Topic
  • 2 replies
  • Latest Post - ‏2013-05-17T10:04:11Z by Asadz
Asadz
Asadz
3 Posts

Pinned topic Understanding FLEX system switch traffic forwarding behavior.

‏2013-05-06T11:59:55Z |

In my environment we are using IBM Pure Flex Chassis with IBM Flex System EN2092 1Gb Ethernet Scalable Switch.

We are using three EXT ports for spanning, these are mapped internally with required blade server ports. But instead of seeing traffic on specific servers I see all the servers ethernet ports receiving the traffic. The switch is configured in its default mode.

Is this the default behavior for the switch to sent traffic to all its internal ports. If yes how can i fix this?

 

 
  • gez
    gez
    4 Posts

    Re: Understanding FLEX system switch traffic forwarding behavior.

    ‏2013-05-15T17:53:58Z  

    What do you mean the external ports are mapped internally with the required blade server ports?  You say you are at a default config...there are no 'mappings', this is a switch not a pass thru

    But it sounds like you want to set a different PVIDs for each node, and put an external port in the same PVID

  • Asadz
    Asadz
    3 Posts

    Re: Understanding FLEX system switch traffic forwarding behavior.

    ‏2013-05-17T10:04:11Z  
    • gez
    • ‏2013-05-15T17:53:58Z

    What do you mean the external ports are mapped internally with the required blade server ports?  You say you are at a default config...there are no 'mappings', this is a switch not a pass thru

    But it sounds like you want to set a different PVIDs for each node, and put an external port in the same PVID

    Let me explain my scenario. I have a flow analyzer (blade server INT3) in default VLAN id 1, receiving logs from three uplinks links  (mirrored / span ports), on viewing link utilization of EXT(2) port i was getting throughput on outbound max of 25 Mb the input was only in 100 Kb/s.

    This was not normal , since no way our system (siem) be sending output traffic more then input, infact what was happening that it was broadcasting the traffic out of its external interface towards the layer 3 switch interface (the network team) reported us receiving high bandwidth traffic for the same reason.

    We are using flex chasis with two BM Flex System EN2092 1Gb, the broadcast is seen on all internal ports of switch (including switch 2) connected to BLADE server. (e.g the flows was reaching different servers).

    To workaround, we have created a new VLAN , Vlan ID 2 on switch 1 and put all the 3 mirror links into VLAN 2, as as result the outbound traffic on EX2 has decreased to just 300 Kb/s. What I imagine that creating a separate vlan has limit the broadcast domain. But there is a problem:-

    On our main server (log server) we want to apply changes to it (the changes that require network access) to different manage unit (INT3) , putting that main server with the manage unit doesn't allow us to apply changes, but as soon as move the manage unit out of the vlan 2 into vlan 1 we can deploy necessary changes.

    In normal switches we create trunk ports whenever we want to isolate two different networks or sub networks. In our configuration we don't have a trunk port yet.

    Is this the reason that I cannot talk to the blade server (in case of deploying changes problem) i discussed above, even when being in same vlan 2, do i have to define a trunk port for internal and external ports?

    ------------------------configuration----------------------

    script start "IBM Flex System EN2092 1Gb Ethernet Scalable Switch" 6 /**** DO NOT EDIT THIS LINE!
    /* Configuration dump taken 5:08:43 Fri May 17, 2013
    /* Version 7.2.2.2, Base MAC address 74:99:75:bc:38:00
    /c/port INTA1
            tag ena
    /c/port INTA2
            tag ena
    /c/port INTA3
            tag ena
    /c/port EXT8
            pvid 2
    /c/port EXT9
            pvid 2
    /c/port EXT10
            pvid 2
    /c/l2/macnotif ena
    /c/l2/vlan 1
            def INTA1 INTA2 INTA3 INTA4 INTA5 INTA6 INTA7 INTA8 INTA9 INTA10 INTA11 INTA12 INTA13 INTA14 EXT1 EXT2 EXT3 EXT4 EXT5 EXT6 EXT7
    /c/l2/vlan 2
            ena
            name "VLAN 2"
            def INTA1 INTA2 EXT8 EXT9 EXT10
    /c/l2/stg 2/clear
    /c/l2/stg 2/add 2
    /c/sys/ntp
            on
            prisrv fe80::211:25ff:fec3:da6a -MGT
            intrval 15
            auth ena
            prikey 20503
            addkey 20503
    /c/sys/ntp/md5key 20503
            key d45a32ba444a22aabfb7f3f387fa815809b75c2701d88680429e1846ff539d32ed4b0082f0d259f54abfd869bba436c0ca0c96978ebc2827e595e4043ee15775
    /c/pmirr/mirror ena
    /c/pmirr/monport INTA3
            add EXT8 in
    /c/pmirr/monport INTA3
            add EXT9 in
    /c/pmirr/monport INTA3
            add EXT10 in

    --------------------configuration--------------------------

     

     

     

     

    Updated on 2013-05-17T13:20:04Z at 2013-05-17T13:20:04Z by Asadz