TL;DR If you see either of these errors, check grep 'ERROR' /opt/avi/log/cc_agent_go_{{ cloud }} for the potential cause. In my case, the / character was not correctly processed by Avi's Golang client (facing vCenter). The Problem When trying to configure NSX ALB + NSX-T on my home lab, I am presented nothing but the …

Read More

Pre-Requisites Before beginning the Avi installer, I configured the following in my environment: Management Segment (NSX-T Overlay). This is set up with DHCP for quick automatic provisioning - no ephemeral addresses required Data Segments (NSX-T Overlay). Avi will build direct routes to IPs in this network for vIP …

Read More

For this example deployment, I'll be using my NSX-T Lab as the fabric, VyOS for the Overloaded Router role, and trying out hyperglass: Installation (VyOS) I already have a base image for VyOS with its management VRF set up - and updating the base image prior to deployment is a breeze due to the vSphere 7 VM Template …

Read More

If Avi Vantage IPAM cannot allocate an address for a new vIP, it will advertise an all-zeros host address - 0.0.0.0/32: This will cause Palo Alto PAN-OS to restart a peer - even if it is not the immediate downstream prefix. Palo Alto uses routed as their dynamic routing engine - so this is probably default behavior …

Read More

NSX-T Edge Transport Node Packet Captures NSX-T Edge nodes have a rudimentary packet capture tool built in to the box. It is important to have a built-in tool here, as GENEVE encapsulation will wrap just about everything coming out of a transport node. NSX-T's CLI guide indicates the method for packet captures - from …

Read More

Load Balancing is Important Load balancing is an important aspect of network mobility. How is a network useful if you can't move around within it? Cellular networks lose their appeal if you drop connectivity every time you roam between towers Wi-Fi networks are designed to facilitate smaller-scale movements. Imagine if …

Read More

It's probably safe to say that service provider networking is pretty unique. One particular design pattern - Looking Glasses - is extremely useful for complex dynamically routed networks. I'd really like to shift the gatekeeping needle here - networks that are complex enough to benefit from a looking glass should move …

Read More

After all that meatspace talk, let's look at a few technical solutions and why they might not meet business needs in a specific setting. Shared Control Planes / Shared Failure Plane Shared Control Plane design patterns are prolific within the networking industry - and there's a continuum. Generally, a control plane …

Read More

We don't always earn reliability with the systems we deploy, design, and maintain Infrastructure reliability is a pretty prickly subject for the community - we as engineers and designers tend to anthropomorphize, attach, and associate personal convictions with what we maintain. It's a natural pattern, but it inflicts a …

Read More

One major advantage to NSX-T is that Edge Transport Nodes (ETNs) are transitive Transitivity (Wikipedia) (Consortium GARR) is an extremely important concept in network science, and in computer networking. In simple terms, a network node (any speaker capable of transmitting or receiving on a network) can have the …

Read More