Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1448
Views
1
Helpful
5
Replies

ACI F5 Configuration - Same IP Used for Multiple MAC Addresses

Go to solution
zalu
Level 1
Level 1

ā€Ž12-07-2023 01:51 AM

Hi all,

we have some problems in our ACI-F5 design. Here are some facts on design:

- Servers that we are using in F5 pools are connected on ACI Leafs

- Servers has only default route pointing to F5 Self floating IP

- F5 for this partition (VLAN) , has default route pointing to BD on ACI.  F5 connected via VPC to another pair of Leafs

- F5 is Active-Standby cluster with MAC Masquerade Address configured on both units

- Servers, VIPs and BD on ACI are all in same subnet.

This setup is same for different F5 partitions (VLANs). For all of them we see same problem in Duplicate IP Usage. 

ACI sees IP address from server coming directly behind leaf (where server is connected) with server real MAC address and ACI also sees server IP with F5 masquerade MAC coming from VPC links where F5 is connected. We have this problem for all servers. On some servers we see some DNS timeouts and we think it could be related with this setup and EP (servers) moving all the time between leaf where server is connected and VPC where F5 is connected. There is also Fault in ACI for coop dampening on spines, congaing MAC addresses of these servers that are flapping.

Any ideas how to fix this problem? 

Thanks,

zalu

 

 

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
zalu
Level 1
Level 1
In response to Andrzej_P

ā€Ž02-15-2024 01:29 AM

Hi Andrzej, yes I did, but this would require some testing. I was searching for quicker solution. 

Thanks for reply.

Z

View solution in original post

0 Helpful
5 Replies 5

Go to solution
mhawwas
Level 1
Level 1

ā€Ž02-07-2024 01:59 AM

I have same problem, have you got a solution yet ?

0 Helpful

Go to solution
zalu
Level 1
Level 1
In response to mhawwas

ā€Ž02-08-2024 04:51 AM

You have option to disable data plane learning for that EPG or to add those flapping IPs under EPG L4-L7 Virtual IPs.

Let me know if that helps.

br

0 Helpful

Go to solution
mhawwas
Level 1
Level 1
In response to zalu

ā€Ž02-13-2024 11:03 PM

Hi Zalu,

Thanks for your feedback ! It took for me some time to get reply from TAC and discuss this issue internal. 

Disable data plane learning on EPG was also the solution suggested by TAC. 

kind regards, 

Go to solution
Andrzej_P
Level 1
Level 1

ā€Ž02-13-2024 05:20 AM

Hi Zalu,

Have you looked here?: Cisco ACI and F5 BIG-IP Design Guide White Paper

Regards,

Andrzej

0 Helpful

Go to solution
zalu
Level 1
Level 1
In response to Andrzej_P

ā€Ž02-15-2024 01:29 AM

Hi Andrzej, yes I did, but this would require some testing. I was searching for quicker solution. 

Thanks for reply.

Z

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card

Save 25% on Day-2 Operations Add-On License