Cisco Systems UBR10012 manual Routerconfig-if# ip access-groupnumber

Page 38

Chapter 3 Troubleshooting PRE-1 Modules

Troubleshooting Common System Problems

In addition, the Cisco CMTS router automatically monitors ARP traffic and enters the IP addresses found in ARP requests into its own ARP table, in the expectation that a device will eventually be found with that IP address. Unacknowledged IP addresses remain in the router’s ARP table for 60 seconds, which means that a large volume of ARP traffic can fill the router’s ARP table.

If ARP traffic is excessive, you can try the following ways to limit this traffic:

Step 1 Disable the forwarding of ARP requests on a cable interface by using the no cable arp command in interface configuration mode.

Step 2 Disable the use of proxy-ARP on a cable interface by using the no cable proxy-arpcommand in interface configuration mode.

Note Using the no cable arp and no cable proxy-arpcommands shifts all responsibility for the management of the IP addresses used by CMs and CPE devices to the DHCP server and provisioning system.

Another approach would be to identify the cable modems and customer premises equipment (CPE) that are generating the ARP traffic. A simple way of doing this is by using an access list to log requests for an unassigned IP address in the subnet being used on a cable interface.

Step 1 Reserve at least one IP address on each cable interface’s subnet and ensure that it is not being assigned to any cable modems or CPE devices. For example, if a cable interface is using the subnet 192.168.100.0/24, you could choose to reserve IP address 192.168.100.253 for this purpose. Ensure that the IP addresses you have chosen are not assigned to devices by your provisioning system.

Step 2 If you currently have an access list applied to the cable interface, add a line that logs requests for this particular IP address. If you are not currently using an access list on the cable interface, create one for this purpose. In both cases, the relevant line would be:

Router(config)# access-list number permit ip any host 192.168.100.253 log

where number is the number for the access-list. Change the IP address to whatever address you have selected to be reserved for this cable interface.

Note If you are creating a new access list, ensure that the last line of the list is access-listnumber permit ip any any. Otherwise, all other traffic will be blocked on the interface.

Step 3 Apply the access list to the cable interface using the ip access-groupcommand:

Router(config-if)# ip access-groupnumber in

Step 4 After applying the access list, regularly examine the message log to find the devices that are attempting to access the reserved IP address. If a cable modem or CPE device is repeatedly sending ARP requests or replies for this IP address, it could be part of a virus or theft-of-service attack, or it could indicate a cable modem with defective software.

Step 5 After identifying these devices, you can further investigate the matter, and if necessary, block these devices from further network access.

Cisco uBR10012 Universal Broadband Router Troubleshooting Guide

3-10

OL-1237-01

 

 

Page 37 Page 39
Image 38
Page 37 Page 39
Contents Corporate Headquarters Text Part Number OL-1237-01Copyright 2001-2004, Cisco Systems, Inc All rights reserved N T E N T S ARP Traffic Testing with Digital Multimeters and Cable Testers B-1 OL-1237-01 Purpose AudienceChapter Description Document OrganizationRelated Documentation Cisco.com Obtaining DocumentationDocumentation Feedback Ordering DocumentationOpening a TAC Case Obtaining Technical AssistanceCisco TAC Website Obtaining Additional Publications and Information TAC Case Priority DefinitionsXii Basic Troubleshooting Checklist Basic Troubleshooting Tasks and Startup IssuesConfirming the Hardware Installation Last reset from power-on Displaying the Cisco IOS Software VersionHardware Troubleshooting Flowchart Displaying System Environment InformationCisco uBR10012 System Startup Sequence TCC+Startup Event Event Description PEM Faults and Fan Assembly Failures AC PEM FaultsFault Symptom Corrective Action Color DescriptionDC PEM Faults DC PEM Front Panel original model, UBR10-PWR-DC 2400W AC-Input Power Shelf AC OK Other Electrical ProblemsFault DC OKFan Assembly Module Faults Fan Assembly ModuleFan Assembly Air Circulation Pattern MULTI-FAN Failure LED Symptom Steps to TakeSingle FAN Failure OL-1237-01 Troubleshooting PRE-1 Modules Message Description PRE Module Not SupportedPRE-1 Module Status Screen IOS Intf Booting Up with Redundant PRE-1 ModulesIOS Prot IOS RUNPRE-1 Module Faults Fault Steps to Take LEDEthernet Connection Problems C10000config#interface fastethernet0/0/0Console Port Serial Connection Problems Troubleshooting Common System Problems Troubleshooting System CrashesHigh CPU Utilization Problems ARP TrafficRouterconfig-if# ip access-groupnumber Exec and Virtual Exec Processes Cpuhog ErrorsDebug and System Messages IP Input Processing Invalid Scheduler Allocate ConfigurationInterrupts are Consuming a Large Amount of Resources Snmp Traffic Bus ErrorsProblems with Access Lists Region Manager Start End Sizeb Class Media Name 0x0A000000 Memory Problems Alignment ErrorsLow Memory Errors Memory Parity ErrorsParticle Pool Fallbacks Spurious Interrupts Spurious Memory Accesses OL-1237-01 Troubleshooting Line Cards General Information for Troubleshooting Line Card Crashes Command DescriptionSIG Value SIG Name Error Reason Sigreload Cache Parity ErrorsSigerror Bus Errors Software-Forced Crashes Troubleshooting Line Cards TCC+ Front Panel Status Description PowerMaintenance Fault Type Response Show controllers clock-reference command Troubleshooting the OC-12 Packet-Over-SONET Line Card Fault Corrective Action RX CARRIER-A RX CARRIER-BActive Enabled PASS-THROUGHPOS EnableFail SRPPass Thru SyncWrap Troubleshooting the Gigabit Ethernet Line Card Gigabit Ethernet Line Card Faceplate and LED DescriptionsGigabit Ethernet Line Card Faults and Recommended Responses OL-1237-01 Password Recovery Procedure Overview Password Recovery ProcedurePress Return. The user Exec prompt appears Change all three passwords using the following commands OL-1237-01 Unsupported Commands Unsupported Frame Relay CommandsHccp Commands Mlppp CommandsSpectrum Management Commands Unsupported Mpls VPN CommandsUnsupported PPP Commands Unsupported Telco-Return CommandsOL-1237-01 Testing with Digital Multimeters and Cable Testers Equipment DescriptionTesting with OTDRs Testing with TDRs and OTDRsTesting with TDRs Testing with Network Monitors Testing with Breakout Boxes, Fox Boxes, and BERTs/BLERTsTesting with Network Analyzers Bert Enable LEDActive LED BlertMAINTENANCE, TCC+ ENABLE, OC-48 DPT/POSMAINTENANCE, OC-12 SRP/DPT POWER, OC-12 DPT/SRP POWER, TCC+STATUS, OC-12 DPT/SRP STATUS, TCC+ SYNC, OC-48 DPT/POS Maintenance LEDPower LED TX, OC-48 DPT/POS WRAP, OC-48 DPT/POSRX Carrier LED RX LED OC-12 DPT/SRP TCC+Present LED TCC+ RX Pkts LEDWrap LED TDR B-2TX LED OC-48 DPT/POS IN-6
Top Page Image Contents