7 Replies Latest reply on Jan 30, 2019 1:44 PM by ARuvVD11

    NSX L2 Bridge

    n3m3515 Lurker

      Hi,

      I have a bridge between a vxlan and a vlan, but I can not ping anything in the vlan side, my arp table remains "incomplete" and the bridge mac-address-table remains empty.

      Connecting the DPG to the vnic of the VM I can ping correctly, any ideas?

       

       

      thanks!

        • 1. Re: NSX L2 Bridge
          RaymundoEC Enthusiast
          VMware EmployeesvExpert

          Try to follow the wire using this command in the ESXi host:

           

          pktcap-uw --uplink vmnic1 --dir 0 --stage 0 -o | tcpdump-uw enr - icmp   - Packet entering vmnic adapter from external network

          pktcap-uw --uplink vmnic1 --dir 0 --stage 1 -o | tcpdump-uw enr - icmp   - Packet captured before entering virtual switch

          pktcap-uw --switchport <SwitchPortID> --dir 1 --stage 0 -o | tcpdump-uw enr - icmp          - Packet captured entering virtual switch

          pktcap-uw --switchport <SwitchPortID> --dir 1 --stage 1 -o | tcpdump-uw enr - icmp          - Packet exiting virtual switch towards virtual machine

          pktcap-uw --switchport <SwitchPortID> --dir 0 --stage 0 -o | tcpdump-uw enr - icmp          - Packet exiting virtual machine towards virtual switch

          pktcap-uw --switchport <SwitchPortID> --dir 0 --stage 1 -o | tcpdump-uw enr - icmp          - Packet exiting virtual switch towards vmnic

          pktcap-uw --uplink vmnic1 --dir 1 --stage 0 -0 | tcpdump-uw enr - icmp    - Packet entering vmnic before exiting vmnic

          pktcap-uw --uplink vmnic1 --dir 0 --stage 1 -0 | tcpdump-uw enr - icmp    - Packet exiting vmnic adapter towards the external network

           

          to get the switchport the command is "net-stats -l"

           

          On the other hand check if re-create the brige make it works.

           

          1 person found this helpful
          • 2. Re: NSX L2 Bridge
            n3m3515 Lurker

            Recreated several times and also recreated the DLR, but nothing, I'll try to do the capture!

            • 3. Re: NSX L2 Bridge
              Beingnsxpaddy Enthusiast
              vExpert

              Hi n3m3515, I am assuming you have created the bridge with following steps in the article.

               

              Configuring Layer 2 Bridging in NSX

               

              Did you validate if you are able to reach both ends from the control VM.

               

              • Once L2 bridging is enabled on the DLR, the actual bridging takes place on the specific ESXi server where the active DLR Control VM is hosted. (The ESXi host where the DLR control VM is running called as Bridge Instance)

               

              Regards

              Pradhuman

              VCIX-NV, VCAP-NV, VCP2X-DCVNV

              • 4. Re: NSX L2 Bridge
                n3m3515 Lurker

                Hi ,

                yes, the configuration of the bridge is so simple, this is the first time i have this issue.

                 

                thanks

                • 5. Re: NSX L2 Bridge
                  Beingnsxpaddy Enthusiast
                  vExpert

                  Are you able to see the entries in control VM, such as mac table and arp cache.

                  • 6. Re: NSX L2 Bridge
                    n3m3515 Lurker

                    The mac-address-table stay empty for the vlan side, i watch only the entries on vxlan side.

                    • 7. Re: NSX L2 Bridge
                      ARuvVD11 Novice

                      Check your controllers are still OK. they can partially break, like if /var/log fills up, and the controllers will report healthy, but L2 on new connections will fail, MAC learning stops, etc...