DSR mode- Permanently High packet CPU Usage (100%) is seen in the Primary
Article ID: CTX617016
Updated On:
Description
Packet CPU usage remains consistently at 100%
High Loopback traffic is observed on the node
Resolution
Binding an additional monitor (example Ping) to the service group so netscaler can learn the backend servers mac address.
https://docs.netscaler.com/en-us/citrix-adc/current-release/load-balancing/load-balancing-dsrmode.html
Problem Cause
Custom monitor runs on the FreeBSD side, so the PE doesn't learn the mac address, this will create a loop in traffic which is an expected behavior.https://docs.netscaler.com/en-us/citrix-adc/current-release/load-balancing/load-balancing-dsrmode.html
- The appliance obtains the server’s MAC address from the monitor bound to the service. However, custom user monitors (monitors of type USER), which use scripts stored on the NetScaler appliance, do not learn a server’s MAC address. If you use only custom monitors in a DSR configuration, for each request the virtual server receives, the appliance attempts to resolve the destination IP address to a MAC address (by sending ARP requests). Because the destination IP address is a virtual IP address owned by the NetScaler appliance, the ARP requests always resolve to the MAC address of the NetScaler interface. Therefore, all traffic received by the virtual server is looped back to the appliance. If you use user monitors in a DSR configuration, you must also configure another monitor of a different type (for example, a PING monitor) for the services, ideally with a longer interval between probes, so that the MAC address of the servers can be learned.
Was this article helpful?
Yes
No
Powered by
