Wired Intelligent Edge

last person joined: 6 hours ago 

Bring performance and reliability to your network with the Aruba Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of the ArubaOS-Switch and ArubaOS-CX devices, and find ways to improve security across your network to bring together a mobile first solution.
Expand all | Collapse all

VSX Keepalive over mgmt port - not possible?

This thread has been viewed 63 times
  • 1.  VSX Keepalive over mgmt port - not possible?

    Posted Nov 24, 2020 05:06 AM

    And another VSX related question.

    I configured keepalive or use of the out-of-band management port.
    Ping works fine.

    But VSX keepalive status is still init...

    vsx
        inter-switch-link lag 1
        role primary
        keepalive peer 172.18.12.5 source 172.18.12.4 vrf mgmt
        vsx-sync aaa internal-vlan-range l2-vlan-mac-cfg-mode mclag-interfaces mgmd-global qos-global snmp stp-global time vsx-global
    
    8325-demo-01# ping 172.18.12.5 source 172.18.12.4 vrf mgmt
    PING 172.18.12.5 (172.18.12.5) from 172.18.12.4 : 100(128) bytes of data.
    108 bytes from 172.18.12.5: icmp_seq=1 ttl=64 time=0.170 ms
    108 bytes from 172.18.12.5: icmp_seq=2 ttl=64 time=0.166 ms
    108 bytes from 172.18.12.5: icmp_seq=3 ttl=64 time=0.139 ms
    108 bytes from 172.18.12.5: icmp_seq=4 ttl=64 time=0.195 ms
    108 bytes from 172.18.12.5: icmp_seq=5 ttl=64 time=0.163 ms
    
    8325-demo-01# sho vsx status keepalive
    Keepalive State           : Keepalive-Init
    Last Established          :
    Last Failed               :
    Peer System Id            :
    Peer Device Role          : secondary
    ​
    8325-demo-02# sh run vsx
    vsx
        inter-switch-link lag 1
        role secondary
        keepalive peer 172.18.12.4 source 172.18.12.5 vrf mgmt
        vsx-sync aaa internal-vlan-range l2-vlan-mac-cfg-mode mclag-interfaces mgmd-global qos-global snmp stp-global time vsx-global
    
    8325-demo-02# ping 172.18.12.4 source 172.18.12.5 vrf mgmt
    PING 172.18.12.4 (172.18.12.4) from 172.18.12.5 : 100(128) bytes of data.
    108 bytes from 172.18.12.4: icmp_seq=1 ttl=64 time=0.131 ms
    108 bytes from 172.18.12.4: icmp_seq=2 ttl=64 time=0.157 ms
    108 bytes from 172.18.12.4: icmp_seq=3 ttl=64 time=0.181 ms
    108 bytes from 172.18.12.4: icmp_seq=4 ttl=64 time=0.171 ms
    108 bytes from 172.18.12.4: icmp_seq=5 ttl=64 time=0.180 ms
    
    8325-demo-02# sh vsx status keepalive
    Keepalive State           : Keepalive-Init
    Last Established          :
    Last Failed               :
    Peer System Id            :
    Peer Device Role          : primary
    


    Any Idea?

    thanks and kind regards

    Robert



    ------------------------------
    Robert Großmann
    ------------------------------


  • 2.  RE: VSX Keepalive over mgmt port - not possible?

    Posted Nov 24, 2020 01:13 PM
    Hi! despite the command

    keepalive peer 172.18.12.5 source 172.18.12.4 vrf mgmt​


    seems to accept the mgmt (OoBM) as a possible VRF...I'm unsure it's really possible to use the OoBM interface to deploy the VSX Keepalive on ArubaOS-CX 10.4, 10.5 or even on 10.6 software.

    I'm quite sure it wasn't supported on ArubaOS-CX 10.3 and also on 10.4: simply have a look at "VSX Configuration Best Practices for Aruba CX 6400, 8320, 8325, 8400 (March 2020 edition)" published during April 2020 referenced to ArubaOS-CX 10.4 specifically.

    I could be wrong [*]...but I'm less sure about the availability of this feature on newer ArubaOS-CX 10.5 or ArubaOS-CX 10.6...the fact is that there are really no records of any usage example, restriction, recommendation or even a simple note on the official "ArubaOS-CX Virtual Switching Extension (VSX) Guide" (for ArubaOS-CX 10.5 and 10.6) about implementing VSX Keepalive over/through the OoBM interface.

    All examples found on the above guides are using a dedicated VRF (but non related to mgmt) for Keepalive...as it was always suggested since the ArubaOS-CX 10.1 introduction.

    [*] For sure I'll need to dig deeply about that.



    ------------------------------
    Davide Poletto
    ------------------------------



  • 3.  RE: VSX Keepalive over mgmt port - not possible?

    Posted Nov 25, 2020 03:08 AM

    Well. To implement it this way was my first suggestion. But that would mean I had to use an 1/10/25 or 40/100G Port for keepalive.

    In spite we plan to connect 6 servers with 8 connections, so there is no 1/10/25G port left.

    My plan was a dedicated OOBM network, and using OOBM port for keepalive to separate it from normal LAN traffic and switch outtage.

    And on the new client switches 6300M with Aruba CX, the OOBM port is the only port to configure for VSF keepalive.

    Strange that on one hand you must use OOBM port for keepalive and on other hand you can't use OOBM Port...



    ------------------------------
    Robert Großmann
    ------------------------------



  • 4.  RE: VSX Keepalive over mgmt port - not possible?

    Posted Nov 25, 2020 07:08 AM
    Hello,
    Unfortunately VSX keepalive over the OOM port is still not possible. We are very well aware of the importance of this request.
    If you use uplink routed port (L3), then you can use the upstream routing domain to route the VSX UDP keepalive in case of ISL failure.
    Appendix D of the VSX Best Practices document: https://support.hpe.com/hpsc/doc/public/display?docId=a00094242en_us
    I hope this can be an alternative for you.

    ------------------------------
    Vincent Giles
    ------------------------------



  • 5.  RE: VSX Keepalive over mgmt port - not possible?

    Posted Nov 29, 2020 11:43 PM
    You don't need 10 gig links for the keepalive, it's literally a heartbeat. The biggest thing to do is to put your keepalive ideally off of the same asic as where your peer link resides to truly protect against a dual active scenario. Some best practices used to reccommend using the management interface for it (and it will default to that when you configure it), but your link placement really depends on if you're using a chassis based nexus or a standalone krogerfeedback

    ------------------------------
    Heidi Kemmer
    ------------------------------



  • 6.  RE: VSX Keepalive over mgmt port - not possible?

    Posted Nov 30, 2020 11:58 AM
    Hi @Heidi, yeah we know the reason about keeping the VSX Keepalive link separated (and thus OoBM will be somewhat very important to be supported for setting up VSX Keepalive through it and its mgmt VRF)...the point is that - currently - it's not a supported feature (on all ArubaOS-CX OS based switches supporting the VSX).

    We all know that is a waste to use a frontplane ethernet interfaces (example: use 10Gbps SFP+ ports equipped with a J4858D 1Gbps SR LC SFP transceiver...) but, as of now, it's the only way tp accomplish that VSX requirement.​

    ------------------------------
    Davide Poletto
    ------------------------------



  • 7.  RE: VSX Keepalive over mgmt port - not possible?

    Posted 16 days ago

    Any news for VSX keepalive over mgmt Port ?

    Or should I put this to a new topic in innovation zone?

    Update:
    Link to new feature request in innovation zone:

    Use of mgmt Port for VSX keepalive | Aruba Innovation Zone (arubanetworks.com)



    ------------------------------
    Robert Großmann
    ------------------------------



  • 8.  RE: VSX Keepalive over mgmt port - not possible?

    Posted 16 days ago
    Hello Robert, AFAIK no news about that (VSX Keepalive over OoBM port)...at least up to ArubaOS-CX 10.08 that feature was not implemented. A new topic on Aruba Innovation Zone would receive a lot of votes for sure.

    ------------------------------
    Davide Poletto
    ------------------------------



  • 9.  RE: VSX Keepalive over mgmt port - not possible?

    Posted 16 days ago
    I recommend to raise it to your Aruba contact in multiple ways: innovation zone is a very good one to start with.

    ------------------------------
    Vincent Giles
    ------------------------------



  • 10.  RE: VSX Keepalive over mgmt port - not possible?

    Posted 16 days ago
    Hi,

    It is currently not supported but is a roadmap item.

    ------------------------------
    Anup Mehta
    ------------------------------



  • 11.  RE: VSX Keepalive over mgmt port - not possible?

    Posted 15 days ago
    Hello Anup, out of curiosity

    "It is currently not supported but is a roadmap item."

    does the highlighted part of your above sentence represent a personal PoV (e.g. you're assuming that...) or does it represent the official position of Aruba Development (e.g. you know that...)?

    I ask because, very often (if not quite always), I've seen Community members (those working for Aruba) to be very cautious about reporting on HW/SW product roadmaps...It would be really great to know that "it's in the official roadmap yet" (if so, filing a request on the Aruba Innovation Zone should then help to boost its development and not be used to push it into a roadmap...being it already in the list of new HW/SW features, isn't it?).

    ------------------------------
    Davide Poletto
    ------------------------------



  • 12.  RE: VSX Keepalive over mgmt port - not possible?

    Posted 15 days ago
    Hi David,

    This is not my personal opinion and this feature is something we are looking to support in near future. Yes, it will definitely help to file a request on the Aruba Innovation Zone. 

    Thanks
    Anup

    ------------------------------
    Anup Mehta
    ------------------------------



  • 13.  RE: VSX Keepalive over mgmt port - not possible?

    Posted 13 days ago
    That's great! Thanks Anup.

    ------------------------------
    Davide Poletto
    ------------------------------