<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><DIV>Vladimir,</DIV>
<DIV> </DIV>
<DIV>The paste from a Force10 VRRP problem I had in the past is not related entirely to your post, but it did cause me some headaches. The issue was pinging the router interface and I was getting 15 ms delay. I wonder if the code on both routers is the same? Here is the Force10 issue.</DIV>
<DIV> </DIV>
<DIV>
<P align=left><B>Symptom: Packet Loss When Pinging the Virtual IP Address</B></P>
<P align=left>When pinging the virtual IP address of a VRRP group, packet loss is experienced. </P>
<P align=left><B>Troubleshooting Steps</B></P>
<P align=left>Force10 does not support 100% pings to VRRP virtual addresses. The reasons are:</P>
<UL>
<LI>
<P style="MARGIN-TOP: 12px; MARGIN-BOTTOM: 12px" align=left>Pings to the virtual IP address are forwarded to the CPU RP2 on the Route Processor Module (RPM) using the network entry in the line card CAM. By design, such RP2-bound packets are rate-limited to protect the CPU from DOS attacks and other unwanted packets. </P>
<LI>
<P style="MARGIN-TOP: 12px; MARGIN-BOTTOM: 12px" align=left>The E-Series supports hardware and software throttling to limit packets destined to any of the RPM CPUs -- CP, RP1, or RP2. Such throttling ensures that one packet type does not consume an excessive number of CPU cycles. The throttling mechanism works by placing packets in one of several predetermined queues, which have inherent rate limits.</P></LI>
<LI>
<P style="MARGIN-TOP: 12px; MARGIN-BOTTOM: 12px" align=left>Eric Roach<BR></P></LI></UL></DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif"><BR>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif"><FONT face=Tahoma size=2>
<HR SIZE=1>
<B><SPAN style="FONT-WEIGHT: bold">From:</SPAN></B> Vladimir Dyachenko <vlad.dyachenko@gmail.com><BR><B><SPAN style="FONT-WEIGHT: bold">To:</SPAN></B> foundry-nsp@puck.nether.net<BR><B><SPAN style="FONT-WEIGHT: bold">Sent:</SPAN></B> Wednesday, June 10, 2009 2:49:01 PM<BR><B><SPAN style="FONT-WEIGHT: bold">Subject:</SPAN></B> [f-nsp] Latency issue<BR></FONT><BR>Hello,<BR><BR>I got a strange problem for some time now.<BR><BR>I have two RX-4 routers, each one has an uplink to an upstream and get a full BGP table. Both are connected together thru BGP/OSPF and run VRRP owner/backup.<BR><BR>Then I have a switch connected to both routers and my servers are connected to that switch.<BR><BR><SPAN style="FONT-FAMILY: courier new, monospace"></SPAN><SPAN style="FONT-FAMILY: courier new, monospace">----------------- -----------------<BR>|
| | |<BR>| BR 1 |-------| BR 2 |<BR>| | | |<BR>----------------- -----------------<BR> \ /<BR> -----------------<BR> |
|<BR> | SW 1 |<BR> | |<BR> -----------------</SPAN><SPAN style="FONT-FAMILY: courier new, monospace"></SPAN><BR><BR>From Internet when I connected from BR1 (with upstream 1) everything works fine, latency is normal. But when I connect thru BR2 (with path over upstream 2) my latency get 80ms for now reason on the last hope (between the provider interface on my side and the target).<BR><BR>I run a VLAN '2',BR1 has spanning-tree priority 200 and BR2 has spanning-tree priority 100 and my switch has spanning-tree priority 0.<BR><BR>Note : this only happends for upstream 2 on BR2, and when I turn off router 1 (and thus
disconnected upstream 1) latency is again normal for upstream 2.<BR><BR>Any idea ? <BR><BR>Best regards.<BR><BR>Vladimir<BR></DIV></DIV></div></body></html>