Hi,
I have a problem reaching Aruba switches that are connected via our managed MPLS network.
Multiple Aruba models show the same behaviour (3810M, 2540, 2530)
Firmware: YA.16.06.0006, KB.16.07.0003, YC.16.07.0003
We have deployed Aruba switches in multiple locations. Sites that are connected via VPN don't show any problems or weird behaviour. I can reach the switches there without any problems (SNMP, ICMP, HTTP, SSH).
Traceroute via VPN:
1 <1 ms <1 ms <1 ms Core-Switch DC 2 <1 ms <1 ms <1 ms Firewall DC 3 44 ms 37 ms 34 ms Firewall Site A 4 43 ms 37 ms 35 ms Switch 1 Site A
As soon as we put the same site behind our managed MPLS network ICMP and SNMP to the Aruba switches stop working. HTTP and SSH are still working.
Traceroute via MPLS:
1 1 ms <1 ms <1 ms Core-Switch DC 2 <1 ms <1 ms <1 ms Firewall DC 3 <1 ms <1 ms <1 ms MPLS Router DC 4 1 ms 1 ms 1 ms 100.x.x.x MPLS network 5 1 ms <1 ms <1 ms 100.x.x.x MPLS network 6 20 ms 19 ms 19 ms 100.x.x.x MPLS network 7 19 ms 19 ms 19 ms Firewall Site A 8 * * * Timeout All other devices on the same network of the site are working just fine without any problems and they are all reachable via SNMP and ICMP. No firewalls rules or anything that would deny that traffic. Firewall logs and packet dumps show they let the traffic through to the switches but never get anything back. We really only have this behaviour with Aruba switches as soon as we put them behind the managed MPLS network.
Does anyone have an idea? I'd really appreciate it. Thanks!
No comments:
Post a Comment