Alarm for very high Enhanced Datapath flow table usage in NSX.
Article ID: 345796
Updated On:
Products
Issue/Introduction
Title: Alarm for very high Enhanced Datapath flow table usage.
Event ID: esx_health.enhanced_dp_flow_table_usage_very_high
Fixed in the release: 4.2.0
Alarm Description
- Purpose: There is at least one flow-table on the Host in which more than 95% of entries are filled.
- Impact: Slower traffic may be observed due to flow miss as there is high chance new flow entry creation could fail.
Note: This article is for both very-high-usage (above 95% occupancy) and high-usage (90-95% occupancy).
Environment
Cause
If the number of active flows exceeds the flow-table size, or if there are many short-lived connections coming in, the flow tables can fill up. Increasing the flow table size is beneficial when the number of active flows is stable over time. However, this might not improve performance in cases where short-lived connections continuously come in. In such scenarios, the flow table might always be full, regardless of its size.
Resolution
$NUM_ENTRIES must be a power of 2. Host must be rebooted.
Increasing the number of flow entries doesn't always improve performance, if short lived connections keep coming in. The flow table might be always full regardless of the flow table size. A large flow-table size wouldn't help in this case. EDP has a logic to detect this and automatically enable and disable flow tables to handle such a case.
Increasing the number of flow entries may increase the memory footprint.
Additional Information
Flow tables being full does not indicate any impact, just that performance improvements from EDP are reduced. For this reason, this alarm will be a lower warning level in future releases of NSX.
Feedback
