Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
754
Views
0
Helpful
3
Replies

Slowness after using ECMP

sahdogra
Frequent Visitor
Frequent Visitor

‎01-13-2026 10:10 PM

We have a 3110 with version 7.6 managed by FMC 7.6. The flow is User >> WLC >> Core Switch >> Cisco FTD >> Internet Switch >> ISP Router 1 & ISP Router 2. On FTD we have created sub-interfaces of 10 Gig link and we have two 1 Gig links from ISP. We are using ECMP on FTD for load sharing. We are observing the slowness of internet access for end users when we are using ECMP on FTD. If we are using a single path then end user experiencing no issues, but when ECMP is getting enabled the slowness of internet access is occurring. What could be the issue?

0 Helpful
3 Replies 3

nspasov
Cisco Employee
Cisco Employee

‎01-14-2026 05:58 AM

It is hard to say without additional information. Issues like this typically require live troubleshooting with access to the setup. Thus, it is probably best to engage TAC. Nonetheless, we can try here:

Thank you for rating helpful posts!

How is your routing configured on the ISP router

Is the Internet switch L2 or L3

Thank you for rating helpful posts!
0 Helpful

Cristian Matei
VIP Alumni
VIP Alumni

‎01-20-2026 08:38 AM

Hi,

   @sahdogra Just to confirm, and not assume. When using no ECMP,  and ISP1 as Primary (default route) with ISP2 as Secondary (backup default route not present in RIB), as well as ISP2 as Primary (default route) with ISP1 as Secondary (backup default route not present in RIB), everything works fine? Trying, to first, ensure, that when using just one of the ISP's for Internet traffic, regardless which one, experience is good. Only if this is true, we can take a look over ECMP use case.

    For ECMP, when you say slow, what do you mean, you get Internet access all the time but experience is bad, or sometimes it works and sometimes it doesn't work? Have you correctly followed this guide (and correctly configured NAT as well, for both ISP's, since the guide doe not cover NAT):

https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/221692-configure-ecmp-with-ip-sla-on-ftd-manage.html#toc-hId-825249988

Thanks,

Cristian.

0 Helpful

Marius Gunnerud
VIP Alumni
VIP Alumni

‎01-20-2026 01:22 PM

How is the ISP side set up? are they doing some kind of load balancing also?
I would suggest setting up packet captures on the two interfaces when they are configured in ECMP and see if you see any significant packet drops on one or both of the interfaces.  in addition you can run the command "show asp drop" during the times of issues to see what the drop reason could be.
Also, if you have access to the "Internet Switch" you could also do a capture or SPAN (depending on model) and see if you there is something happening there.

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card