Any info on how to configure dynamic-pinning, instead of static pinning on a Nexus 2224 connected to a 7009?Can't seem to find anything on CCO!
View 9 RepliesI have a dmz interface on a ASA 5520 that is used for wireless internet and i would like the users to be able to vpn in however they can not because they are coming back through the same outside interface. Do i have to nat the VPN ip pool or just use some form of hairpin routing or nat. I am using 8.2.
View 4 Replies View RelatedI have been tasked to replace the existing Cat 6500 and 3750 switches by Nexus 7000 and Nexus 2000.I was told initially my boss plans to get 2 x Nexus 7000 and then eventually blow up to 4 x Nexus 7000s.For Nexus, is there a list of tasks / points that i need to consider for building the initial design?
Can i just link the Nexus 7000 like the following?
N7k-A ========= N7k-B
| |
lots of N2ks lots of N2ks
if vPC is supported between a single 2232PP FEX and two 7000 switches running 6.0(1)? I have been researching this for an implementation I am doing for a client and was able to determine it was not supported with earlier versions of 5.0 when the FEX is connected via vPC as I described above, but I can't find anything related to version 6.0(1). I have done this for other clients with 5000 and 2000 switches, but I don't have too much experience with 7000 switches.
View 5 Replies View RelatedI have a big doubt. Can I connect a LAN switch (i.e. 2960, 3560 or 3750) to a couple of Nexus 2000 FEX (i.e 2232P or 2248TP) and have a Port-Channel or vPC with STP active and several VLANs through this Port-Channel? Or Can I only connect servers to these N2K FEX?
View 3 Replies View RelatedIf the latest release of NX-OS 6.1.2 supports dual homing a Nexus 2000 to a pair of Nexus 7000s (F2 Module)? The document does state something about support for vPC+ but is not really clear about it.
View 4 Replies View Relatednyone know if "vpc-orphan-port suspend" works if i put on N2k interface. not the fex link. example i have fex 101 and i put on eth 101/1/10 will it suspend the port on N2K connected to secondary N5K when peer link is down?
View 2 Replies View Relatedis it possible to connect one Cisco Nexus 2000 fabric extender to two Cisco Nexus 5000 and use one link on the first side and two links on the other side?
View 3 Replies View Relatedcurrently nexus 2000 and nexus 7000 does not support dual connection. you can not connect to 1 nexus 2000 to 2 nexus 7000 chasis. But for the nexus 5000, Nexus 7000s? 5000s and 7000s run same software.
View 1 Replies View RelatedI am designing a network for my client where I have to implement a 10 Gig end to end connectivity. The major factor of concern from my management is about scalability (space to include more 10Gig servers as the nodes grow up). I have suggested Cisco 5596UP with 2232 PP as this gives ample amount of 10Gig ports. The setup has to be implemented across 2 different datacenters located 40 Kms apart, connected with 10Gig DC Interconnect.
I understand that Cisco Nexus 2232 is a Layer 2 Only switch and would need to communicate with parent 5K switch very frequently. Is it necessary to have the 2K and 5K pair in the same datacenter or in proximity? Is it possible to have the SFP uplinks connected to the DC interconnect? Because we have two datacenters located 40 Kms apart and having 1*Layer 3 - 5K switch at DC A with Layer 2 - 2K nexus Switch at DC B will be cost effective. We do require more 10Gig ports and not much requirement on Layer 3 usage. What are the type of communication that would be much frequent between 2K and 5K?
Does the LACP will be supported on Nexus 2000 host interfaces when parent switch is Nexus 7000?
View 5 Replies View RelatedI have configured Cisco 1841 router PAT buts its not worked, find the below configuration details,
In LAN interface
Interface gigabit Ethernet 0/0
no shutdown
[code]......
Similarly I have configured static and dynamic nat but its not works in my customer place.
I'm working on setting up a template configuration for the Cisco ASA 5505 device that we'll use to configure more routers for various client needs. One of the requirements requested of me is the following: Internal hosts assigned a DHCP address are blocked from the internet Internal hosts with a static IP are permitted access to internet All internal hosts can communicate regardless of state
Now, I'm fairly new to this and I'm certain my terminology isn't correct so googling the problem has been fruitless. I have followed basic configuration guides and have configured the device to hand out DHCP addresses to hosts plugged in ports 1-7. If I'm plugged in and specify my address manually in the OS I am blocked from any access so I can only assume there is an access policy or some rule preventing me from authenticating against the router despite having set up VLAN1 to be the entire class C subnet. What sort of steps would I need to do to configure this? New access lists. For the record, the dhcp addresses are in the range of 10.100.31.64-10.100.31.95. VPN users are assigned an address from 10.100.31.220-10.100.31.240 and there seems to be no issues with that configuraiton. I don't wish to constrain what addresses a user can use should they specify a static IP (10.100.31.5 should be just as valid as 10.100.31.100).
Basically I have an internet router (1841ISR) with 1 internal (LAN) connection and 2 internet connections. What I want to do is route specific traffic for 3 of my internally hosted services (smtp, https, etc) through one internet connection (fa0/0) and then route all other traffic through the unmanaged/dynamic IP ADSL connection (Dialer 0).
View 9 Replies View RelatedDoes the 22xx Series FEX support static or dynamic LAGs between itself and a server?Imagine a server with dual 10G NICs, and I need to connect them to the SAME 22xx FEX....can I set up a LAG between the two 10G NIC ports and two 22xx FEX Host ports? Does it depend on how the FEX is connected to the parent 55xx?
View 0 Replies View RelatedI need to configure an existing 2600 router to use dynamic NAT for access to the web and ALSO I have (5) fixed IP addresses for use with an email server, a web server, and (3) future servers. I do not know the concept of how to set this up. I'm currently using dynamic NAT for the web and this seems OK but I dont know how to map my fixed servers. I assume this is done with static NAT. Do I need to add sub interfaces on the S0/0 T1 interface for each of these fixed IPs? Then do I somehow do static NAT on these fixed IPs to their respective servers?
View 14 Replies View RelatedI am working on Nexus 7010 with NX-OS 5.1.5. I have to delete the static route 10.10.0.0/16 via 10.16.0.21. [code] I try to remove the route with the command "no ip route 10.10.0.0/16 10.16.0.21" and I have the message below % Route not deleted, it does not exist..I don't understand why I have this message because the static route exist.
View 9 Replies View RelatedOk I didn't setup my OSPF on my 7010. Today I found out that any static route I put into my 7010 gets sent into to my MPLS network. My 6509's you have to "Tag" the static rout for this to happen. Was under the impression the same was necessary for the 7010 or at least it had to "match" an access list. How can I fix the below so that by default all static routes are not resdistributed into OSPF?
[CODE]...
How to configure a nexus 5K?
View 3 Replies View Relatedhow do we configure sub interface for nexus 7k?do we have to issue ma-address command under physical interface and than configure subinterface? if yes than what do we have to type the mac address for "mac-address" command?I can doing and than configure subinterface but the interface/subinterface didn't come up. do we have to bounce it couple times to bringe it up?
View 1 Replies View RelatedI'm interested to know whether we can configure ip helper in nexus 7000?
View 2 Replies View RelatedI am working for an Air Force client and am adding a handful of 5548s into their network. My question is how Tacacs+ is configured. My hands are tied in regards to testing in an operational environment so I want to ensure the configs are correct prior to deployment/maintenance window and avoid any remote issues.
I have read the "Cisco Press - TACACS+" config guide and it was somewhat vague in regards to operational deployment.
My basic NX-OS configs are as follows:
- feature tacacs+- tacacs-server key 7 "002A52xxxxxxxxxxxxxxxx8"- tacacs-server host 128.xx.xx.xx timeout 10- tacacs-server host 128.xx.xx.xx timeout 10- tacacs-server directed-request
When I try to set the following command string, aaa authentication login default group tacacs+ local, the NX-OS asks me the input a "server group name". There are no server groups configured. Do I need them? Can I get by without configuring a group name because the client probably will not.
The Cisco IOS devices are configured with normal aaa authentication/authorization parameters. Also, do the VTY ports default to sshv2 and the correct tacacs+ parameters with the "transport input ssh" command (not available)?
My Name is senthil i need to configure new hp sever with Nexus 5548 how to config.. server side everything finished just i need only
Config tips for Nexus 5k for New server
According to Cisco, Nexus 1010 can host up to (6) Virtual Service blades. I can't find out how many Virtual Supervisor Modules and Virtual Ethernet Modules that make up one Nexus 1000v switches can be supported by each Virtual Service Blades. In other words, how many Nexus 1000v switches can be created with Nexus 1010 appliance?how to configure Nexus 1000v switches with vmware. without Nexus 1010, the standalone nexus 1000v switches was configured from vCenter as an OVF. But how to configure Nexus 1000v switches with vmware where nexus switches are hosted on Nexus 1010 appliance.
View 1 Replies View Relatedwhat is the equivalent command to configure on the Nexus 5596? OS version 5.1(3)N2(1) Catalyst 45k ip igmp snooping vlan 1036 mrouter interface Po20
View 1 Replies View RelatedI need a switch to configure a static ARP entry for a MS NLB multicast.
Could answer me if I can do with the SRW2024-K9-BR?
I have a ASA5510 with 2 internal interfaces (inside1 and inside2 same security level) configured with OSPF for dynamic routing with 2 routers to corporate subnets. I have a server in a private subnet that needs to be accessed from Internet. So static pat is used in ASA with the command
static (inside1, outside) tcp interface www 192.168.1.1 www netmask 255.255.255.255
As OSPF is in use, the subnet 192.168.1.0/24 may be reachable from interface inside2. When I tried to configure the static command for inside2,
static (inside2, outside) tcp interface www 192.168.1.1 www netmask 255.255.255.255.the error message came out "WARNING: mapped-address conflict with existing static...". Is this just a warning, or this is not possible in ASA.
I am deploying a pair of Nexus 5596's with 3750 POE switches in the closets. I'm looking for a best practice as how to configure the Nexus 5596 to support proper QoS for EF at the core.
View 6 Replies View RelatedWe've gotten two Nexus 7009's in and I'm starting to configure them when I found I couldn't add VDCs. I found there was no license installed but the only licenses I found that came with them are "Cisco DCNM for LAN Enterprise Lic for one Nexus 7000 Chassis". So my question is this - do I need to configure a DCNM server to get the license pushed to these two 7009s or should there be another PAK for each chassis that I can register and get my enterprise services?
View 1 Replies View RelatedCan i configure access ports into port channel on Nexus 7K switch.If possible then provide the complete configuration.....
View 2 Replies View RelatedI am trying to connect my sever with daual homed to two Nexus 2232 fex which are part of two Nexus 5548 vPC pair( topologyu attached) but getting error on Nexus 5548 as below,
Not sure its allowed under Nexus 2000.
""Port-channel members across FEXes is not allowed, new member Ethernet101/1/12(0x1f6402c0) existing membe: : Ethernet100/1/12 command failed: port not compatible [All HIF member ports not in same pinning group]"""
i have new laptop and trying to vpn into office with static ip. and the rdp into work station. vpn connects fine although says iv6p has no network access.. and rdp will not connect
View 3 Replies View RelatedMy company is doing an nationwide upgrade of it's leased 2951 routers. For security sake I need to wipe everyone of them before being sending them back to the leasing company. I would like to somehow boot to a USB drive and call it a day.
View 4 Replies View Related