Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

1700 rxload 1

Status
Not open for further replies.
nix45

nix45

MIS
Nov 21, 2002
478
US
I noticed that the rxload (show int ser0) on a 1721 router was consistently at around 100/255 at a time when no one was logged in at that office. Can I enable debugging to see exactly what is being passed through the router? I want to see the source and destination of the packets being sent. I have no idea what could be causing the load to be this high. The router is on a 256K frame connection. It eventually dropped down to a low number after a few minutes.

Thanks,
Chris
 
Sort by date Sort by votes
sure here is how you do it.

when the rx load is high in times of suspicion:

config t
access-list 122 permit tcp any any log-input
access-list 122 permit udp any any log-input
access-list 122 permit icmp any any log-input

interface e0 (or whatever is the outside)
no ip route-cache (so that all pkts are process-switched)
exit

logging console debugging
debug ip packet 122
exit

term monitor (if over telnet)
 
Upvote 0 Downvote
if you don't want to flood your console screen

it is also a good idea to log to a syslog server


logging host X.X.X.X (internal pc with syslog server)
logging trap debugging (temporary until you have your data, then set it to a better level like warnings or informational)

on my windows boxes, i use kiwi, it is free and runs great on any windows platform
 
Upvote 0 Downvote
Cool, I'll have to try that out. I use Linux though, not Windows. You can probably log to the syslog daemon in Linux, I'll have to look into that.

Chris
 
Upvote 0 Downvote
you sure can.
i love linux, i am building an snmp station right now on redhat 7.3

as far as syslog, if you are logging from a router directly connected to the LAN with the syslog server then it is no problem

if you are logging over a wan you may have to start syslog to do remote logging

________________________________________________________
p.s.

for kicks (and if you are into exploration and net security), try this (if you have snmpd installed on your nix box and your router)

cd /var/log
touch snmpdata1720.txt
chmod 766 snmpdata1720.txt

cd /usr/bin
snmpwalk -v 1 -c public(yourROpwordontherouter) X.X.X.X(RouterIP) > /var/log/snmpdata1720.txt

snmpwalk -v 1 -c public 10.1.1.1 > /var/log/snmpdata1720.txt

and let'er rip (it'll take all of the router's snmp variables and dump it into the text file)
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

AvayaRedDude
  • Locked
  • Question
Cisco 1700 Series and Third Party Firewall
Replies
8
Views
300
AvayaRedDude
AvayaRedDude
techseek
  • Locked
  • Question
Help me understand 1700 config
Replies
0
Views
53
techseek
techseek
Jigz123
  • Locked
  • Question
Cisco Router 1700 failover
Replies
2
Views
133
JOAMON
JOAMON
macphoneguy
  • Locked
  • Question
1700 series Question
Replies
1
Views
66
dgrizzard
dgrizzard
bnorton916
  • Locked
  • Question
800/1700 router power supply
Replies
1
Views
64
bnorton916
bnorton916

Part and Inventory Search

Sponsor

Back
Top