Leveraging a packet capture we figured out that it's apparently Reverse ARP packets that trigger the message. From what I understand this looks like a typical contract deny log message and we do indeed have deny contracts in place. However, several questions arise:
- Why is the context (CName) unknown?
- Why would a RARP (L2 Broadcast) hit a contract between EPGs when EPGs are 1:1 related to VLANs in our case?
In the GUI these denies are not seen as contract drops under the tenant. They can only be seen under System > Events.
Does anyone have any experiences with log messages like this? Any hint is appreciated.
Here are some commonly asked questions and answers to help with your adoption of Cisco ACI solution. Subscribe to this post to stay up-to-date with the latest Q&A and recommended Ask the Experts (ATXs) sessions to attend.