Configuring Management VLAN for standalone Nexus 5k
Hi All,
The architecture in the attachment doesnt require redundancy and hence has a single N5k with N2k as FEX. The setup is working fine except for the management vlan and mgmt 0 interface being down.
As of now, mgmt0 interface has no link connected to it. The VLAN for nexus management is also down as mgmt0 cant be assigned to vlans.. Configuring management IP to Loopback interface also doesnt allow adding the same to management vlan.
Is mgmt0 an RJ45 compatible port with N5596? and is there a way I can have out of band management for Nexus 5596? Is there a way I can assign a management IP to the FEX?
Thanks for the inputs.
Thanks,
Bala S
Hello Balachandhar,
Mgmt interface on N5K exists to provide out of band management to the device.
Mgmt interface belongs to management vrf. You can reach the N5K on mgmt interface once you configure IP to mgmt interface and connect it to upstream switch port belonging to mgmt vlan.
The FEX cannot be seperately managed. You need to connect to the parent N5K device and manage it.
HTH
Padma
Similar Messages
-
Configuration Managment Pack for Non Oracle Systems (new)
Hi ,
There is a pack called "Configuration Management" for the database. This pack manage hardware , software , updates, patches, etc for host that have installed any Oracle Software.
Now, in EM Release 2 there is a new pack "Configuration Managment Pack for Non Oracle Systems" wich basically will allow me to the same but without the requirement to have any Oracle software installed.
The question is : Where can i find a white paper about it? i been looking around and there is only mentions of the product, but not extra info. I know is out already 3k p/processor..
Any ideas?
Sergio BenavidesFound this dated Oct 2005
(Note the "priced in Advance of Availability" piece)
Standalone Managers
Configuration Management Pack for Non-Oracle Systems (priced in Advance of Availability) 2.375 522,59 Per Processor -
Provisioning Pack (priced in Advance of Availability) 2.375 522,59 Per Processor -
Service Level Management Pack (priced in Advance of Availability) 79 17,42 Test -
(Must license with Beacon Plus Test pricing) 2.375 522,59 Beacon -
System Monitoring Plug-in for Hosts (priced in Advance of Availability) 1.188 261,29 Per Processor -
System Monitoring Plug-in for Non Oracle Databases (priced in Advance of Availability) 1.188 261,29 Per Processor -
System Monitoring Plug-in for Non Oracle Middleware (priced in Advance of Availability)
25 1.188 261,29 Per Processor -
System Monitoring Plug-in for Network Devices (priced in Advance of Availability)
26 1.188 261,29 Per Network Device -
System Monitoring Plug-in for Storage (priced in Advance of Availability)
27 -
Configuring XML Publisher for Standalone EnterpriseOne 8.12
Could someone please help me in configuring XML Publisher for Standalone EnterpriseOne 8.12.
As per the installation guide for 8.12, I have created a new data source to SQL Server named EnterpriseOne Local.
Also, I have used "With Windows NT authentication using the network login ID" for this ODBC.
Now I tried :
Data Source Name : EnterpriseOne Local
URL : jdbc:microsoft:sqlserver://localhost:1433
User : My NT domain ID
Password : MY NT domain password
Database Driver Class : com.microsoft.jdbc.sqlserver.SQLServerDriver
in XML publishers admin tab, but it doesnt work.
Is the above setting correct?make sure you can connect with "my NT domain ID"/"my NT domain password" in SQLserver Mangement studio express using SQL server authenication.
Try the setting using JDeveloper for DB conncection. If not successful then u must add the
sqljdbc.jar into your JAVA_HOME/lib
HTH
Shaun -
Question in regard to management VLAN for each Context in ACE module
Dear Pros,
I know this will be a simple questions to answer, and I have searched the forum, but I am not able to find the answer I need.
1) Does the ACE module require an Management IP address for each Context? Should the same VLAN be applied to each context, with larger size subnet to supply host address?
2) If it does require that, what IP address should I used for default route in each context.
I will be utilizing "Bridge Mode" for my application to transition the current network from Foundry to ACE. I will later on apply the "Routed Mode" model.
Each ACE module will have 3 seperate Context, for a total of 4 including the Admin.
Any suggestions or if you can point me to location as always will be greatly apprecaited.
Thanks and best regards.
Raman AzizianHi,
you have several options to choose from.
1. Use Admin context for management
You can use the Admin context for management. Give it an IP address in your managment VLAN, default route to upstream router, and login and change to contexts from there.
+ Easy and straightforward
- snmp and syslog are using the ip from each individual context and not the management IP
2. Use a Large subnet and assign an IP address in each context for management.
You can configure 1 managment VLAN and assign an IP address to each context in this subnet. Create static routes to the management stations that need to access this management address.
+ each context has its own managment address
- static routes need to be added
3. Use your client-side ip address (or BVI) as management address.
You management traffic will be inline and use the same path as your data. Default route is already configured and also valid for the management.
+ no static routes needed
- inline management
Personally, I choose option 1. That is, if the people that need to manage the ACE is the same team.
If other teams (serverteam for context 1, other serverteam for context 2) need to manage the ACE, than I would choose option 3.
HTH,
Dario -
Management VLAN for Catalyst 3524
Hi,
I'm currently using VLAN30 as my management VLAN (172.16.xxx.xxx) and would like to use VLAN20 for the management VLAN. After configuring VLAN20 as my management VLAN, the changes didn't get updated in the running-config. The IOS commands used are:
config t
int vlan 20
ip address 149.199.xxx.xxx 255.255.252.0
no shutdownHi Ankur,
This switch is in VTP client mode. When I did a show vlan, the output is as follows. VLAN 20 is already active.
VLAN Name Status
1 default active
20 core-network active
When I did a sh ip int brief, the output is as follows:
VLAN1 unassigned YES manual up
VLAN20 149.xx.xx.xx YES manual deleted
VLAN30 172.xx.xx.xx YES manual up
The VLAN 20 showed as deleted. I think this was because I issued the no int vlan 20 command as shown below:
config t
int vlan 20
ip address 149.xx.xx.xx.255.255.255.0 (For setting it as the management VLAN)
no int vlan 20
How do I set VLAN20 as the Management VLAN again?
What is the difference between the following:
i) int vlan 20
shutdown
ii) no int vlan 20 -
Is Oracle Configuration Manager Available for Hyperion Planning Servers?
The "My Oracle Support" site (https://support.oracle.com) describes the values of installing the Oracle Configuration Manager on servers.
Question: is this available for the Hyperion products or just Oracle databases? If available for Hyperion products, does it add value to tech support?
Any comments would be appreciated.John
This is partially correct. If you user12136418 are looking for a way to monitor health automatically and get access to web ex session technical support from one console OCM is a great tool. The fact that it is not a thick client in nature nor a windows service makes it ideal for having agents monitor network traffic SNMP and still have all hyperion health monitored without having to run a tool like SCOM. I have been waiting for this tool for a year . Now if only Hyperion would work with IE8. But we all can not have egg in our beer.
Thank you
Michael Worthylake
Systems Analyst
DJO, LLC
1430 Decision St.
Vista, CA 92081-8553 U.S.A.
Direct: 760-734-5631
Cell: 760-445-0746
www.djortho.com
[email protected] -
Configuration Manager & Licenses for AIX, Linux
All,
I have read the SCCM 2012 licensing document (System Center
2012 Licensing Pricing and SKU Overview) but I'm still unable to understand the content. Does one pay, having a datacenter license, for every configuration manager client used on each device (based on cpu) and does this also count for the SCOM
client?Or having paid for the scom client means that the configuration manager client is covered as well.
Also, how does this model applies when installing a client on an AIX LPAR which is part of a Power 5 or Power 6 system. (with for example 64 cpu's). Does this simply mean the need to have 32 CAL's ?
Bit confused about the following statement in the document "SC 2012 Datacenter allows for any # of managed OSEs per license."
thanksHi,
to get a valid legal answer, I would recommend to contact your licensing Partner.
But from my Point of view:
You are right, for the Server with 64 cpu's, you will Need 32 System Center 2012 R2 Datacenter/Standard Server Management Licenses. But then, all available Clients are usable (SCOM, SCCM, DPM)
The Statement simply means: When you have a datacenter license, which only has to cover the requirements of the cpu's, it doesn't matter, how many virtualized Systems (OSE) are running on this Server, on all of those OSE's you can use the System
Center Clients (or manage them without). Other than with Standard, where you got to check, if you have to license the cpu's or the OSE's.
I hope I could Point that out.
www.sccmfaq.ch -
Configuration Manager 2007 - For multiple forest.
I have a primary server in a forest A. Now i've a client requirement that it should be able to manage clients on forest B.
The trust between these forest is 1 way trust. Could someone please guide me how to do this...
Gopikrishnan.JYes, I know this is an old post, but I’m trying to clean them up.
Please read the docs on the subject.
http://technet.microsoft.com/en-ca/library/bb694003.aspx
Garth Jones | My blogs: Enhansoft and
Old Blog site | Twitter:
@GarthMJ -
Kerberos Configuration Manager for SQL Server is available
This thread describes the Microsoft Kerberos Configuration Manager diagnostic tool for SQL Server. This tool is available for download from the Microsoft Download Center:
Download the package now.
About Kerberos Configuration Manager
The Kerberos Configuration Manager for SQL Server is a diagnostic tool that helps troubleshoot Kerberos related connectivity issues with SQL Server, SQL Server Reporting Services (SSRS), and SQL Server Analysis Services (SSAS). It can perform the following
functions:
Collect information on operating systems and Microsoft SQL Server instances that are installed on a server.
Report on all Service Principal Name (SPN) and delegation configurations on the server.
Identify potential problems in SPNs and delegations.
Fix potential SPN problems.
More information
This tools helps troubleshoot the following exceptions:
401
Note: This error message is for http errors, SSRS errors, and some other similar errors.
Login failed for user 'NTAUTHORITY\ANONYMOUS'
Login failed for user '(null)'
Login failed for user ''
Cannot generate SSPI Context
For more information about Kerberos Configuration Manager, go to the following related blogs:
Released: Kerberos Configuration Manager for SQL Server
Kerberos Configuration Manager updated for Reporting Services
Kerberos Configuration Manager updated for Analysis Services and SQL Server 2014
Reference from the following KB article: Kerberos Configuration Manager for SQL Server is available
Elvis Long
TechNet Community SupportThanks for posting, Elvis. Can you post this to the SQL Security forum too?
Dan Guzman, SQL Server MVP, http://www.dbdelta.com -
Hi Everyone,
I m working with a leading ISP in India.The issue is that our engineering team has come up with the plan of migrating all management vlans for metro and other switches to vlan1.Presently we are using spearate vlans for management.Somethig like below.
Aggregation router#show runn inter gi0/2.137
Building configuration...
Current configuration : 250 bytes
interface GigabitEthernet0/2.137
description Connectivity for ABC
encapsulation dot1Q 137
ip address 203.154.26.97 255.255.255.240
ip policy route-map ABC
no cdp enable
end
Switch 1 end:(2950)
interface Vlan137
ip address 203.154.26.101 255.255.255.240
no ip route-cache
ip default-gateway 203.154.26.97
switch 2:(2950)
interface Vlan137
ip address 203.154.26.103 255.255.255.240
no ip route-cache
ip default-gateway 203.154.26.97
The router inter gi0/3 is connected to the trunk port on summit switch and a wireless device provides connectivity to the switch 1 and further another oen to switch 2.
The entire pasth is on layer 2.
Please suggest as to how can i migrate to mgmt vlan 1.
Can it be something like
inter gi0/2.1
encapsulation dot1q 1
ip addres
since 2950s dont support more thane one active mgmt vlan wat can be the best way of migration???This is a tricky proposition. Best way you mean without getting disconnected, right? Cause when you start to change the mgmt interface via telnet, you are risking of getting disconnected once the mgmt inteface is change. for example, you know that there can only be one active interface vlan on 2950 for mgmt purpose. If you are changing the interface vlan from vlan 237 to vlan 1, if they will have the same ip address, you'll have to shut down one of them. Let's say you are able to do that, then how will you bring up the other interface with getting disconnected? remember you are telneted in. the best way will be to console in when you make changes on the mgmt vlan. You'll probably have to walk to the switch anyway if you made the change via telnet. changing the mgmt vlan will not affect the switch's ability to switch packets.
-
Hi, I can't understand how I get the following different between old and newly installed client. On the left side it is the original client configuration and on the right side it is what client gets after installing the same version of CCMSETUP.EXE (5.00.7958.1000)
with SCCM 2012 R2.
Differences noticed:
-Catalog's name (in Software center) are different. New client has "IT Ogarnization" as name for their catalog.
-Configuration Manager Properties for new client doesn't have "Configurations" Tab.
-Many Components status in the components tab are different: CCM Notification Agent, Compliance and Settings Managment, Hardware Inventory Agent, Out of Band Mangement Agent...
With all this, I can't send Windows updates or any applications to ANY clients. The client status in the monitoring deployment always shows "Unknown".
I don't think it is on the client side, because I return to older VMware snapshot and see the different, after uninstalled and re-installed the SCCM agent, I get the new "problematic" client configuration.
Any suggestion to resolve my problem? Thank you in advance.
bsuperkidHere the all three logs. Sorry to give them like that but I think it is best way to let you take a look. I did change some name and reference to hide my environment.
Also, I don't know if there a link with my problem, but I guess so.
- I noticed in Monitoring\System Status\Components Status\"Warning SMS_WSUS_SYNC_MANAGER", the following message (ID 6703):
WSUS Synchronization failed.
Message: Thread was being aborted.
Source:
Microsoft.SystemsManagementServer.SoftwareUpdatesManagement.WsusSyncAction.WSyncAction.SyncWSUS.
- I noticed in Monitoring\System Status\Components Status\ "Warning SMS_AD_SYSTEM_DISCOVERY_AGENT", the following message (ID 5203):
Active Directory System Discovery Agent reported errors for 2074 objects. DDRs were generated for 0 objects that had errors while reading non-critical properties. DDRs were not generated for 2074 objects that had errors while reading
critical properties.
Possible cause: The site server might not have access to some properties of this object. The container specified might not have the properties available.
Solution: Please verify the Active Directory schema for properties that are not replicated or locked.
Refer to the discovery logs for more information.
I'll upload a print screen of all three logs files. If you need it in text format, I'll upload them as the code Block.
Thank you again!
bsuperkid -
Wireless AP Management VLAN and BVIs
Hi All,
I've been looking around and I can't find a solution to what I am trying to achieve and I was hoping the community may have had more luck than I have.
I'm looking to have my management VLAN for my AP setup as a tagged BVI but I'm struggling to get it setup. I can set it up fine using BVI1 and having it just accessed on the native VLAN but I see this as a security flaw, I don't really want direct access into my management network on the switch.
Now there may be a better way of preventing this but I am, at least compared to many, still fairly new to Cisco and this seems to be the best approach. Please see below for my current config, hopefully you can let me know where I am going wrong.
Also, as a note, at the moment I am mainly focusing on the management security of the AP before I check the wifi config, hence the radios still being shutdown so there may also be small errors in this. I have also removed some elements which are not relevant.
version 15.3
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname AP01
no ip source-route
no ip cef
dot11 syslog
dot11 ssid <Guest secure network SSID>
vlan 30
authentication open
authentication key-management wpa version 2
guest-mode
wpa-psk ascii <key>
dot11 ssid <Internal Secure SSID>
vlan 10
authentication open
authentication key-management wpa version 2
wpa-psk ascii <key>
ip ssh version 2
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
shutdown
encryption vlan 10 mode ciphers aes-ccm tkip
encryption vlan 30 mode ciphers aes-ccm tkip
ssid <Guest secure network SSID>
ssid <Internal Secure SSID>
antenna gain 0
packet retries 64 drop-packet
channel 2437
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 port-protected
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Dot11Radio0.10
encapsulation dot1Q 10
no ip route-cache
bridge-group 10
bridge-group 10 subscriber-loop-control
bridge-group 10 spanning-disabled
bridge-group 10 block-unknown-source
no bridge-group 10 source-learning
no bridge-group 10 unicast-flooding
interface Dot11Radio0.30
encapsulation dot1Q 30
no ip route-cache
bridge-group 30
bridge-group 30 subscriber-loop-control
bridge-group 30 spanning-disabled
bridge-group 30 block-unknown-source
no bridge-group 30 source-learning
no bridge-group 30 unicast-flooding
interface Dot11Radio1
no ip address
no ip route-cache
shutdown
encryption vlan 10 mode ciphers aes-ccm tkip
encryption vlan 30 mode ciphers aes-ccm tkip
ssid <Guest secure network SSID>
ssid <Internal Secure SSID>
antenna gain 0
peakdetect
no dfs band block
packet retries 64 drop-packet
channel dfs
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 port-protected
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Dot11Radio1.10
encapsulation dot1Q 10
no ip route-cache
bridge-group 10
bridge-group 10 subscriber-loop-control
bridge-group 10 spanning-disabled
bridge-group 10 block-unknown-source
no bridge-group 10 source-learning
no bridge-group 10 unicast-flooding
interface Dot11Radio1.30
encapsulation dot1Q 30
no ip route-cache
bridge-group 30
bridge-group 30 subscriber-loop-control
bridge-group 30 spanning-disabled
bridge-group 30 block-unknown-source
no bridge-group 30 source-learning
no bridge-group 30 unicast-flooding
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no keepalive
interface GigabitEthernet0.10
encapsulation dot1Q 10
no ip route-cache
bridge-group 10
bridge-group 10 spanning-disabled
no bridge-group 10 source-learning
interface GigabitEthernet0.30
encapsulation dot1Q 30
no ip route-cache
bridge-group 30
bridge-group 30 spanning-disabled
no bridge-group 30 source-learning
interface GigabitEthernet0.100
encapsulation dot1Q 100
no ip route-cache
bridge-group 100
bridge-group 100 spanning-disabled
no bridge-group 100 source-learning
interface GigabitEthernet0.101
encapsulation dot1Q 999 native
no ip route-cache
bridge-group 1
bridge-group 1 spanning-disabled
no bridge-group 1 source-learning
interface BVI1
no ip address
no ip route-cache
shutdown
interface BVI100
mac-address <Actual ethernet address>
ip address 10.33.100.101 255.255.255.0
no ip route-cache
ip default-gateway 10.33.100.254
ip forward-protocol nd
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
bridge 1 route ip
bridge 100 protocol ieee
bridge 100 route ip
line con 0
logging synchronous
line vty 0 4
transport input ssh
end
As you can see I am using BVI100 as the management VLAN for the device and BVI1 is shutdown with vlan 999/int gi0/101 holding bridge group 1.
With this setup I can't get any IP communication, send or receive but I can see the MAC address on the switch in the MAC address table on vlan100. There is also no entries in the ARP table of the AP.
The switch is setup with vlan 999 untagged and vlans 10,30,100 as tagged.
Hope you can help! Thanks for any advice in advanced.
Many thanks,
Martin.Yea that would work and I have set it up like this without issue but I'm trying to limit access to the management VLAN, I don't want someone to be able to plug directly into the switch and be on the same broadcast domain as alll of the other equipment.
There are otherways of achieving this but I felt like I was so close with the above config but I was just missing something. -
Version control and configuration management
How is version control and configuration management done for iPlanet6 web
and app servers?I'm not sure if I understand exactly what you are asking. Neither iWS or
iAS have built in version control or configuration management. But
pretty much everyone integrates them with version control or SCM in some
way. Ranging from the complex (say integrating iAS and Interwoven) to
the simplistic (using CVS to track HTML documents or source code).
David
Chris Valliere wrote:
How is version control and configuration management done for iPlanet6 web
and app servers? -
No SQL Server Configuration Manager
i have an instance of SQL on a 32bit Windows 2003 server, there is no configuration manager loaded, can I make the following changes with a command line?
\\.\pipe\MSSQL$MICROSOFT##SSEE\sql\query
Change the flag Hide Instance to No in SQL Server Configuration Manager→Protocols
for MachineName\Microsoft##SSEE.
Ensure that the SQL Server Browser service is running in SQL Server Configuration Manager→SQLServer
2005 Services.
Ensure that Named Pipes is enabled in SQL Server Configuration Manager→Protocols
for MachineName\Microsoft##SSEE.SQL Server management STudio Express version is 9.00.2047.00
Microsoft SQL Server Management Studio Express
9.00.2047.00
Microsoft Data Access Components (MDAC) 2000.086.3959.00 (srv03_sp2_rtm.070216-1710)
Microsoft MSXML 2.6 3.0 4.0 5.0 6.0
Microsoft Internet Explorer 7.0.5730.11
Microsoft .NET Framework 2.0.50727.3662
Operating System 5.2.3790
Seems you have just installed SQL Server management studio. You also have to install database engine component. Unless you install that you wont be able to connect. Browse
this link and click on download when you click please download
SQLEXPR.EXE. Install it and then you would be able to connect
Please mark this reply as answer if it solved your issue or vote as helpful if it helped so that other forum members can benefit from it
My Technet Wiki Article
MVP -
Boadcast control in management vlan
Hi...
I faced a problem where the management vlan was down due to exessive broadcast caused by some fiber uplink going bad.
I can use udld but not sure whether it can be used where the uplink is UTP.
I am thinkung of having several mamangement vlans, instead o keeping all my switches in a single one.
Is that a good practise? Any other ideas?
Thanks.You can enable UDLD with UTP. Creating multiple management VLANs depends on how much broadcast traffic is there within that vlan under normal circumstances, how many nodes are in the vlan, how many trunks are there, are there any hubs in use and a few other factors. It doesn't hurt to create another management vlan for management and the reason why many networks out there just have one management vlan is for simplification.
Pls. rate all helpful posts.
--Sundar
Maybe you are looking for
-
Active X Control for Flash Player could not be registered?????
I have Win XP Pro, IE 8, McAfee AV/firewall. Am administrator. Have tried every solution on Adobe troubleshoot solution page several times to no avail. have 2 other computers with Win XP Home IE 8 and McAfee. they both installed Flash Player with n
-
Error in Integration repository
Hi I craeted a namespace under the SWCV.After creating the namespace i looked at the data types. There will be 2 default data types ExchangeFaultData and ExchangeLogData under that.Both are inactive and when i try to activate them i am not abl
-
How need i configure a servlet in NES 4.1 TO PROXI REQUEST TO WEBLOGIC
I have some problems to configure NSAPI plug-in to work correctly, do u now if is necesary configure another file that obj.conf and have the correct version of libproxy.so.Have some clues for my?I was reading the information available in www.weblogic
-
Error during 501 in migo... while doing this entry t004f g003 missing
while doing this entry t004f g003 missing
-
I chat user showing as offline
Okay so I have a pretty serious issue here and I will list everything hopefully that you will need. I have a 2008 Mac book (black edition) it has the latest version of Mac OS. I am studying in Sweden right now and like to talk to my freinds and famil