Posted on October 2, 2019 10:00 pm
 |  Asked by Martin
 |  128 views
0
0
Print Friendly, PDF & Email

Hello,
After setup of EVPN Route Type-5, for Advertisement of IP Prefixes, it is not possible to ping the Virtual IPs of leaf 3 [VTEP 10.0.255.12] and leaf7 [VTEP 10.0.255.14].

Please output below. I also uploaded the running config/

Any advise is much appreciated.

Thanks,

Martin

leaf3#ping vrf gold 10.44.44.1
PING 10.44.44.1 (10.44.44.1) 72(100) bytes of data.

— 10.44.44.1 ping statistics —
5 packets transmitted, 0 received, 100% packet loss, time 4024ms

leaf7#ping vrf gold 10.42.42.1
PING 10.42.42.1 (10.42.42.1) 72(100) bytes of data.

— 10.42.42.1 ping statistics —
5 packets transmitted, 0 received, 100% packet loss, time 4020ms

leaf3#sh mac address-table
Mac Address Table
——————————————————————

Vlan Mac Address Type Ports Moves Last Move
—- ———– —- —– —– ———
42 0c71.4176.d62b STATIC Po999
1008 0c71.4175.1fd0 DYNAMIC Vx1 1 0:56:51 ago
1008 0c71.4176.d62b DYNAMIC Vx1 1 0:57:09 ago
4090 0c71.4176.d62b STATIC Po999
4091 0c71.4176.d62b STATIC Po999
Total Mac Addresses for this criterion: 5

leaf3#sh ip route vrf gold 10.44.44.1

VRF name: gold

B E 10.44.44.0/24 [1/0] via VTEP 10.0.255.14 VNI 100001 router-mac 0c:71:41:75:1f:d0

%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
—————————– ————————————————
leaf7#sh mac add
Mac Address Table
——————————————————————

Vlan Mac Address Type Ports Moves Last Move
—- ———– —- —– —– ———
44 0c71.41d6.b080 STATIC Po999
1008 0c71.4176.d62b DYNAMIC Vx1 1 0:54:24 ago
1008 0c71.41ef.b658 DYNAMIC Vx1 1 0:54:22 ago
4090 0c71.41d6.b080 STATIC Po999
4091 0c71.41d6.b080 STATIC Po999
Total Mac Addresses for this criterion: 5

leaf7#sh ip route vrf gold 10.42.42.1

VRF name: gold

B E 10.42.42.0/24 [1/0] via VTEP 10.0.255.12 VNI 100001 router-mac 0c:71:41:76:d6:2b
via VTEP 10.0.255.12 VNI 100001 router-mac 0c:71:41:ef:b6:58

2
Posted by Aniket Bhowmick
Answered on October 22, 2019 4:42 am

Hi Martin,

I understand that you are advertising a subnet from Leaf3 and a subnet from Leaf7. From Leaf3 you cannot ping the the virtual IP (subnet advertised by Leaf7) of Leaf7 and vice versa.

First thing to note here: Pinging from VTEP is never a good idea specially when Virtual IP's are configured. It may not ping and not necessarily that is an issue. You should try pinging from/between hosts connected on Leaf3 and Leaf7, if that doesn't work it is an issue.

In this case, when you will initiate the ping from Leaf3 or Leaf7, it can take any random IP as source from vrf gold.

Say we are pinging from Leaf3. Any IP in vrf gold will be selected as source and that can be a virtual IP as well (of any Vlan in the vrf). Leaf7 should have a route to reach the source IP.

Even if Leaf7 has a route to reach the source-IP, ping may fail if the source IP is virtual IP. This is because the Virtual IP (and Virtual Mac) will exist in other leafs too and not necessary the ICMP reply will return to the originator.

I would recommend if you can try doing this test end to end (from one host to another) and then check if the ping fails or not.

If it fails, you can open a TAC case with us.

Regards,
Aniket

Post your Answer

You must be logged in to post an answer.