We have an ACI(Multipod) & F5 (ACT-STBY) setup in our environment build in Network centric mode. Some strange issue occurred in last migration, when we failover from Active to Standby and again back from Standby to Active F5 , it is seen that traffic gets freeze and Rogue end point policy got kickoff which marked some of the VIP traffic as Rogue.
There is an Article from F5 which talks about disabling IP data plane on the VRF, I would like to understand from techies over here if anyone has gone through this sort of design and issue and what are the best practices followed in this scenario either on ACI/F5.
You have two options (depending on the version you're running).
If you're running a release prior to 5.2, then your only option is to disable IP Dataplane Learning on the VRF used by the F5 devices. Depending on your VRF design this may or may-not be desirable. Where customers are sharing a single VRF across all devices, I've seen customer instead create a new VRF for F5 devices, then disable IP learning only on that VRF. This way you maintain the benefits from IP DP Learning on your regular endpoints.
let me add our experience, it may help. We are facing issues with HA systems which are using single MAC address and are hosting many virtual IPs (sharing the same MAC). When we have Rogue Endpoint Detection turned on, and HA system does switchover, multiple IPs, (which are sharing the same MAC) are moving. ACI considers this as a single endpoint moving multiple times and freezes learning, causing severe outage. As a workaround we have R.E.D. turned off (which is undesirable). We raised TAC case, it was considered as a new bug.
常见的数据中心之间通信均会采用运营商MSTP/OTN专线进行互联实现通信，由于长途线路价格昂贵通常我们需要最大化使用线路带宽，传统的网络传输中通常是尽力而为传输一旦突发流量较大就会发生线路拥塞的情况，从而影响业务正常通信传输。这时候我们可以采用Qos技术来实现数据中心思科设备之间关键网络流量保障，从而实现链路最大化利用。拓扑图场景如下：如上图，SW01是位于数据中心A的广域网接入Cisco Nexus 3048交换机，SW02是位于数据中心B的广域网接...
Cloud Networking Community on Cisco Customer Connection
Join our community!!
As a valued Cisco Cloud Networking (former DCN) customer, you can be part of Cisco Customer Connection Program (CCP), Cisco’s global online community program. Connect ...
Join us for a live demo of Cisco Intersight Cloud Orchestrator to learn how you can simplify the orchestration and automation of your infrastructure and workloads across your hybrid cloud environment. We will take a closer look at Cisco Intersight Cloud O...
Hybrid Cloud Demo Series: Simplify Orchestration of Your Infrastructure and Workloads
Tuesday, September 7, 202110:00 am Pacific Time(San Francisco, GMT-08:00)Join us for a live demo of Cisco Intersight Cloud Orchestrator to learn how you can simpli...
Hybrid Cloud Demo Series: Simplify your hybrid cloud environment with Cisco Cloud ACI
Tuesday, August 24, 202110:00 am Pacific Time(San Francisco, GMT-08:00)Join us for a special Hybrid Cloud Demo Series webinar featuring Cisco Cloud Application Cen...