>Посмотрите
>sh proc cpu sort - какой процесс(ы) жрут камень
Это уже не раз смотрел. Основной "жрущий" процесс IP..... - но он всего 10-15%. А в статистике за 5 сек 5 мин и 1 мин - в 5секундной статистике наибольшая доля - это прерывания, наприем, 96%/78%.
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
31 1834592704 758278726 2419 15.96% 15.81% 15.53% 0 IP Input
21 89931800 7773681 11568 0.90% 0.76% 0.75% 0 Per-Second Jobs
sh int switching мой IOS не кушает.
Конфиг:
Current configuration : 32504 bytes
!
! Last configuration change at 18:13:01 GMT+2 Mon Jan 15 2007
! NVRAM config last updated at 13:00:24 GMT+2 Sun Dec 31 2006
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
service password-encryption
service compress-config
no service dhcp
!
hostname Имя :)
!
boot system flash:c3640-is-mz.122-37.bin
no logging buffered
enable secret 5 ....................
enable password 7 ...................
!
clock timezone GMT+2 2
clock summer-time EET/Kiev recurring last Sun Mar 1:00 last Sun Oct 1:00
ip subnet-zero
no ip icmp rate-limit unreachable DF
ip wccp version 1
ip flow-cache entries 64000
ip cef
!
!
ip tcp path-mtu-discovery
ip name-server ..............
!
frame-relay switching
call rsvp-sync
!
!
!
!
interface Loopback1
description SNAT_ip
ip address .................
!
!
interface FastEthernet0/0
description XXX
no ip address
ip route-cache flow
no ip mroute-cache
load-interval 30
speed 100
full-duplex
no cdp enable
!
interface FastEthernet0/0.1
description YYY
encapsulation isl 1
ip address ... secondary
ip address ... secondary
ip address ...
no ip redirects
ip nat outside
no ip mroute-cache
traffic-shape group xxx
traffic-shape group xxx
traffic-shape group xxx
traffic-shape group xxx
...
no cdp enable
!
interface FastEthernet0/0.2
...............
!
............
............
!
interface FastEthernet0/0.29
description ZZZ
encapsulation isl 29
ip address ........
no ip redirects
no cdp enable
!
interface Serial0/0
! не используется
!
interface FastEthernet0/1
description FFF
no ip address
load-interval 30
duplex auto
speed auto
no cdp enable
!
autonomous-system 12345
!
router bgp 12345
no synchronization
bgp log-neighbor-changes
network ddd
network eee
aggregate-address uuu
aggregate-address uuu
тут с десяток нейборов с роутмапами
!
ip nat pool MYPOOL ip1 ip2 netmask maska
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip nat inside source list AAA interface Loopback1 overload
ip flow-export source FastEthernet0/0.1
ip flow-export version 5
ip flow-export destination ip1 20001
ip flow-aggregation cache protocol-port
export destination ip1 20001
enabled
!
ip classless
тут всякие статик роуты
no ip http server
ip as-path access-list ............
ip as-path access-list ............
ip as-path access-list ............
!
Дальше аклы и роутмапы.
Кое-где на subifах стоят rate-limit. IP и имена вырезаны из конфига.