question

RaphaelCamposSilva-5209 avatar image
0 Votes"
RaphaelCamposSilva-5209 asked shivapatpi-MSFT answered

Static mac "12:34:56:78:9a:bc" in AKS

Hello,

I create a small AKS cluster and I saw that 2 nodes communicates through the same mac address "12:34:56:78:9a:bc", and this is why (https://social.msdn.microsoft.com/Forums/Lync/en-US/be3e4ab1-7b0e-42d0-82a6-08b640dd51c3/strange-quot123456789abcquot-ethernet-addresses?forum=WAVirtualMachinesVirtualNetwork). Even in the same subnet, the destination mac addr. is "12:34:56:78:9a:bc".

So my questions are: 1) I couldn't find it - Is there a place in official AKS documentation talking about this static mac "12:34:56:78:9a:bc" used in VNet?; 2) it is true to say that this happens in all AKS instances?


I ping from node 1 to node 2, and test in both instances (Standard_DS2_v2 and Standard B2s), and the behavior is the same.

From node 1 (10.240.0.4 - 00:0d:3a:59:76:13)
azureuser@aks-nodepool1-23965286-vmss000000:~$ arp -a | grep 10.240.0.35
aks-nodepool1-23965286-vmss000001.internal.cloudapp.net (10.240.0.35) at 12:34:56:78:9a:bc [ether] PERM on eth0


From node 2 (10.240.0.35 - 00:0d:3a:30:5c:2c)
azureuser@aks-nodepool1-23965286-vmss000001:~$ arp -a | grep 10.240.0.4
aks-nodepool1-23965286-vmss000000.internal.cloudapp.net (10.240.0.4) at 12:34:56:78:9a:bc [ether] PERM on eth0

I appreciate if somebody could help me, tks

azure-kubernetes-service
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

shivapatpi-MSFT avatar image
1 Vote"
shivapatpi-MSFT answered

Hello @RaphaelCamposSilva-5209 ,
Thanks for your query !

You can see the detailed answer of your query at https://www.untangled.eu/2017/07/networking-in-microsoft-azure-part-1/
I just tested for Linux Azure Virtual Machines in same VNET and different VNET - it's the same MAC Address.
Reason is explained in the above article.

It's not only for AKS node instances any Virtual Machines in Azure will use the same MAC Address i.e. Every ARP request you send out on a Azure Virtual Network asking the MAC address for a specific IP address is always answered with the same simple MAC address: 12:34:56:78:9a:bc.

That is because you are on a shared platform and the Virtual Network or VNET is a Layer 3 overlay instead of Layer 2 on the OSI model where you have the datalink layer. You can’t change a VM or other devices on the Azure platform and put this on a different switch port. That power was removed from you as a user and Microsoft created an abstraction layer on top of their infrastructure.

Hope that helps in understanding !


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.