Forum Discussion

Michael_107360's avatar
Apr 13, 2017

Mac Masquerade in Cam table with no L3 assigned.

Why would Mac Masquerade Address be in switch Cam Table when no floating ip exists?

 

  • MAC is a layer 2 function. If you have configured it on the default traffic group and you bring up layer two it stands to reason its going to bring up the masquerade address as well.

     

  • I was doing a migration to new equipment using the same mac masquerading address but wanted to bring up the health checks....so i configured the physical ip address (unique) and NO floating ip address. However we started missing pings from servers on the Internal Vlan. We looked at the switch cam table and noticed that the vlans had both the physical and the vmac address on the port-channel pointing to the new device.

     

    Example: Example during the standby cutover Vlan1180: 1180 0023.e903.04f5 dynamic 0 F F Po4006 (mac masquerade) no ip address assigned 1180 f415.635c.d805 dynamic 0 F F Po4006 (physical mac of New F5) which would be for 192.168.1.5

     

    This caused intermittent lose of connectivity. 0023.e903.04f5 this was the mac address that was 192.168.1.1 on the HA Pair

     

    The new box used the SAME mac masquerade address but no L3 configured. Once the port-channel connected to the new F5 was shutdown the network became once again stable.

     

    Thoughts?

     

  • MAC is a layer 2 function. If you have configured it on the default traffic group and you bring up layer two it stands to reason its going to bring up the masquerade address as well.