We have a Nexus 7018 with NX OS 5.2(1), and we were trying to understand somehow the steps to do a VACL, we know that in IOS it would be:
interface GigabitEthernet9/33
description Puerto. Captura
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 19,20
[Code]...
how to configure QoS on the portchannels from the nexus up to the WLC 5508's?
View 1 Replies View RelatedI have a serious problem with nexus 7018, there're unicast flooding on one n7k, named n7k-1, which is the member of vPC domain combined with 2 N7Ks. [code]I had clean the mac-address-table, and all mac-address-tables had been synced fine, and the unicast flooding went away.
How could I fix the mac-address sync function between the modules ?
Does one can use a Vacl to monitor network traffic on a nexus 3064 much like you can on the 6500s? If so, any performance tradeoffs or caveats to be aware of ?
View 2 Replies View RelatedI've got this syslog alarm from nexus 7018. I am wondering what the slot 19 is here.
2013 Jan 15 23:59:22 r1 %PLATFORM-3-EJECTOR_STAT_CHANGED: Ejectors' status in slot 19 has changed, Top Ejector is OPEN, Bottom Ejector is CLOSE
2013 Jan 15 23:59:24 r2 %PLATFORM-3-EJECTOR_STAT_CHANGED: Ejectors' status in slot 19 has changed, Top Ejector is CLOSE, Bottom Ejector is CLOSE
Can I configure a DHCP Servero on the Nexus 7018?
View 2 Replies View RelatedI am trying to upgrade IOS on my Nexus7018 from version 5.12 to 5.13. I have managed on all my three out of four Nexus succesfully but one of them is keep coming with this error,
""""N1K-7018-1# install all kickstart bootflash:n7000-s1-kickstart.5.1.3.bin system bootflash:n7000-s1-kickstart.5.1.3.bin
Another install procedure may be in progress. Please try later.
how to find out which other install is running or stop any install procedure.?
I am running ping between two Nexus 7018 over WAN link ,and I can see some set pattern of packet drop(7.40 % drop) with MTU size 1500.When I ping between my 6500 VSS pair and same Nexus 7018 over different SP WAN link on diffrent location , I am still getting same kind of packet drop (8% drop) with MTU 1500. Has any one else come across this issue with Nexus?
View 1 Replies View RelatedI'm going to replace a Cat6513 with a Nexus 7018. In my Cat6513, there are object tracking config as follows:
ip sla monitor 1
type echo protocol ipIcmpEcho 112.78.254.249
timeout 3000
frequency 6
ip sla monitor schedule 1 life forever start-time now
ip route 172.17.7.0 255.255.255.0 165.202.51.46 name VPN-1 track 123
Is there similar feature in Nexus platform? Because from Nx-OS command ref, I only found:
ip route ip-prefix/mask {[interface] next-hop} [preference] [tag id]
Seems can't associate a track object to a static route in Nx-OS?
I have switch Cisco 3560 and I would like to filter multicast traffic. Short explanation. This are multicast addresses from provider on VLAN 888 :
I expect that streams from acl Streamfrom888 will be dropped and the rest of streams will be forwarded. Unfortunately traffic from all streams passs through.how to configure VACL or where in my configuration is mistake?
Is there a way to configure a VACL capture on 3560-x, we need more than 2 SPAN sessions. Feature navigator indicates that this feature is supported but it seems like it's not implemented in the IOS yet.
View 1 Replies View RelatedI´m facing to one issue with VACL. i have a network lan with 10.40.X.X/16 . in this network i have a Production v LAN 10 with 10.40.10.X/24 and i have created one vlan103 for Guest´ user as 10.40.103.X/24
My goals is to restrict the v LAN 103 to reach or access the v LAN 10, better to restrict Guest user access to the production v LAN. So i try to put this script with VACL method, but does n´t work.
Extended IP access list Restriction-Guest
10 permit ip 10.40.103.0 0.0.0.255 any
vlan access-map Guest 10
action drop match ip address Restriction-Guest
vlan filter Guest vlan-list 10
After that i still able to ping or access to the v LAN 10 form v LAN 103.
i have a catalyst 3750, in this switch i have 3 vlan, i need to secure trafic between vlans but im confused ,should i use ACL or VACL to secure ?which is the best ?if i use ACL to secure and limit ports between vlan, which is the best practice to apply the acl ( on th inside or outside of interface)
View 2 Replies View RelatedI have used stack wise 3750 for a long time. Now,I have a new stack of 3750. Both of them are trunking together. If I have a VACL running in the old stack, do I need also implement in the new one.
View 1 Replies View RelatedI need to enable vPC "peer-switch" command on a pair of Nexus 7018s which are currently vPC peers (primary and secondary). The STP root and Secondary root are currently configured across these switches.Can I enable the peer-switch command in this configuration without impacting services, and then modify both switches to have the same bridge priority without impacting services ? We have a few downstream 5ks which are not dual homed to both vPC peers (work in progress) so need to understand if the peer-switch command will in any way break this connectivity for now.
View 1 Replies View RelatedWe are facing issue of continous packet discards On nexus4001L link (int po2) to Nexus5020 switch. Nexus4001L is installed in IBM blade center server and we have FCOE enabled in this setup. [code]
View 2 Replies View RelatedI have been tasked to replace the existing Cat 6500 and 3750 switches by Nexus 7000 and Nexus 2000.I was told initially my boss plans to get 2 x Nexus 7000 and then eventually blow up to 4 x Nexus 7000s.For Nexus, is there a list of tasks / points that i need to consider for building the initial design?
Can i just link the Nexus 7000 like the following?
N7k-A ========= N7k-B
| |
lots of N2ks lots of N2ks
Struggle to find the SNMP MIBS of the Nexus 5000 FEX tranceivers.
View 3 Replies View Relatedwe are planning a Nexus datacenter project with this layout:Our experiences with Nexus switches are not so large until now and the manuals are very extensive.Both N5K´s should be connected directly with all 4 N2K switches. I did not find a layout like this in the manuals. Only a design,where only 2 N2K are connected to one N5K, with this fex config:Now I´m not sure if it is right to make a config like this with the same slots and fex´s or with different slots and fex´s.
View 1 Replies View RelatedDoes the nexus 7010 support virtual switching yet? All of the posts I have found from about a year ago say that it is going to be supported, but there were no dates listed. I heard the same thing from Cisco a while back, but haven't followed up with it.If it is supported finally are there any configuration guides available for it?
View 7 Replies View RelatedLucien is a customer support engineer at the Cisco Technical Assistance Center. He currently works in the data center switching team supporting customers on the Cisco Nexus 5000 and 2000. He was previously a technical leader within the network management team. Lucien holds a bachelor's degree in general engineering and a master's degree in computer science from Ecole des Mines d'Ales. He also holds the following certifications: CCIE #19945 in Routing and Switching, CCDP, DCNIS, and VCP #66183
View 1 Replies View RelatedCan nexus 5010 supports inter v lan routing , as there is no core switch and router available in current network.
View 2 Replies View RelatedWe have our Nexus as our default gateway (101.1) and the default VLAN1 is setup with two subnets 101.X and 102.X. The DHCP server is using a superscope setup to accomodate the overflow of devices requesting IPs on 101, so when 101 is consumed persons are able to obtain a 102.X IP address. The setup is basic on superscope. The issue is some times the routing to the firewall with a 102.X is not always 100%. Somedays all goes well and the 102 subnet is routed out to the firewall and its a good day. However, such as today a 102.X address is not routing as it did 24 hours ago. I am perplexed as to why this is behaving unpredicatable. Here is running-config for VLAN1 to show the 102 as secondary address to VLAN1.
View 2 Replies View Relatedyou find attached my network architecture with 2 Nexus 7010 on core layer and 2 Nexus 5020 on distribution layer, each one with 1 N2148T fabric extender switch. PC-A1 and PC-A2 are connected to one N2148T, PC-B1 is connected to the other N2148T. Nexus-7000-1 is HSRP Active for all VLANs, Nexus-7000-2 is HSRP standby. PC-A1 and PC-A2 are connected to VLAN A, PC-B1 is connected to VLAN B. PC-A1 and PC-A2 have the same default gateway correspondent to IP HSRP on VLAN A. It happens that PC-A1 is able to ping PC-B1 while PC-A2 is unable to ping PC-B1. If I issue a traceroute from PC-A2 I see Nexus-7000-2’s physical IP address as the first hop even if Nexus-7000-2 is HSRP standby. After the first hop the traceroute is lost. If I shutdown Port-channel 20 on Nexus-5000-2, PC-A2 starts to ping PC-B1.I can’t understand what’s wrong in this architecture.
View 6 Replies View RelatedI have an environment where i have two nexus 7010 switches, along with 2 nexus 5510's. I need to run OSPF as a layer 3 routing protocol between the vpc peer links. I have 1 link being used as a keep alive link, and 3 other links being used as a VpC link.
1) Is it best to configure a separate Vpc VLAN i.e 1010
2) Is it best to configure a vrf context keep-alive
3) just have the management address as the peer ip's.
I have a pair of 5548P switches with the L3 daughter cards installed. Using the base license as I just need RIP routing. I have the two switches setup and have the RIP routing feature enabled. When I "turn on" routing using RIP I do not get any routes from my existing L3 switch (3750). I probably don't have routing setup correctly. With the 3750 IOS, I just turned on RIP with the router rip command and added a couple of network statements. On the nexus I have run router rip {instance} and left it at that. I am not getting any routes from my 3750. The 5548s are using the management ports and are connected to my existing network with L2 trunks. Does any know of a setup guide for RIP? I have used the Nexus 7000 RIP guide but still can't get it to work.
View 2 Replies View RelatedI''ve trying to bring up ports on a N7K-M108X2-12L card using X2-10GB-SR modules.
All ports are in a VDC and configured to accept the M1 card:
vdc_id vdc_name state mac type lc
------ -------- ----- ---------- --------- ------
2 cam-cor-csw-sfy-01 active 64:a0:e7:43:f0:c2 Ethernet m1 f1 m1xl
[Code]....
This is regarding Nexus core switch 7010. We are already running two nexus 7K with ten Nexus 5k. Currently we are going to add two new Nexus 5k in our DC. In the 7K we already running two VDC's.
View 8 Replies View RelatedThe fans 1 & 2 in Module 1 on the Nexus5K are still experiencing the very high RPM and speed issue.
I have replaced the fan from another operational Nexus5K, and the fans are fine in the other Nexus. The replacement fans also have the same issues, so it is not a fan hardware issue.
There are no threshold alarms. the only log entry that is related to this is as follows:
%NOHMS-2-NOHMS_ENV_ERR_FAN_SPEED: System minor alarm in fan tray 1: fan speed is out of range on fan 1. 7950 to 12500 rpm expected. I have provided the output for both the fan detail and the temperature.
N5K-01# sh environment fan detail
Fan: --------------------------------------------------- Module Fan Airflow Speed(%) Speed(RPM) Direction --------------------------------------------------- 1 1
[Code].....
I was reading a QoS walkthrough earlier to try to solve my problem and I noticed that in IOS, you can specify "match vlan" in a class map. This is not available in NX-OS. I'm not doing any routing on the 5K so I cannot match on ACL, and port where traffic is received is a trunk sharing other types of traffic I'd like to classify elsewise.
How can I match traffic on a per-VLAN basis?
How to configure a nexus 5K?
View 3 Replies View RelatedJust upgraded Nexus 7k from 5.2.1 to 5.2.7 (just system and kickstart image and NOT epld image). but after upgrading the one of the fex(n2k) dont seem to come online (this nexus 7k has two n2k and one of them came online and working fine)
[code]....
I have a couple of Nexus 5ks that I want to put QOS on for the servers running behind it but also have voice running across it. Voice doesn't play well with jumbo frames so I'd like to put QOS only on the voice vlan.
View 1 Replies View Related