VyOS 1.2.9-S1 (on ESXI) - VRRP rfc3768-compatibility dupplicate ping

Hello evryone,

Version : 1.2.9-S1

I have 2 VyOs on ESXI server :
VyOs 1 (Master) (.50)
VyOs 2 (Backup) (.51)
VRRP (.49)

On ESXI side i enable mac modification, promiscuity and forgery.

VRRP work, when i shutdown the VyOs 1, the 2nd take the master role and when VyOs came back it prempt… evrything work fine, but i don’t understand why sometimes when i ping or traceroute, my computer use also the VyOs 2 (Backup).

I don’t understand how VyOs 2 answer my ARP request, because he don’t have the ip address
It seem also that i loose packet, thing that don’t happen when rfc compatibility is off.
(I first think of arp cache of vswitch, but this don’t seem consistent because this happen 100% of the time)

If anyone can help me to understand :slight_smile: and btw without rfc compatibility everything work well.

Thanks you for your time and excuse me for my english.

This problem with duplicate packet happens when used with vmware bridge/vswitch and it does not occur if a real switch or 2 different hypervisors used.

With “rfc3768-compatibility” it uses a virtual mac address for VIP address. Vmware is flooding unknown MAC addresses to all ports.

In this blog, a clear explanation is given when the issue occurs with cisco: Hi Mike, I'm glad you've - Cisco Community

1 Like

Thanks you, this is exactly what i was looking for !

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.