MUX / PVlans and Vmware CE12808 ARP issue

Created: Mar 11, 2015 22:21:09Latest reply: Mar 19, 2015 23:04:33 1468 4 0 0

Looking for some best practices for mux/Pvlans on a CE12808 and Vmware. We have several customers and want to seperate their hosted vmware guests so that customers can only talk to their own stuff. We also have eSight/Ncentre which can apply ACLs and QOS policies.

After testing, we can understand how a combination of VMWare’s ‘distributed switch’ and Huawei’s ‘mux vlans’ achieve this exactly as we would like. We can even demonstrate the functionality working perfectly, but only for 20 minutes at a time.

After this time the switching and ARP tables on the CloudEngine time out and won’t repopulate, so the configuration stops working. Moving the layer 3 gateway off the CloudEngine does not help, this too ceases to work after the same time in much the same way any non-VMWare host also stops.

Has anyone done this? Any insight would be appreciated. Thanks!

  • x
  • convention:

StarOfWest  Visitor   Created Mar 13, 2015 15:20:45 Helpful(0) Helpful(0)

We have not met any issues like this, these are my suggestions:
1. When there is no arp on the CE12800, try to “ping arp ip x.x.x.x” from the CE12800 to the VM-ware. And then check again the arp entries. 
2. If CE12800 cannot receive reply from the VM-ware, try to capture packets on both ways and check the full ARP process.
3. Try to ping the gateway ip address which is on the CE12800 from the VM-ware, and then watch the result. Can the VM-ware get the arp or not?
  • x
  • convention:

user_2790689     Created Mar 13, 2015 15:24:22 Helpful(0) Helpful(0)

Please wait,we are currently focusing on this matter.

  • x
  • convention:

Jroffe     Created Mar 16, 2015 17:08:41 Helpful(0) Helpful(0)

Anyone had any luck with this?

  • x
  • convention:

Jroffe     Created Mar 19, 2015 23:04:33 Helpful(0) Helpful(0)

We tried all the pings suggested and no luck. They only way we can get things talking is to put the VMs in the Promiscuous vlan, which generated the ARP entry and then add the host back into the group vlan. The host can then talk until the ARP times out.

  • x
  • convention:

Reply

Reply
You need to log in to reply to the post Login | Register

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Fast reply Scroll to top