Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Gombodorj
Explorer
Jump to solution

Loopback interface is going out of routing table

I have Quantum 6700 appliances running as VSX cluster and I have configured loopback interface with an IPv4 address. 

This works perfectly for like 1-2 days. Then suddenly this IPv4 address drops out of the FW's routing table and no longer works. 

When I run "show interfaces all" it shows the loop00 interface correctly with the IP address. But there is nothing regarding this IP in the routing table after 1-2 days. 

Why is it dissappearing from routing table after some hours?

0 Kudos
1 Solution

Accepted Solutions
Chris_Atkinson
Employee Employee
Employee

Confirmed: Loopback interfaces are not currently supported with VSX up to and including R81.20, sk79700 has been updated accordingly.

Depending on the specific requirement there are possibly other work arounds available (Dummy DMZ interface or VLAN etc). 

This is otherwise an RFE that you should discuss with your local SE if critical.

CCSM R77/R80/ELITE

View solution in original post

0 Kudos
9 Replies
Chris_Atkinson
Employee Employee
Employee
0 Kudos
Gombodorj
Explorer

I'm using R81.10 JHF Take 79 on the VSX gateway. The way I do it is as follows:

1. set vsx off
2. add interface lo loopback X.X.X.X/32
3. set vsx on 
4. save config

 

As I said before after this IP address drops out of routing table. I have to do the above configuration again to make it come up.

0 Kudos
Chris_Atkinson
Employee Employee
Employee

This method of adding interfaces in VSX isn't supported per responses to your previous post on a similar topic. 

To be clear the loopback is present/defined in the Virtual System topology in SmartConsole?

CCSM R77/R80/ELITE
0 Kudos
Gombodorj
Explorer

I thought that you can't use loopback interface (aside from lo 127.0.0.1) on smartconsole. On the topology pane of the gateway object, if I try to like define loop00 interface with IP address, it shows error.

Can you explain about how can I check it?

0 Kudos
Chris_Atkinson
Employee Employee
Employee

R81.10 introduced:

  • Use a loopback interface with Dynamic Routing in ClusterXL environments.

This mandates that the Loopbacks are defined in the Gateway topology, I assume the same is true also for VSX Virtual Systems but will check and revert that this is also supported or not.

CCSM R77/R80/ELITE
0 Kudos
Gombodorj
Explorer

I'm using this method on the VSX gateway itself, I also just tried making a interface named loop00 on the topology pane. It shows illegal error. 

Is there a mechanism like looks up the topology and uses this information for the routing table? If so I suspect that whatever that mechanism is invalidating my loopback interface C route because it doesn't exist in the topology. How can I define loopback interface in smartconsole?

0 Kudos
Chris_Atkinson
Employee Employee
Employee

As above I will confirm pending confirmation that it is supported the same as it is on a regular cluster.

CCSM R77/R80/ELITE
0 Kudos
CheckPointerXL
Advisor
Advisor

Hey Chris, also for cluster, solution provided by  sk117794  (linked from sk95968 @ point 4) ) seems to be very dangerous.

Like i said inside SR 6-0003534450, any new get interface with/without topology will invalidate/delete the manually created loopback interface. The behaivoir is confirmed and no solution provided (it works by design).

so, if you add new interface/vlan and you forgot to add loopback interface again, i suppose OSPF/BGP process will be disrupted because of new Router-ID needs to be selected

I've opened a RFE number hT5Nxy49E

0 Kudos
Chris_Atkinson
Employee Employee
Employee

Confirmed: Loopback interfaces are not currently supported with VSX up to and including R81.20, sk79700 has been updated accordingly.

Depending on the specific requirement there are possibly other work arounds available (Dummy DMZ interface or VLAN etc). 

This is otherwise an RFE that you should discuss with your local SE if critical.

CCSM R77/R80/ELITE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events