HPE Community
BladeSystem - General
1752674 Members
5699 Online
108789 Solutions
New Discussion юеВ

Re: Virtual Connect Private Networks

 
Paul.Kraus
Occasional Advisor

тАО06-28-2010 08:06 AM

тАО06-28-2010 08:06 AM

Virtual Connect Private Networks

Could someone please explain how Virtual Connect "Private Network" functions. If two hosts in a Virtual Connect domain are connected to the same VC network and are in the same IP subnet, how can they communicate with each other if the VC network is set to "Private".

I have seen some comments in this forum suggesting that the traffic would flow up the uplink to an external switch and then come back down the same uplink to the destination server blade. But, I doubt that many switches would forward a packet back down the link on which it was received, especially if the destination MAC address was not yet in the switch's MAC address table.

The Virtual Connect User Guide states that "Servers on the network can only communicate with each other through an external Layer 3 router that redirects the traffic back to the VC domain." But that would imply that a server host would send a packet to its ip gateway even though the destination server was on the same subnet, as opposed to sending an ARP to find the MAC address of the destination.

Thanks for any clarification.
0 Kudos
Reply
3 REPLIES 3
WFHC-WI
Honored Contributor

тАО06-28-2010 08:53 AM

тАО06-28-2010 08:53 AM

Re: Virtual Connect Private Networks

Hi Paul,

The way I understood this from HP support is consistent with what you found on other posts.

For example the servers in bays 1 and 2 belong to the same virtual network. If the server in bay 1 pings the server in bay 2 that traffic will never leave the enclosure... unless "private network" is enabled for that virtual network.

As for routing traffic back down the same port, that is something a layer 3 device has no problem with... but I agree that a switch (usually layer 2) would be confused. I think for that reason the traffic within a private network would be headed further upstream if the enclosure was connected to a switch.

Check page 30 of this document for a clearer explanation:
http://h20000.www2.hp.com/bc/docs/support/SupportManual/c01386629/c01386629.pdf

good luck!
0 Kudos
Reply
ChrisLynch
HPE Pro

тАО09-22-2010 04:50 PM

тАО09-22-2010 04:50 PM

Re: Virtual Connect Private Networks

So, there is some confusion on this topic.

1. A VC Ethernet Network marked as Private simply states no assigned NIC will be able to communicate with other systems whos NIC is also connected to the same VC Ethernet Network. For instance, if HOSTA has one a single NIC defined in its Server Profile, and that NIC is assigned to VNET1 (which is marked as a Private Network), and HOSTB is configured exactly the same way, HOSTA and HOSTB will never talk to each other while they are in the same VC domain. HOSTA and HOSTB will be able to communicate with other systems on the network OUTSIDE of the VC domain (i.e. a backup server.) This is very similar to the Isolated PVLAN feature within Cisco switches. It is NOT the same thing.

2. A VC Ethernet Network marked as Private will never have the traffic egress the uplink port to the upstream switch, and then ingress back the same path. This is a vioaltion of 802.1D rules, specifically referring to "Hair-pinning."

3. If HOSTA's NIC1 is assigned to say VNET1 (marked as a Private Network) and HOSTB's NIC1 is assigned to VNET2 (also marked as a Private Network), their communication would be handled via the L3 gateway connecting their subnets; unless there is an ACL between the path that prohibits that communication.)

I am an HPE employee

Accept or Kudo

0 Kudos
Reply
OSY Unix 1-4-2 (A-Team)
Advisor

тАО04-19-2011 06:39 AM

тАО04-19-2011 06:39 AM

Re: Virtual Connect Private Networks

Hallo Mr. Lynch,
can post a link to an HP document there I can read this details about Virtual Connect "Private Network" and the vioaltion of 802.1D rules ?
thanks
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.