Darren, the ESX is set to use link status.

We saw the same thing during our initial HA testing of our N5K deployment. Basically the ESX server sees linkup and starts to forward traffic before VPC allows the rebooted switch to forward North/South. What you get is a black hole for several seconds.

http://kb.vmware.com/kb/1005577

By enabling the beaconing setting and running PowerPathVE for multipath Fiber Channel, we can reboot a single N5K in a VPC pair and lose no Ethernet or FC frames.

with beaconing, just make sure we run a code later than 4.2.1.N1.1. We have an issue in the NX-OS on the n5k where we mark the frame with incorrect length at ingress and stomp it with a crc, therefore egress detects the crc error and which in turn could cause some performance degradation. We have seen few customers run into this issue. It is documented in CSCtb96758.

Thanks, Vinayak

Good info...We POC'ed the N5K and 2232 on DeeWhy beta and then went directly to 4.2 for production, so that why I never saw that bug in the lab.

Thanks, that's good info. For the moment we are using port channels between the Nexus and the ESX hosts, which doesn't allow beacons.

In principle I used trunks, since I think this is the most consistent way of configuring the networking part of the solution, every switch connection is a port channel (in this case, Nexus switch - Distributed switch).

Maybe we may need to reconsider this and this is a good reason to. We are not using Nexus 1000v, but one of the reasons I wanted to try it out was to be able to use LACP on port channels.

What is the official Cisco recomendation about this?

if you arent using n1kv, then unfortunately we cant do lacp binding. It would be regular etherchannel mode on.

Sample Configuration of Etherchannel/ Link Aggregation with ESX and Cisco/HP Switches

http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1004048

Supported Cisco  configuration: EtherChannel Mode ON – ( Enable Etherchannel only)

Well, yes, that's exacly what I'm doing right now and I'm aware of the LACP limitation.

I still wonder if LACP would help thou. I just tried disconnecting the host from one of the N5K, leaving the VPC configured in both and if I reboot the device with no ESX connected, I still loose about 24 50ms spaced pings to the host when the N5K comes up. That's for a host member of the VPC but not connected to the rebooted device at all.

Is there an explanation to this?

So I take it you are doing Route based on ip hash and static 802.3ad?  LACP on both the Nexus and ESX would likely fix the packet loss issue, but as you pointed out you need the 1000v.

Have not tested LACP with 1000v, but would be interested in hearing the results during and after a N5K reload.

Of course with ISSU, the need for reload should be minimal, but you have to plan for worst case and know your failover times in the Data Center.

Thats correct, it would be static 802.3ad or trunk in HPs case. I dont have the testing results readily available with me, hopefully someone on the forum can respond about that.

Thanks, Vinayak

francisco, i see you updated the thread but I dont see your response. please let us know if you have further questions.

I replied to an earlier message of yours and the message got in the middle of the linear looking thread. The message is higher in the thread. Anyway, my response was:

what release of code are you running on the nexus switches?  Also the nexus switch which you rebooted (for which you have removed the connection to the host), was it the vpc primary initially ?

Version is 4.2(1)N2(1a)

The rebooted device is the VPC secondary.