08-06-2010 12:10 PM - edited 03-04-2019 09:20 AM
Hi All,
I have an IPsec tunnel between Site A and Site B.
Site A also has a GRE tunnel to Site C.
Site A ---- IPsec---- Site B
|
GRE
|
Site C
I need to measure the bandwidth being used (an available) between both connections.
So, I need to measure the bandwidth via the IPsec tunnel and the bandwitdh via GRE tunnel for some routing policies.
My question is, what's the recommended way to do this?
Thank you,
Federico.
Solved! Go to Solution.
08-06-2010 01:27 PM
Use FTP to transfer a very large file (100+ MB) messure traffic.
HTH,
jerry
08-06-2010 03:58 PM
Federico
"sh crypto ipsec sa" should show you the amount of packets sent and received on the IPSEC tunnel. Not sure about GRE and whether you can see packets in/out on the tunnel interface itself. Have you tried "sh interface tunnel
I'm assuming the problem is because both the IPSEC and GRE go via the same interface on the router ?
Jon
08-06-2010 10:32 PM
Hi
As Jon mentioend from Router you can get some info with these commands
sh int summary  ( for GRE Tunnel ) 
sh crypto ipsec sa ( IPSEC ) 
If you have monitoring tool then you can get the amount of data transfered and traffic type.
We did a pilot with solarwinds NPM and Netflow Module ( www.solarwinds.com )  and got the details.
Hope this input helps.
Thanks
ST
08-06-2010 01:27 PM
Use FTP to transfer a very large file (100+ MB) messure traffic.
HTH,
jerry
08-06-2010 01:56 PM
Thank you Jerry and I'll try that, but do you know if there's a way to measure the bandwidth from the router itself?
I mean a command on the router that can show me the amount of bandwidh being used over the tunnel?
Federico.
08-06-2010 03:58 PM
Federico
"sh crypto ipsec sa" should show you the amount of packets sent and received on the IPSEC tunnel. Not sure about GRE and whether you can see packets in/out on the tunnel interface itself. Have you tried "sh interface tunnel
I'm assuming the problem is because both the IPSEC and GRE go via the same interface on the router ?
Jon
08-06-2010 10:32 PM
Hi
As Jon mentioend from Router you can get some info with these commands
sh int summary  ( for GRE Tunnel ) 
sh crypto ipsec sa ( IPSEC ) 
If you have monitoring tool then you can get the amount of data transfered and traffic type.
We did a pilot with solarwinds NPM and Netflow Module ( www.solarwinds.com )  and got the details.
Hope this input helps.
Thanks
ST
08-07-2010 08:33 AM
Thank you All,
I'll try the following:
1. An FTP 100+MB file 
2. sh cry ips sa & sh int tunnel | summary on the routers 
3. Netflow ''sh ip cache flow''
I will do some tests and see if from the above I could get what I need.
John, 
The router actually use a different interface for IPsec and GRE. 
i.e 
Site A uses Fas0/0 for the IPsec tunnel to Site B 
Site A uses VLAN1 for the GRE tunnel to Site C
Federico.
 
					
				
				
			
		
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide