NSX 환경에서 Native LB를 사용하시는 경우 관련 정보를 어떻게 조회하는지에 대해서 알아보겠습니다.
1. Load Balancer 기본 정보
| edge-node-01> get load-balancers Sat Oct 28 2023 UTC 07:55:45.608 Load Balancer Applied To : Logical Router Id : 2798bb6d-914f-40a5-95b2-6466d4af87ab Service Router Id : 0a35807f-c32a-4d6c-a58d-a0b73858fbf2 Display Name : one-arm-lb Enabled : True UUID : 9178e238-cb6a-479d-ae95-fd5a62f5787d Log Level : LB_LOG_LEVEL_INFO Relax Scale Validation : False Size : SMALL Virtual Server Id : 61932e37-7798-4f25-a98d-6a7b70ddf27c |
| edge-node-01> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d Sat Oct 28 2023 UTC 07:56:32.222 Load Balancer Applied To : Logical Router Id : 2798bb6d-914f-40a5-95b2-6466d4af87ab Service Router Id : 0a35807f-c32a-4d6c-a58d-a0b73858fbf2 Display Name : one-arm-lb ### <-- !! Enabled : True UUID : 9178e238-cb6a-479d-ae95-fd5a62f5787d Log Level : LB_LOG_LEVEL_INFO Relax Scale Validation : False Size : SMALL ### <-- !! Virtual Server Id : 61932e37-7798-4f25-a98d-6a7b70ddf27c |
2. Virtual Server 정보
| edge-node-01> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d virtual-servers Sat Oct 28 2023 UTC 07:57:48.534 Virtual Server Access Log Enabled : False Application Profile Id : b0d72533-9701-4059-9210-98473fca2637 Display Name : one-arm-vs ### <-- !! Enabled : True UUID : 61932e37-7798-4f25-a98d-6a7b70ddf27c Ip Address : Ipv4 : 172.31.1.10 ### <-- !! Ip Protocol : TCP ### <-- !! Log Significant Event Only : False Pool Id : 2d383b94-97c3-4b8a-aa1b-630a4b3b2ae5 Port : 443 ### <-- !! Revision : 1 |
3. Pool 정보
| edge-node-01> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d pools Sat Oct 28 2023 UTC 07:59:13.071 Pool Active Monitor Id : a47833f3-a768-4d52-b32a-7e6068ecdaf9 Algorithm : LEAST_CONNECTION ### <-- !! Display Name : one-arm-pool ### <-- !! UUID : 2d383b94-97c3-4b8a-aa1b-630a4b3b2ae5 Member : Admin State : ENABLED Backup Member : False Display Name : vra3.contoso.com ### <-- !! Ip Address : Ipv4 : 172.31.1.13 ### <-- !! Port : 443 ### <-- !! Weight : 1 Admin State : ENABLED Backup Member : False Display Name : vra2.contoso.com ### <-- !! Ip Address : Ipv4 : 172.31.1.12 ### <-- !! Port : 443 ### <-- !! Weight : 1 Admin State : ENABLED Backup Member : False Display Name : vra1.contoso.com ### <-- !! Ip Address : Ipv4 : 172.31.1.11 ### <-- !! Port : 443 ### <-- !! Weight : 1 Min Active Members : 1 Snat Translation : Auto Map : True Port Overload : 32 Tcp Multiplexing Enabled : False Tcp Multiplexing Number : 6 |
4. Monitor 정보
| edge-node-01> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d monitors Sat Oct 28 2023 UTC 08:01:22.265 Monitor Display Name : vRA_Monitor ### <-- !! Fall Count : 3 ### <-- !! Http Monitor : Request Method : HTTP_METHOD_GET ### <-- !! Request Url : /health ### <-- !! Request Version : HTTP_VERSION_1_0 Response Code : 200 ### <-- !! UUID : a47833f3-a768-4d52-b32a-7e6068ecdaf9 Interval : 3 ### <-- !! Monitor Port : 8008 ### <-- !! Rise Count : 3 Timeout : 10 ### <-- !! Type : HTTP |
5. LB Session Table 정보
192.168.1.71 : Client
172.31.1.10 : VIP
172.31.1.254 : Service Interface
172.31.1.11, 12, 13 : Member Servers
SNAT 활성화 된 경우
| edge-node-02> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d session-tables Sat Oct 28 2023 UTC 12:27:48.379 Session-Tables TABLE ID PROTO CADDR CPORT VADDR VPORT SADDR SPORT DADDR DPORT l4lb-0 0000000000000405 tcp 192.168.1.71 54570 172.31.1.10 443 172.31.1.254 4438 172.31.1.11 443 l4lb-0 0000000000000406 tcp 172.31.1.12 64298 172.31.1.10 443 172.31.1.254 4438 172.31.1.13 443 l4lb-0 0000000000000407 tcp 172.31.1.13 53612 172.31.1.10 443 172.31.1.254 4441 172.31.1.12 443 edge-node-02> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d session-tables l4 Sat Oct 28 2023 UTC 12:27:49.822 Session-Tables TABLE ID PROTO CADDR CPORT VADDR VPORT SADDR SPORT DADDR DPORT EXP l4lb-0 0000000000000405 tcp 192.168.1.71 54570 172.31.1.10 443 172.31.1.254 4438 172.31.1.11 443 n/a l4lb-0 0000000000000406 tcp 172.31.1.12 64298 172.31.1.10 443 172.31.1.254 4438 172.31.1.13 443 1794 l4lb-0 0000000000000407 tcp 172.31.1.13 53612 172.31.1.10 443 172.31.1.254 4441 172.31.1.12 443 n/a edge-node-02> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d session-tables l7 Sat Oct 28 2023 UTC 12:27:52.688 Session-Tables TABLE ID PROTO CADDR CPORT VADDR VPORT SADDR SPORT DADDR DPORT EXP |
6. 현재 Edge가 LB를 위한 Active Node 인지 확인
아래 예제에서는 edge-node-02가 9178e238-cb6a-479d-ae95-fd5a62f5787d load balancer의 Active Node
| edge-node-01> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d status Sat Oct 28 2023 UTC 12:31:50.870 Load Balancer UUID : 9178e238-cb6a-479d-ae95-fd5a62f5787d Display-Name : one-arm-lb Enabled : True LB-State : ready LR-HA-State : standby ### <-- !! Virtual Servers : 1 Up Virtual Servers: 1 Pools : 1 Up Pools : 1 edge-node-02> get load-balancer 9178e238-cb6a-479d-ae95-fd5a62f5787d status Sat Oct 28 2023 UTC 12:31:32.617 Load Balancer UUID : 9178e238-cb6a-479d-ae95-fd5a62f5787d Display-Name : one-arm-lb Enabled : True LB-State : ready LR-HA-State : active ### <-- !! Virtual Servers : 1 Up Virtual Servers: 1 Pools : 1 Up Pools : 1 |
7. LB와 연결된 Tier-1 Gateway 확인
| edge-node-02> get logical-routers Sat Oct 28 2023 UTC 12:35:20.741 Logical Router UUID VRF LR-ID Name Type Ports Neighbors 736a80e3-23f6-5a2d-81d6-bbefb2786666 0 0 TUNNEL 4 6/5000 75dffe6b-faa4-4190-bbd3-9b4c0161999b 1 3 SR-tier0-01 SERVICE_ROUTER_TIER0 6 2/50000 064b8812-743c-427a-b0b6-801570118070 3 9 SR-tier1-01 SERVICE_ROUTER_TIER1 5 2/50000 92045476-c754-48e1-a86a-1ac4f9961112 4 8 DR-tier1-01 DISTRIBUTED_ROUTER_TIER1 4 4/50000 0a35807f-c32a-4d6c-a58d-a0b73858fbf2 5 1026 SR-one-arm SERVICE_ROUTER_TIER1 5 4/50000 ### <-- !! 73bdcf75-0251-4927-9c80-68a6d7265911 6 1 DR-tier0-01 DISTRIBUTED_ROUTER_TIER0 5 3/50000 edge-node-02> get logical-router 0a35807f-c32a-4d6c-a58d-a0b73858fbf2 Sat Oct 28 2023 UTC 12:36:35.537 Logical Router UUID VRF LR-ID Name Type Ports Neighbors 0a35807f-c32a-4d6c-a58d-a0b73858fbf2 5 1026 SR-one-arm SERVICE_ROUTER_TIER1 5 4/50000 |
8. Tier-1 Gateway와 관련된 Interface 조회
| edge-node-02> get logical-router 0a35807f-c32a-4d6c-a58d-a0b73858fbf2 interfaces Sat Oct 28 2023 UTC 12:36:52.845 Logical Router UUID VRF LR-ID Name Type 0a35807f-c32a-4d6c-a58d-a0b73858fbf2 5 1026 SR-one-arm SERVICE_ROUTER_TIER1 Interfaces (IPv6 DAD Status A-DAD_Success, F-DAD_Duplicate, T-DAD_Tentative, U-DAD_Unavailable) Interface : d1b04e3b-63d6-5a9d-850c-700a616cc2d1 Ifuid : 274 Mode : cpu Port-type : cpu Enable-mcast : false Interface : 5809e629-5b3d-5c7f-ac02-e7dee93d9e54 Ifuid : 275 Mode : blackhole Port-type : blackhole Interface : 57eac0e2-4f44-4212-9dcf-08d34223d354 ### <-- !! uplink, facing to T0 Ifuid : 284 Name : t1-one-arm-default-f7dc77b6-90e3-45df-9ce1-ddee3f95bca6-svclrp Fwd-mode : IPV4_ONLY Mode : lif Port-type : service IP/Mask : 172.31.1.254/24 MAC : 02:50:56:00:5c:00 VNI : 67585 Access-VLAN : untagged LS port : 55964e1f-3cbf-451d-9e74-54e38e497ab3 Urpf-mode : STRICT_MODE DAD-mode : LOOSE RA-mode : SLAAC_DNS_THROUGH_RA(M=0, O=0) Admin : up Op_state : up Enable-mcast : False MTU : 1500 arp_proxy : 172.31.1.10 Interface : 8dc23df0-eaf0-460f-8b83-dd3403a1023e Ifuid : 285 Mode : loopback Port-type : loopback IP/Mask : 127.0.0.1/8;172.31.1.10/32;::1/128(NA) ### <-- !! LB VIP Interface : 6b76910b-859b-4236-8d9f-c545a86f7361 ### <-- !! downlink, facing to T1-DR Ifuid : 292 Name : bp-sr0-port Fwd-mode : IPV4_ONLY Mode : lif Port-type : backplane IP/Mask : 169.254.0.2/28;fe80::50:56ff:fe56:5300/64(NA) MAC : 02:50:56:56:53:00 Access-VLAN : untagged LS port : 00000000-0000-0000-0000-000000000000 Urpf-mode : NONE DAD-mode : LOOSE RA-mode : RA_INVALID Admin : down Op_state : up Enable-mcast : True MTU : 1500 arp_proxy : |
'Networking' 카테고리의 다른 글
| [NSX] Basic Check #1 (1) | 2023.12.11 |
|---|---|
| Load Balancer Packet 수집 (0) | 2023.11.05 |
| One-arm Load Balancer 생성 (0) | 2023.10.30 |
| Packets are dropped due to DFW rule described in dvfilter (1) | 2023.10.08 |
| BFD Collect packets (0) | 2023.09.25 |
