Hello Seb, thank you for your answer

SDM is

sh sdm prefer
 The current template is "desktop access IPv4" template.
 The selected template optimizes the resources in
 the switch to support this level of features for
 8 routed interfaces and 1024 VLANs.

  number of unicast mac addresses:                  4K
  number of IPv4 IGMP groups + multicast routes:    1K
  number of IPv4 unicast routes:                    6K
    number of directly-connected IPv4 hosts:        4K
    number of indirect IPv4 routes:                 2K
  number of IPv4 policy based routing aces:         0.5K
  number of IPv4/MAC qos aces:                      0.5K
  number of IPv4/MAC security aces:                 2K

No, IPv6 traffic, no VTP. And yes, there are VLANs trunked but not used on edge ports since this is our Bridge in MST

The switch is edge/distribution.

Is it an SVI problem? Do I have to minimize them?

According to:

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3750/software/release/12-2_55_se/configuration/guide/scg3750/swsdm.html

...you will gain another 2k mac addresses by running:

!

sdm prefer default

!

This would require a reload of the switch.

The SVIs are only a problem if they are seeing a lot of MAC addresses, moving the routing of these towards your edge may free up some space.

For each routed VLAN, what is the output of:

sh mac address-table dynamic vlan <xx>

cheers,

Seb

Thank you,

I know I can switch to Default but it requires restart of the switch stack which is the last option

I was wondering what can cause this

iPv4 unicast directly-connected routes:       528/4224        508/3998  

and this:

Fibs of Prefix length 32, with TCAM fails: 107973

Is it MAC addresses or something else?

Each host (/32) will occupy a FIB entry, these are the 'directly-connected routes'.

The TCAM fails for /32 indicate that the switch is unable to create a new FIB entry when it sees a new L3 address so packets must be punted to the CPU in order to route them (this will cause increase CPU ultilization).

Clearly for the subnets you are routing on the 3750 you are exceeding the maximum number hosts it can store in its FIB and efficiently route. You need to move (some of) your SVIs.
 

Thank you Seb,

So just to make it clear each host address must be included in FIB right?

So directly connected routes are not only those I create with SVI, but also all the hosts IP addresses for these SVIs, right?

Dear Seb,

I have removed around 300 IP hosts from the switch. I used to have around 2100 ARP entries, no I have 1800

But it still shows

Fibs of Prefix length 32, with TCAM fails: 108689

And this number did not change

IPv4 unicast directly-connected routes:       528/4224        508/3996 

Am I doing something wrong?

Morning,

From the DHCP leases you offer on the remaing connected VLANs which you are still routing on the switch do you know if the maximum concurrent leases exceeds 528?

The TCAM fails will still increment. I don't think you can clear the counter without a switch reload. With the changes you have made so far I am sure the number will be climbing slower.

cheers,

Seb.

Hello Seb,

Yes, it is more than 528

The TCAM fails number fluctuates, from more to less, but it is always around 108765

Do I still have to minimize my connected routes? When removed around 300 IP hosts from the switch, TCAM fails number did not change dramatically, sometime it is even more

How many DHCP leases are in use on these VLANs?

I struggle to belive the TCAM fails is not a counter, I would expect it to always climb.

You really need to consider chaging the SDM template. Can you schedule an outage for the weekend?

DHCP leases is around 1300.

It is too late for a schedule on this weekend, I will have to postpone it till next week