03-18-2020 09:10 AM
Hi,
Is it somehow possible for ACI to learn the endpoints IP when the BD has not a subnet configured? Just enabling "Unicast routing"?
Thanks.
Solved! Go to Solution.
03-23-2020 06:10 AM - edited 03-23-2020 06:11 AM
Hello,
I looked at the shared captures, and the configuration looks indeed ok. As Remi mentioned, you can verify if you have the Enforce Subnet Check option disabled (System -> System Settings -> Fabric-Wide Settings).
Remi brings a good point here. You must be careful when having the IP addresses learned in a L2BD. In particular the type of problems you may see are exemplified in Figure 16. Why you need to disable Unicast Routing for L2BD from ACI Endpoint Learning Whitepaper https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739989.html
Can you give us more details why you need to see the IP addresses of the EPs in a L2 BD? Maybe we can find a better approach :-).
Cheers,
Sergiu
03-20-2020 12:22 AM
Yes. If unicast routing is enabled, even without configuring a subnet, the fabric will learn EP IP addresses.
BD Config:
Learned Endpoints:
Regards,
Sergiu
03-20-2020 08:45 AM
Hi,
Mines are not displaying. My BD is configured in mode network-centric with BUM flood enabled, IP Data-plane learning enabled, and GARD detection enabled. But my virtual machines IP are not displaying. What am I missing?
Regards.
03-20-2020 09:34 AM - edited 03-21-2020 07:48 AM
Hello,
Do you have Limit IP Learning To Subnet enabled? In your scenario, where you want to learn IP addresses in a BD with no SVI configured, this option needs to be disabled.
Also, if the EPs were learned while BD was in L2, it might take 1-2 minutes until EP is updated. If fabric is not in production, you can try to clear the endpoint table and force the re-learn.
Leaf563# clear system internal epm endpoint all interface local rogue vrf anycast key remote vlan
Regards,
Sergiu
03-20-2020 01:28 PM
Hi @Sergiu.Daniluk ,
Your last statement needs a little qualification
Do you have Limit IP Learning To Subnet enabled? This needs to be disabled to have the IP addresses learned.
This is ONLY the case if the the BD does not have an IP address assigned, or the IP address assigned has been configured with No Default SVI gateway
I realise that in the context of the whole discussion, the reader might realise that the case in point is one where the BD does not have an IP address, but not everyone reads the whole discussion.
03-21-2020 07:46 AM
Good point. I will make an update to my reply to highlight the context.
03-21-2020 01:32 AM
Hi,
The Limit IP Learning To Subnet is disabled as I don't have any IP address. I cleared the endpoint table as well and generated traffic again but still seeing only the MAC addresses. ACI should learn the IP addresses because the IP Data-Plane learning is enabled, right?
I'm running the version 4.2(3j)
Regards.
03-21-2020 07:56 AM
This is getting interesting. Can you give us more details from your setup? The following ones in particular: screen capture with the cfg of BD, VRF, learned EP, the domian type you have, and what platform do you have as Leaf.
Regards,
Sergiu
03-23-2020 12:47 AM
Hi @Sergiu.Daniluk ,
Thanks for your interest in this case. I've attached the screenshots requested.
My deployment uses the N9K-C93180YC-FX and N9K-C93108TC-FX leafs.
03-23-2020 01:34 AM
Hi @Antonio Macia ,
Have you Enforce Subnet Check disabled in the Fabric Wide Settings and have you cleared the ARP Cache on the VMs?
However, what you are trying to do is not best practice while you may bring other problems. You should rethink what is your real need as there may be other way to do it.
03-24-2020 12:26 AM
Hi,
I tried disabling the Enforce Subnet Check but still not displaying the IPs. I was trying to get IP visibility but after reviewing the caveats I will disable unicast routing for L2 BD.
Thanks.
03-23-2020 06:10 AM - edited 03-23-2020 06:11 AM
Hello,
I looked at the shared captures, and the configuration looks indeed ok. As Remi mentioned, you can verify if you have the Enforce Subnet Check option disabled (System -> System Settings -> Fabric-Wide Settings).
Remi brings a good point here. You must be careful when having the IP addresses learned in a L2BD. In particular the type of problems you may see are exemplified in Figure 16. Why you need to disable Unicast Routing for L2BD from ACI Endpoint Learning Whitepaper https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739989.html
Can you give us more details why you need to see the IP addresses of the EPs in a L2 BD? Maybe we can find a better approach :-).
Cheers,
Sergiu
03-24-2020 12:27 AM
Hi @Sergiu.Daniluk ,
Thanks for pointing out this caveat. I will disable unicast routing in this case and leave only MAC address learning only.
Regards.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide