Nexus 7K Core Layer VDC, does it require a VPC Peer Link

Similar Messages

• Vpc bind-vrf on Nexus 7000/N7k to ensure forwarding of multicast traffic over peer-link?

  In previous vPC setups with N5k (or also N6k), I had to use the 'vpc bind-vrf' command to ensure the forwarding of multicast over the vpc peer-link, especially for receivers in in non-vPC VLANs and the receivers connected to Layer 3 interfaces.
  I am wondering why this command isn't available on N7k? Isn't this necessary on this platform or is it just not yet implemented?
  Any hint is welcome!
  Stephan Strack

  Hey Stephan,
  The 'vpc bind-vrf' command allocates a special internal VLAN for routing traffic over the vPC peer-link to ensure L3 connections on the vPC peer or orphan ports successfully receive multicast traffic on N5k/N6k platforms.  This workaround is not needed on the N7K because that platform implements the vPC loop prevention rule differently in hardware.
  In short, 'vpc bind-vrf' is not required on N7K.
  -Andy

• VPC, VPC Peer-links and VDC

  I have 2 7Ks and will run VPC and multiple VDCs.
  Should it be a separete VPC Peer-link and keep-alive link per VDC?
  I am not sure but I guess yes since a physical interface should be allocated to a VDC.
  I just need confirmation.
  thanks

  Yes, if you are having 4 VDCs with vPC, you will need 4 separate vPC peer-links. VDC is a physical separation (even though it is the same box) and it cannot communicate across VDC.
  HTH,
  jerry

• Duplicate address across VPC peer-link on Nexus 7010

  Just set up a VPC peer-link between two 7010 switches.  The peer-link is a port-channel of two 10Gb connections.  On both sides I'm seeing this in the log:
  2010 Jan  5 04:27:34 CRMCN7K-1 %ARP-2-DUP_SRC_IP:  arp [3069]  Source address of packet received from 0024.f716.b341 on Vlan401(port-channel10) is duplicate of local, 10.180.0.17
  and on the other
  2010 Jan  5 04:23:39 CRMCN7K-2 %ARP-2-DUP_SRC_IP:  arp [3052]  Source address of packet received from 0024.f71f.a7c1 on Vlan401(port-channel10) is duplicate of local, 10.180.0.18
  VLAN 401 is the only VLAN on them right now with a Layer 3 address.  What am I missing?  Everything looks correct.  Port-Channel10 is up and running fine..or so it seems.

  Hey Nashwj,
  What version of NX-OS are you running?
  Are the 7K in a stand alone environment (lab or similar) or connected to other production network devices?
  Are both of the VLANs carried across the vPC peer link port-channel?
  Are both of the VLANs carried across any vPC port-channel?
  Do you have HSRP setup on the VLAN 401 interfaces on each of the 7Ks?  If so, what are the real and vip IP addresses?
  If you can either provide answers to the above or configuration snapshots of the vPC and SVI interfaces for your VLANs on each of the 7Ks a solution should be reachable.

• If I add a vlan to a vpc peer link does this cause an outage?

  We have 2 Nexus 5548's. We have a trunked peer link between with only certain vlan's between them. My understanding is that if we change that and add a vlan to the peer link trunk it will cause a brief outage. Am I wrong in my understanding?

  We have 2 Nexus 5548's. We have a trunked peer link between with only certain vlan's between them. My understanding is that if we change that and add a vlan to the peer link trunk it will cause a brief outage. Am I wrong in my understanding?

• Using SNMP is it possible to find the vPC peer link of a Nexus 5K?

  I'm trying to use SNMP to get the Peer Link pair...

  hi,
  You can include 0calyear characteristic before the structure in the column and set it to no display and show result row.
  regards,
  Arvind.

• Nexus 3548 : vlan is not allowed on peer-link

  Hi, I had posted earlier but I think I have almost figured out the issue.. just not how to resolve it.
  I have two nexus switches connected together with PO5.
  Each nexus has a PO6 to connect to a single Cat3750
  VLAN 46 on one of the switches is showing
  %ETHPORT-3-IF_ERROR_VLANS_SUSPENDED: VLANs 46 on Interface port-channel6 are being suspended. (Reason: Vlan is not allowed on Peer-link)
  Oddly the other switch seems to ok with VLAN 46.
  I also see this
  show vpc consistency-parameters vpc 6
  ... Local Remote.
  Allowed VLANs - 1,31,34,46,200,600-605 1,31,34,46,200,600-605
  Local suspended VLANs - 46 -
  I just dont get it. Both switches are almost identical in their running configs.
  Any thoughts?

  well the funny thing about the nexus configs is that I compared them in notepad ++ and they are the same.
  vrf context management
    ip route 0.0.0.0/0 10.31.0.9
  vlan 1
  vlan 31
    name VLAN0031-VOIP
  vlan 34
    name vlan_nutanix
  vlan 46
    name VLAN0046-MITEL
  vlan 200
    name VLAN0200-ExchDAG
  vlan 600
    name VLAN0600-VMOTION
  vlan 601
    name VLAN0601-DMZ1
  vlan 602
    name VLAN0602-DMZ2
  vlan 603
    name VLAN0603-DMZ3
  vlan 604
    name VLAN0604-DMZ4
  vlan 605
    name VLAN0605-PNET
  vpc domain 1
    role priority 110
    peer-keepalive destination 10.31.61.11 source 10.31.61.12
    auto-recovery
  interface port-channel5
    switchport mode trunk
    spanning-tree port type network
    speed 10000
    vpc peer-link
  interface port-channel6
    switchport mode trunk
    spanning-tree port type normal
    speed 1000
    vpc 6
  interface port-channel11
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge trunk
    speed 10000
    vpc 11
  interface port-channel12
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge trunk
    speed 10000
    vpc 12
  interface port-channel13
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge trunk
    speed 10000
    vpc 13
  interface port-channel14
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge trunk
    speed 10000
    vpc 14
  interface port-channel15
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge trunk
    speed 10000
    vpc 15
  interface Ethernet1/1
    switchport mode trunk
    speed 1000
    channel-group 6 mode active
  interface Ethernet1/2
    switchport mode trunk
    speed 1000
    channel-group 6 mode active
  interface Ethernet1/3
    description Nutanix
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge trunk
    channel-group 11
  interface Ethernet1/4
    description Nutanix
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge
    channel-group 12
  interface Ethernet1/5
    description Nutanix
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge
    channel-group 13
  interface Ethernet1/6
    description Nutanix
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge
    channel-group 14
  interface Ethernet1/7
    description Nutanix
    switchport mode trunk
    switchport trunk allowed vlan 1,31,34,46,200,600-605
    spanning-tree port type edge trunk
    channel-group 15
  interface Ethernet1/47
    switchport mode trunk
    channel-group 5 mode active
  interface Ethernet1/48
    switchport mode trunk
    channel-group 5 mode active
  +++++++++++++++++++++++++++++++++++++++++++++++++++++++
  3750 confing
  interface Port-channel6
   switchport trunk encapsulation dot1q
   switchport mode trunk
  interface GigabitEthernet1/0/33
   description ch nexus1-1
   switchport trunk encapsulation dot1q
   switchport mode trunk
   channel-group 6 mode active
  interface GigabitEthernet1/0/34
   description ch nexus1-2
   switchport trunk encapsulation dot1q
   switchport mode trunk
   channel-group 6 mode active
  interface GigabitEthernet1/0/35
   description ch nexus2-1
   switchport trunk encapsulation dot1q
   switchport mode trunk
   channel-group 6 mode active
  interface GigabitEthernet1/0/36
   description ch nexus2-2
   switchport trunk encapsulation dot1q
   switchport mode trunk
   channel-group 6 mode active
  interface Vlan46
   ip address 172.17.16.1 255.255.255.0

• Does the F2 linecard (N7k-F248XP-25) on Nexus 7010 support Layer 3?

  Hi All,
  I am sure that F1 linecards on Nexus weren’t able to support L3 functionality, so my query is does the F2 linecard (N7k-F248XP-25) on Nexus 7010 support Layer 3?
  Regards,
  Mayank

  Hi, Im know that this is resolved but i have a f2e Card
  Model:                 N7K-F248XP-25E
  Type (SFP capable):    1000base-SX
  and i can not configure an interface as l3
  NX7K-1-VDC-3T-S1-L3FP(config)# interface ethernet 7/2
  NX7K-1-VDC-3T-S1-L3FP(config-if)# no switchport
  ERROR: Ethernet7/2: requested config change not allowed
  whats the problem??
  Software
    BIOS:      version 2.12.0
    kickstart: version 6.2(2)
    system:    version 6.2(2)
    BIOS compile time:       05/29/2013
    kickstart image file is: bootflash:///n7000-s2-kickstart-npe.6.2.2.bin
    kickstart compile time:  7/9/2013 20:00:00 [08/22/2013 04:51:27]
    system image file is:    bootflash:///n7000-s2-dk9.6.2.2.bin
    system compile time:     7/9/2013 20:00:00 [08/22/2013 08:07:03]
  Hardware
    cisco Nexus7000 C7010 (10 Slot) Chassis ("Supervisor Module-2")
    Intel(R) Xeon(R) CPU         with 12224956 kB of memory.

• Hulu Desktop works on PowerPC, does NOT require Intel Core 2 Duo

  Just had the urge to point out to other PowerPC users that Hulu Desktop does NOT require Intel Core 2 Duo as the website states.
  In fact, it works perfectly on my iMac G5 PowerPC:

  Interesting, thanks for the info.

• Dual Layer Disc Does not Play in Set Top DVD Player

  Problem: Dual Layer Disc Does not Play in Set Top DVD Player
  Solution: If your burner supports having its bitsetting changed, find a utility and change it to include DVD-ROM.
  Additional Information:
  DL (Dual Layer) is currently only a +R format. This is a serious problem, as you will find that on older players - and a lot of new ones - there is no +R support. It is not official, and therefore useless for any professional application.
  By changing the bitsetting of your burner, it allows DLs (Dual Layer discs) to be burned with a book type of DVD-Rom and thus readable by many more players.
  DVD player support drops off exponentially if your burner doesn't support bitsetting, allowing you to change the book type of your disc from DL to DVD-Rom. The DL book type will play on most newer software DVD players but not set top players.
  If you've burned a dual layer disc without changing the bitsetting, it is a permanent semi-coaster as it will only play on your computer. I understand that newer DL burners are coming with firmware that automatically sets the book type.
  Encore offers no control over book-type. My understanding is that this is a burner-specific parameter: some burners support allow themselves to be set and others do not.
  Bitsetting (setting the Book Type) is specific to individual burners. There are some 3rd party software utilities out there that do a good job. The best thing to do is do a Google Search for your specific burner and find what works for yours.
  LiteOn has a book type utility available for its DL burners:
  I believe DVDInfoPro can set this on burners which support it.
  Note: I would caution everyone who updates their firmware to check their bitsetting before burning DL discs. I don't know if it always returns to its default but it did in my case.
  Bitsetting is done prior to burning the disk and generally only needs to be set once (unless like me, you update the firmware of your burner). The book type identifies to the player what type of disk is in it. Most players will play DVD-Roms with no problem. However, the book type of a DL disk is DVD+R DL as opposed to DVD-Rom and few players can read that.

  Some general comments about the OP's several questions
  Remember that reading a burned disc is not part of the original, core specification to play a DVD... so while most players do, now, they are really not required to do so to be able to play a replicated disc
  This may (probably is) even more so with dual layer discs... the disc material is different, and a player that will happily read a replicated disc may have problems with a burned disc
  There are many messages scattered in the forum, over the past several years, about brands of disc that are better... due both to overall quality control and the type of dye on the disc that is burned by the laser... with the bottom line being that not all discs are going to play in all players with 100% success
  As for studio discs... there is software out there that costs many thousands of dollars which do many (up to 9?) encoding passes to get the best, and smallest, possible result to fit more on a disc

• Is it recommended to use HSRP or multiple default between Core Layer Switch and Customer Edge Router?

  My client is asking me for following
  Client is using Router as edge device. 2  WAN links from different service provider ( each 20 Mbps)  are getting terminated on the router. There are internal servers present in the network. Client want to make setup such that even if one wan link fails  internet users should be able to access web server. Moreover if the edge router fails there should be secondary edge device so that there is device redundancy ?
  As per my understanding, in this scenario we need to do static one - to - one natting(belonging to WAN interface subnet). If we use two routers as Customer edge ans if we connect core layer switch to these two router, is it recommended to use HSRP/VRRP/GLBP or two default route on core switch pointing to two routers with equal ad value. we will also track the wan link with help of ip sla.
  which is recommended solution  Router redundancy protocol or Default routes.?

  Just had another read of this post and some other points have come up.
  1) I assumed your secondary link was for redundancy but you talk about terminating both SP links on the same router in your first paragraph.
  Did you mean this or are you going to be terminating a link per router ?
  2) are you using the second router purely for backup ?
  3) something you didn't ask about but is relevant is the IP addressing. Are you using provider independent addressing or does each SP provide you with an address block.
  If it is the second then you are going to have an issue with the web server. The problem is which provider's IP do you use for the web server ie.
  if you use the primary provider IP then that will be the DNS record on the internet. If the primary router fails then the IP address will change on the secondary router but DNS will still be handing out the primary IP.
  If you enter both IPs (primary and secondary) into DNS then you would get load balancing but this means both links will be used and the secondary would not just be backup.
  In addition if one of the links fails then DNS does not know this so it will still be handing out the failed address as well as the address that is still up which means some connections will work and some won't.
  Jon

• Creating Vlans at Core layer switches ?

  Is there a need to create vlans at core layer switches ? If yes what are the pros and cons for this practice ?
  Actually i have seen some networks doing that!

  Well this is the topology that i'm working on.
  we have implemented the 3 layer approach.
  1. At access layer: Switches are all L2 (for sure :) )
  2. At distribution layer: All switches are L3 are routes for incoming data.
  3. At core we have 2 6500 switches. One is configured as L3 and all vlans are created in it. Second is just as regular L2 device.
  and ofcourse there are some switch blocks for server farms and the likes.
  My issue is
  1. why don't we create vlans at distribution layer switches.
  2. Why one core switch is acting as L2 and other is acting as L3. What will happen in case of failure to the one acting as L3.
  Ps: the second issue just came up in my mind.

• My service provider's SMTP does not require a password but the option "non" does not appear on the IPOD Touch 5th gen. Fix?

  I have relay.skynet.be as my outgoing server and it does not require/allow password protection. When configuring mail on the Ipod the option of "non" is not given for the outgoing server. Is this a skynet issue or is there an Ipod solution?

  Google for:
  setup XX email on iphone
  to see if ony of the returned sites help.
  XX is you email provider.

• I have recently upgraded my iBookG4 from Tiger to Leopard 10.5.8 and find my Bluetooth USB adaptor no longer connects. The Bluetooth pane says inactive. Does Leopard require  USB 2.0. I've had the adaptor for some time so may be USB 1.0

  I have recently upgraded my iBookG4 from Tiger to Leopard 10.5.8 and find my Bluetooth USB adaptor no longer connects. The Bluetooth pane says inactive. Does Leopard require  USB 2.0. I've had the adaptor for some time so may be USB 1.0

  Bluetooth icon on menu bar shows bluetooth off. When opening bluetooth preferences it shows the devices I've connected previously,( my mobile phone), and other devices I've attempted to connect but not very successfully: my iPhone and MiniMac.  The bluetooth dongle in the USB port shows a continual blue light but does not react and the iBook does not recognise that it is there. There is absolutely no reaction when I try to pair my mobile phone, which I've done successfully before upgrading to Leopard, either by the iBook or the mobile phone.
  I assumed that Tiger was not bluetooth compatible with the iPhone or MacMini running SnowLeopard and hoped by upgrading to Leopard I could achieve some file transfers between the three devices (iBook, iPhone and MacMini)

• TS1398 After updating to ios 6 my iphone 4 would no longer connect to my home wifi. At work we have a free wifi connection that does not require a password. However my wifi at home is password protected. I have the right password. It works on my ipod touc

  After updating my iphone 4 with the ios 6 update. My iphone would no longer connect to my home wifi that is password protected. I know that I have the right password entered in. At work we have a free wifi connection that does not require a password and I can connect no problem to it. My ipod touch has no problem connecting to my home wifi. It is a 3rd gen ipod and does not have the ios 6 update on it. Please help!

  I'm having the same issues. Started when I upgraded iphone 4S and ipad1 to 5.1.1. Wife's iphone 4g on 4.4.2 has been ok. I've forgot the network on both devices and restored the iphone, none of which changed the issue. I've upgraded to ios 6 on the iphone 4s, problem still persists.
       One thing that will help for a time: go to your router and change the wireless control channel. When I first did this I got full connectivity for about 48 hours... and now the problem is back. I'm now changing the wireless control channel every 12 hours, which is a pain but at least keeps me connected. I've tried a few other solutions that are out there and that has been the best one so far.
       to do this on a motorola router: type 192.168.0.1 in your address bar.
  username: admin and password:motorola if you have not changed the factory defaults.
  Click on the word "wireless" and look for the "control channel" field. This may be set to auto or to 1, try changing it to 6 or 11 (preferred) or any other channel.
  The control channel can cause static in the wireless system IF there are several networks nearby that are on the default setup.
  There is a fair bit of buzz about this issue out there, some other things I've seen:
  This is a hardware issue. Go to the store and have your wifi antenna checked, some users reporting that they get free replacement devices.
  Check against other wifi networks that require a password (this is next for me). Logon to those networks and surf until your wifi stops. If your wifi connects to the internet but stops responding, then this is a software (or hardware) issue and apple needs to step up. Some are claiming this to be the case.
  IF you connect and stay connected/on the internet on another password protected wifi, then the issue is with your router. this is where things get cute.
  Comcast may tell you to update your firmware. Motorola may tell you that your cable provider is the only one who can push through firmware updates. Comcast may tell you that you are not in an area that is being updated. It's unclear if they say that to all customers, or just those who have purchased cable modems and aren't renting them from comcast.
  Good luck, more to come if I figure out anything else, and please post any solutions you may find.