When configuring AWS VM-SERIES for GWLB, unknown attachment type "vpce-0ffffffffffffffff" is displayed
1677
Created On 10/10/22 23:05 PM - Last Modified 06/05/24 20:20 PM
Symptom
- VM series deployed in AWS using Gateway Load Balancer (GWLB).
- When attaching the GWLB Endpoints to interfaces, Odd interfaces "vpce-0ffffffffffffffff" is displayed.
admin@awsfw> show plugins vm_series aws gwlb
GWLB enabled : True
Overlay Routing : True
================================================
VPC endpoint Interface
================================================
vpce-0920bbabc123eff33 ethernet1/1.1
vpce-07777347b67d0f29f ethernet1/1.1
vpce-0ffffffffffffffff ethernet1/1.1
Environment
- PA-VM in AWS
- Gateway Load Balancer (GWLB) VPCE Attachments
Cause
- Valid format: "vpce-0 + 8 bytes" integer in hex format.
- The invalid vpce can be checked using the "show system state" command (highlighted below)
show system state | match sw.mprelay.s1.dp0.svm.*
sw.mprelay.s1.dp0.svm.service_chain_mappings: { 'vpce-01234abcd6ca66792': {
'operation': ADD, 'service_name': ethernet1/1.1, }, 'vpce-01237347ba7d1f29f': {
'operation': ADD, 'service_name': ethernet1/1.1, }, 'vpce-01237347ba7d1f29f2': {
'operation': ADD, 'service_name': ethernet1/1.1, }, 'vpce-0123bb999ac5e0123': {
'operation': ADD, 'service_name': ethernet1/1.1, }, }
Resolution
Remove the incorrect vpc-endpoint
> request plugins vm_series aws gwlb disassociate vpc-endpoint vpce-01237347ba7d1f29f2 interface ethernet1/1.1
Additional Information
Trying to disassociate 'vpce-0ffffffffffffffff' will only temporarily stop displaying the interface.
> request plugins vm_series aws gwlb disassociate vpc-endpoint vpce-0ffffffffffffffff interface ethernet1/1.1