NSX Manager reports alarms "The datapath mempool usage for pfdnsdnpl on Edge node X has reached 85% which is at or above the high threshold value of 85%"
search cancel

NSX Manager reports alarms "The datapath mempool usage for pfdnsdnpl on Edge node X has reached 85% which is at or above the high threshold value of 85%"

book

Article ID: 319146

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

  • NSX Manager reports an Edge Node alarm, similar to: 
    The datapath mempool usage for pfdnsdnpl on Edge node ########-####-####-####-############ has reached ##% which is at or above the high threshold value of 85%.
  • In the Gateway Firewall, a rule is using a Context Profile with the DNS attribute.

Note: The preceding log excerpts are only examples. Date, time, and environmental variables may vary depending on your environment.

Environment

VMware NSX-T Data Center 3.x

Cause

The Edge memory pool pfdnsdnpl is becoming full due to a memory leak which occurs when a Gateway Firewall rule is using a Context Profile with the DNS attribute.

Resolution

This issue is resolved in VMware NSX-T 3.1.2, available at Broadcom downloads.

If you are having difficulty finding and downloading software, please review the Download Broadcom products and software KB.

Workaround:

Avoid using Gateway Firewall rules using a Context Profile with the DNS attribute.
If the pfdnsdnpl memory pool is full, you will need to restart the Edge node after removing the rule.

Additional Information

If this article did not help resolve your issue, you can review the following article for further information about Edge Datapath mempool usage high alarm



Powered by Wolken Software