Windows 2008 NLB - Multiple Subnets issue?

    I have the same issue Have you seen this

    My problem is also multiplied because I'm using VMware

    I hope it's fixed soon

    Wednesday, February 04, 2009 12:17 PM
    Ya, I have seen this, but it says the issue applies when NLB is in multicast mode and it should work fine in unicast mode.

    Which mode are you using?

    As far as I know VMWARE recomends using multicast.

    Wednesday, February 04, 2009 8:06 PM
  • HI Again, We are using Multicast but seem to have this problem as well even though we are running VMware I suspect it's all related. If I ping a virtual NLB Ip address from a different subnet my arp cache includes the physical IP MAC and not the NLB Mac which doesnt seem to propogate across subnets. We are moving to a hardware load balancer because it's obviously a problem. I hope your problem gets solved soon though there is too much discussion about problems in 2008 with something that worked fine in 2003

    Thursday, February 05, 2009 3:05 AM
  • We sorted it out the network team had the wrong Mac in the arp table,Duh
    Thursday, February 05, 2009 5:41 AM
    it will hep if you can please elaborate on this?

    What is the config you have now, which arp cleared from switc,how you got wrong arp in etc.?

    Thursday, February 05, 2009 5:58 PM
  • Just to add my experience,

    I had a 2k8 Cluster that I could not ping or connect to the virtual server from outside the subnet when this resource resided on certain nodes. The public nics on all nodes were configured with teaming using  broadcom teaming software.

    The nic teams were in a failover configuration with one active and one standby adapter. For some reason the team mac address that gets adopted is the same as the standby adapters mac which is not an issue and seems to be by design. Looking at the arp table on the switch I was only seeing the nodes and virtual server resource registered against the primary adapters mac address and not the team mac address.

    The reason for this behavior and fact that I could not connect to the virtual server resource was that the secondary nic was in a different VLAN to the primary. It was easily missed because you do not see the secondary nic register on the switch at all. I had to disable the primary nic forcing the teaming software to switch to the standby adapter before the network team could see the port it was connected to and the VLAN it was in.

    Sorted the VLAN issue out and now it registers with the team mac and is accessible by the clients.

    Simple problem easily missed because of the way the teaming seems to work.


    Tuesday, May 18, 2010 8:42 AM
  • There is a network issue when using multicast NLB. YOur network team may have to add a static arp entry on the gateway of the subnet where the NLB cluster lives for the IP address of the NLB cluster. This has to do with network equipment not liking the use of a multicast mac address with a unicast IP address. Cisco equipment will reject the arp response by default if the mac is multicast and the IP is unicast and requires the static entry. Additionally, whn using Multicast it is advisable for your network team to need to add entries into the MAC Address table of any switches that connect to the NLB for the NLB IP. Without the manual MAC Address Table entries, traffic destined to the NLB IP will end up being flooded out every port of the switch. This is because the switch will have trouble learning which port the NLB is actually conencted to.

    Moral of the story, is invlove your network team when you are building NLB clusters.

    Below are links to relavant articles from Cisco, VMware and MS.

