Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
536
Views
0
Helpful
4
Replies

CSS 11503 stops forwarding traffic

douhanm
Level 1
Level 1

‎04-08-2006 07:08 AM

Hello

We are seing some really strange issues with our 11503, after x hours in production it stops forwarding traffic comin into one VIP and all services are down to 0 connections, during this time I can reach each server directly by addressing them with their own IP so the servers are live. the CSS tells me the services are alive. and everything is active.

we have 2 owners and 8 services, and this only happens to 1 owner and 4 services in that owner, the other one always works. a restart of the CSS fixes the problem for another x hours. Any ideas would be greatly appreciated

Labels:
0 Helpful
4 Replies 4

Gilles Dufour
Cisco Employee
Cisco Employee

‎04-09-2006 11:32 PM

what version ?

Could you capture a couple of show tech when the problem occurs [make sure you sent some traffic to the vip between the 2 occurences of the show tech].

see if the upstream router as an arp entry for the vip.

Gilles.

0 Helpful

douhanm
Level 1
Level 1
In response to Gilles Dufour

‎04-09-2006 11:57 PM

we are running ver 07.50.1.03

I will check the upstream device ( a PIX in this case ) to see the ARP entries when it fails. What is the command to see the MC of a CSS interface?

Also we have another CSS and SCA that previously used the same addresses that we moved to this new CSS, on the old CSS we did suspend on the VIP and the SCA we did not touch.

After we moved we cleared all ARP caches but do you think even though we did suspend on the old CSS's VIP it could somehow respond to ARP requests? or could it be the SCA that previously also returned decrypted HTTPS to the same address that could cause problems?

and since a restart always fixes the problem it seems me to be either ARP related or some sort of bug but if it was a bug I would expect it to be well known so I am leaning against some sort of ARP issue, it is just a matter of finding where.

I am also putting sniffers before and after the CSS to see what is going on during failures.

rgds

Matt

0 Helpful

Gilles Dufour
Cisco Employee
Cisco Employee
In response to douhanm

‎04-10-2006 05:02 AM

you can see the css mac address by doing 'ip if' in llama/debug mode.

Gilles

0 Helpful

douhanm
Level 1
Level 1
In response to Gilles Dufour

‎04-10-2006 10:07 PM

that shows me teh MAC of physical interface but we are using redundant VIP's, how can I see the MAC for the redundant VIP ?

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card