Hey Leslie,

When this ping issue occurs can the ESXi host ping the VM successfully or does it drop packets as well?

How do you cut up your flex adapter to VMware?  Is each VMNIC 1GB, 2GB, 4GB?
How is the vSwitch setup done in this 4 server enviroment?

When you vmotion over the VM having pinging issues to a host outside the Blade Chassis does this VM stay on the same network / VLAN

If you compare a wireshark capture of the VM while running on the HP Blade Chassis and compare it to a quick wireshark capture when it isn't runnning on the blade chassis do you get the same kind of results / broadcasts?

Does this happen to all VMs or just some when this does occur?

Does it only happen to one side of the flex, or have both sides been acting up?  What I mean by this is which flexadapter is your VMNIC routing to when this occurs and if you put the VM on a different VMNIC that routes to the other flexadapter does the problem still occur?  You can bring down nics in VMware with the following command: esxcli network nic down -n vmnicX   and   esxcli network nic up -n vmnicX  to try and test this.  Please test this command on a nic with no Vm's running on it first to make sure no outages occur

VMware KB: Forcing a link state up or down for a vmnic interface on ESXi 5.x

I also found this:

Vsphere 5.5 and Emulex OneConnect 10Gb NIC trouble

Let us know,

Sorry for all the questions :smileysilly:

Ours is setup just like you have listed yours to be. The only difference is we are running VC 4.20.

JPM300 thanks for your reply.

How do you cut up your flex adapter to VMware?  Is each VMNIC 1GB, 2GB, 4GB?

The FlexNics connect at 10GB to the blades. Then we have 2 Ports coming out of each of the FlexFabric bays with LACP enabled.

How is the vSwitch setup done in this 4 server enviroment?

There are 2 vmnics 1 to each FlexFabric Bay. We have the vmnics configured active/standby.

When you vmotion over the VM having pinging issues to a host outside the Blade Chassis does this VM stay on the same network / VLAN

Yes it stays on the same network. Even the same backend switches that the C7000 connects to.

If you compare a wireshark capture of the VM while running on the HP Blade Chassis and compare it to a quick wireshark capture when it isn't runnning on the blade chassis do you get the same kind of results / broadcasts?

I have not tried getting a network capture together. I think I'll go ahead and get some captures going. Although reviewing them I'm sure will make my head explode.

Does this happen to all VMs or just some when this does occur?

It does not happen to all VMs. It only happens to a few at a time and usually after a few hours it resolves itself. Or I just migrate the VMs to non-blade hosts. Then I just have to wait to see if it'll happen again.

Does it only happen to one side of the flex, or have both sides been acting up?  What I mean by this is which flexadapter is your VMNIC routing to when this occurs and if you put the VM on a different VMNIC that routes to the other flexadapter does the problem still occur? 

It happens from either side. We've been able to confirm this by putting the vmnic's in active/standby.  We ran for awhile with the vmnic attached to Bay 1 running as the active NIC and then later with the vmnic in Bay 2 as active. Both resulted in the same problem.

I also found this:

Vsphere 5.5 and Emulex OneConnect 10Gb NIC trouble

i am going to try enabling the legacy driver now. It just so happens the problem is actively happening at this moment so I can confirm is if this helps.

Just tried the legacy be2net driver and that didn't resolve the problem.

Hmmm well it seems like you have done most of the troubleshooting that comes to mind.  I would say see what the wireshark shows as it almost sounds like you are getting brief broadcast storms due to a bad part, possible a bad flex adapter?  With your HP support case I would maybe lean on them to start replacing parts until you can resolve the issue if the wireshark comes up dry, or maybe also engage VMware support, however it will probably end up back in HP's court, but no harm in trying.

I took some wireshark captures from the source and destination (problem machine). I also migrated the problem machine off the chassis and captured everything when all is working fine. After reviewing the results nothing is jumping out at me as a problem.

I can tell that the dropped pings are not even getting to their destination. Every single ping the destination received they reply to. So the packet is getting dropped before it even gets to the problem VM. What's interesting is the behavior only presents itself when pinging to the problem VM.

Server A - Machine I am using to troubleshoot the environment

Server B - Problem VM

When I ping from A -> B you see the ping drops. But when I ping from B -> A nothing is dropping.

Just have to narrow down where the packet is dropping I guess. That would narrow down the problem. I'm thinking of setting up a Network Analyzer port in virtual connect to verify the packet is getting to validate if the packet is even getting there.

I'm already leaning heavily on HP support to replace more parts. The fact that the FlexFabric card is still showing "Invalid" even after replacing it concerns me. But they are leaning back suggesting it's not a hardware problem. But they can't give me an answer as to why the card is showing Invalid.

I also opened a case with Vmware to see if they can assist in any way.

Looks like I can't configure virtual connect to network analyze the uplink ports, only the ports hooked up to the blades. I'm going to get a capture going from the ESXi hosts and see if the packets show up there. After that I'll setup a network analyzer port on our core switches to see if they are sending the packet over to the chassis. The only problem with all of this is we are running 10GB and I'm not sure I have a server that can keep up with that.

Yup all sounds good Leslie, good work!

It almost looks like some of the packets are dropping at the switch for some reason, almost as if just some packets don't get tagged or something, or the switch doesn't think it belongs in that network.  Very odd.  Keep us posted!

The more I dive into this I'm convinced something is going on with the chassis. I just need to be able to convince HP of that.

I gathered some network captures at various points throughout the network to narrow down where the packet loss is occurring. Here are the results.

• VM on ESXi host OUTSIDE of the chassis to VM on ESXi host OUTSIDE the chassis. No ping drops.
• VM on ESXi host OUTSIDE of the chassis to VM on ESXI host INSIDE the chassis. Ping drops.
• VM on ESXi host INSIDE of the chassis to VM on ESXI host INSIDE the chassis (Not the same host as source VM). Ping drops.
• VM on ESXi host INSIDE of the chassis to VM on the SAME ESXi host INSIDE the chassis. No ping drops.

In the 2 cases where there are no ping drops the packets do not traverse the switch on the C7000. In the 2 cases where we see drops it traverses the switch on the C7000. It HAS to be something on the C7000.

vmrulz -- Do you use Shared Uplink Sets or do you do VLAN Tunneling with an Ethernet network?

As I mentioned we use SUS's

So do you not let VMware manage the networks with VLAN tags? From what I can tell SUS strips the VLAN tags. We are using Ethernet Networks with VLAN Tunneling enabled.

SUS's have been around a longer than tunneling (I've used VC since version 1.x which was quite an adventure... not!) and I've never seen the need to use tunneling. I simply carve out Ethernet Networks for each VLAN from the SUS then map those as multiple networks to the physical ports presented to the host. In ESXi just create port groups for each VLAN on the same vswitch. The cookbook goes over both methods as I recall. We use VCEM (don't waste your money on that product) but the same settings are in the given module VCM.  The graphic below shows all the bay1 Ethernet networks that were carved out of SUSA as I call it.

I think I may have to try this then. I'm assuming it retains the VLAN tag to Vmware?? So I'd still specify the VLAN ID in the port group on the VMware side?

Oh yes the tags are still passed along for vmware. Ping me if you have any questions on setting it up. I think this is the scenario I used from the cookbook

Ok that makes more sense to me now. I am just going to hate adding ALL of my VLANs to the Shared Uplink Set. Seems like such a pain. I will try that out next.

Yeah that does suck.. somebody created crazy class B networks at my current job which makes for fewer VLAN's but many more problems.. <smacks forehead with hand>

You might look at the VCM CLI rather than the GUI if you have a lot of repetitive stuff like that to do. http://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&ved=0CBwQFjAA&url=http%3A%2F%2Fh20564...