Hello ACI people!
I came across a strange issue today.
I have a jumphost living in the fabric. From that jumphost I tried to reach two different hosts in the same subnet, external to the fabric.
I can ping one of them from the jumphost with no issues, however the other host is unreachable.
I did elam capture and ftriage and I can see it is dropped because of a missing contract.
For some reason first hop Leaf thinks that my destination is in a different EPG, where we do not have a contract in place so it drops the packet.
When I check the iproute on the Leaf, for both destinations it shows our ASA, as it should.
Have anyone experienced this before?
We are running on release 5.2(7g).
Leaf is somehow classifying the external IP address as an internal host in a different EPG, which is absolutely incorrect.
Thank you for any thoughts.
Accepted Solutions
Alright, issue is now solved!
I had a stale endpoint on the border leaf, once I manually cleared the entry , it worked just fine.
I hope this helps to someone in the future.
Cheers.
Alright, issue is now solved!
I had a stale endpoint on the border leaf, once I manually cleared the entry , it worked just fine.
I hope this helps to someone in the future.
Cheers.
