Forum Discussion

kev_245_28249's avatar
kev_245_28249
Icon for Nimbostratus rankNimbostratus
Jan 23, 2014

mac masquerade expected behaviour with non floating self ip addresses.

I have implemented mac masquerade and all functions are working spot on. When testing from a pc in a vlan hanging off a tagged vlan on the F5 and pinging its non floating self IP address I get a mac address that points to a different interface on my F5.

 

When checking this out on the switch port for the interface it confirms that the F5 gives back a mac address that is not the address that matches up on the F5 interface, but another interface mac address on the F5. For one of the interfaces it even dishes out at mac address for an interface that is down on the F5.

 

I'm thinking this is just expected behaviour, but could trip one up if you were troubleshooting health checks (that come from the non floating self ip)??

 

mac masquerade

5 Replies

Sort By
  • nitass's avatar
    nitass
    Icon for Employee rankEmployee
    Jan 23, 2014

    i understand vlan mac address is used (tmsh show net vlan).

     

    • kev_245_28249's avatar
      kev_245_28249
      Icon for Nimbostratus rankNimbostratus
      Jan 23, 2014
      Thanks for the reply, this is correct. When I do show net vlan in my route domain, I get the mac address for the vlan, BUT, this mac address is the same mac address for the interface that is NOT related to the vlan. For clarity: Vlan_100 configured on interface 1.1, show /net vlan gives me 0:23:e9:5c:8c:9 Show interface shows me this mac is the same as interface 1.4 example: Interface 1.1 - mac address 0:23:e9:5c:8c:2 Interface 1.4 - mac address 0:23:e9:5c:8c:9 Lets say I'm troubleshooting a health monitor from a non floating ip address in vlan 100 and I'm checking arp on the host, I get mac address 0:23:e9:5c:8c:9
    • kev_245_28249's avatar
      kev_245_28249
      Icon for Nimbostratus rankNimbostratus
      Jan 23, 2014
      Thanks for the reply, this is correct. When I do show net vlan in my route domain, I get the mac address for the vlan, BUT, this mac address is the same mac address for the interface that is NOT related to the vlan. For clarity: Vlan_100 configured on interface 1.1, show /net vlan gives me 0:23:e9:5c:8c:9 Show interface shows me this mac is the same as interface 1.4 example: Interface 1.1 - mac address 0:23:e9:5c:8c:2 Interface 1.4 - mac address 0:23:e9:5c:8c:9 Lets say I'm troubleshooting a health monitor from a non floating ip address in vlan 100 and I'm checking arp on the host, I get mac address 0:23:e9:5c:8c:9
  • Jeff_Giroux's avatar
    Jeff_Giroux
    Icon for Cirrus rankCirrus
    Mar 27, 2014

    Are you using traffic groups in v11.

     

    If you have different physical interfaces, then I would think you need a traffic group per physical when you have mac masquerade enabled. Otherwise, one traffic group will be assigned to all the self IPs. As a result, the vlans and interfaces associated with that one single traffic group will have only 1 mac addressed advertised to the switch. So then interface 1.1 will appear to the switch as the same mac address as 1.4.