After a little more digging, please ignore my previous post. The issue seems to be that the bucket map always specifies one controller as the UAC
[ 0] :: 10.x.x.20 10.x.x.21 0.0.0.0 0.0.0.0
[ 4] :: 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0
[ 8] :: 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0
Bucket Map Information
Bucket Name : TUNNELED_NODE_ESSID
Bucket Map Active : [0 .. 255]
[ 0] :: (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1)
[ 6] :: (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1)
[ 12] :: (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1)
[ 18] :: (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1)
[ 24] :: (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1)
[ 30] :: (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1)
[ 36] :: (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1)
[ 42] :: (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1) (0, 1, 1)
------------------------------
Stewart Smith
------------------------------
Original Message:
Sent: Oct 14, 2021 03:33 AM
From: Stewart Smith
Subject: Load balancing for dynamic segmentation
Ok thanks. I don't see the ubt commands on the switch which is 2930M - does load balancing only work with CX? I didn't set this up so am not sure how load balancing would work. The current configuration is :
tunneled-node-server
controller-ip 10.x.x.20
backup-controller-ip 10.x.x.21
mode role-based reserved-vlan 4089
sh tunneled-node-server
Tunneled Node Server Information
State : Enabled
Primary Controller : 10.x.x.20
Backup Controller : 10.x.x.21
Keepalive Interval (seconds) : 8
Mode : Role-based
Vlan-Mode : vlan-extend-disable
Reserved-Vlan : 4089
------------------------------
Stewart Smith
Original Message:
Sent: Oct 13, 2021 01:30 PM
From: Justin Noonan
Subject: Load balancing for dynamic segmentation
The switch only supports having a physical gateway IP from the cluster. Once you enter that in and enable the tunneling profile (ubt zone command), the switch will automatically download the cluster information and have high availability and load balancing ready from the cluster map (bucket list) downloaded from the cluster. You can verify this with the "show ubt state" command.
ubt zone corporate vrf default
primary-controller ip 10.5.8.6
enable
Justin-6300# show ubt state
=====================================================================
Zone corporate:
=====================================================================
Local Conductor Server (LCS) State:
LCS Type IP Address State Role
---------------------------------------------------------------------
Primary : 10.5.8.6 ready_for_bootstrap operational_primary
Switch Anchor Controller (SAC) State:
IP Address MAC Address State
-----------------------------------------------------------------
Active : 10.5.8.6 00:0b:86:b7:6a:7f registered
Standby : 10.5.8.7 00:0b:86:dd:6c:00 registered
Justin-6300# show ubt information
=====================================================================
Zone corporate:
=====================================================================
SAC Information :
Active : 10.5.8.6
Standby : 10.5.8.7
Node List Information :
Cluster Name : TME-Cluster
Cluster Alias Name :
Node List :
----------------
10.5.8.6
10.5.8.7
Bucket Map Information :
Bucket Map Active : [0...255]
Bucket ID A-UAC S-UAC Connectivity
----------------------------------------------------------
0 10.5.8.6 10.5.8.7 L3
1 10.5.8.6 10.5.8.7 L3
2 10.5.8.6 10.5.8.7 L3
3 10.5.8.7 10.5.8.6 L3
4 10.5.8.6 10.5.8.7 L3
5 10.5.8.6 10.5.8.7 L3
6 10.5.8.7 10.5.8.6 L3
7 10.5.8.6 10.5.8.7 L3
8 10.5.8.6 10.5.8.7 L3
9 10.5.8.6 10.5.8.7 L3
10 10.5.8.6 10.5.8.7 L3
11 10.5.8.7 10.5.8.6 L3
12 10.5.8.6 10.5.8.7 L3
13 10.5.8.6 10.5.8.7 L3
14 10.5.8.6 10.5.8.7 L3
------------------------------
Justin Noonan
Original Message:
Sent: Oct 13, 2021 10:16 AM
From: Stewart Smith
Subject: Load balancing for dynamic segmentation
I am looking for details on how dynamic segmentation clients are load balanced on a controller cluster. All I have found is the switch configuration where the controller IP and a backup controller IP can be configured. In this way the wired clients are not load balanced. Does the cluster VRRP need to be configured for the load balancing to be enabled?
------------------------------
Stewart Smith
------------------------------