Meraki

Community

Massive amounts of VRRP transitions

theshmike
Getting noticed
‎Jan 2 2020 4:27 AM
‎Jan 2 2020 4:27 AM

Massive amounts of VRRP transitions

Hi,

 

due to the event log in one of our networks, we've been experiencing massive amounts of VRRP transitions for weeks between two of our MS425-32.

One some days, the log shows up 100+ transitions, even multiple transitions in the same minute.

 

The support only told us that there seems to be a connectivity issue and such things. We've tested multiple paths between the switches, but the transitions didn't stop.

There are only two more devices in the network that are doing VRRP. They are operating on different VRIDs (shame on Meraki that one could not set the VRID for VRRP btw) so there is no VRID colission. I also did lots of packet capturing to make sure that there are no unknown devices that are doing VRRP.

 

Strangely, we did not experience any connectivity/routing issues during the times that the log shows the transitions.

 

Does anybody have an idea how to further investigate into this or solve this?

0 Kudos
6 Replies 6
jdsilva
Kind of a big deal
‎Jan 2 2020 5:59 AM
‎Jan 2 2020 5:59 AM

@theshmike wrote:

(shame on Meraki that one could not set the VRID for VRRP btw)

They also don't use a standard multicast MAC address... So even if you could set VRID it still wouldn't work right. And they also put every VLAN onto one virtual route which is a little off in my experience, but within RFC.

 

I'd probably approach this by starting with packet captures to see if the advertisements are truly lost. If they are then work through the path to see if you can find where. 

http://blog.brokennetwork.ca | @jdsilva
In response to jdsilva
theshmike
Getting noticed
‎Jan 2 2020 8:01 AM
‎Jan 2 2020 8:01 AM

@jdsilva wrote:
I'd probably approach this by starting with packet captures to see if the advertisements are truly lost. If they are then work through the path to see if you can find where. 

The switches have a direct connection and I already exchanged the SFP+ modules to make sure that they are not faulty.

What would you suggest to do check if advertisements are lost? Place a wireshark on each side and do a long-term-compare on the advertisements sent on one and received on the other side?

 

Very annoying job, as the times on which the transitions are happening are not predictible 😞

0 Kudos
In response to theshmike
jdsilva
Kind of a big deal
‎Jan 2 2020 10:20 AM
‎Jan 2 2020 10:20 AM

You could try a mirror port to a laptop with Wireshark, yup. Or use the dashboard packet capture. In a perfect world you'd want to capture both sides so you can compare the two. Given the switches are directly connected you'd sure expect they to be the same...

 

Since Meraki MS VRRP sends hellos every 0.3s, with a dead timer of 0.9s, you may actually be able to see missed hellos happening even though a VRRP transition doesn't occur. If only one or two hellos are missed it wouldn't be enough to trigger a transition, but you would be able to see they are missed in the capture. 

http://blog.brokennetwork.ca | @jdsilva
In response to jdsilva
theshmike
Getting noticed
‎Jan 2 2020 10:03 PM
‎Jan 2 2020 10:03 PM

@jdsilva wrote:

Since Meraki MS VRRP sends hellos every 0.3s, with a dead timer of 0.9s

 

That is weird, because if it is like this, I am wondering how two transitions can happen in the same second:

Jan 2 19:40:06VRRP transition"master>backup"
Jan 2 19:40:06VRRP transition"backup>master"
Jan 2 19:40:04VRRP transition"master>backup"
Jan 2 19:40:04VRRP transition"backup>master"
Jan 2 19:40:02VRRP transition"master>backup"
Jan 2 19:40:01VRRP transition"backup>master"
Jan 2 19:40:00VRRP transition"master>backup"
Jan 2 19:40:00VRRP transition"backup>master"

 

Or does it maybe failover after 0.9 and preempt back after 0.1?

 

 

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jan 2 2020 12:46 PM
‎Jan 2 2020 12:46 PM

If the issue wasn't happening before then it could also be a software bug on the MS affecting one or both MS.  I'm going to guess this wont be easy but any chance to schedule in a reboot (and perhaps bring them up to the current stable firmware at the same time)?

In response to PhilipDAth
theshmike
Getting noticed
‎Jan 2 2020 9:59 PM
‎Jan 2 2020 9:59 PM

@PhilipDAth wrote:

this wont be easy but any chance to schedule in a reboot (and perhaps bring them up to the current stable firmware at the same time)?

 

Yes, that's currently the last option on our action list. There's nothing about such an issue in the release notes, but you never know...

 

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.