What does ip fragment reassembly do

Similar Messages

• ISR G2 and GRE fragmentation/reassembly

  Hi,
  We plan to use GRE tunnels between CPE (ISR G2 if we stick to Cisco routers) and LNS (ASR1006 - L2TP and GRE aggregation), above PPP.
  PPP MTU is 1500 bytes, and the GRE tunnel will set its MTU to 1476 bytes.
  Subscribers link could range from 1M SDSL lines to 16M SDSL/EFM lines.
  Using ip tcp_mss_adjust on the tunnel interface will prevent ip fragmentation from happening for TCP traffic.
  But we could still see ip fragmentation for non TCP traffic (UDP, IPSEC...) with packets > 1476 Bytes.
  For these fragmented datagrams, reassembly will be handled by the destinations hosts.
  We are investigating a solution where ip fragmentation/reassembly would be done only between CPE and LNS.
  Usually, in the situation that i have described above,  the end-user ip datagrams entering the CPE from a LAN interface and sent through the GRE tunnel are  fragmented, then the 2 resulting fragments are encapsulated into 2 GRE packets and sent toward the tunnel destination (the LNS). There, the 2 IP fragments are popped out of the GRE packets and sent toward their ip destination. The destination host have to reassemble the 2 fragments.
  The idea would be to configure an IP MTU = 1500 at the GRE interface level, so that the end-user IP datagram will not be fragmented. The CPE will create a 1524 bytes GRE datagram, and fragment the GRE datagram (not the end-user datagram encapsulated within). The 2 fragments will be sent to the GRE tunnel destination (the ASR1006), and the ASR will reassemble the initial GRE packet, and pop the end-user IP datagram from it.
  => the end-user systems won't see any fragmentation of their traffic,
  => most of the traffic is TCP and will never be fragmented thanks to mss_adjust, so this mecanism will only be triggered by non TCP packets > 1476B,
  => the CPE and LNS will have to handle IP GRE reassembly for non TCP traffic, for packets > 1476 bytes.
  At LNS side, this process is handled on QFP (with hardware acceleration), and maybe we will ask for a CPOC to check ASR performance with ESP40 and ESP100.
  At CPE side, it is more than likely done in process switching. Anyway, in worst case scenario, 16Mb/s full duplex needs only 2666 packets per second to fill the line both ways (1333 pps downstream, 1333 upstream).
  Is 2666 pps (== 5333 fragments per seconds) something that a ISRG2 CPE (cisco898/lantic, c1941 and above) can handle without CPU exhaustion ?

  isclaimer
  The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
  Liability Disclaimer
  In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
  Posting
  What you're doing, being somewhat unusual, you'll probably not find performance documentation for it.
  If if you had process switching performance values, I suspect fragmentation processing might be even worst.
  About a year ago, had a case of a pair of 2800s take a huge jump in CPU usage.  These routers were using GRE tunnels, and were configured with mss-adjust.  However, remote site added a few security cameras which sent their video via UDP, and as you noted, mss-adjust did not help those streams.
  Our "cure" was usage of jumbo Ethernet on VPN backside which avoided the need to fragment any 1477..1500 sized packets.  CPU utilization hugely dropped for the same volume of traffic.
  So, at least on the 2800 series, fragmentation was very CPU intensive.  BTW, it didn't show as process CPU; it was part of interrupt CPU.
  Unfortunately, we didn't bother trying to analyze how "costly" the fragmentation was relative to PPS, but for traffic before vs. after, with and without fragmentation, CPU hit was huge (something like 20% vs. 80%).

• What is the ipod 4 new model, I mean look at the walmart site, it says (new model) what does that mean?

  what is the ipod 4 new model, I mean look at the walmart site, it says (new model) what does that mean? Look at this link :  http://www.walmart.ca/canada-estore/search/searchcontainer.jsp?_DARGS=/canada-es tore/search/fragments/cataloghierarchy.jsp I dont understand, what was the old model?

  The 16gb iPod 4 is a new model!  Previously, the iPod Touch 4G came in 8gb, 32gb and 64gb versions.  Apple has stopped shipping those versions and has replaced it with the 16gb iPod 4.  While this is technically the "newest" model (by a day or so), it is not the most technically advanced.  As others have pointed out that it the iPod Touch 5g (32gb and 64gb versions).  So Walmart is not "outdated" or "incorrect", but perhaps a bit deceptive.

• DiskWarrior: "not enough contiguous space"? -What does this mean??

  Having issues, cannot reboot, after software update. Grey screen + Apple comes up, but no wheel and no further booting.
  I'm able to boot from the DW CD.
  Hard drive capacity is 74.41GB/ available space 21.81GB.
  Graph of hard drive shows 5% out of order.
  I rebuilt the directory which shows NO changes to the number or contents of files and folders... BUT...
  "There is not enough contiguous free space for a fail-safe replacement of the directory. It is highly recommended that you create 132 MB of contiguous free space before replacing the original directory."
  So what does this mean? Contiguous free space on the hard drive or in RAM?
  (The hd doesn't seem to make sense, since it shows over 21GB of available space.)
  I've ordered a new 1GB RAM module which should arrive Friday, but should I install this when the computer won't even boot on its own?
  Help! I'm stuck and don't know what to do next. I have no idea how to go about creating 132 MB of contiguous free space.

  DW is telling you it needs 132MB of contiguous — i.e., unfragmented — hard drive space. Apparently you don't have it, because all your free hard drive space is fragmented into segments smaller than 132MB. With nearly 21GB of free space in all, that's very surprising. It suggests that the files using space on your drive must be much more fragmented than is common in OS X, which defragments most files automatically without any input from you.
  Ideally, what you would do to defragment everything on your drive, including the free space, is clone that drive to an external hard drive, and then clone the external drive back onto the internal drive. The second step in that process would erase the internal drive and then write everything back to it in unfragmented form.
  But to do that, you'd have to be able to start the Powerbook up from a source disk that contained a cloning utility and enabled you to use it. The simplest way of doing that would be to have an external drive divided into two partitions: one small partition with an OS and a cloning utility (and perhaps other disk utilities) installed on it, so you could start up from it, and another larger partition of a suitable size for cloning the internal drive to: i.e., about the same size as the internal drive, or at a minimum, 10% larger than the amount of space that's actually used on the internal drive. If you don't already have such an arrangement, you're in no position to create one now except by going out and buying an external Firewire hard drive.

• What kind of fragmentation would you park this under ?

  hi guys
  i am reading about
  alter table xxxx shrink command;
  on http://www.oracle.com/technology/pub/articles/10gdba/week15_10gdba.html
  q1) do you consider this as a fragmentation ?
  q2) if so, what kind of fragmentation does this falls under ?
  q3) o`reilly oracle essential park this under segment fragmentation
  but to me. it seems to be some kind "blocks fragmentation" which i believe, those empty spaces will be reuse again due to further insert or updates and those empty spaces will be coaleces during the reuse of the freespace as state in the oracle concept
  <i>Released space may or may not be contiguous with the main area of free space in a
  data block. Oracle coalesces the free space of a data block only when (1) an INSERT or
  UPDATE statement attempts to use a block that contains enough free space to contain a
  new row piece, and (2) the free space is fragmented so the row piece cannot be
  inserted in a contiguous section of the block. </i>
  hope to hear advices from you guys soon.
  Regards,
  Noob

  q1 no
  q3 if it would qualify as fragmentation it is segment fragmentation.
  But it's not fragmentation.
  The article is poor and shouldn't have been posted on Oracle's website.
  The author fails to differentiate between freelist managed tablespaces and ASSM tablespaces. In the latter case fragmentation is no longer an issue.
  Also the author states alter table move should move to a new tablespace and can't be executed online.
  Both are incorrect.
  Finally the article omits one fundamental question: does suffering from Compulsive Reorganization Disorder solve fragmentation? Or is it just a waste of resources?
  Sybrand Bakker
  Senior Oracle DBA

• SA520 fragment reassembly problem

  I'm baffled by this one.  I found that the SA520 does not seem to be able to be able to reassemble fragmented packets.  I have 2 sites and I setup a site-to-site IPSEC link.  The problem started that small packets less than 1409 bytes could be transmitted across the link, but not larger ones.  This caused problems and caused me to do more testing.  I found that even when pinging the LAN IP from a local computer, I couldn't ping larger than 1472, which I expect if I set the NoFragment bit.  But if I don't set the NoFragment bit, why can't it reassemble the 2 packets from a 1475 byte ping?
  I did a packet trace (from the SA520's UI) and looked at the .CAP file with WireShark.  I see the 2 fragments for each ping request (the first one, and then the 3 extra bytes, totaling 1475 bytes) and then nothing else until exactly 30 seconds later.  At that time I get a ping response of "Type: 11 (Time-to-live exceeded)" with a code of "Code: 1 (Fragment reassembly time exceeded)".
  So, it seems that the SA520 doesn't think it got all the packets, or it just refused to put them back together.  I get roughly the same results pinging the SA520 on the other side of the IPSEC link. (which right now is a cable connecting the 2 together in my lab)
  This seems like a bug to me, but I can't believe no one else has had any problem like this.  Anyone?

  After a couple calls with Cisco support, I found the reason and solution.  In the Firewall -> Attacks configuration page, there is an option for "Block Fragmented Packets" that is checked by default.  It seems that not only does this block regular WAN traffic that is fragmented, but also blocks traffic that is part of any IPSEC VPN tunnel.  Now that I know it, it seems like something I should have found, however, I would have thought that the firewall would not have blocked traffic within the tunnel.
  After changing that, all the symptoms I described above went away.  I could ping successfully with any size packet I desired,
  Thanks,
  Grant

• What does this mean:Photoshop 13.1.2 for Creative Cloud Installation failed. Error Code: U44M1P7

  What does this mean:Photoshop 13.1.2 for Creative Cloud Installation failed. Error Code: U44M1P7
  I found the manual update, which worked!
  http://www.adobe.com/support/downloads/thankyou.jsp?ftpID=5595&fileID= 5604

  Hi Barbara,
  For failed 13.1.2 update error U44M1P7, Please refer to the solution mentioned in the following threads :
  http://forums.adobe.com/message/5396792#5396792
  http://forums.adobe.com/message/5409050#5409050

• In relation to Wireless Speakers, what does 'Connected Music Server' mean?

  Hello All,
  Need some advise. I am looking at purchasing a Wireless speaker. I currently have a MacBook Pro 10.8 which has my music stored in iTunes. My phone is an Android 4.2.2 device.
  Therefore, I need to buy a wireless speaker that supports AirPlay (aka stream music from my MacBook Pro) and also has an app that I can install on my Android device which can threby access the iTunes playlist so that I can use my phone as the remote control.
  Based on the above requirements, I narrowed down my chocie to the Denon Cocoon Home (whose app is also Deno Cocoon) and the Pioneer A4 XW-SMA4-K (whose app is Pioneer ControlApp)
  Question 1:
  The Denon App says this:
  - When connected to your home Wi-Fi network you can further expand your choice of music by using the Music Server to browse and play all the music that is stored on your PC, Mac or Network Attached Storage (NAS) drive.
  - DRM protected music is NOT supported by the Denon Cocoon app (or any 3rd party music app)
  My question what does one mean by a 'connected music server?' If an AirPlay speaker receives iTunes music, does it automatically become a 'connected music server?' Technically, is music in my iTunes app (some purchased from iTunes store, some imported) considered DRM protected music? Can ithe app read the iTunes music given the above contraint?
  Question 2:
  The Pioneer App has a lot of complicated lingo that says:
  Network Audio Player
  - Browse and select music files on your connected music server
  AV Receiver
  - Browse and select music files on your connected music server
  Network CD Receiver System
  - Browse and select music files on your connected music server
  Wireless Speaker
  - Volume up/down
  - Select Internet Radio Stations
  - PUSH PLAYER
  It uses one app for multiple devices and in the app description has a breakdown for what the app supports for every device. Now the 'connected music server' is not mentioned in 'Wireless Speaker' but the same is mentioned in 'Network Audio Player' so what does that mean?
  I am more veered towards the Pioneer speaker as it costs $100 less and has better reviews but I will go with the one that will aloow me to use my Android phone as a remote control to access the music that the speaker is streaming from my MacBook pro.

  CSS SSL module sending a Close_Notify.
  Try these links;
  http://www.cisco.com/warp/public/117/basic_css_lb_config.html
  http://www.cisco.com/en/US/products/hw/contnetw/ps792/products_configuration_guide_chapter09186a008057a127.html

• Downloads from itunes fail - error code 8003 - what does that mean, or more importantly, how do I get what I paid for?

  Downloads from itunes fail - error code 8003 - what does that mean, or more importantly, how do I get what I paid for?

  Try the troubleshooting for that error code on this page : iTunes: Advanced iTunes Store troubleshooting - Apple Support (search for '8003' on the page, it's just below half-way down)

• I replaced my iPhone with a Galaxy 5 and am not receiving all of my text messages. The sales person told me to remove my phone number from iTunes to stop this from happening. Is that true? What does iTunes have to do with text messages?

  I replaced my iPhone with a Samsung Galaxy5 and I am not receiving all of my text messages now. The rep at the store told me to go to iTunes and take my phone # off of the account and that would fix the problem. Is that true? What does iTunes have to do with text messages anyway?

  You need to remove your phone number from the iMessage system.
  Read here: http://support.apple.com/kb/ts5185
  ~Lyssa

• GetResponseCode() returns -1,what does it mean

  Hi ,
  The HttpURLConnection class's getResponseCode() method returns -1.
  getResponseMessage() returns null.i m accessing my servlet through a proxy.i know only about 1xx to 5xx codes.i dont know what does it mean by -1.But at server side the request is properly sent and processed and i m getting 200 and ok after processing at serverside. the object is sent to client also. but it is not received by the client.
  Null object is returned.I think proxy is the culprit.If anyone can help me what -1 means,it will be really greatfull to diagnoise my issue in detail and solve my problem soon.
  Your help will be greatfull.
  Thanks
  prakash

  As it says perfectly clearly, right there in the API documentation for the method:
  "Returns -1 if no code can be discerned from the response (i.e., the response is not valid HTTP)."

• I got an iphone from Hong Kong which is locked one. Can anyone explain me what does a locked iphone means. How do I use it in India now, with my own sim card. How do I unlock it???

  I got an iphone from Hong Kong which is locked one. Can anyone explain me what does a locked iphone means. How do I use it in India now, with my own sim card. How do I unlock it???

  If your iPhone is locked to a wireless provider, only that wireless provider
  can unlock it. Contact the wireless provider in Hong Kong to see if they
  offer unlocking and if you qualify.
  If your iPhone is locked to an AppleID that you do not know, return it for
  a refund as it is useless. Only the person whose AppleID was used for
  activation can remove the lock. There is no workaround for Activation Lock.
  If neither of the above is what you are facing, provide more detail so someone
  may offer a solution.

• Apple TV does not work after trying to update software. Main light keeps blinking and on the screen shows itunes icon and a usb cable. What does that means?

  My Apple TV does not work after trying to install the new software update. The main light keeps blinking rapidly and on the screen it shows the itunes icon and a USB cable. What does that mean?

  The Apple TV is in recovery mode. Try to restore the Apple TV. Follow the link for instructions on the restore process.
  http://support.apple.com/kb/HT4367

• HR-PA What does u201CCEu201D in name means

  Dear all,
  I am looking at BI Contend for HR-PA (Personnel Administration).   In the name of some of the objects there is u201CCEu201D at the end.  What does this CE means?
  Thanks for your help,
  Reynir

  CE in the HR-PA BI Content stands for Concurrent Employment. This requires grouping reasons to be configured in the ECC source environment. The grouping assignments can be seen in ECC table T77SO.

• HT1657 I rented movies on my iPad, they all downloaded, but when I click 'play' it says 'The requested URL was not found on this server'. What does it mean and how can I restore my rented movies?

  I rented movies on my iPad, they all downloaded, but when I click 'play' it says 'The requested URL was not found on this server'. What does it mean and how can I restore my rented movies?

  See this previous discussion:
  https://discussions.apple.com/message/16962474#16962474