Nexus 7K Supervisor Management Port

  Hello Everyone,
               Any help would be greatly appreciated. Scenario: Currently managing 7K through the active* supervisor's management interface via the defualt VRF (management). In the case of a failover, how would one configure the second supervisor, the one in "ha-standgy"? Would the configuration be copied over to that interface and would just need to provide another link to the OBN switch? Thanks again.

As this post is now a couple of days ago you may have already discovered the answer.  However, the vPC requires a unique Port-Channel group for each downstream device between the vPC peer devices, the two N7Ks in this case.  Essentially you need to configure three port-channels, one for each of your downstream N5Ks on both your N7K vPC peer devices:-
For example:-
N7K-1
interface ethernet 7/1-2
description to N5k-1
switchport mode trunk
switchport trunk allowed vlan 1-50
channel-group 100 mode active
interface port-channel 100
vpc 100
N7K-2
interface ethernet 7/1-2
description to N5k-1
switchport mode trunk
switchport trunk allowed vlan 1-50
channel-group 100 mode active
interface port-channel 100
vpc 100
N7K-1
interface ethernet 7/9-10
description to N5k-2
switchport mode trunk
switchport trunk allowed vlan 1-50
channel-group 101 mode active
interface port-channel 101
vpc 101
N7K-2
interface ethernet 7/9-10
description to N5k-2
switchport mode trunk
switchport trunk allowed vlan 1-50
channel-group 101 mode active
interface port-channel 101
vpc 101
etc.
Hope this helps
Allan.

Similar Messages

  • Nexus 7000 Supervisor Management Port

    Hi,
    I have a deployment with 2 x Nexus 7009. Both N7K's have dual supervisor modules.
    Each Supervisor Module is connected to alternate management switches.
    Supervisor 1 is connected to Management Switch 1
    Supervisor 2 is connected to Management Switch 2
    In the event of a failure of Management Switch 1, access to Supervisor 1 is lost and in turn all access to the N7K.
    Is there any method of achieving connectivity to the Active Supervisor (1) when this scenario occurs.Can connectivity be achieved via the Standby Supervisor (other than making the Standby Supervisor the Active Supervisor).
    Thanks,
    Colm

    That is the correct behavior.  As long as the primary sup is up, you will see the mgmt0 for the primary Sup up.  The second you fail over to the stand-by sup, the mgmt0 for that sup will come up and the old primary will go down.  So, it is only one mgmt0 is up at a time.
    Make sure both mgmt0 interfaces are in the same vlan and also port fast is turned on so the mgmt ports comes up as soon as possible.
    HTH

  • Management port of Nexus5020 CMP ?

    Hello,
    Has the management port of a Nexus 5020 a dedicated CMP processor as on the Nexus 7K switches ?
    (ie. does it stay up during a reboot ?)
    regards,
    Geert

    In Nexus 5k, the management port does go down when the switch is rebooted.

  • Advantages of 10/100 Management port on 6500/4500 series

    Hi mates,
    There is a common port called "10/100 MGT" (next to console port) on the supervisor engines of 6500 and 4500 series switch.
    Why would I need that port since I can telnet through Layer2 10/100 ports??
    Is that port doing the same job as console port? in addition allows longer distances over cat 5 cables??
    Do we need to assign IP address on that mangement port?
    Thanks for helping :)

    Hi,
    The 6500 supervisors do not have a 10/100 MGT port. The cat4000 supervisors do, however.
    On the supI and supII, the Ethernet management ports are for network management only. These ports do not support network switching. See:
    http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/inst_gd/05modins.htm#xtocid184774
    On the SupII+, SupIII, and higher, the Ethernet management port is used (in ROMMON mode only) to recover a switch software image that has been corrupted or destroyed due to a network catastrophe. This port is not active while the switch is operating normally.
    See:
    http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/hw_doc/78_13686.htm#wp32993
    HTH,
    Bobby
    *please rate helpful posts

  • NEXUS 3548 with 24 Port License

    Ive a 3548 box with 24port Lic,My concern is about the functionality of the remaining 24 Ports.Will there be a problem with the rest of the 24 ports while in production.
    NX3548# sh inventory
    NAME: "Chassis", DESCR: "Nexus 3548 Chassis"
    PID: N3K-C3548P-10G    , VID: V02 , SN: XXXXXXXXXX
    NAME: "Module 1", DESCR: "48x10GE Supervisor"
    PID: N3K-C3548P-10G    , VID: V02 , SN: XXXXXXXXXX
    NX3548# SH LICense usage
    Feature                      Ins  Lic   Status Expiry Date Comments
                                     Count
    24P_LIC_PKG                   Yes   -   Unused Never       -
    24P_UPG_PKG                   No    -   Unused             -
    LAN_BASE_SERVICES_PKG         Yes   -   Unused Never       -
    ALGO_BOOST_SERVICES_PKG       No    -   Unused             -
    LAN1K9_ENT_SERVICES_PKG       No    -   Unused             -
    LAN_ENTERPRISE_SERVICES_PKG   No    -   Unused             -

    Hello Dhanesh,
    thanks for your reply.
    We have 2 3548 licensed exactly as your Nexus.
    After a reboot of the two Nexus the first 4 ports (of the two) had problems (no input packets, only ouput packets, so unusable). There was connected devices with GLC-T, so they worked at 1 G, not 10G.
    We opened a TAC Case about this and, after remote session and many analysis, the engineer decided to replace the two devices.
    Despite this I have still some doubt.
    I found the discussion below and I post some logs of one of the Nexus, we use the 10 G not in a contiguous way.
    Thanks and regards
    https://supportforums.cisco.com/discussion/12073821/nexus-3548-24-port-license-what-ports-use
    371) Event:E_DEBUG, length:55, at 552701 usecs after Sat Mar 14 20:02:11 2015
        [825307441] Couldn't send grace period data: No route to host
    372) Event:E_DEBUG, length:58, at 255834 usecs after Sat Mar 14 19:02:57 2015
        [825307441] Couldn't fetch grace enabled status: no such pss key
    373) Event:E_DEBUG, length:55, at 819209 usecs after Sat Mar 14 19:02:18 2015
        [825307441] Couldn't send grace period data: No route to host
    374) Event:E_DEBUG, length:44, at 818664 usecs after Sat Mar 14 19:02:18 2015
        [825307441] Failed to get VDC map: no such pss key
    375) Event:E_DEBUG, length:44, at 818270 usecs after Sat Mar 14 19:02:18 2015
        [825307441] Transient read error in glob_refresh()
    376) Event:E_DEBUG, length:60, at 813122 usecs after Sat Mar 14 19:02:18 2015
        [825307441] Expiry date for feature LAN_BASE_SERVICES_PKG: 3650000
    377) Event:E_DEBUG, length:50, at 773120 usecs after Sat Mar 14 19:02:18 2015
        [825307441] Expiry date for feature 24P_LIC_PKG: 3650000
    378) Event:E_DEBUG, length:30, at 716563 usecs after Sat Mar 14 19:02:08 2015
        [825307441] checking confcheck config
    N3K-DC-1# sh int status
    Port          Name               Status    Vlan      Duplex  Speed   Type
    Eth1/1        *** FREE ***       sfpAbsent 1         full    1000    --
    Eth1/2        *** FREE ***       sfpAbsent 1         full    1000    --
    Eth1/3        *** FREE ***       sfpAbsent 1         full    1000    --
    Eth1/4        *** FREE ***       sfpAbsent 1         full    1000    --
    Eth1/5        UCS_UPLINK_FABRIC_ connected trunk     full    10G     SFP-H10GB-CU5M
    Eth1/6        UCS_UPLINK_FABRIC_ connected trunk     full    10G     SFP-H10GB-CU5M
    Eth1/7        --                 sfpAbsent 1         full    10G     --
    Eth1/8        --                 sfpAbsent 1         full    10G     --
    Eth1/9        --                 sfpAbsent 1         full    10G     --
    Eth1/10       --                 sfpAbsent 1         full    10G     --
    Eth1/11       --                 connected trunk     full    1000    1000base-T
    Eth1/12       --                 connected trunk     full    1000    1000base-T
    Eth1/13       --                 sfpAbsent 1         full    10G     --
    Eth1/14       --                 sfpAbsent 1         full    10G     --
    Eth1/15       --                 sfpAbsent 1         full    10G     --
    Eth1/16       --                 sfpAbsent 1         full    10G     --
    Eth1/17       --                 sfpAbsent 1         full    10G     --
    Eth1/18       --                 sfpAbsent 1         full    10G     --
    Eth1/19       --                 sfpAbsent 1         full    10G     --
    Eth1/20       --                 sfpAbsent 1         full    10G     --
    Eth1/21       --                 sfpAbsent 1         full    10G     --
    Eth1/22       --                 sfpAbsent 1         full    10G     --
    Eth1/23       --                 sfpAbsent 1         full    10G     --
    Eth1/24       --                 sfpAbsent 1         full    10G     --
    Eth1/25       --                 sfpAbsent 1         full    10G     --
    Eth1/26       --                 sfpAbsent 1         full    10G     --
    Eth1/27       --                 sfpAbsent 1         full    10G     --
    Eth1/28       --                 sfpAbsent 1         full    10G     --
    Eth1/29       --                 sfpAbsent 1         full    10G     --
    Eth1/30       --                 sfpAbsent 1         full    10G     --
    Eth1/31       *** FREE ***       notconnec 1         full    1000    1000base-T
    Eth1/32       --                 sfpInvali 1         full    10G     1000base-T
    Eth1/33       --                 sfpAbsent 1         full    10G     --
    Eth1/34       --                 sfpAbsent 1         full    10G     --
    Eth1/35       --                 sfpAbsent 1         full    10G     --
    Eth1/36       --                 sfpAbsent 1         full    10G     --
    Eth1/37       --                 sfpAbsent 1         full    10G     --
    Eth1/38       --                 sfpAbsent 1         full    10G     --
    Eth1/39       --                 sfpAbsent 1         full    10G     --
    Eth1/40       --                 sfpAbsent 1         full    10G     --
    Eth1/41       --                 sfpAbsent 1         full    10G     --
    Eth1/42       --                 sfpAbsent 1         full    10G     --
    Eth1/43       --                 notconnec 1         full    10G     10Gbase-SR
    Eth1/44       --                 notconnec 1         full    10G     10Gbase-SR
    Eth1/45       C3850-CORE [Port-C connected trunk     full    10G     10Gbase-SR
    Eth1/46       C3850-CORE [Port-C connected trunk     full    10G     10Gbase-SR
    Eth1/47       vPC PeerLink [Port connected trunk     full    10G     SFP-H10GB-CU3M
    Eth1/48       vPC PeerLink [Port connected trunk     full    10G     SFP-H10GB-CU3M
    Po2           C3850-CORE         connected trunk     full    10G     --
    Po3           3750-DC            connected trunk     full    a-1000  --
    Po4           UCS_UPLINK_FABRIC_ connected trunk     full    10G     --
    Po10          vPC PeerLink       connected trunk     full    10G     --
    mgmt0         --                 connected routed    full    a-1000  --

  • Nexus 1010 and Management

    it is the first time that i install and configure a Nexus 1010.
    After unpackaging, i have upgrade the BIOS, CMC and Firmware of the nexus 1010 (like a classical C-serie server)
    The CIMC 's @IP is 10.10.0.100 ; I have connected the 10/100 Ethernet CIMC management port to my OOB  network where we have all OOB interfaces from Nx7k and Nx5k.
    Now i would want configure the Nx1010 in the topology "uplink type 3".
    port 1 and 2 : mangement Vlan
    port 3 to 6 : Control/packt Vlan and Data Vlan.
    In the setup wizard, we have to configure the int Mgmt0 of Nx 1010.
    In which network must be the Mgmt0 ; i am confused and mix up :
    - CIMC mgmt from the C-series server
    - mgmt0 int from nexus 1010 : by which physical interface goes throught this traffic : via "10/100 Ethernet CIMC management port" or via "Management vlan" ???
    - Vlan management : this Vlan will allow to manager the VSB VSM-1 et VSM-2....
    The Vlan management must not be the OOB network, must it ?
    It is not clear for my mind ; i mix up all this mgmt
    please help me !!!
    many thank in advance.
    NB : All the devices in our DC (Nx5k and Nx5K/Nx2K) have two management interface :
    1 - OOB management via the pysical OOB port
    2 - Inb management via a dedicated Vlan ; each device have 1 @IP in this Vlan (even the L2 Nx7k (without M1 card) via the cli "management")
    How could i have the these mgmt for Nexus 1010 / CIMC / VSM ???
    Last question : in order to upgrade the nx 1010, then download the nexus-1000v*.iso to bootflash:repository, which network/mgmt i have to used ???

    Hi Delahais, could you resolve your concern? .. I have the same doubt

  • Half duplex or full duplex configuration for MDS9124 management port?

    Hi All,
    Is it possible to set the management port of mds 9124 about half or full duplex configuration?
    I want to correct following error:
    Jun 13 10:27:20.799 GMT: %CDP-4-DUPLEX_MISMATCH: duplex mismatch discovered on GigabitEthernet4/18 (not half duplex), with mtw1pc02bs0(FOX1450G8QG) mgmt0 (half duplex).
    it seems mds 9124 set his port to half duplex.
    Dennis

    You may want to check this thread :
    https://supportforums.cisco.com/thread/2059109
    Else try the following :
    switch# config terminal
    switch(config)#
    switch(config)# interface mgmt0
    switch(config-if)# switchport duplex full
    switch(config)# exit
    switch#
    switch# copy running-config startup-config
    Also, I would suggest you check what the counterpart of your MDS switch mgmt interface is set to (i.e. is it set to autoneg, then try setting it to fix speed/duplex or the other way around).

  • Question about 4500X VSS management port

    I have two standalone 4500X switches that I'm planning to convert to VSS. If I cable the management port on both switches to a management cloud, which management port should I put the management IP address? Is it the port on the active switch? if the active switch failed, would the management port on the standby switch take over the management IP?
    The management port is in VRF mgmtVrf. Should I create a default route for the VRF such as "ip route vrf mgmtvrf 0.0.0.0 0.0.0.0 ....." to point to its default gateway IP?
    Thanks

    When you convert the chassis to VSS, only the management interfaces (FastEthernet1) for switch-1 (active) will be visible in the config.  So you want to cable both management interfaces to your management cloud, but you only apply the IP to the active switch.
    The management port is in VRF mgmtVrf. Should I create a default route for the VRF such as "ip route vrf mgmtvrf 0.0.0.0 0.0.0.0 ....." to point to its default gateway IP?
    Correct, you need a default route in that mgmt vrf pointing to the gateway.
    HTH

  • Cisco 3850 Switch Management Port - ACL on VTY

    Hi,
    I got these switches.
    Switch Ports Model              SW Version        SW Image              Mode   
    *    1 32    WS-C3850-24T       03.03.02SE        cat3k_caa-universalk9 INSTALL
         2 32    WS-C3850-24T       03.03.02SE        cat3k_caa-universalk9 INSTALL
    SSH access to Management port G0/0 with an ACL applied on line vty 0 4 is failing, even through the ACL is permiting traffic.
    interface GigabitEthernet0/0
     vrf forwarding Mgmt-vrf
     ip address 172.16.12.3 255.255.255.0
     negotiation auto
    ip access-list standard ACLVTY
     permit any log
    line vty 0 4
     access-class ACLVTY in
     exec-timeout 15 0
     length 0
     history size 64
     transport preferred ssh
     transport input ssh
     transport output telnet ssh
    037599: *Mar 28 2014 04:59:49.919 AEDT: %SEC-6-IPACCESSLOGS: list permit-any permitted 172.16.12.100 1 packet
    # show ip access-list permit-any
    Standard IP access list permit-any
        10 permit any log (3 matches)
    If I remove the ACL under VTY "no access-class ACLVTY in", then SSH to the management port works. If I don't use the management port and use a normal port say G1/0/1 configured on management VLAN and assigned the same IP address, then SSH works with the VTY ACL still existing. 
    Any ideas ?
    Thanks, 
    Rick.

    Hi,
    IOS will accept all VTY connections by default. However, if an access-class is used, the assumption is that connections should only arrive from the global VRF. If you need control the IP source while allowing VTY connections from VRF instances, you have a try configuration option "vrf-also"
    So, you should get something like this:
    line vty 0 4
    access-class ACLVTY in vrf-also  

  • Re-addressing of WAE's management port

    Hi,
    I would like to re-address management port of WAE. What is the correct method for doing it? Because the WAE is registered in the central manager WAE. When I re-address management port of WAE, the central manager has problem with the new address. Thank you.

    I would probably restore it to factory defaults and then go through the normal configuration process:
    # restore factory-default
    This clears the unit and then it will reboot.
    When it comes back up, you configure the interfaces:
    (config)# interface GigabitEthernet 1/0
    (config-if)# ip address X.X.X.X X.X.X.X
    Duplex is automatically at 1000 full. If something else is required, add the following (as appropriate):
    (config-if)# bandwidth 100
    (config-if)# full-duplex
    (config)# ip default-gateway x.x.x.x
    (config)# ip name-server x.x.x.x
    (config)# ip domain-name myDomain.com
    (config)# host myHost
    (config)# clock timezone US/Eastern -5 0
    (config)# ntp server x.x.x.x
    (config)# show clock (verify Timezone settings)
    ***You still need this next line even if you are using inline cards
    (config)# primary-interface gigabitEthernet 1/0
    (config)# central-manager address x.x.x.x
    (config)# cms enable
    If cms registration isn't successful, try burning the config to flash and doing a reload. Then reattempt and it should work. The WAE must be connected to the network and able to communicate with the Central Manager for the “cms” command to work. It fails because it can't generate the certificate. Timeout is 15 seconds and states it was “unable to register.”
    Once the cms enable is successfully completed, a reload is a good idea.
    Hope this helps.
    Paul

  • Management port on CSS 11150

    I have a simple question. Can someone tell me how to access the management port on the css 11150?
    I configured the ip and mask on the management port and condigured my laptop for a ip on the same network. But i am unable to connect.

    what do you mean by connect ?
    Are you trying telnet or HTTP ?
    Are you able to ping ?
    Is the interface showing up ?
    Try 10Mb Half duplex set manually and see if it works.
    Also, did you reboot the CSS after configuring the ip address/mask for the management interface ?
    Gilles.

  • How to manage port open/close on MacMini server

    Dear all,
    In order to secure my server, I discover than some port are open.
    Is there a way to close all port and open only 445 and 548.
    I would like to make sure that no body can access the server from outside of the society ecepted if the have VPN client configured.
    The collaborator should be able to connect the server via afp, but form out side they need to use VPN.
    Then I am looking for a way to manage port on macmini server
    Many thank for your help
    Cheers

    Hi,
    I finally heart that port can not be closed on the router because I am usinf 1:1NAT.
    How can close all port on my Macmini and open only the port ssh. I will not use VPN.?
    If I turn on the firewall with the option to close all protocole. Is there a command to open a selected port?
    If there is only the port 22 (SSH) how can I mount a remote folder with afp or with somethin else? I also have on PC over the 7 iMac.
    Many thank for your help
    Cheers

  • Output drops on cisco link connecting to F5 Loadbalancer's management port

    On a connection like below:
    Cisco 6509: gi x/y <<-->> F5 BIGIP LTM: mgmt (Management Port)
    We observed incrementing packet drops on the F5 BIGIP mgmt interface.
    Also, at the cisco end, incrementing output drops were observed.
    tcpdump (packet capture) on the F5 BIGIP's mgmt port show brodcast packets/ multicast including the HSRP hellos being received from the cisco device. It is an expected behaviour that, F5 will reject any packets it cant understand (including the cdp, hsrp and other broadcast), and this will cause the packet drop counter of F5 BIGIP's mgmt port to increase. (F5 TAC acknowledged this behaviour)
    Will this cause the output drop counter at the cisco interface to roll up?
    Note: On the cisco interface, i do not see any other errors, also utilisation on the link is very minimal.
    Thanks
    Sudheer Nair

    Hi, this is probably late, but the software counters for output drops on these types of switches (3750's, blade switches) are not reliable.
    What you need to check is "show platform port-asic statistics drop" for a reliable drop counter on an interface. This will give you the hardware counters
    https://tools.cisco.com/bugsearch/bug/CSCtq86186/?reffering_site=dumpcr
    Switch stack shows incorrect values for output drops/discards
    on show interfaces. For e.g.,
    --- show interfaces ---
    GigabitEthernet2/0/5 is up, line protocol is up (connected)
    Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 4294967163
    Conditions:
    This is seen on Stackable switches running 12.2(58)SE or later.
    Workaround:
    None.

  • Serial management port

    Im connectng a dell lattitude D505 running xp and using hyper terminal to connect to a v440 using the serial management port from the serial port on my laptop. If you disconnect the serial management port on the solaris box while its running or if your laptop goes into sleep mode or is powered off, the solaris box will go into OK prompt! Any ideas why this is?

    I have a SunBlade 1500 under Solaris 9 and I don't know the Solaris Box. But if it manages the serial ports as Solaris 9 and SunBlade do, I could have one explanation:
    All the cases you described match or more accurately are seen by the hadware as a loss of the signal. And hardware and software do not like it at all!!! It seems that your Box hang down at this time. In any time I could give you the advice to disconnect as it must be done the device (here your Laptop) from the Box. And of course when you are connected, suspend the "sleep" of the computer (which is exactly the same thing that it was switched off).
    Hope that give you a beginning of explanation!

  • CSC-SSM Default Management Port...

    Does anyone know how to change this port from it's default of 8443?
    Please let me know, it's urgent!
    Thanks,
    Eddie

    Even i went through the doc again and again. And the only one reference i seem to notice is this :
    1. Network Settings
    2. Date/Time Settings
    3. Product Information
    4. Service Status
    5. Change Password for Command Line Interface
    6. Restore Factory Default Settings
    7. Troubleshooting Tools
    8. Reset Management Port Access Control List
    9. Ping
    10. Exit ...
    The 8th point.
    Reset Management Port Access Control
    Choose option 8 to reset the management port access control list. The following appears:
    Resetting management port access control list: OK
    Press Enter to continue ...
    If the ASDM is unable to communication with the SSM, try resetting port access via this option
    But even that doesn't explain if we could change the port. I have a CSC to configure next week, wish i had this box looks fun to play with.
    Cheers
    Hoogen

Maybe you are looking for

  • Tennis Channel and Customer Service

    My saga continues.  Let me first start out by saying that I divorced DIRECTV to come to Verizon.  So far with the exception of your customer service,  the marriage has been great.  I was watching the Tennis Channel last on Sunday; the Mutua Madrid Op

  • Java console and forms builder ?

    hi all , i am using developer suite 10g rel2 , db 10g rel2 ,jinitiator 1.3.1.22 . every time i run a form , a java console opens on my windows task bar , and does not close when i close my browser or form . when i open windows task manager ctrl+alt+d

  • 11i to 12 Project Management Deltas

    Hi Everyone, I need to take a self-study course on Project Management, and the only course that comes close to fitting the bill from Oracle University is ORACLE 11I10 PROJECT FOUNDATION FUNDAMENTALS SELF-STUDY. However, I'll be working with R12, and

  • Combining pages in the same file

    Hello all, How do I combine two pages, in the same file, to create a single page document? Thanks Acrobat 9 Pro

  • Page not found error on IE5.0

    Hi all, I have working on JSPs. Actually i developed the project on IE6.0. Now , when i am testing it with IE5.0, its giving page not found errors for some links and some pages.. Please suggest me something to get rid of this problem. Is it due to mu