Hi Jerom
from what i derived from docs there is only way to verify which BN is in use is to use "sho ip cef <prefix> vrf <VN>".
in our case we have 2 BNs & i can see in output both of them

EN0010#show ip cef vrf ENTERPRISE_VN 10.XX.1.YY de
10.0.0.0/9, epoch 0, flags [subtree context, check lisp eligibility], per-destination sharing
SC owned,sourced: LISP remote EID - locator status bits 0x00000000
LISP remote EID: 116934 packets 42241054 bytes fwd action encap
LISP source path list
nexthop 10.XYZ.0.1 LISP0.4099
nexthop 10.XYZ.0.2 LISP0.4099
2 IPL sources [no flags]
nexthop 10.XYZ.0.1 LISP0.4099
nexthop 10.XYZ.0.2 LISP0.4099

does it mean that we cannot say which BN terminates active VXLAN tunnel?
thanks

UPD. after reading i have little bit more Qs like "how 2 external/anywhere BNs synchronize their switching to remote BNs for internet termination when they lose their local internet breakouts one by one?" etc. But it's different story...

Unfortunately, CEF next hop hashing is just the software side of things, even using "exact route" will not give you the exact hashing for a specific traffic flow, as that depends on the equal-cost routing implementation in each hardware platform.

There was a command for cat9k that was like "show pla hard fed sw active forward exact-route..." that can provide a more accurate result when it comes to hashing. Other than that, doing an EPC capture in each  egress underlay port can give you the encapsulation details of which border was elected

Yes, for the whole Fabric Site, not per Edge Node. In the SDA UI, on each Border Node, you can adjust the LISP Priority. If you change BN1 to LISP Priority 9 and leave BN2 as default (10), then BN1 will always be preferred over BN2. Regards, Jerome

Hi Jerom
what is tiebreaker if priorities are equal between 2 BNs? Or VXLAN-traffic just gets pinned to arbitrary BN based on the src-dst hash calculated & are the inner or outer src-dst used for hash?

Thanks

is it the same for the L2-handoff traffic? we have a deployment with 2 BNs each both L3&L2-handoff, but whilst for L3-handoff both BNs are able to forward traffic from/to fabric site for the L2-handoff (gateway outside the fabric) only one of them is active at a time for VXLAN-to-L2 switching & vice versa. My concern is if EN hashes L2 traffic to L2-standby BN such a traffic gets dropped bc there is no L2-switching path for the L2VNs between BNs.

true. i should think about default gw's MAC for out-of-fabric traffic gets registered only by Active L2-h/o BN. shame...