No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

TP Host and Codec VP9039A cannot have access through SSH and WEB after some minutes in TP3106.

Publication Date:  2014-10-25 Views:  76 Downloads:  0
Issue Description
TP3106: HUAWEI_TP3106_V100R001C02B014.
VP9039A: VCTV100R011C02B013SP04.



Switch S3700HI: Software Version V100R006C03
Alarm Information
None.
Handling Process
When shutdown the port 1 of the switch, this port 1 connect to customer network, and restart the TP Host and codec, the system works without problem.
Then  no shutdown to port 1 of the switch and after 5 minutes, the TP Host and Codec  not respond to SSH and WEB access but respond to ping test.

Capture packets at port 1 of the switch and find that many ARP packets come from customer network in short period of time.


Root Cause
After  capture packets from TP3106 system.
There have totally 4806 ARP packets in 89 seconds.
Nearly 45.038% packets was ARP packets in the customer network .
If there have so many ARP packets in the network environment .
Every devices will learn ARP packets frequently and it will use many resources of the devices and reduce the performance of the devices.
Our devices have some restriction for too many ARP packets
Solution
Configure a restriction in the switch at port  1 (ACL) with the purpose to avoid devices learn many useless ARP packets.

Configuration in Switch:

!Software Version V100R006C03                                                                                                                                                                                                               
                                                                                                                                                                                                                                                                                                                                                                                                                                                                          
acl number 4000                                                                                                                                                                                                                             
description BLOQUEA TODO EL ARP DE POLIRED                                                                                                                                                                                                 
rule 1 permit l2-protocol arp source-mac 0050-6084-a102 vlan-id 10                                                                                                                                                                         
rule 2 permit l2-protocol arp source-mac 0050-6084-a2fd vlan-id 10                                                                                                                                                                         
rule 3 permit l2-protocol arp source-mac cccc-81ee-5d02 vlan-id 10                                                                                                                                                                         
rule 4 permit l2-protocol arp source-mac b8af-6763-c935 vlan-id 10                                                                                                                                                                         
rule 20 deny l2-protocol arp vlan-id 10                                                                                                                                                                                                    
#                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    
Suggestions
Before install TP3016 system in customer network, need to know if there is traffic that could affect devices in TP3106 system. 

END