Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2941
Views
0
Helpful
17
Replies

Network Degradeded

Go to solution
Mero Cisco
Level 1
Level 1

‎01-02-2012 04:51 AM - edited ‎03-11-2019 03:09 PM

Hi,

I have just changed the pix with ASA, but experiencing a network performance degradation after the change and I am looking for the causes of this one. I have got 4 gig ports on ASA and I have passed the trunk from my switch port to 3 gig ports so that I have six logical ports. Now, total  I have got seven ports and configured it accordingly. All the system is working fine but network is quiet slow. Please help me to find out the reason and solution of this one.

I have not given the mac for the sub interfaces and also not set the speed for this one, is this the problem.

Please help.

Yours,

Mero

Labels:
0 Helpful
17 Replies 17

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Mero Cisco

‎01-04-2012 07:10 AM

Are you sure there is no device (like a hub) between your ASA and the switch? Either you have a physical layer problem (cable or physical interface) or I've misunderstood the description you provided of your connectivity.

What type of switch are you using? Please provide "show version" from the switch as well as "show run int fa0/2" and "show interface fa0/2" from the same switch. Please confirm that the cable from fa0/2 is copper Cat 5 plugged directly into ASA Gi0/1.

(Note ASA ports are numbered right to left - see Figure 1-4 on this document - so ASA interface Gi0/1 is second from the right.)

0 Helpful

Go to solution
Mero Cisco
Level 1
Level 1
In response to Marvin Rhoads

‎01-05-2012 03:17 AM

Dear Mr. Marvin,

I am sure that there is no any kind of device between ASA and Switch. ASA is directly connected with switch. I have got C2960 switch with c2960-lanbase-mz.122-25.FX/c2960-lanbase-mz.122-25.FX.bin image.

The swith amber light is blink, showing error on the trunk ports. I guess this is due to the duplex mismatch.  Yes, I have connected CAT 5 cable.

I just restarted the switch and ASA as the network breaks down, when I configure the duplex mode to full on ASA of my network.

Please go through this one:

show irun int fa0/2

interface FastEthernet0/2

  switchport trunk allowed vlan 4,5

switchport mode trunk

speed 100

duplex full

show int fa0/2

FastEthernet0/2 is up, line protocol is up (connected)

  Hardware is Fast Ethernet, address is xxxx

  Description: ***

  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,

     reliability 253/255, txload 1/255, rxload 1/255

  Encapsulation ARPA, loopback not set

  Keepalive set (10 sec)

  Full-duplex, 100Mb/s, media type is 10/100BaseTX

  input flow-control is off, output flow-control is unsupported

  ARP type: ARPA, ARP Timeout 04:00:00

  Last input never, output 00:00:00, output hang never

  Last clearing of "show interface" counters never

  Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0

  Queueing strategy: fifo

  Output queue: 0/40 (size/max)

  5 minute input rate 488000 bits/sec, 103 packets/sec

  5 minute output rate 588000 bits/sec, 148 packets/sec

     31404208 packets input, 2039432585 bytes, 0 no buffer

     Received 0 broadcasts (0 multicast)

     0 runts, 0 giants, 0 throttles

     1291273 input errors, 1291273 CRC, 0 frame, 0 overrun, 0 ignored

     0 watchdog, 0 multicast, 0 pause input

     0 input packets with dribble condition detected

     36097925 packets output, 1357406095 bytes, 0 underruns

     0 output errors, 0 collisions, 1 interface resets

     0 babbles, 0 late collision, 0 deferred

     0 lost carrier, 0 no carrier, 0 PAUSE output

     0 output buffer failures, 0 output buffers swapped out

Show version

Copyright (c) 1986-2005 by Cisco Systems, Inc.

Compiled Wed 12-Oct-05 22:05 by yenanh

ROM: Bootstrap program is C2960 boot loader

BOOTLDR: C2960 Boot Loader (C2960-HBOOT-M) Version 12.2(25r)SEE1, RELEASE SOFTWA

RE (fc1)

NOC-SWITCH uptime is 1 day, 8 hours, 31 minutes

System returned to ROM by power-on

System image file is "flash:c2960-lanbase-mz.122-25.FX/c2960-lanbase-mz.122-25.F

X.bin"

cisco WS-C2960-48TT-L (PowerPC405) processor (revision B0) with 61440K/4088K byt

es of memory.

Processor board ID xxx

Last reset from power-on

1 Virtual Ethernet interface

48 FastEthernet interfaces

2 Gigabit Ethernet interfaces

The password-recovery mechanism is enabled.

64K bytes of flash-simulated non-volatile configuration memory.


Waiting for your kind response,

Mero

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Mero Cisco

‎01-05-2012 05:48 AM

Since you have both devices configured correctly and the ASA continues to report "duplex half" I would suspect a hardware or Layer 1 issue.

Just to confirm, you are trying to set ASA interface settings to "duplex full" on interface GigabitEthernet0/1 as shown in this example. Note the link should not operate properly until both the ASA and the switch interfaces have their manual "duplex full" setttings completed.

The only thing other than a TAC case I can think of is to try replacing that one Cat 5 cable.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card