Wired Intelligent Edge

Dear Community

I have a setup with 2930F switches and AOS 8.2.1 WLC (no clustering) with MM. I use PUTN and downloadable user-roles.

Everything works fine but whenever a switch is rebooted it uses the backup-controller to build the tunnel.

Does somebody know why? From my understandig the switch should use the primary controller-ip whenever it's reachable.

tunneled-node-server
 controller-ip 10.50.10.254
 backup-controller-ip 10.40.10.254
 keepalive interval 1
 mode role-based
 enable

Best Regards

Marc

Marc,

Can you please also provide your AOS controller configs?  I agree, the backup connection after a reboot should not happen.  Have you adjusted the keepalive interval to 8 seconds (default) or greater?

Rob

Hi Marc, 

I'm seeing the same behavior in my lab setup.  It appears that the "operational roles" switch when the switch is rebooted:

Dyn-Seg-Demo(tunneled-node-server)# show tunneled-node-server state

Local Master Server (LMS) State

LMS Type IP Address State Capability Role
Primary : 10.1.1.31 Complete Per User Operational Primary
Secondary : 10.1.1.32 Complete Per User Operational Secondary

Switch Anchor Controller (SAC) State

IP Address Mac Address State
SAC : 10.1.1.31 000c29-25137b Registered

User Anchor Controller (UAC) : 10.1.1.31
User Port VLAN State Bucket ID

Dyn-Seg-Demo(config)# show tunneled-node-server state

Local Master Server (LMS) State

LMS Type IP Address State Capability Role
Primary : 10.1.1.31 Complete Per User Operational Secondary
Secondary : 10.1.1.32 Complete Per User Operational Primary

Switch Anchor Controller (SAC) State

IP Address Mac Address State
SAC : 10.1.1.32 000c29-071ba0 Registered

User Anchor Controller (UAC) : 10.1.1.32
User Port VLAN State Bucket ID

I will get this in to R&D to be fixed.  The switch should reach out to the primary controller after a reboot first. 

A workaround to reset is to disable the tunneled-node-server command:

Dyn-Seg-Demo(tunneled-node-server)# no enable
Dyn-Seg-Demo(tunneled-node-server)# enable
Dyn-Seg-Demo(tunneled-node-server)# show tunneled-node-server state

Local Master Server (LMS) State

LMS Type IP Address State Capability Role
Primary : 10.1.1.31 Complete Per User Operational Primary
Secondary : 10.1.1.32 Complete Per User Operational Secondary

Switch Anchor Controller (SAC) State

IP Address Mac Address State
SAC : 10.1.1.31 000c29-25137b Registered

User Anchor Controller (UAC) : 10.1.1.31
User Port VLAN State Bucket ID

Thanks, 

Justin

JUSTIN NOONAN
TECHNICAL MARKETING ENGINEER – ARUBA WIRED INTELLIGENT EDGE
O: +1 916 540 1748   |   justin.noonan@hpe.com

8000 FOOTHILLS BLVD  |  ROSEVILLE, CA 95747 USA

Hi Justin

Thank you for your feedback. Allright, can you already say when this is fixed or by what version?

Best Regards

Marc

Hi Marc, 

R&D is still investigating and prioritizing as to when it would be implemented into a future software update.

Thanks, 

Justin

Hi Justin

Do you have any news on this? We have some customer requests.

Best Regards

Marc

Hi Marc, 

We have an enhancement request that has been raised for tracking this.  No current timeline yet.

Regards, 

Justin