Packets received on HA interface is copied to LAN interfaces in an SD-WAN Edge E-HA setup
search cancel

Packets received on HA interface is copied to LAN interfaces in an SD-WAN Edge E-HA setup

book

Article ID: 374505

calendar_today

Updated On:

Products

VMware VeloCloud SD-WAN

Issue/Introduction

Symptoms:

In an E-HA setup, packets received on the edge HA interface are duplicated and sent to the LAN interfaces. As a consequence, VRRP and VCMP packet can be captured on Lan side network equipment's

Impact:

While this duplication does not affect the edge data plane service, it may lead to excessive use of the customer's LAN network bandwidth by VCMP packets, potentially impacting overall performance.

Environment

VMware SD-WAN Edge 520, 540, and 610 
OS version  5.2.X.X version

Cause

The packets received on the edge HA interface are incorrectly copied to the edge LAN interface, caused by the  issue# 148772 

 

Resolution

Upgrade to Edge build 5.2.3.3.

For more information please see VMware SD-WAN Software Versions: Recommended Releases

Workaround:
VCE firewall cannot block the copied packet.  LAN side devices needs to block it.

Powered by Wolken Software