[c-nsp] C3k: IPv6 multicast listener reports causes high CPU

Phil Mayers p.mayers at imperial.ac.uk
Mon Mar 3 14:50:02 EST 2014


On 03/03/2014 19:38, Peter Rathlev wrote:

> layer-2, is using the "desktop default" SDM template and has no IPv6
> features (like MLD snooping) configured.

Are you absolutely sure about this? Isn't MLD snooping on by default?

> They are multicast listener reports, and there are far far too many of
> them from each PC. That is a "problem" with the PC which other people
> are (supposed to be) looking at.

I wonder if it's the same thing we (and others) saw:

http://lists.cluenet.de/pipermail/ipv6-ops/2014-February/009835.html

> What I don't understand is why this ends up in a CPU queue on a 3560.
> Shouldn't the "Router Alert" option only be picked up by devices doing
> L3 forwarding? We see several switches with these symptoms but also
> several without. Even switches which are almost identical in
> configuration, hardware and IOS behave differently.

Big surprise there; Cisco being inconsistent!

> So apart from just blocking all IPv6 (which wouldn't be hard, but feels
> like going the wrong way) what can I do? :-)

I can't remember if c3k can do multicast storm limiting without bad side 
effects; that is how we solved our problem. In particular if it is the 
same thing (AMT/vPro) we found that even a modest rate-limit closed the 
flood storms down completely, as they seem to be caused by "reflection".


More information about the cisco-nsp mailing list