0 0 0
  L3 Fwd Low 12359420458 2263 2016 1155 719
  L2 Fwd Highest 2 0 0 0 0
  L2 Fwd High/Medium 107 0 0 0 0
  L2 Fwd Low 71680133 2 3 2 2
  L3 Rx Highest/High/Med 26231554 1 1 1 1
  L3 Rx Low 19491956 0 1 1 0
  RPF Failure 23 0 0 0 0
  ACL fwd(snooping) 4041317 0 0 0 0
  ACL log, unreach 120354109 15 13 12 11
  Packets Dropped by Packet Queue
  Queue Total 5 sec avg 1 min avg 5 min avg 1 hour avg
  L2 Fwd Low 732 0 0 0 0
  Can anyone answer my following questions?
  1. What goes into TxQueue 3?
  2. Can we identify any specific ports particularly affected by these drops?
  3. Is there some way to rearrange ports on the chassis to reduce drops?

  check out the following link :
  http://www.cisco.com/en/US/products/hw/switches/ps663/products_tech_note09186a00804cef15.shtml
  hope this helps

• N7000 : details of packets dropped by COPP policy (class-default) ?

  Hi,
  On one of our N7K, we have some packets dropped by the COPP policy in the class-default class-map. :
  Partial results of "show policy-map interface control-plane" not so long after clearing the counters :
  class-map class-default (match-any)
        set cos 0
        police cir 100 kbps , bc 250 ms
        module 1 :
          conformed 12210790 bytes; action: transmit
          violated 201870 bytes; action: drop
        module 2 :
          conformed 8399646 bytes; action: transmit
          violated 0 bytes; action: drop
        module 3 :
          conformed 34518233 bytes; action: transmit
          violated 6186895 bytes; action: drop
  What would be the best way to figure out what traffic is dropped by the policy ? Is there any logging possible ?
  Thanks,
  Laurent

  There is still no logging possible.
  What can be done is piping the class-default-traffic to some port and then analyze it with wireshark or some similar tool. But as far as I know, this still cannot be done by default - at least with NX-OS 4.2(4) we had to reprogram the module with assistance from TAC. I suggest you contact your support partner in this matter.

• Signature 1330 causes packet drops

  Hello Members,
  i see in my IPS-NME module a hign number of packet drops because of the following signatures:
  1330-17: TCP segment out of state order
  1330-12: TCP segment is out of order.
  the targets and the attacers are internal hosts.
  are these signatures triggered because of not propper configured policies or is this an indicator for problems in the internal network.
  thanks for your inputs.
  regards
  alex

  Hello Sid,
  thanks for your answer. I learned that most of packets where the Signature 1330 triggers are packets from the IPS module to the IPS Express Manager. I added wireshark dump to the case.
  That's really odd, i ran a traceroute from the IPS Manager to the IPS Module and vice versa and the flow look ok to me.
  Trace from the IPS module to the IPS Manager
  # trace 10.0.128.5
  traceroute to 10.0.128.5 (10.0.128.5), 4 hops max, 40 byte packets
  1  172.16.1.9 (172.16.1.9)  1.479 ms  1.327 ms  1.275 ms
  2  172.16.1.1 (172.16.1.1)  3.616 ms  2.952 ms  1.907 ms
  3  10.89.27.10 (10.89.27.10)  2.288 ms  2.044 ms  2.136 ms
  4  10.89.27.21 (10.89.27.21)  8.106 ms  9.148 ms  8.266 ms
  return path
  C:\Users\Administrator.NOS-POC>tracert 172.16.1.11
  Tracing route to 172.16.1.11 over a maximum of 30 hops
    1    <1 ms    <1 ms    <1 ms  10.0.128.1
    2     2 ms     3 ms     2 ms  172.16.2.1
    3     1 ms     1 ms     1 ms  10.89.27.22
    4     9 ms     9 ms     9 ms  10.89.27.9
    5     8 ms     8 ms     8 ms  172.16.1.6
    6     8 ms     8 ms     8 ms  172.16.1.11
  Trace complete.
  trace from the IPS module's gateway
  #traceroute vrf CENTRAL 10.0.128.5 source 172.16.1.9
  Type escape sequence to abort.
  Tracing the route to 10.0.128.5
    1 172.16.1.1 0 msec 0 msec 0 msec
    2 10.89.27.10 0 msec 0 msec 4 msec
    3 10.89.27.21 8 msec 8 msec 8 msec
    4 172.16.2.6 8 msec 8 msec 4 msec
    5 10.0.128.5 4 msec 4 msec 4 msec
  what make me wonder is that the IPS module doesn't show hops further than 4 hops.
  regards
  alex

• Monitoring dscp ef packet drops

  Looking for some guidance please.
  I have been tasked by our network team to find a solution to monitor voice traffic specifically for packet drops in dscp ef traffic.
  Thinking of using my cacti box as my first port of call but need to know exactly which OIDs i need to be pulling in.  I have looked at the various mib sets related to qos cos etc.... but to be honest, they are bit daunting for someone who is not familiar in this area.
  Any other options for this would be greatly appreciated - could rmon fulfill this task?
  cheers

  You can troubleshoot the output drops occuring with priority queuing be following the sugesstions made in http://www.cisco.com/en/US/tech/tk39/tk51/technologies_tech_note09186a0080103e8a.shtml