Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have about 8 FTD's deployed port-channeled and trunked to a Catalyst 9200/9300 switch. All of the switch ports connected to the FTDs show a lot of discards. I honed in one of them to see if bandwidth was overutilized and found only 100Mb/s was us...
I noticed that my FTD's do not show any traffic stats when running the command show interface in the FTD cli. I only see traffic stats on the sub interfaces of the portchannel. It seems very unusual to not see any stats on the portchannel interfac...
I have 2 Catalyst 9k's being used an WAN routers to terminate links to our other offices into our data center. Upstream from the Cat9k's is a firewall running BGP. The 9k's are running BGP and I want to force the routes to go through the firewall s...
The flow control feature does not to be available on the FTD 1010 model. I think read it only is available on the 3100 model. Not sure what other options I have to mitigate these discards. Maybe flexconfig to enable it?
MHM,I have FTD 1010. Do I need to use Flexconfig to configure flowcontrol on the FTD? I saw mention of discards possibly being caused by ACL rules too? Is that possible too? I wouldn't think Layer discards would occur because of Firewall policy.
MHM,Thank you. I will try that and monitor.I have different scenarios too. So that was one scenario where the switch port was discarding. I have another scenario where the FTD sub-interface is discarding and the switch port is good. What can i lo...
Hi MHM,HOP-076-SubCellar-STACK#sh int Po1Port-channel1 is up, line protocol is up (connected)Hardware is EtherChannel, address is f8e9.4fbc.1bae (bia f8e9.4fbc.1bae)Description: Firewall01MTU 1500 bytes, BW 2000000 Kbit/sec, DLY 10 usec,reliability 2...
