Ethernet Fabric (VDX, CNA)

Reply
cdw
New Member
Posts: 1
Registered: ‎04-13-2014

Port-profile and VLAN access mode on 6710 switch

When setting a LAG into port-profile mode, and setting the port-profile to access, VLAN tags are not removed in incoming frames. For me this means that using port-profiles forces me to tag frames, which breaks my PXE boot setup. What am I doing wrong?
 
I set my LAG to port-profile, then create a port-profile, configure it as an access port (vlan 10) and add my MAC addresses to the port-profile. This all seems to work. However if I sent traffic from one machine to another, the frames have VLAN tags (1 or 10). Shouldn't these be untagged since the port-profile is configured as an access port? Or do port-profiles only assign tags to outgoing frames, but do not remove tags on incoming frames on an access port? Please see my configuration below.
 
sw0(config)# do show running-config interface Port-channel 
interface Port-channel 5
 vlag ignore-split
 speed 1000
 port-profile-port
 no shutdown
!
interface Port-channel 6
 vlag ignore-split
 speed 1000
 port-profile-port
 no shutdown
!
interface Port-channel 9
 vlag ignore-split
 speed 1000
 port-profile-port
 no shutdown
!
 
sw0(config)# do show running-config port-profile    
port-profile UpgradedVlanProfile
 vlan-profile
  switchport
  switchport mode trunk
  switchport trunk allowed vlan all
 !
!
port-profile b
 vlan-profile
  switchport
  switchport mode access
  switchport access vlan 10
 !
!
port-profile default
 allow non-profiled-macs
 vlan-profile
  switchport
  switchport mode trunk
  switchport trunk native-vlan 1
 !
!
port-profile b activate
port-profile b static 6cae.8b08.4ecb
port-profile b static 6cae.8b08.519b
port-profile b static 6cae.8b08.52f7
 
sw0(config)# do show mac-address-table port-profile 
Legend: Untagged(U), Tagged (T), Not Forwardable(NF) and Conflict(C)
VlanId   Mac-address      Type     State     Port-Profile   Ports     
10       6cae.8b08.519b   Dynamic  Active    Profiled(U)    Po 6      
10       6cae.8b08.4ecb   Dynamic  Active    Profiled(U)    Po 5      
Total MAC addresses    :  2
 
sw0(config)# do show port-profile status                   
Port-Profile                        PPID        Activated        Associated MAC        Interface        
UpgradedVlanProfile                 1           No               None                  None             
b                                   2           Yes              6cae.8b08.4ecb        Po 5             
                                                                 6cae.8b08.519b        Po 6             
                                                                 6cae.8b08.52f7        None 
 
 
 
On the node with MAC 6c:ae:8b:08:4e:cb, I run tpcdump -n -e and see that all incoming traffic is tagged, with either VLAN 1 or 10. The traffic coming from 6cae.8b08.519b has VLAN tag 10. Shouldn't it have its tag removed??
 
root@worker2:/home/ubuntu# tcpdump -i bond0 -n -e
tcpdump: WARNING: bond0: no IPv4 address assigned
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on bond0, link-type EN10MB (Ethernet), capture size 65535 bytes
02:55:11.474831 6c:ae:8b:08:51:9b > ff:ff:ff:ff:ff:ff, ethertype 802.1Q (0x8100), length 346: vlan 10, p 0, ethertype IPv4, 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 6c:ae:8b:08:51:9b, length 300
02:55:13.138095 6c:ae:8b:08:4e:cb > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 342: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 6c:ae:8b:08:4e:cb, length 300
02:55:21.482182 6c:ae:8b:08:4e:cb > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 342: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 6c:ae:8b:08:4e:cb, length 300
02:55:23.342949 6c:ae:8b:08:52:f7 > ff:ff:ff:ff:ff:ff, ethertype 802.1Q (0x8100), length 346: vlan 1, p 0, ethertype IPv4, 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 6c:ae:8b:08:52:f7, length 300

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.

vADC is now Pulse Secure
Download FREE NVMe eBook