About ping from BIG-IP

Thank you for the fast reply

Since the source address is not specified, I think that it is transmitting from the interface address of the same segment.

What is "A problem with Gratuitous ARP updates and old ARP caches"? Could you tell me more specifically?

If a new unit in a cluster comes active it must update all network participants, forcing them to update ARP cache tables immediately. A problem here is my main suspect since you said failovers were involved. In particular, it looks as if either Standby BigIP or Standby L3 Switch was assumed an owner of floating IP addresses by the network. Re-Adding a deleted VLAN to a Standby L3 switch would not restore connectivity otherwise.

Is it okay for the Standby L3 switch to have floating IP addresses so that you know the way to the Firewall and ping is returned?

Please let me organize it again.

① Delete VLAN of old L3SW (Clear with Standby machine → Clear with Active machine)

② Clear MAC address table with FW

③ Put VLAN in new L3SW (Add to Active machine → Add to Standby machine)

※ L3 switch uses vPC function on Nexus (maybe I forgot to say something quite important)

Describing in detail the ping of this situation.

① When VLAN is deleted on Standby machine → ping stop (Time out)

② After that, "From [Firewall] Destination Host Unreachable" is repeated several times from the firewall, then "[BIG-IP _ external_SelfIP] destination host unreachable" continues. (In some cases, after returning from BIG-IP, several pings are returned from the firewall.)

③ After that, the ping returns normally from the Firewall.

I am concerned about the behavior of ping after ②.

I am sorry for lack of information. Does the first explanation and situation change?