Hi All,
We have encountered a problem related to MAC flooding/wrong learning with ACI fabric recently. ACI version : Version 4.1
EPG(VLAN) node getting learned with some other EPG(VLAN).
For eg: EPG-10(10.100.100.0/24) node(s) MAC/ARP started learning from EPG-20( 10.200.200.0/24) due to which EPG-10 got isolated totally and it's configured nodes stopped responding.
To overcome the problem, we have first cleared the ARP of both the above mentioned EPGs/BDs (10 and 20) and then "Enforced Subnet Check for IP Learning" i.e checked the option "Limit IP learning to Subnet" under both these BDs and post this problem got resolved.
Points here to note is :
1) No recent changes were made on ACI .
2) We have configured all our bridge domains with "L2 Unknown Unicast" as Hardware Proxy
Having some queries.
1- Where and what, things went wrong ... that resulted EPG/BD-10 MAC to learn from other EPG/BD.
2- Would also like to validate our approach for problem resolution.
3- Is this resolution is recommended, if not...Will this cause any adverse impact on service performance further.
Please share your opinion , Suggestion welcomes for Changes (if anyone feels) as per standard & best practice.
Rgds
***