Wired Intelligent Edge (Campus Switching and Routing)

Aruba OS Switch - LLDP-MAD Configuration and Verification

MVP
MVP
Requirement:

When a VSF fabric existing between an active and standby member fails, LLDP-MAD determines whether a multiple active topology is in place. If LLDP-MAD is configured and a VSF split occurs, one of the VSF members will become inactive, which disables the non-VSF front plane ports. This ensures only one of the members will be actively forwarding traffic.



Solution:

LLDP-MAD is used to detect multiple-active Virtual Switching Framework (VSF) fragments (split).

When a VSF fabric existing between an active and standby member fails, LLDP-MAD determines whether a multiple active topology is in place. If LLDP-MAD is configured and a VSF split occurs, one of the VSF members will become inactive, which disables the non-VSF front plane ports. This ensures only one of the members will be actively forwarding traffic.

Note:  Once a MAD decision has been accepted and the active member is determined, the member remains in status-quo until the VSF fabric has been repaired.

 

VSF Split Explanation

The following sequence explains a MAD scheme fora simple 2-member, VSF virtual chassis split scenario.

1.    When the VSF link goes down and the VSF virtual chassis splits:

  • The Commander member ( Fragment-A for this example) would continue to stay active.
  • The Standby member (Fragment B) would failover and become another commander.

2.    Fragment-B sends an SNMP request to the downstream device seeking port status information of all non-local ports of the LACP Trunk. Non-local ports on Fragment-B refers to ports that are part of Fragment-A’s member.

  • The downstream device responds to the SNMP request with the appropriate port status information.
    • If Fragment-A receives an unsolicited response to the SNMP request, it is ignored as Fragment A has the pre-split Commander as part of its fragment and therefore will remain active.

3.    Fragment-B sends 2 more SNMP queries downstream. If no response is received, the frontplane ports are shut down and turned inactive.

Alternatively, if Fragment-B receives an SNMP response:

  • If Fragment A links are UP, the frontplane ports will be shut down.
  • If Fragment-A links are DOWN, Fragment-B would stay UP.

4.    Consider that Fragment-A is actually DOWN which has caused the split:

  • Request made to Fragment-B will be received by the downstream device and response will return to Fragment-B.
  • The downstream links to Fragment-A are DOWN therefore Fragment-B will remain UP.
  • Alternately, if Fragment-B is DOWN and caused the split then Fragment-A will neither send a request or act on an unsolicited response and will remain UP.

 



Configuration:

Syntax

[no] vsf lldp-mad ipv4 <IPV4_ADDR> V2c <community>

Description

Enable LLDP-MAD on the VSF device.

Option

Ipv4:    Specify the IPv4 address of the MAD device.

IPV4_ADDR:    The IPv4 address of the MAD device.

v2c:    Specify the SNMP version for the MAD device.

COMMUNITY:    The SNMP community string for the MAD device.

Usage

hp-vsf-sws(config)#vsf lldp-mad ipv4

hp-vsf-sws(config)#vsf lldp-mad ipv4 <IPv4_ADDR>

hp-vsf-sws(config)#vsf lldp-mad ipv4 <MAD-IP-ADDRESS> v2c

hp-vsf-sws(config)#vsf lldp-mad ipv4 210.10.0.12 v2c <COMMUNITY-STR>

 

MAD Readiness Check

The MAD assist device must be connected over a LACP trunk interface to the VSF device. Once you configure the ip address of a MAD assist device, the VSF switch will perform a MAD readiness check to determine:

  • If the MAD assist device is reachable.
  • If a trunk interface is used to reach the device.
  • If the trunk interface has at least one, linked—up, physical port on each member of the VSF switch. If the above three conditions are not met, MAD will fail to detect dual active fragments in the event of a VSF split. This error will create a log message.

 



Verification

Syntax

show vsf lldp-mad [parameters| status]

Options

lldp-mad:    VSF LLDP-MAD

Parameters:    Shows the MAD-assist configuration as well as the readiness state of the switch.

Status:    Shows the current state of the MAD probe.

Usage

show vsf lldp-mad parameters

show vsf lldp-mad status

 

show vsf lldp-mad parameters

 MAD device IP                       : 210.10.0.12         
    MAD readiness status      : Success
       MAD device MAC            : 5065f3-128cc5
       Reachable via Vlan         : 916  
       Local LAG interface        : Trk10
       MAD-probe portset       : 1/A21,2/A21,
    LAG connectivity               : Full

show vsf lldp-mad status

MAD device IP                                          : 210.10.0.12         
 MAD-probe portset                                    : 1/A21,2/A21,  
 VSF split                                                       : No
 MAD probe originator                               : No
 Number of probe requests sent              : 0         
 Number of probe responses received    : 0         
 MAD Active Fragment                                : Yes

 

VSF re-join after a split
If split fragment(s) re-join the VSF and become a single device, MAD readiness checks will be re- run and a fresh set of readiness parameters determined.

Note: One of the devices will reboot to join the VSF.

 

MAD assist device requirements

  • A MAD assist device must have support for LACP (IEEE802.1AX) LAG interfaces.
  • It should be SNMPv2 enabled and community information must be configured on the VSF device as part of MAD configuration.
  • It should have support for LLDP (IEEE802.1ab rev) and the basic management TLV set as defined there in.
  • It should support SNMP GET access to the LLDP remote MIB (IEEE802.1AB D13) and the ifTable MIB (RFC2683).Aruba switches have LLDP enabled by default.
  • Support for ARP is assumed.

 

Limitations of MAD
The operating limitations of this feature are listed below.

  • MAD will work with other vendor downstream/upstream devices that have an IEEE802.1AX (formerly802.3ad) standards based LACP trunk to the VSF pair.
  • MAD cannot work with non-LACP and DT-LACP trunks that Provision OS supports today.
  • MAD should be configured when a VSF virtual chassis is active and not after a VSF virtual chassis split. Configuring MAD after a VSF split has occurred wouldn’t help detecting multiple-active fragments for the current split event.
  • Upon a split and once a fragment has been determined to become inactive, it cannot subsequently become active if the originally determined ‘active’ fragment goes ‘down’. This is because the frontplane (non-VSF) ports of the inactive fragment would have been brought ‘down’ and there is no way to do an LLDP-MADs subsequently.
  • The MAD assist device (downstream or upstream device) and the VSF device must belong to the same IPv4 subnet for MAD to work. This would be validated at the time of MAD configuration (in the UI).
  • The downstream/upstream helper device must support SNMPv2 and be able to handle ifTable MIB object GET requests via SNMPv2 (RFC2863).For the first VSF release,      LLDP-MAD will not work with SNMPv3.
  • Determination of the active/inactive fragment via MAD would take up anywhere between 2-6seconds.
  • LLDP BPDU transmission on VSF enabled OOBM ports is currently not supported.
Version history
Revision #:
1 of 1
Last update:
‎05-25-2020 08:48 AM
Updated by:
 
Comments

Nice preview, thanks!

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: