cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2314
Views
0
Helpful
4
Replies

4110 port-channel load-balancing

Seb Rupik
VIP Alumni
VIP Alumni

Hi all,

I have a 4110 cluster which I am trying to troubleshoot a load balancing issue.

Two commands that I see frequently applied to CCL and CDL port-channels are:

!
int po1
  desc CDL
  port-channel load-balance src-dst ip-l4port
  port-channel span-cluster vss-load-balance
!
int po48
  desc CCL
  port-channel load-balance src-dst ip-l4port
!

Between the ASA contexts, FXOS CLI/ GUI where on earth do I apply the commands? Are they even required on a firepower chassis? If not what is the load-balancing hash used, src-dst-ip?

 

cheers,

Seb.

4 Replies 4

Marvin Rhoads
Hall of Fame
Hall of Fame

Are you running ASA or FTD image on your Firepower appliances?

Hi Marvin,

It is FXOS 2.1(1.85) running just an ASA image (9.1.7(4) ).

 

cheers,

Seb.

 

Marvin Rhoads
Hall of Fame
Hall of Fame

In FXOS we only create the Etherchannel and assign ports to it. Any configuration of the resultant Etherchannel is done from the ASA cli (or ASDM).

The default configuration is src-dst-ip as noted here:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa-command-reference/I-R/cmdref2/p2.html#pgfId-2147775

That is what I though and thanks for the confirmation.

 

However from the CLI, when in the relevant context which has been allocated a port-channel, the configuration options I am presented with are quite limited. Certainly there is port-channel load-balance .

 

I think I may just configure the directly connected switches to src-dst-ip to get around this issue.

 

cheers,

Seb.

Review Cisco Networking for a $25 gift card