Layer 3 peering over VPC+

Similar Messages

• FCOE over VPC

  Hi All,
  Acc. to attached scenario.
  Can i make VFC between two Nexus switches. As i don't want another seperate dedicated link for storage traffic. I want to send storage traffic only on eth 1/4 from down nexus 1 to northbound nexus 2. i.e. Nexus 1 ---> Nexus 2
  And LAN traffic will follow both links in VPC as usual. Nexus 1 ---> Nexus 2 and Nexus 1 ---> Nexus 3
  If i make interface VFC 23 on two nexus only i.e. on nexus 1 and nexus 2
  Nexus 1 conf
  interface vfc 23
  bind interface eth 1/4 ( Not binding port channel 23)
  vsan 1011 interface vfc 23
  Interface port-channel 23
  Switchport mode trunk
  spanning-tree port type network
  vlan 1011
    fcoe vsan1011
  vsan database
    vsan 1011
  interface eth 1/4 
  channel-group 23 mode active
  interface eth 1/5
  channel-group 23 mode active
  Nexus 2 Conf:
  interface vfc 23
  bind interface eth 1/4
  vsan 1011 interface vfc 23
  Interface port-channel 23
  Switchport mode trunk
  spanning-tree port type network
  vpc 23
  vlan 1011
    fcoe vsan1011
  vsan database
    vsan 1011
  interface eth 1/4 
  channel-group 23 mode active
  Nexus 3 conf:
  Interface port-channel 23
  Switchport mode trunk
  spanning-tree port type network
  vpc 23
  interface eth 1/4 
  channel-group 23 mode active

  Hello Stephen,
  One of the reason on why FCoE over vPC ( between UCS and N5K ) is not supported is that UCS currently allows all VSANs on all uplinks and cannot be pruned.
  HTH
  Padma

• UCS - san-port-channel over vpc

  Hi,
  I'm hoping someone can help out with this,
  I have a setup with 2 Nexus 5548's connected over a vpc peer link and a keepalive, These two nexus switch's have a standard VPC connection to an upstream 6500. this is working fine,
  Then there are multiple native FC connections from the 5548's to 6248's. I know there is the option to configure FC port-channel's on the UCS 2.0 but is it possible to put fc interfaces of the nexus 5548 into a san port-channel across a vpc between the the nexus 5548's.
  so for example, can i port-channel the following across a vpc or is a san port-channel restricted to ports on the same nexus switch only.
  Fabric A  fc1/31 & fc1/32    uplinked to  -> NX5K-1  Port fc1/31 & NX5K-2 Port fc1/32 (san port-channel 10 over a VPC)
  Fabric B  fc1/31 & fc1/32    uplinked to  -> NX5K-1  Port fc1/32 & NXFK-2 Port fc1/31 (san port-channel 11 over a VPC)
  Thanks,
  Ray.

  This is not possible. Vpc is layer 2 only ethernet port channel. San port channel cannot be built accross vpc
  Sent from Cisco Technical Support iPhone App

• Advantages of 3-layer architecture over 2-Layer

  Dear All,
  Can anyone please explain me the advantages of 3-Layer architecture ( Core-Distribution-Access) over 2-Layer Architecture ?
  Thanks and Regards.

  The CDA model (Cisco's 3 Layer Hiearchical model) is typically used in a medium to large network - although, it can also be used in a small network, it just might not be financially feasible depending on the company's budget. The 3 layer architecture will also help allocate resources better throughout the network. For instance, the core can do its job and ensure high speed packet delivery, the distribution switches can focus on things like routing between VLANs (or subnets) and QoS, while the access layer can focus on delivering data to the end users. This model also allows much better scalability than the two layer model.
  The collapsed core architecture (2 layer) is mostly used in small networks. It may be used for perhaps, a small branch office. It takes the above CDA model and collapses it into 2 layers. Either the core/distribution and access model or the core and distribution/access model. Depending on the size of the network, it might be a wise financial decision to take this route instead of the 3 Layer Architecture. Although, from a technical standpoint, the 3 layer model is the way to go.
  Here is a link that may provide some more insight:
  http://www.cisco.com/global/AP/switching/deploy_manage.shtml

• Layer 2 over MPLS !

  Hi all experts.
  If an ISP has a customer with 200 branches, and that customer wants all his branches to be provided layer 2 connectivity, means it wants a full mesh at layer 2 just like ethernet, so that there is no need for Tunnels and the client is able to run any protocol at layer 2 like OSPF etc. What method generally an ISP use to provide such service to its customers ? i mean is it VPLS ? or EoMPLS ? AToM ? L2tpv3 ?
  Can some one highlight how such a service is provided and what is the recommended method ?

  John,
  the workaround could be a bunch of p2p EoMPLS'es forming a cloud, but that won't scale well and doesn't really substitute all the advantages VPLS has.
  As for gear, high-end SP boxes support VPLS - ASR9k, CRS, GSR, and of course 7600. For the full list please consult the Cisco Feature Navigator.
  Hope to clarify.

• Layer 2 over geographically disperse networks.

  The situation that I am in is this:
  I need to setup a DR site with a type of "flip the switch solution".  I have the solution drawn up but what I need to figure out is if I can run the same subnet at the COLO or not.  I realize this may be a really stupid question but just wanted to see if there is anyone with some insight into this.  The WAN that this will be going across is running BGP with VRF-lite.  I know this is not a lot of detail and can provide more if needed just want to see what kind of options I may have.
  Thanks

  Hello, for DR, in an "Active / Standby" solution you could extend layer 2 between sites, but all depends on which type of devices you have, which technology you could get comfortable with. I could suggest L2TPv3, (example here: http://www.networkworld.com/article/2343443/cisco-subnet/configuring-an-l2tpv3-ethernet-pseudowire.html) which is quite quick and easy to deploy. Just be mindful, of the default gateways of servers and hosts, where they would be, they'd have to be active in one place or the other depending on where hosts are based, you don't want them unnecessarily traversing a link to get to the default gateway. If switching on (albeit via shut/no shut/hsrp priority etc...) the SVI's or gateways in the DR site is part of the "flip the switch" it seems to work in my mind.

• Blue haze, layer over video content

  Hi,
  I recently bought a new mac mini server 2,3 Ghz i7 HD Graphics 4000 (brand new) and expanded it with one SSD and 16GB of ram.
  The monitor is a Dell monitor U2413
  The mini is connected either with HDMI --> HDMI or Thunderbolt --> Displayport.
  Both setups give the same problem.
  I have not tried the DVI port yet as I don't have a cable.
  When a video is played in a browser (Safari or Firefox) within 3 seconds a blue-ish (purple - pink) haze or layer comes over the video image.
  When the video is pauzed, the haze is gone, starting the video again and within 3 seconds the haze is back.
  This happens when a video is played in a window in the browser and also in full screen mode.
  When I hook up my Macbook Pro Retina with the Dell monitor (Thunderbolt --> Displayport) I do not have this issue.
  What causes this problem?
  - Johan -

  There is a dedicated forum for DPS questions and this issue has been addressed there.
  http://forums.adobe.com/community/dps
  In short, create an MSO and place those over the video. For details visit the DPS forum.
  Bob

• Is it possible to create a 'layer' over the top of a PDF in Captivate?

  I am trying to integrate a 3dpdf within captivate 8 for a software training program, for this it is important to retain functionality to the pdf menu, Captivate handles this well : ) HOWEVER on importing the pdf it becomes clear that the pdf 'trumps' other objects such as clickable areas or text, which therefore don't seem to appear when published. I also wish to provide 'blocked' areas by putting transparent objects over the top of the pdf so as to control the learning process, which also doesn't seem possible on initial inspection.
  Does the PDF exist outside the timeline?
  Does anyone know how to layer objects over a pdf object that will remain there when published?
  Many thanks!
  Sam the Giraffe

  How/where do you want to accomplish it?
  Within the document? Using Acrobat? Using another application?
  Using Acrobat within the document would be possible using Acrobat JavaScript. You can access the annotation objects of your document, and you then can evaluate the properties of each of these objects. Have a closer look at the Annotation Object section in the Acrobat JavaScript documentation.
  You will look for the contents property, and evaluate its content. When you have found something looking like a URL, you can create a link (using the rect property of the annotation), and you have what you want; you might then think to destroy the annotation, as it may overlay the link.
  Hope this can help.
  Max Wyss.

• SWF over DIV Layer

  Hi,
  I'm going trough some difficulties upon trying to make an
  HTML DIV Layer appear over a SWF movie clip embbed on a page.
  The DIV initial status is hidden(display:none) but in a
  certain moment this div must be shown and it should appear over the
  swf movie. The problem is that swf movie always appear over the DIV
  Layer. I've set up the Z-Index and it did not work correctly.How
  can I get this behaviour to make swk appear below the div layer?
  Thanks a lot.

  Not by the method you mention in your subject line -
  All Active content on a page will always rise to the top, so
  to speak,
  including Flash, certain form elements, Java applets, and
  Active X controls.
  This means that each of these will poke through layers. There
  is not a good
  cross-browser/platform reliable way to solve this issue, but
  if you can be
  confident in your visitors using IE 5+ or NN6+, then you can
  use the Flash
  wmode parameter (however, Safari does not support this
  properly!).
  Adobe articles:
  http://www.adobe.com/cfusion/knowledgebase/index.cfm?id=tn_15523
  http://www.adobe.com/cfusion/knowledgebase/index.cfm?id=tn_14201
  Murray --- ICQ 71997575
  Adobe Community Expert
  (If you *MUST* email me, don't LAUGH when you do so!)
  ==================
  http://www.dreamweavermx-templates.com
  - Template Triage!
  http://www.projectseven.com/go
  - DW FAQs, Tutorials & Resources
  http://www.dwfaq.com - DW FAQs,
  Tutorials & Resources
  http://www.macromedia.com/support/search/
  - Macromedia (MM) Technotes
  ==================
  "Alexander Ross" <[email protected]> wrote in message
  news:fbung4$2a3$[email protected]..
  > I'm trying to convinve my boss that this is not a good
  idea, but I'm
  > having trouble making the argument ... anyone have a
  good way for me to
  > approach this argument?
  >
  > Alex

• Red layer over screen

  Hey, I was using my macbook and suddenly this red layer appeared over the screen. You can still see, but everything is red! And then suddenly goes back to normal, but if you move the screen it goes red again... PLEASE HELP ME FIX THIS

  This is certainly a hardware issue. More than likely a failing video cable, inverter board or logic board. You'll need to take it in for service for diagnosis.

• Ask the Expert: Different Flavors and Design with vPC on Cisco Nexus 5000 Series Switches

  Welcome to the Cisco® Support Community Ask the Expert conversation.  This is an opportunity to learn and ask questions about Cisco® NX-OS.
  The biggest limitation to a classic port channel communication is that the port channel operates only between two devices. To overcome this limitation, Cisco NX-OS has a technology called virtual port channel (vPC). A pair of switches acting as a vPC peer endpoint looks like a single logical entity to port channel attached devices. The two devices that act as the logical port channel endpoint are actually two separate devices. This setup has the benefits of hardware redundancy combined with the benefits offered by a port channel, for example, loop management.
  vPC technology is the main factor for success of Cisco Nexus® data center switches such as the Cisco Nexus 5000 Series, Nexus 7000 Series, and Nexus 2000 Series Switches.
  This event is focused on discussing all possible types of vPC along-with best practices, failure scenarios, Cisco Technical Assistance Center (TAC) recommendations and troubleshooting
  Vishal Mehta is a customer support engineer for the Cisco Data Center Server Virtualization Technical Assistance Center (TAC) team based in San Jose, California. He has been working in TAC for the past 3 years with a primary focus on data center technologies, such as the Cisco Nexus 5000 Series Switches, Cisco Unified Computing System™ (Cisco UCS®), Cisco Nexus 1000V Switch, and virtualization. He presented at Cisco Live in Orlando 2013 and will present at Cisco Live Milan 2014 (BRKCOM-3003, BRKDCT-3444, and LABDCT-2333). He holds a master’s degree from Rutgers University in electrical and computer engineering and has CCIE® certification (number 37139) in routing and switching, and service provider.
  Nimit Pathak is a customer support engineer for the Cisco Data Center Server Virtualization TAC team based in San Jose, California, with primary focus on data center technologies, such as Cisco UCS, the Cisco Nexus 1000v Switch, and virtualization. Nimit holds a master's degree in electrical engineering from Bridgeport University, has CCNA® and CCNP® Nimit is also working on a Cisco data center CCIE® certification While also pursuing an MBA degree from Santa Clara University.
  Remember to use the rating system to let Vishal and Nimit know if you have received an adequate response. 
  Because of the volume expected during this event, Vishal and Nimit might not be able to answer every question. Remember that you can continue the conversation in the Network Infrastructure Community, under the subcommunity LAN, Switching & Routing, shortly after the event. This event lasts through August 29, 2014. Visit this forum often to view responses to your questions and the questions of other Cisco Support Community members.

  Hello Gustavo
  Please see my responses to your questions:
  Yes almost all routing protocols use Multicast to establish adjacencies. We are dealing with two different type of traffic –Control Plane and Data Plane.
  Control Plane: To establish Routing adjacency, the first packet (hello) is punted to CPU. So in the case of triangle routed VPC topology as specified on the Operations Guide Link, multicast for routing adjacencies will work. The hellos packets will be exchanged across all 3 routers and adjacency will be formed over VPC links
  http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/operations/n5k_L3_w_vpc_5500platform.html#wp999181
  Now for Data Plane we have two types of traffic – Unicast and Multicast.
  The Unicast traffic will not have any forwarding issues, but because the Layer 3 ECMP and port channel run independent hash calculations there is a possibility that when the Layer 3 ECMP chooses N5k-1 as the Layer 3 next hop for a destination address while the port channel hashing chooses the physical link toward N5k-2. In this scenario,N5k-2 receives packets from R with the N5k-1 MAC as the destination MAC.
  Sending traffic over the peer-link to the correct gateway is acceptable for data forwarding, but it is suboptimal because it makes traffic cross the peer link when the traffic could be routed directly.
  For that topology, Multicast Traffic might have complete traffic loss due to the fact that when a PIM router is connected to Cisco Nexus 5500 Platform switches in a vPC topology, the PIM join messages are received only by one switch. The multicast data might be received by the other switch.
  The Loop avoidance works little different across Nexus 5000 and Nexus 7000.
  Similarity: For both products, loop avoidance is possible due to VSL bit
  The VSL bit is set in the DBUS header internal to the Nexus.
  It is not something that is set in the ethernet packet that can be identified. The VSL bit is set on the port asic for the port used for the vPC peer link, so if you have Nexus A and Nexus B configured for vPC and a packet leaves Nexus A towards Nexus B, Nexus B will set the VSL bit on the ingress port ASIC. This is not something that would traverse the peer link.
  This mechanism is used for loop prevention within the chassis.
  The idea being that if the port came in the peer link from the vPC peer, the system makes the assumption that the vPC peer would have forwarded this packet out the vPC-enabled port-channels towards the end device, so the egress vpc interface's port-asic will filter the packet on egress.
  Differences:  In Nexus 5000 when it has to do L3-to-L2 lookup for forwarding traffic, the VSL bit is cleared and so the traffic is not dropped as compared to Nexus 7000 and Nexus 3000.
  It still does loop prevention but the L3-to-L2 lookup is different in Nexus 5000 and Nexus 7000.
  For more details please see below presentation:
  https://supportforums.cisco.com/sites/default/files/session_14-_nexus.pdf
  DCI Scenario:  If 2 pairs are of Nexus 5000 then separation of L3/L2 links is not needed.
  But in most scenarios I have seen pair of Nexus 5000 with pair of Nexus 7000 over DCI or 2 pairs of Nexus 7000 over DCI. If Nexus 7000 are used then L3 and L2 links are required for sure as mentioned on above presentation link.
  Let us know if you have further questions.
  Thanks,
  Vishal

• Nexus 5K OSPF with vPC

  Hi,
  I know it is well documented using IGP's, more specifically OSPF with 7K's and vPC's but when it comes to the same thing on 5K's I am still a little confused.
  My topology is:
  5K01 and 5K02 are connected and are vPC peers, I currently have a management network on VLAN 114, both 5k's have SVI's on this and are currently OSPF neighbors over their vPC using this vlan.
  I have an MPLS router (service provider PE) which is 2 routers but clustered so logically in this instance it is one router, the 5 k's will be conecting to this PE router via some switches over a vPC and needs to become a OSPF neighbor to both the 5K's.
  Looking at this post:
  http://adamraffe.com/2013/03/08/l3-over-vpc-nexus-7000-vs-5000/
  It suggests that I can just add VLAN 114 to the vPC up to tyhe PE and turn OSPF on on the interface on the PE, although this will not support Multicast and I don't really want to restrict myself as this may be a future requirement.
  What I thought might be a better solution would be to designate a new vlan and allow it on the vPC up to the PE and use that for the OSPF neighborships between the 5K's and the PE and not allowing it over the vPC peer link - leaving the 5K's neighborship over vlan 114.
  Can someone tell me what the best practice/supported topology is here and maybe provide some cisco links?
  Thanks a lot in advance.

  You have to be very careful when configuring L3 services and interfaces while using VPC. 
  Take a look at this document:
  http://www.cisco.com/c/dam/en/us/td/docs/switches/datacenter/sw/design/vpc_design/vpc_best_practices_design_guide.pdf
  Also, take a look at this post:
  http://bradhedlund.com/2010/12/16/routing-over-nexus-7000-vpc-peer-link-yes-and-no/
  You can create a vlan used exclusively for Nexus-to-Nexus iBGP peering.  Use a new 'access' link between the two switches and place them on the new vlan.  Make sure that this VLAN does not traverse the VPC peer link.  Then, create SVIs on each switch for that VLAN and peer over that link.  Then, you can create a L3 link on each nexus to peer with your eBGP neighbors.
  The point you want to make sure you understand is the VPC loop prevention mechanism that says "If a packet is received on a VPC port, traverses the VPC peer link, it is not allowed to egress on a VPC port."

• How can I copy the layer from one .PSD file to another .PSD file?

  Hi,
  Actually it is shape and mask on one layer which I want to use it on my Photoshop CS4 file. If I select all the layer and copy it to my file it just copies the shape but not the mask. How can I copy MASK to my file?
  Please do hlep.
  Actually I am trying to copy the following layer.

  I believe the fastest way would be to duplicate the layer and send it to the other document. Open both images. Click the document tab of the document with the shape layer. With the shape layer selected in the layers palette, right click where it says the shape layer name. Select "duplicate layer" from the context menu. In the dialog that comes up, select the document you want to copy that layer to in the destination box then press ok.
  Alternately, you can open both images then pull the document frame tabs down to open both images in your workspace. Grab the shape layer in the document's layers palette by left clicking it...keep the left button pressed (hand icon should be a grab icon). While left button is still pressed, drag the shape layer over the receiving document. To make the shape layer register in the same location, press the shift key and keep it pressed. Release left mouse button while the layer is over the receiving document. Release shift key after you have released the left mouse button.
  This tutorial has a good photo reference for what I mean when I say pull the image tabs down so both documents appear in the same workspace...also shows drag/drop:
  http://www.photoshopcstutorials.co.uk/html/cs4_workspace___palette_notes.html

• Event Handling - In what layer/pane is a JMenu contained?

  In what layer is a JMenu contained?
  I ask this because I am trying to figure out what object gets the event first - the component with a keybinding of WHEN_IN_FOCUSED_WINDOW or my menu. I want my menu to clear itself for certain keystrokes and allow the event to be picked up by the component that is listening for it in the focused window.
  I know the FocusManager, focused component, gets to process the event first. Then to keylisteners of super(), Keybindings, and then menubar.
  I know the JFrame implements the RootPane interface. The RootPane contains a glassPane and a layeredPane. The layered pane puts the jmenubar(optional) and content pane in the JLayered panes frameContentLayer.
  The menu is added to the JMenuBar so is the menu in the JLayeredPane PopUpLayer or is it in the FrameContentLayer?
  If the menu is part of the menubar and the menu bar is the last to get notified...
  Would the JMenu receive an event only after a component in the content layer has processed it? Will the component in the content layer that is listening for a certain keypress in the focused window even get notified since the FocusManager has the event source as the JMenu?
  If anyone has any clarification on the JMenu and how events/panes/layers work with the JMenu I would greatly appreciate your help. I understand the other components I am just confused about the JMenu.

  JMenu is contained in default_layer
  DEFAULT_LAYER
  The standard layer, where most components go. This the bottommost layer.
  PALETTE_LAYER
  The palette layer sits over the default layer. Useful for floating toolbars and palettes, so they can be positioned above other components.
  MODAL_LAYER
  The layer used for modal dialogs. They will appear on top of any toolbars, palettes, or standard components in the container.
  POPUP_LAYER
  The popup layer displays above dialogs. That way, the popup windows associated with combo boxes, tooltips, and other help text will appear above the component, palette, or dialog that generated them.
  DRAG_LAYER
  When dragging a component, reassigning it to the drag layer ensures that it is positioned over every other component in the container. When finished dragging, it can be reassigned to its normal layer.

• CF Ajax - how to make a small form 'pop up' over the existing content

  hi. i have a standard html form with quite a few elements
  (selects, radio buttons, input fields, text areas etc)
  some users will need the ability to supply additional data
  but i only want the fields for this additional data to appear upon
  request (to keep the form clean looking for the majority of users)
  i want to make it when users click on an "add more detail"
  button then the screen goes 'greyed out' and a new form appears
  roughly 350px x 350px centred on their screens. ive seen this done
  quite a lot recently and was just about to google javascript
  tutorials to get started, then it occured to me i may be able to
  utilise cf8's ajax tags to achieve this (which would be handy as i
  really struggle with anything other than v basic javascript)
  my requirements are:
  1 button (or link) in my standard form that launches the
  'more detail' form in a ?layer? over the top of the existing
  content
  2 when this happens the existing content is 'greyed out'
  preventing uses from interracting with it until they either
  complete this new form (or click the close button in that new form)
  3 this form is to contain 2 text inputs and a submit button
  4 i want to pass the data from this form back to the original
  form when it is submitted (temporarily storing the data in hidden
  fields within the original form) and will then ultimately pass this
  back to the server when the original form is submitted
  does anyone know if cfajax can help me with this (i dont need
  the asynchronous server interaction stuff ajax offers only the
  javascript to make my form pop up etc)
  if not does anyone know what this behaviour is commonly
  termed so i can google for it
  thanks very much indeed for any help
  cheers
  Nick

  Hi,
  i am not sure this serves ur purpose..but u can use try using
  cfwindow for this...this tutorial might help u get started..
  http://tutorial6.learncf.com/