流量監控添加交換機使用一段時間后觀察到流量圖老是會斷,查看日志和設備信息后發現Cacti獲取不到交換機的SNMP信息
然后再ping一下交換機的IP,發現有很高的延遲,于是遠程登錄交換機檢查配置。
查看CPU占用率
WZMD1F15-C#sh processes cpu sorted | include SNMP
CPU utilization for five seconds: 99%/8%; one minute: 99%; five minutes: 99%
PID Runtime(uS) Invoked uSecs 5Sec 1Min 5Min TTY Process 233 4151587520 680981 37631 76.10% 77.15% 76.76% 0 SNMP ENGINE
231 3337772000 1302328 2562 8.79% 8.76% 8.74% 0 IP SNMP
93 1840900000 1222887 1505 3.63% 3.67% 3.72% 0 IP Input
WZMD1F15-C#sh log
*Aug 9 10:08:34: %SNMP-3-INPUT_QFULL_ERR: Packet dropped due to input queue full
*Aug 9 10:08:34: %SNMP-3-INPUT_QFULL_ERR: Packet dropped due to input queue full
*Aug 9 10:09:00: %SNMP-3-INPUT_QFULL_ERR: Packet dropped due to input queue full
可以查看到是SNMP ENGINE占用率過高
接下來
WZMD1F15-C#sh run | begin snmp
WZMD1F15-C(config)#snmp-server community public RO //啟用只讀的snmp
只有這么一行,再加點限制
WZMD1F15-C(config)#snmp-server host 124.x.x.x public //Specify hosts to receive SNMP notifications
WZMD1F15-C(config)#snmp-server inform retries 0 //snmp v1的inform具有重傳特寫,默認是3
觀察一段時間,如果還是沒有降下來,就加個ACL上去,限定主機存取
WZMD1F15-C(config)#access-list 66 permit 124.x.x.x
WZMD1F15-C(config)#access-list 66 deny any
WZMD1F15-C(config)#snmp-server community public RO 66
再觀察一下效果,可以看到占用率降下來了
