Community discussions

MikroTik App
  4. RouterOS
  5. General

Packet loss on CCR1009

Post Reply
 
felek
just joined
Topic Author
Posts: 5
Joined: Tue Aug 23, 2016 12:13 am

Packet loss on CCR1009

Mon May 22, 2017 1:50 pm

Hi

I have two CCR1009. One is backup device, second is a gateway to 10 servers in data center. The traffic is about 100-150Mb/s with 20 000 packets/s. The CPU on active router in rush hours comes to 10%. Backup device is completely unused. I have two dedicated ports to DC switch. Each for one router. Routers has own IPs with the same subclass. If the main router break down I will add IP that has routing of public servers IPs to backup device and everything would be working ok.

I have problem with losing packets. When I’m pinging router public address or server behind routers I get 1-10% packets loss. The same situation is when i’m pinging the backup device (without any traffic). I have no idea what is going on. The DC staff claims that is everything in their network.
When i’m pinging default gateway of our network on DC side - I also have the same - 1-10% pacets loss.

This is firewall configuration on both routers:

/ip firewall filter
add action=accept chain=input comment="Accept input established, related" connection-state=established,related
add action=accept chain=forward comment="Accept forward established, related" connection-state=established,related
add action=accept chain=forward comment="Accept forward interface PUBLIC <> PUBLIC" in-interface=PUBLIC out-interface=PUBLIC
add action=accept chain=forward comment="Accept forward interface PUBLIC -> INTERNET" in-interface=PUBLIC out-interface=INTERNET
add action=accept chain=forward comment="Accept forward interface INTERNET -> PUBLIC" in-interface=INTERNET out-interface=PUBLIC
add action=accept chain=input comment="Accept input protocol ICMP" protocol=icmp
add action=drop chain=input comment="Default input drop"
add action=drop chain=forward comment="Default forward drop”

PUBLIC - interface with servers
INTERNET - network of DC
Top
 
User avatar
Steveocee
Forum Guru
Forum Guru
Posts: 1199
Joined: Tue Jul 21, 2015 10:09 pm
Location: UK
Contact:
Contact Steveocee

Re: Packet loss on CCR1009

Tue May 23, 2017 10:09 pm

Have you tried trace routing or path pinging to confirm the loss is from the DC and not a bad link somewhere else? What happens if you ping out from the routers?
Top
 
p3rad0x
Long time Member
Long time Member
Posts: 640
Joined: Fri Sep 18, 2015 5:42 pm
Location: South Africa
Contact:
Contact p3rad0x

Re: Packet loss on CCR1009

Wed May 24, 2017 4:17 pm

Its most most likely a link that is saturated some ware during peak hours causing this.

Like Steveocee said, a traceroute will show you where to start looking for problerms.
Top
 
jarda
Forum Guru
Forum Guru
Posts: 7756
Joined: Mon Oct 22, 2012 4:46 pm

Re: Packet loss on CCR1009

Thu May 25, 2017 1:02 pm

Just putting rules of the same chain together does not mean anything more then cosmetic change.
Top
Post Reply
  4. RouterOS
  5. General