« Connectivity Changes for November 2010 | Main | FIP, FIP Snooping Bridges, and FCFs (Part 2 – FIP Snooping Bridges and Fibre Channel Forwarders) »



Feed You can follow this conversation by subscribing to the comment feed for this post.

Ivan Pepelnjak


This is a fantastic introduction to FCoE login processing. However, the basic question remains: why would you mandate that a DCB-enabled bridge supports FIP snooping?

FIP snooping is a nice security feature, but it's not mandatory to make FCoE work ... and you should always put FCoE traffic in a separate VLAN anyway.

Looking forward to future posts!

Erik Smith

Hi Ivan, thanks! My next post should be ready in a day or so and it will explain exactly why I think FIP Snooping is required.


Streif Vest

Thank you, Erik, for the topic. I read FC-BB-6 at this moment (FCoE) and try to understand FIP procedures. I think that you describe basic routine very well.


Excellent write up on FIP. Thanks very much.
Just one question, why there must be a VLAN associated with every VSAN? Just I could not understand this? regards. Mohan

Erik Smith

Hi Mohan, thanks!

In regards to your question, there can only be one VSAN per VLAN due to a requirement in the FCoE standard (FC-BB-5). Essentially, if you have more than one VSAN per VLAN, it would be possible to have duplicate FPMAs (Fabric Provided MAC Addresses) and this can lead to data corruption under the right circumstances.

The comments to this entry are closed.


  • This is not an official EMC blog.
    The opinions expressed here are my personal opinions. Content published here is not read or approved in advance by EMC and does not necessarily reflect the views and opinions of EMC nor does it constitute any official communication of EMC.