Cisco Switching/Routing :: Nexus 5596UP Dual-sided VPC Design With Dual Connected
Feb 19, 2012
I would like to make a design with 4 Nexus 5596UP. 2 of them equipped with Layer 3 Expansion Module so they can serve as core layer and the other 2 Nexus used as Layer 2 for aggregation server layer.The 2 Nexus in the core layer will run HSRP and will peer with ISP via BGP for Internet connection The 2 Nexus in the aggregation layer will be configured as layer 2 device and have FEX and switches connected to them.What I am ensure of is how the vpc and port-channel configuration should look like between the 4 nexus. What I was thinking is to run vpc between the 2 Nexus in the aggregation layer and between the 2 Nexus in the core layer. Than I was thinking of connecting each Nexus in the aggragtion layer to both Nexus in the core layer using port-channel and vice-versa.
View 3 Replies
ADVERTISEMENT
Jun 10, 2013
I have two Nexus 5596UP that will be connected together via VPC-Peerlink. From there I want to connect both 5596UP's to a 6509-VSS via VPC.The Nexus 5596UP's will be essentially layer 2 switches, all routing will be done the 6509-VSS's.
View 2 Replies
View Related
Aug 7, 2012
I have to upgrade a Nexus 7010 with dual Sup engines from 4.2(4) to 5.2 and am hoping it could be an ISSU. We are fine with an outage window.To upgrade from 4.2(4) to 5.2(5) I'll have to do a multi hop upgrade from 4.2(4) - 4.2(6) - 5.2(5) and each hop would take 40-60 minutes.do I spend 40-60 minutes for each hop, or just do a disruptive upgrade straight from 4.2(4) to 5.2(5)? Like I said, we are fine with an outage window.
View 2 Replies
View Related
Mar 29, 2012
I wanted to ask a question about the diagram I have included. We are bringing up 2 MPLS WAN connections and would like some specifics on the best design. We are using BGP to the providers. From there we have big questions. We can run BGP internal and are licensed to do so on the N5K's. The N5Ks are currently using HSRP for inside LAN clients as default gateway. We want to load balance and provide redundant routes using a dynamic approach. Should we use BGP internal utilizing the connections between the routers? Should we use HSRP on the routers? How best to get the routes to the N5K and should we be considering this?
View 5 Replies
View Related
Jun 10, 2012
I am trying to interconnect a pair of Nexus 5548 at adjacent sites, using 2 2960-S switches at each site, the reason being that the Multimode Fiber between the sites will only support 100mb and I need this up while I finish having SMF laid.
I have attached a diagram, just debating whether to use etherchannel or vPC - would like to hear some opinions...
Assume the interconnect between the 5548's needs to be 802.1q trunk
View 5 Replies
View Related
Nov 3, 2011
currently nexus 2000 and nexus 7000 does not support dual connection. you can not connect to 1 nexus 2000 to 2 nexus 7000 chasis. But for the nexus 5000, you can. what is the problem to to support this feature on Nexus 7000s? 5000s and 7000s run same software.
View 1 Replies
View Related
Apr 1, 2012
We are planning to have attach topology with nexus 5548 using vpc. Let me know if this i possible. I want to configure dual NIC linux server using LACP active mode to connect to two 5548 in VPC for redudancy as well as use of full access layer bandwidth. On nexus this will be access port in single port channel in single VPC link.
View 1 Replies
View Related
Oct 24, 2011
I am trying to work up a config based on equipment that was ordered before I joined my current employer.
I will be deploying N2Ks at the top of each rack. Each N2K will be dual homed to two different N5K's. Being new to the Nexus, I understand that the N2K's have no brains and are dependent on the N5K's they connected to. Wasnt sure how to tell each 5K that the 2K that was dual connected to it needed to be able to move between N5K's based on failure/availability. I havent been able to find a sample config of what this will look like anywhere on the Nexus section of the Cisco site.
The next step after this will be to connect N5K_1 to blade on a 6509 and N5K_2 to a different blade on the same 6509. I will be installing two of the 10Gig blades in the 6509. Havent been able to find any sample configs on what this would look like either. We are upgrading the sup engines on the 6509 to the new 2T version.
View 2 Replies
View Related
Jan 23, 2013
When I read Nexus 5K install guide , I found the follow :The Cisco Nexus 5596UP switch has the following features: # •48 fixed 1- and 10-Gigabit Ethernet server connection ports on the back of the switch AND The 48 fixed ports support 8-, 4-, 2-, or 1-Gbps Fibre Channel transceivers and 1- or 10-Gigabit Ethernet transceivers. Does these is a conflict ?The 48 fixed port on this switch support only 1- and 10-Gigabit Ethernet or 8-, 4-, 2-, or 1-Gbps Fibre Channel and 1- or 10-Gigabit simultaneously ?
View 2 Replies
View Related
May 6, 2013
We have two Nexus switches in our network, one of them is Nexus5020 other Nexus5596UP. System image is identical on both switches 5.2(1)N1(4). When we try to setup VPC between these switches we see that all configured vlans on VPC peer link between Nexus switches are blocked by spanning tree protocol with message "Bridge Assurance Inconsistent, VPC Peer-link Inconsistent". We still can't solve this problem.
Topology:
NEXUS_5020---Peer_link(Po2)---NEXUS_5596UP
/
/
Member_link (Po100) Member_link (Po100)
/
/
SERVER
Configuration:
NEXUS_5020:
speed 1000
interface Vlan2000
no shutdown
description VPC_keepalive_link
vrf member VPC_kepalive
ip address 10.55.55.2/30
View 2 Replies
View Related
Jul 1, 2012
We have two Cisco Nexus 5596UP switch.
We upgraded
n5000-uk9-kickstart.5.0.3.N2.1.bin (Fan speed %40) to
n5000-uk9-kickstart.5.1.3.N2.1a.bin (Fan Speed %60)
but 20% increased speed of the fans. What could be problem?
Software
BIOS: version 3.5.0
loader: version N/A
kickstart: version 5.1(3)N2(1a)
system: version 5.1(3)N2(1a)
[code]....
View 1 Replies
View Related
May 11, 2013
I'm trying to get the VFC up in B22-FEX blade in Dell which is connecting to Nexus 5596UP.
The message I get is
# sh int vfc1033
vfc1033 is down (Error Disabled - VLAN L2 down on Eth interface)
Bound interface is port-channel3
Hardware is Ethernet
Port WWN is 24:08:00:2a:6a:0d:db:3f
Admin port mode is F, trunk mode is on
[code]....
View 3 Replies
View Related
Mar 26, 2012
Our current topology is a single N7K with two 48port 10Gb F2 linecards and FEX 2224TP in the server racks. In a few of the racks that house important servers, we have placed dual FEX 2224's. Each FEX has 2 10Gb links back to the N7k (each link on a separate LC). I've tried to create a port-channel for the important servers in such a way that each NIC on the server is connected to a separate FEX - but its failing (simple drawing attached). I've read multiple posts saying this is possible, and others that say its not. I've also submitted a TAC case and have been told it's impossible to port-channel interfaces on separate FEXs connected to a single N7k - but I find this an impossible limitation and want to verify it's actually right. Is this really a limitation?
View 7 Replies
View Related
Nov 13, 2012
we are planning a Nexus datacenter project with this layout:Our experiences with Nexus switches are not so large until now and the manuals are very extensive.Both N5K´s should be connected directly with all 4 N2K switches. I did not find a layout like this in the manuals. Only a design,where only 2 N2K are connected to one N5K, with this fex config:Now I´m not sure if it is right to make a config like this with the same slots and fex´s or with different slots and fex´s.
View 1 Replies
View Related
Aug 10, 2012
This past networkers I was at the Cisco booth discussing how the 2248 can connect to the 5548 and have server connectivity. It was told to me that now, as of a fairly recent NX-OS release, you can have the 2248 going dual-homed to both 5548 via VPC and then have a server connected to both 2248 and be in active-active mode. Is this correct?
When we first deployed our 5548 and 2248 we had to put the 2248 in a straight pin mode, where it only had connections to one 5548 and then the server would dual connect to the 2248's and be in active-active mode. I was told that this changed with an NX-OS release however documentation still seems to be fragmented on what exactly is the case.
View 3 Replies
View Related
Dec 17, 2012
how to change our wireless setup. Currently, we have 2 Cisco AiroNet 1130 WAP's in the office that go directly into the 2 POE ports on our Cisco ASA 5500. These WAP's have 1 SSID and are using WEP for security. After demonstrating the flaws of WEP to my boss, he has agreed that we should use something more secure and I've suggested WPA. We want visitors to our office to be able to hop on our wireless but on a separate guest SSID with WEP.
I'd like the internal SSID to route to the ASA and take the default route to the internet (it will be our new fiber connection once it's installed in a couple weeks). The default route is whichever connection is working since our ASA 5500 will fail over when it detects an outage.
I'd like the guest SSID to route to the ASA and then go over our existing cable connection. This connection will be our backup once the fiber connection is installed. Since we won't be using it very often, but will be paying for it, I advised that we send all guest wireless traffic over this connection since 50/5 is plenty for guests.
The current SSID (which will be the internal SSID) has no VLAN. We do currently have a few VLANS on our network, one for voice (.42) and one for data (.100) and the default (.0). What device to I create the VLAN on (Cisco 5500?) and how to I setup the WAP? I need very basic instructions to start and I'm also trying to do this without causing downtime if possible.
I've attached a diagram of what it should look like. Red indicates our internal network and Blue indicates the guest network. I can send screenshots as well.
View 2 Replies
View Related
Feb 21, 2013
I run 2 RV042 V1 for home and office with Gateway to Gateway VPN connection with single WAN connection in use. Everything works like a charm!
I was even able to create VPN connection with 2 WAN connection on one Router and 1 WAN connection on another with Smart link failover and VPN Tunel Backup.
I got problem though when i tried more complex connection diagram. [URL]
So basically I now have 2 ISP connections on each point with Static IPs and I'd like VPN Connection to be alive for ALL 4 options automatically with failovers (smart links) And tunel backups but i'm not sure if that's ever possible with my equipment.
View 2 Replies
View Related
Sep 22, 2012
At home I have a Cisco 877 router, I also have Optus Cable internet and Telstra Business Direct DSL. I have configured the ATM interface for the Telstra DSL connection through the onboard DSL interface. I have also configured Fast Ethernet port 0 as a vlan2 port, which is configured for use with the Optus Cable internet (this is connected through an Optus Netgear CG3000 router). The Nethgear has DHCP enabled (192.168.0.xxx range), as does my Cisco 877 (10.0.0.xxx range).Firstly, the Telstra Business DSL is due to be connected tomorrow between 9am and 1pm, so it is not physically connected as yet.From my laptop connected to fa3 and using Console connection, I can ping all of the 192.168.0.xxx addresses that exist, as well as my own laptop and a VoIP phone I have connected to fa2 (laptop is 10.0.0.100, VoIP phone is 10.0.0.101 both DHCP assigned, not MAC Reserved either).I can use internet explorer on my laptop to connect to the Netgear router, but no other internet pages. I also cannot connect to my Fuji-Xerox printer at 192.168.0.20 through the web browser, yet I can ping it from the router.I don't have a huge experience with Cisco as yet, and everything I have learnt has been basically self tought. I am looking into doing my CCNA, once I achieve enough funds Now, what I am trying to achieve ideally is, to combine both the Cable and DSL services to in effect double my speed? if this isnt available, a load-balancing type of scenario would also be good. Both DSL plans have a 500gb download limit, but the reason I needed the Telstra DSL is the VoIP phones I am using won't connect through Optus (Optus have locked nearly everything out), and Optus will not give me a STATIC IP address with the Cable, whereas I have on on the Telstra DSL, I would like to Remote Desktop into my main PC eventually.
The IOS on my router is: C870 Software (C870-ADVIPSERVICESK9-M), Version 12.4(6)T7
The Optus Cable Modem IP is 192.168.0.1, the Cisco 877 router IP is 10.0.0.1
The current config (complete, with username & passwords ### out) is below: (Bear in mind there's probably many things thats not needed.Once I get the router working, I will configure my 2960 switch and have all devices connected through this. All devices on my network do not need to stay in the 192 range, they can be 10.0.0.xxx. The DHCP could be disabled on the Netgear (Cable Modem) if that's required as well.
!version 12.4no service padservice timestamps debug datetime msecservice timestamps log datetime msecno service password-encryption!hostname N3813163R!boot-start-markerboot-end-marker!logging message-counter sysloglogging buffered 51200 warnings!no aaa new-modelclock timezone aest 10!crypto pki trustpoint TP-self-signed-116689578enrollment selfsignedsubject-name cn=IOS-Self-Signed-Certificate-116689578revocation-check nonersakeypair TP-self-signed-116689578!!crypto pki certificate chain TP-self-signed-116689578certificate self-signed 01 3082024F 308201B8 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 30312E30 2C060355 04031325 494F532D 53656C66
[code]....
View 5 Replies
View Related
Feb 16, 2013
I would like to ask if there are dual WAN router models on ISR G2. The client doesn't want the RV042G. Any model from the 890 series up to the 2900 series ISR G2 routers? The connection from the ISP is via Ethernet. If a serial connection would be used then we can just add an HWIC-2T for this matter.
View 10 Replies
View Related
Oct 15, 2012
I have recently implimented an RV016 device into our network. We have a bonded T1 service with Paetec/Windstream (5 static IPs) and also a cable connection with Comcast (no static IP). The T1 has been our primary connection, and our MX and A records all use this IP address. I have the rules set and using a one-to-one NAT setup with our 5 IPs. Everything is working great with the T1 in place and email is flowing with no problems, however when I connect the cable into the WAN2 port and try to send email, its using that outbound connection, rather then the T1 and our spam filter is blocking it. So the email is rejected and we get this message below.
---------------------------------------------------------------------------
Delivery has failed to these recipients or groups:
xxxx@gmail.com (xxxx@gmail.com)Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept e-mail from certain senders, or another restriction may be preventing delivery.
The following organization rejected your message: (our smtp spam relay)
-------------------------------------------------------------------------
The reason for being rejected is just because it doesn't recongnize the IP address/gateway it is coming from.
My question is, how do I define that all email is sent out through our T1 connections IP address in the router?I see options for Advanced Routing or Bandwidth Management, but not sure what one I need to configure as I am not too familiar with these settings. I have Intelligent Balancer(Auto Mode) enabled as well by default.
The reason for adding the second internet connection is strictly for load balencing and getting some more bandwidth in our location.
View 3 Replies
View Related
Jan 9, 2012
we are trying to configure 1841 with dual Internet connection with failover using track.
View 4 Replies
View Related
Sep 21, 2012
1. We now have SupA & SupB in the chassis, due to some mistake we have same IOS version but different feature set on them, although we configured redundancy mode sso, in the "show redundancy" we see Operating Redundancy Mode = rpr due to Software mismat, we now need to fix them as same feature set image, if I use "copy sup-bootdisk0:/xxxx slavesup-bootdisk0:/xxx", then write memory, does this cause any service/network interuption?
Available system uptime = 1 year, 1 week, 4 days, 9 hours, 21 minutes
Switchovers system experienced = 2
Standby failures = 0
Last switchover reason = active unit removed
[code]....
2. We did a failover test with this status, found that if we triggered supervisor failover, all modules will reload thus the services if interupped. How about after we make the Operating Redundancy Mode as sso, will this behaviour shows again? Or a stateful failover will happens, then modules no need reload?
3. We are using OSPF as our L3 routing protocol, after reference to the configuration, nsf should be enabled, we want to ask in the OSPF-domain nsf should be configured in all OSPF-enabled router or only 6500 which have dual-sup?
4. We also found that the interfaces(3 * Gig & 2 * TenG) in Standby supervisor cannot be use even enabled & configured, is it because we are running rpr mode now or will be the same even change to sso? Before customer have some older supervisor in 6500 non-e chassis, and they can use the standby supervisor interfaces as traffic forwarding, they use rpr-plus mode before, how about in sso mode?
View 6 Replies
View Related
Jan 23, 2013
One of the two supervisors in an IOS 6509-E did not come back up after a power outage. The failed supervisor in slot 5 was replaced and it booted successfully. However, the supervisor in slot 5 only booted up to a "Cold" state. I did notice the Hw version of the replacement module in slot 5 is 4.9 while the Hw version in the supervisor module in slot 6 is 4.8. What command do I need to issue to bring the supervisor module in slot 5 from "Cold" to "Hot"? [code]
View 4 Replies
View Related
Jan 13, 2013
I am looking to implement VSS using our two 6500 series switches. The "Recovery Actions" when there is a Dual-Active situation says that the active chassis that detects a dual-active condition shuts down all of its non-VSL interfaces (except interfaces configured to be excluded from shutdown) to remove itself from the network, and waits in recovery mode until the VSL links have recovered. Does this mean that the Active chassis gets totally isolated thus triggering the modules on the Standby chassis to be active ?
View 1 Replies
View Related
Sep 23, 2012
We have CORE switch model : Cisco WS-C4510R-E with dual SUP 5 - 2 10GE. [code] Now We want to upgrade this IOS to the upgraded version.
View 3 Replies
View Related
Dec 9, 2011
Will 2811 Router with 4 switch port module, How to do dual ISP configuration on this router.
View 10 Replies
View Related
Mar 17, 2013
I've 3 interfaces on router:
Gb0/0-ISP01 with DHCP client
Gb0/1-ISP02 Static IP 192.168.2.x/24
Fa0/0 - LAN 192.168.1.1/24
I want to know, how to configure:1. Set the IP of interface Gb0/0 as dhcp client from ISP01 and make it as default route.
2. How to configure the ip nat.....overload?
3. How to use the ip sla to monitor internet connectivity to 8.8.8.8 for ISP01, if it fails, to go to ISP02.
View 3 Replies
View Related
Jan 31, 2012
Currently our Cisco 3750 have one interface (port 1) that connected to our provider (Internap) with the IP 66.150.7.68 assigned. Now we want to upgrade to dual handoff L3 protocol. Below is the network configuration from Internap.
>>>> We have assigned the below /30s for each of the interfaces and will statically route the 66.150.7.0/25 down both interfaces.
>>>>
>>>>
>>>> 63.251.162.20/30
>>>> 63.251.162.21 - border1.sef003 - Internap side
>>>> 63.251.162.22 - your side
>>>>
>>>> 63.251.162.184/30
>>>> 63.251.162.185 - border2.sef003 - Internap side
>>>> 63.251.162.186 - your side
tell what command lines do I need to input on my Cisco switch for port 1 and 2 in order for the dual handoff to work correctly?
View 1 Replies
View Related
Apr 29, 2012
Doing a bug scrub on our dual core, dual Sup 720 6500s tonight. We are going from s72033-advipservicesk9_wan-mz.122-33.SXI4a.bin to SXI9. I want to get a second set of eyes on my script since I have not done this for about 1 1/2 years. Following this doc:[URL]
Script:
Backup
sh ver
remote command switch show version
[Code].....
View 6 Replies
View Related
Jan 10, 2013
I would just like to confirm whether dual stack hsrp is possible or not on 3750X both stack and non-stack.
The following is that I have to take care of this on the stack?
[Catalyst 3750 Software Configuration Guide, Release 12.2(55)SE]
[URL]
%FHRP group not consistent with already configured groups on the switch stack
View 4 Replies
View Related
Jan 30, 2013
I have 2 3750 switch stacks which I would like to have redundant trunks between them. This will provide two physical connections traveling through different geographical locations for redundancy in the event that a cable is severed. I couldn't find anything in regards to setup/config. Does it matter if I go stack1/switch1 to stack2/switch1 and stack1/switch2 to stack2/switch2 or should they cross to opposite switches like a stack cable? I don't think that should be necessary, but couldn't find any documentation. Should there be an issue with loops?
View 4 Replies
View Related
Jun 24, 2012
In IOS verson 12.X there was a Bidirectional Forwarding Detection configuration however in IOS 15.0 this isn't available at least not with the same syntax. Is this feature not available in 15.0?
In 12.X this was the syntax of the command:switch virtual domain <number>.
View 1 Replies
View Related
Jun 7, 2013
Basically I have a simple LAN of 30 users and 2 servers that sit on a private address range (192.168.1.1 - 254). I have a Cisco 1921 router with 2 Gigabit Ethnet interfaces and have installed a 2 port Ethernet module to expand interfaces,I have Two Internet providers that provide me an Optic connection to a converter and then a CAT 5 cable. On both of these connections have private public assigned IP addresses.I have a email server and webserver on the LAN (192.168.2 and 192.168.1.3) and with to port forward various ports to these servers - 25, 80, 443 3389, and 2222.
In my external DNS I have two MX records for the mail server (mail.globalhomegroup.com) that point to 2 A records - one record for the publicly assigned IP address of one ISP and another IP address for the other ISP. Ideally what i would like is for mail to be delivered to the first ISP Ip address - the one with the lower MX weighting and then if that line goes down, through the IP address of the second MX record - the backup ISP we are using.
So I guess I am port forwarding to the inetrnal server IP addresses via one of the two external interfaces.At the same time I need to allow internal users to access HTTP, HTTPS etc.So I have managed somehow to configure the external interfaces of the routers to connect to the ISPs and have managed to assign IP info to intenral LAN interface. I can telnet to the router from the Internet via Dialer0 or Dialer1. Other than that I am totally stuck - I have tried to configure and debug NAT etc but cant see wood for the trees now. Basically the port forwarding is not working and i am not sure if the config I have done is in anyway correct.
View 10 Replies
View Related
