Switching

Expand all | Collapse all

Verify private isolated vlan on EX3400.

  • 1.  Verify private isolated vlan on EX3400.

    Posted 10-23-2020 14:27

    Looking for command/verification parity between EX3300 & EX3400 when displaying the forwarding table to determine if a host has been added to the isolated pvlan. 

     

    EX3300:

    EX3300> show ethernet-switching table | match 00:13:3c:04:01:30 
      SUBSCRIBERS       00:13:3c:04:01:30 Replicated        - ge-0/0/2.0
      __pvlan_SUBSCRIBERS_ge-0/0/2.0__ 00:13:3c:04:01:30 Learn        0 ge-0/0/2.0
    
    {master:0}
    EX3300>

    EX3400:

    EX3400> show ethernet-switching table | match 00:13:3b:06:01:19 
        SUBSCRIBERS         00:13:3b:06:01:19   D             -   ge-0/0/5.0            0         0       
    
    {master:0}
    EX3400> 

     

    From the EX3300, I can see that the host (00:13:3b:06:01:19) on the EX3400 is being learned on both the isolated vlan (19) AND it's parent vlan (20):

    EX3300> show ethernet-switching table extensive 
    <..snip..>    
        VLAN: SUBSCRIBERS, Tag: 20, MAC: 00:13:3b:06:01:19, Interface: xe-0/1/1.0
        Type: Replicated
        Action: Forward
        Nexthop index: 1360
        
        VLAN: SUBSCRIBERS, Tag: 20, MAC: 00:13:3c:04:01:30, Interface: ge-0/0/2.0
        Type: Replicated
        Action: Forward
        Nexthop index: 1364
        
        VLAN: __pvlan_SUBSCRIBERS_isiv__, Tag: 19, MAC: 00:13:3b:06:01:19, Interface: xe-0/1/1.0
        Type: Learn(L), Age: 0, Learned: 19:57
        Action: Forward
        Nexthop index: 1360
      
        VLAN: __pvlan_SUBSCRIBERS_ge-0/0/2.0__, Tag: 0, MAC: 00:13:3c:04:01:30, Interface: ge-0/0/2.0
        Type: Learn, Age: 0, Learned: 7:19
        Action: Forward
        Nexthop index: 1364
        
    {master:0}
    EX3300>

     

    On the 3400, I can't tell that the host (00:13:3c:04:01:30) on the 3300 is part of the isolated vlan or not:

    EX3400> show ethernet-switching table extensive 
    <..snip..>
    MAC address: 00:13:3c:04:01:30
      Routing instance: default-switch
      VLAN name: SUBSCRIBERS, VLAN ID: 20
       Learning interface: xe-0/2/0.0   
       Layer 2 flags: in_hash,in_ifd,in_ifl,in_vlan,in_rtt,kernel,in_ifbd
       Epoch: 0                            Sequence number: 0     
       Learning mask: 0x00000001
    
    MAC address: 00:13:3b:06:01:19
      Routing instance: default-switch
      VLAN name: SUBSCRIBERS, VLAN ID: 20
       Learning interface: ge-0/0/5.0   
       Layer 2 flags: in_hash,in_ifd,in_ifl,in_vlan,in_rtt,kernel,in_ifbd
       Epoch: 0                            Sequence number: 0     
       Learning mask: 0x00000001      

     

    Neither host can ping each other, regardless of them being on the same switch or opposite switch. Both are getting IP addresses from the same dhcp server (router) on site and both can ping the router.

     

    Simple network setup:

    Router ETH0 <-> (xe-0/0/0) EX3300 (xe-0/0/1) <-> (xe-0/2/0) EX3400

     

    Thanks.

     

    -Sean



  • 2.  Re: Verify private isolated vlan on EX3400.

    Posted 10-26-2020 06:58

    Hi,

     

    could you please share the following outputs:

    show vlans extensive

    show vlans pvlan extensive

     

    Also please share PVLAN configuration part from both devices if possible. What are the versions of JunOS installed on both devices?

    Is the problem related to that particular 2 hosts only, or it's affecting all hosts communication within this PVLAN?