Wireless Access

We just installed two Mobility Masters in KVM platform which work as master-standby mode, then I found that the database synchronization is always failed. These two Masters belong to two different secure group in KVM,  TCP/UDP/ICMP/VRRP/ESP  are permitted.

Do you guys happen to know which protocol is used for master-redundancy database synchronization?

For vMware you need to adjust certain default settings in order to get this to work. I'm not sure about KVM.

Are there any of these settings also available on KVM?

On the vSwitch: Select Promiscuous Mode and Forged Transmits check box and Accept from the drop-down list.

See page 14: 

https://community.arubanetworks.com/aruba/attachments/aruba/unified-wired-wireless-access/73285/2/Aruba%20Mobility%20Master%20and%20VMC%20Install%20Guide.pdf

Just a note, make sure if you have other VRRP instances in the same broadcast domain they are using a different VRRP ID. I had a massive headache once setting up MM's once due to the customer having another device in the same broadcast domain using the same VRRP ID that the MM's were using! :)

Hi Fabian,

Thanks for you reply. Because the configuration could be synced, I think this is not caused by port configuration in vSwitch. I want to add the 'permit any any' policy for these two masters in the secure group, but the security team didn't agree to do that. So I have to tell them what protocol should be allowed exactly.