Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
ARP Miss

ARP Miss

Created: Dec 23, 2020 12:15:26Latest reply: Dec 23, 2020 12:34:28 469 3 0 0 0
  Rewarded HiCoins: 0 (problem resolved)
View the author 1#

Hi,

On Huawei S5700, a large number of logs are generated, indicating that arp-miss occurs, and the interface frequently flapping. How can I solve this problem?

Dec 22 2020  16:16:14-05:13 S5700-28C-EI D/4/CPCAR_DROP_MPU(l)[0]:Rate of packets to cpu exceeded the CPCAR limit on the MPU. (Protocol=arp-miss, CIR/CBS=64/10000, ExceededPacketCount=20016)                                                                  

Dec 22 2020  16:13:22-05:13 S5700-28C-EI %IFNET/4/LINK_STATE(l)[1]:The line protocol IP on the interface Vlanif99 has entered the UP state.                                                                                         

Dec 22 2020  16:13:22-05:13 S5700-28C-EI %IFNET/4/IF_STATE(l)[2]:Interface Vlanif99 has turned into UP state.                    

Dec 22 2020  16:13:22-05:13 S5700-28C-EI %IFPDT/4/IF_STATE(l)[3]:Interface GigabitEthernet0/0/24 has turned into UP state.       

Dec 22 2020  16:13:18-05:13 S5700-28C-EI %RM/4/IPV4_DEFT_RT_CHG(l)[4]:IPV4 default Route is changed. (ChangeType=Delete, InstanceId=0, Protocol=Static, ExitIf=Unknown, Nexthop=192.168.99.1, Neighbour=0.0.0.0, Preference=60, Label=NULL, Metric=0)               

Dec 22 2020  16:13:17-05:13 S5700-28C-EI %IFNET/4/LINK_STATE(l)[5]: The line protocol IP on the interface Vlanif99 has entered the DOWN state.                                                                                   

Dec 22 2020  16:13:17-05:13 S5700-28C-EI %IFNET/4/IF_STATE(l)[6]:Interface Vlanif99 has turned into DOWN state.                  

Dec 22 2020  16:13:17-05:13 S5700-28C-EI %IFPDT/4/IF_STATE(l)[7]:Interface GigabitEthernet0/0/24 has turned into DOWN state.     

Dec 22 2020  16:06:14-05:13 S5700-28C-EI D/4/CPCAR_DROP_MPU(l)[8]:Rate of packets to cpu exceeded the CPCAR limit on the MPU. (Protocol=arp-miss, CIR/CBS=64/10000, ExceededPacketCount=146099) 


Like (0) Dislike (0) Favorite(0) Share Report
Previous: The NMS of the CE12808 Fails to Receive Alarms
Next: Outbound traffic statistics on an Eth-Trunk
Featured Answers

Recommended answer

(0) (0)
Popeye_Wang
Admin Created Dec 23, 2020 12:24:01

Hello,

The log indicates that the CPCAR value exceeds the threshold.  Please try to configure attack source tracing to check whether there are attacks. If no, adjust the CPCAR value.

Example for configuring attack source tracing:

<HUAWEI> system-view

[HUAWEI] cpu-defend policy test

[HUAWEI-cpu-defend-policy-test] auto-defend enable

[HUAWEI-cpu-defend-policy-test] auto-defend alarm enable

[HUAWEI-cpu-defend-policy-test] auto-defend action deny timer 10

[HUAWEI-cpu-defend-policy-test] quit

[HUAWEI] cpu-defend-policy test global

Example of changing CPCAR car:

[HUAWEI] cpu-defend policy 1

[HUAWEI-cpu-defend-policy-test] car packet-type arp-reply cir 768 cbs 144384

[HUAWEI-cpu-defend-policy-test] car packet-type arp-miss cir 768 cbs 144384

[HUAWEI] cpu-defend-policy 1


View more
  • x
  • convention:
All Answers
(0) (0)
2#
Popeye_Wang
Popeye_Wang Admin Created Dec 23, 2020 12:15:43


Hello,
Kindly wait a second, we are processing on your problem.
View more
  • x
  • convention:
(0) (0)
3#
Popeye_Wang
Popeye_Wang Admin Created Dec 23, 2020 12:24:01

Hello,

The log indicates that the CPCAR value exceeds the threshold.  Please try to configure attack source tracing to check whether there are attacks. If no, adjust the CPCAR value.

Example for configuring attack source tracing:

<HUAWEI> system-view

[HUAWEI] cpu-defend policy test

[HUAWEI-cpu-defend-policy-test] auto-defend enable

[HUAWEI-cpu-defend-policy-test] auto-defend alarm enable

[HUAWEI-cpu-defend-policy-test] auto-defend action deny timer 10

[HUAWEI-cpu-defend-policy-test] quit

[HUAWEI] cpu-defend-policy test global

Example of changing CPCAR car:

[HUAWEI] cpu-defend policy 1

[HUAWEI-cpu-defend-policy-test] car packet-type arp-reply cir 768 cbs 144384

[HUAWEI-cpu-defend-policy-test] car packet-type arp-miss cir 768 cbs 144384

[HUAWEI] cpu-defend-policy 1


View more
  • x
  • convention:
(0) (0)
4#
Unicef
Unicef MVE Created Dec 23, 2020 12:34:28

Hello friend! Hope it can help u:

there is no abnormal about ISIS, so we recommend you to increase the CPCAR value of ISIS
Increase the CPCAR value of ISIS as per the following steps.

<HUAWEI> system-view
[HUAWEI] cpu-defendpolicy test

[HUAWEI-cpu-defend-policy-test] car packet-type isis cir 320

[HUAWEI-cpu-defend-policy-test] quit
[HUAWEI] cpu-defend-policytest global

https://forum.huawei.com/enterprise/en/huawei-s5700-cpcar-drop-mpu-error/thread/563749-861

Thanks!
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.