Hi,

I recently setup a solution to load balence traffic from a LAN over 2 ISP ADSL connections.

The setup works perfectly for one major draw back. For some reason all the packets arriving on the fastethernet interface are being process switched :(

This is causing the task IP INPUT to eat all availble CPU when the router gets busy.

Here is the config i am running.

version 12.3

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname syd01-c36

!

boot-start-marker

boot-end-marker

!

logging buffered 50000 debugging

no logging console

no logging monitor

enable password nottellingyou

!

aaa new-model

!

!

aaa session-id common

ip subnet-zero

!

!

ip cef

ip name-server 10.1.0.1

!

ip dhcp pool eisyd01

network 10.1.2.0 255.255.255.0

dns-server 10.1.2.1

default-router 10.1.2.1

domain-name syd01

!

ip audit po max-events 100

!

!

!

!

!

!

!

!

!

!

interface ATM0/0

bandwidth 1500000

no ip address

no atm ilmi-keepalive

dsl operating-mode auto

pvc 8/35

encapsulation aal5mux ppp dialer

dialer pool-member 1

!

!

interface FastEthernet0/0

ip address 10.1.0.4 255.255.254.0

ip nat inside

duplex auto

speed auto

standby ip 10.1.0.5

standby priority 110

standby preempt

!

interface ATM0/1

bandwidth 1500000

no ip address

no atm ilmi-keepalive

dsl operating-mode auto

pvc 8/35

encapsulation aal5mux ppp dialer

dialer pool-member 2

!

!

interface FastEthernet0/1

ip address 10.1.2.1 255.255.255.0

ip nat inside

rate-limit input 512000 3500 3500 conform-action transmit exceed-action drop

rate-limit output 512000 1500 2000 conform-action transmit exceed-action drop

duplex auto

speed auto

!

interface FastEthernet1/0

no ip address

shutdown

duplex auto

speed auto

!

interface FastEthernet1/1

no ip address

shutdown

duplex auto

speed auto

!

interface Dialer1

bandwidth 1500000

ip address negotiated

ip nat outside

encapsulation ppp

dialer pool 1

no cdp enable

ppp authentication pap callin

ppp chap refuse

ppp pap sent-username someuser@someisp.com.au password somepassword

!

interface Dialer2

bandwidth 1500000

ip address negotiated

ip nat outside

encapsulation ppp

dialer pool 2

no cdp enable

ppp authentication pap callin

ppp chap refuse

ppp pap sent-username someotheruser@someisp.com.au password somepassword

!

ip nat inside source route-map rmsyd01 interface Dialer1 overload

ip nat inside source route-map rmsyd02 interface Dialer2 overload

no ip http server

no ip http secure-server

ip classless

ip route 0.0.0.0 0.0.0.0 Dialer1

ip route 0.0.0.0 0.0.0.0 Dialer2

!

ip dns server

!

access-list 1 permit any

access-list 2 permit any

access-list 100 permit ip any any

!

route-map rmsyd02 permit 10

match ip address 1

match interface Dialer2

!

route-map rmsyd01 permit 10

match ip address 1

match interface Dialer1

!

and here is the problem:

syd01-c36#show interfaces f0/0 switching

FastEthernet0/0

Throttle count 0

Drops RP 10 SP 0

SPD Flushes Fast 0 SSE 0

SPD Aggress Fast 0

SPD Priority Inputs 6914 Drops 0

Protocol IP

Switching path Pkts In Chars In Pkts Out Chars Out

Process 376101 66911974 31196 4458462

Cache misses 2 - - -

Fast 7 1037 399068 376452603

Auton/SSE 0 0 0 0

Those 7 packets were while the DSL was coming up :(

Show ip interface on all those concerned shows fast switching and CEF switching enabled.

A debug ip packet detail shows the packets using the RIB. What i can't figure out is why....

Any and all help gratefully received!