Can you use the management IPs as the isolation address for HA?

There was a question on VMTN this week about the use of the management IP’s in a “smaller” cluster as the isolation address for vSphere HA. The plan was to disable the default isolation address (default gateway) and then add every management IP as an isolation address. In this case 5 or 6 IP’s would be added. I had to think this through and went through the steps of what happens in the case of an isolation event:

1. no traffic between slave and master or master and slaves (depending on whether the master is isolated or one of the slaves)
2. if it was a slave which is potentially isolated then the slave will start a “master election process”
3. if it was the master which is potentially isolated then the master will try to ping the isolation addresses
4. if it was a slave and there’s no response to the election process then the slave will ping the isolation address after it has elected itself as master
5. if there’s no response to any of the pings (happen in parallel) then the isolation is declared and the isolation response is triggered

Now the question is: will there be a response when the host tries to ping itself while it is isolated, as you need to add all ip-addresses to “isolation address” options for it to make sense… And that is what I tested. It will ping all isolation addresses. All but one will fail, the one that will be successful is the management IP address of the host which is isolated. (You can still ping your own IP when the NICs are disconnected even.) Leaving the VMs running as one of the isolation addresses responded.

In other words, don’t do this. The isolation address should be a reliable address outside of the ESXi host, preferably on the same network as the management.