WLAN Microsoft NLB Conundrum

Posted on 2014-02-03
Medium Priority
Last Modified: 2016-11-23
Good afternoon All

I have 2 subnets x.x.32.x and x.x.35.x with a wlan in between, on the 35.x end I have a Dell 6224 and on the 32.x end I have a HP 3400cl.  I have a web host on the 35.x and a 2 x wcf apps server on the 32.x with MS load balancing - the web host needs to connect to the 32.x wcf servers.  Both ends are VMs on VMware hosts.

The web host can connect to the wcf if it used the NIC IP but is unable to connect to the NLB IP.  

On the Dell switch I can add static ARP entries but on the HP switch I only have the option of Proxy-ARP (unless someone knows different).
I cam across an option of adding a second NIC to the pair of WCF servers and altering the vSwitch but that will only work if I keep both servers on a single host, which sort of negates the reason for having them on separate hosts.

Could anyone give me a suggestion on how to achieve this connection without compromising my network or breaking anything else.?

Many thanks
Question by:Eric
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
LVL 28

Expert Comment

ID: 39829566
What's the network topology at the 32.x site?  It's the layer 3 device that I'm concerned about.

Author Comment

ID: 39829652
Hi Asavener

The layer 3 device we use for routing is the HP3400cl - it routes the traffic through the Huawei to the 35.x site.

LVL 28

Expert Comment

ID: 39829804
So that's the device that won't let you add a static ARP entry for the NLB address?
Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

LVL 28

Expert Comment

ID: 39829827
OK, according to the documentation for that model switch, it should support static ARP entries, but they only get added to the ARP table when the interface comes up:


A static entry enters the ARP cache from the static ARP table (which is a separate table) when the interface for the entry comes up

Author Comment

ID: 39829882
Hi Asavener

There is no way to add static entries, and the dynamic entry only seems to pick up the host IP and mac not the load balancing IP and mac - in IPConfig it shows the nic as having 2 IP addresses not a real card and a NLB virtual card.  The wcf apps servers are virtual machines so they are not connected directly to the HP3400.
LVL 28

Accepted Solution

asavener earned 2000 total points
ID: 39829943
I suggest you contact the vendor, because the documentation indicates that static ARP entries are possible.

This is a "normal error" for layer three devices.  Cisco has an article on why their devices reject dynamic ARP replies from NLB clusters.  (Basically, it's a mis-match between multicast MAC address in the ARP reply and the unicast IP address of the NLB cluster address.)

Unless you're able to add a static ARP entry on your router/layer3 switch, only local hosts will be able to communicate with the NLB cluster.

Here's a good article describing the problem:  http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1006525

Author Closing Comment

ID: 40292041
Many thanks for you help with this asavener, the links you supplied were very useful.

Featured Post

Learn how to optimize MySQL for your business need

With the increasing importance of apps & networks in both business & personal interconnections, perfor. has become one of the key metrics of successful communication. This ebook is a hands-on business-case-driven guide to understanding MySQL query parameter tuning & database perf

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question