VMware Networking Community
n3m3515
Contributor
Contributor

NSX L2 Bridge

Hi,

I have a bridge between a vxlan and a vlan, but I can not ping anything in the vlan side, my arp table remains "incomplete" and the bridge mac-address-table remains empty.

Connecting the DPG to the vnic of the VM I can ping correctly, any ideas?

thanks!

VMware: VCP6-DCV | NV, VCAP6-NV, VCIX-NV Cisco: CCNA R&S | Security CCNP R&S | Security CCDA, CCDP Palo Alto Networks: PCNSE
Tags (3)
7 Replies
RaymundoEC
VMware Employee
VMware Employee

Try to follow the wire using this command in the ESXi host:

pktcap-uw --uplink vmnic1 --dir 0 --stage 0 -o | tcpdump-uw enr - icmp   - Packet entering vmnic adapter from external network

pktcap-uw --uplink vmnic1 --dir 0 --stage 1 -o | tcpdump-uw enr - icmp   - Packet captured before entering virtual switch

pktcap-uw --switchport <SwitchPortID> --dir 1 --stage 0 -o | tcpdump-uw enr - icmp          - Packet captured entering virtual switch

pktcap-uw --switchport <SwitchPortID> --dir 1 --stage 1 -o | tcpdump-uw enr - icmp          - Packet exiting virtual switch towards virtual machine

pktcap-uw --switchport <SwitchPortID> --dir 0 --stage 0 -o | tcpdump-uw enr - icmp          - Packet exiting virtual machine towards virtual switch

pktcap-uw --switchport <SwitchPortID> --dir 0 --stage 1 -o | tcpdump-uw enr - icmp          - Packet exiting virtual switch towards vmnic

pktcap-uw --uplink vmnic1 --dir 1 --stage 0 -0 | tcpdump-uw enr - icmp    - Packet entering vmnic before exiting vmnic

pktcap-uw --uplink vmnic1 --dir 0 --stage 1 -0 | tcpdump-uw enr - icmp    - Packet exiting vmnic adapter towards the external network

to get the switchport the command is "net-stats -l"

On the other hand check if re-create the brige make it works.

+vRay
n3m3515
Contributor
Contributor

Recreated several times and also recreated the DLR, but nothing, I'll try to do the capture!

VMware: VCP6-DCV | NV, VCAP6-NV, VCIX-NV Cisco: CCNA R&S | Security CCNP R&S | Security CCDA, CCDP Palo Alto Networks: PCNSE
Reply
0 Kudos
Beingnsxpaddy
Enthusiast
Enthusiast

Hi n3m3515​, I am assuming you have created the bridge with following steps in the article.

Configuring Layer 2 Bridging in NSX

Did you validate if you are able to reach both ends from the control VM.

  • Once L2 bridging is enabled on the DLR, the actual bridging takes place on the specific ESXi server where the active DLR Control VM is hosted. (The ESXi host where the DLR control VM is running called as Bridge Instance)

Regards

Pradhuman

VCIX-NV, VCAP-NV, VCP2X-DCVNV

Regards Pradhuman VCIX-NV, VCAP-NV, vExpert, VCP2X-DCVNV If my Answer resolved your query don't forget to mark it as "Correct Answer".
Reply
0 Kudos
n3m3515
Contributor
Contributor

Hi ,

yes, the configuration of the bridge is so simple, this is the first time i have this issue.

thanks

VMware: VCP6-DCV | NV, VCAP6-NV, VCIX-NV Cisco: CCNA R&S | Security CCNP R&S | Security CCDA, CCDP Palo Alto Networks: PCNSE
Reply
0 Kudos
Beingnsxpaddy
Enthusiast
Enthusiast

Are you able to see the entries in control VM, such as mac table and arp cache.

Regards Pradhuman VCIX-NV, VCAP-NV, vExpert, VCP2X-DCVNV If my Answer resolved your query don't forget to mark it as "Correct Answer".
Reply
0 Kudos
n3m3515
Contributor
Contributor

The mac-address-table stay empty for the vlan side, i watch only the entries on vxlan side.

VMware: VCP6-DCV | NV, VCAP6-NV, VCIX-NV Cisco: CCNA R&S | Security CCNP R&S | Security CCDA, CCDP Palo Alto Networks: PCNSE
Reply
0 Kudos
ARuvVD11
Enthusiast
Enthusiast

Check your controllers are still OK. they can partially break, like if /var/log fills up, and the controllers will report healthy, but L2 on new connections will fail, MAC learning stops, etc...

Reply
0 Kudos