Juniper Openstack

[Ubuntu 12.04 Build 2523] EVPN MPLSoGRE. Ping to IRB is failing as vrouter is not proxing the arp

Bug #1410053 reported by chhandak on 2015-01-13

This bug report is a duplicate of: Bug #1491047: Proxy ARP with MAC from evpn route even if there's no inet route. Edit Remove

This bug affects 1 person

	Status	Importance	Assigned to
Juniper Openstack	New	Medium	Praveen
R2.1	Won't Fix	Medium	Praveen
R2.20	Won't Fix	Medium	Praveen
Trunk	Won't Fix	Medium	Praveen

Bug Description

MX is Peered with Contrail with EVPN and Data Encapsulation.
While Ping to to IRB interface of MX vrouter is flooding the ARP packet. But it is expected to proxy the ARP.

ARP Packets Dump Going out of Vrouter
--------------------------------------
root@nodec46:~# tcpdump -ni eth0 host 7.7.7.77
tcpdump: WARNING: eth0: no IPv4 address assigned
tcpdump: verbose output suppressed, use -v or -vv for full protocol
decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
12:09:33.824838 IP 10.204.221.36 > 7.7.7.77: GREv0, length 50: MPLS
(label
300000, exp 0, [S], ttl 64)
        0x0000: ffff ffff ffff 02b4 d7ba 7e0a 0806 0001
..........~.....
        0x0010: 0800 0604 0001 02b4 d7ba 7e0a 0101 0103
..........~.....
        0x0020: 0000 0000 0000 0101 01fa ..........
12:09:34.823067 IP 10.204.221.36 > 7.7.7.77: GREv0, length 50: MPLS
(label
300000, exp 0, [S], ttl 64)
        0x0000: ffff ffff ffff 02b4 d7ba 7e0a 0806 0001
..........~.....
        0x0010: 0800 0604 0001 02b4 d7ba 7e0a 0101 0103
..........~.....
        0x0020: 0000 0000 0000 0101 01fa
root@nodec46:~# rt -b -v 1 -f 1
Kernel L2 Bridge table 0/1
DestMac Vrf Label/VNID Nexthop
0:23:9c:f1:98:aa 1 299856 13
0:25:90:c5:58:94 1 - 1
2:72:b:ef:41:ca 1 18 14
ff:ff:ff:ff:ff:ff 1 4 27
2:b4:d7:ba:7e:a 1 - 19
0:0:5e:0:1:0 1 - 1
root@nodec46:~# nh --get 27
Id:027 Type:Composite Fmly:AF_BRIDGE Flags:Valid, Multicast, L2,
Rid:0 Ref_cnt:4 Vrf:1
        Sub NH(label): 25(0) 24(0) 20(0)
root@nodec46:~# nh --get 25
Id:025 Type:Composite Fmly: AF_INET Flags:Valid, Evpn, Rid:0
Ref_cnt:2 Vrf:1
        Sub NH(label): 13(300000)
root@nodec46:~# nh --get 13
Id:013 Type:Tunnel Fmly: AF_INET Flags:Valid, MPLSoGRE, Rid:0
Ref_cnt:258 Vrf:0
        Oif:0 Len:14 Flags Valid, MPLSoGRE, Data:2c 21 72 a0 4a 80 00 25
90 c5 58 94 08 00
        Vrf:0 Sip:10.204.221.36 Dip:7.7.7.77
MX Details
-------------
root@walsh# run show evpn instance evpn-rt extensive
Instance: evpn-rt
  Route Distinguisher: 64512:12345
  VLAN ID: 10
  Per-instance MAC route label: 299968
  MAC database status Local Remote
    Total MAC addresses: 0 0
    Default gateway MAC addresses: 0 0
  Number of local interfaces: 1 (1 up)
    Interface name ESI Mode
Status
    ge-1/1/1.0 00:00:00:00:00:00:00:00:00:00 single-homed Up
  Number of IRB interfaces: 1 (1 up)
    Interface name VLAN ID Status L3 context
    irb.0 10 Up evpn-inet-test
  Number of bridge domains: 1
    VLAN ID Intfs / up Mode MAC sync IM route label
    10 1 1 Extended Enabled 300000
  Number of neighbors: 2
    10.204.221.36
      Received routes
        MAC address advertisement: 0
        MAC+IP address advertisement: 1
        Inclusive multicast: 1
        Ethernet auto-discovery: 0
    10.204.221.37
      Received routes
        MAC address advertisement: 0
        MAC+IP address advertisement: 1
        Inclusive multicast: 1
        Ethernet auto-discovery: 0
  Number of ethernet segments: 0
[edit]
root@walsh#
root@walsh# run show evpn arp-table
[edit]
root@walsh# run show evpn database
Instance: evpn-rt
VLAN VNI MAC address Active source Timestamp
   IP address
0 02:72:0b:ef:41:ca 10.204.221.37 Dec 12
09:51:16 1.1.1.4 >>>> VM in Nodec47
0 02:b4:d7:ba:7e:0a 10.204.221.36 Dec 12
09:51:16 1.1.1.3 >>>> VM in Nodec46
Instance: vxlan-15
VLAN VNI MAC address Active source Timestamp
   IP address
      15 00:00:5e:00:01:01 irb.15 Dec 12
09:51:15 15.15.15.250
    15.15.15.251
      15 00:23:9c:f1:98:aa irb.15 Dec 12
09:51:16 15.15.15.250

Layer2 route table in agent introspect has 2 different entry for IRB mac
(00:23:9c:f1:98:aa).
For one entry corresponding ip_addr field has IP 0.0.0.0 and for other
entry is has IRB IP (1.1.1.250)

MX: 10.204.217.244(root/Embe1mpls)
host1 = 'root@10.204.221.33'
host2 = 'root@10.204.221.34'
host3 = 'root@10.204.221.35'
host4 = 'root@10.204.221.36'
host5 = 'root@10.204.221.37'
env.roledefs = {
    'all': [host1, host2, host3, host4, host5],
    'cfgm': [host1, host2],
    'openstack':[host2],
    'control':[host3, host2],
    'compute': [host3, host4, host5],
    'tsn': [host3],
    'toragent': [host3],
    'collector': [host1],
    'webui': [host1],
    'database': [host1, host2, host3],
    'build': [host_build],
}

Tags:

Revision history for this message

chhandak (chhandak) wrote on 2015-01-13:

Logs saved at http://mayamruga.englab.juniper.net/bugs/1410053

Nagabhushana R (bhushana) on 2015-01-13

Changed in juniperopenstack:
milestone:	r2.1-fcs → none
importance:	Undecided → Medium

Nagabhushana R (bhushana) on 2015-01-16

Changed in juniperopenstack:
assignee:	nobody → Praveen (praveen-karadakal)

Revision history for this message

Hari Prasad Killi (haripk) wrote on 2015-01-29:

Ping from MX to the VMs wouldn't succeed - On the compute node, vrouter owns the gateway address and when the same address is used on the MX (to be the GW for baremetal servers), the RPF check in vrouter drops packets from MX.

This needs to be documented.

tags:

added: releasenote

Nagabhushana R (bhushana) on 2015-03-12

information type:

Proprietary → Public

Ashish Ranjan (aranjan-n) on 2016-06-06

Changed in juniperopenstack:
milestone:	r3.0-fcs → none

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #1491047 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.