NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
GS724T no gui and presumably high cpu usage
I have at GS724Tv3 that sits in my DMZ. i.e. connects the firewall to the DMZ machines and the firewall for the inner network. My issues are: (1) it rarely responds to ping requests (maybe 1 ou...
I solved this one.
The two firewalls attached to the switch were multicasting state and config data back and forth. The switch had IGMP snooping enabled from a previous configuration (no longer used). Oddly, the configured snooping VLAN was not where the multicast traffic was happening.
When I turned off the multicast sync between the firewalls the GS724T GUI was responsive again. I then turned off IGMP snooping. (Probably would have gone a LOT quicker if I had known snooping was a CPU vs. switching HW function.)
Yes, I can send additional info. What exactly do you want? The syslog output I assume? Having looked at it I can't see anything that suggests where to go next. Syslog attached...
Please take this as constructive... I appreciate the help. What I'm trying to understand in the debug process is, "What are we trying to isolate or eliminate?" vs. let's look at information without knowing why. For example, I've asked previously about what would be competing with the GUI for resources as resource starvation might explain why it's not working. We've not discussed the answer to that question.
Since I don't know what the CPU is doing vs the switching hardware (also a previous question) my best guess at the source of the problem here is:
- some type of traffic coming from the servers is being watched or snooped by the CPU and the volume of that traffic is overloading the system
- there is some type of HW problem with one or more ports that is causing interrupts/exceptions at a high rate that the CPU is servicing,
- normal functions of the cpu like diffserv (or other QoS) or syslog are overloaded.
So it would help if we could discuss how to eliminate any of these theories about the source of the problem, or discuss alternative theories about the source of the problem.
Thank you.
I solved this one.
The two firewalls attached to the switch were multicasting state and config data back and forth. The switch had IGMP snooping enabled from a previous configuration (no longer used). Oddly, the configured snooping VLAN was not where the multicast traffic was happening.
When I turned off the multicast sync between the firewalls the GS724T GUI was responsive again. I then turned off IGMP snooping. (Probably would have gone a LOT quicker if I had known snooping was a CPU vs. switching HW function.)
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
