Log in

Sangfor Support Center

Table of Contents
< All Topics
Print

[IAG] Dual-bridge deployment cannot manage IAG through bridge address

Posted
Updated
Byadmin
Views2

Problem Description

IAG dual bridge deployment, one of the bridges is configured with a bridge IP, but the device cannot be managed through this bridge IP;

Process——

  1. The device can log in to the console through the virtual IP address 1.1.1.3;
  2. When capturing packets on the device, no packets accessing the device's bridge address can be captured, that is, packets accessing the bridge IP address cannot reach the device;

Root cause

The IAG is connected to the core for aggregation. In this environment, the IAG cannot learn the core's Mac address due to inconsistent paths for ARP packets. It is not recommended to use a bridge address management device.

solution

  1. Use virtual IP to manage devices;
  2. Configure the management port and use the management port address to manage the device;

Original Link

https://support.sangfor.com.cn/cases/list?product_id=22&type=1&category_id=6823&isOpen=true