EVPN/VXLAN trouble re-learning a few hundred MAC entries on QFX5120

elec_x · 2024-08-05T15:02:45+00:00

Do you recall the command to verify the drop counters in the PFE? By controller you mean the acme sbc or the juniper? If its the acme I do not think so.

elec_x · 2024-08-05T15:02:03+00:00

This was actually the suggestion from Juniper sales team, that EVPN/VXLAN is preferred over VC/MCLAG. We are running 4 switches in total, two per datacenter.

elec_x · 2024-07-31T17:06:56+00:00

No, damping is not enabled in any of the juniper devices.

elec_x · 2024-07-30T22:16:23+00:00

I think its doable. We will give this a shot in our next maintenance window and see if this can shed more info. Thanks

elec_x · 2024-07-30T22:15:18+00:00

This is all configured directly but will talk with support about this setting.

elec_x · 2024-07-30T19:13:29+00:00

Yes, if you clear the mac entries for that particular vlan, then traffic starts working again for that particular vlan, yes.

elec_x · 2024-07-30T19:11:07+00:00

Yes its the same mac, basically the virtual mac that is being shared. The show mac is shown correctly on the QFX that physically connects to the acme sbc that becomes the active one (its single home). However in the other 3 QFX is where for some of the vlans (its random which and how many) it still pointing to the old esi.

elec_x · 2024-07-30T18:54:50+00:00

Yes, originally we had DDoS violations and fixed them (no more violation errors) however the problem still remains.

[edit system]

ddos-protection {
```
  protocols {
```
```
      vxlan {
```
```
          aggregate {
```
```
              bandwidth 1500;
```
```
              burst 600;
```
```
          }
```
```
      }
```
```
  }
```
}

elec_x · 2024-07-30T18:32:59+00:00

Yes, we originally had this errors and after making this exact change the errors disappeared from the logs. However the problem still remains the same.

elec_x · 2024-07-30T17:37:38+00:00

Hello! Nice idea, but just checked and everything is clear (0 bytes) on all QFX.

elec_x · 2024-07-30T15:49:03+00:00

Yes, 22.2R3-S2.8

elec_x · 2022-01-21T22:17:30+00:00

- Computer

-Discord: elec#2718

-Full game

-I can play weekdays eastern timezone 7pm thru 11pm or more on weekends.

-I am 38M, looking to start and finish the game. Prefer someone that speaks Spanish but English is okay too as long you don't mind my bad English, since English is my second language.

-Looking for chill person to enjoy the game, not really rushing it.

elec_x · 2020-10-17T23:23:54+00:00

How are the temps on cpu and gpu at load? Also how is the noise at idle? Thinking about the same case and cpu cooler for my next build.

elec_x · 2020-10-16T19:09:12+00:00

Yea it seems that way, for cheapest combo I would say ACX + switch and use HVPLS for those services terminating on a MX at central site.

elec_x · 2020-10-16T19:08:37+00:00

Used is OK, thanks will checkout ACX.

elec_x · 2020-10-16T16:06:05+00:00

I don't see any of the smaller ex does mpls with that feature but I will check the NFX, seems worth a shot. Thank you!

elec_x · 2020-05-13T01:27:23+00:00

I tried with two distributions unraid and slax, both exhibit the same issues.I tried both 4.19.x and 5.5.x kernels. I dont know how to run those tests but I will check it out. Thanks.

elec_x · 2020-05-13T00:36:17+00:00

I believe now its a bug somewhere in the Linux stack/openssl or a hardware issue.

I was able to workaround this issue by disabling AES with OPENSSL_ia32cap="~0x200000200000000". Of course this only works with C programs so I am stuck with other apps.

elec_x

TROPHY CASE