客户端的 ARP 请求会影响 Cisco C897VA 是否接收包裹

网络工程 思科 思科-ios MAC地址 ARP
2022-02-28 01:22:20

所以我买了用过的 ISR C897VA 有一个问题:当从 windows ping vlan1 时,有很多“请求超时”。Config-register 0x2142 已完成,以及重置启动配置。PC刚连接gi5,路由器的配置是:

int vlan
ip address 192.168.0.1 255.255.255.0

ping 192.168.0.1 -t

Pinging 192.168.0.1 with 32 bytes of data:
Reply from 192.168.0.1: bytes=32 time=1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time=2ms TTL=255
Reply from 192.168.0.1: bytes=32 time=3ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 192.168.0.1: bytes=32 time<1ms TTL=255
Request timed out.
Request timed out.

如果我在 PC 上运行>arp -d 192.168.0.1它从 windows 的 arp 表中删除 192.168.0.1 和 MAC,因此强制它执行 arp 请求。如果 PC 当前正在接收来自 Vlan1 的 ping 回复,arp -d 192.168.0.1则 PC 将停止接收这些回复,反之亦然,如以下 Wireshard 屏幕截图所示:

在此处输入图像描述

为什么会这样?是硬件问题吗?

更新

连接图(路由器为C897VA除外):

在此处输入图像描述

Router#sh running-config
Building configuration...

Current configuration : 1667 bytes
!
! Last configuration change at 12:08:07 UTC Sun Aug 8 2021
!
version 15.8
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!


!
!
!
!
ip cef
no ipv6 cef
!
!
!
!
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
license udi pid C897VA-K9 sn FCZ22381163
!
!
!
redundancy
!
!
!
!
!
controller VDSL 0
!
!
!
!
!
!
!
!
!
!
!
!
interface ATM0
 no ip address
 shutdown
 no atm ilmi-keepalive
!
interface BRI0
 no ip address
 encapsulation hdlc
 shutdown
 isdn termination multidrop
!
interface Ethernet0
 no ip address
 shutdown
!
interface GigabitEthernet0
 no ip address
!
interface GigabitEthernet1
 no ip address
!
interface GigabitEthernet2
 no ip address
!
interface GigabitEthernet3
 switchport mode access
 no ip address
!
interface GigabitEthernet4
 no ip address
!
interface GigabitEthernet5
 switchport mode access
 no ip address
!
interface GigabitEthernet6
 no ip address
!
interface GigabitEthernet7
 no ip address
!
interface GigabitEthernet8
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Vlan1
 ip address 192.168.0.1 255.255.255.0
!
ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
!
ipv6 ioam timestamp
!
!
control-plane
!
!
!
mgcp behavior rsip-range tgcp-only
mgcp behavior comedia-role none
mgcp behavior comedia-check-media-src disable
mgcp behavior comedia-sdp-force disable
!
mgcp profile default
!
!
!
!
!
!
line con 0
 no modem enable
line aux 0
line vty 0 4
 login
 transport input none
!
scheduler allocate 20000 1000
!
!
!
!
!
!
!
end
2个回答

我注意到两件事:

  • 在您的终端系统所连接的路由器GigabitEthernet5上没有spanning-tree portfast(或spanning tree port type edge在某些较年轻的 Cisco 方言中)。
  • (假设 Windows 仍然有 4 秒的延迟来报告 ping 中的“超时”)似乎有 6 次超时、1 次成功、6 次超时的模式。

可能是因为布线或 NIC 缺陷导致 Gi5 抖动,并且在线路协议启动后,生成树的 BLK/LIS/LRN 阻止了几乎任何东西进入/离开该交换机端口?

问题:

  • 你从show interface counters errors和得到什么show logging
  • 所连接系统的操作系统报告 NIC 上的 RX 错误(如果在给定操作系统上可以访问此类计数器)?
  • 您是否尝试过路由器集成交换机上的另一条电缆和另一个端口?
  • 您是否对路由器的以太网 WAN 端口进行了同样的尝试?(千兆以太网8)。它是一个路由端口,将采用 IP 和子网掩码的“直接”配置。此外,不是交换端口,生成树主题也不适用。

客户端的 ARP 请求会影响 Cisco C897VA 是否接收包裹

ping一般来说,它不一定是确定数据包是否成功的有意义的工具。ICMP 生成无论如何都是低优先级的,并且可能还受到 DoS 保护的(默认)配置的限制。

您看到的可能是由 a) 路由器的 ICMP 出站速率限制和 b) 其 ARP 缓存超时创建的工件。

查看当前处于活动状态的 ICMP 速率限制。常见的 Cisco 语法是show ip icmp rate-limit. 您可以通过以下方式更改(默认)限制ip icmp rate-limit- 通常,您不应该完全停用它,而是根据您的要求更改限制。

其它你可能感兴趣的问题
上一篇这是什么类型的网线,CAT6 会为我带来什么好处吗? 下一篇路由的基本问题