VXLAN Troubleshooting Methods

Latest reply: Oct 29, 2018 17:12:00 458 14 10 0

Currently, the following network diagnosis tools are available for VXLAN networks:

Ping and tracert commands of the switch can be used to perform a simple VRF-based connectivity check.

Visible paths

(1)     Single-path detection: is used to detect the forwarding path of a single flow. It is generally used for fault diagnosis when traffic forwarding is abnormal.

(2)     Multi-path detection: is used to detect all forwarding paths between two VTEPs. It is generally used to check network faults periodically and detect problems in advance.

Traffic statistics can be collected based on multiple dimensions to check whether the incoming and outgoing traffic is normal.

Some debugging commands of a switch can be used to locate specific problems on the switch.

Syslog and alarm functions: When an exception occurs, the switch records some syslogs or alarms, facilitating fault diagnosis

 

Troubleshooting procedures in several scenarios:

If the device status is incorrect due to incorrect configurations, check the following configurations:

(1)     BGP peer configuration and peer status

(2)     Routing table

(3)     ARP table

(4)     Access-side configurations (including sub-interfaces, BDs, and BDIF interfaces)

The configurations are correct but service traffic is abnormal. The problem is more complex. Locate the device that discards packets first, and check whether the device is faulty.

(1)     Detect the packet loss location based on path detection or traffic statistics.

(2)     Check the items in scenario 1. If the problem persists, contact the maintenance personnel of the vendor.

Loop caused by the networking environment

(1)     Check the MAC address flapping alarm to locate the loop.

(2)     Find out the cause of the loop, for example, a configuration error or bug.

(3)    

 

When a VXLAN fault occurs, for example, no corresponding route is found or traffic fails to be forwarded, use the following methods to rectify the fault as soon as possible:

n  If no corresponding route is found, check whether configurations are correct. If configurations are correct, reset the protocol that establishes the route, or delete and reconfigure the protocol. For example, run the reset ospf peer command.

n  If traffic fails to be forwarded, check whether configurations are correct and find the device that fails to forward traffic. Check whether routes and ARP entries on the problematic device are abnormal.

n  If the fault persists, delete all VXLAN-related configurations and then deliver the configurations again.

n  If the fault persists, reset the card or restart the device.

  • x
  • convention:

littlestone Created Oct 27, 2018 14:45:10 Helpful(0) Helpful(0)

Switches that have joined a stack are member switches. Each member switch plays one of the following roles:

Master switch

The master switch manages the entire stack. A stack has only one master switch.

 

Standby switch

 

The standby switch is a backup of the master switch. If the master switch fails, the standby switch takes over all services from the master switch. A stack has only one standby switch.

This post was last edited by littlestone at 2018-10-31 13:42.
  • x
  • convention:

Torrent Created Oct 27, 2018 14:47:26 Helpful(0) Helpful(0)

(1)     Single-path detection: is used to detect the forwarding path of a single flow. It is generally used for fault diagnosis when traffic forwarding is abnormal.

(2)     Multi-path detection: is used to detect all forwarding paths between two VTEPs. It is generally used to check network faults periodically and detect problems in advance.


this is very claer to explain the VXLAN, thank you very much.

This post was last edited by Torrent at 2018-10-31 14:27.
  • x
  • convention:

SupperRobin Created Oct 27, 2018 14:49:58 Helpful(0) Helpful(0)

Thanks for you share about this which is very useful for my daily work.
And now i can easy to check the ISSUE if i face any issue about this.before this i aways do not know how to deal with them,and wasted a lot of time to serch this.Thanks agin for you selfless Sharing, Hope you can aways work like this.:):):)
  • x
  • convention:

lizhi94 Created Oct 27, 2018 15:28:25 Helpful(0) Helpful(0)

the sharing of technology enrichs my knowledge and the professional answer is totally right to bring me the new viewpoint.
at the sametime ,it is necessary for me to read the posts. within the posts cuting large amouts of fact meterials, which encourage me to be better.
one hand, i have aquired a large number of skills which is very useful for us and is interesting for us to remember it.
another hand, that a good post which is in network technology contains a lot of excellent experience.
thanks very much for your sharing. we are so happy for your next sharing like this.
  • x
  • convention:

wanglei259 Created Oct 27, 2018 15:32:31 Helpful(0) Helpful(0)

Thanks for your sharing ,which is a wonderful guidance, i really interested in this article, which is useful for us and improvement product technology and become to a professional engineer .
I hope that you can insist post new kownlege and skills, i will alawys keep an eye on your sharing.
  • x
  • convention:

Our kingdom is young,our stories are not yet legends.
Finn92 Created Oct 27, 2018 15:41:31 Helpful(0) Helpful(0)

i think the toubleshooting procedure is useful for all issue :

 

Ping and tracert commands of the switch can be used to perform a simple VRF-based connectivity check.

Visible paths

(1)     Single-path detection: is used to detect the forwarding path of a single flow. It is generally used for fault diagnosis when traffic forwarding is abnormal.

(2)     Multi-path detection: is used to detect all forwarding paths between two VTEPs. It is generally used to check network faults periodically and detect problems in advance.

This post was last edited by Finn92 at 2018-10-31 17:03.
  • x
  • convention:

SupperRobin Created Oct 27, 2018 15:41:39 Helpful(0) Helpful(0)

BGP peers include BGP unicast peers, EVN BGP peers, BGP VPN peers, and BGP EVPN peers. Monitoring BGP peer status helps you identify abnormal BGP status, learn the fault reason, and perform subsequent troubleshooting.
Run the display bgp troubleshooting command to check BGP peer information, including BGP peer disconnection and flapping reasons.

The display bgp troubleshooting command displays only the last five BGP peer disconnection and flapping reasons.
This post was last edited by SupperRobin at 2018-10-31 14:22.
  • x
  • convention:

Mark.hu Created Oct 27, 2018 15:57:30 Helpful(0) Helpful(0)

Thank you very much for your approach, especially these two steps, which are especially helpful for Single-path detection: is used to detect the forwarding path of a single flow. It is generally used for fault diagnosis when traffic forwarding is abnormal. Multi -path detection: is used to detect all forwarding paths between two VTEPs. It is generally used to check network faults periodically and detect problems in advance. This post was last edited by Mark.hu at 2018-10-31 16:02.
  • x
  • convention:

No.9527 Created Oct 27, 2018 16:08:50 Helpful(0) Helpful(0)

In centralized VXLAN gateway deployment using BGP EVPN, the control plane is responsible for VXLAN tunnel establishment and dynamic MAC address learning; the forwarding plane is responsible for intra-subnet known unicast packet forwarding, intra-subnet BUM (Broadcast&Unknown-unicast&Multicast) packet forwarding, and inter-subnet packet forwarding. This deployment mode is flexible because EVPN allows dynamic VTEP discovery and VXLAN tunnel establishment, and is therefore applicable to large-scale networks. If centralized VXLAN gateway deployment is needed, using this mode is recommended. This post was last edited by No.9527 at 2018-10-31 11:33.
  • x
  • convention:

12
Back to list

Reply

Reply
You need to log in to reply to the post Login | Register

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!

Login and enjoy all the member benefits

Login
Fast reply Scroll to top