Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

CSCtq89240 - Packets destined to the VDC MAC may be dropped by F1 module on N7K

Even thougth If we configure the physical mac addresses for the SVI interfaces, the packets are not reaching the destination for some vlans

1 REPLY
Community Member

CSCtq89240 - Packets destined to the VDC MAC may be dropped by F

Symptom:
On the n7k packets destined to the VDC MAC may be dropped when received on a F1 module.
Condition:
N7k with F1 module. Packets destined to the VDC MAC will be dropped under the following conditions:
- no SVI present or admin down
- packets received on the F1 module
Likely scenarios to see this condition include:
- transparent firewall bridging
- hair pinning traffic
- L2 load balancers
Workaround:
Configure the SVI(s) with a user-configured mac address rather than using the default VDC MAC.
This problem is isolated to the F1 module regardless of the NXOS version of code.
Are the HSRP/VRRP/GLBP virtual MAC addresses also inserted into the RMM table?
1)     If yes, will we have same impact and drop packets if bridged through the FW (when packets arrive on F1 port that does not have the SVI)
No HSRP/VRRP/GLBP are not inserted in RMM. You will not have this issue for any other macs other than svi macs.
2)     If HSRP vMAC is not in the RMM table, how does the F1 module know the packet has to be routed?
It is through mac table. G bit set will indicate routing has to be done.

302
Views
0
Helpful
1
Replies
CreatePlease to create content