Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4811
Views
10
Helpful
16
Replies

ISR 1111-4P Performance too Low

nec82
Level 1
Level 1

‎06-17-2022 02:32 AM

Hello collegues! Recently I started reciving some message on my dmvpn spoke router

Jun 17 16:11:05.600: %IOSXE_QFP-2-LOAD_EXCEED: Slot: 0, QFP:0, Load 99% exceeds the setting threshold 95%.
5 secs traffic rate on QFP: Total Input: 27521 pps (27.5 kpps), 190499400 bps (190.5 mbps), Total Output: 27212 pps (27.2 kpps), 186742720 bps (186.7 mbps).

Looks like the router's PPE  is overloaded. However, the vendor's stated performance should be about 600 Mbit/s, which is a bit higher than I got. This level of load is reaching by ordinary Internet traffic (NAT IMIX), the traffic over ipsec tunnel barely outrun 30-40mbit/s. QOS and acle are disabled.

Having said that, could someone say me what is the real world performance of this router. Can SVI for LAN L3 interfaces somehow reduce performance of the router, or FVRF?

 

Labels:
16 Replies 16

MHM Cisco World
VIP
VIP

‎06-17-2022 02:38 AM

check if there is fragment because of MTU large than interface accept value.

0 Helpful

MHM Cisco World
VIP
VIP
In response to MHM Cisco World

‎06-17-2022 06:05 AM

do you check MTU ??
the DMVPN (GRE) with IPSec increase overhead size with around 40 bytes, this make router CPU fragment and this slow the forward of traffic.
so cisco recommend this value 
ip mtu 1400
ip tcp mss 1360

0 Helpful

nec82
Level 1
Level 1
In response to MHM Cisco World

‎06-17-2022 06:37 AM

I'm using exactly the same parameters.

0 Helpful

MHM Cisco World
VIP
VIP
In response to nec82

‎06-17-2022 07:17 AM

then ping using MTU 1400 with DF bit set, are you success ??

0 Helpful

nec82
Level 1
Level 1
In response to MHM Cisco World

‎06-17-2022 07:49 AM - edited ‎06-17-2022 07:50 AM

Of course,

#ping 10.1.6.2 size 1400 rep 1 df-bit source vlan 35
Type escape sequence to abort.
Sending 1, 1400-byte ICMP Echos to 10.1.6.2, timeout is 2 seconds:
Packet sent with a source address of 172.16.35.254
Packet sent with the DF bit set
!
Success rate is 100 percent (1/1), round-trip min/avg/max = 4/4/4 ms

marce1000
Hall of Fame
Hall of Fame

‎06-17-2022 03:04 AM

 

          - Check CPU utilization with : show platform resources

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

nec82
Level 1
Level 1
In response to marce1000

‎06-17-2022 03:15 AM

show platform resources
**State Acronym: H - Healthy, W - Warning, C - Critical
Resource Usage Max Warning Critical State
----------------------------------------------------------------------------------------------------
RP0 (ok, active) H
Control Processor 52.47% 100% 80% 90% H
DRAM 2354MB(60%) 3897MB 88% 93% H
bootflash 1317MB(48%) 2774MB 70% 90% H
ESP0(ok, active) W
QFP W
DRAM 141633KB(72%) 196608KB 85% 95% H
IRAM 826KB(40%) 2048KB 85% 95% H
CPU Utilization 92.00% 100% 90% 95% W
B4Q Pool 124 3KB(0%) 1904KB 75% 85% H
B4Q Pool 128 1KB(0%) 2293KB 75% 85% H
B4Q Pool 256 5KB(0%) 4369KB 75% 85% H
B4Q Pool 512 7KB(0%) 5767KB 75% 85% H
B4Q Pool 1024 27KB(0%) 8155KB 75% 85% H
B4Q Pool 1536 54KB(0%) 9678KB 75% 85% H
B4Q Pool 2048 18KB(0%) 8018KB 75% 85% H
B4Q Pool 4096 72KB(0%) 7624KB 75% 85% H
B4Q Pool 10240 200KB(5%) 3880KB 75% 85% H
B4Q Pool 16384 0KB(0%) 3248KB 75% 85% H
B4Q ZNM 58KB(0%) 145312KB 75% 85% H

That's undestandable - the CPU is overloaded. Questions was why performance of the router is so low. characteristics from Cisco live PDF are 660 Mbps for IMIX and 1200Mbps for CEF IMIX while getting such messages on the router for traffic 150Mbps ?

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎06-17-2022 03:16 AM

Adding to other comments - also check what version code and check are you hitting with this bug :

 

https://bst.cisco.com/bugsearch/bug/CSCvi40405

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

nec82
Level 1
Level 1
In response to balaji.bandi

‎06-17-2022 03:24 AM

Unfortunatly, I don't have access to this link. Could you share the bug please?

0 Helpful

marce1000
Hall of Fame
Hall of Fame
In response to nec82

‎06-17-2022 05:24 AM

 

  - Why not ?

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

marce1000
Hall of Fame
Hall of Fame

‎06-17-2022 05:23 AM

 

             - FYI : https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwa11349

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

nec82
Level 1
Level 1
In response to marce1000

‎06-17-2022 05:29 AM

Unfortunately, the bug relate to IOX XE SDWAN. I'm using IOS XE with classic DMVPN

0 Helpful

marce1000
Hall of Fame
Hall of Fame
In response to nec82

‎06-17-2022 05:35 AM

 

         - Look at current software version , consider using latest or latest-advisory release.

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame

‎06-17-2022 05:42 AM

@nec82 wrote:

5 secs traffic rate on QFP: Total Input: 27521 pps (27.5 kpps), 190499400 bps (190.5 mbps), Total Output: 27212 pps (27.2 kpps), 186742720 bps (186.7 mbps). 

ISR 1100 is rated for 150 Mbps.  Currently, this router is pushing 190 Mbps.  

0 Helpful
Customers Also Viewed These Support Documents