Buy or Renew
Buy or Renew
Cisco + Splunk: Itā€™s a new day for your data. Learn more.
Ā 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1090
Views
0
Helpful
6
Replies

[6500] PBR on SVI causing High CPU

Carlos A. Silva
Level 3
Level 3

ā€Ž10-21-2015 12:33 PM - edited ā€Ž03-08-2019 02:19 AM

Hi, 

 

I have a working configuration for PBR on a 6500 running 12.2.33SXH8b.

 

PBR is applied to an SVI interface.

 

Like I said, PBR works exactly as I want it to. The thing is when I start adding more traffic to the PBR (only 3 route-map classes) at some point CPU goes to 90+% and we start losing traffic. I was under the impression that in this version hardware-assisted PBR was supported and I shouldn't be seeing this behavior with the CPU.

 

Any suggestions?

Regards,

c.

Labels:
0 Helpful
6 Replies 6

Jon Marshall
Hall of Fame
Hall of Fame

ā€Ž10-21-2015 01:03 PM

PBR is hardware switched usually but it sounds like packets are being sent to the main CPU for forwarding which could cause the increase in CPU usage.

There are a number of possible causes for this -

1) PBR commands that send traffic to the CPU (not sure how applicable this is to 6500)

2) incompatible features on the L3 interface

3) TCAM limits

can't think of anything else at the moment.

There is a very good document for examining and troubleshooting TCAM issues here -

https://supportforums.cisco.com/document/60191/6500sup720-feature-manager-troubleshooting

I'll have a quick check of your IOS version and post back if I find any PBR commands that cause packets to software switched.

Jon

0 Helpful

Carlos A. Silva
Level 3
Level 3
In response to Jon Marshall

ā€Ž10-21-2015 01:16 PM

Thanks a lot, Jon.

 

On the URL you provided, for restrictions it says:

 

ā€“To avoid high CPU utilization, do not configure an address in the same subnet as the next hop.

 

If they mean, do not configure that address on the same interface where the PBR is applied, then that is my case exactly. The SVI where PBR is applied has an address from same subnet as the nexthop.

 

Will report back as soon as we can give this one a try.

Thank you very much!

Regards,

c.

0 Helpful

Carlos A. Silva
Level 3
Level 3
In response to Carlos A. Silva

ā€Ž10-23-2015 07:22 AM

Just reporting back. Avoiding what I mentioned in the last post did help a lot, Instead of 90% and above, we're now around 70%, but I still think that I much too high.

 

Will keep looking.

0 Helpful

Carlos A. Silva
Level 3
Level 3
In response to Jon Marshall

ā€Ž10-23-2015 08:00 AM

Jon:

 

Do you know if this command has any negative effect on a 6500 (like a reload)? Can't find it in command reference.

 

platform ipv4 pbr optimize tcam

 

Thanks!

c.

 

 

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to Carlos A. Silva

ā€Ž10-23-2015 08:38 AM

Carlos

Sorry, never used that command.

I doubt it would reload automatically although it may take a reload to take effect.

Or it a be able to do it dynamically.

But I can't guarantee anything.

Jon

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame

ā€Ž10-21-2015 01:09 PM

Just checked the configuration guide and there are a few things that would cause PBR traffic to be software switched.

See this link for details -

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/layer3.html#wp1027016

Jon

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card