Patching front port to virtual chassis member interface is broken in UI #11478
Comments
cs-1
added
the
type: bug
cs-1
changed the title
cs-1
changed the title
|
So what is happening is we are actually getting all interfaces from the VC when querying this method (if you search for chassis specific interfaces, you will see them). I will need to confirm that this is the intended result, I don't believe so though. |
|
Hi Dan! The behaviour was different in earlier versions. Regarding the intended result: the observed behaviour would be correct for a master chassis where all interfaces of members of the same VC should be listed. For non-master chassis it should only list the interfaces of that particular chassis. (We don't use the master chassis functionality in our scenario.) |
|
Quick P.S.: the problem also exists in v3.4.3. |
|
hi @DanSheps Thanks in advance |
|
Seems to be caused by: #10743 Changing the API to always return all VC interfaces when filtering on device id seems like an error, though I get why it was needed for LAG assignment. Not sure what the correct solution is here. Reverting the change would break LAG assignment again I assume. |
|
The change definitely breaks what used to work in the UI. Does it make sense to discuss this with @jeremystretch ? @lp-2 is currently trying to figure out a solution but we probably don't have enough insight into the design of NetBox to tell whether our proposed solution is acceptable (if we find one, that is). |
|
@cs-1 - A couple of things:
This is not the case for me. When attaching the cable, all interfaces show up but it's still possible to attach them to the right device, it's just impossible to know which device is which if the interfaces are named the same.
I guess one option is to:
Wether this makes sense in a modelling sense I can't tell you, I know next to nothing about VC's. |
Yes, same here. But that's exactly the problem. In VC scenarios, interface numbers "y" can be the same on each individual VC member. Only the VC chassis position "x" gives your an identification "x/y" of an interface. There's typically no need to add "x" to each chassis member's interface name, it's redundant information and it also makes using "Device Type" templating difficult to use because in these templates, interfaces are numerated as if not part of a VC (y = 1..48).
These two options sound reasonable. I tend to think that refixing the LAG select field issue is the most plausible solution. It's not logical to get all interfaces of all VC members when querying only a single, non-master VC member. |
kkthxbye-code
added
the
status: needs owner
I understand the issue, just wanted to clarify that what I quoted from the original issue wasn't correct, as it makes it seem like regardless of which interface you pick it is always connected to the lowest index VC member. If you don't mind, please update the issue text for posterity.
I agree, and I'm sure it was unintended, and thus a bug. Let me know if you want to try to contribute a fix yourself :) |
Oops! Yes, I'll fix the description. Sorry for the confusion.
Yes, that's what we try to figure out whether we can help to fix it. @lp-2 is currently looking into the code. |
I looked at the code in the /dcim/filtersets.py file. In the filter_device_id function, you could add an optional passing parameter that sets the filter if_master to true for the virtual chassis and false for the LAG setting, |
|
The filterset doesn't really know if it's being used by the cable form or the interface form, as the fields are DynamicModelChoiceFields which just call the API to get the data. As I said the solution is probably to add a toggle to the interface API signifying if LAG members should be included for non-master members and then the new toggle could be added to query_params for the lag field of the InterfaceForm. |
|
We'd like to help solve this but our Django knowledge is still a little limited. Could you be so kind to point us to the InterfaceForm that you speak of? The idea you mention is what we have in mind but we simply don't seem to find the right "entry point" in the code where to implement it. :) Thanks for your patience, we're slowly but surely getting the hang of it. :) |
|
This is the problematic lag field on the InterfaceForm: You can pass API parameters to the query_params dict. Not sure of the best way to modify the filter/api though. |
|
Thanks for the pointer. We looked at the code and we can say for sure that the patch in #10743 needs to be reverted because of its side-effects. We're currently trying to figure out how to modify the queryset / query_params to get all cross-VC interfaces in case a device is part of a VC. But we're pretty sure that modifying netbox/netbox/dcim/filtersets.py Line 1452 in 3150c1f if_master=False is not the correct way to do this.
|
Not sure what platform you are using, but on Cisco, switch(or fex or whatever)/slot/interface are all critical to proper interface naming and you shouldn't be skipping on them. Yes, you have to rename them after, but you could easily handle that with a plugin that functions on a trigger or something and a bulk rename is not difficult. Not sure what other platforms do, TBH, but I imagine they are similar in that it is a integral part of the name. Now, if you are using VC for it's non-intended purpose (MC-LAG, VPC, etc), then that is, unfortunately not something we can account for. |
|
We don't use VC in a non-intended purpose, see below. What I'm saying is that the patch in #10743 renders the purpose of a master chassis in a VC obsolete because it will turn every chassis into a master chassis when using the RE: VCs (though this is independent of what's stated above): we do use the VC function as intended. We chose not to make a chassis a master chassis in NetBox because our configuration management will look at every member of a VC to determine the interface configuration to use. The "x/y" notation of an interface is derived from x = position number of VC member in NetBox / y = interface number (as it is done by most switch vendors; x will change when changing the position of a chassis in a stack which is analogue to changing the VC position of a chassis in NetBox). I don't see how that is a problem. We don't use MC-LAG or VPC in that context. That way we don't need to do any interface renaming and can simply use Device Types without changes. I can't find NetBox documentation that states that this is an unintended approach. Using a master chassis and the functionality that comes with it is clearly optional in the docs. |
|
@kkthxbye-code sorry for the confusion in #11838 |
|
This bug is leading to unexpected outcomes in the API as well as GUI. Compare results of The proposal from kkthxbye-code appears very reasonable. Allow an additional parameter to the query where the caller can specify whether all interfaces of the virtual-chassis or of the member only should be returned. Defaulting to True on the master and False on the rest. Challenge comes when not specified and devices from different VCs are requested but then it can return 400 error for "ambiguous query". |
|
I understand that one day it was decided to go a different path, but to me, all this would have been easier to deal with if the complete listing of interfaces would happen on the VC instead of the master member. In our use case, I have to model a device without any physical interfaces (including power) to represent the stack/VC. This non-racked "device" contains only the virtual interfaces (VLAN interfaces, loopbacks, lags, etc) of the stack. Then I add the physical members to the stack and rack them. This way, each member only holds their physical interfaces. Ideally, the information I put in the device I create first to represent the stack would lie under the VC. Putting all interfaces under the master member of VC is like mixing the concept of virtual and physical device. Not sure if it would be too much of a breaking change to consider this again... |
|
@thefreakquency Totally agreed, here is my argument for having interface listings on virtual chassis ... |
|
@thefreakquency Yes, that's the reason why we completely avoid using the "master chassis" option in NetBox because it's no logical that a physical chassis seems to have more interfaces than it actually has. Not using the master chassis option may create other problems but for us that approach works. @troeger I agree what you write in the comment that you linked to. That being said, I think it would be a good idea to start a discussion on the Discussions page. My hope still is that the patch that causes unwanted side effects (on top of the UI issues described here) will be reverted. |
Put in a FR for this, this somewhat makes sense but we still need to include master interfaces for lags and other devices in the API queries so this likely won't solve the problem you are seeking to resolve.
I understand you have a specific use case, however from your description you are likely, for lack of a better word, abusing how the virtual chassis and devices are suppose to be used.
This isn't going to happen. As mentioned, it needs to be properly resolved and not just reverted to the previous bad state. Personally, my view is this: All members queried should return all members of the stack no matter which member you are quering as this is how it behaves in real life with a shared management and control plane, which is what VirtualChassis is for. In an instance where there is separate management and control, you should not be using VirtualChassis. |
|
@DanSheps Having all interfaces under each members would be a really good idea, as long we are able to have a management IP on the VC. Stacked switches or firewalls can have both separate & shared management. In an ideal world full of unicorns, the VC should represent the virtual instance of that switch, which has management. A few more items would be also needed to represent the non-physical characteristics of a stack/cluster, like:
This would replicate real-life scenario where you document & manage both the physical device (Rack, serial number, interfaces and anything tangible), and the virtual stack (Configuration, management, etc...). Each physical device could have it's own primary management IP, as it is sometime possible to manage each member individually, while having a Stack management IP). As an example, in Juniper world, each physical management IP would likely be on me0 or fxp0 of each device, and the shared management would be on vme0. In Fortinet, you would assign an IP to mgmt port of each device, while having a cluster management IP. |
Can you give me an example of this? I have never met a stacked switch that has a separate MP. I have also never met a stacked firewall. |
|
If we changed the serializer to provide the device name as part of the interface lookup, would that suffice for most people? |
Yes, that would be a very useful and a good solution. |
jeremystretch
added
the
severity: low
DanSheps
added
status: accepted
|
After discussion in the maintainers meeting, we are going to shift the direction:
|
|
Because this results in a breaking change to the |
…aces (#13296) * Add `vc_interfaces` flag to control interface queryset * Fix test failure * Add new filters instead of using undocumented query params * Cleanup filterset, add test * Rename filter and re-introduce virtual_chassis filtering method (required) * Fix test * Adjust tests to more accurately provide coverage * Add breaking change note * Misc cleanup --------- Co-authored-by: Jeremy Stretch <jstretch@netboxlabs.com>
NetBox version
v3.4.2
Python version
3.8
Steps to Reproduce
Expected Behavior
The cable should be attached between front port and VC member's interface. Only the interfaces of selected VC member are shown.
Observed Behavior
The interface selection always show all interfaces of all VC members even if selected VC member is no master. This can lead to confusion because you don't expect to see other VC members' interfaces.
We've made the following observations.
I believe that this is an UI issue. My guess is that in
/dcim/cables/add, the Interface selector always displays VC member 1's interfaces instead the actual selected VC member.The text was updated successfully, but these errors were encountered: