Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1313
Views
15
Helpful
14
Replies

Problem with Nexus5548UP in a VPC and ICMP Ping

M.Fly
Level 1
Level 1

‎05-07-2022 09:59 AM

Good morning,

i have a question about the behavior of a 2 Nexus 5548UP, compared to a CISCO C3850 in stacking pair.

As described in a topology attached, i have a node with ESXi, not LACP but static etherchannel with teaming on the NIC, connected to a couple of Nexus 5548UP with VPC configured and running.

The ESXi is attached on a orphan port because no LACP possible due to license level.

If i ping 8.8.8.8, 100% packet loss from a VM into ESXi, but i reach the VM in SSH or HTTP.

If i switch the NX5K with a stack of 2 3850, same topology and same other device, ping is OK and no problem with ICMP

I do not understand why ping is not running properly with the NX5K.

Labels:
Preview file
175 KB
14 Replies 14

MHM Cisco World
VIP
VIP

‎05-07-2022 10:55 AM - edited ‎05-07-2022 02:34 PM

...

0 Helpful

M.Fly
Level 1
Level 1
In response to MHM Cisco World

‎05-07-2022 01:53 PM

It's not clear for me, apologize me.

The ESXi host is on port that is in access mode on VLAN, this VLAN is in VPC and run in VPC like other port.

The host has only one port active, no LACP, so the second port is in standby and not have any MAC address.

The active port acts like a orphan port? Or not, because the second standby port is physical up?

Can i configure port channel Nexus side, and leave teaming configuratione un ESXi host side?

Many thanks.

MHM Cisco World
VIP
VIP
In response to M.Fly

‎05-07-2022 02:40 PM

no LACP meaning it connect Active/Standby,

do you config peer-gateway?

0 Helpful

M.Fly
Level 1
Level 1
In response to MHM Cisco World

‎05-07-2022 03:13 PM

No, i have not config peer-gateway under vpc domain 1

Can peer-gateway solve the issue?

If yes, i don't understand why.

0 Helpful

MHM Cisco World
VIP
VIP
In response to M.Fly

‎05-07-2022 04:22 PM

Screen Shot 2022-05-08 at 2.20.55 AM.pngScreen Shot 2022-05-08 at 2.21.13 AM.png

0 Helpful

marce1000
Hall of Fame
Hall of Fame
In response to MHM Cisco World

‎05-11-2022 08:12 AM

@MHM Cisco World ??? Seriously , 3 dots , as  an experienced member of the forum , ypu should

realize that your are confusing everybody

 N;



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

paul driver
VIP
VIP

‎05-07-2022 03:14 PM - edited ‎05-07-2022 03:14 PM

Hello

@M.Fly wrote:

The ESXi is attached on a orphan port because no LACP possible due to license level.

A Orphan port is that of an device that's NOT attached to any VPC but you say at present the ESXI device is and its not working
Remove that attached ESXI from the VPC and just attach them back singularly (no VPC) append the following to each peer port then test again.


int x/x
vpc orphan-port suspend


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

M.Fly
Level 1
Level 1
In response to paul driver

‎05-07-2022 03:52 PM

The ESXi port is not in VPC port, is on orphan port, the config is:

 

interface Ethernet1/9
  description 10G-LINK-ucs01|->LOMport2-RAME
  switchport mode trunk
  switchport trunk allowed vlan 9-11

There is other orphan port like ASA Device:

interface Ethernet1/5
  description 1G-LINK-fwASA02-outside|->Gi0/0-RAME
  switchport access vlan 10

All of this port is not configured like port-channel, but the VLAN belongs to this port is in the vPC, i'm still confused...

0 Helpful

paul driver
VIP
VIP
In response to M.Fly

‎05-08-2022 02:00 AM

Hello

As a test relocate the EXSI onto the VPC primary switch and see it if works, if connectivity is successful then append as stated by @MHM Cisco World peer gateway, also append vpc orphan-port suspend to the access port.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

M.Fly
Level 1
Level 1
In response to paul driver

‎05-11-2022 04:28 AM

Now we have placed a test lab and try to reproduce the behavior.

One thing, i do not have any L3 on the couple of Nexus 5548UP, only switching pourpose.

Follow up with the test results soon.

Many thanks to all.

0 Helpful

MHM Cisco World
VIP
VIP

‎05-11-2022 08:06 AM

If there is no L3 then check the STP block port in both side of NSK peer.

0 Helpful

M.Fly
Level 1
Level 1
In response to MHM Cisco World

‎05-13-2022 09:32 AM

There's no possible STP block port, are orphan port and there's no port in BLK status.

I try with a test lab soon, and follow up with the results

MHM Cisco World
VIP
VIP
In response to M.Fly

‎05-14-2022 12:33 PM - edited ‎05-15-2022 07:26 AM

OK, can you check if vPC port member is suspend in one Nexus Peer. 

Note:- when do LAB try config L2 connection between two Peer carry the VLAN of Server instead of config it as orphan.

CCIE DC why we must not config orphan with Host not attach to both NSK or Host use primary/standby link to both NSK.

https://ccierants.blogspot.com/2013/07/ccie-dc-two-advanced-vpc-concepts.html

 

0 Helpful
Customers Also Viewed These Support Documents